[CentOS] yum --security not detecting security updates

Tue Dec 18 17:44:22 UTC 2012
Johnny Hughes <johnny at centos.org>

On 12/18/2012 10:38 AM, Terry wrote:
> Hello,
>
> We are running CentOS 5.5 on a server that is not reporting any
> security updates:
> [root at server01 ~]# yum -y --security check-update
> Loaded plugins: fastestmirror, security
> Loading mirror speeds from cached hostfile
>  * base: bay.uchicago.edu
>  * extras: bay.uchicago.edu
>  * updates: mirror.nyi.net
> Limiting package lists to security relevant ones
> No packages needed, for security, 261 available
>
> However, Nexpose, our vulnerability scanner detected otherwise. Upon
> digging deeper, I noticed that we are on a kernel version that has a
> known issue fixed in a later version:
>
> [root at server01 ~]# rpm -q kernel
> kernel-2.6.18-194.el5
> kernel-2.6.18-194.8.1.el5
>
> http://rhn.redhat.com/errata/RHSA-2010-0610.html
> http://lists.centos.org/pipermail/centos-announce/2010-August/016890.html
>
> I appreciate anyone's insight in helping me understand this a bit better.

The yum security plugin does not currently, nor has it ever, worked on
CentOS.

It is designed to work with RHN and RHEL and we have not been able to
make it work on CentOS.



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20121218/5ba09209/attachment-0004.sig>