[CentOS-announce] CESA-2014:1306 Important CentOS 5 bash Security Update

Fri Sep 26 04:41:14 UTC 2014
Johnny Hughes <johnny at centos.org>

On 09/25/2014 09:16 PM, Johnny Hughes wrote:
> CentOS Errata and Security Advisory 2014:1306 Important
> Upstream details at : https://rhn.redhat.com/errata/RHSA-2014-1306.html
> The following updated files have been uploaded and are currently 
> syncing to the mirrors: ( sha256sum Filename ) 
> i386:
> 9755e86ad8536c908f95340be308190b52989bfa0d9268a461c40a3f0d493bc7  bash-3.2-33.el5_10.4.i386.rpm
> x86_64:
> b1e14edd0d675c6fb0be64cb875fbd9fac208a58e427ea32f373c9359b35642c  bash-3.2-33.el5_10.4.x86_64.rpm
> Source:
> b71bd90354d2724f256f9f23e113eea89c98b3ce923380657461cb78d34ab8da  bash-3.2-33.el5_10.4.src.rpm

Note:  The above RPMS, built with the ".el5_10" dist tag are built
against CentoS-5.10 for CentOS-5.10.  The source code was not modified,
but the packages in the build root are the current CentOS-5.10 packages.

There is also a set of packages built against the upcoming CentOS-5.11
with a ".el5_11" dist tag that will be an upgrade when 5.11 is released
and all the packages in that build root are from the upcoming
CentOS-5.11 release.  The ".el5_11" announcement and package will be
done as a zero-day update to CentOS-5.11.

We wanted to get the Important bash update out for 5.10 while also
getting the proper packages out for 5.11 as well, so this was the solution.

Johnny Hughes

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos-announce/attachments/20140925/aaa5b390/attachment-0007.sig>