Account Links: Cart | Your Account | Logout

Skip to content

Red Hat Knowledgebase

Red Hat Knowledgebase Search:

Updated Within the Last:

New Solutions within the last day New Solutions within the last week New Solutions within the last month

Browse by topics:


Click to View a Topic
Red Hat Enterprise Linux > Red Hat Enterprise Linux 5 > Issue <<  17 of 368 >>

Solution Tools:


Email a Solution Postcard Printer version Submit a comment on this answer Update notifications Request an answer Back

Article Reference

Article ID: 9198
Last update: 10-08-06
Issue:
What is OVAL and how can I use it to learn about security issues?
Resolution:

Release Found: Red Hat Enterprise Linux 3 and up

The Open Vulnerability and Assessment Language (OVAL) is an international information-security effort that promotes open and publicly available security content. The goal of OVAL is to standardize the way security advisories are communicated across the entire spectrum of security tools and services.

OVAL is a project of the MITRE Corporation, which is well known for providing CVE (Common Vulnerabilities and Exposures) listings.

Red Hat now provides OVAL patch definitions for Red Hat Enterprise Linux 3 and later versions. With OVAL-compatible tools, these definitions can be used to accurately test for the presence of vulnerabilities.

The OVAL definitions can be found here: http://www.redhat.com/oval.

A listing of third-party OVAL compatible tools can be found here: http://oval.mitre.org/compatible/compatible.html

NOTE: Red Hat does not provide support for these third-party tools. However, Red Hat's commitment to providing OVAL-compatible patch definitions means that users of these tools can now easily integrate them with their Red Hat Enterprise Linux environments.


How well did this entry answer your question?


good wrong incomplete out of date
Red Hat Enterprise Linux > Red Hat Enterprise Linux 5 > Issue <<   17  of  368  >>