On Mon, 2008-02-11 at 04:52 -0800, Michael A. Peters wrote:
Valent Turkovic wrote:
I saw that there is a local root exploit in the wild. http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
And I see my centos box still has: 2.6.18-53.1.4.el5
yum says there are no updates... am I safe?
Valent. _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
The current kernel is 53.1.6.el5
If yum isn't seeing it - it probably needs to clean its cached headers.
try:
yum clean headers yum update kernel
However - the 53.1.6.el5 release also is vulnerable, so you may as well wait for the exploit to be fixed before updating. I'm guessing CentOS will do it fairly quickly after rhel does.
I understand that a known root exploit must be patched but I'm curious to know if we upgrade to the fixed kernel once released will it also include the degraded nfs performance discussed here: