[El-errata] ELBA-2023-12727 Oracle Linux 8 scap-security-guide bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Aug 17 13:37:07 UTC 2023


Oracle Linux Bug Fix Advisory ELBA-2023-12727

http://linux.oracle.com/errata/ELBA-2023-12727.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
scap-security-guide-0.1.66-2.0.5.el8.noarch.rpm
scap-security-guide-doc-0.1.66-2.0.5.el8.noarch.rpm

aarch64:
scap-security-guide-0.1.66-2.0.5.el8.noarch.rpm
scap-security-guide-doc-0.1.66-2.0.5.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//scap-security-guide-0.1.66-2.0.5.el8.src.rpm



Description of changes:

[0.1.66-2.0.5]
- Update STIG rule selection [Orabug: 35663552]
- Update STIG id references so all rules in STIG profile have a STIG ID assigned
  and only those [Orabug: 35663552]
- Add automation content for file_permission_user_init_files [Orabug: 35663552]
- Update applicability of rules bios_enable_execution_restrictions, service_rngd_enabled
  logind_session_timeout & sysctl_kernel_kexec_load_disabled [Orabug: 35663552]
- Fix issue when adding entries in fstab of type iso9660. When running a STIG remediation
  there were wrong entries being added to fstab when there were a cdrom mounted
  [Orabug: 35663552]
- Update url for remote content when using --fetch-remote-resources. This frees up
  some memory due to more specific OVAL checks [Orabug: 35663552]
- Update ssh MACs and Ciphers allowed by STIG profile [Orabug: 35663552]
- Update references to reflect STIG V1R7 compliance [Orabug: 35663552]
- Fix unreachable code in sssd_enable_smartcards bash remediation [Orabug: 35663552]
- Update regex to better find included files in sshd_config [Orabug: 35663552]




More information about the El-errata mailing list