[ovirt-users] Re: CVE-2021-3156 && ovirt-node-ng 4.3 && 4.4 (sudo)

[Thiago Linhares]

I've got the same questions...
Someone?
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/OYY7XVTUXFV6VRFZEDFCKY5GMEOWDLRF/

[ovirt-users] [security-updates] oVirt node

[Thiago Linhares]

Hello there,

I wonder whats the right approach to get security updates for ovirt nodes? 
(installed using ovirt node iso image)

Eg.: 
'sudo' package has a know vulnerability until version sudo-1.8.23-9.el7.x86_64. 
When trying to update this package on a ovirt node, it would not.
Checking versionlock, I confirmed it is listed there:
# grep sudo /etc/yum/pluginconf.d/versionlock.list
0:libsss_sudo-1.16.4-37.el7_8.3.x86_64
0:sudo-1.8.23-9.el7.x86_64


Regards,
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/55FB5S5UVYXMKJRGWRYMQ72OBLKHZGU3/