On 07/28/2015 08:42 PM, Peter Kjellstrom wrote: > And that "1" important above is quite important. See RHSA-2015-1482 > (CVE-2015-3245, CVE-2015-3246) pkg libuser: local root with exploit in > the wild. > > (as a side note c5 is also affected but no update exists or is planned > afaict). For CentOS 5 you should follow the mitigation instructions at the end of this page: https://access.redhat.com/articles/1537873 Peter