similar to: Updated openoffice package fixes security vulnerability in Neon.

Thanks to all who have tested - CentOS 3.1 has now been released. .... The release includes all security updates for rhel released by 18th March. For now further security announcements will be posted to both the centos at caosity.org and centos-devel at caosity.org mailing lists. .... CentOS-3 also now includes the rhel documentation, both on the cds (cd3 /docs) and also on the mirrors in

There is an update to cvs for CentOS-3.1 https://rhn.redhat.com/errata/RHSA-2004-153.html referes. Updated files are :- updates/i386/RPMS/cvs-1.11.2-18.i386.rpm updates/i386/SRPMS/cvs-1.11.2-18.src.rpm These are available at http://mirror.centos.org/3.1/ and should be on all mirrors within a few hours. To update to the latest version 'yum update cvs' should be sufficient. Lance

There is an update to squid for CentOS-3.1 https://rhn.redhat.com/errata/RHSA-2004-133.html refers. Updated files are :- updates/i386/RPMS/squid-2.5.STABLE3-5.3E.i386.rpm updates/i386/SRPMS/squid-2.5.STABLE3-5.3E.src.rpm These are available at http://mirror.centos.org/3.1/ and should be on all mirrors within a few hours. To update to the latest version 'yum update squid' should be

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to utempter for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-174.html refers.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to squid for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-242.html refers.

These are the correct ones. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to httpd for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-342.html refers.

mirror.caosity.org is going to become a cluster of 3 servers - using round-robin dns. all uploads need to be done in future to master.caosity.org which will be the new mirror master - the others will sync off of that one. Please make sure that all scripts etc that do uploading are changed to upload to master.caosity.org Once the rr dns records are in place you may find that you may not be

I had sent my reply to centos-devel, but as there is discussion here - here it is ... Lance ---------- Forwarded message ---------- Date: Tue, 14 Dec 2004 12:47:18 +0000 (GMT) From: Lance Davis <lance at uklinux.net> Reply-To: centos-devel at caosity.org To: John Newbigin <jn at it.swin.edu.au> Cc: centos-devel at caosity.org Subject: [CentOS-devel] Re: [Centos] Issues/thoughts re

There is a new updated kernel for centos 3.1 that fixes a security issue. As I have not had time to test this build I am releasing it for testing for 24 hours to pick up any problems before general release. It is available at :- http://caos2.caosity.org:/centos/3.1/updates/i386/RPMS/ The version is 2.4.21-15.0.2.el.c0 Please install and test these packages, they are as yet unsigned and not

An update has been released to centos-yumconf , the yum configuration file for centos because it was not set ot check the gpgkey on the packages ity installed. It was assumed that if there was a key then it would be checked, but that is not the case, it has to be explicitly enabled per repo. https://bugzilla.caosity.org/show_bug.cgi?id=543 refers The updated file is :-

Due to a number of build problems with perl, we have issued a new set of rpms that no longer have strange provide/require items ... See https://bugzilla.caosity.org/show_bug.cgi?id=519 for details. The updated rpms are :- updates/i386/RPMS/perl-5.8.0-88.4.0.i386.rpm updates/i386/RPMS/perl-CGI-2.81-88.4.0.i386.rpm

I have built a set of preview U4 beta rpms for CentOS i386 - these will become the basis of CentOS 3.4 when Rhel 3 U4 is released. I will not be pushing these out to the mirrors, but they are available at http://beta.caosity.org/centos/3.3/U4beta The beta packages are not signed. To add then to yum.conf add :- [u4beta] name=CentOS-$releasever - U4beta

As you will know from recent posts, CentOS is separating from cAos to become an independent project. As part of that change we are implementing new mailing lists. This new mailing list is now known as centos at centos.org and you have been subscribed to it if you were subscribed to centos at caosity.org. Due to the large number of people subscribed it has not been possible to retain options

There is an update to httpd and mod_ssl for CentOS-3.1 https://rhn.redhat.com/errata/RHSA-2004-084.html refers. Updated files are :- updates/i386/RPMS/httpd-2.0.46-32.ent.centos.1.i386.rpm updates/i386/RPMS/httpd-devel-2.0.46-32.ent.centos.1.i386.rpm updates/i386/RPMS/mod_ssl-2.0.46-32.ent.centos.1.i386.rpm updates/i386/SRPMS/httpd-2.0.46-32.ent.centos.1.src.rpm These are available at

There is an update to ipsec-tools for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-165.html refers. Updated files are :- updates/i386/RPMS/ipsec-tools-0.2.5-0.4.i386.rpm updates/i386/SRPMS/ipsec-tools-0.2.5-0.4.src.rpm which is also dependant on :- updates/i386/RPMS/initscripts-7.31.13.EL-1.centos.1.i386.rpm updates/i386/SRPMS/initscripts-7.31.13.EL-1.centos.1.src.rpm These are

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to tcpdump for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-219.html refers.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to LHA for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-178.html refers.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to squirrelmail for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-240.html refers. Updated files are :- updates/i386/RPMS/squirrelmail-1.4.3-0.e3.1.noarch.rpm updates/i386/SRPMS/squirrelmail-1.4.3-0.e3.1.src.rpm These are available at

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to php for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-392.html refers.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is an update to cvs for CentOS 3.1 https://rhn.redhat.com/errata/RHSA-2004-190.html refers.