Title.

Assuria Auditor AutoUpdate 68 release

Introduction

This update is a security content update. It contains updated console content, new and updated checks and policies, and updated patch databases, policy navigators and console database content. The update is compatible with, and suitable for application to all Assuria Auditor agents.

Security Content Updates

Security content based on newly published vendor security bulletins (or similar) is included for the agents listed below

• HP HP-UX 11 (PA-RISC)

• HP HP-UX 11 (IA-64)

• IBM AIX 4.3/5.1/5.2 (p-Series)

• Microsoft Windows 2000 (x86)

• Microsoft Windows 2003 Server (x86)

• Red Hat Enterprise Linux 3 and later (x86 and x64)

• Sun Solaris 8 (SPARC)

• Sun Solaris 9 (SPARC)

• Sun Solaris 10 (SPARC)

Compliance Reporting - FISMA

The Console database update includes the mapping of Assuria Auditor checks to  ("FISMA") the Federal Information Security Management Act of 2002.   The recently enhanced Assuria Auditor reporting fully supports the new FISMA mapping.

Assuria Auditor now includes the mapping of external standards and guidelines to checks for ISO 27001, ISO 27002 (formerly ISO 17799), PCI, SOX, BID and CVE.

The updated Policy Navigators allow the easy cross-reference of each standard to other standrads and checks.

Bug fixes

This bulletin contains a bug fix to the console, to fix a bug that caused a console crash when attempting to import a second or subsequent result file from the Maintenance-Options menu for the same agent.

This bulletin contains a bug fix to the AIX4.3 agent daemon, to fix a bug that caused a potential class assignment problem re-adding an existing agent.

This bulletin contains a bug fix to the csv reporting feature, to fix a bug which misattributed field titles and values in the detailed CSV file for vulnerabilities of type 'user'.

Textual Manifest

The full manifest of new and changed files for this update can be viewed below.

Console update

    o Database update

      - Updated information on new and existing checks

    o Updated Policy Navigators

      - HP HP-UX 11 on PA-RISC

      - HP HP-UX 11 on IA-64

      - IBM AIX

      - Red Hat Enterprise Linux

      - Sun Solaris 8

      - Sun Solaris 9

      - Sun Solaris 10 on Sparc

      - Sun Solaris 10 on X86

      - SUSE Linux Enterprise Server 9 on X86

      - SUSE Linux Enterprise Server 10 on IBM z-series

      - Windows 2000

      - Windows 2003

    o Console Files

      - bin/tcl/db.tbc

      - bin/tcl/IndexedResults.tbc

      - bin/tcl/rep_utils.tbc

      - etc/xpu_config

      - etc/masteragentvariables.ini

Agent updates

Updates are included for the following agents:

    o IBM AIX 4.3/5.1/5.2 (p-Series)

    o HP HP-UX 11 (PA-RISC)

    o HP HP-UX 11 (IA-64)

    o Microsoft Windows 2000

    o Microsoft Windows Server 2003 (x86)

    o Red Hat Enterprise Linux 3 and later (x86 and x64)

    o Sun Solaris 8 (SPARC)

    o Sun Solaris 9 (SPARC)

    o Sun Solaris 10 (SPARC)

IBM AIX 4.3/5.1/5.2 (p-Series)

    o New Agent Daemon

      - sysscand

    o New Checks

      - aix-IY91132-fix

      - aix-IY91145-fix

      - aix-IY94739-fix

      - aix-IY94761-fix

      - aix-IY95852-fix

      - aix-IY97215-fix

      - aix-IY97233-fix

      - aix-IY97309-fix

      - aix-IY98804-fix

      - aix-IY98819-fix

      - aix-IZ00521-fix

      - aix-IZ00529-fix

      - aix-IZ00531-fix

      - aix-IZ01122-fix

      - aix-IZ01433-fix

      - aix-IZ01437-fix

      - aix-IZ02218-fix

      - aix-IZ02219-fix

      - aix-IZ02717-fix

      - aix-IZ02718-fix

    o Updated Policies

      - fixes

      - Initial-1

      - Initial-All

      - Maintenance-1

      - Maintenance-All

    o X-Press Update Files

      - xpud3_68_script.sh

      - xpud3_68_script.sh.sgn

      - xpud3_68_script2.sh

      - xpud3_68_script2.sh.sgn

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

HP HP-UX 11 (PA-RISC)

    o Updated Patch Database

      - bin/patch_HP-UX.data

      - bin/patch_HP-UX.ref

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

HP HP-UX 11 (IA-64)

    o Updated Patch Database

      - bin/patch_HP-UX.data

      - bin/patch_HP-UX.ref

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

Microsoft Windows 2000

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

    o Updated Policies

      - versionChecks

      - Initial-1

      - Initial-All

      - Maintenance-1

      - Maintenance-All

    o Updated Checks

      - ie-ms05kb867282-update

    o New Checks

      - win-ms07kb937986-update

      - win-ms07kb938827-update

      - win-ms07kb939778-update

      - win-ms07kb941522-update

      - win-ms07kb942099-update

Microsoft Windows Server 2003 (x86)

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

    o Updated Policies

      - versionChecks

      - Initial-1

      - Initial-All

      - Maintenance-1

      - Maintenance-All

    o Updated Checks

      - ie-ms05kb867282-update

    o New Checks

      - win-ms07kb937986-update

      - win-ms07kb939778-update

      - win-ms07kb941522-update

      - win-ms07kb942099-update

Red Hat Enterprise Linux 3 and later (x86 and x64)

    o Updated Checks

      - RHSA-2007-0829

    o New Checks

      - RHSA-2007-0539

      - RHSA-2007-0671

      - RHSA-2007-0774

      - RHSA-2007-0795

      - RHSA-2007-0841

      - RHSA-2007-0858

      - RHSA-2007-0860

      - RHSA-2007-0873

      - RHSA-2007-0875

      - RHSA-2007-0878

      - RHSA-2007-0892

    o Updated Policies

      - Initial-1

      - Initial-All

      - Maintenance-1

      - Maintenance-All

      - rhsa

    o Agent Files

      - bin/procs/tools.tcl

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

Sun Solaris 8 (SPARC)

    o Updated Patch Database

      - bin/patch_Solaris.data

      - bin/patch_Solaris.ref

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

Sun Solaris 9 (SPARC)

    o Updated Patch Database

      - bin/patch_Solaris.data

      - bin/patch_Solaris.ref

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini

Sun Solaris 10 (SPARC)

    o Updated Patch Database

      - bin/patch_Solaris.data

      - bin/patch_Solaris.ref

    o X-Press Update Files

      - rulesets/unarchivePolicy

      - signatures/rulesets/unarchivePolicy.sgn

      - lib/xpud3_68.zip

      - lib/xpud3_68.sgn

      - etc/update.ini