Linode Forum
https://forum.linode.com/

Remote root vulnerability in Exim
https://forum.linode.com/viewtopic.php?f=11&t=6379		 Page 1 of 1
Author:  zunzun [ Fri Dec 10, 2010 2:01 pm ]
Post subject:  Remote root vulnerability in Exim
http://www.exim.org/lurker/message/2010 ... f2.en.html
Author:  hoopycat [ Fri Dec 10, 2010 10:43 pm ]
Post subject: 
With followup at:

http://www.exim.org/lurker/message/2010 ... d0.en.html

Debian lenny should be fixed on your next update/upgrade tango. Ubuntu 6.06, 8.04 and 9.10 are based on Exim <= 4.69 and *MAY* be vulnerable, although I haven't actually looked to see if they've been patched or tested. So, if you're running one of those versions, check your http://www.ubuntu.com/usn in the mornin'. RHEL has a fix pushed, so it should hit CentOS within 6-8 weeks.
Author:  obs [ Sat Dec 11, 2010 2:52 am ]
Post subject: 
http://www.ubuntu.com/usn/usn-1032-1

Ubuntu 9.10 and lower
Author:  greenriver33 [ Sat Dec 11, 2010 3:58 pm ]
Post subject: 
I have two linodes with Centos.

Is it possible to apply the RHEL fix to Centos manually via downloading the rpm somewhere and apply it?

Any pointers would be great! thanks
Author:  Erasmus Darwin [ Sat Dec 11, 2010 4:17 pm ]
Post subject: 
greenriver33 wrote:
Is it possible to apply the RHEL fix to Centos manually via downloading the rpm somewhere and apply it?


I believe so, but I haven't tested it.

However, Redhat only distributes the source RPMs for non-RHN subscribers, so you'll have to compile it yourself.

The source RPM is here: http://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/exim-4.63-5.el5_5.2.src.rpm

And CentOS wiki instructions on building a package from the source RPM: http://wiki.centos.org/HowTos/RebuildSRPM

Edit: Looks like the CentOS update's available now.
Author:  greenriver33 [ Mon Dec 13, 2010 8:03 am ]
Post subject: 
thanks Erasmus for the tip!
Page 1 of 1 All times are UTC-04:00
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/