STIGQter: STIG Summary: SLES 12 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

Vendor-packaged SUSE operating system security patches and updates must be installed and up to date.

DISA Rule

SV-217102r603262_rule

Vulnerability Number

V-217102

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

SLES-12-010010

Severity

CAT II

CCI(s)

CCI-001227 - The organization corrects information system flaws.

Weight

Fix Recommendation

Install the applicable SUSE operating system patches available from SUSE by running the following command:

# sudo zypper patch

Check Contents

Verify the SUSE operating system security patches and updates are installed and up to date.

Note: Updates are required to be applied with a frequency determined by the site or Program Management Office (PMO).

Check for required SUSE operating system patches and updates with the following command:

# sudo zypper patch-check

0 patches needed (0 security patches)

If the patch repository data is corrupt check that the available package security updates have been installed on the system with the following command:

# cut -d "|" -f 1-4 -s --output-delimiter " | " /var/log/zypp/history | grep -v " radd "

2016-12-14 11:59:36 | install | libapparmor1-32bit | 2.8.0-2.4.1
2016-12-14 11:59:36 | install | pam_apparmor | 2.8.0-2.4.1
2016-12-14 11:59:36 | install | pam_apparmor-32bit | 2.8.0-2.4.1

If the SUSE operating system has not been patched within the site or PMO frequency, this is a finding.

Vulnerability Number

V-217102

Documentable

False

Rule Version

SLES-12-010010

Severity Override Guidance

Check Content Reference

Target Key

4033

Vendor-packaged SUSE operating system security patches and updates must be installed and up to date.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments