- Issued:
- 2021-04-27
- Updated:
- 2021-04-27
RHBA-2021:1383 - scap-security-guide bug fix and enhancement update
Synopsis
scap-security-guide bug fix and enhancement update
Type/Severity
Bug Fix Advisory None
Topic
An update for scap-security-guide is now available for Red Hat Enterprise Linux 7.
Description
The scap-security-guide project provides a guide for configuration of the system from the final system's security point of view. The guidance is specified in the Security Content Automation Protocol (SCAP) format and constitutes a catalog of practical hardening advice, linked to government requirements where applicable. The project bridges the gap between generalized policy requirements and specific implementation guidelines.
Bug Fix(es) and Enhancement(s):
-
[RFE] Add ANSSI-BP-028 to SSG (Minimal, Intermediary and Enhanced Levels) (BZ#1497415)
-
Remove deprecated follow argument from Ansible remediations (BZ#1890111)
-
Rules of type Service Disabled do not have clear description on which actions the user should take (BZ#1891435)
-
Latest RHEL7 STIG (V3R2) is not present in latest version of scap-security-guide. (BZ#1921643)
Solution
Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux for Scientific Computing | 7 | x86_64 |
| Red Hat Enterprise Linux for Power, little endian | 7 | ppc64le |
| Red Hat Enterprise Linux for Power, big endian | 7 | ppc64 |
| Red Hat Enterprise Linux for IBM z Systems | 7 | s390x |
| Red Hat Enterprise Linux Workstation | 7 | x86_64 |
| Red Hat Enterprise Linux Server | 7 | x86_64 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support | 7 | x86_64 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian | 7 | ppc64le |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian | 7 | ppc64 |
| Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) | 7 | s390x |
| Red Hat Enterprise Linux Desktop | 7 | x86_64 |
Updated Packages
- scap-security-guide-0.1.54-3.el7_9.noarch.rpm
- scap-security-guide-0.1.54-3.el7_9.src.rpm
- scap-security-guide-doc-0.1.54-3.el7_9.noarch.rpm
Fixes
- This content is not included.BZ - 1497415
- This content is not included.BZ - 1852364
- This content is not included.BZ - 1890111
- This content is not included.BZ - 1891435
- This content is not included.BZ - 1907897
- This content is not included.BZ - 1914226
- This content is not included.BZ - 1921643
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.