CentOS

The Community ENTerprise Operating System
https://forums.centos.org/

CVE-2021-28091 vulnerability fix?

https://forums.centos.org/viewtopic.php?f=51&t=77704

Page 1 of 1

CVE-2021-28091 vulnerability fix?

Posted: 2021/06/09 01:38:56
by taz77
Hi guys,

Is there any fix on this vulnerability?

Re: CVE-2021-28091 vulnerability fix?

Posted: 2021/06/09 13:36:35
by jlehtone
https://access.redhat.com/security/cve/cve-2021-28091

Do you have custom python applications that use vulnerable functions of Lasso?

Re: CVE-2021-28091 vulnerability fix?

Posted: 2021/06/10 01:44:09
by taz77
Hi. Im not sure. How do I check?
Sorry. Im still a newbie with linux.

Re: CVE-2021-28091 vulnerability fix?

Posted: 2021/06/10 11:17:06
by jlehtone
Surely you know what python applications you have installed?

Note that packages in CentOS are ok, they don't use vulnerable functions
and EPEL has no packages that depend on Lasso.

If you have something potentially insecure, then it must be from third-party repo,
source install, or written by you.

Re: CVE-2021-28091 vulnerability fix?

Posted: 2021/06/10 12:22:25
by taz77
oh. Thank you.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited