RHBA-2018:1093 - Bug Fix Advisory

Topic

An updated openscap-daemon package that fixes several bugs and adds various
enhancements is now available for Red Hat Enterprise Linux Atomic Host 7.

Description

OpenSCAP-daemon is a service that performs SCAP scans of bare-metal machines,
virtual machines and containers. These scans can be either one-shot or
continuous according to a schedule. You can interact with the service using the
provided oscapd-cli tool or via the DBus interface.

The openscap-daemon package has been upgraded to upstream version 0.1.10, which
provides a number of bug fixes and enhancements over the previous version. These changes are required for configuration compliance scan of containers
and images using the "atomic scan" command. (BZ#1471672)

Users of openscap-daemon are advised to upgrade to this updated package, which
fixes these bugs and adds these enhancements.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat Enterprise Linux Atomic Host 7 x86_64

Fixes

• BZ - 1379083 - openscap-daemon initial usability issues (tracker 7.3.0)
• BZ - 1380409 - openscap-daemon rpm does not create/claim ownership of /etc/oscapd/config.ini
• BZ - 1382289 - atomic scan should raise an error when it is provided invalid paths to content in /etc/oscapd/config.ini
• BZ - 1471672 - Rebase OpenSCAP Daemon in RHEL 7.5 to current upstream version
• BZ - 1499212 - atomic scan tracebacks when scanning image using invalid profile
• BZ - 1537717 - atomic scan configuration_compliance to support stig-viewer output

CVEs

(none)

References

(none)