Hi guys,
At work we run an application that runs off of CENTOS 7.3
A client asked us if a list of CVE advisories applied to it.
Online I searched for an online CVE repository for Centos but could not find one: It uses a mailing list.
I found the RED HAT CVE Database. I could check if each CVE applied to my os. THE CVE's listed the packages affected.
Will I not find all applicable packages affected on CENTOSi 7.3 from the list of CVE's client provided to me if I just use the RED HAT CVE Database repository?