Hello All!
I am wondering if Centos Stream kernels are ever marked as security updates. I have dnf automatic configured to install security updates however as I see kernels are never in the list, while I saw some CVEs were actually fixed.
Are kernels ever marked as security updates?
If not, what is the recommended way to track kernel security fixes?
Thanks!
Centos Stream kernel security updates
Re: Centos Stream kernel security updates
CentOS even when it was CentOS has never done security metadata so it has never been possible to use yum --security or related parameters. Stream is a permanent beta and RH have declared that it will only receive what are known as "embargoed" CVE fixes once they have already been developed and built and published for RHEL. In some cases this has led to delays of weeks or months after the fix was released for RHEL before they were published for Stream.
I would not use Stream in any production environment nor in any security sensitive areas.
I would not use Stream in any production environment nor in any security sensitive areas.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke