Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

AWS patching manager

0

AWS patching manager is patching Centos ec2 Machine with patchbase line having securtiy updates until approved 4/23/2023. But my EC2 is showing non-compliant with below details. The package sudo version 1.8.23-10.el7_9.2 was detected in YUM/DNF package manager on a machine running CentOS 7.9.2009 is vulnerable to CVE-2023-22809, which exists in versions < 0:1.8.23-10.el7_9.3. Recommended package version is 1.8.23-10.el7_9.3 or higher which was released in January. Does patch manager doesn't update sudo package and what is the meaning of below patch manager log output.

u'sudo.x86_64:0:1.8.23-10.el7_9.2': {u'state': u'InstalledOther', u'installedTime': 1660955207, u'id': u'sudo.x86_64'},

Topics
Management & Governance
Tags
AWS Systems Manager
Language
English
asked 3 years ago196 views
1 Answer
0

AWS Patch Manager is scheduled to apply security updates until April 23, 2023, but it has not updated your sudo package to version 1.8.23-10.el7_9.3, which addresses CVE-2023-22809. Manually update sudo to 1.8.23-10.el7_9.3 using yum update sudo to mitigate the vulnerability.

EXPERT
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content