View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0000287 | AlmaLinux-8 | -OTHER | public | 2022-07-21 10:04 | 2022-07-22 09:45 |
Reporter | ap8 | Assigned To | alukoshko | ||
Priority | high | Severity | major | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Platform | x86_64 | OS | AlmaLinux | OS Version | 8 |
Summary | 0000287: Errata are no longer being updated | ||||
Description | Comparing RHEL, AlmaLinux and RockyLinux errata pages (links below), it looks like RHEL and Rocky are well aligned, while AlmaLinux has no longer been publishing advisories since July 01 2022. This seems to be a big issue for servers where updates are applied using the `--security` flag in `dnf`, as that means that no updates are applied at all and the servers remain unpatched. * RHEL - https://access.redhat.com/errata-search/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory&portal_product=Red%20Hat%20Enterprise%20Linux&portal_product_version=8&portal_architecture=x86_64 * AlmaLinux - https://errata.almalinux.org/ * RockyLinux - https://errata.rockylinux.org/ | ||||
Steps To Reproduce | As an example, I tried the following command in AlmaLinux and RockyLinux, looking for a specific security fix which was released on July 13 2022. * AlmaLinux ``` [root@alma ~]#dnf updateinfo --all --info --cve CVE-2022-1729 Last metadata expiration check: 0:50:23 ago on Thu 21 Jul 2022 09:02:15 UTC. [root@alma ~]# ``` * RockyLinux ``` [root@rocky ~]$ dnf updateinfo --all --info --cve CVE-2022-1729 Last metadata expiration check: 1:10:55 ago on Thu 21 Jul 2022 08:41:19 UTC. =============================================================================== Important: kernel security, bug fix, and enhancement update =============================================================================== Update ID: RLSA-2022:5564 Type: security Updated: 2022-07-13 23:37:12 CVEs: CVE-2022-1729 Description: For more information visit https://errata.rockylinux.org/RLSA-2022:5564 Severity: Important Installed: true [root@rocky ~]$ ``` | ||||
Tags | No tags attached. | ||||
abrt_hash | |||||
URL | |||||
Date Modified | Username | Field | Change |
---|---|---|---|
2022-07-21 10:04 | ap8 | New Issue | |
2022-07-21 11:26 | alukoshko | Assigned To | => alukoshko |
2022-07-21 11:26 | alukoshko | Status | new => confirmed |
2022-07-21 11:26 | alukoshko | Note Added: 0000651 | |
2022-07-22 09:45 | alukoshko | Note Added: 0000652 | |
2022-07-22 09:45 | alukoshko | Status | confirmed => closed |
2022-07-22 09:45 | alukoshko | Resolution | open => fixed |