Our security scans flagged python on our systems where we have Data Repository (3 separate nodes).
We would like to know if we can upgrade python itself or it's related and connected to CAPM version.
Release : 21.2.x, 22.2.x
Component : IM Data Repository
Vertica uses Python and installs a version under
This is an internal requirement of vertica.
You cannot upgrade the bundled python manually
If it is within /opt/vertica/ then you may not upgrade or modify it.
If it is outside of that path, then PM is not affected by the install, and you can upgrade or remove it as you need.
In order to access the older version of python, the system would need to be physically compromised.
Dx NetOps performance management 22.2.11 ships with python 3.7.4
Broadcom is planning to upgrade vertica version as soon as RHEL 9 support is offered.