Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Slackware x86_64 13.1: 2010-265-01 Critical Kernel Fix and Threat

slackware
Calendar Grey September 22, 2010
Dist Slackware Esm H88
Fresh kernel updates unveiled for Slackware x86_64 to tackle urgent security vulnerabilities and bolster overall system defense.
New kernel packages are available for Slackware x86_64 13.1, and -current to fix security issues

Summary

Here are the details from the Slackware64 13.1 ChangeLog: patches/packages/linux-2.6.33.4-2/kernel-firmware-2.6.33.4-noarch-2.txz: Rebuilt. patches/packages/linux-2.6.33.4-2/kernel-generic-2.6.33.4-x86_64-2.txz: Rebuilt. This kernel has been patched to fix security problems on x86_64: 64-bit Compatibility Mode Stack Pointer Underflow (CVE-2010-3081). IA32 System Call Entry Point Vulnerability (CVE-2010-3301). These vulnerabilities allow local users to gain root privileges. For more information, see: https://www.cve.org/CVERecord?id=CVE-2010-3081 https://www.cve.org/CVERecord?id=CVE-2010-3301 (* Security fix *) patches/packages/linux-2.6.33.4-2/kernel-headers-2.6.33.4-x86-2.txz: Rebuilt. patches/packages/linux-2.6.33.4-2/kernel-huge-2.6.33.4-x86_64-2.txz: Rebuilt. Patched for CVE-2010-3081 and CVE-2010-3301. (* Security fix *) patches/packages/linux-2.6.33.4-2/kernel-modules-2.6.33.4-x86_64-2.txz:

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security issue critical threat slackware kernel fix

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated packages for Slackware x86_64 13.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/linux-2.6.33.4-2/
Updated packages for Slackware x86_64 -current:

MD5 Signatures

Slackware x86_64 13.1 packages: 3acafe92c2cb76b96d4d92cd0f49bb2e patches/packages/linux-2.6.33.4-2/kernel-firmware-2.6.33.4-noarch-2.txz 7707cbdfb25b7ef9ece74d594e61933d patches/packages/linux-2.6.33.4-2/kernel-generic-2.6.33.4-x86_64-2.txz 983269e0d2f825f4d5737f705bdc2998 patches/packages/linux-2.6.33.4-2/kernel-headers-2.6.33.4-x86-2.txz 0eeb83c2362db0703753ee7bb9955edc patches/packages/linux-2.6.33.4-2/kernel-huge-2.6.33.4-x86_64-2.txz 3b00e0e1f7a5b935ca519e09ecf79f4a patches/packages/linux-2.6.33.4-2/kernel-modules-2.6.33.4-x86_64-2.txz 17f2f30749d4bcd55353f8c92f732104 patches/packages/linux-2.6.33.4-2/kernel-source-2.6.33.4-noarch-2.txz
Slackware x86_64 -current packages: 3acafe92c2cb76b96d4d92cd0f49bb2e a/kernel-firmware-2.6.33.4-noarch-2.txz 7707cbdfb25b7ef9ece74d594e61933d a/kernel-generic-2.6.33.4-x86_64-2.txz 0eeb83c2362db0703753ee7bb9955edc a/kernel-huge-2.6.33.4-x86_64-2.txz 3b00e0e1f7a5b935ca519e09ecf79f4a a/kernel-modules-2.6.33.4-x86_64-2.txz 983269e0d2f825f4d5737f705bdc2998 d/kernel-headers-2.6.33.4-x86-2.txz 17f2f30749d4bcd55353f8c92f732104 k/kernel-source-2.6.33.4-noarch-2.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory security issue critical threat slackware kernel fix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the packages as root: # upgradepkg kernel-*txz Then, make sure that LILO is configured to be using the correct kernel file, and reinstall LILO (run "lilo" as root). NOTE FOR SPEAKUP: If you are using a Speakup kernel, you will need to copy the bzImage file from the kernels/speakup.s/ directory to your /boot directory. Rename bzImage to whatever filename LILO expects in /etc/lilo. Then, run "lilo".

Related News

Your message here