On Fri, 2006-05-26 at 08:18 -0700, Bart Schaefer wrote:

If it wouldn't be too much trouble ... when a kernel security update notice is posted to the announcements list, would it be possible to indicate whether the centosplus kernel is also susceptible to the security issue being patched?

I'm running the plus kernel now, and find myself wondering whether I will ever need to back off to the base kernel because of security issues.

Or is it reliably the case that centosplus gets updated along with the base kernel whenever necessary if the upstream has released a security fix?

In most instances, the CentOSPlus kernel will be affected if the main kernel is affected. That is almost always going to be the case.

I try to update the CentOSPlus kernel regularly after the main kernel update. But, the centosplus kernel requires much more testing than the main kernel, as there are centos related patches and all the kernel config files have to be validated.

I am working on the CentOSPlus kernel now (since I have finished all the Extras drivers that need updating when the main kernel changes).

We should have the centosplus kernels out soon.

On 5/26/06, Bart Schaefer barton.schaefer@gmail.com wrote:

If it wouldn't be too much trouble ... when a kernel security update notice is posted to the announcements list, would it be possible to indicate whether the centosplus kernel is also susceptible to the security issue being patched?

Anything that affects the base kernel will inherently be in the centosplus kernel, as the centosplus kernel is everything that the base kernel is, plus a few more options. The plus kernel should be updated within a day or two of the base kernel update.