pool/openscap
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 189e79eb96 - openscap-1.0.8 update: - fixes related to Asset Reporting Format - Inject arf:report/@id into nested rule-result/check/check-content-ref/@href - Add hostname for each fqdn when generating ARF asset identification data - Add all MAC addresses from target-facts to ARF as asset identification data Marcus Meissner 2014-03-28 13:27:20 +00:00
  • a3587e8652 Accepting request 226975 from security Stephan Kulow 2014-03-22 08:09:03 +00:00
  • 5e1b16f041 - openscap-1.0.7 update: - fix namespaces for attributes in ARF relationship element - Avoid ".00" as the score in HTML report when score is 0. Marcus Meissner 2014-03-21 12:47:33 +00:00
  • 0992278369 - openscap-1.0.6 update: - fix process58 loginuid integer handling on 32bit Marcus Meissner 2014-03-19 09:17:18 +00:00
  • cf57fd64ae Accepting request 226350 from security Stephan Kulow 2014-03-18 13:15:47 +00:00
  • 11106b3f8b - openscap-1.0.5 update: - XCCDF titles and description support xccdf:sub resolution - HTML Report lists only applicable cpe platforms - TestResult element contains applicable cpe platforms - Introduced XCCDF 1.2 schematron validation - XCCDF bug fixes - tailoring profiles shall regards inherited refine-values (trac#373) - rule-result now always includes at least one check - Other bug fixes: - Dpkginfo probe collects epoch in evr - Updated examplary openscap-content based on the latest facts from Red Hat Enterprise Linux 6 - Minor changes Marcus Meissner 2014-03-17 07:13:53 +00:00
  • 69e5a7fc08 Accepting request 222332 from security Stephan Kulow 2014-02-15 07:06:13 +00:00
  • 92e2ce9219 - openscap-1.0.4 update: - Introduced xccdf_tailoring_remove_profile to API - OVAL bug fixes Marcus Meissner 2014-02-14 10:23:10 +00:00
  • b7683e12a4 Accepting request 213907 from security Stephan Kulow 2014-01-14 20:51:03 +00:00
  • 61c5603ba0 - fix-return.patch: removed, has upstream fix Marcus Meissner 2014-01-14 17:14:46 +00:00
  • 6045eedad2 - openscap-1.0.3 update: - bug fixes - a few coverity issues - a few memory leak plugs - broken comparison of huge integet in OVAL Marcus Meissner 2014-01-14 16:43:45 +00:00
  • 39f19cfd0f Accepting request 213430 from security Stephan Kulow 2014-01-10 20:21:38 +00:00
  • bef795226a - fix-return.patch: Fixed a void return Marcus Meissner 2014-01-10 11:01:03 +00:00
  • 78aa0d74d6 OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=93 Marcus Meissner 2014-01-10 10:41:10 +00:00
  • 4ef63de556 - openscap-1.0.2 update: - XCCDF generate fix now supports tailoring file - XCCDF bug fixes - Generate guide points to RHSA pages (rhbz#1018291) - Generate report ommits remediation when assesment passed (rhbz#1029879) - $PATH variable is available for SCE checks (rhbz#1026833) - Tailoring of top-level Group elements via API fixed - Fix-filtering should not drop fixes (affected SSG) - Generated fix file is created with sane permissions (trac#362) - Inherit parent's namespace when exporting oscap_text with HTML trait - OVAL bug fixes: - Handful of xinetd probe fixes - Handful of process and process58 fixes - Obsoleted textfilecontent now supports text ent comparisons - rpm*_item/epoch is reported as '(none)' when needed - Fixed dozen of flaws in ipv4 and ipv6_address comparison (CIDR handling) - Made integer and floating type number parsing much stricter - Fixed floating point numbers comparisons (trac#366) - Fixed case-insensitive comparisons - Item filtering fixes in probes - Consolidated some of comparisons in results model and probes (trac#367) - Other bug fixes: - Workaround libxml2 bug handling x509 xmldsig (gnomebz#350248) - Fixed static build (--disable-shared) - Format assertions (-Werror=format-security) turned on by default - SCE scripts are notified when parent (oscap) is killed Marcus Meissner 2014-01-10 10:26:02 +00:00
  • 9da4a98f56 Accepting request 209232 from security Stephan Kulow 2013-12-03 13:26:49 +00:00
  • 8144982cda - move the gconf probe to openscap-extra-probes to reduce dependencies of the core probe set. Marcus Meissner 2013-12-02 16:54:33 +00:00
  • 41f05103c8 Accepting request 208809 from security Stephan Kulow 2013-11-28 15:51:52 +00:00
  • 44e3357a41 - openscap-1.0.1 update: - versioned interface is used to handle internal SCE plug-in - build-in gnulib package was updated to current version - bug fixes: - selinux_domain_label and posix_capability properties were reintroduced to OVAL system characteristics model - selinux_domain_label now collects the domain/type (not the context) - oscap oval collect reports progress on stdout (not on the stderr) - typo in the manual page (rhbz#1032537), and another small clarification Marcus Meissner 2013-11-28 12:57:38 +00:00
  • e64c4adb66 Accepting request 207593 from security Stephan Kulow 2013-11-20 09:48:55 +00:00
  • 61eba0b7be - new library major version 8 Marcus Meissner 2013-11-19 14:21:52 +00:00
  • 5ee9f9d332 - openscap-1.0.0 / 19-11-2013 - Improved heuristic to distinguish 'local' and 'remote' file systems - Improved comparison of EntityStateEVRStringType (trac#355) - Link against librpm (if available) to include rpmvercmp (on other platforms we fall back to the build-in rpmvercmp) - Bug fixes - openscap-0.9.13 / 08-11-2013 - Moved SCE to separate shared library (libopenscap_sce.so) - Introduction of scap-as-rpm tool - Improvements of sql and sql57 probes - Improvements of SELinux policy - Amendments based on SCAP 1.2 Errata (sp800-126r2-errata-20120409.pdf) - Minor improvements in state_entity processing - Introduction of CPE name for Fedora 21 to the internal dictionary - Added support for ind-def:pid/@xsi:nil (rhbz#1013011) - Improved error reporting - Bug fixes - Changed CPE name regex to be more permissive - avoided reports from the library to the stdout and stderr - plugged several memory leaks - improved xccdf:check-content-refs processing - misspelling in syslog message (rhbz#1021695) - fixed OVAL's <field> element processing - fixes based on static analysers - test suite is locale independent Marcus Meissner 2013-11-19 12:51:39 +00:00
  • 374dd718e3 Accepting request 202982 from security Tomáš Chvátal 2013-10-11 14:40:01 +00:00
  • 2ac55a0bb1 - Updated to 0.9.12 - tailoring improvements (@id, version, and benchmark ref attributes) - XCCDF 1.1 tailoring extension - improved robustness of CPE dictionary parser and exporter - and added misc CPE 2.3 elements - added Fedora 20 to internal CPE dictionary - updated OVAL's results_to_html stylesheet from Mitre Corporation. - profiles with duplicate selects (same @idref) now export correctly - test improvements - bug fixes - fixed IPv6 export in TestResult/target-address - consistently inject target-id-ref into TestResult in ARFs - improved rpmdb manipulation (rhbz#999903) - solaris build fixes - spelling of name of default language fixed (oscap_text related) - fixed CPE names matching (generalization vs. specialization) Marcus Meissner 2013-10-11 13:24:48 +00:00
  • ae274832cd Accepting request 183561 from security Stephan Kulow 2013-07-18 15:32:45 +00:00
  • f91430ce81 - Updated to 0.9.11 - bugfixes - Updated to 0.9.10 - bugfixes - Updated to 0.9.9 - --oval-results also exports CPE OVAL results - added --benchmark-id to select a component-ref by ID of Benchmark it's pointing to - OVAL variable_instance processing (or so called value multiset) and the processing of @variable_instance attribute to OVAL Result Definition, OVAL Result Test and Collected Objects. - improved test coverage of OVAL variable processing - introduced new internal data type: oval_smc - added support for evaluating OVAL definitions against an RPM database, a.k.a. rpm database offline mode - bug fixes and dead code removal Marcus Meissner 2013-07-17 15:31:02 +00:00
  • 7269f143e2 Accepting request 179323 from security Stephan Kulow 2013-06-18 08:34:22 +00:00
  • f98fb7e2ab added libattr-devel br Marcus Meissner 2013-06-17 12:37:59 +00:00
  • 1fb68dee49 - updated to 0.9.8 - added experimental support for offline mode scanning to the OVAL check engine (i.e. scanning of virtual host disk images) - improved OVAL variables processing - bug fixes and dead code removal - fix-missing-include.dif Marcus Meissner 2013-06-17 11:45:11 +00:00
  • 628415a8ab Accepting request 174618 from security Stephan Kulow 2013-05-07 13:17:06 +00:00
  • 973b9bbcd4 Accepting request 174495 from systemsmanagement:spacewalk Marcus Meissner 2013-05-06 11:09:31 +00:00
  • d4e59709ba - updated to 0.9.7 - bugfixes Marcus Meissner 2013-04-29 09:21:46 +00:00
  • 40e9effbfc Accepting request 173371 from security Stephan Kulow 2013-04-26 05:41:33 +00:00
  • 4adf9ac3de - updated to 0.9.6 - new command-line module added as preview: "oscap ds sds-add" - improved xccdf:fix processing (support of DataStreams and CPE) - internal selinux policy preview - added Fedora 19 to default CPE dictionary - bug fixes Marcus Meissner 2013-04-25 11:31:14 +00:00
  • e00b631cc7 Accepting request 161603 from security Stephan Kulow 2013-04-02 10:33:27 +00:00
  • d4b10797b3 - bumped SOVERSION from 2 to 3. Marcus Meissner 2013-03-21 09:35:54 +00:00
  • a7e6da3567 - updated to 0.9.5 - oscap xccdf remediate (new oscap module which introduces offline remediation; the remediation based on existing xccdf:testresult file) - added support for sce into datastream (sce scripts can now be embedded into the datastream file similarly as oval can) - improved bash completion and documentation - bug fixes Marcus Meissner 2013-03-20 10:08:56 +00:00
  • 6735435aa3 Accepting request 157811 from security Stephan Kulow 2013-03-08 08:28:20 +00:00
  • 2a2ef2800b - DOWNGRADED SOVERSION from 3 to 2. Marcus Meissner 2013-02-27 09:22:01 +00:00
  • d92845f535 - updated to 0.9.4 - high Level API - improved Text Substitution Processing - technical Preview of Online Remediation Execution (the oscap xccdf eval --remediate) - improved Library Internal Error Reporting. - the oscap xccd export-oval-variables now support DataStreams. - improved documentation - improved schema files. - tailoring file support - profile shadowing support - bug Fixes Marcus Meissner 2013-02-27 08:54:24 +00:00
  • 29b8a93bd3 Accepting request 147554 from security Stephan Kulow 2013-01-10 12:47:57 +00:00
  • 66cd53bece OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=65 Marcus Meissner 2013-01-08 14:15:34 +00:00
  • 3022bc5f44 - bumped SOVERSION from 2 to 3. Marcus Meissner 2013-01-08 11:16:23 +00:00
  • 54ce671d5f - updated to 0.9.3 - Embedded CPE dictionary (allows users to ommit --cpe argument) - improvements of DataStream and CPE processing on RHEL5 - changed API of various functions in cpe_dict, benchmark and xccdf_policy to use string timestamp instead of time_t [1] - fixed several issues found by Coverity and cppcheck static code analysis - bug fixes Marcus Meissner 2013-01-08 10:49:19 +00:00
  • 8ca61008e9 Accepting request 142947 from security Stephan Kulow 2012-11-28 10:44:51 +00:00
  • 37a54ac362 OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=61 Marcus Meissner 2012-11-19 16:00:06 +00:00
  • 657a772e04 - updated to 0.9.2: - rewritten the heuristic for pattern matching on path and filepath - CPE 2.3 language applicability testing - new ds_sds_index API providing a datastream overview - CPEs in source datastreams are automatically registered and used for XCCDF evaluation - --cpe option autodetects CPE dictionary and language - CVE support (validate feed, print CVEs) - introduced info module - made "$oscap xccdf generate custom" work again -> man page update - bug fixes Marcus Meissner 2012-11-19 15:47:31 +00:00
  • ff3916539d - updated to 0.9.1: - the http in the check-content-ref/@hrefhref support - the cpedict support - obsoleted the oscap_reporter - send start and finish messages to the syslog - the XCCDF multi-check evaluation support - "oscap oval validate-xml" autodetect a document type - bug fixes Marcus Meissner 2012-10-25 14:28:29 +00:00
  • c6e1dd2fce Accepting request 136321 from security Stephan Kulow 2012-10-03 07:21:12 +00:00
  • 3bd4726560 disable python Marcus Meissner 2012-09-28 08:12:19 +00:00
  • 43c9e63728 - libopenscap.so major version changed from 1 to 2. Marcus Meissner 2012-09-28 08:02:10 +00:00
  • 7d747c4369 - updated to 0.9.0: * few public headers were renamed to follow common schema * cve and cce modules are not build by default -> these modules are not utilized by oscap tool and thus untested. * --enable-bindings configure option was split into --enable-python and support of SCAP datastream support was improved * plus fixes in OVAL and XCCDF modules. oscap tool reports support of XCCDF 1.2 and OVAL 5.10.1 Marcus Meissner 2012-09-28 07:55:55 +00:00
  • 1ac17a27a7 Accepting request 134109 from security Ismail Dönmez 2012-09-14 10:32:43 +00:00
  • 5a6f8aeeca - updated to 0.8.5: - added rpmverifypackage probe - added initial support for source and result datastreams - added xccdf 1.2 dc-status support - several probes were updated to conform to OVAL 5.10.1 - bug fixes This release is able to evaluate the DISA STIG content. Marcus Meissner 2012-08-29 07:56:51 +00:00
  • 148d0a09d8 Accepting request 130325 from security Ismail Dönmez 2012-08-07 19:50:50 +00:00
  • 6fcae95a10 OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=51 Marcus Meissner 2012-08-07 12:59:02 +00:00
  • bb02132874 - updated to 0.8.4 - added OVAL schemas 5.9, 5.10.1 - alloc.h is no more public api - bug fixes Marcus Meissner 2012-08-07 12:58:20 +00:00
  • 0f0b560bde Accepting request 129892 from security Stephan Kulow 2012-08-04 19:44:36 +00:00
  • eb783a4d92 Accepting request 129774 from home:dmacvicar:branches:security Marcus Meissner 2012-08-04 07:37:50 +00:00
  • 4fc01b8bfd Accepting request 129599 from security Stephan Kulow 2012-08-04 07:22:55 +00:00
  • 6b9bdd29b4 rpmverify as wildcard, as older versions dont have it Marcus Meissner 2012-08-01 15:30:01 +00:00
  • 687c3ed211 OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=45 Marcus Meissner 2012-08-01 12:27:52 +00:00
  • a40bde38a5 Accepting request 129551 from home:dmacvicar:branches:security Marcus Meissner 2012-08-01 11:50:20 +00:00
  • ffaa244002 obsoleted Marcus Meissner 2012-08-01 09:56:34 +00:00
  • 35e0d41701 - Updated to 0.8.3 - added XCCDF 1.2 schemas - changed XCCDF report format - updated schemas for OVAL 5.10 - added additional OVAL schemas - 5.3, 5.4, 5.5, 5.6, 5.7 - multi version support for XCCDF and OVAL - a schema version of an imported and exported content is same - added rpmverifyfile probe - results are validated only if an OSCAP_FULL_VALIDATION variable is set - bug fixes - require libnl-devel on older SUSE version Marcus Meissner 2012-08-01 09:43:48 +00:00
  • e4923cff48 0.8.3 Marcus Meissner 2012-08-01 09:43:26 +00:00
  • a948821521 Accepting request 129176 from security Ismail Dönmez 2012-07-30 09:17:49 +00:00
  • dfd5d8718a Accepting request 129169 from home:a_jaeger:FactoryFix Roman Drahtmueller 2012-07-28 14:30:29 +00:00
  • 263a6c5451 Accepting request 113792 from security Stephan Kulow 2012-04-17 05:47:26 +00:00
  • 50ce8ceb61 - Updated to 0.8.2 - XCCDF check-import support - XSLT transformation for XCCDF 1.1 to 1.2 migration - SCE reports now optionally use the new check-import functionality and don't need separate SCE result files - bug fixes Marcus Meissner 2012-03-30 14:22:49 +00:00
  • 72f31ad752 Accepting request 110881 from home:mcalmer:branches:security Marcus Meissner 2012-03-26 09:33:19 +00:00
  • d4f34270a5 Accepting request 110151 from security Stephan Kulow 2012-03-22 11:37:31 +00:00
  • 51f0008129 Accepting request 109970 from home:babelworx:ldig:branches:security Marcus Meissner 2012-03-20 12:49:59 +00:00
  • 61c9e71bfd x Marcus Meissner 2012-03-01 16:20:51 +00:00
  • 15e3713e02 OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=32 Marcus Meissner 2012-03-01 14:08:33 +00:00
  • 28267a6b70 also capability and unixODBC, Marcus Meissner 2012-03-01 12:24:10 +00:00
  • f0343239d8 selinux added Marcus Meissner 2012-03-01 10:55:49 +00:00
  • c915d712fe add gconf2-devel libblkid-devel Marcus Meissner 2012-03-01 10:47:23 +00:00
  • 162fd106f2 libacl-devel Marcus Meissner 2012-03-01 10:41:51 +00:00
  • 9fe0ccacc9 x Marcus Meissner 2012-03-01 10:31:24 +00:00
  • bdccc7884c x Marcus Meissner 2012-03-01 10:03:45 +00:00
  • eb7bf75cec groups, changelog Marcus Meissner 2012-03-01 09:27:11 +00:00
  • 0a033139d9 - some cleanups to make it factory acceptable Marcus Meissner 2012-02-29 21:47:30 +00:00
  • 46d215b316 correct libnl Marcus Meissner 2012-02-29 15:51:50 +00:00
  • c3a66c5a42 x Marcus Meissner 2012-02-29 15:30:34 +00:00
  • 1c3e9a59b1 Accepting request 107462 from home:mcalmer:branches:security Marcus Meissner 2012-02-28 22:36:15 +00:00
  • dbf1cb368a doesnt build without probes Marcus Meissner 2011-05-02 15:28:19 +00:00
  • ae8b9cb11a x Marcus Meissner 2011-05-02 14:58:45 +00:00
  • 9e79ec22b3 x Marcus Meissner 2011-05-02 14:17:42 +00:00
  • 4aed793e33 x Marcus Meissner 2011-05-02 12:33:13 +00:00
  • 1606a1b8e3 added libxslt-devel Marcus Meissner 2011-05-02 12:24:06 +00:00
  • 41d8fe29d9 - Updated to 0.7.2 - OVAL 5.7 is supported - content for Red Hat Enterprise Linux 6.1 - draft - oscap tool enable user to skip content validation before evaluation - bugfixes Marcus Meissner 2011-04-29 13:56:47 +00:00
  • 073bc92874 x Marcus Meissner 2011-04-29 13:56:22 +00:00
  • dd56af082d OBS-URL: https://build.opensuse.org/package/show/security/openscap?expand=0&rev=13 Stephan Kleine 2010-07-05 00:20:43 +00:00
  • 6740ce45f0 - Update to 0.5.12 - Proper subpackages added Stephan Kleine 2010-07-05 00:18:40 +00:00
  • e4733e0fd4 make check doesnt Marcus Meissner 2009-11-19 16:58:39 +00:00
  • c2adaea72a -findlang Marcus Meissner 2009-11-19 16:22:37 +00:00
  • a311297e8d disable probes for now as they do not build. Marcus Meissner 2009-11-19 16:00:57 +00:00
  • 040e4908a7 disable silence Marcus Meissner 2009-11-19 15:28:19 +00:00
  • 48dd2577e9 assneeded=0 Marcus Meissner 2009-11-19 15:10:06 +00:00