I've been dubbing with security vulnerabilities and their fix for a while,
recently I stumbled upon this CVE-2017-5335.
In redhat official notice board
:https://access.redhat.com/security/cve/cve-2017-5335 we can see there is a
link point to advisory for CentOS7.x:
https://access.redhat.com/errata/RHSA-2017:2292 . from there we can see that
the fix happens at gnutls 3.3.26.
But when trying to update from commandline, there is no 3.3.26 available for
CentOS 7.x. this can be verified using rpm finder:
https://www.rpmfind.net/linux/rpm2html/search.php?query=gnutls
Only available rpm for CentOS 7.x is 3.3.24.
Why is that? and is someone dealing with this problem?
- p.s. this is my first mail in mailinglist, excuse me for any formating
issues, if you will :)
Jeff
_______________________________________________
Gnutls-help mailing list
[email protected]
http://lists.gnupg.org/mailman/listinfo/gnutls-help
