OPNsense Security Audit with 1 pronlem

Started by Barney Calhoun, July 22, 2019, 02:11:39 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 22, 2019, 02:11:39 PM
Hello List,

i updated from 19.1.10_1 to 19.7 a few day ago, so my opnsense should be up to date. But my security-audit looks like this:

***GOT REQUEST TO AUDIT SECURITY***
vulnxml file up-to-date
python37-3.7.3_1 is vulnerable:
python 3.7 -- multiple vulnerabilities
CVE: CVE-2019-9948
CVE: CVE-2019-9740
WWW: https://vuxml.freebsd.org/freebsd/a449c604-a43a-11e9-b422-fcaa147e860e.html

1 problem(s) in the installed packages found.
***DONE***

Can someone confirm that this is normal ?

Thanks
July 22, 2019, 06:11:52 PM #1
Got the same problem, if it IS a problem...maybe its a bug :-)
July 22, 2019, 10:42:22 PM #2
It's not a bug, it's a feature. It informs you, that packages are installed that are known to have security issues and need updates.

Just wait for next opnsense update to install fixed packages.

See here:
https://forum.opnsense.org/index.php?topic=13571.0;topicseen
Intel(R) Xeon(R) Silver 4116 CPU @ 2.10GHz (24 cores)
256 GB RAM, 300GB RAID1, 3x4 10G Chelsio T540-CO-SR
July 23, 2019, 04:53:00 PM #3
Thanks :-)
July 25, 2019, 08:09:47 PM #4
Should be clean for now as for 19.7.1 as promised elsewhere. :)


Cheers,
Franco
Print
Go Up Pages1
User actions