SCIENTIFIC-LINUX-DEVEL Archives

February 2008

SCIENTIFIC-LINUX-DEVEL@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: CVE-2008-0600 kernel vmsplice_to_pipe flaw - fix comming soon
From:
Akemi Yagi <[log in to unmask]>
Reply To:
Akemi Yagi <[log in to unmask]>
Date:
Tue, 12 Feb 2008 09:30:07 -0800
Content-Type:
text/plain
Parts/Attachments:
text/plain (32 lines) 
On Feb 12, 2008 9:24 AM, Connie Sieh <[log in to unmask]> wrote:
> I have been watching the ftp site for this to show up.
>
> -Connie Sieh
> On Tue, 12 Feb
> 2008, Jon Peatfield wrote:
>
>
> > In the remote chance that people here havn't already spotted it (there was
> > mention of it on one of the Centos lists yesterday and lots of other places),
> > there is likely to be a kernel security update for el-5 really soon (el-4 and
> > earlier are not affected).
> >
> >  https://bugzilla.redhat.com/show_bug.cgi?id=432251
> >
> > Comment #39 says:
> >
> >  ... and are finishing up the QA process for Red Hat Enterprise Linux 5.
> >  We expect this to be completed shortly (pending successful completion of
> >  testing).  This will be RHSA-2008:0129.
> >
> > I'm assuming that since this is an urgent security issue they will just be
> > adding the trivial upstream patch into kernel -53.1.x rather than waiting for
> > -79+ to finish full QA.

Just downloaded from the ftp site. I confirm that the only patch added
to this version was:

linux-2.6-x86_64-fs-vmsplice_to_pipe-flaw.patch

Akemi

ATOM RSS1 RSS2