CentOS Linux 5.2 has been released and available for immediate update via yum command or
the i386 and x86_64 Architectures. From the announcement page:
CentOS-5.2 is based on the upstream release EL 5.2.0, and includes packages from all variants including Server and Client. All upstream repositories have been combined into one, to make it easier for end users to work with. And the option to further enable external repositories at install time is now available in the installer.
How do I update from CentOS-5.0 and 5.1 to 5.2?
Simply type the following command as root user:
# yum update
# yum upgrade
shadow-utils-4.0.17-13.el 100% |=========================| 50 kB 00:00
---> Package shadow-utils.i386 2:4.0.17-13.el5 set to be updated
---> Downloading header for cups to pack into transaction set.
cups-1.2.4-11.18.el5_2.1. 100% |=========================| 165 kB 00:00
Install 8 Package(s)
Update 191 Package(s)
Remove 2 Package(s)
Total download size: 298 M
Is this ok [y/N]: y
Finally, reboot your computer, enter:
You may be aware that after kernel upgrade and kernel security patching you need to reboot Linux box. Now, there is a new patch called – Ksplice. It provides rebootless Linux kernel security update. It is available under GPL 2 and has been tested on Linux kernel versions from 2.6.8 to the recently released 2.6.25 and on several Linux distributions including Debian, Ubuntu, Red Hat Enterprise Linux and Gentoo Linux.
Ksplice allows system administrators to apply security patches to the Linux kernel without having to reboot. Ksplice takes as input a source code change in unified diff format and the kernel source code to be patched, and it applies the patch to the corresponding running kernel. The running kernel does not need to have been prepared in advance in any way.
To be fully automatic, Ksplice’s design is limited to patches that do not introduce semantic changes to data structures, but most Linux kernel security patches don’t make these kinds of changes. An evaluation against Linux kernel security patches from May 2005 to December 2007 finds that Ksplice can automatically apply 84% of the 50 significant kernel vulnerabilities from this interval.
Ksplice has been implemented for Linux on the x86-32 and x86-64 architectures.
=> Ksplice: Rebootless Linux kernel security updates (via zdnet)