Back to bug 1754919
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Red Hat Bugzilla | 2019-09-24 11:19:12 UTC | Pool ID | sst_platform_security_rhel_8 | |
| Watson Yuuma Sato | 2019-10-04 12:31:16 UTC | Status | NEW | POST |
| Watson Yuuma Sato | 2019-10-10 11:06:20 UTC | Status | POST | MODIFIED |
| Fixed In Version | scap-security-guide-0.1.46-2.el8 | |||
| errata-xmlrpc | 2019-10-10 11:18:43 UTC | Status | MODIFIED | ON_QA |
| Vojtech Polasek | 2019-10-16 14:29:31 UTC | CC | mjahoda, vpolasek | |
| Doc Text | Cause: Remediation of some Audit-related rules for PCI-DSS profile was producing errors. Consequence: Remediation was not performed successfully. Fix: Remediations were fixed. Result: Audit-related rules for PCI-DSS profile are correctly remediated. | |||
| Doc Type | If docs needed, set a value | Bug Fix | ||
| Flags | needinfo?(mjahoda) | |||
| Vojtech Polasek | 2019-10-17 11:32:05 UTC | Doc Text | Cause: Remediation of some Audit-related rules for PCI-DSS profile was producing errors. Consequence: Remediation was not performed successfully. Fix: Remediations were fixed. Result: Audit-related rules for PCI-DSS profile are correctly remediated. | Cause: Remediation of some Audit-related rules for PCI-DSS profile produces errors. Consequence: Remediation is not performed successfully. |
| Doc Type | Bug Fix | Known Issue | ||
| Matus Marhefka | 2019-10-18 08:34:03 UTC | Doc Text | Cause: Remediation of some Audit-related rules for PCI-DSS profile produces errors. Consequence: Remediation is not performed successfully. | Cause: Remediation of some Audit-related rules for PCI-DSS profile produces errors because of fault in the remediation shell script which is shared between these rules. Consequence: Remediation is not performed successfully. |
| Mirek Jahoda | 2019-10-21 14:26:57 UTC | Docs Contact | jafiala | |
| Flags | needinfo?(mjahoda) | |||
| Matěj Týč | 2019-10-21 15:03:38 UTC | CC | matyc | |
| Matus Marhefka | 2019-10-21 15:07:09 UTC | Status | ON_QA | VERIFIED |
| Mirek Jahoda | 2019-10-24 14:37:10 UTC | Docs Contact | jafiala | mjahoda |
| Doc Text | Cause: Remediation of some Audit-related rules for PCI-DSS profile produces errors because of fault in the remediation shell script which is shared between these rules. Consequence: Remediation is not performed successfully. | Cause: Remediation of some Audit-related rules for PCI-DSS profile produces errors because of fault in the remediation shell script which is shared between these rules. Consequence: Remediation is not performed successfully. https://docs.google.com/document/d/1K-TQCPZuUiqn7cTOfb5hveBMoZ4gvcP47lNfQEzO7NQ/edit# |
||
| Mirek Jahoda | 2019-10-28 21:06:18 UTC | Doc Text | Cause: Remediation of some Audit-related rules for PCI-DSS profile produces errors because of fault in the remediation shell script which is shared between these rules. Consequence: Remediation is not performed successfully. https://docs.google.com/document/d/1K-TQCPZuUiqn7cTOfb5hveBMoZ4gvcP47lNfQEzO7NQ/edit# | .`scap-security-guide` PCI-DSS remediation of Audit rules does not work properly The `scap-security-guide` package contains a combination of remediation and a check that can result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules are marked as failed Consequently, during the RHEL 8.1 installation process, scanning of the installed system reports some Audit rules as either failed or errored. To work around this problem, follow the instructions in the link:https://access.redhat.com/articles/4537451[RHEL-8.1 workaround for remediating and scanning with the scap-security-guide PCI-DSS profile ] article. |
| Mirek Jahoda | 2019-10-28 21:08:04 UTC | Flags | needinfo?(mmarhefk) | |
| Matus Marhefka | 2019-10-31 10:06:06 UTC | Flags | needinfo?(mmarhefk) | |
| Mirek Jahoda | 2019-11-04 21:22:22 UTC | Doc Text | .`scap-security-guide` PCI-DSS remediation of Audit rules does not work properly The `scap-security-guide` package contains a combination of remediation and a check that can result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules are marked as failed Consequently, during the RHEL 8.1 installation process, scanning of the installed system reports some Audit rules as either failed or errored. To work around this problem, follow the instructions in the link:https://access.redhat.com/articles/4537451[RHEL-8.1 workaround for remediating and scanning with the scap-security-guide PCI-DSS profile ] article. | .`scap-security-guide` PCI-DSS remediation of Audit rules does not work properly The `scap-security-guide` package contains a combination of remediation and a check that can result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules are marked as failed Consequently, during the RHEL 8.1 installation process, scanning of the installed system reports some Audit rules as either failed or errored. To work around this problem, follow the instructions in the link:https://access.redhat.com/articles/4537451[RHEL-8.1 workaround for remediating and scanning with the scap-security-guide PCI-DSS profile] Knowledgebase article. |
| Matus Marhefka | 2020-02-17 13:00:41 UTC | QA Contact | qe-baseos-security | matyc |
| Matus Marhefka | 2020-02-17 13:15:11 UTC | Doc Text | .`scap-security-guide` PCI-DSS remediation of Audit rules does not work properly The `scap-security-guide` package contains a combination of remediation and a check that can result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules are marked as failed Consequently, during the RHEL 8.1 installation process, scanning of the installed system reports some Audit rules as either failed or errored. To work around this problem, follow the instructions in the link:https://access.redhat.com/articles/4537451[RHEL-8.1 workaround for remediating and scanning with the scap-security-guide PCI-DSS profile] Knowledgebase article. | .`scap-security-guide` PCI-DSS remediations of Audit rules have been fixed The remediations of Audit rules shipped in the `scap-security-guide` package have been fixed and scanning of the system installed with the PCI-DSS security policy no longer reports false positives for the Audit rules. On the RHEL-8.1 the workaround is still needed as described in the link:https://access.redhat.com/articles/4537451[RHEL-8.1 workaround for remediating and scanning with the scap-security-guide PCI-DSS profile] Knowledgebase article. |
| Doc Type | Known Issue | Bug Fix | ||
| Flags | needinfo?(mjahoda) | |||
| Mirek Jahoda | 2020-02-28 20:53:26 UTC | Doc Text | .`scap-security-guide` PCI-DSS remediations of Audit rules have been fixed The remediations of Audit rules shipped in the `scap-security-guide` package have been fixed and scanning of the system installed with the PCI-DSS security policy no longer reports false positives for the Audit rules. On the RHEL-8.1 the workaround is still needed as described in the link:https://access.redhat.com/articles/4537451[RHEL-8.1 workaround for remediating and scanning with the scap-security-guide PCI-DSS profile] Knowledgebase article. | .`scap-security-guide` PCI-DSS remediations of Audit rules now works properly Previously, the `scap-security-guide` package contained a combination of remediation and a check that could result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules were marked as failed Consequently, during the RHEL installation process, scanning of the installed system reported some Audit rules as either failed or errored. With this update, the remediations have been fixed, and scanning of the system installed with the PCI-DSS security policy no longer reports false positives for Audit rules. |
| Flags | needinfo?(mjahoda) | |||
| Mirek Jahoda | 2020-04-22 12:14:26 UTC | Doc Text | .`scap-security-guide` PCI-DSS remediations of Audit rules now works properly Previously, the `scap-security-guide` package contained a combination of remediation and a check that could result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules were marked as failed Consequently, during the RHEL installation process, scanning of the installed system reported some Audit rules as either failed or errored. With this update, the remediations have been fixed, and scanning of the system installed with the PCI-DSS security policy no longer reports false positives for Audit rules. | .`scap-security-guide` PCI-DSS remediations of Audit rules now work properly Previously, the `scap-security-guide` package contained a combination of remediation and a check that could result in one of the following scenarios: * incorrect remediation of Audit rules * scan evaluation containing false positives where passed rules were marked as failed Consequently, during the RHEL installation process, scanning of the installed system reported some Audit rules as either failed or errored. With this update, the remediations have been fixed, and scanning of the system installed with the PCI-DSS security policy no longer reports false positives for Audit rules. |
| errata-xmlrpc | 2020-04-28 00:04:28 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2020-04-28 15:30:41 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2020-04-28 15:30:41 UTC | |||
| errata-xmlrpc | 2020-04-28 15:30:59 UTC | Link ID | Red Hat Product Errata RHBA-2020:1583 | |
| Red Hat One Jira (issues.redhat.com) | 2020-11-14 04:28:14 UTC | Link ID | Red Hat Issue Tracker - Private OPENSCAP-1454 | |
| Red Hat One Jira (issues.redhat.com) | 2020-11-14 04:35:48 UTC | Link ID | Red Hat Issue Tracker - Private RHELPLAN-28152 | |
| Jan Černý | 2023-08-02 11:16:25 UTC | CC | jcerny |
Back to bug 1754919