Can I remove pixman and libXfont?

Comments 1

I just ran Retina on my RHEL 6 servers and in the results, they pointed to vulnerabilities with pixman 0.26.2 and libXfont 1.4.5. The report says that I should upgrade to pixman 0.32.0 or higher, and libXfont 1.4.7 or higher. Actually, it's the same thing for OpenSSH (5.3 to 6.2 or newer). I have the latest that Red Hat has. Since I have no GUI on my servers, just plain text on the console, do I need pixman and libXfont? Can I remove those two packages?

Thanks!

Started 2014-02-07T22:04:13+00:00 by

Arnel San Juan

Newbie 5 points

Responses

Guru 2404 points

7 February 2014 10:46 PM

Akemi Yagi

Don't be fooled by the version number. Known vulnerabilities are fixed by security patches. "Backporting" is the key as you can see in this article:

https://access.redhat.com/site/security/updates/backporting/

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

Responses