Thursday, May 1, 2008

Slackware 12.1 RC 4

Only two changes here on RC 4, which are kernel patches to fix security issue in fs/dnotify.c and also slackpkg updates from Piter Punk. PV thinks this should be the last one, so we are hoping Slackware 12.1 should be released this month
Wed Apr 30 20:36:48 CDT 2008
12.1 RC4. We think this should be the last one.
a/kernel-generic-2.6.24.5-i486-2.tgz: Patched to fix a security issue in fs/dnotify.c. The use of dnotify (largely replaced by inotify on 2.6.x systems) could lead to a local DoS, or possibly a local root hole. We said we wouldn't make changes now unless something was "critical" -- and it seems we got what we wished for. ;-) This flaw will also be addressed in the kernels for previous releases as soon as possible. The patch itself may be found in source/k/linux-2.6.24.5-CVE-2008-1375-patch/.
For additional information (when the CVE candidate is opened), see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1375
All the kernel packages below should also be considered security fixes.
(* Security fix *)

a/kernel-generic-smp-2.6.24.5_smp-i686-2.tgz: Patched and recompiled.

a/kernel-huge-2.6.24.5-i486-2.tgz: Patched and recompiled.

a/kernel-huge-smp-2.6.24.5_smp-i686-2.tgz: Patched and recompiled.

a/kernel-modules-2.6.24.5-i486-2.tgz: Patched and recompiled.

a/kernel-modules-smp-2.6.24.5_smp-i686-2.tgz: Patched and recompiled.

d/kernel-headers-2.6.24.5_smp-x86-2.tgz: Rebuilt from a patched source tree.

k/kernel-source-2.6.24.5_smp-noarch-2.tgz: Patched (leaving dnotify.c.orig for comparison and/or reverting to patch up to a newer kernel later).

l/svgalib_helper-1.9.25_2.6.24.5-i486-2.tgz: Recompiled.

extra/linux-2.6.24.5-nosmp-sdk/: Updated SMP to no-SMP kernel source patch.

extra/slackpkg/slackpkg-2.70.3-noarch-1.tgz: Upgraded to slackpkg-2.70.3-noarch-1 (release ready). Thanks to Piter Punk! -:)

kernels/huge.s/*: Patched and recompiled.

kernels/hugesmp.s/*: Patched and recompiled.

kernels/speakup.s/*: Patched and recompiled.

isolinux/initrd.img: Rebuilt with newly compiled kernel modules.

usb-and-pxe-installers/: Rebuilt usbboot.img with newly compiled kernel modules.