Hello Everyone,
How do I verify that a Red Hat backported fix (aka security errata) was applied in the version of CentOS I am running? It is difficult to trace from Red Hat to CentOS, and I'm hoping that there is a CLI command I can use to verify that the security errata was installed.
The closest idea I have is to check the rpm's change log via the CLI. Any other ideas?
Thank you in advance!
Jake
Tracing Red Hat Security Errata to CentOS
Re: Tracing Red Hat Security Errata to CentOS
Subscribe to the centos-announce mailing list and you will get mails about each update with links in them to the upstream errata page describing the fix and its severity. Once subscribed you can edit your preferences via the web and pick which versions and architectures you want to receive mails for.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Tracing Red Hat Security Errata to CentOS
Thanks, Trevor. I will certainly do that!
Is the errata info not included in the rpm's change log? See here for example: https://www.cyberciti.biz/tips/howto-fi ... gelog.html
Is the errata info not included in the rpm's change log? See here for example: https://www.cyberciti.biz/tips/howto-fi ... gelog.html
Re: Tracing Red Hat Security Errata to CentOS
The CVE number is usually in the changelog but then you have to query each package to find it. And unless it's installed already then you have to track down the url for it and use rpm -qp --changelog http://.... to access it.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Tracing Red Hat Security Errata to CentOS
Thank you for the info! I think this is my last question. I was looking at the announcements mailing list archives, but I didn't see a search feature: https://lists.centos.org/pipermail/centos-announce/
I can use Google to search, but wondered if I missed the search that is on the site. Thanks again!
I can use Google to search, but wondered if I missed the search that is on the site. Thanks again!
Re: Tracing Red Hat Security Errata to CentOS
I don't think there is a search function in mailman so google is your best option. Of course, once you are subscribed they get delivered to your inbox and can be processed from there.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Tracing Red Hat Security Errata to CentOS
Thanks again for the info!