Slackware alert SSA:2025-192-01 (kernel)
| From: | Slackware Security Team <security@slackware.com> | |
| To: | slackware-security@slackware.com | |
| Subject: | [slackware-security] Slackware 15.0 kernel (SSA:2025-192-01) | |
| Date: | Fri, 11 Jul 2025 12:38:35 -0700 | |
| Message-ID: | <alpine.LNX.2.02.2507111238160.21957@connie.slackware.com> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] Slackware 15.0 kernel (SSA:2025-192-01) New kernel packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/kernel-firmware-20250708_99d64b4-noarch-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-generic-5.15.187-i586-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-generic-smp-5.15.187_smp-i686-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-headers-5.15.187_smp-x86-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-huge-5.15.187-i586-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-huge-smp-5.15.187_smp-i686-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-modules-5.15.187-i586-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-modules-smp-5.15.187_smp-i686-1.txz: Upgraded. patches/packages/linux-5.15.187/kernel-source-5.15.187_smp-noarch-1.txz: Upgraded. These updates fix various bugs and security issues. Included is a mitigation for the AMD Transient Scheduler Attacks that have been in the news lately. Be sure to upgrade your initrd after upgrading the kernel packages. If you use lilo to boot your machine, be sure lilo.conf points to the correct kernel and initrd and run lilo as root to update the bootloader. If you use elilo to boot your machine, you should run eliloconfig to copy the kernel and initrd to the EFI System Partition. For more information, see: https://www.amd.com/en/resources/product-security/bulleti... https://www.cve.org/CVERecord?id=CVE-2024-36350 https://www.cve.org/CVERecord?id=CVE-2024-36357 https://www.cve.org/CVERecord?id=CVE-2024-36348 https://www.cve.org/CVERecord?id=CVE-2024-36349 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you. Updated packages for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patc... Updated packages for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/pa... ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/pa... ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/pa... ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/pa... ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/pa... ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/pa... MD5 signatures: +-------------+ Slackware 15.0 packages: 66a762b37d5076393030aaa83e83154f kernel-firmware-20250708_99d64b4-noarch-1.txz d625cb754ed0bce69378763d672f50c3 kernel-generic-5.15.187-i586-1.txz e5d1a235ea5abd31340e2a79eb08054a kernel-generic-smp-5.15.187_smp-i686-1.txz f0f17a1771d016429f712a2dfc9626f1 kernel-headers-5.15.187_smp-x86-1.txz 5ddbb3e17d83ee0bb07b6331688fba35 kernel-huge-5.15.187-i586-1.txz 66e06fd98618577ce7b603a718d9ff1b kernel-huge-smp-5.15.187_smp-i686-1.txz cb7fe94b74879f31712342d7a739f64d kernel-modules-5.15.187-i586-1.txz 2c57df2f0a1560601619f51ff89ebb83 kernel-modules-smp-5.15.187_smp-i686-1.txz e6f5cdb5f82aa164b5f31dee38f3db70 kernel-source-5.15.187_smp-noarch-1.txz Slackware x86_64 15.0 packages: 66a762b37d5076393030aaa83e83154f kernel-firmware-20250708_99d64b4-noarch-1.txz 4547c8246eb65e74687decc968b237b5 kernel-generic-5.15.187-x86_64-1.txz 169dbe7e77b6aabf046ff245cd777967 kernel-headers-5.15.187-x86-1.txz 73406a1a39ea92519418eb1ac2b94f34 kernel-huge-5.15.187-x86_64-1.txz 621e5ae922466a49c7ec490f06dbf5ca kernel-modules-5.15.187-x86_64-1.txz 9fb488856cd5fd4a88f9d0b29760790d kernel-source-5.15.187-noarch-1.txz Installation instructions: +------------------------+ Upgrade the packages as root: # upgradepkg kernel-*.txz If you are using an initrd, you'll need to rebuild it. For a 32-bit SMP machine, use this command (substitute the appropriate kernel version if you are not running Slackware 15.0): # /usr/share/mkinitrd/mkinitrd_command_generator.sh -k 5.15.187-smp | bash For a 64-bit machine, or a 32-bit uniprocessor machine, use this command (substitute the appropriate kernel version if you are not running Slackware 15.0): # /usr/share/mkinitrd/mkinitrd_command_generator.sh -k 5.15.187 | bash Please note that "uniprocessor" has to do with the kernel you are running, not with the CPU. Most systems should run the SMP kernel (if they can) regardless of the number of cores the CPU has. If you aren't sure which kernel you are running, run "uname -a". If you see SMP there, you are running the SMP kernel and should use the 5.15.187-smp version when running mkinitrd_command_generator. Note that this is only for 32-bit -- 64-bit systems should always use 5.15.187 as the version. If you are using lilo or elilo to boot the machine, you'll need to ensure that the machine is properly prepared before rebooting. If using LILO: By default, lilo.conf contains an image= line that references a symlink that always points to the correct kernel. No editing should be required unless your machine uses a custom lilo.conf. If that is the case, be sure that the image= line references the correct kernel file. Either way, you'll need to run "lilo" as root to reinstall the boot loader. If using elilo: Ensure that the /boot/vmlinuz symlink is pointing to the kernel you wish to use, and then run eliloconfig to update the EFI System Partition. +-----+ Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com +------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. | +------------------------------------------------------------------------+ -----BEGIN PGP SIGNATURE----- iF0EARECAB0WIQTsVknaQB4iq/pnNu9qRGPAQBAiMwUCaHFmbgAKCRBqRGPAQBAi M+EjAJ97h6+cIpuw0zooQG1xvkN1hvvW8gCfZzChWQvV71QH1pVmhCasf+kxbiM= =zWN9 -----END PGP SIGNATURE-----