diff options
Diffstat (limited to 'zarb-ml/mageia-sysadm/2010-December/001221.html')
| -rw-r--r-- | zarb-ml/mageia-sysadm/2010-December/001221.html | 113 |
1 files changed, 113 insertions, 0 deletions
diff --git a/zarb-ml/mageia-sysadm/2010-December/001221.html b/zarb-ml/mageia-sysadm/2010-December/001221.html new file mode 100644 index 000000000..b7f10a510 --- /dev/null +++ b/zarb-ml/mageia-sysadm/2010-December/001221.html @@ -0,0 +1,113 @@ +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN"> +<HTML> + <HEAD> + <TITLE> [Mageia-sysadm] Updated kernels for the Mageia Servers... + </TITLE> + <LINK REL="Index" HREF="index.html" > + <LINK REL="made" HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20Updated%20kernels%20for%20the%20Mageia%20Servers...&In-Reply-To=%3C1292378690.22689.25.camel%40akroma.ephaone.org%3E"> + <META NAME="robots" CONTENT="index,nofollow"> + <META http-equiv="Content-Type" content="text/html; charset=us-ascii"> + <LINK REL="Previous" HREF="001207.html"> + <LINK REL="Next" HREF="001209.html"> + </HEAD> + <BODY BGCOLOR="#ffffff"> + <H1>[Mageia-sysadm] Updated kernels for the Mageia Servers...</H1> + <B>Michael Scherer</B> + <A HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20Updated%20kernels%20for%20the%20Mageia%20Servers...&In-Reply-To=%3C1292378690.22689.25.camel%40akroma.ephaone.org%3E" + TITLE="[Mageia-sysadm] Updated kernels for the Mageia Servers...">misc at zarb.org + </A><BR> + <I>Wed Dec 15 03:04:50 CET 2010</I> + <P><UL> + <LI>Previous message: <A HREF="001207.html">[Mageia-sysadm] Updated kernels for the Mageia Servers... +</A></li> + <LI>Next message: <A HREF="001209.html">[Mageia-sysadm] [612] do not use a variable called module in template, this is a reserved ruby keyword +</A></li> + <LI> <B>Messages sorted by:</B> + <a href="date.html#1221">[ date ]</a> + <a href="thread.html#1221">[ thread ]</a> + <a href="subject.html#1221">[ subject ]</a> + <a href="author.html#1221">[ author ]</a> + </LI> + </UL> + <HR> +<!--beginarticle--> +<PRE>Le mardi 14 décembre 2010 à 22:06 +0200, Thomas Backlund a écrit : +><i> Hi, +</I>><i> +</I>><i> Since it probably will take some time before Mandriva releases their +</I>><i> next kernel security updates, I suggest to install the ones I have built +</I>><i> from current svn: +</I>><i> +</I>><i> +</I>><i> So for 2010.1 hosts: +</I>><i> > * Fri Dec 10 2010 Thomas Backlund <<A HREF="https://www.mageia.org/mailman/listinfo/mageia-sysadm">tmb at mandriva.org</A>> 2.6.33.7-2.2mnb +</I>><i> > o Thomas Backlund <<A HREF="https://www.mageia.org/mailman/listinfo/mageia-sysadm">tmb at mandriva.org</A>> +</I>><i> > - vmscan: raise the bar to PAGEOUT_IO_SYNC stalls +</I>><i> > (Fixes "system goes unresponsive under memory pressure and lots of +</I>><i> > dirty/writeback pages" bug. (<A HREF="http://lkml.org/lkml/2010/4/4/86">http://lkml.org/lkml/2010/4/4/86</A>)) +</I>><i> > - make kernel-source require diffutils as it uses both diff and cmp +</I>><i> > during build (mdv #61719) +</I>><i> > - econet: disallow NULL remote addr for sendmsg() (CVE-2010-3849) +</I>><i> > - econet: Add missing check for capable(CAP_NET_ADMIN) in SIOCSIFADDR +</I>><i> > operation (CVE-2010-3850) +</I>><i> > - econet: fix stack overflow if msg->msgiovlen is large (CVE-2010-3848) +</I>><i> > - do_exit(): make sure that we run with get_fs() == USER_DS (CVE-2010-4258) +</I>><i> > - af_unix: limit unix_tot_inflight and recursion level (CVE-2010-4249)(fixes unix socket OOM) +</I>><i> +</I>><i> <A HREF="http://tmb.mine.nu/Mandriva/2010.1/">http://tmb.mine.nu/Mandriva/2010.1/</A> +</I>><i> <A HREF="http://tmb2.mine.nu/Mandriva/2010.1/">http://tmb2.mine.nu/Mandriva/2010.1/</A> +</I>><i> +</I>><i> +</I>><i> And for 2010.0 hosts: +</I>><i> > * Sat Dec 11 2010 Thomas Backlund <<A HREF="https://www.mageia.org/mailman/listinfo/mageia-sysadm">tmb at mandriva.org</A>> 2.6.31.14-1.1mnb +</I>><i> > o Thomas Backlund <<A HREF="https://www.mageia.org/mailman/listinfo/mageia-sysadm">tmb at mandriva.org</A>> +</I>><i> > - fix local root exploit with 32bit compat mode on 64 bit kernels +</I>><i> > (CVE-2010-3301) +</I>><i> > - econet: fix stack overflow if msg->msgiovlen is large (CVE-2010-3848) +</I>><i> > - econet: disallow NULL remote addr for sendmsg() (CVE-2010-3849) +</I>><i> > - econet: Add missing check for capable(CAP_NET_ADMIN) in SIOCSIFADDR +</I>><i> > operation (CVE-2010-3850) +</I>><i> > - do_exit(): make sure that we run with get_fs() == USER_DS (CVE-2010-4258) +</I>><i> > - af_unix: limit unix_tot_inflight and recursion level (CVE-2010-4249) +</I>><i> +</I>><i> <A HREF="http://tmb.mine.nu/Mandriva/2010.0/">http://tmb.mine.nu/Mandriva/2010.0/</A> +</I>><i> <A HREF="http://tmb2.mine.nu/Mandriva/2010.0/">http://tmb2.mine.nu/Mandriva/2010.0/</A> +</I>><i> +</I>><i> +</I>><i> Any complaints / suggestions ? +</I> +Apart from the usual fear of rebooting a server located several +kilometers away, no problem for me. + +Could you do it ( if possible, one server after the other, starting with +ecosse/jonund ) ? + +I have seen problem on reboot on my VM for alamut, as sympa will not +start if postgresql is not started, so it would be nice to use the DRAC + +Dams, maat, do we remember the password and modus operendi :) +-- +Michael Scherer + +</PRE> + +<!--endarticle--> + <HR> + <P><UL> + <!--threads--> + <LI>Previous message: <A HREF="001207.html">[Mageia-sysadm] Updated kernels for the Mageia Servers... +</A></li> + <LI>Next message: <A HREF="001209.html">[Mageia-sysadm] [612] do not use a variable called module in template, this is a reserved ruby keyword +</A></li> + <LI> <B>Messages sorted by:</B> + <a href="date.html#1221">[ date ]</a> + <a href="thread.html#1221">[ thread ]</a> + <a href="subject.html#1221">[ subject ]</a> + <a href="author.html#1221">[ author ]</a> + </LI> + </UL> + +<hr> +<a href="https://www.mageia.org/mailman/listinfo/mageia-sysadm">More information about the Mageia-sysadm +mailing list</a><br> +</body></html> |