Joe Pruett wrote: > On Thu, 29 May 2008, Johnny Hughes wrote: > >> This is already solved on another thread ... but for closure on this >> one, there is a known bug here with that kernel and ipsec: >> >> http://bugs.centos.org/view.php?id=2853 > > that bug entry does say to use the upstream bug for info about a > workaround, but the upstream bug is blocked to mere mortals. is there a > workaround other than just using the older kernel? Did you see the added note? I quote: "For the benefit of those who do not have access to the upstream bugzilla report, this bug has been fixed in the updated 5.2 kernel (version number 2.6.18-92.el5), and this kernel also contains the CVE-2007-6282 patch. I would recommend that people affected by this bug upgrade to 2.6.18-92.el5."