Is 2.6.9-22.ELsmp kernel secure?

[zigzam]

Does the new Linux Kernel Local Root Exploit effect the kernel: 2.6.9-22.ELsmp


Thanks

 

[zigzam]

Im using Redhat Enterprise 4. Is it fine with that kernel?

 

[AndyReed]

Does the new Linux Kernel Local Root Exploit effect the kernel: 2.6.9-22.ELsmp

If you are using CentOS, I suggest you upgrade to v2.6.9-41.ELsmp.

 

[zigzam]

Im using Redhat Enterprise 4. Is it fine with that kernel?

 

[chirpy]

No, that's an old insecure kernel and you should upgrade it to the latest using up2date.

 

[docenta]

Hello do you know is my Kernel 2.4.21-40.ELsmp secure too?



Thanks.

 

[AndyReed]

Hello do you know is my Kernel 2.4.21-40.ELsmp secure too?

So far, v2.4.21-40 and newer are more secure than older versions.

 

[arhs]

I'm running "2.6.9-34.0.2.ELsmp" on CentOS 4.3 is this fine...?

 

[zigzam]

2.6.9-42 covers the exploit.

 

[agressor]

How i can downgrade to kernel 2.4.

[[email protected] /]# cat /etc/*release*
Fedora Core release 4 (Stentz)
LSB_VERSION="1.3"
Fedora Core release 4 (Stentz)
[[email protected] /]#


in yum list \*kernel\* only see 2.6 kernel

 

[chirpy]

I'm running "2.6.9-34.0.2.ELsmp" on CentOS 4.3 is this fine...?

Yes, that's the latest 2.6 kernel from CentOS for v4.

I'd strongly suggest that anyone concerned about OS vendor kernels should subscribe to their notification mailing lists so that you knwo when they become available and what the releases fix.

If you use custom kernels you will have to constantly monitor kernel.org and compile new ones as needed.