Wednesday, November 21, 2007

Kernel Updates and Security Fix : Libpng

The default kernel stock in -Current has been upgraded to 2.6.23.8 and also one security fix has been released for libpng package. This package will require some other package to be rebuild also, such as kernel-*, svgalib_helper, kernel configurations in kernels/, and the isolinux.
Wed Nov 21 00:11:24 CST 2007
a/kernel-generic-2.6.23.8-i486-1.tgz:
Upgraded to Linux 2.6.23.8 uniprocessor generic.s (requires initrd) kernel.

a/kernel-generic-smp-2.6.23.8_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.8 SMP gensmp.s (requires initrd) kernel.

a/kernel-huge-2.6.23.8-i486-1.tgz:
Upgraded to Linux 2.6.23.8 uniprocessor huge.s (full-featured) kernel.

a/kernel-huge-smp-2.6.23.8_smp-i686-1.tgz:
Upgraded to Linux 2.6.23.8 SMP hugesmp.s (full-featured) kernel.

a/kernel-modules-2.6.23.8-i486-1.tgz
Upgraded to Linux 2.6.23.8 uniprocessor kernel modules.

a/kernel-modules-smp-2.6.23.8_smp-i686-1.tgz
Upgraded to Linux 2.6.23.8 SMP kernel modules.

d/kernel-headers-2.6.23.8_smp-i386-1.tgz:
Upgraded to Linux 2.6.23.8 SMP kernel headers.

k/kernel-source-2.6.23.8_smp-noarch-1.tgz
Upgraded to Linux 2.6.23.8 SMP kernel source.

l/libpng-1.2.23-i486-1.tgz:
Upgraded to libpng-1.2.23.
Previous libpng versions may crash when loading malformed PNG files.
It is not currently known if this vulnerability can be exploited to execute malicious code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5266
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5267
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5268
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5269
(* Security fix *)

l/svgalib_helper-1.9.25_2.6.23.8-i486-1.tgz: Recompiled for Linux 2.6.23.8.

extra/linux-2.6.23.8-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.

isolinux/network.dsk, pcmcia.dsk; upgraded to 2.6.23.8 kernel modules.

initrd.img: Upgraded to hdparm-7.6.

kernels/generic.s/*: Upgraded generic.s kernel to 2.6.23.8.

kernels/gensmp.s/*: Upgraded gensmp.s kernel to 2.6.23.8 (SMP).

kernels/huge.s/*: Upgraded huge.s kernel to 2.6.23.8.

kernels/hugesmp.s/*: Upgraded hugesmp.s kernel to 2.6.23.8 (SMP).

usb-and-pxe-installers/: Updated USB and PXE installers.