Stack Clash Fixes

You may have heard about Stack Clash vulnerabilities that was published by Qualys last week. It was an old bug, but affected many systems running Linux both x86 and x86_64. As they coordinated the fixes with upstream vendors, the fixes has been released for public. Today's update is all about kernel update both in -stable (14.2 only) and -current. They are now upgraded to 4.4.74 and 4.9.34 which contains the fixes for Stack Clash. You are advised to upgrade your kernel as soon as possible. The other update that were both in -stable and -current are mozilla-thunderbird which is now updated to 52.2.1.

For those running -current, there are more updates in this batch:
  • lrzip: Upgraded to 0.631
  • lvm2: Upgraded to 2.02.171
  • time: Upgraded to 1.7.2
  • mpg123: Upgraded to 1.25.0
  • glib2: Upgraded to 2.52.3
  • glibmm: Upgraded to 2.52.0
  • gtkmm3: Upgraded to 3.22.1
  • plus more in the past updates
Users running Skylake/Kabylake processors should also read this thread on LQ about a bug in the Hyper-Threading feature and apply the fix as soon as possible.

Popular posts from this blog

Python 3.6.0 in SBo 14.2 repository

NVidia Legacy Unix Driver Update

Security Update: Thunderbird, Seamonkey, libpng, python, samba