https://bugs.winehq.org/show_bug.cgi?id=56650
--- Comment #5 from chplee@gmail.com chplee@gmail.com --- (In reply to Zeb Figura from comment #4)
What exactly does 'execheap' do (in your own words, please)? Is there source code for it?
Sorry I can't explain it in my own words, but I found a comment from the maintainer of selinux-policy and he said this:
The Linux implementation of mprotect (unlike POSIX) allows changing the access protection of memory on the heap, e. g. allocated using malloc. This AVC denial indicates that heap memory was supposed to be made executable. While the permission can be granted turning the selinuxuser_execheap boolean on as suggested by setroubleshoot, it should not be done without a thorough code review as in most cases it indicates a bug in the code. If anonymous executable memory is needed, another method should be considered, e. g. allocating memory using mmap.
Please refer to the boolean description:
# semanage boolean -l|grep execheap selinuxuser_execheap (off , off) Allow unconfined executables to make their heap memory executable. Doing this is a really bad idea. Probably indicates a badly coded executable, but could indicate an attack. This executable should be reported in bugzilla
Switching the component to wine for further assessment.