Evaluating security issues are hard for me, I readily admit. The more I learn about
security the less I know.
The alert was about local users being able to start a denial of service attack on a
local box. None of our local
users are (I hope!) savvy enough to do such a thing, but like you I always
me thinks security issues is good reason ;-)
That said... up2date doesn't replace the kernel, so you can look what is
broken and try to repair it.
If you cannot fix it, kick your supplier in his *ss to provide a newer
version of the drivers... the only reason to update a kernel is
security, and thi
Charles:
Thank you for the response. Fortunately, my momma taught me good! I do
still have the earlier kernel and am booting to that. As for upgrading the
krenel, when RedHat says there's a known security flaw (or two) and the
upgrade is intended to fix them, isn't that sufficient reason to do
Hey, listen to your momma! *Never* (did I say *never*) *ever* (did I say *never*
*ever*)
update your kernel, or allow up2date to update your kernel, without a good reason,
especially for binaries that are compiled against a particular kernel. This almost
always (in my humble opinion and limited
