[CentOS] local root exploit
Akemi Yagi
amyagi at gmail.com
Wed Feb 13 06:18:59 UTC 2008
On Feb 11, 2008 10:52 AM, Scott McClanahan
<scott.mcclanahan at trnswrks.com> wrote:
>
>
> On Mon, 2008-02-11 at 10:45 -0800, Akemi Yagi wrote:
> > We have to wait and see, but my impression is that the nfs fix would
> > not be in the updated kernel (I hope I am wrong). They are talking
> > about getting it into 5.2 (even possibly into 5.3). I can see that
> > this is a problem. Now, we can not "stay with 53.1.4" on the systems
> > where the local root exploit is a serious problem.
> >
> > Akemi
> Yes, until now we had no problem stalling on 53.1.4. I guess we'll have
> to test how badly the nfs performance degradation actually is under a
> heavy load in our environment.
Good news! CentOS is going to offer the updated kernel (-53.1.13)
with the nfs patch applied -- thanks to Johnny Hughes. Let's wait to
hear from him.
Akemi
More information about the CentOS
mailing list