Accepting request 1318189 from security

OBS-URL: https://build.opensuse.org/request/show/1318189
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/lynis?expand=0&rev=63

1682.patch

@@ -0,0 +1,40 @@
+From 5ee6893228b76ddf312c5256d7ab5239622a63f9 Mon Sep 17 00:00:00 2001
+From: Martin Hauke <mardnh@gmx.de>
+Date: Sun, 16 Nov 2025 11:34:40 +0100
+Subject: [PATCH] Add openSUSE Leap to EOL DB
+
+This PR adds openSUSE Leap version 15 and 16 to the EOL DB.
+
+Information gathered from https://en.opensuse.org/Lifetime
+---
+ db/software-eol.db | 13 ++++++++++++-
+ 1 file changed, 12 insertions(+), 1 deletion(-)
+
+diff --git a/db/software-eol.db b/db/software-eol.db
+index c0868a87b..e23884e1f 100644
+--- a/db/software-eol.db
++++ b/db/software-eol.db
+@@ -325,11 +325,22 @@ os:Slackware Linux 14.1:2024-01-01:1704063600:
+ os:Slackware Linux 14.2:2024-01-01:1704063600:
+ os:Slackware Linux 15.0::-1:
+ #
+-# SuSE - https://www.suse.com/lifecycle/
++# SUSE - https://www.suse.com/lifecycle/
+ #
+ os:SUSE Linux Enterprise Server 12:2024-10-31:1730329200:
+ os:SUSE Linux Enterprise Server 15:2028-07-31:1848607200:
+ #
++# openSUSE - https://en.opensuse.org/Lifetime
++#
++os:openSUSE Leap 15.0:2019-12-03:1575327600:
++os:openSUSE Leap 15.1:2021-02-02:1612220400:
++os:openSUSE Leap 15.2:2022-01-04:1641250800:
++os:openSUSE Leap 15.3:2022-12-31:1672441200:
++os:openSUSE Leap 15.4:2023-12-31:1703977200:
++os:openSUSE Leap 15.5:2024-12-31:1735599600:
++os:openSUSE Leap 15.6:2026-04-30:1777500000:
++os:openSUSE Leap 16.0:2027-10-31:1824933600:
++#
+ # Ubuntu - https://wiki.ubuntu.com/Kernel/LTSEnablementStack and
+ #          https://wiki.ubuntu.com/Releases
+ #

additional_module_blacklist_locations.patch

@@ -1,32 +0,0 @@
-Index: lynis/include/tests_filesystems
-===================================================================
---- lynis.orig/include/tests_filesystems
-+++ lynis/include/tests_filesystems
-@@ -835,15 +835,18 @@
-                     AddHP 3 3
-                     if IsDebug; then Display --indent 6 --text "- Module ${FS} not present in the kernel" --result OK --color GREEN; fi
-                 fi
--                FIND=$(${LSBINARY} ${ROOTDIR}etc/modprobe.d/* 2> /dev/null)
--                if [ -n "${FIND}" ]; then
--                    FIND1=$(${GREPBINARY} -E "^blacklist[[:space:]]+${FS}$" ${ROOTDIR}etc/modprobe.d/* | ${GREPBINARY} -v "#")
--                    FIND2=$(${GREPBINARY} -E "^install[[:space:]]+${FS}[[:space:]]+/bin/(true|false)$" ${ROOTDIR}etc/modprobe.d/* | ${GREPBINARY} -v "#")
--                        if [ -n "${FIND1}" ] || [ -n "${FIND2}" ]; then
--                            Display --indent 4 --text "- Module $FS is blacklisted" --result "OK" --color GREEN
--                            LogText "Result: module ${FS} is blacklisted"
--                        fi
--                fi
-+                for SUBDIR in "${ROOTDIR}etc" "/usr/lib"; do
-+                    FIND=$(${LSBINARY} ${SUBDIR}/modprobe.d/* 2> /dev/null)
-+                    if [ -n "${FIND}" ]; then
-+                        FIND1=$(${GREPBINARY} -E "^blacklist[[:space:]]+${FS}$" ${SUBDIR}/modprobe.d/* | ${GREPBINARY} -v "#")
-+                        FIND2=$(${GREPBINARY} -E "^install[[:space:]]+${FS}[[:space:]]+/bin/(true|false)$" ${SUBDIR}/modprobe.d/* | ${GREPBINARY} -v "#")
-+                            if [ -n "${FIND1}" ] || [ -n "${FIND2}" ]; then
-+                                Display --indent 4 --text "- Module $FS is blacklisted" --result "OK" --color GREEN
-+                                LogText "Result: module ${FS} is blacklisted"
-+                                break
-+                            fi
-+                    fi
-+                done
-             done
-             if [ ${FOUND} -eq 1 ]; then
-                 Display --indent 4 --text "- Discovered kernel modules: ${AVAILABLE_MODPROBE_FS}"

lynis-3.1.4.tar.gz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEATuqBxgMUKcQEJfvneki8cL95sQFAmeYyHwACgkQneki8cL9
-5sRiBg//cvWGO3lE+vtXyzUS4ZKUGMy08sqMS7Tso6DEYa+1N0BJUFd4oLprNFfr
-B0FmgVvuPEPKnS7vYLj9bYDV9yrlFY6O6Dkqhso2gF3o7P5FSrpjeVU7PUDRtmIH
-BTU+WpXv25/8prGSqgYUO91/B4+GLWCCcJz32jwXtX1cEiq2T8J59rlYt+NEhxmE
-o/4jMrZpeddVpKbHFuMOvGVxmtE/Uziac1VN1HgTq0zBdFQ1Zc6B75RiIjHewiKE
-GDgmBc1S/trEfeJFpJQCLVi/NTW5hCta4MZ4nn/t5Nlkeot7EUAzNX9r48DNWPK9
-ZUfm6tOKBufjeBD1b3gK0p2fWWKuNUfpLtY8U+Gs3uCjMoicqohL1Ki0XqmPEDse
-x31HTpwA5xWF0YvxywPmCTzC30LFNn5ORXY+dd3h4+yiNH42krg7BFm5Vv9IvQHq
-jMcFcQJy2g4XxUmTBMah3dTl/2woe4IDZ9RLAjc15zHNAoLVuiw3hcqwKJwcxDkJ
-Bm7ukHYxTpjs5moxfSr+gZ4BzChpFyzJG+ylAMWTQtQq1S8WW5ku74tPJZojDNGn
-SKbWXRo+seJVQzzz/g4sVKbUbyCb4KXh3ZEQpdAEaTnad4WdPpFJeKFVb1zp3sPW
-snzxFM9w0qjQNWhGvDcAbB5py2XresIhTpmxvzJwRNTagNeNL/8=
-=f15e
------END PGP SIGNATURE-----

lynis-3.1.6.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0513f62ba5ab615c4333827b804237d58cf7bd623d09e1b4918d3fc85f08fc70
+size 354692

lynis-3.1.6.tar.gz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=jJOo
+-----END PGP SIGNATURE-----

lynis.changes

@@ -1,3 +1,48 @@
+-------------------------------------------------------------------
+Sun Nov 16 10:45:40 UTC 2025 - Martin Hauke <mardnh@gmx.de>
+
+- Add Patch:
+  * 1682.patch
+    - Add openSUSE Leap to EOL DB
+
+-------------------------------------------------------------------
+Thu Oct 23 12:10:28 UTC 2025 - Robert Frohl <rfrohl@suse.com>
+
+- Update to 3.1.6
+  * Added
+    - Add notice to screen output if end-of-life state is unclear
+    - Support for CachyOS, macOS Tahoe, and OpenMandriva Lx
+  * Changed
+    - Releases are now considered to be old if they are 6 months or older
+    - Removed generic suggestion for outdated/old Lynis release, instead show to screen output
+    - Generic clarifications on variable usage for operating system and its version
+    - Updated end-of-life database
+    - Updated Japanese translation
+    - For Debian and similar systems ignore kernel packages with 'rc' state
+    - ACCT-9634 - Define default auditd log file location
+    - FIRE-4586 - Also accept NFLOG as a logging target for iptables
+    - MALW-3280 - Adjusted detection of Wazuh agent
+- Updated lynis.keyring, adding a new subkey for 0xFEBB7D1812576482: 0x7A9A1D9D5B27C6D3
+
+-------------------------------------------------------------------
+Sat Oct  4 07:01:46 UTC 2025 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- tests_binary_rpath: remove usage of egrep boo#1250997
+
+-------------------------------------------------------------------
+Tue Jul 29 07:33:22 UTC 2025 - Robert Frohl <rfrohl@suse.com>
+
+- Update to 3.1.5
+  * Added
+    - Support for OpenWrt
+    - Bitdefender detection on Linux
+    - Detection of openSUSE Tumbleweed-Slowroll
+  * Changed
+    - Corrected detection of service manager SMF
+    - Extended GetHostID function to allow HostID and HostID2 creation on OpenWrt
+    - Check modules also under /usr/lib/modules.d
+- Drop additional_module_blacklist_locations.patch: accepted upstream
+
 -------------------------------------------------------------------
 Tue Jan 28 12:22:48 UTC 2025 - Robert Frohl <rfrohl@suse.com>
 
@@ -999,7 +1044,7 @@ Sat Mar 28 10:27:12 CET 2009 - saigkill@opensuse.org
   BIND, PowerDNS, SSH, Exim, and nginx
 
 -----------------------------------------------------------------
-Tue Mar 17 2009 20:32 CET - mrdocs@opensuse.org
+Tue Mar 17 20:32 CET 2009 - mrdocs@opensuse.org
 
 - added 1.2.4 release
 - This release adds more than 30 new tests,

lynis.keyring

@@ -1,5 +1,4 @@
 -----BEGIN PGP PUBLIC KEY BLOCK-----
-Version: GnuPG v1
 
 mQINBGDRds0BEAC4XJX2CtSzyZWmVTn5waHSpu/Bfzs8qb9K4IALEtds5LKnvoGV
 7gK1fC8gbN2mY9dfuhcTxuLg8G37MROWjY2KAANfjmFUT/MTOE13/uhggg3/Q23U
@@ -13,74 +12,76 @@ IdzNQnUWtbIQa2byObzDd8ihQq5sEY03OINlIAFlQTXiKfcav9E5MX/L0ggwRtgB
 GKo2A8FfifBzehkjRkeu828xPx2Lff56bkjtpMwPZjlzZfs159zHcfXFS3e+zmU3
 Wvs4FLutsjkVOkmwihitV2fn1VuMfKidpDBd6PmC9bNNrm1zRAS2tgRxqwARAQAB
 tC1DSVNPZnkgc29mdHdhcmUgc2lnbmluZyA8c29mdHdhcmVAY2lzb2Z5LmNvbT6J
-Aj4EEwECACgFAmDRds0CGwMFCRLMAwAGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheA
-AAoJEP67fRgSV2SCuFYP/A2vVOb/XUVlOgQGrfkOMSEDBxKBVcftBmmHG9osIa9t
-0JxRcT4lZoHubQdcoPi0DrXBaxQ6huss2uLO8qA7GktjIRq71XPNkWE35i9obH/H
-fd4zVifM0154JdTpGV1Ah4ZkJ0uS9+8q+PSehiztuZLFQvAoPwnS4QFve3i6zgdY
-Gb3zVyT7QlwVSPI7JZg3Hp8FBEylkvrmPu29ISTMT8C0NmEKvzLtxqYFAi5sD4mj
-ldD3tK0eIRe8ksCLTTMaUzgFubqA1Ik+JtjDR/Y+2+SbBkFQdokf5gTg2ysuSxM3
-vNFIyX3TPXlSYVAapLZpC/fvH/wFrTwfyEcHTEzvFx+2qU/BSfeeZ3eTSc0XO29c
-eNYTBObR+WrPdVEPHizlAfRDj0m8NWzbBWfCdFWiZOfNQAp/cunETPv6Oj2uuoiT
-h7/Z09WPrvvDmtHNyD6fvUL90dGK9/x8An2zoJz4jk/qIotDXL34ZsXPD23O2zxd
-ASOmI0nXqYEElAONpB8K/GPVmNVatEqu7fTXtfFz4buiaxCZdrzY8QkBtY/tA6H/
-O7Ln2Oz5DBBeGWvd4wT0lajrQtE7Qx8dQEt185MztKNrP/2gbZzgbKNWN06lN9V8
-Of59oIBycPsFrYhmAMdNp6FaZt9+ndAhCjVmze59Vo3b0JN/eqjV/YeDoWNOefFn
-uQINBGDRds0BEADNjOgAEz4azwlpR+lC5T5b3xVGclct0S1BxfZw4scj/7hIjPlJ
-tX288Kj8fs8L0vIKUY7IW2Y2bePKAkjnIdOsV86DTHDOGW99um61trHGP2Y1KLYP
-6/amDPSOTELn5+U88B2RpXr7xXD14fqdnM46GOM+7FORxOe3pdmeCuoyDDfXZ43Z
-gmYl6R0Ioo3+LsFrn74vlVGSzjBW+F6alZpACW6ZET3iM5wDhrxBP9GybIMkpLKo
-NVNu9WdHv9WtJ1cnqgyM70EAKbAKddRqGwOf80reFzP+TcdmGzXUWbWt2T+bs34L
-nczLjJNB7sl3k8ArLZtrKxRsoAD7vvCh981mHCLGU8kS7Tf6tALJYcVgFVLjX4N1
-ASF3525AKfOE4yOGWvbKDNQP0rJe8nFrDLtikAhmPt346D4tArZGzwuuzzOAca76
-WB9w45wS5w6lIejRft961FeHvqm6r8OE+rS5w6J/NH5vFMm425cwHY1O3u7x1y0I
-k3VrOZ6OJ1WU3WTqkCGKtBWBU2hkx4BbwZD6l/f523iS9tgxlUVoNud08fQQTwRY
-s4T7oSZ1xbZsHHe/LzwhdQojTc2uMETcTDX9GUDePoVohELzVlMAeQm5mvWFUQ87
-rsgbo3/iEH2u/jeqaM4Q6QeNcEtw1VJ6I0LiSb39TlBpZsw9atC0DOxHXQARAQAB
-iQIlBBgBAgAPBQJg0XbNAhsMBQkSzAMAAAoJEP67fRgSV2SC/EQQAKmvxewbYCtN
-5kQ6BadCeE2IrtV/yyaz2r0vIMI0jtA1F5n/IYbR/5gVUWLphBL7hKw+Jn9oMqV4
-yymCvY0N4faqqIW0QElp1seTCCFzbVhYC9Hv9vWgfHZhXUDTm6WE/vAwl3BYS/p8
-KSyMIdkmParxWbHV0k6tzyVuV3hYMQD8GsHq4i4/TjJtfh2fNKh4lAaxuUoifpBF
-te+3YI5GSKXSSTm2fxAIXoWPnpFTh+VTcTu5Sv7pbR6YT0vFM04V3DPVhNO1l72o
-UEA6ubSf1gys03CQ4/yK1k9kBJ3RAGK0nLZbB4cSQD2Lu7KCG3jakpzUiu38Gn/X
-Nz7aU78Qnj0VzSL7Ko3Eg0g3TURG+UE4JYE3qUnU/++V43HkGaoh9Cq+ytE6wPAE
-GC2j660sI5+TN+hZURUqmyU8sFdviskXQnlJztnEY5tVsoh6JuKEykcBj9jgyvNg
-TaA7HAC/Qh2zuEJ4OA0al+IDhMLfWwhhop2+ghy7yF4zHC/VnCaQ+O7+ZIfnIsRW
-gpBHTkl70uTlG64crM7RDxGVIgO5O6HIZ+Fu3HIAM6AWtPjkv8XQ/g8x3NnSor40
-E8DeW45fjk/Onh/bs0zyGN6XuZPU2L7aogTF3gP0wxkU0r96r8z+BOqmT6lD4mOL
-uSeVcIqCYWRC7bhk2ySSo/oC9QhN3CBluQINBGDRdy0BEACywPYrQsu7xn4VhI8t
-F3sEmyWB6S5n2SlVMoc8/PUALboNJJ7msiga30jERUm1wNvTt2Cb5vJU+O8yLi8h
-F44MeNoDX1rvqTO81sFJbadM59hqTCBN0LUhndcyJo8aKxxaRDhtVs07OwhDvWMW
-Ed87qOP5LZe+onFUQMMfwzr+PhYBum1Bg3YjFd0C13UsTvpGE+Rk5dZxUCojpyON
-7KfrNtKEdSLGgzxTEOi1a44OuyN0fLdat4T7tCpJAvXgp7N6XXy7QqKNMWEUXwTv
-MIZ2UXVj5SB92Op/scMJLVqaB1RBmsd82okT0fQDKnWfFYGwBoYBBh7h/LpYTAR3
-Kik3fFqZygtn9tliZmt1C4h4KpD6t+QLt6/Rq64q65WgS+YKAR0S92xCPSMek81P
-MPReQFMT/lNLJdwrO3bxQv6oTd5PGg6mYo7O3djpBT7EpdRQhS+iqcWMGoL24D0m
-Mle3J4gaMhDIYy9vxi3oaODu270PTyW3o2gHw8x1smdPclyDT4gYTu+a97kVMhMc
-yohBRC/TqjYTKXPX1YjREg1ChhJ5DkWNFuyK36YH9Dby6SlqtHyT8GHHpE1WQF2T
-zxkfZvl4g4nDLZkaYBvYl8w5evaRN0wcgIYknFHAq1ew+bE8jtrkd7j3+XRuEK4P
-KCjkK2502EUuqnrTuNHVM6roPQARAQABiQREBBgBAgAPBQJg0XctAhsCBQkSzAMA
-AikJEP67fRgSV2SCwV0gBBkBAgAGBQJg0XctAAoJEJ3pIvHC/ebEigwP/0VR8Dkm
-522ZbR2ipAoEz/GNFRfJQ+an4GOOVs2DEubKyUFmTzxs6TAxncATwFWoSPgd+xtK
-NMJbmL9NeHAR7nfrgHrw+fn/HAaGIjBLXZAjqZidOg9+wvqNuTTz7UCYmezvZZqk
-55+dIT8gTXekRlS5vZk2bH+kUxK7v2tFfWY38nvDDL7qeUuJDoIXGHZeYHDsDMcI
-kFtxYmFEI1f4abP1RnkC6IwbKsIo8vqD3eIJFO2oPPrgDg+zF/0KNF4RQlUqgng4
-iZ5FakqsqSh8uGplzMjzTRjNc1dNXmsI3n7G9O973/ZmpPyhHFVpI9J39IkAWmXg
-d2en/mxGKkXh6XOOWVvgSwZ/2aWFLYsKWBukCiN5KaS/HpO8zCf3LkvqzyvcW9JO
-ILK45e4r8gVMefp1NmCdE0Ww9khzpimqosQHu4jt/Pc9l/2ImKDoX5hvPHkjuw71
-jhJCDSoAe5jWkjIdzS61pB3SQUmjIfWbVrmc/LsxzVncKGzMisrUNVH7t8U4wn0Q
-+x0R4NvIiK/Ws5FxiYTaCf7oIoZX9nKtGz5SD/WE04QDmoXymweyr1qoxa5H/YPp
-pTZSFrSEHCxIlL07/RDC8alA6EhBa+WuP/9fRlFf04mOLIYmmMfKAg9t8RGvqwFm
-oMHUTikoJkEgOlaiZyLpV+beXCC4w7G/xKdWGmwP/igj3rCx0IOzfrMuyGxILBPd
-ZrHTQ+FMjI9m+bQ2ci7eBH0fuxgM5FDDwu4+0XutbXkhruVPSxRPt3yC3ouQsSi8
-GDi43AxEfHoWliFs5kLlqCArJdIMugiKICEjrUKYLIEcJnkdcPr+vt/0YXLNTEWZ
-dmK/dU5Qm52BjK92zuO3H2+Heh5XHbJCNUE75hd0I4GLjJR+CBCAK1OqvS8m6Lq5
-PCWfrAWyTf6AxEXdIAcwAp2igJXE3NR9vpi3mWwXkAvT3dkGkvIoyp6qUdBxglT7
-ifl0EFl8l2ehy7QwTHMF6X2Y3LYTOdn39rQIF789HMW1iolB0CNyULDnEA3cawQg
-puTke/XlZpIMhVLL44UpEhMVZ9/20OgKxwP/1q2/iirZVdzqQCYRxKluPyAb0FOU
-IbQUOA5QdK8EEwPwAH2HGRk4LsF7xdXPlep2OQObIAjMs9WPbveexdFGiUG/xSPr
-NaDpFc+DXX94/hJO9NsUwdI8gN1H+r9fxBZ4a8UHzceMD12Wct4N2wLPZX4MCHYD
-bGMmGF0SC2eFOFK7Nn2/emJjjnr15VAgDOKknzFo16lvY7LV6pywNsUsSnPB1bGH
-bisG6mkdkW7nPsL0d2w4yz+lL9R7yQjvS1Z8hMeTxbzr6OZdgF4rMxpPclTOaAj9
-4qEb1toWkgrwUmMepzoG
-=PBwG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+=crD4
 -----END PGP PUBLIC KEY BLOCK-----

lynis.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package lynis
 #
-# Copyright (c) 2025 SUSE LLC
+# Copyright (c) 2025 SUSE LLC and contributors
 # Copyright (c) 2009-2013 Sascha Manns <saigkill@opensuse.org>
 #
 # All modifications and additions to the file contributed by third parties
@@ -23,7 +23,7 @@
 %define _pluginsdir       %{_datadir}/lynis/plugins
 %define _dbdir            %{_datadir}/lynis/db
 Name:           lynis
-Version:        3.1.4
+Version:        3.1.6
 Release:        0
 Summary:        Security and System auditing tool
 License:        GPL-3.0-only
@@ -49,8 +49,8 @@ Patch0:         %{name}_1.3.5_lynis.diff
 # PATCH-OPENSUSE-FIX -- thomas@novell.com - modifying for openSUSE
 Patch2:         %{name}_1.3.1_include_consts.diff
 Patch5:         %{name}_1.3.6_include-osdetection.diff
-# https://github.com/CISOfy/lynis/pull/1215
-Patch6:         additional_module_blacklist_locations.patch
+# PATCH-FIX-UPSTREAM -  gh#CISOfy/lynis#1682 mardnh@gmx.de
+Patch6:         https://github.com/CISOfy/lynis/pull/1682.patch
 BuildRequires:  gcc-c++
 BuildRequires:  libxml2-devel
 Requires:       bash
@@ -78,7 +78,7 @@ most interesting parts useful for audits, like:
 %patch -P 0
 %patch -P 2
 %patch -P 5
-%patch -P 6 -p1
+%patch -p1 -P 6
 
 %build
 

tests_binary_rpath

@@ -36,7 +36,7 @@
 	for FILE in $(find / -xdev -type f \( -perm -0100 -o -perm -0010 -o -perm -0001 \) 2>/dev/null)
 	do
 		((FILENUM++))
-		for RPATH_VAL in $(objdump -p "$FILE" 2>/dev/null | egrep -w '(RPATH|RUNPATH)' | awk '{ print $2 ":"}')
+		for RPATH_VAL in $(objdump -p "$FILE" 2>/dev/null | grep -E -w '(RPATH|RUNPATH)' | awk '{ print $2 ":"}')
 		do
 			if [ "${RPATH_VAL:0:7}" = "\$ORIGIN" ]; then continue; fi
 			while [ -n "$RPATH_VAL" ]