SUSE-RU-2022:2693-1: moderate: Recommended update for scap-security-guide
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Mon Aug 8 19:16:20 UTC 2022
SUSE Recommended Update: Recommended update for scap-security-guide
______________________________________________________________________________
Announcement ID: SUSE-RU-2022:2693-1
Rating: moderate
References: #1200122 #1200149 #1200163 ECO-3319
Affected Products:
SUSE Linux Enterprise Server 12-SP5
______________________________________________________________________________
An update that has three recommended fixes and contains one
feature can now be installed.
Description:
This update for scap-security-guide fixes the following issues:
scap-security-guide was updated to 0.1.63 (jsc#ECO-3319):
- multiple bugfixes in SUSE profiles
- Expand project guidelines
- Add Draft OCP4 STIG profile
- Add anssi_bp28_intermediary profile
- add products/uos20 to support UnionTech OS Server 20
- products/alinux3: Add CIS Alibaba Cloud Linux 3 profiles
- Remove WRLinux Products
- Update CIS RHEL8 Benchmark for v2.0.0
SUSE specific issues fixed:
- stig: /etc/shadow group owner should not be root but shadow (bsc#1200149)
- sles15_script-stig.sh: remediation_functions: No such file or directory
(bsc#1200163)
- SLES-15-010130 - The SUSE operating system must initiate a session lock
after a 15-minute period of inactivity (bsc#1200122)
Patch Instructions:
To install this SUSE Recommended Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server 12-SP5:
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2022-2693=1
Package List:
- SUSE Linux Enterprise Server 12-SP5 (noarch):
scap-security-guide-0.1.63-3.36.1
scap-security-guide-debian-0.1.63-3.36.1
scap-security-guide-redhat-0.1.63-3.36.1
scap-security-guide-ubuntu-0.1.63-3.36.1
References:
https://bugzilla.suse.com/1200122
https://bugzilla.suse.com/1200149
https://bugzilla.suse.com/1200163
More information about the sle-updates
mailing list