On Tue, 12 Feb 2008, Connie Sieh wrote: > Rebuild in process. > Will post when done. I can confirm Akemi's statement: there's only one patch in there w.r.t. 53.1.6. And it's exactly what's in our emergency build as well. Which means we already know that a variety of SL 5 systems with such a kernel is at least known to boot and apparently work fine. Please release a.s.a.p. NB It's a pity that they even ripped the cciss fix out ;-) We probably would have liked this one. - Stephan > -Connie Sieh > On Tue, 12 Feb 2008, Connie Sieh wrote: > >> On Tue, 12 Feb 2008, [log in to unmask] wrote: >> >>> On Tue, 12 Feb 2008, Jon Peatfield wrote: >>> >>>> In the remote chance that people here havn't already spotted it (there >>>> was mention of it on one of the Centos lists yesterday and lots of other >>>> places), there is likely to be a kernel security update for el-5 really >>>> soon (el-4 and earlier are not affected). >>>> >>>> https://bugzilla.redhat.com/show_bug.cgi?id=432251 >>>> >>>> Comment #39 says: >>>> >>>> ... and are finishing up the QA process for Red Hat Enterprise Linux 5. >>>> We expect this to be completed shortly (pending successful completion of >>>> testing). This will be RHSA-2008:0129. >>>> >>>> I'm assuming that since this is an urgent security issue they will just >>>> be adding the trivial upstream patch into kernel -53.1.x rather than >>>> waiting for -79+ to finish full QA. >>> >>> The announcement for -53.1.13 just arrived. Alas, the SRPM is not yet on >>> their ftp server, hence I couldn't check what's actually in there, and >>> Connie and Troy can't rebuild it. >> >> It is there now. Downloading it. >> >> -Connie Sieh >> >>> >>> We're rolling out an emergency build on certain systems tonight, with a >>> patch that at least renders the public exploit useless. If anyone wants >>> it, let me know whithin the next 1.5 hours and I'll make it accessible via >>> http. >>> >>> >> > -- Stephan Wiesand DESY - DV - Platanenallee 6 15738 Zeuthen, Germany