Skip to content

Commit 9dc26db

Browse files
sboldyrevasboldyreva
committed
Add csaf for els for os
1 parent c20011b commit 9dc26db

File tree

1 file changed

+55
-27
lines changed

1 file changed

+55
-27
lines changed

docs/els-for-os/README.md

Lines changed: 55 additions & 27 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
# Endless Lifecycle Support for OS
22

3-
TuxCare's [Endless Lifecycle Support (ELS) for OS](https://tuxcare.com/extended-lifecycle-support/) service provides security updates, system enhancement patches, and selected bug fixes for older versions of a variety of Linux distributions, including CentOS 6, Oracle Linux 6, CentOS 7, Oracle Linux 7, Red Hat Enterprise Linux 7, CentOS 8, CentOS Stream 8, Ubuntu 16.04, and Ubuntu 18.04. These distributions have either reached their end of standard support from vendors or have reached End of Life (EOL).
3+
TuxCare's [Endless Lifecycle Support (ELS) for OS](https://tuxcare.com/extended-lifecycle-support/) service provides security updates, system enhancement patches, and selected bug fixes for older versions of a variety of Linux distributions, including **CentOS 6, Oracle Linux 6, CentOS 7, Oracle Linux 7, Red Hat Enterprise Linux 7, CentOS 8, CentOS Stream 8, Ubuntu 16.04, and Ubuntu 18.04**. These distributions have either reached their end of standard support from vendors or have reached End of Life (EOL).
44

55
Our ELS service is designed to provide solutions for organizations that are not yet ready to migrate to newer versions and that are seeking long-term stability for their out-of-date operating systems. The service coverage includes updates for the Linux kernel and a list of essential packages that are integral to server operations.
66

@@ -573,17 +573,17 @@ Identifying the vulnerabilities that apply to your systems is an important task
573573

574574
### TuxCare ELS OVAL Streams
575575

576-
* CentOS 6 ELS: [https://repo.cloudlinux.com/centos6-els/centos6-els-oval.xml](https://repo.cloudlinux.com/centos6-els/centos6-els-oval.xml)
577-
* CentOS 7 ELS: [https://repo.tuxcare.com/centos7-els/centos7-els-oval.xml](https://repo.tuxcare.com/centos7-els/centos7-els-oval.xml)
578-
* CentOS 8.4 ELS: [https://repo.cloudlinux.com/centos8.4-els/centos84-els-oval.xml](https://repo.cloudlinux.com/centos8.4-els/centos84-els-oval.xml)
579-
* CentOS 8.5 ELS: [https://repo.cloudlinux.com/centos8.5-els/centos85-els-oval.xml](https://repo.cloudlinux.com/centos8.5-els/centos85-els-oval.xml)
580-
* CentOS Stream 8 ELS: [https://repo.tuxcare.com/centos8stream-els/centos8stream-els-oval.xml](https://repo.tuxcare.com/centos8stream-els/centos8stream-els-oval.xml)
581-
* Oracle Linux 6 ELS: [https://repo.cloudlinux.com/oraclelinux6-els/oraclelinux6-els-oval.xml](https://repo.cloudlinux.com/oraclelinux6-els/oraclelinux6-els-oval.xml)
582-
* Oracle Linux 7 ELS: [https://repo.tuxcare.com/oraclelinux7-els/oraclelinux7-els-oval.xml](https://repo.tuxcare.com/oraclelinux7-els/oraclelinux7-els-oval.xml)
583-
* Red Hat Enterprise Linux 7 ELS: [https://repo.tuxcare.com/rhel7-els/rhel7-els-oval.xml](https://repo.tuxcare.com/rhel7-els/rhel7-els-oval.xml)
584-
* Ubuntu 16.04 ELS: [https://repo.cloudlinux.com/ubuntu16_04-els/ubuntu16.04-els-oval.xml](https://repo.cloudlinux.com/ubuntu16_04-els/ubuntu16.04-els-oval.xml)
585-
* Ubuntu 18.04 ELS: [https://repo.cloudlinux.com/ubuntu18_04-els/ubuntu18.04-els-oval.xml](https://repo.cloudlinux.com/ubuntu18_04-els/ubuntu18.04-els-oval.xml)
586-
* Ubuntu 20.04 ELS: [https://repo.tuxcare.com/ubuntu20_04-els/ubuntu20.04-els-oval.xml](https://repo.tuxcare.com/ubuntu20_04-els/ubuntu20.04-els-oval.xml)
576+
* CentOS 6 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/centos6els/oval.xml)
577+
* CentOS 7 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/centos7els/oval.xml)
578+
* CentOS 8.4 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/centos8.4els/oval.xml)
579+
* CentOS 8.5 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/centos8.5els/oval.xml)
580+
* CentOS Stream 8 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/centos-stream8els/oval.xml)
581+
* Oracle Linux 6 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/oraclelinux6els/oval.xml)
582+
* Oracle Linux 7 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/oraclelinux7els/oval.xml)
583+
* Red Hat Enterprise Linux 7 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/rhel7els/oval.xml)
584+
* Ubuntu 16.04 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/ubuntu16.04els/oval.xml)
585+
* Ubuntu 18.04 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/ubuntu18.04els/oval.xml)
586+
* Ubuntu 20.04 ELS: [oval.xml](https://security.tuxcare.com/oval/els_os/ubuntu20.04els/oval.xml)
587587

588588

589589
### How to use OpenSCAP with TuxCare ELS
@@ -600,15 +600,15 @@ OpenSCAP is an open source vulnerability scanner and compliance tool and it can
600600
```
601601
apt-get install els-define libopenscap8 -y
602602
```
603-
2. Download OVAL stream:
603+
2. Download OVAL stream. For example, Ubuntu 18.04:
604604

605605
```
606-
wget https://repo.cloudlinux.com/ubuntu18_04-els/ubuntu18.04-els-oval.xml
606+
wget https://security.tuxcare.com/oval/els_os/ubuntu18.04els/oval.xml
607607
```
608608
3. Run scanning:
609609

610610
```
611-
oscap oval eval --results results.xml --report report.html ubuntu18.04-els-oval.xml
611+
oscap oval eval --results results.xml --report report.html oval.xml
612612
```
613613
4. Examine scan results report
614614

@@ -648,20 +648,48 @@ To detect whether a system has TuxCare ELS installed, check for following file b
648648

649649
Once that is validated, you can use the corresponding to the operating system OVAL files from above to scan for vulnerabilities.
650650

651+
## Common Security Advisory Framework
652+
653+
Common Security Advisory Framework (CSAF) is a machine-readable format, standardized by [OASIS](https://www.csaf.io/). It's designed to enable consistent and automated sharing of security advisory information.
654+
655+
TuxCare publishes the following CSAF files at [security.tuxcare.com](https://security.tuxcare.com/csaf/v2/):
656+
* CSAF Vulnerability Exploitability eXchange (VEX) files – indexed by CVE VEX documents are available in CSAF 2.0 format, including past CVEs.
657+
* CSAF Security Advisory files – advisories are published in CSAF 2.0 format and indexed by Security Advisory.
658+
659+
`provider-matadata.json` contains information for tools and users about where and how to retrieve CSAF advisories published by TuxCare. By OASIS requirements, it is available at two URLs (both serving the same file):
660+
* [csaf.data.security.tuxcare.com](https://csaf.data.security.tuxcare.com/)
661+
* [tuxcare.com/.well-known/csaf/provider-metadata.json](https://tuxcare.com/.well-known/csaf/provider-metadata.json)
662+
663+
### TuxCare CSAF data
664+
665+
Currently, we provide CSAF data for the following OS versions:
666+
667+
* CentOS 6 ELS: [security.tuxcare.com/csaf/v2/els_os/centos6els/](https://security.tuxcare.com/csaf/v2/els_os/centos6els/)
668+
* CentOS 7 ELS: [security.tuxcare.com/csaf/v2/els_os/centos7els/](hhttps://security.tuxcare.com/csaf/v2/els_os/centos7els/)
669+
* CentOS 8.4 ELS: [security.tuxcare.com/csaf/v2/els_os/centos8.4els/](https://security.tuxcare.com/csaf/v2/els_os/centos8.4els/)
670+
* CentOS 8.5 ELS: [security.tuxcare.com/csaf/v2/els_os/centos8.5els/](https://security.tuxcare.com/csaf/v2/els_os/centos8.5els/)
671+
* CentOS Stream 8 ELS: [security.tuxcare.com/csaf/v2/els_os/centos-stream8els/](https://security.tuxcare.com/csaf/v2/els_os/centos-stream8els/)
672+
* Oracle Linux 6 ELS: [security.tuxcare.com/csaf/v2/els_os/oraclelinux6els/](https://security.tuxcare.com/csaf/v2/els_os/oraclelinux6els/)
673+
* Oracle Linux 7 ELS: [security.tuxcare.com/csaf/v2/els_os/oraclelinux7els/](https://security.tuxcare.com/csaf/v2/els_os/oraclelinux7els/)
674+
* Red Hat Enterprise Linux 7 ELS: [security.tuxcare.com/csaf/v2/els_os/rhel7els/](https://security.tuxcare.com/csaf/v2/els_os/rhel7els/)
675+
* Ubuntu 16.04 ELS: [security.tuxcare.com/csaf/v2/els_os/ubuntu16.04els/](https://security.tuxcare.com/csaf/v2/els_os/ubuntu16.04els/)
676+
* Ubuntu 18.04 ELS: [security.tuxcare.com/csaf/v2/els_os/ubuntu18.04els/](https://security.tuxcare.com/csaf/v2/els_os/ubuntu18.04els/)
677+
* Ubuntu 20.04 ELS: [security.tuxcare.com/csaf/v2/els_os/ubuntu20.04els/](https://security.tuxcare.com/csaf/v2/els_os/ubuntu20.04els/)
678+
651679
## TuxCare ELS RSS releases feeds
652680

653-
* CentOS 6 ELS: [https://cve.tuxcare.com/rss_feed/releases/centos6els](https://cve.tuxcare.com/rss_feed/releases/centos6els)
654-
* CentOS 7 ELS: [https://cve.tuxcare.com/rss_feed/releases/centos7els](https://cve.tuxcare.com/rss_feed/releases/centos7els)
655-
* CentOS 8.4 ELS: [https://cve.tuxcare.com/rss_feed/releases/centos8.4els](https://cve.tuxcare.com/rss_feed/releases/centos8.4els)
656-
* CentOS 8.5 ELS: [https://cve.tuxcare.com/rss_feed/releases/centos8.5els](https://cve.tuxcare.com/rss_feed/releases/centos8.5els)
657-
* CentOS Stream 8 ELS: [https://cve.tuxcare.com/rss_feed/releases/centos8streamels](https://cve.tuxcare.com/rss_feed/releases/centos8streamels)
658-
* CloudLinux 6: [https://cve.tuxcare.com/rss_feed/releases/cloudlinux6els](https://cve.tuxcare.com/rss_feed/releases/cloudlinux6els)
659-
* Oracle Linux 6 ELS: [https://cve.tuxcare.com/rss_feed/releases/oraclelinux6els](https://cve.tuxcare.com/rss_feed/releases/oraclelinux6els)
660-
* Oracle Linux 7 ELS: [https://cve.tuxcare.com/rss_feed/releases/oraclelinux7els](https://cve.tuxcare.com/rss_feed/releases/oraclelinux7els)
661-
* Red Hat Enterprise Linux 7 ELS: [https://cve.tuxcare.com/rss_feed/releases/rhel7els](https://cve.tuxcare.com/rss_feed/releases/rhel7els)
662-
* Ubuntu 16.04 ELS: [https://cve.tuxcare.com/rss_feed/releases/ubuntu16.04els](https://cve.tuxcare.com/rss_feed/releases/ubuntu16.04els)
663-
* Ubuntu 18.04 ELS: [https://cve.tuxcare.com/rss_feed/releases/ubuntu18.04els](https://cve.tuxcare.com/rss_feed/releases/ubuntu18.04els)
664-
* Ubuntu 20.04 ELS: [https://cve.tuxcare.com/rss_feed/releases/ubuntu20.04els](https://cve.tuxcare.com/rss_feed/releases/ubuntu20.04els)
681+
* CentOS 6 ELS: [cve.tuxcare.com/rss_feed/releases/centos6els](https://cve.tuxcare.com/rss_feed/releases/centos6els)
682+
* CentOS 7 ELS: [cve.tuxcare.com/rss_feed/releases/centos7els](https://cve.tuxcare.com/rss_feed/releases/centos7els)
683+
* CentOS 8.4 ELS: [cve.tuxcare.com/rss_feed/releases/centos8.4els](https://cve.tuxcare.com/rss_feed/releases/centos8.4els)
684+
* CentOS 8.5 ELS: [cve.tuxcare.com/rss_feed/releases/centos8.5els](https://cve.tuxcare.com/rss_feed/releases/centos8.5els)
685+
* CentOS Stream 8 ELS: [cve.tuxcare.com/rss_feed/releases/centos8streamels](https://cve.tuxcare.com/rss_feed/releases/centos8streamels)
686+
* CloudLinux 6: [cve.tuxcare.com/rss_feed/releases/cloudlinux6els](https://cve.tuxcare.com/rss_feed/releases/cloudlinux6els)
687+
* Oracle Linux 6 ELS: [cve.tuxcare.com/rss_feed/releases/oraclelinux6els](https://cve.tuxcare.com/rss_feed/releases/oraclelinux6els)
688+
* Oracle Linux 7 ELS: [cve.tuxcare.com/rss_feed/releases/oraclelinux7els](https://cve.tuxcare.com/rss_feed/releases/oraclelinux7els)
689+
* Red Hat Enterprise Linux 7 ELS: [cve.tuxcare.com/rss_feed/releases/rhel7els](https://cve.tuxcare.com/rss_feed/releases/rhel7els)
690+
* Ubuntu 16.04 ELS: [cve.tuxcare.com/rss_feed/releases/ubuntu16.04els](https://cve.tuxcare.com/rss_feed/releases/ubuntu16.04els)
691+
* Ubuntu 18.04 ELS: [cve.tuxcare.com/rss_feed/releases/ubuntu18.04els](https://cve.tuxcare.com/rss_feed/releases/ubuntu18.04els)
692+
* Ubuntu 20.04 ELS: [cve.tuxcare.com/rss_feed/releases/ubuntu20.04els](https://cve.tuxcare.com/rss_feed/releases/ubuntu20.04els)
665693

666694
## Deinstallation instructions for yum repositories
667695

0 commit comments

Comments
 (0)