Patch Lists

General support questions
Post Reply
User avatar
Back4Breakfast
Posts: 4
Joined: 2020/06/26 10:56:02

Patch Lists

Post by Back4Breakfast » 2020/06/26 10:57:52

Hi All

Newbie question but for PCI DSS, I need to find a vendor list of patches available for CentOS7. I've hunted the main site for hours and can find several FAQs on how to check what patches are available, but I need a list provided by the CentOS developers that shows all patches so I can correlate them with the servers I'm reviewing.

Any ideas where I can find the elusive patch list?

Many Thanks

User avatar
TrevorH
Forum Moderator
Posts: 28827
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Patch Lists

Post by TrevorH » 2020/06/26 10:58:55

I really doubt if such a thing exists.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

User avatar
Back4Breakfast
Posts: 4
Joined: 2020/06/26 10:56:02

Re: Patch Lists

Post by Back4Breakfast » 2020/06/26 11:10:35

Ahhh that's a bummer. Wonder how many people are able to use CentOS then for PCI Requirement 6.2. Is it just version 7 that doesn't have a list 8 does? Or is just something that isn't done across the board?

User avatar
TrevorH
Forum Moderator
Posts: 28827
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Patch Lists

Post by TrevorH » 2020/06/26 11:31:57

CentOS doesn't track or produce CVE lists which means that for example, yum update --security does not work.

For CentOS, the only way to operate is to assume that all updates are for security purposes and put them all on ASAP.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

User avatar
Back4Breakfast
Posts: 4
Joined: 2020/06/26 10:56:02

Re: Patch Lists

Post by Back4Breakfast » 2020/06/26 11:35:31

Ah ok - makes sense. I think I may have to sample something different then. I believe CentOS is classed as an OS that is not prone to malware etc. Its a shame as last year CentOS5 did have a link - https://www.centos.org/docs/5/html/Depl ... dates.html - but that's dead and that's version 5 so guessing it wasn't a list of updates but more how to find what is missing?

Thanks for your help though - very much appreciated! :)

User avatar
TrevorH
Forum Moderator
Posts: 28827
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Patch Lists

Post by TrevorH » 2020/06/26 11:51:42

That link for el5 is most likely copied from the upstream RHEL 5 docs and was never valid. No version of CentOS has ever shipped the security metadata necessary for the yum-security package to function. That's only available on RHEL.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

User avatar
Back4Breakfast
Posts: 4
Joined: 2020/06/26 10:56:02

Re: Patch Lists

Post by Back4Breakfast » 2020/06/26 11:54:05

Cool thanks for that - most helpful. I'll revise the Sample accordingly.

Post Reply

Return to “CentOS 7 - General Support”