OL 9 must have the gnutls-utils package installed.

STIG ID: OL09-00-000430  |  SRG: SRG-OS-000480-GPOS-00227 |  Severity: medium |  CCI: CCI-000366 |  Vulnerability Id: V-271518

Vulnerability Discussion

GnuTLS is a secure communications library implementing the SSL, TLS, and DTLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures. This package contains command line TLS client and server and certificate manipulation tools.

Check

Verify that OL 9 has the gnutls-utils package installed with the following command:

$ dnf list --installed gnutls-utils
Installed Packages
gnutls-utils.x86_64 3.8.3-4.el9_4 @ol9_appstream

If the gnutls-utils package is not installed, this is a finding.

Fix

Install the gnutls-utils package with the following command:

$ sudo dnf install -y gnutls-utils
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.