Slackware 9.1: 2004-006-01 Critical: Kernel Update For Bounds Checking

Here are the details from the Slackware 9.1 ChangeLog: Tue Jan 6 15:01:54 PST 2004 patches/kernels/: Upgraded to Linux 2.4.24. This fixes a bounds-checking problem in the kernel's mremap() call which could be used by a local attacker to gain root privileges. Sites should upgrade to the 2.4.24 kernel and kernel modules. After installing the new kernel, be sure to run 'lilo'. For more details, see: https://www.cve.org/CVERecord?id=CVE-CAN-2003-0985 Thanks to Paul Starzetz for finding and researching this issue. (* Security fix *) patches/packages/alsa-driver-0.9.8-i486-2.tgz: Recompiled against linux-2.4.24. patches/packages/cvs-1.11.11-i486-1.tgz: Upgraded to cvs-1.11.11. This version enforces greater security. Changes include pserver refusing to run as root, and logging attempts to exploit the security hole fixed in 1.11.10 in the syslog. patches/packages/kernel-ide-2.4.24-i486-1.tgz: Upgraded bare.i kernel package to Linux