Re: local root exploit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



Valent Turkovic wrote:
On Mon, Feb 11, 2008 at 11:58 AM, kfx <kadafax@xxxxxxxxx> wrote:
Valent Turkovic wrote:
 > I saw that there is a local root exploit in the wild.
 > http://blog.kagesenshi.org/2008/02/local-root-exploit-on-wild.html
 >
 > And I see my centos box still has:  2.6.18-53.1.4.el5
 >
 > yum says there are no updates... am I safe?
 >
 > Valent.
 No you're not... and we are a lot in this very embarrassing situation...

 You can compile (you need kernel-pae-devel's rpm) and insmod this kernel
 module while waiting for redhat to push out a new kernel and then that
 centos reroll it.
 http://home.powertech.no/oystein/ptpatch2008/


I still see no kernel updates for Centos and I got two Fedora 8 kernel
updates since this exploit happened.

Is my yum broken?

I tried
yum clean all
yum update

and still nothing :(

kernel-2.6.18-53.1.13.el5

is the bug fix kernel.
If you aren't seeing it - I think your yum config file is likely set up incorrectly.

Where is it pointing for updates?
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux