Bug 483608
Summary: | audit updates for 5.4 | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Steve Grubb <sgrubb> |
Component: | audit | Assignee: | Steve Grubb <sgrubb> |
Status: | CLOSED ERRATA | QA Contact: | BaseOS QE <qe-baseos-auto> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 5.4 | CC: | ofourdan, ohudlick, rlerch, tao |
Target Milestone: | rc | Keywords: | Rebase |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Rebase: Bug Fixes and Enhancements | |
Doc Text: |
The audit package has been updated to version 1.7.13. This update provides many bugfixes and enhancements, most notably:
* audit can now handle interlaced records.
* On bi-arch systems, a warning is now emitted if audit rules do not cover both 64 & 32 bit system calls of the same name. This warning is designed to assist troubleshooting audit rules.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2009-09-02 09:50:23 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Steve Grubb
2009-02-02 16:15:57 UTC
There was another bz filed, 495711, which found a regression in the audit rules. Need to make sure that errata testing includes running the SGI test suite from their eval since it caught the problem. The current upstream audit package has this bug fixed, but we just need to make sure it stays fixed. audit-1.7.13-1 was built for this issue. Release note added. If any revisions are required, please set the "requires_release_notes" flag to "?" and edit the "Release Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: The audit package was rebased to the newer upstream version 1.7.13. A couple of the bug fixes that it provides include: * The user space audit tools could not handle interlaced records. * On biarch system, a warning is now emitted if audit rules don't cover both 64 & 32 bit syscalls of the same name. This is to aid in finding rules that are not auditing what was intended. Release note updated. If any revisions are required, please set the "requires_release_notes" flag to "?" and edit the "Release Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. Diffed Contents: @@ -1,5 +1,5 @@ -The audit package was rebased to the newer upstream version 1.7.13. A couple of the bug fixes that it provides include: +The audit package has been updated to version 1.7.13. This update provides many bugfixes and enhancements, most notably: -* The user space audit tools could not handle interlaced records. +* audit can now handle interlaced records. -* On biarch system, a warning is now emitted if audit rules don't cover both 64 & 32 bit syscalls of the same name. This is to aid in finding rules that are not auditing what was intended.+* On bi-arch systems, a warning is now emitted if audit rules do not cover both 64 & 32 bit system calls of the same name. This warning is designed to assist troubleshooting audit rules. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHEA-2009-1303.html |