RPM-Package Detection Improvements Summary Tenable’s RPM-base

Question

RPM-Package Detection ImprovementsSummaryTenable’s RPM-based version checks are being enhanced with more accurate detection logic.Target Release DateNovember 6 8 13, 2023ChangeA common library used in Tenable’s RPM-based detection plugins will be modified to no longer constrain version checks to the specific major version of the fixed package. Under the legacy approach, there was a possibility of false negatives in cases where the distribution maintainers bump the major version number of a package within a single operating system release.ImpactThis change may result in a small increase in the number of findings for some customers running RPM-based OS distributions. Specifically in scenarios where packages are significantly out of date relative to the latest version, and in the course of those version updates, the major version number of the package changes.

zcerkovnik · Answer

The Target Release Date for this improvement has been moved to Wednesday, November 8th.

zcerkovnik · Answer

Due to the upcoming US holiday on Friday, November 10, this release has been pushed to Monday, November 13th.

Tenable Research Release Highlights

Forum Discussion

RPM-Package Detection Improvements Summary Tenable’s RPM-base

2 Replies

Recent Discussions

New CIS Debian Audit Files Summary Customers can now...

SNMPv3 for CyberArk and HashiCorp Vault

Research Release Highlight - SSH Session Reuse

Improved Resource Management Control

Distinct Agent Plugin Databases for RPM-Based Distributions

Americas

Europe

Asia / Australia