On Wed, Mar 03, 2004 at 08:35:00AM -0600, Ronald Clark wrote:

> I have what I hope is a simple question. If I cvsup my sources and
> complete the makeworld and installworld processes, will that install the
> patch, or do I need to apply manually and recompile the kernel? (I have
> been under the impression that doing a cvsup would download and install
> the patch when sources were updated)

So long as you are cvsup'ing one of the branches where the fix has
been applied: that's HEAD, RELENG_5_2, RELENG_4_9, RELENG_4_8 or
RELENG_4, then yes: cvsup, followed by make
{build,install}{world,kernel} will remove the vulnerability.  It seems
that the fix has not been applied to the RELENG_5_1 branch, so
5.1-RELEASE users really should think about upgrading to
5.2.1-RELEASE.

You can download the patches as shown in the advisory and apply them
by hand if you really want to, but that should be left to masochists
only as it does pretty well exactly what cvsup'ing does, except it
takes a lot more concentration and has a greater risk of fat-fingering
the keyboard and so shooting yourself in the foot.

        Cheers,

        Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

Attachment: pgp00000.pgp
Description: PGP signature

Reply via email to