Please,
do not delay this "Important" multiple security update. See https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
This update is "5.3" kernel but has been released as security update too. RHN pushed this kernel one day ahead of rest of 5.3 packages (on my servers).
RH maintains API and ABI (!) compatibility so there is no problem to use this kernel AFAIK.
So please, do not delay it anymore, this contains multiple security vulnerabilities fixed since 2009-01-20.
Thank you for your effort (a lot).
M.K.
On Thu, Feb 05, 2009 at 10:25:14PM +0100, Milan Keršláger wrote:
Please,
do not delay this "Important" multiple security update. See https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
This update is "5.3" kernel but has been released as security update too. RHN pushed this kernel one day ahead of rest of 5.3 packages (on my servers).
RH maintains API and ABI (!) compatibility so there is no problem to use this kernel AFAIK.
but this kernel -128 version requires a newer version of ecryptfs-utils from 5.3...
So afaik there will be no newer kernel until 5.3 is released.
Cheers,
Tru
On Thu, 5 Feb 2009, Tru Huynh wrote:
On Thu, Feb 05, 2009 at 10:25:14PM +0100, Milan Keršláger wrote:
Please,
do not delay this "Important" multiple security update. See https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
..
but this kernel -128 version requires a newer version of ecryptfs-utils from 5.3...
So afaik there will be no newer kernel until 5.3 is released.
Why is it not possible to also release a new ecryptfs-utils?
on 2-7-2009 7:54 AM Charlie Brady spake the following:
On Thu, 5 Feb 2009, Tru Huynh wrote:
On Thu, Feb 05, 2009 at 10:25:14PM +0100, Milan Keršláger wrote:
Please,
do not delay this "Important" multiple security update. See https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
..
but this kernel -128 version requires a newer version of ecryptfs-utils from 5.3...
So afaik there will be no newer kernel until 5.3 is released.
Why is it not possible to also release a new ecryptfs-utils?
In the time it would take to get all the dependencies resolved and spend some time in QA, 5.3 will probably be out.
Milan Keršláger schrieb:
Please,
do not delay this "Important" multiple security update. See https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
This update is "5.3" kernel but has been released as security update too. RHN pushed this kernel one day ahead of rest of 5.3 packages (on my servers).
RH maintains API and ABI (!) compatibility so there is no problem to use this kernel AFAIK.
So please, do not delay it anymore, this contains multiple security vulnerabilities fixed since 2009-01-20.
Thank you for your effort (a lot).
M.K.
while the CentOS people work on it, you could obtain the kernel from http://people.redhat.com/dzickus/el5/
HTH Kay
Milan Keršláger napsal(a):
Please,
do not delay this "Important" multiple security update. See https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
This update is "5.3" kernel but has been released as security update too. RHN pushed this kernel one day ahead of rest of 5.3 packages (on my servers).
RH maintains API and ABI (!) compatibility so there is no problem to use this kernel AFAIK.
So please, do not delay it anymore, this contains multiple security vulnerabilities fixed since 2009-01-20.
Thank you for your effort (a lot).
M.K.
Tru's right. It not only depends on ecryptfs-utils but other new packages. It's right it builds fine, but finally depends on a lot of new modules. Some: %define kernel_dot_org_conflicts ppp < 2.4.3-3, isdn4k-utils < 3.2-32, nfs-utils < 1.0.7-12, e2fsprogs < 1.37-4, util-linux < 2.12, jfsutils < 1.1.7-2, reiserfs-utils < 3.6.19-2, xfsprogs < 2.6.13-4, procps < 3.2.5-6.3, oprofile < 0.9.1-2
%define package_conflicts initscripts < 7.23, udev < 063-6, iptables < 1.3.2-1, ipw2200-firmware < 2.4, selinux-policy-targeted < 1.25.3-14, ecryptfs-utils < 44, cpuspeed < 1.2.1-5
Milan, you can try yourself testing kernel here: http://fs12.vsb.cz/hrb33/el5/hrb-kernel/stable/x86_64/repodata/ http://fs12.vsb.cz/hrb33/el5/hrb-kernel/stable/i386/repodata/
I'd like to point out one thing. I do want to thank to Centos developers they have changed update build process. Even that there is 5.3 rebuild process ongoing, they are releasing security updates for C{3,4,5} and I like it. This is a new behavior, because every time they had been rebuilding new distro version, security updates process got stucked. So, thank you Pasi and Tru.
Regards, David
-
Charlie Brady -
David Hrbáč -
Kay Diederichs -
Milan Keršláger -
Scott Silva -
Tru Huynh