Hide Forgot
http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/audit.html </div></li><li class="listitem"><div class="para"> Previously, the "autrace -r" command on the IBM System z architecture attempted to audit network syscalls not available on IBM System z. Consequently, an error similar to the following might have been returned: </div></li><li class="listitem"><div class="para"> Error inserting audit rule for pid=13163 </div></li><li class="listitem"><div class="para"> With this update, "autrace -r" is now aware of system calls not available on this architecture, which resolves this issue. (<a href="https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=697463">BZ#697463</a>) </div></li><li class="listitem"><div class="para"> The first item claims to be followed by an example, so the example (Error...) and rix should not be bullets as they are not members of the list of bugs. "In addition" is not a bullet. Additionally, the audit packages are updated (rebased) to the upstream version 2.1-1. (<a href="https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=584981">BZ#584981</a>) This rebase provides the following bugfix: </div><div class="itemizedlist"><ul><li class="listitem"><div class="para"> autrace now uses the correct syscalls on i386 systems </div></li><li class="listitem"><div class="para"> In addition, the rebase provides the following enhancements: </div></li><li class="listitem"><div class="para"> Added support for new event types related to virtualization, netfilter, the mmap syscall, key based authentication, and cryptographic session establishment.
Fixed in: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/audit.html#RHBA-2011-0653 Thank you for reporting this issue, Martin