diff --git a/recipes-security/selinux/refpolicy-targeted_%.bbappend b/recipes-security/selinux/refpolicy-targeted_%.bbappend
index ddbefa777e8e84da501926a6811595165baed752..e8d1d259d05f66eddefebaa5aa7b8cea9452616f 100644
--- a/recipes-security/selinux/refpolicy-targeted_%.bbappend
+++ b/recipes-security/selinux/refpolicy-targeted_%.bbappend
@@ -2,4 +2,5 @@
 FILESEXTRAPATHS:prepend := "${THISDIR}/zx-policy:"
 
 # 添加补丁（因已声明搜索路径，直接写补丁文件名即可）
-SRC_URI:append = " file://ZXOS-1098584-Fixed-undefined-operations.patch "
\ No newline at end of file
+SRC_URI:append = " file://ZXOS-1098584-Fixed-undefined-operations.patch "
+SRC_URI:append = " file://ZXOS-1109113-FIX-UNCONFINED-PORCESS.patch "
diff --git a/recipes-security/selinux/zx-policy/ZXOS-1109113-FIX-UNCONFINED-PORCESS.patch b/recipes-security/selinux/zx-policy/ZXOS-1109113-FIX-UNCONFINED-PORCESS.patch
new file mode 100644
index 0000000000000000000000000000000000000000..090b1858226dd111eba22233dddf3ccf91854257
--- /dev/null
+++ b/recipes-security/selinux/zx-policy/ZXOS-1109113-FIX-UNCONFINED-PORCESS.patch
@@ -0,0 +1,19 @@
+From 5b41aad3300283e081eccc42b66c63e309c6aa47 Mon Sep 17 00:00:00 2001
+From: wangchangjiang <wang.changjiang@zte.com.cn>
+Date: Tue, 21 Oct 2025 22:59:21 +0800
+Subject: [PATCH] ZXOS-1109113 FIX UNCONFINED PORCESS
+
+---
+ config/appconfig-mcs/failsafe_context | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/config/appconfig-mcs/failsafe_context b/config/appconfig-mcs/failsafe_context
+index a50bde775..2f96c9fda 100644
+--- a/config/appconfig-mcs/failsafe_context
++++ b/config/appconfig-mcs/failsafe_context
+@@ -1 +1 @@
+-unconfined_r:unconfined_t:s0
++sysadm_r:sysadm_t
+-- 
+2.25.1
+