- Le plus récent
- Le plus de votes
- La plupart des commentaires
Sorry, maybe i don't explain my problem clearly.
My Vulnerability scanner detects and old version of OpenSSH (7.4). Therefore, associate this older version with this vulnerabilities. No detects explicitly the vulnerability, only de older version of OpenSSH.
So I need to update OpenSSH, but Amazon Linux repositories are out of date. Is there any way to update to 8.6 version?
I don't know how to add a new repository to fix this. Any tip?
Thanks
CVE-2017-15906 has been resolved as part of https://alas.aws.amazon.com/AL2/ALAS-2018-1042.html.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15778 is disputed by the vendor, so no fix has been published for that yet.
Amazon Linux 2 uses the same process originating from Red Hat Enterprise Linux for stable linux distributions where they do not perform major upgrades of software. They will backport the fixes and keep the same version numbers.
Contenus pertinents
- demandé il y a un an
- demandé il y a 9 mois
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a un an