lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date:	Wed, 6 Jun 2007 20:44:04 +0000
From:	Willy Tarreau <wtarreau@...a.kernel.org>
To:	linux-kernel@...r.kernel.org
Subject: Linux 2.4.35-pre5

Hi all,

I've just released Linux 2.4.35-pre5.

It contains two important fixes. One is a fix for a regression I
introduced when trying to fix CVE-2007-1353 (bluetooth), which
fortunately was noticed by Marcel Holtmann. Basically, I turned
a memory leak bug into a memory corruption bug :-(

The other fix is for a bug which was causing oopses when loading ide-disk
as a module. This problem was reported by Zbigniew Baniewski but its cause
was not obvious at all even after long debugging sessions. Finally, PaX
Team noticed that init_idle() is marked __init while (indirectly) called
by restinit() explicitly stating that it must not call __init functions.
Once the problem identified and explained, the obvious patch definitely
fixed the problem.

One of the remaining patches includes the fixes that LVM users
systematically have to apply to mainline kernels (except one which is
wrong). Other fixes are minor.

I will open -rc1 soon with the very few last pending updates, and I hope
to be able to release an unquestionably perfect 2.4.35 around the end
of this month :-)

So please, if you encounter any problems, it's the moment to complain
loudly. Please not that I have not recompiled this one since LVM changes. 

Regards,
Willy

--

The patch and changelog will appear soon at the following locations:
  ftp://ftp.kernel.org/pub/linux/kernel/v2.4/testing/
  ftp://ftp.kernel.org/pub/linux/kernel/v2.4/testing/patch-2.4.35-pre5.bz2
  ftp://ftp.kernel.org/pub/linux/kernel/v2.4/testing/patch-2.4.35.log

Git repository:
   git://git.kernel.org/pub/scm/linux/kernel/git/wtarreau/linux-2.4.git
  http://www.kernel.org/pub/scm/linux/kernel/git/wtarreau/linux-2.4.git/

Git repository through the gitweb interface:
  http://git.kernel.org/?p=linux/kernel/git/wtarreau/linux-2.4.git


Summary of changes from v2.4.35-pre4 to v2.4.35-pre5
============================================

Brian Maly (1):
      fix 'pc_keyb: controller jammed (0xA7)' error on systems with KVM

Willy Tarreau (7):
      do not mark init_idle() __init
      Bluetooth: correct fix for CVE-2007-1353
      [BACKPORT] Bluetooth: Fix NULL pointer dereference in HCI line discipline
      [BACKPORT] Bluetooth: Fix unintentional fall-through in HCI line discipline
      lvm: update to latest fixes from the LVM package
      lvm: do not update extent count if snapshot allocation fails
      Change VERSION to 2.4.35-pre5

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ