openSUSE-RU-2021:0968-1: moderate: Recommended update for scap-security-guide
openSUSE Recommended Update: Recommended update for scap-security-guide ______________________________________________________________________________ Announcement ID: openSUSE-RU-2021:0968-1 Rating: moderate References: ECO-3319 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that has 0 recommended fixes and contains one feature can now be installed. Description: This update for scap-security-guide fixes the following issues: The scap-security-guide was updated to 0.1.56 release (jsc#ECO-3319) - Align ism_o profile with latest ISM SSP (#6878) - Align RHEL 7 STIG profile with DISA STIG V3R3 - Creating new RHEL 7 STIG GUI profile (#6863) - Creating new RHEL 8 STIG GUI profile (#6862) - Add the RHEL9 product (#6801) - Initial support for SUSE SLE-15 (#6666) - add support for osbuild blueprint remediations (#6970) This update brings the following SUSE Linux Enterprise STIG SCAP automations: - SCAP STIG automation for SUSE Linux Enterprise 12 (SUSE supplied, nearly complete, missing 4 rules) - SCAP STIG automation for SUSE Linux Enterprise 15 (SUSE supplied, nearly complete, missing 4 rules) - CIS automation for SUSE Linux Enterprise 15 (community supplied) It can be evaluated using "oscap" from "openscap-utils", e.g. by doing on SUSE Linux Enterprise 12: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml On SUSE Linux Enterprise 15: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml or the community supplied CIS on SUSE Linux Enterprise 15: - oscap xccdf eval --profile cis /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml More content will be added in future updates. This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-968=1 Package List: - openSUSE Leap 15.2 (noarch): scap-security-guide-0.1.56-lp152.11.1 scap-security-guide-debian-0.1.56-lp152.11.1 scap-security-guide-redhat-0.1.56-lp152.11.1 scap-security-guide-ubuntu-0.1.56-lp152.11.1 References:
participants (1)
-
maintenance@opensuse.org