[CentOS] local root exploit
Michael A. Peters
mpeters at mac.com
Mon Feb 11 12:52:19 UTC 2008
Valent Turkovic wrote:
> I saw that there is a local root exploit in the wild.
> http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
>
> And I see my centos box still has: 2.6.18-53.1.4.el5
>
> yum says there are no updates... am I safe?
>
> Valent.
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
The current kernel is 53.1.6.el5
If yum isn't seeing it - it probably needs to clean its cached headers.
try:
yum clean headers
yum update kernel
However - the 53.1.6.el5 release also is vulnerable, so you may as well
wait for the exploit to be fixed before updating. I'm guessing CentOS
will do it fairly quickly after rhel does.
More information about the CentOS
mailing list