Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support Red Hat OVAL v2 #85

Open
kotakanbe opened this issue May 7, 2020 · 5 comments · May be fixed by #130
Open

Support Red Hat OVAL v2 #85

kotakanbe opened this issue May 7, 2020 · 5 comments · May be fixed by #130
Assignees
@kotakanbe

Comments

@kotakanbe
Copy link
Collaborator

https://www.redhat.com/security/data/oval/v2/
@maxenced
Copy link

Hi, almost a year after, do you have any news on this ?
We're seeing more and more false positive on our RH EUS.

@kotakanbe
Copy link
Collaborator Author

Yes, we've been thinking about tackling this problem.
But it's a pretty heavy issue, so it will take a month or two.

@kotakanbe kotakanbe self-assigned this Apr 14, 2021
@maxenced
Copy link

Cool ! Thanks for your hard work, happy to help/test when needed.

@MaineK00n MaineK00n linked a pull request Jun 3, 2021 that will close this issue
Open
9 tasks
@MaineK00n
Copy link
Collaborator

MaineK00n commented Jun 4, 2021
edited
Loading

@maxenced

Hi, I'm @MaineK00n.
I'm sorry for the delay, but I'm working on #130 to support RHEL OVALv2.

Currently, the PR goval-dictionary uses OVALv2 for OVALs other than RHEL5. It also supports OVALs provided by OVALv2 for EUS/AUS/TUS/E4S environments.Also, select -by-cveid and select -by-package can be searched from EUS OVAL.
See #130 for details, or check out my branch (MaineK00n:support-rhel-ovalv2) and try it out.

We're seeing more and more false positives on our RH EUS.

By the way, can you tell me in what environment you're seeing these false positives?

@maxenced
Copy link

maxenced commented Jun 10, 2021
edited
Loading

One of the servers is :

cat /etc/os-release
NAME="Red Hat Enterprise Linux"
VERSION="8.2 (Ootpa)"
ID="rhel"
ID_LIKE="fedora"
VERSION_ID="8.2"
PLATFORM_ID="platform:el8"
PRETTY_NAME="Red Hat Enterprise Linux 8.2 (Ootpa)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:redhat:enterprise_linux:8.2:GA"
HOME_URL="https://www.redhat.com/"
BUG_REPORT_URL="https://bugzilla.redhat.com/"
REDHAT_BUGZILLA_PRODUCT="Red Hat Enterprise Linux 8"
REDHAT_BUGZILLA_PRODUCT_VERSION=8.2
REDHAT_SUPPORT_PRODUCT="Red Hat Enterprise Linux"
REDHAT_SUPPORT_PRODUCT_VERSION="8.2"

and

yum repolist enabled |grep rhel
codeready-builder-for-rhel-8-x86_64-rpms Red Hat CodeReady Linux Builder for RHEL 8 x86_64 (RPMs)
rhel-8-for-x86_64-appstream-eus-rpms     Red Hat Enterprise Linux 8 for x86_64 - AppStream - Extended Update Support (RPMs)
rhel-8-for-x86_64-baseos-eus-rpms        Red Hat Enterprise Linux 8 for x86_64 - BaseOS - Extended Update Support (RPMs)
``

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kotakanbe kotakanbe

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Support RHEL OVALv2 MaineK00n/goval-dictionary
3 participants
@kotakanbe @maxenced @MaineK00n