OPNsense Forum

Archive => 19.7 Legacy Series => Topic started by: Barney Calhoun on July 22, 2019, 02:11:39 pm

Title: OPNsense Security Audit with 1 pronlem
Post by: Barney Calhoun on July 22, 2019, 02:11:39 pm

Hello List,

i updated from 19.1.10_1 to 19.7 a few day ago, so my opnsense should be up to date. But my security-audit looks like this:

***GOT REQUEST TO AUDIT SECURITY***
vulnxml file up-to-date
python37-3.7.3_1 is vulnerable:
python 3.7 -- multiple vulnerabilities
CVE: CVE-2019-9948
CVE: CVE-2019-9740
WWW: https://vuxml.FreeBSD.org/freebsd/a449c604-a43a-11e9-b422-fcaa147e860e.html

1 problem(s) in the installed packages found.
***DONE***

Can someone confirm that this is normal ?

Thanks
 

Title: Re: OPNsense Security Audit with 1 pronlem
Post by: JoK on July 22, 2019, 06:11:52 pm

Got the same problem, if it IS a problem...maybe its a bug :-)

Title: Re: OPNsense Security Audit with 1 pronlem
Post by: hbc on July 22, 2019, 10:42:22 pm

It's not a bug, it's a feature. It informs you, that packages are installed that are known to have security issues and need updates.

Just wait for next opnsense update to install fixed packages.

See here:
https://forum.opnsense.org/index.php?topic=13571.0;topicseen (https://forum.opnsense.org/index.php?topic=13571.0;topicseen)

Title: Re: OPNsense Security Audit with 1 pronlem
Post by: JoK on July 23, 2019, 04:53:00 pm

Thanks :-)

Title: Re: OPNsense Security Audit with 1 pronlem
Post by: franco on July 25, 2019, 08:09:47 pm

Should be clean for now as for 19.7.1 as promised elsewhere. :)


Cheers,
Franco