From owner-freebsd-questions@FreeBSD.ORG Fri Jul 22 16:56:59 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EB9F616A422 for ; Fri, 22 Jul 2005 16:56:59 +0000 (GMT) (envelope-from lars@gmx.at) Received: from mail.gmx.net (mail.gmx.de [213.165.64.20]) by mx1.FreeBSD.org (Postfix) with SMTP id 5BBF143E27 for ; Fri, 22 Jul 2005 16:50:53 +0000 (GMT) (envelope-from lars@gmx.at) Received: (qmail invoked by alias); 22 Jul 2005 16:50:52 -0000 Received: from 199.247.203.62.cust.bluewin.ch (EHLO [192.168.1.10]) [62.203.247.199] by mail.gmx.net (mp003) with SMTP; 22 Jul 2005 18:50:52 +0200 X-Authenticated: #912863 Message-ID: <42E123F3.3000000@gmx.at> Date: Fri, 22 Jul 2005 18:50:59 +0200 From: lars User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <20050722140856.GD34840@keyslapper.net> In-Reply-To: <20050722140856.GD34840@keyslapper.net> Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 Subject: Re: upgrading from 5.4-RELEASE-p4 to 5.4-RELEASE-p5 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jul 2005 16:57:00 -0000 Louis LeBlanc wrote: > There was a new security announcement a couple days ago regarding the > devfs subsystem in FreeBSD. The announcement is here: > ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc > > My question is regarding the upgrade and patch description. I am > running 5.4_RELEASE-p4. The alert suggests either patching and > rebuilding the kernel or upgrading to 5.4-RELEASE-p5. "Upgrading" to 5-STABLE or RELENG_5_4 means synchronising your source with one of these CVS tagged branches and then rebuilding your system. In this particular case only the kernel really needs to be rebuilt and reinstalled. Some people however prefer to always rebuild the kernel and world to ensure synchronicity of the two. If I decide to > upgrade my source, would it be sufficient (and safe) to just rebuild > the kernel, or do I still need to rebuild world? In this case, you could do with only rebuilding and installing the kernel. > The only files changed between my last build and this one are > src/UPDATING > src/sys/conf/newvers.sh > src/sys/fs/devfs/devfs_vnops.c > > And for such a small change (I checked the patch, it's literally a 2 > line change - sanity check of parameters for the defvs_mknod() call - > plus commentary), would it really be necessary to go through the > mergemaster process? (from my POV, this is the most tedious and error > prone part of the whole process). No, here it is not necessary.