[1921] in SIPB_Linux_Development
Erik Troan: SECURITY: 2.0.32 kernel now available
daemon@ATHENA.MIT.EDU (Erik Nygren)
Thu Nov 20 17:32:25 1997
To: linux-dev@MIT.EDU
Date: Thu, 20 Nov 1997 17:31:35 EST
From: Erik Nygren <nygren@MIT.EDU>
FYI. Once we have AFS packages available for 2.0.32
we might want to make this the kernel people use for both 4.0 and 4.2.
Erik
------- Forwarded Message
Received: from SOUTH-STATION-ANNEX.MIT.EDU by po7.MIT.EDU (5.61/4.7) id AA21105; Thu, 20 Nov 97 17:27:29 EST
Received: from mail2.redhat.com by MIT.EDU with SMTP
id AA06557; Thu, 20 Nov 97 17:27:11 EST
Received: (qmail 28267 invoked by uid 501); 20 Nov 1997 22:22:58 -0000
Resent-Date: 20 Nov 1997 22:22:58 -0000
Resent-Cc: recipient.list.not.shown:;@redhat.com
Mbox-Line: From redhat-announce-list-request@redhat.com Thu Nov 20 17:22:45 1997
Date: Thu, 20 Nov 1997 17:22:27 -0500 (EST)
From: Erik Troan <ewt@redhat.com>
Reply-To: redhat-list@redhat.com
To: redhat-announce-list@redhat.com
Subject: SECURITY: 2.0.32 kernel now available
Message-Id: <Pine.LNX.3.95.971120171752.14072B-100000@lacrosse.redhat.com>
Approved: ewt@redhat.com
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Resent-Message-Id: <"dyRpl3.0.cm6.rWBTq"@mail2.redhat.com>
Resent-From: redhat-announce-list@redhat.com
X-Mailing-List: <redhat-announce-list@redhat.com> archive/latest/659
X-Loop: redhat-announce-list@redhat.com
Precedence: list
Resent-Sender: redhat-announce-list-request@redhat.com
X-Url: http://www.redhat.com
- -----BEGIN PGP SIGNED MESSAGE-----
There are two security holes in all of the Linux 2.0.x kernels shipped
to date with Red Hat, both of which have been well publicized.
The most important concerns how IP fragments are reassembled by the
kernel. An attack can exploit this problem, causing a complete machine
freeze. This has been dubbed the 'teardrop' attack.
The other is the Pentium f00f freezeup, which allows any user mode
process to hang Pentium, Pentium Overdrive, and Pentium MMX processors.
The 2.0.32 kernel includes fixes for these problems, and is available
for Red Hat 4.0, 4.1, and 4.2 on the Intel platforms. As upgrading a
kernel is tricky, we urge you to read the information on using these
packages available from:
http://www.redhat.com/support/docs/rhl/intel/kernel-upgrade-intel.html
to enourage the use of these instructions, I'm not going to post the
full URL's of the packages here. The above URL references the Red Hat
4.2 Errata, which contains links to the packages. As always, those
packages have been signed with the Red Hat PGP key.
Erik
- -----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBNHS4KKUg6PHLopv5AQHjYQQAmpS3X6AoXjvVW/kdLuRjv6by1sWL6TlG
BYvbrgczOTiTui+Xf0AAvxS1pHIXlP3xQV8Fl+4Fkzr1HUIftqNVhUyQbgOe154i
pmFZsi7Yh9azQ5/uyYtnzB2m5aULLXuZjMcc/ItoQSyhGIzBB4fHePhnB/ls+hdh
1iZ7Y9VLNDk=
=MZA0
- -----END PGP SIGNATURE-----
- --
To unsubscribe:
mail -s unsubscribe redhat-announce-list-request@redhat.com < /dev/null
------- End of Forwarded Message
