[Apollo] Advisories Statistics light light Login

RLBA-2024:5811

Bug Fix Mirrored from RHBA-2024:5811
Issued at: 2024-09-17
Updated at: 2024-09-17

Synopsis

scap-security-guide bug fix and enhancement update



Description

The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the Security Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening advice, linked to government requirements where applicable. The project bridges the gap between generalized policy requirements and specific implementation guidelines.

Bug Fix(es) and Enhancement(s):

* [Rocky Linux8.7/SCAP/Rsyslog] Rainier syntax not valid for cron and netstreamdriver parameters (JIRA:Rocky Linux-1816)

* CIS Server Level 1 installation can be started with "Server with GUI" (JIRA:Rocky Linux-23852)

* Journald is not configured correctly after openscap remediation profile CIS Server Level 1 is applied (JIRA:Rocky Linux-38531)

* Authselect rules hardening wipes already active features (JIRA:Rocky Linux-39383)

* ANSSI-BP-028 (intermediary) breaks password changes (JIRA:Rocky Linux-44983)

* CIS Rocky Linux 9 Benchmark for Level 2 scan fails on "Ensure all users last password change date is in the past" rule (JIRA:Rocky Linux-47129)

* Rebase scap-security-guide to the 0.1.74 version (JIRA:Rocky Linux-53865)

* Rebase scap-security-guide to the 0.1.74 version [rhel-8.10.z] (JIRA:Rocky Linux-53913)

* ANSSI-BP-028 (intermediary) breaks password changes [rhel-8.10.z] (JIRA:Rocky Linux-54390)



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64 Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes



CVEs

Affected packages

Rocky Linux 9 x86_64 - AppStream

scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.src.rpm scap-security-guide-doc-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm

Rocky Linux 9 aarch64 - AppStream

scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.src.rpm scap-security-guide-doc-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm

Rocky Linux 9 s390x - AppStream

scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.src.rpm scap-security-guide-doc-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm

Rocky Linux 9 ppc64le - AppStream

scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm scap-security-guide-0:0.1.74-1.el9_4.rocky.1.1.src.rpm scap-security-guide-doc-0:0.1.74-1.el9_4.rocky.1.1.noarch.rpm

Rocky Linux 8 x86_64 - AppStream

scap-security-guide-0:0.1.74-3.el8_10.rocky.1.1.noarch.rpm scap-security-guide-0:0.1.74-3.el8_10.rocky.1.1.src.rpm scap-security-guide-doc-0:0.1.74-3.el8_10.rocky.1.1.noarch.rpm

Rocky Linux 8 aarch64 - AppStream

scap-security-guide-0:0.1.74-3.el8_10.rocky.1.1.noarch.rpm scap-security-guide-0:0.1.74-3.el8_10.rocky.1.1.src.rpm scap-security-guide-doc-0:0.1.74-3.el8_10.rocky.1.1.noarch.rpm