![[patchlogo]](http://patch-tracker.debian.org/static/img/swirlpatch.png)
policy/modules/services/openvpn.te | 4 ++++
1 file changed, 4 insertions(+)
--- refpolicy-0.2.20100524.orig/policy/modules/services/openvpn.te
+++ refpolicy-0.2.20100524/policy/modules/services/openvpn.te
@@ -65,6 +65,10 @@
manage_files_pattern(openvpn_t, openvpn_var_run_t, openvpn_var_run_t)
files_pid_filetrans(openvpn_t, openvpn_var_run_t, { file dir })
+# for the list of vulnerable keys
+files_read_usr_files(openvpn_t)
+files_read_var_lib_files(openvpn_t)
+
kernel_read_kernel_sysctls(openvpn_t)
kernel_read_net_sysctls(openvpn_t)
kernel_read_network_state(openvpn_t)