<html>
  <head>
    <meta content="text/html; charset=windows-1252"
      http-equiv="Content-Type">
  </head>
  <body text="#000000" bgcolor="#FFFFFF">
    Hi,<br>
    <br>
    My Raspberry Pi and Ubuntu Server already have the updated version
    of libc6. Is a reboot still required? I thought only kernel updates
    required a reboot.<br>
    <br>
    <div class="moz-cite-prefix">On 02/22/2016 04:44 PM, nusenu wrote:<br>
    </div>
    <blockquote cite="mid:56CB8F43.30604@openmailbox.org" type="cite">
      <pre wrap="">Hi,

if we assume for simplicity that every relay running Linux that has not
rebooted since 2016-02-16 is vulnerable to CVE-2015-7547, than these are
the current stats (optimistic, because we assume that everyone that
rebooted did also update).

Vulnerable relays:

+------------+------------------+-----------------+
| cwfraction | guardprobability | exitprobability |
+------------+------------------+-----------------+
|      0.586 |            0.639 |           0.518 |
+------------+------------------+-----------------+
(1=100%)

Apply patches and reboot.

Debian
<a class="moz-txt-link-freetext" href="https://www.debian.org/security/2016/dsa-3481">https://www.debian.org/security/2016/dsa-3481</a>

RHEL/CentOS
<a class="moz-txt-link-freetext" href="https://rhn.redhat.com/errata/RHSA-2016-0176.html">https://rhn.redhat.com/errata/RHSA-2016-0176.html</a>

Ubuntu
<a class="moz-txt-link-freetext" href="http://www.ubuntu.com/usn/usn-2900-1/">http://www.ubuntu.com/usn/usn-2900-1/</a>

</pre>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
tor-relays mailing list
<a class="moz-txt-link-abbreviated" href="mailto:tor-relays@lists.torproject.org">tor-relays@lists.torproject.org</a>
<a class="moz-txt-link-freetext" href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>