List "Severity" of security updates

Support for security such as Firewalls and securing linux
Post Reply
chew224
Posts: 1
Joined: 2016/10/14 19:08:09

List "Severity" of security updates

Post by chew224 » 2016/10/14 19:13:06

Hi all,

First post, looked through the forums and couldn't find anything similar. I am wondering if there is a method to list the "Severity" of a security patch (i.e. low, medium, high, critical). I have tried:

Code: Select all

yum updateinfo all
and I get some useful results, but nothing that specifically indicates the severity/importance of a given security update.

output:

Code: Select all

===============================================================================
  python-rsa-3.4.1-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2016-9129aa0c6f
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2016-04-13 03:25:08
       Bugs : 1170702 - Long-unfixed security vulnerabilities
Description : New upstream release with security bug fix
  Installed : true
Any help is appreciated.
Top
User avatar
TrevorH
Site Admin
Posts: 33221
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: List "Severity" of security updates

Post by TrevorH » 2016/10/15 00:13:08

The CentOS repos don't contain the necessary metadata for that to function with packages from base or update. Only EPEL has it currently.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Top
Post Reply

Return to “CentOS 7 - Security Support”