Check if CVE was patched in a previous update

Use:

rpm -q --changelog {package-name} | grep CVE-NUMBER

for i in $(rpm -qa | grep ssh); do echo $i; rpm -q --changelog $i | grep CVE-2017-15906; done
libssh2-1.4.3-10.el7_2.1.x86_64
openssh-server-7.4p1-16.el7.x86_64
- Fix for CVE-2017-15906 (#1517226)
openssh-clients-7.4p1-16.el7.x86_64
- Fix for CVE-2017-15906 (#1517226)
openssh-7.4p1-16.el7.x86_64
- Fix for CVE-2017-15906 (#1517226)