[El-errata] ELBA-2023-5084 Oracle Linux 9 scap-security-guide bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Oct 3 03:23:53 UTC 2023

Oracle Linux Bug Fix Advisory ELBA-2023-5084


The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:




Description of changes:

- Fix bash and ansible for rule accounts_umask_interactive_users [Orabug: 35848632]

- Remove OpenSSH crypto policy hardening rules from STIG profile (RHBZ#2221697)
- Fix ANSSI High profile with secure boot (RHBZ#2221697)

- Rebase to a new upstream release 0.1.69 (RHBZ#2221697)
- Improve CIS benchmark rules related to auditing of kernel module related events (RHBZ#2209657)
- SSSD configuration files are now created with correct permissions whenever remediating SSSD related rules (RHBZ#2211511)
- add warning about migration of network configuration files when upgrading from RHEL 8 to RHEL 9 (RHBZ#2172555)
- Correct URL used to download CVE checks. (RHBZ#2223178)
- update ANSSI BP-028 profiles to be aligned with version 2.0 (RHBZ#2155790)
- Fixed excess quotes in journald configuration files (RHBZ#2193169)
- Change rules checking home directories to apply only to local users (RHBZ#2203791)
- Change rules checking password age to apply only to local users (RHBZ#2213958)
- Updated man page (RHBZ#2060028)

More information about the El-errata mailing list