[slackware-security]  2.4.21 kernels available (SSA:2003-168-01)

Precompiled Linux 2.4.21 kernels and source packages are now available for
Slackware 9.0 and -current.  These provide an improved version of the
ptrace fix that had been applied to 2.4.20 in Slackware 9.0 (for example,
command line options now appear correctly when root does 'ps ax'), and
fix a potential denial of service problem with netfilter.

Here are the details from the Slackware 9.0 ChangeLog:
+--------------------------+
Tue Jun 17 19:41:55 PDT 2003
New precompiled Linux 2.4.21 kernels and source packages are now available
  for Slackware 9.0.  These fix a few problems with the ptrace patch used
  with the 2.4.20 kernel, and add a few extra drivers (like Silicon Image
  Serial-ATA support).  The new kernel also fixes a number of security
  issues, such as a routing cache problem in 2.4.20 and earlier can allow
  an attacker to cause hash collisions in the prerouting chain that consume
  CPU resources resulting in a denial-of-service (CAN-2003-0244).
patches/packages/kernel-headers-2.4.21-i386-1.tgz:  Upgraded to Linux
  2.4.21 kernel headers.
patches/packages/kernel-ide-2.4.21-i486-1.tgz:  Upgraded to Linux 2.4.21.
patches/packages/kernel-modules-2.4.21-i486-1.tgz:  Upgraded kernel modules
  to Linux 2.4.21.
patches/packages/kernel-modules-2.4.21_xfs-i486-1.tgz:  Upgraded the
  XFS-patched kernel modules package to Linux 2.4.21-xfs.  These are needed
  for the xfs.i kernel.
patches/packages/kernel-source-2.4.21-noarch-1.tgz:  Upgraded to Linux
  2.4.21 source.
patches/kernels/*:  Upgraded to Linux 2.4.21.
(* Security fix *)
+--------------------------+



WHERE TO FIND THE NEW PACKAGES:
+-----------------------------+

Updated packages for Slackware 9.0: 
 
  
 
 
  
 



INSTALLATION INSTRUCTIONS:
+------------------------+

If you are using the standard Slackware "bare.i" kernel, you may update
your kernel like this:

upgradepkg kernel-ide-2.4.21-i486-1.tgz kernel-modules-2.4.21-i486-1.tgz

Then, reinstall your boot loader.  This may be as simple as running 'lilo'
as root, or you may use 'makebootdisk' to create a new boot floppy.

If you use a different kernel, you'll want to use upgradepkg to update the
appropriate kernel modules package (kernel-modules-2.4.21-i486-1.tgz for
most kernels, but if you use the xfs.i kernel with XFS patches, then you
will need to use the kernel-modules-2.4.21_xfs-i486-1.tgz package instead).
Then, install the kernel from the kernels/ directory.  For example, to
install the adaptec.s kernel:
  cd kernels/adaptec.s
  rm -f /boot/System.map /boot/config /boot/vmlinuz
  cp -a System.map.gz config bzImage /boot
  gzip -d /boot/System.map.gz
  mv /boot/bzImage /boot/vmlinuz
Then, reinstall your boot loader.

You may also wish to update your installed kernel sources:

upgradepkg kernel-headers-2.4.21-i386-1.tgz kernel-source-2.4.21-noarch-1.tgz

If you use XFS or Speakup you'll need to apply additional patches found here:
 
 


+-----+

Slackware Linux Security Team 
slackware
security@slackware.com

Slackware: kernel Multiple vulnerabilities

June 18, 2003
These provide an improved version of theptrace fix that had been applied to 2.4.20 in Slackware 9.0, andfix a potential denial of service problem with netfilter.

Summary

Here are the details from the Slackware 9.0 ChangeLog: Tue Jun 17 19:41:55 PDT 2003 New precompiled Linux 2.4.21 kernels and source packages are now available for Slackware 9.0. These fix a few problems with the ptrace patch used with the 2.4.20 kernel, and add a few extra drivers (like Silicon Image Serial-ATA support). The new kernel also fixes a number of security issues, such as a routing cache problem in 2.4.20 and earlier can allow an attacker to cause hash collisions in the prerouting chain that consume CPU resources resulting in a denial-of-service (CAN-2003-0244). patches/packages/kernel-headers-2.4.21-i386-1.tgz: Upgraded to Linux 2.4.21 kernel headers. patches/packages/kernel-ide-2.4.21-i486-1.tgz: Upgraded to Linux 2.4.21. patches/packages/kernel-modules-2.4.21-i486-1.tgz: Upgraded kernel modules to Linux 2.4.21. patches/packages/kernel-modules-2.4.21_xfs-i486-1.tgz: Upgraded the XFS-patched kernel modules package to Linux 2.4.21-xfs. These are needed for the xfs.i kernel. patches/packages/kernel-source-2.4.21-noarch-1.tgz: Upgraded to Linux 2.4.21 source. patches/kernels/*: Upgraded to Linux 2.4.21. (* Security fix *) WHERE TO FIND THE NEW PACKAGES: Updated packages for Slackware 9.0: INSTALLATION INSTRUCTIONS: If you are using the standard Slackware "bare.i" kernel, you may update your kernel like this: upgradepkg kernel-ide-2.4.21-i486-1.tgz kernel-modules-2.4.21-i486-1.tgz Then, reinstall your boot loader. This may be as simple as running 'lilo' as root, or you may use 'makebootdisk' to create a new boot floppy. If you use a different kernel, you'll want to use upgradepkg to update the appropriate kernel modules package (kernel-modules-2.4.21-i486-1.tgz for most kernels, but if you use the xfs.i kernel with XFS patches, then you will need to use the kernel-modules-2.4.21_xfs-i486-1.tgz package instead). Then, install the kernel from the kernels/ directory. For example, to install the adaptec.s kernel: cd kernels/adaptec.s rm -f /boot/System.map /boot/config /boot/vmlinuz cp -a System.map.gz config bzImage /boot gzip -d /boot/System.map.gz mv /boot/bzImage /boot/vmlinuz Then, reinstall your boot loader. You may also wish to update your installed kernel sources: upgradepkg kernel-headers-2.4.21-i386-1.tgz kernel-source-2.4.21-noarch-1.tgz If you use XFS or Speakup you'll need to apply additional patches found here: Slackware Linux Security Team slackware security@slackware.com

Where Find New Packages

MD5 Signatures

Severity
[slackware-security] 2.4.21 kernels available (SSA:2003-168-01)
Precompiled Linux 2.4.21 kernels and source packages are now available for Slackware 9.0 and -current. These provide an improved version of the ptrace fix that had been applied to 2.4.20 in Slackware 9.0 (for example, command line options now appear correctly when root does 'ps ax'), and fix a potential denial of service problem with netfilter.

Installation Instructions

Related News

19.Laptop Bed Esm H320
2 - 3 min read
The release of Google Chrome 124 addresses four vulnerabilities, including a critical security flaw that can enable attackers to execute arbitrary
23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved