[CentOS] local root exploit
Ralph Angenendt
ra+centos at br-online.de
Mon Feb 11 11:06:21 UTC 2008
Valent Turkovic wrote:
> I saw that there is a local root exploit in the wild.
> http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
>
> And I see my centos box still has: 2.6.18-53.1.4.el5
>
> yum says there are no updates... am I safe?
No, you are not safe - and you should have rebooted after the last
kernel update (2.6.18-53.1.5.el5 is current). But that kernel isn't safe
either.
See <https://bugzilla.redhat.com/show_bug.cgi?id=432251> for a temporary
workaround.
Cheers,
Ralph
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20080211/af899c0f/attachment.sig>
More information about the CentOS
mailing list