Page 1 of 1

Where can I find information about kernel builds?

Posted: 2017/10/12 13:38:10
by epeters
I recently wanted to patch my system for this Linux ELF Escalation security issue: https://www.theregister.co.uk/2017/09/2 ... rnel_vuln/

I saw that a forum user knew in what build this CVE was patched: viewtopic.php?p=271009&sid=c2c7ada78edbc05447031728d3a4c13f#p271009

What resources are there to help me go from "I know this CVE exists" to "Is it patched for my CentOS version, and if so, which kernel build is it patched in for my Centos version?", short of finding another forum post like the one I linked above, linked the CVE and the specific kernel version info.

Re: Where can I find information about kernel builds?

Posted: 2017/10/12 15:14:17
by TrevorH
You can look for the CVE number that you're interested in on the Redhat website - for CVE information please refer to http://access.redhat.com/security/cve/ - for example https://access.redhat.com/security/cve/CVE-2014-0224. Change the CVE number to the one you're interested in.

You can also use rpm -q --changelog kernel-2.6.32-693.10.3.el6 | grep -i cve-yyy-nnn to check if your particular CVE number is listed in the rpm changelog.

You can also look at the Redhat errata pages on https://access.redhat.com/errata/#/?q=& ... _version=6