Centos7 patches and Vulnerabilities

Support for security such as Firewalls and securing linux
Post Reply
mania
Posts: 49
Joined: 2020/12/19 05:55:37

Centos7 patches and Vulnerabilities

Post by mania » 2020/12/23 10:29:02

hi,
I have a centos7.6-1810(kernel 3.10.0-957),I want to know if below vulnerabilities are applicable or not? I have searched a lot in the internet and did not find any page that talk about centos patches or if these CVEs are applicable ?
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10781
CVE-2020-14304
CVE-2020-14314
CVE-2020-14331
CVE-2020-14385
CVE-2020-14386
CVE-2020-14390
CVE-2020-25284
CVE-2020-8028
Last edited by mania on 2020/12/23 11:09:16, edited 1 time in total.

ms217
Posts: 7
Joined: 2020/09/14 10:40:31

Re: Centos7 patches and Vulnerabilities

Post by ms217 » 2020/12/23 10:41:34

CentOS 7.3-1810, is that a typo?

If you should really run CentOS 7.3 or 7.6, then I can only recommend to update your CentOS to the newest release, since the Kernel wouldn't be the only thing to worry about.
And regarding your question: RHEL takes care of any severe vulnerabilities and fixes their products. So even though Kernel 3.10 is quiet old they maintain their kernel until RHEL/CentOS 7 reached EOL.

So, updating your CentOS to the latest CentOS 7.9-2009 should include and fix any of these vulnerabilities and if they weren't applicable to 3.10 then it won't be fixed because there was no reason.

Don't forget to reboot your server once the new Kernel was installed.

User avatar
TrevorH
Site Admin
Posts: 33191
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Centos7 patches and Vulnerabilities

Post by TrevorH » 2020/12/23 11:39:58

Neither 7.3 nor 7.6 are supported. Only 7.9 is. You need to yum update to get to 7.9 and then recheck.

Use the Red Hat CVE pages to check the list of CVE numbers and see which ones are fixed. Substitute the CVE numbers in https://access.redhat.com/security/cve/cve-yyyy-mmmm to read about them.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

mania
Posts: 49
Joined: 2020/12/19 05:55:37

Re: Centos7 patches and Vulnerabilities

Post by mania » 2020/12/23 11:48:00

unfortunately, I did not find any specific patch or solution providing by Redhat for centos related to these vulnerabilities. If you find a link would you please send here?

User avatar
TrevorH
Site Admin
Posts: 33191
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Centos7 patches and Vulnerabilities

Post by TrevorH » 2020/12/23 13:48:05

You didn't look at the right place then. For the first one on your list, check https://access.redhat.com/security/cve/CVE-2020-10766

Now substitute the other CVE numbers in that url...
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

mania
Posts: 49
Joined: 2020/12/19 05:55:37

Re: Centos7 patches and Vulnerabilities

Post by mania » 2020/12/26 06:28:53

Do you mean "Red Hat CoreOS" in the package column?(I highlighted it in attached file). The Distribution is not centOS. Is it talking about CentOs vulnerabilities?

Whoever
Posts: 1357
Joined: 2013/09/06 03:12:10

Re: Centos7 patches and Vulnerabilities

Post by Whoever » 2020/12/26 06:57:08

mania wrote:
2020/12/26 06:28:53
Do you mean "Red Hat CoreOS" in the package column?(I highlighted it in attached file). The Distribution is not centOS. Is it talking about CentOs vulnerabilities?

No, he means the row "Red Hat Enterprise Linux 7", which is the source for CentOS 7.

Post Reply