Skip to Main Content
Forums

Infrastructure Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

Nginx and openssh updates not shown with "dnf update"

Jose Aróstegui5 days ago

Hi experts,

We're using Oracle Linux 8:

[root@xxxxx ~]# cat /etc/os-release
NAME="Oracle Linux Server"
VERSION="8.10"
ID="ol"
ID_LIKE="fedora"
VARIANT="Server"
VARIANT_ID="server"
VERSION_ID="8.10"
PLATFORM_ID="platform:el8"
PRETTY_NAME="Oracle Linux Server 8.10"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:oracle:linux:8:10:server"
HOME_URL="https://linux.oracle.com/"
BUG_REPORT_URL="https://github.com/oracle/oracle-linux"
ORACLE_BUGZILLA_PRODUCT="Oracle Linux 8"
ORACLE_BUGZILLA_PRODUCT_VERSION=8.10
ORACLE_SUPPORT_PRODUCT="Oracle Linux"
ORACLE_SUPPORT_PRODUCT_VERSION=8.10

An external security tools is reporting old version of both nginx and openssh with security warnings

[root@HG-IMT ~]# rpm -qa|grep nginx
nginx-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64
[root@HG-IMT ~]# rpm -qa|grep openssh
openssh-server-8.0p1-25.0.1.el8_10.x86_64

But when we run dnf update the new versions for both are not included in the package update.

What are we doing wrong?

Thanks,

Jose.

PS: Sorry if I missed any necessary info…. this is my first post in this category.

Comments

Post Details

Added 5 days ago
1 comment
26 views