Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
thanks
Yep, works also on my centos 6.4 box.
-- Eero
2013/5/14 Tom Brown tom@ng23.net
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
thanks _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Did anyone try 6.x other than 6.4 what I mean? I don't have the server to try right now.
------------ Banyan He Blog: http://www.rootong.com Email: banyan@rootong.com
On 5/14/13 9:52 AM, Eero Volotinen wrote:
Yep, works also on my centos 6.4 box.
-- Eero
2013/5/14 Tom Brown tom@ng23.net
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
thanks _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On Tue, May 14, 2013 at 9:24 AM, Tom Brown tom@ng23.net wrote:
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
Yes. Reported earlier in this forum thread (with additional info):
http://www.centos.org/modules/newbb/viewtopic.php?topic_id=42827&forum=5...
Akemi
On Tue, May 14, 2013 at 9:56 AM, Akemi Yagi amyagi@gmail.com wrote:
On Tue, May 14, 2013 at 9:24 AM, Tom Brown tom@ng23.net wrote:
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
Yes. Reported earlier in this forum thread (with additional info):
http://www.centos.org/modules/newbb/viewtopic.php?topic_id=42827&forum=5...
Announced in that thread:
CentOSPlus *test* kernel with the patch is now available from:
http://people.centos.org/toracat/kernel/6/plus/perfbugfix/x86_64/
It was confirmed to work. Only the 64-bit kernel is provided because the 32-bit kernel is not affected.
NOTE: This is _not_ an official release by CentOS. The distro kernel with the patch may be released later.
On 05/14/2013 02:38 PM, Akemi Yagi wrote:
On Tue, May 14, 2013 at 9:56 AM, Akemi Yagi amyagi@gmail.com wrote:
On Tue, May 14, 2013 at 9:24 AM, Tom Brown tom@ng23.net wrote:
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
Yes. Reported earlier in this forum thread (with additional info):
http://www.centos.org/modules/newbb/viewtopic.php?topic_id=42827&forum=5...
Announced in that thread:
CentOSPlus *test* kernel with the patch is now available from:
http://people.centos.org/toracat/kernel/6/plus/perfbugfix/x86_64/
It was confirmed to work. Only the 64-bit kernel is provided because the 32-bit kernel is not affected.
NOTE: This is _not_ an official release by CentOS. The distro kernel with the patch may be released later.
Here is the most recent distro kernel with just the patch linked from the RH Bugzilla. This fixed the issue on our test platforms:
http://people.centos.org/hughesjr/c6kernel/2.6.32-358.6.1.el6.cve20132094/
Note: This is signed by the centos-6 test key and it is provided as a best effort option to mitigate the above security issue while waiting for an upstream solution. It is not an official CentOS package and needs to be fully tested for fitness by each user before used in production.
Thanks, Johnny Hughes
Is this 6.4 only or does it work on 5.9 also? 14.5.2013 19.25 "Tom Brown" tom@ng23.net kirjoitti:
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
thanks _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 05/14/2013 10:07 AM, Eero Volotinen wrote:
Is this 6.4 only or does it work on 5.9 also?
According to:
https://bugzilla.redhat.com/show_bug.cgi?id=962792
"Statement: This issue does not affect the kernel packages as shipped with Red Hat Enterprise Linux 5 because we did not backport upstream commit b0a873eb that introduced this issue.
This issue does affect the kernel packages as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2.
We are working on updated packages to correct this issue in Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2 and will release them once they have been completed and tested."
-Greg
14.5.2013 19.25 "Tom Brown" tom@ng23.net kirjoitti:
Hi - Looking at
https://news.ycombinator.com/item?id=5703758
I have just tried this on a fully patched 6.4 box and it seems vulnerable -
Do other see the same?
thanks _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
-
Akemi Yagi -
Banyan He -
Eero Volotinen -
Greg Bailey -
Johnny Hughes -
Tom Brown