LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Security Update CVE installed only for several modules only (https://www.linuxquestions.org/questions/linux-security-4/security-update-cve-installed-only-for-several-modules-only-4175707605/)

roblocz 02-07-2022 06:12 AM
Security Update CVE installed only for several modules only
 
Hi I am new to Suse and I need to verify the CVE installations. I used below script.

zypper list-patches --all --cve | grep 22945

CVE-2021-22946| SUSE-SLE-SDK-12-SP5-2021-3332|security|moderate| --- | applied | Security update for curl
CVE-2021-22946| SUSE-SLE-SERVER-12-SP5-2021-3332 |security| moderate| --- | needed| Security update for curl
CVE-2021-22947| SUSE-SLE-SDK-12-SP5-2021-3332 |security| moderate | --- | applied| Security update for curl
CVE-2021-22947| SUSE-SLE-SERVER-12-SP5-2021-3332 |security| moderate| ---| needed| Security update for curl
______________________________________________________________

I need to know why all CVEs are not applied in both Modules.Why is it?
I am not aware whether both modules are being used.

How can I identify it?

Thanks In advance.

Cheers!!1

boughtonp 02-07-2022 06:18 AM

 
That output is clearly not the result of piping through "grep 22945".

Post exact commands and output, wrapped in [code]...[/code] tags.

roblocz 02-07-2022 08:54 AM
Attached
 
1 Attachment(s)
Screenshot attached.
Hope it would be fine to understand my query.

TB0ne 02-07-2022 09:28 AM
Quote:
Originally Posted by roblocz (Post 6326610)
Hi I am new to Suse and I need to verify the CVE installations. I used below script.

zypper list-patches --all --cve | grep 22945

CVE-2021-22946| SUSE-SLE-SDK-12-SP5-2021-3332|security|moderate| --- | applied | Security update for curl
CVE-2021-22946| SUSE-SLE-SERVER-12-SP5-2021-3332 |security| moderate| --- | needed| Security update for curl
CVE-2021-22947| SUSE-SLE-SDK-12-SP5-2021-3332 |security| moderate | --- | applied| Security update for curl
CVE-2021-22947| SUSE-SLE-SERVER-12-SP5-2021-3332 |security| moderate| ---| needed| Security update for curl
______________________________________________________________

I need to know why all CVEs are not applied in both Modules.[COLOR="Red"]Why is it? I am not aware whether both modules are being used. How can I identify it?
How can you identify what, exactly?? As said, you're grep'ing for different things that what you posted. And did you not read what you posted??? The SDK packages have been applied...the server packages have NOT. You're looking for different CVE's, so why are you surprised that you get different packages??

roblocz 02-07-2022 11:36 AM
Hi All,
My appologies using the wrong cve behind the pipe. I have attached the correct script and the output in my previous response.I see that only SDK package was applied with SU. Why the other module was not applied?

Thanks alot.

Cheers!!!

boughtonp 02-07-2022 12:01 PM

 
Doesn't SUSE-SLE indicate the Enterprise - aka paid-for-andcomes-with-support version? If so, use the support you're paying for.

If not...

Quote:
Originally Posted by https://www.suse.com/support/update/announcement/2021/suse-su-20213332-1/
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

SUSE Linux Enterprise Software Development Kit 12-SP5:
zypper in -t patch SUSE-SLE-SDK-12-SP5-2021-3332=1
SUSE Linux Enterprise Server 12-SP5:
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-3332=1
Run the second command?

roblocz 02-08-2022 07:37 AM
Well thanks for all replies...

Its true that the second command (zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-3332=1) will do the necessary Patch installation .
What I am trying to understand is , why only one package was patched and the other was not?

Sorry If I am taking around the ball....I need to clarify that is y I am asking.

Cheers!!!

TB0ne 02-08-2022 08:06 AM
Quote:
Originally Posted by roblocz (Post 6327005)
Well thanks for all replies...
Its true that the second command (zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-3332=1) will do the necessary Patch installation. What I am trying to understand is, why only one package was patched and the other was not?

Sorry If I am taking around the ball....I need to clarify that is y I am asking.
Then as boughtonp said, contacting the SuSE support that you're paying for would get you an answer pretty quick. Since we don't know what version of SuSE Enterprise you're using, what you've done before this to update/patch/build your system, or any relevant details, there isn't a lot we can tell you. Could be as simple as your system having the two installed packages listed as dependencies for something else, and the two server patches were NOT...so they weren't installed. Doing a "zypper dup" gets different results than what you're doing (sometimes).

roblocz 02-09-2022 11:35 AM
Thanks all for your amazing responses, which were truly fruitful. Its true that you have limited information on my environment. Sure, I will try to reach the support guys as I have that option.

Thumbs up guys.

Cheers!!!


All times are GMT -5. The time now is 11:49 PM.