Kernlcare OVAL

TuxCare produces data using the Open Vulnerability and Assessment Language (OVAL). This data
can be used to scan an Linux system for known vulnerabilities caused from missing patches. The
TuxCare Team provides OVAL for all major Linux distributives.

This project aims to further integration of Open Vulnerability and Assessment Language (OVAL)
with TuxCare. OVAL files, provided by TuxCare, cover all CVEs that could be patched using our tools, and
contains a set of tests that will check if any particular pathes are applied.

Links

Main

There is a universal distro-agnostic OVAL file which may used on any distro.

Universal (distro-agnostic): xml|bz2

Distro specific

To get appropriate OVAL file you can use variables defined in `os-release` file where possible.
For example:

            source /etc/os-release
            wget https://patches.kernelcare.com/oval/com.kernelcare.${ID}.${VERSION_ID}.xml
            oscap oval eval --report report.htm com.kernelcare.${ID}.${VERSION_ID}.xml

Also, in case when you have the original OVAL url, you can just add `pathes.kernelcare.com/oval` prefix.
For example:

            wget https://www.debian.org/security/oval/oval-definitions-bullseye.xml
            wget https://patches.kernelcare.com/oval/www.debian.org/security/oval/oval-definitions-bullseye.xml

Debian

Debian 11 xml|bz2
Debian 10 xml|bz2
Debian 9 xml|bz2
Debian 8 xml|bz2
Debian 7 xml|bz2

Ubuntu

Ubuntu 14.04 xml|bz2
Ubuntu 16.04 xml|bz2
Ubuntu 18.04 xml|bz2
Ubuntu 20.04 xml|bz2
Ubuntu 22.04 xml|bz2
Ubuntu 24.04 xml|bz2

Redhat

Redhat 6 xml|bz2
Redhat 7 xml|bz2
Redhat 8 xml|bz2
Redhat 9 xml|bz2

AlmaLinux

AlmaLinux 8 xml|bz2
AlmaLinux 9 xml|bz2

Centos

Centos Linux 6 xml|bz2
Centos Linux 7 xml|bz2
Centos Linux 8 xml|bz2

Oracle

Oracle Linux 6 xml|bz2
Oracle Linux 7 xml|bz2
Oracle Linux 8 xml|bz2
Oracle Linux 9 xml|bz2