On Thu, 28 May 2009, Karanbir Singh wrote:
CentOS Errata and Security Advisory 2009:1075 Moderate
Upstream details at : https://rhn.redhat.com/errata/RHSA-2009-1075.html
The following updated files have been uploaded and are currently syncing to the mirrors: ( md5sum Filename )
i386: b46184784e95094390c99e7446ffdcb0 httpd-2.2.3-22.el5.centos.1.i386.rpm
Does the test version (2.2.8) have these backported in them already? If not, are these exploits local or global? Can i just update mod_ssl to alleviate the problem if I have 2.2.8? More than willing to go back to 2.2.3 if needed. Just trying to save a little work since 2.2.8 has run very well for me.
******************************************************************************* Gilbert Sebenste ******** (My opinions only!) ****** *******************************************************************************
On 05/28/2009 06:43 PM, Gilbert Sebenste wrote:
Does the test version (2.2.8) have these backported in them already?
no..
If not, are these exploits local or global? Can i just update mod_ssl to alleviate the problem if I have 2.2.8? More than willing to go back to 2.2.3 if needed. Just trying to save a little work since 2.2.8 has run very well for me.
the entire 'el5s2' suite of packages had an update recently, and is pending a push out - but it will not happen before Monday. I suggest you read the advisory and make a decision based on that.
On Thu, 28 May 2009, Karanbir Singh wrote:
the entire 'el5s2' suite of packages had an update recently, and is pending a push out - but it will not happen before Monday. I suggest you read the advisory and make a decision based on that.
I've read it, and if you are going to push out the el5s2 programs next week, I will hold off, for now. Any significant delays, though, and I'll re-evaluate. Thank you, and thanks so much for all your hard work!
******************************************************************************* Gilbert Sebenste ******** (My opinions only!) ****** Staff Meteorologist, Northern Illinois University **** E-mail: sebenste@weather.admin.niu.edu *** web: http://weather.admin.niu.edu ** *******************************************************************************
-
Gilbert Sebenste -
Karanbir Singh