thr3ads.net - CentOS - [CentOS] Security Updates not properly flagged [Jun 2021]

If this information is useful, please help other people find it:
Share via:

Pete Biggs

2021-Jun-21 11:34 UTC

[CentOS] Security Updates not properly flagged

> 
> There are probably more security updates which should be installed by
> yum --security but those are the packages I am most interested in.
> 
> Please change as necessary to allow yum --security to work.
> CentOS does not provide the metadata to allow the --security flag to
work.

It doesn't provide it because that information from Redhat is
proprietary and not open source.

P.

Gionatan Danti

2021-Jun-21 11:53 UTC

head link

[CentOS] Security Updates not properly flagged

Il 2021-06-21 13:34 Pete Biggs ha scritto:> CentOS does not provide the metadata to allow the --security flag to
> work.
Right.
> It doesn't provide it because that information from Redhat is
> proprietary and not open source.
This is not my understanding. From what I can see, updates which patches 
CVEs are freely readable on Red Has site. For example:
CVE: https://access.redhat.com/security/cve/cve-2021-3156
UPDATE: https://access.redhat.com/errata/RHSA-2021:0221

Historically the CentOS team refused to provide such metadata due to the 
added work required. Now with Stream, and the demise of classic CentOS, 
security updates are even less probable (ie: a rolling release is often 
wholly updated).

Regards.

-- 
Danti Gionatan
Supporto Tecnico
Assyoma S.r.l. - www.assyoma.it
email: g.danti at assyoma.it - info at assyoma.it
GPG public key ID: FF5F32A8

CentOS - Jun 2021 - Security Updates not properly flagged

[CentOS] Security Updates not properly flagged

[CentOS] Security Updates not properly flagged