Weekly Edition
Return to the Kernel pageSponsored link
Serve your customers, not your servers, with VERIO Linux VPS. Full-access test-drive here.
| Weekly edition | Kernel | Security | Distributions | Search |
| Archives | Calendar | Subscribe | Write for LWN | LWN.net FAQ |
Linux 2.4.36.4
| From: | Willy Tarreau <wtarreau@hera.kernel.org> | |
| To: | linux-kernel@vger.kernel.org | |
| Subject: | Linux 2.4.36.4 | |
| Date: | Wed, 7 May 2008 04:33:30 +0000 | |
| Message-ID: | <20080507043330.GA19930@hera.kernel.org> |
I've just released Linux 2.4.36.4.
This release fixes two local security issues discovered by
Al Viro who also provided these patches :
CVE-2008-1669: Fix SMP ordering hole in fcntl_setlk()
CVE-2008-1375: Fix dnotify/close race
Note that during the process, he noticed that an earlier fix
related to 1669 was already missing, so all users of 2.4 are
really encouraged to upgrade, or at least to apply those
patches to their own tree.
The patch and changelog will appear soon at the following locations:
ftp://ftp.all.kernel.org/pub/linux/kernel/v2.4/
ftp://ftp.all.kernel.org/pub/linux/kernel/v2.4/patch-2.4....
ftp://ftp.all.kernel.org/pub/linux/kernel/v2.4/ChangeLog-...
Git repository:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-v2.4.36.y.git
http://www.kernel.org/pub/scm/linux/kernel/git/stable/lin...
Git repository through the gitweb interface:
http://git.kernel.org/?p=linux/kernel/git/stable/linux-v2...
Regards,
Willy
----
Summary of changes from v2.4.36.3 to v2.4.36.4
============================================
Al Viro (1):
Fix SMP ordering hole in fcntl_setlk() (CVE-2008-1669)
Willy Tarreau (2):
Fix dnotify/close race (CVE-2008-1375)
Change VERSION to 2.4.36.4
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/