Bug 529851 - audit package upgrade for RHEL5.5
Summary: audit package upgrade for RHEL5.5
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: audit
Version: 5.4
Hardware: All
OS: Linux
Target Milestone: rc
: ---
Assignee: Steve Grubb
QA Contact: BaseOS QE Security Team
Depends On:
Blocks: 5.5TechNotes-Updates
TreeView+ depends on / blocked
Reported: 2009-10-20 13:14 UTC by Steve Grubb
Modified: 2018-12-07 14:14 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: Rebase: Bug Fixes and Enhancements
Doc Text:
Clone Of:
Last Closed: 2010-03-30 08:20:03 UTC
Target Upstream Version:

Attachments (Terms of Use)

System ID Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2010:0228 normal SHIPPED_LIVE audit bug fix update 2010-03-29 12:35:46 UTC

Description Steve Grubb 2009-10-20 13:14:08 UTC
Description of problem:
The audit package should be rebased in the 5.5 release cycle to the 1.7.16 release. The current change log is here:


Since 1.7.13 (RHEL5.4) some of the highlights are:

* Allow ausearch/report to specify multiple node names (needed for remote logging)
* Make auparse handle empty AUSOURCE_FILE_ARRAY correctly (was segfaulting)
* In auditctl rules allow a0-a3 to be negative numbers
* Add audit.rules man page
* In auditd reset syslog warnings if disk space becomes available
* Correct checking of != operator in audit_rule_fieldpair_data
* and many remote logging code improvements

Version-Release number of selected component (if applicable):

Comment 4 Steve Grubb 2009-12-08 21:12:00 UTC
audit-1.7.17-1 was built to resolve this issue.

Comment 8 errata-xmlrpc 2010-03-30 08:20:03 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Note You need to log in before you can comment on or make changes to this bug.