[Whitebox-announce] [WBSA-2004:066-01] Updated kernel packages fix security vulnerability

[John Morris]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ----------------------------------------------------------------------
                   Security Advisory

Synopsis:          Updated kernel packages fix security vulnerability
Advisory ID:       WBSA-2004:066-01
Issue date:        2004-02-19
Updated on:        2004-02-19
Product:           White Box Enterprise Linux 3.0 (i386)
Keywords:          liberation kernel update
Cross references:  
Obsoletes:         WBSA-2004:017
CVE Names:         CAN-2004-0077
- ----------------------------------------------------------------------

Updated kernel packages that fix a security vulnerability that may allow
local users to gain root privileges are now available.  These packages
also resolve other minor issues.

More information is available in Red Hat, Inc's original advisory 
available on their site at:

http://www.redhat.com/archives/enterprise-watch-list/2004-February/msg00013.html

To install this new package on your White Box Enterprise Linux system
use the Up2Date Network or Yum.

Remember that up2date will not replace kernel packages by default.  Also 
remember the reason for this; replacing the kernel can break locally 
customized configurations, 3rd party binary modules (Nvidia, VMware, 
etc.) and generally should happen only under human supervision.

Note: Be sure to change the default Up2Date or Yum server from the
initial location to prevent undue load to the whiteboxlinux.org
server, which doesn't have a lot of outbound bandwidth.  The config
files already have entries for mirror sites commented out.

Up2Date's configuration file is at /etc/sysconfig/rhn/sources

Yum's configuration is in /etc/yum.conf


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFANYzbqME6bvnsqA8RAm6qAKCIWqjpwFKHgeaL9PFHgZ+cY3Il7wCeI/Hd
DYB/FFHyO7CRktT/bH2eXpY=
=W8zy
-----END PGP SIGNATURE-----