diff --git a/.gitignore b/.gitignore index a28a6e4..8062837 100644 --- a/.gitignore +++ b/.gitignore @@ -1 +1 @@ -SOURCES/scap-security-guide-0.1.74.tar.bz2 +SOURCES/scap-security-guide-0.1.75.tar.bz2 diff --git a/.scap-security-guide.metadata b/.scap-security-guide.metadata index e3e28c9..bd7356f 100644 --- a/.scap-security-guide.metadata +++ b/.scap-security-guide.metadata @@ -1 +1 @@ -31288700eb6b3cd31d181592238babd8752d5074 SOURCES/scap-security-guide-0.1.74.tar.bz2 +96a8823bf638cd2c656deb431686f74da8084694 SOURCES/scap-security-guide-0.1.75.tar.bz2 diff --git a/SPECS/scap-security-guide.spec b/SPECS/scap-security-guide.spec index 3ee142e..0e496e3 100644 --- a/SPECS/scap-security-guide.spec +++ b/SPECS/scap-security-guide.spec @@ -5,7 +5,7 @@ # global _default_patch_fuzz 2 # Normally shouldn't be needed as patches should apply cleanly Name: scap-security-guide -Version: 0.1.74 +Version: 0.1.75 Release: 1%{?dist} Summary: Security guidance and baselines in SCAP formats License: BSD-3-Clause @@ -14,7 +14,6 @@ Source0: https://github.com/ComplianceAsCode/content/releases/download/v%{versio BuildArch: noarch BuildRequires: libxslt -BuildRequires: expat BuildRequires: openscap-scanner >= 1.2.5 BuildRequires: cmake >= 2.8 BuildRequires: python%{python3_pkgversion}-devel @@ -97,6 +96,14 @@ rm %{buildroot}/%{_docdir}/%{name}/Contributors.md %endif %changelog +* Fri Nov 15 2024 Matthew Burket - 0.1.75-1 +- Rebase to new release (RHEL-66154) +- the rule sshd_use_priv_separation is no longer used (RHEL-66057) +- add a rule checking for presence of chrony to CIS RHEL 9 profile (RHEL-60005) +- remediation of Networkmanager DNS mode now remediates value "default" (RHEL-53426) +- Adjust mount_option_nodev_nonroot_local_partitions to work in Image Builder environments. (RHEL-45018) +- Adjusted rules related to sshd ensure constancy in checked values and ensure that drop in configuration files are checked. (RHEL-38206) + * Fri Aug 09 2024 Matthew Burket - 0.1.74-1 - Rebase to a new upstream release 0.1.74 (RHEL-53865) - Ensure authselect features are preserved by enable_authselect rule (RHEL-39383)