[CentOS-devel] [CentOS] Security update missing - kernel-2.6.18-128.el5

Fri Feb 6 16:46:30 UTC 2009
David Hrbáč <hrbac.conf at seznam.cz>

Milan Keršláger napsal(a):
> Please,
> 
> do not delay this "Important" multiple security update. See 
> https://rhn.redhat.com/errata/RHSA-2009-0225.html for more info.
> 
> This update is "5.3" kernel but has been released as security update 
> too. RHN pushed this kernel one day ahead of rest of 5.3 packages (on my 
> servers).
> 
> RH maintains API and ABI (!) compatibility so there is no problem to use 
> this kernel AFAIK.
> 
> So please, do not delay it anymore, this contains multiple security 
> vulnerabilities fixed since 2009-01-20.
> 
> Thank you for your effort (a lot).
> 
> M.K.
> 

Tru's right. It not only depends on ecryptfs-utils but other new
packages. It's right it builds fine, but finally depends on a lot of new
modules. Some:
%define kernel_dot_org_conflicts  ppp < 2.4.3-3, isdn4k-utils < 3.2-32,
nfs-utils < 1.0.7-12, e2fsprogs < 1.37-4, util-linux < 2.12, jfsutils <
1.1.7-2, reiserfs-utils < 3.6.19-2, xfsprogs < 2.6.13-4, procps <
3.2.5-6.3, oprofile < 0.9.1-2

%define package_conflicts initscripts < 7.23, udev < 063-6, iptables <
1.3.2-1, ipw2200-firmware < 2.4, selinux-policy-targeted < 1.25.3-14,
ecryptfs-utils < 44, cpuspeed < 1.2.1-5

Milan, you can try yourself testing kernel here:
http://fs12.vsb.cz/hrb33/el5/hrb-kernel/stable/x86_64/repodata/
http://fs12.vsb.cz/hrb33/el5/hrb-kernel/stable/i386/repodata/

I'd like to point out one thing. I do want to thank to Centos developers
they have changed update build process. Even that there is 5.3 rebuild
process ongoing, they are releasing security updates for C{3,4,5} and I
like it. This is a new behavior, because every time they had been
rebuilding new distro version, security updates process got stucked. So,
thank you Pasi and Tru.

Regards,
David