Slackware 14.1: SSA:2014-050-03 Critical: Kernel Root Access Fix
slackware
February 20, 2014
New kernel packages are available for Slackware 14.1 (64-bit) to fix a security issue
Summary
Here are the details from the Slackware64 14.1 ChangeLog: patches/packages/linux-3.10.17-2/*: These are new kernels that fix CVE-2014-0038, a bug that can allow local users to gain a root shell. Be sure to reinstall LILO (run "lilo" as root) after upgrading the kernel packages, or on UEFI systems, copy the appropriate kernel to /boot/efi/EFI/Slackware/vmlinuz). For more information, see: https://www.cve.org/CVERecord?id=CVE-2014-0038 (* Security fix *)
Topics Covered
Where Find New Packages
Thanks to the friendly folks at the OSU Open Source Lab
(https://osuosl.org/) for donating FTP and rsync hosting
to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for
additional mirror sites near you.
Updated packages for Slackware x86_64 14.1:
MD5 Signatures
Slackware x86_64 14.1 packages:
0ac63878bb367d8565118fec3e41285b kernel-generic-3.10.17-x86_64-2.txz
c53abd0c97637816f18a6552e1a652a9 kernel-headers-3.10.17-x86-2.txz
fa203294f13daf77aa636180e36ffad4 kernel-huge-3.10.17-x86_64-2.txz
ce914034336a11cf7d87e588a12ae9e4 kernel-modules-3.10.17-x86_64-2.txz
1fd28066bde78aa0fe558ac172ab4e22 kernel-source-3.10.17-noarch-2.txz
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: Upgrade the packages as root: # upgradepkg kernel-*.txz Then, run "lilo" to reinstall the boot loader. If there are no errors from LILO, reboot the system to begin using the new kernel.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!