Blame SOURCES/scap-security-guide-0.1.37-disable-check-libexec_ownership.patch

df3ea4
From 6f502074053282dd3afbb5ed1594fbbd524c9bc6 Mon Sep 17 00:00:00 2001
df3ea4
From: Gabe <redhatrises@gmail.com>
df3ea4
Date: Fri, 8 Dec 2017 11:34:50 -0700
df3ea4
Subject: [PATCH] Do not check library ownership in libexec
df3ea4
df3ea4
- Fixes #2473
df3ea4
---
df3ea4
 shared/checks/oval/file_ownership_library_dirs.xml | 2 +-
df3ea4
 1 file changed, 1 insertion(+), 1 deletion(-)
df3ea4
df3ea4
diff --git a/shared/checks/oval/file_ownership_library_dirs.xml b/shared/checks/oval/file_ownership_library_dirs.xml
df3ea4
index 41394a01e..186c99012 100644
df3ea4
--- a/shared/checks/oval/file_ownership_library_dirs.xml
df3ea4
+++ b/shared/checks/oval/file_ownership_library_dirs.xml
df3ea4
@@ -34,7 +34,7 @@
df3ea4
 
df3ea4
   <unix:file_object comment="library files" id="object_file_ownership_lib_files" version="1">
df3ea4
     
df3ea4
-    <unix:path operation="pattern match">^\/lib(|64)|^\/usr\/lib(|64)</unix:path>
df3ea4
+    <unix:path operation="pattern match">^\/lib(|64)\/|^\/usr\/lib(|64)\/</unix:path>
df3ea4
     <unix:filename operation="pattern match">^.*$</unix:filename>
df3ea4
    <filter action="include">state_owner_libraries_not_root</filter>
df3ea4
   </unix:file_object>