Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Sun 19 Nov 2017, 18:01
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Heads up CentOS (and RHEL) users
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [6 Posts]  
Author Message
belham2

Joined: 15 Aug 2016
Posts: 1301

PostPosted: Wed 27 Sep 2017, 15:56    Post subject:  Heads up CentOS (and RHEL) users  

http://www.securityweek.com/two-year-old-vulnerability-patched-linux-kernel


".........Because of that, “all versions of CentOS 7 before 1708 (released on September 13, 2017), all versions of Red Hat Enterprise Linux 7 before 7.4 (released on August 1, 2017), and all versions of CentOS 6 and Red Hat Enterprise Linux 6 are exploitable,” Qualys says......."
Back to top
View user's profile Send private message 
disciple

Joined: 20 May 2006
Posts: 6770
Location: Auckland, New Zealand

PostPosted: Sun 01 Oct 2017, 13:34    Post subject:  

Perhaps I misread something, but why just users of those distros?
_________________
If you have or know of a good gtkdialog application, please post a link here

Classic Puppy quotes

ROOT FOREVER
Back to top
View user's profile Send private message 
8Geee


Joined: 12 May 2008
Posts: 1252
Location: N.E. USA

PostPosted: Sun 01 Oct 2017, 14:47    Post subject:  

I think the warning is also about k3.10.x which IIRC exists in some pups in the kennel. It does look aimed at RHEL by the tone of the article because the flaw was not considered serious at the time (2015).

Maybe a checkup is worth it.
Regards
8Geee

_________________
Linux user #498913
Back to top
View user's profile Send private message 
6502coder


Joined: 23 Mar 2009
Posts: 405
Location: Western United States

PostPosted: Sun 01 Oct 2017, 14:53    Post subject:  

@disciple

You're perhaps reading too much into what's NOT said.

While the article mentions certain versions of CentOS and RHE as being affected, it nowhere says "just" those two OSs are affected. The logical inference is that there may be other OSs affected, but either not yet known to be affected, or known to be affected but not prominent enough (i.e. well-known and widely used) to be worth mentioning.
Back to top
View user's profile Send private message 
disciple

Joined: 20 May 2006
Posts: 6770
Location: Auckland, New Zealand

PostPosted: Sun 01 Oct 2017, 15:54    Post subject:  

6502coder wrote:
@disciple

You're perhaps reading too much into what's NOT said.

Sorry, I wasn't clear enough. The advice seems to come from someone who is only interested in those distros, and I was trying to get at the same thing you're saying - i.e. since it is supposed to be a problem with all kernels prior to Linux 3.10.77, what on earth is the idea of posting about it on the Puppy forum in a way that implies that the issue is with those other distros!

No offence intended to the original poster (I don't remember seeing posts like this from them before), but there are a number of people here who constantly post things like this which might be quite helpful if they thought a bit harder about the message they're trying to get across, but as it is it comes across more like they are spamming us with "fake news".

_________________
If you have or know of a good gtkdialog application, please post a link here

Classic Puppy quotes

ROOT FOREVER
Back to top
View user's profile Send private message 
6502coder


Joined: 23 Mar 2009
Posts: 405
Location: Western United States

PostPosted: Sun 01 Oct 2017, 18:40    Post subject:  

The title of the thread is arguably too restrictive, in that someone who doesn't use CentOS or RHE probably wouldn't bother to read it at all, even though he/she might be a user of an affected Puppy or other OS. If that's your point, then I agree.

On the other hand, I myself have made several posts like the OP's. Since I rarely have the technical chops to assess the relevance of the news, I usually just post the news without comment. I don't have a "message I'm trying to get across," I simply report security news items I think might well be of interest to members of this forum. I hope that on balance, this is more useful than annoying.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [6 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0330s ][ Queries: 13 (0.0044s) ][ GZIP on ]