Red Hat Solution Integration

  • Release version: Yokohama
  • Updated January 30, 2025
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Red Hat Solution Integration

    Red Hat Solution Integration allows ServiceNow Vulnerability Response customers to review and implement remediation solutions for security vulnerabilities affecting Red Hat products and services. This integration is part of the Vulnerability Solution Management feature, available via separate subscription, which enhances vulnerability risk management by importing and associating Red Hat remediation solutions.

    Show full answer Show less

    Starting with Vulnerability Response version 21.0, Red Hat transmits vulnerability data using the Common Security Advisory Framework (CSAF) format, replacing the older Common Vulnerability Reporting Framework (CVRF). To handle this, a new CSAF parser has been implemented to extract and populate relevant data fields accurately.

    Key Features

    • Automated Data Import: Scheduled jobs automatically synchronize Red Hat remediation data with your instance, maintaining up-to-date vulnerability solutions.
    • Manual Execution: Scheduled jobs can also be run manually if immediate synchronization is needed.
    • CSAF Format Support: The integration supports parsing payloads in both CSAF (default) and CVRF formats, adaptable via simple configuration in the integration script.
    • Preconfigured Run-As User: The integration uses a default run-as user (VR.System) for secure and consistent operation; this should not be changed.
    • Role-Based Access: Specific roles such as snvul.configurerhsaintegration and snvul.vulnerabilityadmin manage access and configuration permissions within the Vulnerability Response application.
    • Integration Management: The Red Hat Solution Integration can be accessed and managed via Vulnerability Response under Administration > Integrations.

    Practical Application for ServiceNow Customers

    By using Red Hat Solution Integration, customers can seamlessly incorporate Red Hat’s security advisories and remediation solutions into their vulnerability management workflows. This automation reduces manual effort, improves accuracy in vulnerability remediation, and ensures that security teams are working with the latest vulnerability information and fixes.

    The integration links Red Hat solutions with vulnerabilities, vulnerable items, and remediation tasks, enabling efficient tracking and resolution of security risks associated with Red Hat products.

    Additional Information

    • Ensure your Vulnerability Response instance is updated to the latest version to access the newest features and compatibility for Vulnerability Solution Management and Red Hat integrations.
    • For installation and configuration details, utilize the Setup Assistant guides to install Vulnerability Solution Management and configure solution integrations properly.
    • View imported remediation solutions within the Vulnerability Response application to monitor and act on available fixes.

    You can review and implement proposed remediation solutions provided by the Red Hat Solution Integration in the Vulnerability Response application.

    Red Hat Solution Integration is included in the Vulnerability Solution Management feature of Vulnerability Response, available by separate subscription. See Vulnerability Solution Management for more information on how Vulnerability Response incorporates solutions.

    Red Hat Solution Integration investigates reports of security vulnerabilities affecting Red Hat products and services, and provides solution information to help manage security risks. Solutions known as remediations are imported into your Red Hat Solution Integration from Red Hat.

    Starting from version 21.0 of Vulnerability Response, Red Hat transmits payloads in the Common Security Advisory Framework (CSAF) format rather than the Common Vulnerability Reporting Framework (CVRF) format. CSAF, an XML-based standard, differs in both structure and format from CVRF. To accommodate this change, a new CSAF parser has been developed. This parser interprets the CSAF format, extracting the required fields to populate the tables accordingly.
    Note:
    By default, you will receive the payload in the CSAF format.
    The following extracts show the integration script for parsing the payload received from Red Hat in the CSAF and CVRF formats respectively. 
    /** « This function serves to construct the integration script.

*	The integration process record (integrationProcessGr) is provided in the event

*	The function should return the newly constructed script. */
(function(integrationProcessGr){

// Add any logic here to construct your integration script as necessary.

// Pass true if CSAF payload is expected. Pass false if CVRF payload is expected
return new sn_vul.RedHatSolutionIntegration(true);
})(integrationProcessGr);

    /** « This function serves to construct the integration script.

*	The integration process record (integrationProcessGr) is provided in the event

*	The function should return the newly constructed script. */
(function(integrationProcessGr){

// Add any logic here to construct your integration script as necessary.

// Pass true if CSAF payload is expected. Pass false if CVRF payload is expected
return new sn_vul.RedHatSolutionIntegration(false);
})(integrationProcessGr);

    Red Hat Solution Integration contains entry points to the Red Hat product, invoked as a scheduled job. The scheduled job simplifies the vulnerability remediation life cycle by keeping the instance synchronized with other vulnerability management systems. It runs automatically. You can also execute the scheduled job manually.

    There is a configured run-as user for each integration record. The default value for this user is VR.System. Do not change this value.

    Available versions

    For the most current version of Vulnerability Solution Management and Red Hat solutions, verify you have the most current version of Vulnerability Response installed.

    For more information about installing and configuring Vulnerability Solution Management and solution integrations, see Install the Solution Management for Vulnerability Response application and Configure installed solution integrations for Vulnerability Solution Management using Setup Assistant.

    Release version of Vulnerability Response Version of Vulnerability Solution Management Release Notes

    Vulnerability Response v15.0

    		 v10.3

    For compatibility information, see KB0856498 Vulnerability Response Compatibility Matrix and Release Schema Changes

    Roles

    Red Hat Solution Integration tasks involve the following role: sn_vul.configure_rhsa_integration, sn_vul.vulnerability_admin

    Persona and granular roles are available to help you manage what users and groups can see and do in the Vulnerability Response application. For an initial assignment of the persona roles in Setup Assistant, see Assign the Vulnerability Response persona roles using Setup Assistant. For more information about managing granular roles, see Manage persona and granular roles for Vulnerability Response.

    Red Hat Solution Integration

    To view the Red Hat Solution Integration, navigate to Vulnerability Response > Administration > Integrations.

    The following integration is included in the base system.

    Table 1. Red Hat integration
    Integration Description
    Red Hat Solution Integration

    Retrieves solutions and National Vulnerability Database (NVD) mapping to associate solutions with vulnerabilities, vulnerable items, and remediation tasks.

    Solutions

    To view imported solutions in a list, see View a solution.