Hi all. I am curious if anyone has experience using the OVAL tests for CVEs provided by Red Hat (https://www.redhat.com/security/data/metrics/) for CentOS 7. I was able to get the tests working for the non modified packages provided by RHEL but not the packages modified by CentOS. I believe this is because CentOS 7 no longer has minor versions (PACKAGE.VERSION.el7.*.rpm) whereas RHEL does (PACKAGE.VERSION.el7_1.*.rpm) so the CVE check thinks that the package is out of date. Any ideas? Thanks _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Modifying RHEL OVAL CVE feed for use with CentOS 7
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Modifying RHEL OVAL CVE feed for use with CentOS 7
- From: "Mosley, Graham A. (GSFC-6062)[GSFC - HIGHER EDUCATION]" <graham.mosley@xxxxxxxx>
- Date: Mon, 13 Jul 2015 17:40:07 +0000
- Accept-language: en-US
- Delivered-to: centos@xxxxxxxxxx
- Thread-index: AQHQvZL1zvcx9BTrtUan/dIZ/UaE5Q==
- Thread-topic: Modifying RHEL OVAL CVE feed for use with CentOS 7
- Prev by Date: Re: Migrating to IdM
- Next by Date: Re: Bonds & Bridge best practices
- Previous by thread: Migrating to IdM
- Next by thread: ssh failed only with nfs home directory
- Index(es):
 |