Log in / Register

Want to subscribe to topics you're interested in?

Become a Member

Beta Branch avoid prescribing a kernel upgrade on already-patched hosts in cmsec …

Discussion in 'Centmin Mod Github Commits' started by eva2000, May 22, 2026.

Previous Thread Next Thread

Loading...

May 22, 2026 #1
eva2000 Administrator Staff Member

58,893

12,490

113

May 24, 2014

Brisbane, Australia

Ratings:

+19,122

Local Time:

10:43 AM

Nginx 1.31.x

MariaDB 10.x/11.4+/12.3+
avoid prescribing a kernel upgrade on already-patched hosts in cmsec in 140.00beta01

The "Available kernel updates" section recorded a "dnf upgrade && reboot"
recommended action whenever newer kernel packages existed, even on hosts the
verdict later marks patched (e.g. a Rocky security-repo .0.N kernel confirmed
via changelog) — producing a "patched" verdict alongside an upgrade-and-reboot
recommendation.

Reword the rc=100 branch to a verdict-neutral availability note and drop its
record_action. The upgrade recommendation for genuinely vulnerable hosts is
still owned by the vulnerable verdict branch, and the always-printed "Suggested
next actions" block still documents how to update.

Continue reading...

140.00beta01 branch

Branch: https://github.com/centminmod/centminmod/tree/140.00beta01

Commit History: https://github.com/centminmod/centminmod/commits/140.00beta01

Previous Thread Next Thread

Loading...

(You must log in or sign up to reply here.)