diff --git a/components/dnf.yml b/components/dnf.yml index 12da3606ada..b48d152a533 100644 --- a/components/dnf.yml +++ b/components/dnf.yml @@ -3,6 +3,7 @@ packages: - dnf - dnf-automatic - dnf-plugin-subscription-manager +- libdnf-plugin-subscription-manager rules: - clean_components_post_updating - ensure_gpgcheck_globally_activated @@ -10,3 +11,4 @@ rules: - ensure_gpgcheck_repo_metadata - package_dnf-automatic_installed - package_dnf-plugin-subscription-manager_installed +- package_libdnf-plugin-subscription-manager_installed diff --git a/controls/ism_o.yml b/controls/ism_o.yml index 5a597a321b2..07c40879fa0 100644 --- a/controls/ism_o.yml +++ b/controls/ism_o.yml @@ -439,7 +439,7 @@ use of device access control software or by disabling external communication int - base rules: - dnf-automatic_apply_updates - - package_dnf-plugin-subscription-manager_installed + - package_libdnf-plugin-subscription-manager_installed - package_subscription-manager_installed status: automated @@ -449,7 +449,7 @@ use of device access control software or by disabling external communication int - base rules: - dnf-automatic_apply_updates - - package_dnf-plugin-subscription-manager_installed + - package_libdnf-plugin-subscription-manager_installed - package_subscription-manager_installed status: automated @@ -467,7 +467,7 @@ use of device access control software or by disabling external communication int - base rules: - dnf-automatic_apply_updates - - package_dnf-plugin-subscription-manager_installed + - package_libdnf-plugin-subscription-manager_installed - package_subscription-manager_installed status: automated diff --git a/linux_os/guide/system/software/system-tools/package_dnf-plugin-subscription-manager_installed/rule.yml b/linux_os/guide/system/software/system-tools/package_dnf-plugin-subscription-manager_installed/rule.yml index 9d62fa5397a..d19ed0f072a 100644 --- a/linux_os/guide/system/software/system-tools/package_dnf-plugin-subscription-manager_installed/rule.yml +++ b/linux_os/guide/system/software/system-tools/package_dnf-plugin-subscription-manager_installed/rule.yml @@ -16,7 +16,6 @@ severity: medium identifiers: cce@rhel8: CCE-82315-3 - cce@rhel10: CCE-89216-6 references: ism: 0940,1144,1467,1472,1483,1493,1494,1495 diff --git a/linux_os/guide/system/software/system-tools/package_libdnf-plugin-subscription-manager_installed/rule.yml b/linux_os/guide/system/software/system-tools/package_libdnf-plugin-subscription-manager_installed/rule.yml new file mode 100644 index 00000000000..5a6047aa577 --- /dev/null +++ b/linux_os/guide/system/software/system-tools/package_libdnf-plugin-subscription-manager_installed/rule.yml @@ -0,0 +1,32 @@ +documentation_complete: true + + +title: 'Install libdnf-plugin-subscription-manager Package' + +description: |- + {{{ describe_package_install(package="libdnf-plugin-subscription-manager") }}} + +rationale: |- + This package provides plugins to interact with repositories and subscriptions + from the Red Hat entitlement platform; contains subscription-manager and + product-id plugins. + + +severity: medium + +identifiers: + cce@rhel10: CCE-88703-4 + +references: + ism: 0940,1144,1467,1472,1483,1493,1494,1495 + ospp: FPT_TUD_EXT.1,FPT_TUD_EXT.2 + srg: SRG-OS-000366-GPOS-00153 + +ocil_clause: 'the package is not installed' + +ocil: '{{{ ocil_package(package="libdnf-plugin-subscription-manager") }}}' + +template: + name: package_installed + vars: + pkgname: libdnf-plugin-subscription-manager diff --git a/products/rhel10/profiles/ospp.profile b/products/rhel10/profiles/ospp.profile index 7611b41e4ee..8100d7291e7 100644 --- a/products/rhel10/profiles/ospp.profile +++ b/products/rhel10/profiles/ospp.profile @@ -22,3 +22,4 @@ description: |- selections: - ospp:all - '!package_screen_installed' + - '!package_dnf-plugin-subscription-manager_installed' diff --git a/shared/references/cce-redhat-avail.txt b/shared/references/cce-redhat-avail.txt index 559318d050c..ca2aae57be6 100644 --- a/shared/references/cce-redhat-avail.txt +++ b/shared/references/cce-redhat-avail.txt @@ -1334,7 +1334,6 @@ CCE-88698-6 CCE-88699-4 CCE-88701-8 CCE-88702-6 -CCE-88703-4 CCE-88704-2 CCE-88706-7 CCE-88707-5