neilc

False positives

Discussion created by neilc on Aug 18, 2017
Latest reply on Sep 15, 2017 by Busby

I have a hundreds of Centos 6 boxes showing as unpatched for stack clash. However they have been patched.

rpm -q -changelog kernel-2.6.32-696.6.3.el6.x86_64
- [mm] enlarge stack guard gap (Larry Woodman) [1452729 1452730] {CVE-2017-1000364 CVE-2017-1000366}

 

And Centos 7 Sudo qid 370410

# rpm -q --changelog sudo-1.8.6p7-23.el7_3.x86_64 |more
* Wed Jun 07 2017 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-23
- Fixes CVE-2017-1000367

 

I can exclude those qid from reports, but that defeats the object. It will miss genuine instances of these bugs.

 

Are qualys going to fix this?

Outcomes