Bug 1829761

Summary: Rebase OpenSCAP in RHEL 8.3 to the latest upstream version
Product: Red Hat Enterprise Linux 8 Reporter: Evgeny Kolesnikov <ekolesni>
Component: openscapAssignee: Jan Černý <jcerny>
Status: CLOSED ERRATA QA Contact: Matus Marhefka <mmarhefk>
Severity: medium Docs Contact: Mirek Jahoda <mjahoda>
Priority: medium    
Version: 8.2CC: ekolesni, jafiala, jcerny, lmanasko, mhaicman, mjahoda
Target Milestone: rcKeywords: Rebase
Target Release: 8.3   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: openscap-1.3.3-1.el8 Doc Type: Enhancement
Doc Text:
.*OpenSCAP* rebased to version 1.3.3 The `openscap` packages have been upgraded to upstream version 1.3.3, which provides many bug fixes and enhancements over the previous version, most notably: * Added the `autotailor` script that enables you to generate tailoring files using a command-line interface (CLI). * Added the timezone part to the Extensible Configuration Checklist Description Format (XCCDF) TestResult start and end time stamps * Added the `yamlfilecontent` independent probe as a draft implementation. * Introduced the `urn:xccdf:fix:script:kubernetes` fix type in XCCDF. * Added ability to generate the `machineconfig` fix. * The `oscap-podman` tool can now detect ambiguous scan targets. * The `rpmverifyfile` probe can now verify files from the `/bin` directory. * Fixed crashes when complicated regexes are executed in the `textfilecontent58` probe. * Evaluation characteristics of the XCCDF report are now consistent with OVAL entities from the `system_info` probe. * Fixed file-path pattern matching in offline mode in the `textfilecontent58` probe. * Fixed infinite recursion in the `systemdunitdependency` probe.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2020-11-04 02:29:43 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Evgeny Kolesnikov 2020-04-30 09:41:37 UTC 
Description of problem:

Latest upstream version of OpenSCAP fixes bugs reported in RHEL and provides new features requested by customers and community. It also fixes a large amount of issues reported upstream. The API/ABI is fully compatible with previous release shipped in RHEL 8.2.

Notable changes are: Support for yamlfilecontent OVAL check, hybrid offline mode for OVAL probes, script for CLI tailoring (autotailor), support for 'kubernetes' remediations.

Version-Release number of selected component (if applicable):
-

How reproducible:
always

Steps to Reproduce:
1. rpm -q openscap

Actual results:
Outdated version of OpenSCAP.


Expected results:
Latest upstream version of OpenSCAP.
Comment 1 Evgeny Kolesnikov 2020-04-30 09:42:44 UTC 
A new version has been released in upstream:
https://github.com/OpenSCAP/openscap/releases/tag/1.3.3
Comment 16 errata-xmlrpc 2020-11-04 02:29:43 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (openscap bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:4623