From Debian package 0.2.20091117-3

  * Allow setrans_t to read proc_t files.

Index: policy/modules/system/setrans.te
===================================================================
--- policy/modules/system/setrans.te.orig
+++ policy/modules/system/setrans.te
@@ -50,7 +50,7 @@
 files_pid_filetrans(setrans_t, setrans_var_run_t, { file dir })
 
 kernel_read_kernel_sysctls(setrans_t)
-kernel_read_proc_symlinks(setrans_t)
+kernel_read_system_state(setrans_t)
 
 # allow performing getpidcon() on all processes
 domain_read_all_domains_state(setrans_t)