[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Openscap & rules "oval:org.debian.oval:obj:225"

Hi,
On my servers oscap, with a oval database from https://www.debian.org/security/oval/, is unable to match CVE-2017-5754/5753/5715
I have to patch the rule "oval:org.debian.oval:obj:225" in the OVAL DB, to have a match (linux to linux-image-amd64).
I don't understand why, there is no package named "linux" (...) Is anyone have a match without patching this rules ? Am I missing something ? 

Best regards,
Poil

Patch
      <dpkginfo_object id="oval:org.debian.oval:obj:225" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#linux";> 
      <name>linux</name>
    </dpkginfo_object>

to
        <dpkginfo_object id="oval:org.debian.oval:obj:225" version="1" xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#linux";> 
      <name>linux-image-amd64</name>
    </dpkginfo_object>


# dpkg -l "linux*"
ii  linux-base 3.5                         all                         Linux image base package un  linux-doc-3.2 <none>                                                  (no description available) un  linux-headers <none>                                                  (no description available) un  linux-headers-686-pae <none>                                                  (no description available) un  linux-headers-amd64 <none>                                                  (no description available) un  linux-headers-generic <none>                                                  (no description available) un  linux-image <none>                                                  (no description available) un  linux-image-2.6-amd64 <none>                                                  (no description available) un  linux-image-2.6-openvz-amd64 <none>                                                  (no description available) un  linux-image-2.6-vserver-amd64 <none>                                                  (no description available) un  linux-image-2.6-xen-amd64 <none>                                                  (no description available) ii  linux-image-3.2.0-4-amd64 3.2.65-1+deb7u2             amd64                       Linux 3.2 for 64-bit PCs ii  linux-image-amd64 3.2+46                      amd64                       Linux for 64-bit PCs (meta-package) un  linux-initramfs-tool <none>                                                  (no description available) un  linux-kernel-headers <none>                                                  (no description available) un  linux-kernel-log-daemon <none>                                                  (no description available) un  linux-latest-modules-3.2.0-4-amd64 <none>                                                  (no description available) ii  linux-libc-dev:amd64 3.2.65-1+deb7u2             amd64                       Linux support headers for userspace development un  linux-modules-3.2.0-4-amd64 <none>                                                  (no description available) un  linux32 <none>                                                  (no description available)
Reply to: