security PCI
Naomi Hospodarsky
hospodarsky at gmail.com
Wed Nov 18 18:31:44 UTC 2009
On Wed, Nov 18, 2009 at 12:24 PM, Pennington, John
<penningt at uchastings.edu> wrote:
> Hi all,
>
>
>
> I’m a little new to redhat so I apologize if this question is a bit basic.
> We are doing some PCI auditing on one of our machines that is running
> Redhat 5.4, and the scan found a few apache vulnerabilities. CVE-2009-0023
> for example were on the list.
>
>
>
> When I go to the redhat website and look for that vulnerability it says it
> is fixed in redhat 5 and provides a link to a page that shows: apr-util
> security update Advisory: RHSA-2009:1107-1.
>
>
>
> My question is, what command do I use to verify that the RHSA-2009-1107-1
> security update has been applied to my system?
>
> I’ve looked for a while and can’t seem to figure it out.
>
>
>
> Thanks for the help,
> -J
> --
> redhat-sysadmin-list mailing list
> redhat-sysadmin-list at redhat.com
> https://www.redhat.com/mailman/listinfo/redhat-sysadmin-list
>
If you go to the page for that errata
https://rhn.redhat.com/errata/RHSA-2009-1107.html, and scroll to the
bottom, it tells you which version, specifially, you need to have
installed for that errata report. So, depending on your architecture,
you'd go to your system and type:
rpm -q apr-util
and match the returned version with what's listed.
Hope that helps get you started,
Naomi
More information about the redhat-sysadmin-list
mailing list