You found a message on a public discussion forum mentioning a Vulnerability (for example, CVE-2006-5794), which could affect some versions of OpenSSH in Linux distribution. Identify the
command that would allow you to see whether this CVE has been applied.
A.
rpm –q – – changelogopenssh| grep 5794
B.
yum listcvew openssh
C.
rpm -qa | grep openssh | grep 5794
D.
yum sec-list cves
Explanation:
*The command rpm -q –changelog rpm displays a detailed list of information
(updates, configuration, modifications, etc.) about a specific package. This example shows
information about the package rpm. However, only the last five change entries in the RPM
database arelisted. All entries (dating back the last two years) are included in the package itself.
This query only works if CD 1 is mounted at /media/cdrom:
rpm -qp –changelog /media/cdrom/suse/i586/rpm-3*.rpm*Is the patch RPM suitable for my system?
To check this, first query the installed version of the package. For pine, this can be done with
rpm -q pine
pine-4.44-188
Incorrect:
not C:
*qa stands for “Query All”
Assuming you are attempting to find out if you have the Very Secure FTP Daemon installed, you
want:
rpm -qa | grep vsftp
rpm -qa will show you all installed RPMs, piping it through grep will limit the list to RPMs
containing the string “vsftp”.