HackerTrans
TopNewTrendsCommentsPastAskShowJobs

ustrin

no profile record

Submissions

Btrfs support in AlmaLinux OS 10.1

almalinux.org
3 points·by ustrin·hace 9 meses·0 comments

Final nail in the coffin of Red Hat rebuilds?

redhat.com
58 points·by ustrin·hace 3 años·45 comments

comments

ustrin
·hace 4 años·discuss
Actually, I'm closer to the OP than to Red Hat, but I've heard this point explained often enough :P
ustrin
·hace 4 años·discuss
> The problem is that Cent 8/9 Stream has quicker critical CVE patches because it's essentially the source and is closer to mirroring RHEL.

This isn't entirely true, at least for embargoed CVEs (so the most critical vulnerabilities). RHEL will always get embargoed patches first. Once RHEL releases the patched packages, Alma/Rocky can rebuild them too. The patches may not be available in Stream yet at this point. This has happened a few times in the past.

Also, there are no advisories for Stream, so it's not always easy to tell if a Stream package includes a patch for a particular CVE. Sometimes you have to go hunting in the changelog to figure it out, as the version numbers don't always match with RHEL's.