Article 15913 at 09/08/23 06:15:25 From: bq (at mark) solarspeed.net Subject: [coba-e:15913] Re: Major Update Kernel Included

Index: [Article Count Order] [Thread]

Date:  Sat, 22 Aug 2009 23:15:15 +0200
From:  Michael Stauber <bq (at mark) solarspeed.net>
Subject:  [coba-e:15913] Re: Major Update Kernel Included
To:  coba-e (at mark) bluequartz.org
Message-Id:  <200908222315.16092.bq (at mark) solarspeed.net>
In-Reply-To:  <200908222022.n7MKMK6C008481 (at mark) ana.xnet.com.mx>
References:  <200908222022.n7MKMK6C008481 (at mark) ana.xnet.com.mx>
X-Mail-Count: 15913

Hi Rodrigo,

> We are doing the Centos Updates released today,
>
> Anyone with good / bad news after updating

I just did two updates of BlueQuartz boxes from CentOS 4.7 to CentOS 4.8. One 
was a stand alone box, the other one a VPS on Aventurin{e}.

Both rebooted without hitches and came back with no surprises.

So it looks good so far. Except that CentOS 4.8 is about 14-15 weeks late. 
They really took their time with it. :o/

And the included (new) kernel is still has the vulnerability CVE-2009-2692 
which allows local users to gain root access:

http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html
https://bugzilla.redhat.com/show_bug.cgi?id=516949#c10

-- 
With best regards,

Michael Stauber