latest security advisory and 5.1R
Matthew Seaman
m.seaman at infracaninophile.co.uk
Wed Mar 3 08:40:25 PST 2004
On Wed, Mar 03, 2004 at 08:35:00AM -0600, Ronald Clark wrote:
> I have what I hope is a simple question. If I cvsup my sources and
> complete the makeworld and installworld processes, will that install the
> patch, or do I need to apply manually and recompile the kernel? (I have
> been under the impression that doing a cvsup would download and install
> the patch when sources were updated)
So long as you are cvsup'ing one of the branches where the fix has
been applied: that's HEAD, RELENG_5_2, RELENG_4_9, RELENG_4_8 or
RELENG_4, then yes: cvsup, followed by make
{build,install}{world,kernel} will remove the vulnerability. It seems
that the fix has not been applied to the RELENG_5_1 branch, so
5.1-RELEASE users really should think about upgrading to
5.2.1-RELEASE.
You can download the patches as shown in the advisory and apply them
by hand if you really want to, but that should be left to masochists
only as it does pretty well exactly what cvsup'ing does, except it
takes a lot more concentration and has a greater risk of fat-fingering
the keyboard and so shooting yourself in the foot.
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040303/a1a07b69/attachment.bin
More information about the freebsd-questions
mailing list