Oracle Linux 6265 Published by

A scap-security-guide bug fix update has been released for Oracle Linux 8.



El-errata: ELBA-2022-10103 Oracle Linux 8 scap-security-guide bug fix update


Oracle Linux Bug Fix Advisory ELBA-2022-10103

  http://linux.oracle.com/errata/ELBA-2022-10103.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
scap-security-guide-0.1.63-4.0.2.el8.noarch.rpm
scap-security-guide-doc-0.1.63-4.0.2.el8.noarch.rpm

aarch64:
scap-security-guide-0.1.63-4.0.2.el8.noarch.rpm
scap-security-guide-doc-0.1.63-4.0.2.el8.noarch.rpm

SRPMS:
  http://oss.oracle.com/ol8/SRPMS-updates//scap-security-guide-0.1.63-4.0.2.el8.src.rpm


Description of changes:

[0.1.63-4.0.2]
- Update rules that modify pwquality.conf to delete confs in pwquality.conf.d
so it ensures no wrong confs exist [Orabug: 34893225]
- Allow several non-conflicting entries of the timestamp_timeout config entry
in sudoers files [Orabug: 34893225]
- Update fapolicy_default_deny to look into compiled.rules [Orabug: 34893225]
- Align OL08-00-020352 better by ignoring .bash_history file, and OL08-00-010120
by better detect locked passwords [Orabug: 34893225]
- Update rules dealing with sshd_config to look into files added to the include
keyword [Orabug: 34893225]
- Update remediations in two rules which wasn't letting the system boot when
running anssi-high profile [Orabug: 34893225]
- Update STIG version to V1R4 [Orabug: 34893225]
- Update rules accounts_password_set_min_life_existing and
accounts_password_set_max_life_existing to ignore non-interactive users
[Orabug: 34905591]

_______________________________________________