[El-errata] ELBA-2022-4647 Oracle Linux 7 scap-security-guide bug fix and enhancement update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue May 24 21:16:13 UTC 2022
Oracle Linux Bug Fix Advisory ELBA-2022-4647
http://linux.oracle.com/errata/ELBA-2022-4647.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
scap-security-guide-0.1.57-8.0.1.el7_9.noarch.rpm
scap-security-guide-doc-0.1.57-8.0.1.el7_9.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/scap-security-guide-0.1.57-8.0.1.el7_9.src.rpm
Description of changes:
[0.1.57-8.0.1]
- Update ol7 stig profile to align it with DISA's v2r6 update [Orabug: 33881982]
- Add ol7 as platform in bash files included in ol7 profiles [Orabug: 33881982]
- Add automated content for system accounts rules.This includes ansible,
bash, OVAL and tests. [Orabug: 33881982]
- Remove bash remediation for accounts_authorized_local_users [Orabug: 33793054]
- Update rhel7 project profiles to use oracle gpgkey [Orabug: 33612582]
- Update rhel7 profiles to generate Oracle Linux 7 content [Orabug: 33612582]
- Update source to generate Oracle Linux 7 content [Orabug: 33612582]
- Use separate rule for each audit syscall in pci-dss profile [Orabug: 33612582]
- Add ntpd and chronyd OL approved servers support [Orabug: 33612582]
- Add UEFI boot loader rules to Oracle Linux 7 profiles [Orabug: 33612582]
- Fix OL7 mapping in stable_profile_ids test [Orabug: 33612582]
- Update OL7 Essential Eight profile [Orabug: 33612582]
- Disable notapplicable ctrlaltdel remediation comment [Orabug: 33612582]
- Add ol7 stig v1r1 profile and mark draft one as deprecated [Orabug: 33612582]
- Disable cis profile [Orabug: 33612582]
- Update OL7 stig profile to be aligned with DISA STIG v2r4 update [Orabug: 33612582]
- Update config path for audisp plugin in OL8 [Orabug: 33612582]
- Update existing rules text, oval check, and bash remediations to be aligned
with DISA STIG v2r4 and v2r5 profile [Orabug: 33612582]
- Implement manual rules for OL7 DISA STIG v2r4 and v2r5 requirements
currently not covered [Orabug: 33612582]
- Implement stig_gui profile for OL7 [Orabug: 33612582]
- Disable new CIS and stig_gui profiles for RHEL7 product [Orabug: 34195638]
[0.1.57-8]
- Remove warning how to override audit buffer (RHBZ#1993822)
[0.1.57-7]
- Add warning how to override audit buffer (RHBZ#1993822)
- Fix name of antivirus package in STIG profile (RHBZ#2066321)
- Update RHEL7 DISA STIG profile to v3r7 (RHBZ#2079217)
More information about the El-errata
mailing list