- Issued:
- 2023-08-29
- Updated:
- 2023-08-29
RHBA-2023:4824 - Bug Fix Advisory
Synopsis
scap-security-guide bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for scap-security-guide is now available for Red Hat Enterprise Linux
7.
Description
The scap-security-guide project provides a guide for configuration of the
system from the final system's security point of view. The guidance is
specified in the Security Content Automation Protocol (SCAP) format and
constitutes a catalog of practical hardening advice, linked to government
requirements where applicable. The project bridges the gap between generalized
policy requirements and specific implementation guidelines.
Bug Fix(es):
- Update ANSSI BP-028 in RHEL7 to v2.0 (BZ#2155793)
- openscap shows IPv6 as enabled even if it is disabled (BZ#2210276)
- Rebase scap-security-guide in Red Hat Enterprise Linux 7.9 to latest upstream
version (BZ#2221694)
- Remote resource referenced from datastream is missing
https://access.redhat.com/security/data/oval/com.redhat.rhsa-RHEL7.xml.bz2 (BZ#2223817)
Solution
For details on how to apply this update, which includes the changes described
in this advisory, refer to
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
- Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le
Fixes
- BZ - 2155793 - Update ANSSI BP-028 in RHEL7 to v2.0
- BZ - 2210276 - openscap shows IPv6 as enabled even if it is disabled
- BZ - 2221694 - Rebase scap-security-guide in Red Hat Enterprise Linux 7.9 to latest upstream version
- BZ - 2223817 - Remote resource referenced from datastream is missing https://access.redhat.com/security/data/oval/com.redhat.rhsa-RHEL7.xml.bz2
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| x86_64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| x86_64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux Workstation 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| x86_64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux Desktop 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| x86_64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux for IBM z Systems 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| s390x | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux for Power, big endian 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| ppc64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux for Scientific Computing 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| x86_64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux for Power, little endian 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| ppc64le | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| s390x | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| ppc64 | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7
| SRPM | |
|---|---|
| scap-security-guide-0.1.69-1.el7_9.src.rpm | SHA-256: fb2455e0b8c9fa3e9f0ee68f28f36e3c982081d356cbcab6802dc428429cac8e |
| ppc64le | |
| scap-security-guide-0.1.69-1.el7_9.noarch.rpm | SHA-256: 1b315efee1603621ddc6e9b5c4acee6fec99a737e5f91732f6e0db3004c31c7c |
| scap-security-guide-doc-0.1.69-1.el7_9.noarch.rpm | SHA-256: 23f993c8605281aa3ce8f6b45d1b153ed33506e3f17d38568f5f049ee4412838 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
