STIGQter: STIG Summary: SUSE Linux Enterprise Server 15 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 23 Apr 2021:

The SUSE operating system must be a vendor-supported release.

DISA Rule

SV-234800r622137_rule

Vulnerability Number

V-234800

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

SLES-15-010000

Severity

CAT I

CCI(s)

• CCI-001230 - The organization incorporates flaw remediation into the organizational configuration management process.

Weight

10

Fix Recommendation

Upgrade the SUSE operating system to a version supported by the vendor. If the system is not registered with the SUSE Customer Center, register the system against the correct subscription.

If the system requires Long-Term Service Pack Support (LTSS), obtain the correct LTSS subscription for the system.

Check Contents

Verify the SUSE operating system is a vendor-supported release.

Use the following command to verify the SUSE operating system is a vendor-supported release:

> cat /etc/os-release

NAME="SLES"
VERSION="15"

Or any SUSE Linux Enterprise 15 Service Pack follow up release.

NAME="SLES"
VERSION="15-SPx"

Current End of Life for SLES 15 General Support is 31 Jul 2028 and Long-term Support is until 31 Jul 2031.

If the release is not supported by the vendor, this is a finding.

Vulnerability Number

V-234800

Documentable

False

Rule Version

SLES-15-010000

Severity Override Guidance

Verify the SUSE operating system is a vendor-supported release.

Use the following command to verify the SUSE operating system is a vendor-supported release:

> cat /etc/os-release

NAME="SLES"
VERSION="15"

Or any SUSE Linux Enterprise 15 Service Pack follow up release.

NAME="SLES"
VERSION="15-SPx"

Current End of Life for SLES 15 General Support is 31 Jul 2028 and Long-term Support is until 31 Jul 2031.

If the release is not supported by the vendor, this is a finding.

Check Content Reference

M

Target Key

5274

Comments