Python2-mock 1.0.1-9.el7


#1

Platform: RHEL7 64bit
python2-mock 1.0.1-9.el7 is listed as having security issues, and is being flagged on my daily Nessus Scans.

https://access.redhat.com/errata/RHSA-2017:3188

Since this package was installed as a dependency of Certbot, I need to know if there are plans to update Certbot to require a newer version of this library.

The recommended one is python2-mock 1.0.1-9.2.el7
The RHOSE repo uses python-mock-1.0.1-9.2.el7.src.rpm, instead of python2-mock –
http://ftp.redhat.com/redhat/linux/enterprise/7Server/en/RHOSE/SRPMS/

Can the developers comment on this, or whether it’s possible to manually update this package somehow without breaking certbot?


closed #2

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.