Re: Security Updates not properly flagged

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Sorry, I forgot to mention that I am using CENTOS 7.
This should receive the Red Hat Update cycle releases until 2024, right?

Regards,
Thomas

--

Thomas Doczkal
Snr System Engineer


Socionext Europe GmbH
pittlerstrasse 47
63225 langen, germany
tel +49-6103-3745-386
mobile +49-174-9226082
fax +49-6103-3745-122
thomas.doczkal@xxxxxxxxxxxxx
www.eu.socionext.com
www.socionext.com

Geschaeftsfuehrer/Managing Director: Toshihiko Tanaka, Dirk Weinsziehr,
Koichi Otsuki, Yutaka Yoneyama

Sitz/Seat: Langen, Hessen; Registergericht/Commercial Register:
Offenbach/Main HRB 48005


This e-mail and any attachment contains information
which is private and confidential and is intended for
the addressee only. If you are not an addressee, you
are not authorized to read, copy or use the e-mail or
any attachment. If you have received this e-mail in
error, please notify the sender by return e-mail and
then delete it.


________________________________________
From: CentOS <centos-bounces@xxxxxxxxxx> on behalf of Gionatan Danti <g.danti@xxxxxxxxxx>
Sent: Monday, June 21, 2021 01:53 PM
To: CentOS mailing list
Subject: Re:  Security Updates not properly flagged

Il 2021-06-21 13:34 Pete Biggs ha scritto:
> CentOS does not provide the metadata to allow the --security flag to
> work.

Right.

> It doesn't provide it because that information from Redhat is
> proprietary and not open source.

This is not my understanding. From what I can see, updates which patches
CVEs are freely readable on Red Has site. For example:
CVE: https://access.redhat.com/security/cve/cve-2021-3156
UPDATE: https://access.redhat.com/errata/RHSA-2021:0221

Historically the CentOS team refused to provide such metadata due to the
added work required. Now with Stream, and the demise of classic CentOS,
security updates are even less probable (ie: a rolling release is often
wholly updated).

Regards.

--
Danti Gionatan
Supporto Tecnico
Assyoma S.r.l. - www.assyoma.it
email: g.danti@xxxxxxxxxx - info@xxxxxxxxxx
GPG public key ID: FF5F32A8
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]

  Powered by Linux