[scl.org] SCL : perl 5.30 and recent CVE like CVE-2020-10878
Jan Staněk
jstanek at redhat.com
Mon Jun 21 11:40:15 UTC 2021
Hi Maât,
the CentOS rh-perl530 packages are direct rebuild of those present in
RHEL. As far as I am aware, they should currently be up to date with
the RHEL ones.
There is always the possibility that a CVE patch was backported to
a package without necessarily updating the version (and pulling other
changes). To be sure, try visiting
https://access.redhat.com/security/cve/cve-2020-10878
(change the CVE identifier as necessary).
>From that, you should be able to find out if the package in question
is fixed or not.
Best regards,
--
Jan Staněk
Software Engineer, Red Hat
jstanek at redhat.com irc: jstanek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/sclorg/attachments/20210621/5423f57b/attachment.sig>
More information about the SCLorg
mailing list