Displaying 20 results from an estimated 3000 matches similar to: "Regarding CVE-2015-1781 vulnerability in Glibc"
2015 Jun 05
4
Regarding CVE-2015-1781 vulnerability in Glibc
Thanks for the reply.
Where can we get the info regarding whether its fixed in CentOS 5 or not?
I did rpm -q --changelog <glibc> | grep <CVE>
but I dont find any info on this.
This might means 3 things.
1. The version is not affected so no fix
2. The version is affected, still no fix
3. Fix applied, but not shown in o/p
Thanks
On Fri, Jun 5, 2015 at 2:06 PM, John Tall <mjtallx
2015 Jun 05
1
Regarding CVE-2015-1781 vulnerability in Glibc
Many other security issues affect *unpatched* Centos 5.5 version. Some of
very critical too ..
--
Eero
2015-06-05 11:58 GMT+03:00 John Tall <mjtallx at gmail.com>:
> On Fri, Jun 5, 2015 at 10:48 AM, Venkateswara Rao Dokku
> <dvrao.584 at gmail.com> wrote:
> > Thanks for the reply.
> >
> > Where can we get the info regarding whether its fixed in CentOS 5 or
2015 Mar 31
2
OpenSSL vulnerability fix
just for my curiosity, How can we make sure that its not affected?
Is there any script to check whether its vulnerable or not (as in bash
shell shock vulnerability test)?
On Tue, Mar 31, 2015 at 12:25 PM, Eero Volotinen <eero.volotinen at iki.fi>
wrote:
> Centos 5 is not affected by this bug, so fix is not available.
>
> Eero
> 31.3.2015 9.48 ap. kirjoitti "Venkateswara
2015 Mar 31
2
OpenSSL vulnerability fix
Hi All,
I wanted to fix the openssl vulnerabilities (CVE-2014-3569, CVE-2014-3570,
CVE-2014-3571, CVE-2014-3572) in my CentOS 5.5 and found out that 0.9.8zd
has the fixes I am looking for (from the
https://www.openssl.org/news/vulnerabilities.html link).
But, When I tried to find the openssl-0.9.8zd rpm package, I did not find
it in http://mirror.centos.org/centos/5/updates/x86_64/RPMS/.
The
2015 Feb 10
3
Packages not available in CentOS 7
Thanks for the reply.
I did clean installation of the CentOS 7 and wanted to install the list of
packages in the above mail, but couldn't get them installed.
Can you please help me in installing the above packages?
On Tue, Feb 10, 2015 at 11:33 AM, John R Pierce <pierce at hogranch.com> wrote:
> On 2/9/2015 9:57 PM, Venkateswara Rao Dokku wrote:
>
>> I would like to
2015 Nov 25
2
Glibc vulnerbality CVE-2015-1781
Hi,
We are using CentOS 5.5 as a base OS for one of our products.The version of
Glibc we are using was glibc-2.5-123.el5_11.1.
We wanted to see whether this glibc is vulerable to CVE-2015-1781. I have
gone through re-documentation & came across the following link
https://access.redhat.com/security/cve/cve-2015-1781
In the link it is mentioned that, the CVE will not be fixed in Red-Hat 5
2015 Aug 19
2
Converting HVM to PV kernel CentOS7
Thanks for the reply.
If we want to have PV kernel for CentOs 7 , are there any guidelines to
follow?
How we can know before hand itself that this kernel is PV or HVM, without
installing kernel?
On Wed, Aug 19, 2015 at 11:27 AM, John R Pierce <pierce at hogranch.com> wrote:
> On 8/18/2015 10:37 PM, Venkateswara Rao Dokku wrote:
>
>> Thanks for the reply.
>> Sorry for the
2015 Jun 05
0
Regarding CVE-2015-1781 vulnerability in Glibc
On Fri, Jun 5, 2015 at 10:26 AM, Venkateswara Rao Dokku
<dvrao.584 at gmail.com> wrote:
> Hi All,
>
> I am using CentOS 5.5 with gcc version 2.5.123.el5.
Are you really on 5.5? You should consider updating to 5.11.
> I just wanted to check whether the CVE-2015-1781 is fixed in the current
> version?
>
> How can I do that?
>
>
> Right now I dont have access to
2015 Apr 24
6
Centos security update
Hi,
I was using CentOS 7 and when I ran some custom commercial security scan on
my machine, I found about 122 vulnerabilities.
Can you help me on how to get security upgrades on top of my existing
CentOS?
# cat /etc/redhat-release
CentOS Linux release 7.1.1503 (Core)
Thanks for the help.
--
Thanks & Regards,
Venkateswara Rao Dokku.
2015 Jun 05
0
Regarding CVE-2015-1781 vulnerability in Glibc
On Fri, Jun 5, 2015 at 10:48 AM, Venkateswara Rao Dokku
<dvrao.584 at gmail.com> wrote:
> Thanks for the reply.
>
> Where can we get the info regarding whether its fixed in CentOS 5 or not?
>
> I did rpm -q --changelog <glibc> | grep <CVE>
>
> but I dont find any info on this.
>
> This might means 3 things.
> 1. The version is not affected so no fix
2015 Apr 27
5
Centos security update
Thanks for the replies. The tool that we used for testing the security
vulnerability is "Nessus".
I have glibc version 2.17-78.el7, I saw that CVE-2015-0235 (Ghost) is fixed
in this version and I want to apply patch for the vulnerbailities
CVE-2015-1472 & CVE-2015-1473. Can you please help me in finding the right
version that has fixes for these?
Thanks
On Sat, Apr 25, 2015 at
2015 Feb 10
3
Packages installation in CentOs
Hi,
I have a customized CentOS 5.5 kernel. I want it to upgrade it to CentOS 7.
The approach I have decided was to take the CentOS 7 and then install the
customized packages that are there in the CentOS 5.5.
While trying to install the customized packages, I could install most of
the packages, but I couldn't install the below in the latest CentOS 7.
1. rhpl
2. mod_perl
3.
2015 Apr 24
2
Centos security update
On 4/24/2015 12:14 PM, Alexander Dalloz wrote:
> Am 24.04.2015 um 11:21 schrieb Venkateswara Rao Dokku:
>> I was using CentOS 7 and when I ran some custom commercial security
>> scan on
>> my machine, I found about 122 vulnerabilities.
>
> That's why those scans are wasted money. From a security management
> point of view they neither help you nor your manager.
2015 Aug 19
2
Converting HVM to PV kernel CentOS7
Hi,
I have installed CentOS 7 HVM kernel. I would like to convert it to CentOs
7 PV kernel.
When googled about it, I found that this can be done by following commands
yum install xen or yum install kernel-xen
But, when I tried the below commands, I am getting the error *"No package
kernel-xen available.**"*
What am I missing here. Any help is much appreciated.
--
Thanks &
2015 Aug 19
2
CentOS 7 PV kernel
HI,
Is the CentOS 7 PV kernel available?
I installed latest CentOS 7 & I found out that it is a HVM guest.
So, if we wanted to have CentOS PV guest for CentOS 7, is there any
specific steps to follow?
or the same kernel will work as both PV & HVM?
--
Thanks & Regards,
Venkateswara Rao Dokku.
2015 Feb 10
2
Packages not available in CentOS 7
HI,
I would like to upgrade my customized CentOS 5.5 to CentOS 7. For this I
took the latest stable CentOS 7 image and wanted to install the packages
that are there in the existing customized version of CentOS 5.5.
I could install some of the packages, but the following packages I couldn't
install.
1. Rhpl
2.mod_perl
3. 3.notification-daemon
4. 4.vixie-cron
5.kudzu
6.redhat-lsb
2016 May 05
3
Regarding upgrade from CentOS .5.5 to CentOS 7
Hi,
I wanted to upgrade from centOS 5.5 to CentOS 7 without losing the data.
Is there any upgrade path available?
or what is the proper way to do it without affecting the existing config?
Thnaks for the help
--
Thanks & Regards,
Venkateswara Rao Dokku.
2015 Aug 19
2
Converting HVM to PV kernel CentOS7
Thanks for the reply.
Sorry for the typo in the earlier mail.
I have PV-HVM of CentOS 7 & I need to convert it to PV kernel.
Basically here I am trying to see whether my PV_HVM kernel is vulenrable to
this issue given in the following link
http://seclists.org/oss-sec/2015/q3/212
In the above link, it was mentioned that the PV kernel is not vulnerable to
this bug, but HVM is. It didnt say
2015 Aug 20
2
CentOS 7 PV kernel
Thanks for the reply.
How to know that the CentOS 7 kerenel is whether PV or HVM?
When I searched about it, I found the following link, where the kernel type
us determined from
the 2 following commands
1. uname -r
2. lsmod | grep xen
If both have "*xen*", then it is PV, if lsmod returns something but not in
kernel name then its PV-HVM, else its HVM
>From what
2016 May 10
3
Upgrade path from CentOS 7 to future versions
Hi,
I would like to know whether the valid upgrade path will be present from
CentOS 7 to future versions like we get for Ubuntu or some other operating
systems.
Right now, I am sure that we do not have proper update path in CentOS to
move from one version to another.
--
Thanks & Regards,
Venkateswara Rao Dokku.