File _patchinfo of Package patchinfo.21511

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.21511

<patchinfo incident="21511">
  <issue tracker="bnc" id="1186735">openscap says everything is "nonapplicable"</issue>
  <packager>msmeissn</packager>
  <rating>moderate</rating>
  <category>recommended</category>
  <summary>Recommended update for openscap</summary>
  <description>This update for openscap fixes the following issues:

- Since upstream has moved to Python 3, switch the BuildRequires from 'python-devel' to 'python3-devel'.
- Add definitions for SUSE Linux Enterprise Server, SUSE Linux Enterprise Desktop, openSUSE Tumbleweed, openSUSE Leap 
  and Fedora to the CPE dictionary. (bsc#1186735)
- Add updated definitions for openSUSE Tumbleweed, openSUSE Leap and Wind River Linux using the Open Vulnerability and 
  Assessment Language. (bsc#1186735)

- openscap 1.3.5 
  - New features
    - Made 'schematron-based' validation enabled by default for validate command of 'oval' and 'xccdf' modules
    - Added SCAP 1.3 source data stream Schematron
    - Added XML Signature Validation
    - Added '--enforce-signature' option for eval, guide, and fix modules
    - Added &lt;content&gt; entity support (OVAL/yamlfilecontent)
    - Allowed to clamp mtime to SOURCE_DATE_EPOCH
    - Added severity and role attributes
    - Added support for requires/conflicts elements of the Rule and Group (XCCDF)
    - Added Kubernetes remediation to HTML report
  - Maintenance, bug fix
    - Fixed CMake warnings
    - Made 'gpfs', 'proc' and 'sysfs' filesystems non-local
    - Fixed handling of '--arg=val'-styled common options
    - Documented used environment variables
    - Updated man page and help texts
    - Added '--skip-validation' option synonym for '--skip-valid'
    - Fixed behavior of StateType operator
    - Fixed coverity warnings
    - Ignoring namespace in XPath expressions
    - Fixed how 'oval_probe_ext_eval' checks absence of the response from the probe (obtrusive data warning)
    - Described SWID tags detection
    - Improved documentation about '--stig-viewer' option
    - File probe behaviour fixed (symlink traversal now behaves as defined by OVAL)
    - Fixed multiple segfaults and broken test in '--stig-viewer' feature
    - Added dpkg version comparison algorithm
    - Fixed 'TestResult/benchmark/@href' attribute
    - Fixed memory allocation
    - Fixed field names for cases where key selection section is followed by a set section (probes/yamfilecontent)
    - Changing hard coded libperl path in favor of FindPerlLibs method
    - Check local filesystems when using 'filepath' element
</description>
</patchinfo>

Places

File _patchinfo of Package patchinfo.21511

Places