From: Frank Geurts (geurts_at_rice.edu)
Date: Fri Apr 11 2003 - 14:23:01 EDT
Hi Wayne -- earlier today i applied most of the patches to tofgas.starp.
The only ones that I left out are the kernel and glibc-related patches
since they require a system reboot something we can't afford to do while
the gas system is alive. All the rest should be off of your radar screen.
TOF gas experts -- all of these patches did not affected tofgas's
operation which continued reading out while the patches were applied.
cheers,
Frank
Wayne Betts wrote:
> Hi Frank,
>
> As we discussed, I have not been applying patches to tofgas, so they are
> building up:
>
> RHSA-2003:025 Updated 2.4 kernel fixes various vulnerabilities
> 2003-02-03
> RHSA-2002:202 Updated python packages fix predictable temporary file
> 2003-02-12
> RHSA-2003:035 Updated PAM packages fix bug in pam_xauth module
> 2003-02-12
> RHSA-2003:015 Updated fileutils package fixes race condition in
> recursive operations 2003-02-12
> RHSA-2003:057 Updated shadow-utils packages fix exposure 2003-02-18
> RHSA-2003:041 Updated VNC packages fix replay and cookie
> vulnerabilities 2003-02-20
> RHBA-2003:069 Updated 2.4 kernel fixes tg3 driver hang 2003-02-28
> RHSA-2003:062 Updated OpenSSL packages fix timing attack 2003-03-06
> RHSA-2003:086 Updated file packages fix vulnerability 2003-03-07
> RHSA-2003:054 Updated rxvt packages fix various vulnerabilites
> 2003-03-17
> RHSA-2003:089 Updated glibc packages fix vulnerabilities in RPC XDR
> decoder 2003-03-19
> RHSA-2003:051 Updated kerberos packages fix various vulnerabilities
> 2003-03-26
> RHSA-2003:098 Updated 2.4 kernel fixes vulnerability 2003-03-28
> RHSA-2003:108 Updated Evolution packages fix multiple vulnerabilities
> 2003-03-31
> RHSA-2003:120 Updated sendmail packages fix vulnerability
> 2003-03-31
> RHSA-2003:095 New samba packages fix security vulnerabilities
> 2003-04-01
> RHSA-2003:101 Updated OpenSSL packages fix vulnerabilities
> 2003-04-01
> RHSA-2003:060 Updated NetPBM packages fix multiple vulnerabilities
> 2003-04-03
> RHSA-2003:109 Updated balsa and mutt packages fix vulnerabilities
> 2003-04-03
> RHSA-2003:036 Updated mgetty packages available 2003-04-08
> RHSA-2003:137 New samba packages fix security vulnerability
> 2003-04-09
>
> Most are not at all critical, unless you are using the specific services
> involved, like sendmail or samba, in which case they can be pretty serious.
> Except for the kernel updates, these are straightforward to apply, with no
> particular gotchyas. Even the kernel updates are easy, but you may need to
> do a bit of work, like for instance, rebuilding an afs kernel module if you
> have afs installed, and of course, a new kernel requires a reboot to become
> effective, so I can see how you might want to skip that.
>
> If you are willing to apply some or all of them, you can do it by hand with
> "up2date -v" (assuming an X display), or I can schedule them through the RHN
> web interface and they will be applied within a couple of hours. Again, I
> don't consider this a high priority, but if some of these were applied, it
> would sure make the accounting look good here... Yours is the last system
> without many of these applied :-)
>
> Wayne
>
> wbetts_at_bnl.gov
>
> Office: (631) 344-5795
> Cell: (631) 804-6897
>
> Brookhaven National Lab -- Bldg. 1006C
> PO Box 5000
> Upton, NY 11973-5000
This archive was generated by hypermail 2.1.4 : Thu Jul 24 2003 - 00:39:39 EDT