audit-3.1.5-7.el9 RPM for x86_64

From CentOS Stream 9 BaseOS for x86_64

The audit package contains the user space utilities for
storing and searching the audit records generated by
the audit subsystem in the Linux 2.6 and later kernels.

Provides

• audit
• audit(x86-64)
• config(audit)

Requires

• /bin/sh
• /bin/sh
• /usr/bin/sh
• audit-libs(x86-64) = 3.1.5-7.el9
• config(audit) = 3.1.5-7.el9
• coreutils
• coreutils
• libaudit.so.1()(64bit)
• libauparse.so.0()(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.15)(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.2)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.32)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libc.so.6(GLIBC_2.7)(64bit)
• libc.so.6(GLIBC_2.8)(64bit)
• libc.so.6(GLIBC_2.9)(64bit)
• libgssapi_krb5.so.2()(64bit)
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit)
• libkrb5.so.3()(64bit)
• libkrb5.so.3(krb5_3_MIT)(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)
• systemd
• systemd
• systemd

License

GPLv2+

Changelog

* Fri Apr 11 2025 Attila Lakatos <alakatos@redhat.com> - 3.1.5-7
  - ausearch-checkpoint race condition fix
    Resolves: RHEL-86897
* Wed Apr 02 2025 Attila Lakatos <alakatos@redhat.com> - 3.1.5-6
  - Update end of event detection mechanism
    Resolves: RHEL-78323
* Fri Mar 28 2025 Attila Lakatos <alakatos@redhat.com> - 3.1.5-5
  - ausearch: correct search for DAEMON related events
  - allow hex digits when interpreting tty data
    Resolves: RHEL-82279
  - Fix TTY hostname in log messages
    Resolves: RHEL-78323
* Tue Feb 11 2025 Attila Lakatos <alakatos@redhat.com> - 3.1.5-4
  - auditctl: correct buffer in filter_supported_syscalls to avoid overflow
    Resolves: RHEL-59585
* Mon Feb 03 2025 Attila Lakatos <alakatos@redhat.com> - 3.1.5-3
  - Don't do "live" operations during rpm-ostree composes
    Resolves: RHEL-69033
* Wed Jan 08 2025 Attila Lakatos <alakatos@redhat.com> - 3.1.5-2
  - Disable ProtectKernelModules=true in service file
    Resolves: RHEL-59570
  - af_unix plugin: restore original behavior in binary mode
    Resolves: RHEL-59585
  - Support image mode
    Resolves: RHEL-69033
  - Resolve ordering cycle when using remote logging
    Resolves: RHEL-11252
  - Filter syscalls to ensure architecture-specific availability
    Resolves: RHEL-70455
* Tue Jul 09 2024 Attila Lakatos <alakatos@redhat.com> - 3.1.5-1
  - New upstream maintenance release, 3.1.4
  - Prevent scriplets from failing
  - When upgrading, restart the daemon if it's running
  - If uninstalling, stop the daemon
  - auditctl: use pidfd_send_signal for signaling auditd
    Resolves: RHEL-45865
  - Minor doc update
    Resolves: RHEL-5186
  - augenrules: do not exit with failure if in immutable mode
    Resolves: RHEL-40110
  - auditd.service: Disable ProtectControlGroups
    Resolves: RHEL-5197
  - auditctl: correct output when displaying rules with exe/path/dir
    Resolves: RHEL-40243
* Wed Nov 08 2023 Sergio Correia <scorreia@redhat.com> - 3.1.2-2
  - Remove 
   
  if [ $1 -eq 0 ] && [ -x "/usr/lib/systemd/systemd-update-helper" ]; then 
          /usr/lib/systemd/systemd-update-helper remove-system-units from %preun scriptlet, as it was causing troubles when removing audit || : 
  fi 
  
    Related: RHEL-14896
* Fri Oct 27 2023 Sergio Correia <scorreia@redhat.com> - 3.1.2-1
  - New upstream release, 3.1.2
    Resolves: RHEL-14896
* Thu Jun 22 2023 Radovan Sroka <rsroka@redhat.com> - 3.0.7-104
  - Introduce new fanotify record fields
    Resolves: rhbz#2216666

Files

/etc/audit
/etc/audit/audit-stop.rules
/etc/audit/audit.rules
/etc/audit/auditd.conf
/etc/audit/plugins.d
/etc/audit/rules.d
/etc/audit/rules.d/audit.rules
/usr/bin/aulast
/usr/bin/aulastlog
/usr/bin/ausyscall
/usr/bin/auvirt
/usr/lib/.build-id
/usr/lib/.build-id/31
/usr/lib/.build-id/31/41a7244845cc3ad3fb7e2e08cf579a6c7b477c
/usr/lib/.build-id/5f
/usr/lib/.build-id/5f/1d5808fd3cb1a34fa906daed087083177c4a49
/usr/lib/.build-id/7c
/usr/lib/.build-id/7c/cbd380aca9a3e03e6e62169f029649bff2327a
/usr/lib/.build-id/80
/usr/lib/.build-id/80/85bcc097929950cc3306a27109ba9c33ab4bfe
/usr/lib/.build-id/81
/usr/lib/.build-id/81/2e36b1f9dfead88490515bdc9eaa385f1cfb3f
/usr/lib/.build-id/9b
/usr/lib/.build-id/9b/f18ad38b9184f3254f3070c989ef643e70f8a1
/usr/lib/.build-id/ac
/usr/lib/.build-id/ac/91c81c488d9ef7403c424256f994adaaa0cf89
/usr/lib/.build-id/b0
/usr/lib/.build-id/b0/6c5da10312d5397f5ad7e9ecf86b2cf17ccf64
/usr/lib/.build-id/b9
/usr/lib/.build-id/b9/9aa12a83ae2420d3fa7d7c0b08bba6094097ad
/usr/lib/systemd/system/auditd.service
/usr/lib/tmpfiles.d/audit.conf
/usr/libexec/initscripts/legacy-actions/auditd
/usr/libexec/initscripts/legacy-actions/auditd/condrestart
/usr/libexec/initscripts/legacy-actions/auditd/reload
/usr/libexec/initscripts/legacy-actions/auditd/restart
/usr/libexec/initscripts/legacy-actions/auditd/resume
/usr/libexec/initscripts/legacy-actions/auditd/rotate
/usr/libexec/initscripts/legacy-actions/auditd/state
/usr/libexec/initscripts/legacy-actions/auditd/stop
/usr/sbin/auditctl
/usr/sbin/auditd
/usr/sbin/augenrules
/usr/sbin/aureport
/usr/sbin/ausearch
/usr/sbin/autrace
/usr/share/audit
/usr/share/audit/sample-rules
/usr/share/audit/sample-rules/10-base-config.rules
/usr/share/audit/sample-rules/10-no-audit.rules
/usr/share/audit/sample-rules/11-loginuid.rules
/usr/share/audit/sample-rules/12-cont-fail.rules
/usr/share/audit/sample-rules/12-ignore-error.rules
/usr/share/audit/sample-rules/20-dont-audit.rules
/usr/share/audit/sample-rules/21-no32bit.rules
/usr/share/audit/sample-rules/22-ignore-chrony.rules
/usr/share/audit/sample-rules/23-ignore-filesystems.rules
/usr/share/audit/sample-rules/30-nispom.rules
/usr/share/audit/sample-rules/30-ospp-v42-1-create-failed.rules
/usr/share/audit/sample-rules/30-ospp-v42-1-create-success.rules
/usr/share/audit/sample-rules/30-ospp-v42-2-modify-failed.rules
/usr/share/audit/sample-rules/30-ospp-v42-2-modify-success.rules
/usr/share/audit/sample-rules/30-ospp-v42-3-access-failed.rules
/usr/share/audit/sample-rules/30-ospp-v42-3-access-success.rules
/usr/share/audit/sample-rules/30-ospp-v42-4-delete-failed.rules
/usr/share/audit/sample-rules/30-ospp-v42-4-delete-success.rules
/usr/share/audit/sample-rules/30-ospp-v42-5-perm-change-failed.rules
/usr/share/audit/sample-rules/30-ospp-v42-5-perm-change-success.rules
/usr/share/audit/sample-rules/30-ospp-v42-6-owner-change-failed.rules
/usr/share/audit/sample-rules/30-ospp-v42-6-owner-change-success.rules
/usr/share/audit/sample-rules/30-ospp-v42.rules
/usr/share/audit/sample-rules/30-pci-dss-v31.rules
/usr/share/audit/sample-rules/30-stig.rules
/usr/share/audit/sample-rules/31-privileged.rules
/usr/share/audit/sample-rules/32-power-abuse.rules
/usr/share/audit/sample-rules/40-local.rules
/usr/share/audit/sample-rules/41-containers.rules
/usr/share/audit/sample-rules/42-injection.rules
/usr/share/audit/sample-rules/43-module-load.rules
/usr/share/audit/sample-rules/44-installers.rules
/usr/share/audit/sample-rules/70-einval.rules
/usr/share/audit/sample-rules/71-networking.rules
/usr/share/audit/sample-rules/99-finalize.rules
/usr/share/audit/sample-rules/README-rules
/usr/share/doc/audit
/usr/share/doc/audit/ChangeLog
/usr/share/doc/audit/README
/usr/share/doc/audit/auditd.cron
/usr/share/licenses/audit
/usr/share/licenses/audit/COPYING
/usr/share/man/man5/auditd-plugins.5.gz
/usr/share/man/man5/auditd.conf.5.gz
/usr/share/man/man5/ausearch-expression.5.gz
/usr/share/man/man7/audit.rules.7.gz
/usr/share/man/man8/auditctl.8.gz
/usr/share/man/man8/auditd.8.gz
/usr/share/man/man8/augenrules.8.gz
/usr/share/man/man8/aulast.8.gz
/usr/share/man/man8/aulastlog.8.gz
/usr/share/man/man8/aureport.8.gz
/usr/share/man/man8/ausearch.8.gz
/usr/share/man/man8/ausyscall.8.gz
/usr/share/man/man8/autrace.8.gz
/usr/share/man/man8/auvirt.8.gz
/var/log/audit
/var/run/auditd.state

Generated by rpm2html 1.8.1

Fabrice Bellet, Sun May 4 03:41:49 2025