patchman icon indicating copy to clipboard operation
patchman copied to clipboard
verified publisher icon furlongm

Rocky Linux Errata

Open rmdashrfslash opened this issue 2 years ago • 4 comments

Hi - This is a great tool. Just spent some time rolling it out in my environment. One thing that would be super useful is to pull in the rocky linux errata to identify security vs bug updates. Looks like the rocky errata is publicly available at:

https://errata.rockylinux.org/ - from what I can tell, this simply pulls from an API, which I think could be used by patchman as well.

rmdashrfslash avatar Mar 14 '23 15:03 rmdashrfslash

Looks like the API is documented here: https://gist.github.com/mstg/16dec9f3f63ce16bce79816575ab9791

furlongm avatar May 01 '23 18:05 furlongm

N.B. using the existing errata mechanism will also work for Rocky and Alma, as the packages and updates are subject to the same CVEs etc.

furlongm avatar May 02 '23 00:05 furlongm

For future reference, API urls for security

Red Hat Linux https://access.redhat.com/hydra/rest/securitydata/cvrf.json https://access.redhat.com/hydra/rest/securitydata/cve.json https://access.redhat.com/hydra/rest/securitydata/oval.json https://access.redhat.com/hydra/rest/securitydata/oval/ovalstreams.json

Rocky Linux https://apollo.build.resf.org/api/v3/osv/ (see https://github.com/resf/distro-tools/blob/main/apollo/server/server.py )

Alma Linux https://errata.almalinux.org/8/errata.full.json https://errata.almalinux.org/9/errata.full.json

furlongm avatar May 02 '23 01:05 furlongm

Hi. Any chance to get errata lists for Oracle Linux ?

mzoleko avatar Jun 06 '23 07:06 mzoleko