Steps to reproduce on Ubuntu 12.04.5 LTS:
1. sudo apt-get install libopenscap1 # this will install 0.8.0-4build1
2. cd /tmp
3. wget
https://people.canonical.com/~ubuntu-security/oval/com.ubuntu.precise.cve.oval.xml
4. oscap oval eval --results /tmp/results-precise.xml --report
/tmp/report-precise.html /tmp/com.ubuntu.precise.cve.oval.xml
Expected result:
Files /tmp/results-precise.xml and /tmp/report-precise.html are produced.
Actual result:
Files /tmp/results-precise.xml and /tmp/report-precise.html are not produced.
Got many errors such as
1 1824 In file '/tmp/com.ubuntu.precise.cve.oval.xml' on line 12: Element
'{http://oval.mitre.org/XMLSchema/oval-common-5}schema_version': '5.11.1' is
not a valid value of the atomic type 'xs:decimal'.
...
1 1871 In file '/tmp/com.ubuntu.precise.cve.oval.xml' on line 44: Element
'{http://oval.mitre.org/XMLSchema/oval-common-5}notes': This element is not
expected. Expected is one of (
{http://oval.mitre.org/XMLSchema/oval-definitions-5}notes,
{http://oval.mitre.org/XMLSchema/oval-definitions-5}criteria ).
...
1 1866 In file '/tmp/com.ubuntu.precise.cve.oval.xml' on line 284: Element
'{http://oval.mitre.org/XMLSchema/oval-definitions-5}extend_definition',
attribute 'applicability_check': The attribute 'applicability_check' is not
allowed.
...
So oscap 0.8.0-4build1 is not compatible with
com.ubuntu.precise.cve.oval.xml file.
Solution - build openscap from sources (see my comment 27 on
https://answers.launchpad.net/ubuntu/+source/openscap/+question/242354).
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1658529
Title:
[SRU] OpenSCAP packages should be updated to the latest versions on
Ubuntu 12.04 and 14.04 LTS
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openscap/+bug/1658529/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
