- --------------------------------------------------------------------------
Debian Security Advisory DSA 358-2                     security@debian.org 
Debian -- Security Information                              Matt Zimmerman
August 5th, 2003                         Debian -- Debian security FAQ 
- --------------------------------------------------------------------------

Package        : linux-kernel-i386, linux-kernel-alpha

This advisory provides a correction to the previous kernel updates,
which contained an error introduced in kernel-source-2.4.18 version
2.4.18-7.  This error could result in a kernel "oops" under certain
circumstances.

For the stable distribution (woody) on the i386 architecture, this
problem has been fixed in kernel-source-2.4.18 version 2.4.18-12 and
kernel-image-2.4.18-1-i386 version 2.4.18-10.

For the stable distribution (woody) on the alpha architecture, this
problem has been fixed in kernel-source-2.4.18 version 2.4.18-12 and
kernel-image-2.4.18-1-alpha version 2.4.18-9.

For the unstable distribution (sid) this problem has been fixed in
kernel-source-2.4.20 version 2.4.20-7.

We recommend that you update your kernel packages.

If you are using the kernel installed by the installation system when
the "bf24" option is selected (for a 2.4.x kernel), you should install
the kernel-image-2.4.18-bf2.4 package.  If you installed a different
kernel-image package after installation, you should install the
corresponding 2.4.18-1 kernel.  You may use the table below as a
guide.

| If "uname -r" shows: | Install this package:
- ------------------------------------------------------
| 2.4.18-bf2.4         | kernel-image-2.4.18-bf2.4
| 2.4.18-386           | kernel-image-2.4.18-1-386
| 2.4.18-586tsc        | kernel-image-2.4.18-1-586tsc
| 2.4.18-686           | kernel-image-2.4.18-1-686
| 2.4.18-686-smp       | kernel-image-2.4.18-1-686-smp
| 2.4.18-k6            | kernel-image-2.4.18-1-k6
| 2.4.18-k7            | kernel-image-2.4.18-1-k7

NOTE: that this kernel is binary compatible with the previous kernel
security update, but not binary compatible with the corresponding
kernel included in Debian 3.0r1.  If you have not already applied the
previous security update (kernel-image-2.4.18-bf2.4 version
2.4.18-5woody1 or any of the 2.4.18-1-* kernels), then any custom
modules will need to be rebuilt in order to work with the new kernel.
New PCMCIA modules are provided for all of the above kernels.

NOTE: A system reboot will be required immediately after the upgrade
in order to replace the running kernel.  Remember to read carefully
and follow the instructions given during the kernel upgrade process.

Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

      
      Size/MD5 checksum:      798 0b80fd853e8335178cb1d0ef8187408d
      
      Size/MD5 checksum:    66660 43f07d53594a1eab3ea6524119aeb433
      
      Size/MD5 checksum: 29818323 24b4c45a04a23eb4ce465eb326a6ddf2
      
      Size/MD5 checksum:     1325 3c4977110668d52e4d7de76e5f208083
      
      Size/MD5 checksum:    69667 19c21980ec15f21bb8fc3ebcaad99d7f
      
      Size/MD5 checksum:      872 dbf9fa022e1a4dcd8f71ed31b818246c
      
      Size/MD5 checksum:    24090 37791aded81c2fff898aef80a26c7971

  Architecture independent components:

      
      Size/MD5 checksum:  1710352 b2fcafe9a6da7d34e78af9235553cb59
      
      Size/MD5 checksum: 23886908 eefc72de43d624922ab06f5735768c91

  Intel IA-32 architecture:

      
      Size/MD5 checksum:  3398042 f4187fda7db808b24b7347964c0879f2
      
      Size/MD5 checksum:  3487328 6e3b4eb2736a5a8480c9823342d49625
      
      Size/MD5 checksum:  3488054 ddfdd2968bce3056f31d618711a85d7e
      
      Size/MD5 checksum:  3488380 7fdbeb87e602b6217037b904c0645eb3
      
      Size/MD5 checksum:  3489596 0620da51b2d4d250838bc0057fa33e4f
      
      Size/MD5 checksum:  3487738 702df68c1b378f76a822f7f807b20ba8
      
      Size/MD5 checksum:  3488048 8d6b7cf7f81cbf310ece6a1bbb54d8f3
      
      Size/MD5 checksum:  8797068 7def36680df36bcc3515dfa4f3edc1e6
      
      Size/MD5 checksum:  8704068 1c320a7e75cfddb15bd52bf6f88c2a78
      
      Size/MD5 checksum:  8702662 02a029245e7842a00fd3f23baa706305
      
      Size/MD5 checksum:  8959854 d7e6a033b1bae7a3c5ace64ab55edf6c
      
      Size/MD5 checksum:  8660764 eef9f12eb0b15555b34b99e258256d4b
      
      Size/MD5 checksum:  8862780 2f0a72a9f4f9022ee708709006b264ef
      
      Size/MD5 checksum:   228180 1cabed2e1131a550fa282ba39e36fa4a
      
      Size/MD5 checksum:   227752 85d07a9559040ae56736bc99ba2c7c6f
      
      Size/MD5 checksum:   227202 2328bfee9121874eefbad67ae8625a08
      
      Size/MD5 checksum:   230844 cf9eb4e04224025dfc7d8995580592a4
      
      Size/MD5 checksum:   226838 cbf60fc898c2ebff46a8a64b5e04a1fc
      
      Size/MD5 checksum:   230092 6a200fe5d8ddbe9bde1e14bad9b7a256

  Alpha architecture:

      
      Size/MD5 checksum:  3333330 d53bfada9264fd8c708e5439ac494bb3
      
      Size/MD5 checksum:  3474548 9f8bcbdb4b24589ddb145fa80358035c
      
      Size/MD5 checksum:  3476960 b77e74fa48876b099c4b2ba37ec37ffc
      
      Size/MD5 checksum: 12425832 564ad5cda8e8873e53071a9b0b22017f
      
      Size/MD5 checksum: 12799170 e074ef5212b358c76228b9b5cfd14171

  These files will probably be moved into the stable distribution on
  its next revision.

- ---------------------------------------------------------------------------------
For apt-get: deb  Debian -- Security Information  stable/updates main
For dpkg-ftp:    dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and  http://packages.debian.org/

Debian: UPDATE: kernel vulnerability DSA-358-2

August 5, 2003
This advisory provides a correction to the previous kernel updates,which contained an error introduced in kernel-source-2.4.18 version2.4.18-7

Summary

This advisory provides a correction to the previous kernel updates,
which contained an error introduced in kernel-source-2.4.18 version
2.4.18-7. This error could result in a kernel "oops" under certain
circumstances.

For the stable distribution (woody) on the i386 architecture, this
problem has been fixed in kernel-source-2.4.18 version 2.4.18-12 and
kernel-image-2.4.18-1-i386 version 2.4.18-10.

For the stable distribution (woody) on the alpha architecture, this
problem has been fixed in kernel-source-2.4.18 version 2.4.18-12 and
kernel-image-2.4.18-1-alpha version 2.4.18-9.

For the unstable distribution (sid) this problem has been fixed in
kernel-source-2.4.20 version 2.4.20-7.

We recommend that you update your kernel packages.

If you are using the kernel installed by the installation system when
the "bf24" option is selected (for a 2.4.x kernel), you should install
the kernel-image-2.4.18-bf2.4 package. If you installed a different
kernel-image package after installation, you should install the
corresponding 2.4.18-1 kernel. You may use the table below as a
guide.

| If "uname -r" shows: | Install this package:
| 2.4.18-bf2.4 | kernel-image-2.4.18-bf2.4
| 2.4.18-386 | kernel-image-2.4.18-1-386
| 2.4.18-586tsc | kernel-image-2.4.18-1-586tsc
| 2.4.18-686 | kernel-image-2.4.18-1-686
| 2.4.18-686-smp | kernel-image-2.4.18-1-686-smp
| 2.4.18-k6 | kernel-image-2.4.18-1-k6
| 2.4.18-k7 | kernel-image-2.4.18-1-k7

NOTE: that this kernel is binary compatible with the previous kernel
security update, but not binary compatible with the corresponding
kernel included in Debian 3.0r1. If you have not already applied the
previous security update (kernel-image-2.4.18-bf2.4 version
2.4.18-5woody1 or any of the 2.4.18-1-* kernels), then any custom
modules will need to be rebuilt in order to work with the new kernel.
New PCMCIA modules are provided for all of the above kernels.

NOTE: A system reboot will be required immediately after the upgrade
in order to replace the running kernel. Remember to read carefully
and follow the instructions given during the kernel upgrade process.

Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

Source archives:


Size/MD5 checksum: 798 0b80fd853e8335178cb1d0ef8187408d

Size/MD5 checksum: 66660 43f07d53594a1eab3ea6524119aeb433

Size/MD5 checksum: 29818323 24b4c45a04a23eb4ce465eb326a6ddf2

Size/MD5 checksum: 1325 3c4977110668d52e4d7de76e5f208083

Size/MD5 checksum: 69667 19c21980ec15f21bb8fc3ebcaad99d7f

Size/MD5 checksum: 872 dbf9fa022e1a4dcd8f71ed31b818246c

Size/MD5 checksum: 24090 37791aded81c2fff898aef80a26c7971

Architecture independent components:


Size/MD5 checksum: 1710352 b2fcafe9a6da7d34e78af9235553cb59

Size/MD5 checksum: 23886908 eefc72de43d624922ab06f5735768c91

Intel IA-32 architecture:


Size/MD5 checksum: 3398042 f4187fda7db808b24b7347964c0879f2

Size/MD5 checksum: 3487328 6e3b4eb2736a5a8480c9823342d49625

Size/MD5 checksum: 3488054 ddfdd2968bce3056f31d618711a85d7e

Size/MD5 checksum: 3488380 7fdbeb87e602b6217037b904c0645eb3

Size/MD5 checksum: 3489596 0620da51b2d4d250838bc0057fa33e4f

Size/MD5 checksum: 3487738 702df68c1b378f76a822f7f807b20ba8

Size/MD5 checksum: 3488048 8d6b7cf7f81cbf310ece6a1bbb54d8f3

Size/MD5 checksum: 8797068 7def36680df36bcc3515dfa4f3edc1e6

Size/MD5 checksum: 8704068 1c320a7e75cfddb15bd52bf6f88c2a78

Size/MD5 checksum: 8702662 02a029245e7842a00fd3f23baa706305

Size/MD5 checksum: 8959854 d7e6a033b1bae7a3c5ace64ab55edf6c

Size/MD5 checksum: 8660764 eef9f12eb0b15555b34b99e258256d4b

Size/MD5 checksum: 8862780 2f0a72a9f4f9022ee708709006b264ef

Size/MD5 checksum: 228180 1cabed2e1131a550fa282ba39e36fa4a

Size/MD5 checksum: 227752 85d07a9559040ae56736bc99ba2c7c6f

Size/MD5 checksum: 227202 2328bfee9121874eefbad67ae8625a08

Size/MD5 checksum: 230844 cf9eb4e04224025dfc7d8995580592a4

Size/MD5 checksum: 226838 cbf60fc898c2ebff46a8a64b5e04a1fc

Size/MD5 checksum: 230092 6a200fe5d8ddbe9bde1e14bad9b7a256

Alpha architecture:


Size/MD5 checksum: 3333330 d53bfada9264fd8c708e5439ac494bb3

Size/MD5 checksum: 3474548 9f8bcbdb4b24589ddb145fa80358035c

Size/MD5 checksum: 3476960 b77e74fa48876b099c4b2ba37ec37ffc

Size/MD5 checksum: 12425832 564ad5cda8e8873e53071a9b0b22017f

Size/MD5 checksum: 12799170 e074ef5212b358c76228b9b5cfd14171

These files will probably be moved into the stable distribution on
its next revision.

For apt-get: deb Debian -- Security Information stable/updates main
For dpkg-ftp: dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/



Severity
Package : linux-kernel-i386, linux-kernel-alpha

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved