diff --git a/refpolicy/policy/modules/kernel/corenetwork.if.in b/refpolicy/policy/modules/kernel/corenetwork.if.in index 20189d244..65fbe15a5 100644 --- a/refpolicy/policy/modules/kernel/corenetwork.if.in +++ b/refpolicy/policy/modules/kernel/corenetwork.if.in @@ -819,6 +819,7 @@ interface(`corenet_tcp_bind_all_ports',` ') allow $1 port_type:tcp_socket name_bind; + allow $1 self:capability net_bind_service; ') ######################################## @@ -855,6 +856,7 @@ interface(`corenet_udp_bind_all_ports',` ') allow $1 port_type:udp_socket name_bind; + allow $1 self:capability net_bind_service; ') ######################################## diff --git a/refpolicy/policy/modules/kernel/corenetwork.te.in b/refpolicy/policy/modules/kernel/corenetwork.te.in index 5c36eb365..e80936510 100644 --- a/refpolicy/policy/modules/kernel/corenetwork.te.in +++ b/refpolicy/policy/modules/kernel/corenetwork.te.in @@ -1,5 +1,5 @@ -policy_module(corenetwork,1.1.11) +policy_module(corenetwork,1.1.12) ######################################## #