Patching Spectre / Meltdown on RHEL 5.11
I'm relatively new to supporting Linux, but my new role has me doing some patching for our Linux boxes (both virtual and physical).
First of all...
# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 5.11 (Tikanga)
I ran Red Hat's script to see if we are vulnerable to the Spectre/Meltdown issue, and we are. Supposedly, RedHat has patches for us. To complicate things, apparently "#yum updateinfo" doesn't work on Red Hat 5.11.
Doing a "yum list kernel" shows:
# yum list kernel
Loaded plugins: product-id, security, subscription-manager
...
Installed Packages
kernel.x86_64 2.6.18-404.el5 installed
kernel.x86_64 2.6.18-408.el5 installed
kernel.x86_64 2.6.18-416.el5 installed
Available Packages
kernel.x86_64 2.6.18-419.el5 rhel-5-server-rpms
The command "yum info-security" shows a few older updates (use-after-free) are available, but nothing for the Spectre/Meltdown patches (CVE-2017-5754 CVE-2017-5715 and CVE-2017-5753).
Any ideas on why these latest patches aren't showing up for me?
Thanks for any help you can provide.