[El-errata] ELBA-2022-10103 Oracle Linux 8 scap-security-guide bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Jan 3 15:07:34 UTC 2023


Oracle Linux Bug Fix Advisory ELBA-2022-10103

http://linux.oracle.com/errata/ELBA-2022-10103.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
scap-security-guide-0.1.63-4.0.2.el8.noarch.rpm
scap-security-guide-doc-0.1.63-4.0.2.el8.noarch.rpm

aarch64:
scap-security-guide-0.1.63-4.0.2.el8.noarch.rpm
scap-security-guide-doc-0.1.63-4.0.2.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//scap-security-guide-0.1.63-4.0.2.el8.src.rpm



Description of changes:

[0.1.63-4.0.2]
- Update rules that modify pwquality.conf to delete confs in pwquality.conf.d
 so it ensures no wrong confs exist [Orabug: 34893225]
- Allow several non-conflicting entries of the timestamp_timeout config entry
 in sudoers files [Orabug: 34893225]
- Update fapolicy_default_deny to look into compiled.rules [Orabug: 34893225]
- Align OL08-00-020352 better by ignoring .bash_history file, and OL08-00-010120
 by better detect locked passwords [Orabug: 34893225]
- Update rules dealing with sshd_config to look into files added to the include
 keyword [Orabug: 34893225]
- Update remediations in two rules which wasn't letting the system boot when
 running anssi-high profile [Orabug: 34893225]
- Update STIG version to V1R4 [Orabug: 34893225]
- Update  rules accounts_password_set_min_life_existing and
 accounts_password_set_max_life_existing to ignore non-interactive users
 [Orabug: 34905591]




More information about the El-errata mailing list