Check the CVE report. They list the distributions affected. What may not be obvious is that RedHat and others regularly backport fixes to their versions.
On Apr 6, 2017 10:12 PM, "Michael Christopher Robinson" < [email protected]> wrote: > On Thu, 2017-04-06 at 21:55 -0700, Ali Corbin wrote: > > On Thu, Apr 6, 2017 at 9:44 PM, Michael Christopher Robinson < > > [email protected]> wrote: > > > > > Anyone have tips on installing Horde Webmail edition on a CentOS 7 > > > server via yum? A couple of concerns, the version of php that > > > CentOS 7 > > > uses is old as is the version of apache that CentOS 7 uses. The > > > version of openssl that CentOS 7 uses is old too. I'm concerned > > > about > > > heartbleed among other things. Can you create rpms from pear? > > > > > > > RedHat is good about backporting security fixes into their older, > > stable > > versions of rpms. And then CentOS gets them from them. > > _______________________________________________ > > How does PHP-5.6.30 compare to the stock PHP in CentOS 7? > Similarly, CentOS 7 does not use the latest openssl. Is > the openssl that CentOS 7 has out of the box safe? > _______________________________________________ > PLUG mailing list > [email protected] > http://lists.pdxlinux.org/mailman/listinfo/plug > _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
