> Paul Howarth wrote: > > >On Thu, 2005-06-09 at 14:04 -0400, Michael E. > Webster wrote: > > > > > >>Sorry if it's been posted before. I've google'd > and searched the > >>forum archives and didn't > >>find any answers. > >> > >>I'm currently running FC3 with Apache 2.0.52 on > about 20 servers. > >>Several different security > >>scan programs are showing two vulnerabilities and > want me to 'upgrade > >>apache' to the latest > >>and greatest version (2.0.54) > >> > >> > > > >Remember that version numbers can be misleading, > and that Red Hat often > >backport security fixes to older versions for > stability reasons. > > > I agree that direct version checking is a broken > idea considering that > backporting happens usually. > http://www.redhat.com/advice/speaks_backport.html > Fedora packages usually gets updated to the upstream > version rather than > backports though. On a related note, > http://www.advogato.org/person/mjcox/diary.html?start=132 > > regards > Rahul This was covered before at https://www.redhat.com/archives/fedora-list/2005-April/msg01977.html I've got several FC3 boxes running the latest and greatest Apache 2.0.54 , Mysql 4.1.12 and php 4.3.11 . The trick is to grab the source rpms from an upstream source and rebuild them. Only watchout against trying to rebuild openssl as everything depends on it. Fedora Core - The power of Open Source Now! Please search the archives and fedoraforum.org as the question is likely to have been asked before. Cheers Captain Bubudiu ___________________________________________________________ How much free photo storage do you get? Store your holiday snaps for FREE with Yahoo! Photos http://uk.photos.yahoo.com
