Red Hat Bugzilla – Bug 499079
Last modified: 2009-08-10 04:45:46 EDT
Your initial EVR was smaller than one of EPEL packages. Needless to say, the EPEL package is EOL-ed, is unsupported by you and doesn't get regularly updated for security fixes anymore.
+++ This bug was initially created as a clone of Bug #498967 +++
RHEL contains java-1.6.0-openjdk-126.96.36.199-0.30.b09.el5 which contains recent security patches, but EPEL contains java-1.6.0-openjdk-188.8.131.52-1.0.b12.el5.2, which is newer according to yum, but hasn't been updated since October last year.
For all you bugzilla lurkers out there, a band aid solution to this repository incompatibility is to add
to the [epel] segment of your /etc/yum.repos.d/epel.repo
Ping? This is a real problem and RH should release a new package with a new NVR to fix it. The EPEL community has tried to communicate and work with RH here.
it will be fixed with the next update.
Lillian according to the list of packages in 5.4 beta this is not fixed. Please make it fixed.
This needs fixing in 5.4 and can not wait for 5.5 its been broken since 5.3 was released. It poses a real security risk for users who have the epel package installed.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
I can confirm that this issue is resolved with the java-1.6.0-openjdk-184.108.40.206-1.2.b09.el5 errata package (Advisory RHSA-2009:1201-1)
This means that there is no longer any need for the exclude line in epel.repo