Security/Critical updates for CentOS.

70 views
Skip to first unread message

Serhiy Danchenko

unread,
Mar 15, 2015, 9:22:08 PM3/15/15
to vfe...@googlegroups.com
vFense shows all updates as optional. Does vFense relay on yum to mark updates as Critical/Security or it parses, for example, Red Hat OVAL file?

Allen Sanabria

unread,
Mar 16, 2015, 7:26:07 AM3/16/15
to vfe...@googlegroups.com
Currently the updates do rely on the updates to mark it as Critical or Optional.

Serhiy Danchenko

unread,
Mar 28, 2015, 11:47:51 AM3/28/15
to vfe...@googlegroups.com
Do you mean yum list-security? 

That will work for pure Redhat only. :(

There are scripts for Spacewalk that imports Centos errata. Do we have something similar?

Serhiy Danchenko

unread,
Mar 28, 2015, 11:47:51 AM3/28/15
to vfe...@googlegroups.com
Sorry, one more thing. I followed https://github.com/vmfarms/generate_updateinfo and now yum info-security on my CentOS 5 server will give output like:

Loaded plugins: fastestmirror, security
Loading mirror speeds from cached hostfile

===============================================================================
  Important CentOS nss Update
===============================================================================
  Update ID : CESA_2013__1791
    Release : CentOS 5
       Type : security
     Status : stable
     Issued : 2013-12-05 17:45:58
Description : Important CentOS nss Update
info-security done


But, I still do not see critical updates for CentOS 5 on vFense server. All updates are shown as optional.

Is there anything else could be done?

On Monday, March 16, 2015 at 7:26:07 AM UTC-4, Allen Sanabria wrote:

Serhiy Danchenko

unread,
Mar 28, 2015, 11:47:51 AM3/28/15
to vfe...@googlegroups.com
Also, I see there is cve parser for redhat. Can it be translated to centos? Most packages are the same name with minor changes.


On Monday, March 16, 2015 at 7:26:07 AM UTC-4, Allen Sanabria wrote:

Allen Sanabria

unread,
Mar 28, 2015, 11:51:43 AM3/28/15
to Serhiy Danchenko, vfe...@googlegroups.com
This is very cool, I will see if I can get this working.

--
You received this message because you are subscribed to the Google Groups "vFense" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vfense+un...@googlegroups.com.
To post to this group, send email to vfe...@googlegroups.com.
Visit this group at http://groups.google.com/group/vfense.
 To view this discussion on the web visit https://groups.google.com/d/msgid/vfense/88c3e3bc-576d-4ec5-9e73-3ab5b9c30be1%40googlegroups.com.

For more options, visit https://groups.google.com/d/optout.

Reply all
Reply to author
Forward
0 new messages