 
| Subject: | |
| From: | |
| Reply To: | Kraus, Dave (GE Healthcare) |
| Date: | Tue, 12 Jun 2018 15:47:34 +0000 |
| Content-Type: | text/plain |
| Parts/Attachments: |
|
|
On 6/12/18, 9:15 AM, "[log in to unmask] on behalf of Akemi Yagi" <[log in to unmask] on behalf of [log in to unmask]> wrote:
On Tue, Jun 12, 2018 at 6:28 AM, Pat Riehecky <[log in to unmask]> wrote:
>
> I'm not showing that version in
> http://ftp.redhat.com/redhat/linux/enterprise/6Server/en/os/SRPMS/
>
> Where did you find it?
I think he is referring to:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/RHS/SRPMS/
Akemi
Ugh. Sorry about my corporate overlords rewriting URLs to be unhelpful...
The update reference is under the RHSA-2018:1268 Security Advisory, which seems to apply to 6Server, at least for the gluster client packages. Links from the Updated Packages tab point to a glusterfs-3.8.4-54.9.el6.src.rpm.
For us, Nessus has woken up to CVE-2018-1112 and CVE-2018-1088, and our internal customers are asking why they're getting findings from it.
I just wanted to make sure that the flag flip in the spec file to also build the server package wasn't causing failures on the SL side for some reason, making the updates go missing. That appears not to be the case, rather it appears that TUV seems to not have deployed it into their normal trees.
<sigh>
Ok, Pat, now I know that the weirdness is with TUV. Sorry for the disturbance...
|
|
|
