From b96e42d50bd23c052714ff6370b2a95131ab2972 Mon Sep 17 00:00:00 2001
From: Steve Kolenich <kolenichsj@tutanota.com>
Date: Wed, 1 Sep 2021 15:58:59 -0400
Subject: Update EOL for Alpine Linux release

---
 db/software-eol.db | 1 +
 1 file changed, 1 insertion(+)

diff --git a/db/software-eol.db b/db/software-eol.db
index bebd4de8..010b6d67 100644
--- a/db/software-eol.db
+++ b/db/software-eol.db
@@ -16,6 +16,7 @@
 #
 # Alpine - https://alpinelinux.org/releases/
 #
+os:Alpine 3.14:2023-05-01:1682899200
 os:Alpine 3.13:2022-11-01:1667275200
 os:Alpine 3.12:2022-05-01:1651377600
 os:Alpine 3.11:2021-11-01:1635739200
-- 
cgit v1.2.3


From 7f3ed088cdbc5501ae9fa4307e7cd302f45ae169 Mon Sep 17 00:00:00 2001
From: Steve Kolenich <kolenichsj@tutanota.com>
Date: Tue, 11 Jan 2022 09:13:12 -0500
Subject: Update EOL for Alpine Linux release

---
 db/software-eol.db | 1 +
 1 file changed, 1 insertion(+)

diff --git a/db/software-eol.db b/db/software-eol.db
index 010b6d67..3b412698 100644
--- a/db/software-eol.db
+++ b/db/software-eol.db
@@ -16,6 +16,7 @@
 #
 # Alpine - https://alpinelinux.org/releases/
 #
+os:Alpine 3.15:2023-11-01:1169879680
 os:Alpine 3.14:2023-05-01:1682899200
 os:Alpine 3.13:2022-11-01:1667275200
 os:Alpine 3.12:2022-05-01:1651377600
-- 
cgit v1.2.3


From 6ae2accb9d811f0489fb98e4db93732c2e7ee1e0 Mon Sep 17 00:00:00 2001
From: myersg86 <myersg86@gmail.com>
Date: Sat, 15 Jan 2022 12:14:57 -0700
Subject: Fix typo in README.md

README.md:51: sytems -> systems
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 197e59c9..4fa3900e 100644
--- a/README.md
+++ b/README.md
@@ -48,7 +48,7 @@ There are multiple options available to install Lynis.
 
 ### Software Package
 
-For sytems running Linux, BSD, and macOS, there is typically a package available. This is the preferred method of obtaining Lynis, as it is quick to install and easy to update. The Lynis project itself also provides [packages](https://packages.cisofy.com/) in RPM or DEB format suitable for systems systems running:
+For systems running Linux, BSD, and macOS, there is typically a package available. This is the preferred method of obtaining Lynis, as it is quick to install and easy to update. The Lynis project itself also provides [packages](https://packages.cisofy.com/) in RPM or DEB format suitable for systems systems running:
 `CentOS`, `Debian`, `Fedora`, `OEL`, `openSUSE`, `RHEL`, `Ubuntu`, and others.
 
 Some distributions may also have Lynis in their software repository: [![Repology](https://repology.org/badge/tiny-repos/lynis.svg)](https://repology.org/project/lynis/versions)
-- 
cgit v1.2.3


From 28409265dbe795ed0214d99f18d517a577a0167e Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Tue, 18 Jan 2022 14:23:39 +0100
Subject: Switch to array type for account_without_password

---
 include/tests_authentication | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/tests_authentication b/include/tests_authentication
index 2712aa34..1718f99a 100644
--- a/include/tests_authentication
+++ b/include/tests_authentication
@@ -916,7 +916,7 @@
             LogText "Result: found one or more accounts without password"
             for I in ${FIND2}; do
                 LogText "Account without password: ${I}"
-                Report "account_without_password=${I}"
+                Report "account_without_password[]=${I}"
             done
             Display --indent 2 --text "- Accounts without password" --result "${STATUS_WARNING}" --color RED
             ReportWarning "${TEST_NO}" "Found accounts without password"
-- 
cgit v1.2.3


From ad5dc53a5f01674bf2c89072dd65a33555c51ff1 Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Tue, 18 Jan 2022 14:23:49 +0100
Subject: Release 3.0.7

---
 CHANGELOG.md | 8 ++++++--
 lynis        | 6 +++---
 2 files changed, 9 insertions(+), 5 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index ac435bd5..3d43492a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,16 +1,20 @@
 # Lynis Changelog
 
-## Lynis 3.0.7 (Not released yet)
+## Lynis 3.0.7 (2022-01-18)
 
 ### Added
 - MALW-3290 - Show status of malware components
-- OS detection for RHEL 6
+- OS detection for RHEL 6 and Funtoo Linux
+- Added service manager openrc
 
 ### Changed
 - DBS-1804 - Added alias for MariaDB
 - FINT-4316 - Support for newer Ubuntu versions
 - MALW-3280 - Added Trend Micro malware agent
+- NETW-3200 - Allow unknown number of spaces in modprobe blacklists
+- PKGS-7320 - Support for Garuda Linux and arch-audit
 - Several improvements for busybox shell
+- Russian translation of Lynis extended
 
 ---------------------------------------------------------------------------------
 
diff --git a/lynis b/lynis
index 4a1a3979..a9bef803 100755
--- a/lynis
+++ b/lynis
@@ -43,9 +43,9 @@
     PROGRAM_WEBSITE="https://cisofy.com/lynis/"
 
     # Version details
-    PROGRAM_RELEASE_DATE="2021-07-27"
-    PROGRAM_RELEASE_TIMESTAMP=1627375518
-    PROGRAM_RELEASE_TYPE="pre-release" # pre-release or release
+    PROGRAM_RELEASE_DATE="2022-01-18"
+    PROGRAM_RELEASE_TIMESTAMP=1642512096
+    PROGRAM_RELEASE_TYPE="release" # pre-release or release
     PROGRAM_VERSION="3.0.7"
 
     # Source, documentation and license
-- 
cgit v1.2.3


From 12ad1ca6bdea1f322001a0d2452469fd326fd3c3 Mon Sep 17 00:00:00 2001
From: pyllyukko <pyllyukko@maimed.org>
Date: Tue, 25 Jan 2022 18:59:36 +0200
Subject: KRNL-5830: Check for /var/run/needs_restarting

Creating this file was introduced in slackpkg version 15.0.10.
---
 include/tests_kernel | 38 +++++++++++++++++++++-----------------
 1 file changed, 21 insertions(+), 17 deletions(-)

diff --git a/include/tests_kernel b/include/tests_kernel
index 610fd325..1eed32ad 100644
--- a/include/tests_kernel
+++ b/include/tests_kernel
@@ -615,25 +615,29 @@
     Register --test-no KRNL-5830 --os Linux --weight L --network NO --category security --description "Checking if system is running on the latest installed kernel"
     if [ ${SKIPTEST} -eq 0 ]; then
         REBOOT_NEEDED=2
-        FILE="${ROOTDIR}var/run/reboot-required.pkgs"
-        LogText "Test: Checking presence ${FILE}"
-        if [ -f ${FILE} ]; then
-            LogText "Result: file ${FILE} exists"
-            FIND=$(${WCBINARY} -l < ${FILE})
-            if [ "${FIND}" = "0" ]; then
-                LogText "Result: No reboot needed (file empty)"
-                REBOOT_NEEDED=0
+        for FILE in "${ROOTDIR}var/run/reboot-required.pkgs" "${ROOTDIR}var/run/needs_restarting"
+        do
+            LogText "Test: Checking presence ${FILE}"
+            if [ -f ${FILE} ]; then
+                LogText "Result: file ${FILE} exists"
+                FIND=$(${WCBINARY} -l < ${FILE})
+                if [ "${FIND}" = "0" ]; then
+                    LogText "Result: No reboot needed (file empty)"
+                    REBOOT_NEEDED=0
+                    break
+                else
+                    PKGSCOUNT=$(${WCBINARY} -l < ${FILE})
+                    LogText "Result: reboot is needed, related to ${PKGSCOUNT} packages"
+                    for I in ${FIND}; do
+                        LogText "Package: ${I}"
+                    done
+                    REBOOT_NEEDED=1
+                    break
+                fi
             else
-                PKGSCOUNT=$(${WCBINARY} -l < ${FILE})
-                LogText "Result: reboot is needed, related to ${PKGSCOUNT} packages"
-                for I in ${FIND}; do
-                    LogText "Package: ${I}"
-                done
-                REBOOT_NEEDED=1
+                LogText "Result: file ${FILE} not found"
             fi
-        else
-            LogText "Result: file ${FILE} not found"
-        fi
+        done
 
         # Check if /boot exists
         if [ -d "${ROOTDIR}boot" ]; then
-- 
cgit v1.2.3


From 98f57d6d76bbf202c29f647e16f5b8f760c06f03 Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Mon, 31 Jan 2022 13:29:11 +0100
Subject: Added MALW-3274 to detect McAfee VirusScan Command Line Scanner

---
 db/tests.db           |  1 +
 include/tests_malware | 18 ++++++++++++++++++
 2 files changed, 19 insertions(+)

diff --git a/db/tests.db b/db/tests.db
index c9c4797f..522441f4 100644
--- a/db/tests.db
+++ b/db/tests.db
@@ -265,6 +265,7 @@ MAIL-8838:test:security:mail_messaging::Check dovecot process:
 MAIL-8860:test:security:mail_messaging::Check Qmail status:
 MAIL-8880:test:security:mail_messaging::Check Sendmail status:
 MAIL-8920:test:security:mail_messaging::Check OpenSMTPD status:
+MALW-3274:test:security:malware::Check for McAfee VirusScan Command Line Scanner:
 MALW-3275:test:security:malware::Check for chkrootkit:
 MALW-3276:test:security:malware::Check for Rootkit Hunter:
 MALW-3278:test:security:malware::Check for LMD:
diff --git a/include/tests_malware b/include/tests_malware
index cb13ca96..40336fa5 100644
--- a/include/tests_malware
+++ b/include/tests_malware
@@ -45,6 +45,24 @@
     TRENDMICRO_DSA_DAEMON_RUNNING=0
 #
 #################################################################################
+#
+    # Test        : MALW-3274
+    # Description : Check for installed tool (McAfee VirusScan for Command Line)
+    Register --test-no MALW-3274 --weight L --network NO --category security --description "Check for McAfee VirusScan Command Line"
+    if [ ${SKIPTEST} -eq 0 ]; then
+        LogText "Test: checking presence McAfee VirusScan for Command Line"
+        if [ -x /usr/local/uvscan/uvscan ]; then
+            Display --indent 2 --text "- ${GEN_CHECKING} McAfee VirusScan for Command Line" --result "${STATUS_FOUND}" --color GREEN
+            LogText "Result: Found ${MCAFEECLBINARY}"
+            MALWARE_SCANNER_INSTALLED=1
+            AddHP 2 2
+            Report "malware_scanner[]=mcafeecl"
+        else
+            LogText "Result: McAfee VirusScan for Command Line not found"
+        fi
+    fi
+#
+#################################################################################
 #
     # Test        : MALW-3275
     # Description : Check for installed tool (chkrootkit)
-- 
cgit v1.2.3


From 558e3bb586c58f175c86f139d55da460a9b1c8ff Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Mon, 31 Jan 2022 13:30:43 +0100
Subject: Switch to pre-release

---
 CHANGELOG.md | 7 +++++++
 lynis        | 8 ++++----
 2 files changed, 11 insertions(+), 4 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3d43492a..acfa1b28 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,12 @@
 # Lynis Changelog
 
+## Lynis 3.0.8 (not released yet)
+
+### Added
+- MALW-3274 - Detect McAfee VirusScan Command Line Scanner
+
+---------------------------------------------------------------------------------
+
 ## Lynis 3.0.7 (2022-01-18)
 
 ### Added
diff --git a/lynis b/lynis
index a9bef803..c15a78c7 100755
--- a/lynis
+++ b/lynis
@@ -43,10 +43,10 @@
     PROGRAM_WEBSITE="https://cisofy.com/lynis/"
 
     # Version details
-    PROGRAM_RELEASE_DATE="2022-01-18"
-    PROGRAM_RELEASE_TIMESTAMP=1642512096
-    PROGRAM_RELEASE_TYPE="release" # pre-release or release
-    PROGRAM_VERSION="3.0.7"
+    PROGRAM_RELEASE_DATE="2022-01-31"
+    PROGRAM_RELEASE_TIMESTAMP=1643632222
+    PROGRAM_RELEASE_TYPE="pre-release" # pre-release or release
+    PROGRAM_VERSION="3.0.8"
 
     # Source, documentation and license
     PROGRAM_SOURCE="https://github.com/CISOfy/lynis"
-- 
cgit v1.2.3


From e5f5750bfab9511bc4b45d5f424900f04ff7cbcf Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Mon, 31 Jan 2022 13:55:55 +0100
Subject: Improved log message

---
 include/tests_ssh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/tests_ssh b/include/tests_ssh
index 7f31c348..de3209ee 100644
--- a/include/tests_ssh
+++ b/include/tests_ssh
@@ -74,7 +74,7 @@
                 LogText "Result: ${I}/sshd_config exists"
                 if [ ${FOUND} -eq 1 ]; then
                     ReportException "${TEST_NO}:01"
-                    LogText "Result: we already had found another sshd_config file. Using this new file then."
+                    LogText "Result: we already found another sshd_config file. Using this new file instead of the previous one."
                 fi
                 FileIsReadable ${I}/sshd_config
                 if [ ${CANREAD} -eq 1 ]; then
-- 
cgit v1.2.3


From ac853a03fb8b0ae84f2ff0fb87860898004b6dad Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Mon, 31 Jan 2022 15:08:30 +0100
Subject: Updated log

---
 CHANGELOG.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index acfa1b28..e9b0c71d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,9 @@
 ### Added
 - MALW-3274 - Detect McAfee VirusScan Command Line Scanner
 
+### Changed
+- KRNL-5830 - Check for /var/run/needs_restarting (Slackware)
+
 ---------------------------------------------------------------------------------
 
 ## Lynis 3.0.7 (2022-01-18)
-- 
cgit v1.2.3


From b4287df9c64b721136f59cb52101d5e766273edf Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Mon, 31 Jan 2022 15:58:07 +0100
Subject: Corrected timestamp for Alpine 3.15

---
 db/software-eol.db | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/db/software-eol.db b/db/software-eol.db
index 3b412698..f8242d35 100644
--- a/db/software-eol.db
+++ b/db/software-eol.db
@@ -16,7 +16,7 @@
 #
 # Alpine - https://alpinelinux.org/releases/
 #
-os:Alpine 3.15:2023-11-01:1169879680
+os:Alpine 3.15:2023-11-01:1698793200
 os:Alpine 3.14:2023-05-01:1682899200
 os:Alpine 3.13:2022-11-01:1667275200
 os:Alpine 3.12:2022-05-01:1651377600
-- 
cgit v1.2.3


From ce4a0ce6bb3e4be5ad51b2fb054c4be5352abe74 Mon Sep 17 00:00:00 2001
From: Michael Boelen <michael.boelen@cisofy.com>
Date: Mon, 31 Jan 2022 16:00:11 +0100
Subject: Updated log

---
 CHANGELOG.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index e9b0c71d..f291d7d0 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,6 +4,7 @@
 
 ### Added
 - MALW-3274 - Detect McAfee VirusScan Command Line Scanner
+- EOL for Alpine Linux 3.14 and 3.15
 
 ### Changed
 - KRNL-5830 - Check for /var/run/needs_restarting (Slackware)
-- 
cgit v1.2.3