SECURITY ALERT

[شبكه مرهف]

بسم الله الرحمن الرحيم

اسعد مساء الجميع

All kerenls in the 2.6.x tree NEED to upgrade ASAP!!

يجب ترقيه الكيرنل لاصداره الاخير باسرع وقت
لمعرفه الاصدار الحالي

كود PHP:

uname -r 


يجب ترقيتها الى

2.6.17.6


لحب الخير وجب اخباركم. اتمنى لكم التوفيق

التحيات

[maneghost]

1. Kernel Upgrade
=============
Redhat Enterprise / CentOS 4:

This is a critical security upgrade:

During security research, Red Hat discovered a behavioral flaw in core dump
handling. A local user could create a program that would cause a core file
to be dumped into a directory they would not normally have permissions to
write to. This could lead to a denial of service (disk consumption), or
allow the local user to gain root privileges. (CVE-2006-2451)


Redhat Enterprise 3:

New features introduced by this update include:

- addition of the adp94xx and dcdbas device drivers
- diskdump support on megaraid_sas, qlogic, and swap partitions
- support for new hardware via driver and SCSI white-list updates

There were numerous driver updates and security fixes. Other key areas
affected by fixes in this update include the networking
subsystem, the NFS and autofs4 file systems, the SCSI and USB subsystems,
and architecture-specific handling affecting AMD Opteron and Intel EM64T
processors.

The following device drivers have been added or upgraded to new versions:

adp94xx -------- 1.0.8 (new)
bnx2 ----------- 1.4.38
cciss ---------- 2.4.60.RH1
dcdbas --------- 5.6.0-1 (new)
e1000 ---------- 7.0.33-k2
emulex --------- 7.3.6
forcedeth ------ 0.30
ipmi ----------- 35.13
qlogic --------- 7.07.04b6
tg3 ------------ 3.52RH

The following security bugs were fixed in this update:

- a flaw in the USB devio handling of device removal that allowed a local
user to cause a denial of service (crash) (CVE-2005-3055,
moderate)

- a flaw in the exec() handling of multi-threaded tasks using ptrace() that
allowed a local user to cause a denial of service (hang of a
user process) (CVE-2005-3107, low)

- a difference in "sysretq" operation of EM64T (as opposed to Opteron)
processors that allowed a local user to cause a denial of service
(crash) upon return from certain system calls (CVE-2006-0741 and
CVE-2006-0744, important)

- a flaw in unaligned accesses handling on Intel Itanium processors that
allowed a local user to cause a denial of service (crash)
(CVE-2006-0742, important)

- an info leak on AMD-based x86 and x86_64 systems that allowed a local user
to retrieve the floating point exception state of a process run by a
different user (CVE-2006-1056, important)

- a flaw in IPv4 packet output handling that allowed a remote user to bypass
the zero IP ID countermeasure on systems with a disabled
firewall (CVE-2006-1242, low)

- a minor info leak in socket option handling in the network code
(CVE-2006-1343, low)

- a flaw in IPv4 netfilter handling for the unlikely use of SNMP NAT
processing that allowed a remote user to cause a denial of service
(crash) or potential memory corruption (CVE-2006-2444, moderate)


2. Antivirus Upgrade
=================
This upgrade ClamAV to version 0.88.3. Issues fixed are:

libclamav/matcher-ac.c: fix possible false matches of alternatives
libclamav: Large binhex files were not being handled gracefully. Tidied the
handling code. Note that large binhex are not currently decoded.
libclamav/scanners.c: fix zero allocation warning



3. Miscellaneous Updates
=====================
This update feature many tweaks and optimization including the following:
- Optimized PHP logging levels to reduce verbosity
- Reduced DCC logging to prevent the logs from filling up the /usr partition
- Eliminate core dumps, partly to protect against the security issue in the
kernel above, as well as prevent Cpanel users from having their partitions
filled up with useless core dumps especially from Horde and Phpmyadmin
- Added our scripts to check any type of raid and their health status for
both software and hardware (3ware, Megaraid supported) raids. (Only for RAID
machines)
- Update Redhat Enterprise 3 servers to Update 8 (Only for RHE 3)

[متصفح سعودي]

طريقة التحديث بارك الله فيك لـ CentOS4

[شبكه مرهف]

طريقة التحديث بارك الله فيك لـ CentOS4

هلا اخوي

طالما تسال هالسوال سوف ارد عليك بكل امانه
( الرجاء مراجعه الداتا سنتر تبعك علشان يرقونه لك منعآ للخطا .)

وارجو عدم تطبيق اي شرح كونكك سوف تتحمل الخطا بنفسك .

أمل ان تقدر اجابتي لك وتعرف نيتي

[web4host]

تحديث للنظام CentOS x
للبحث
yum search kernel
للتثبيت
yum install kernel



بوعيسى

[MANTEK]

شكرا وهذا العشم فيكم يا اهل سوالف
كل واحد يعرف شي يروح يقول لاخوانه عشان ينتبهون
بالله لو فيه اي اخبار او تحديثات للسي بنل والا الاباشي تقولون لنا

[Alrasam]

الله يعطيك الف عافية