- Issued:
- 2020-03-31
- Updated:
- 2020-03-31
RHBA-2020:1019 - Bug Fix Advisory
Synopsis
scap-security-guide bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for scap-security-guide is now available for Red Hat Enterprise
Linux 7.
Description
For detailed information on changes in this release, see the Red Hat
Enterprise Linux 7.8 Release Notes linked from the References section.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
Fixes
- BZ - 1658036 - [pci dss] rule "Configure Periodic Execution of AIDE" fails due to regex issues
- BZ - 1659537 - banner-message-text in /etc/dconf/db/gdm.d/00-security-settings contains actual newlines instead of \n
- BZ - 1679253 - Default SSH loglevel is INFO, and rule sshd_set_loglevel_info should pass
- BZ - 1691336 - Remove outdated OSPP 4.0 profile and keep only OSPP 4.2 profile
- BZ - 1693026 - False positives on xccdf_org.ssgproject.content_rule_file_permissions_unauthorized_suid
- BZ - 1719769 - Bash remediation for configure_opensc_card_drivers and force_opensc_card_drivers fails to apply
- BZ - 1726698 - Rebase scap-security-guide in Red Hat Enterprise Linux 7.8 to latest upstream version
- BZ - 1747188 - Ansible openscap remediations have a duplicate dict key (section)
- BZ - 1754532 - Rule grub2_enable_fips_mode fails after kickstart installation
- BZ - 1754550 - Audit rules are failing after kickstart installation
- BZ - 1754553 - Rule mount_option_dev_shm_noexec fails after kickstart installation
- BZ - 1755192 - [RFE] Add support for ACSC Essential Eight profiles (RHEL7)
- BZ - 1777862 - Datastream for RHEL8 is not included in the scap-security-guide RHEL7 package
CVEs
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| x86_64 | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
Red Hat Enterprise Linux Workstation 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| x86_64 | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
Red Hat Enterprise Linux Desktop 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| x86_64 | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
Red Hat Enterprise Linux for IBM z Systems 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| s390x | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
Red Hat Enterprise Linux for Power, big endian 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| ppc64 | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
Red Hat Enterprise Linux for Scientific Computing 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| x86_64 | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
Red Hat Enterprise Linux for Power, little endian 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.46-11.el7.src.rpm | SHA-256: db72a6454353961294539071294d0336c95d51e7ae024d734420761e2f9a2385 |
| ppc64le | |
| scap-security-guide-0.1.46-11.el7.noarch.rpm | SHA-256: 8835d31af8497b3f84088ae130cd806ca3fe6767ff04b7bc6a79d96f6bf07094 |
| scap-security-guide-doc-0.1.46-11.el7.noarch.rpm | SHA-256: 3cbb4b67bc6cae9c524caef2e6b125cd8105de59ff15e6ec1c1dfdd07a23b07b |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.