diff options
| author | Matthew Burgess <matthew@linuxfromscratch.org> | 2005-01-09 14:17:39 +0000 |
|---|---|---|
| committer | Matthew Burgess <matthew@linuxfromscratch.org> | 2005-01-09 14:17:39 +0000 |
| commit | f52ea4ef910f0bc4e6bd5646ee78de5ecfaacd5a (patch) | |
| tree | 964244d90816bcb7d196a555ff4f3d0c25f347ca | |
| parent | 39bcf11aae1f4402c987a22937eb7f367275ab21 (diff) | |
* Add security patch for the kernel
git-svn-id: http://svn.linuxfromscratch.org/LFS/branches/testing/BOOK@4532 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689
| -rw-r--r-- | chapter01/changelog.xml | 3 | ||||
| -rw-r--r-- | chapter03/patches.xml | 7 | ||||
| -rw-r--r-- | chapter08/kernel.xml | 6 |
3 files changed, 16 insertions, 0 deletions
diff --git a/chapter01/changelog.xml b/chapter01/changelog.xml index a8546625d..b7f30009f 100644 --- a/chapter01/changelog.xml +++ b/chapter01/changelog.xml @@ -55,6 +55,7 @@ first a summary, then a detailed log.</para> <listitem><para>bash-3.0-avoid_WCONTINUED-1.patch</para></listitem> <listitem><para>Hotplug 2004_09_23</para></listitem> <listitem><para>Libol 0.3.14</para></listitem> +<listitem><para>linux-2.6.10-security_fix-1.patch</para></listitem> <listitem><para>Syslog-ng 1.6.5</para></listitem> <listitem><para>util-linux-2.12p-cramfs-1.patch</para></listitem> <listitem><para>vim-6.0-security_fix-1.patch</para></listitem> @@ -73,6 +74,8 @@ first a summary, then a detailed log.</para> </itemizedlist> </listitem> +<listitem><para>January 9, 2005 [matt]: Added a security patch for the kernel</para></listitem> + <listitem><para>January 9, 2005 [matt]: Added a security patch for vim</para></listitem> <listitem><para>January 9, 2005 [matt]: Upgraded to man-1.5p</para></listitem> diff --git a/chapter03/patches.xml b/chapter03/patches.xml index 23ea3a852..9987ffb91 100644 --- a/chapter03/patches.xml +++ b/chapter03/patches.xml @@ -105,6 +105,13 @@ needed to build an LFS system:</para> </varlistentry> <varlistentry> +<term>Linux 2.6.10 Security Vulnerability Patch - 1 KB:</term> +<listitem> +<para><ulink url="&patches-root;linux-&linux-version;-security_fix-1.patch"/></para> +</listitem> +</varlistentry> + +<varlistentry> <term>Mktemp Tempfile Patch - 3 KB:</term> <listitem> <para><ulink url="&patches-root;mktemp-&mktemp-version;-add_tempfile-1.patch"/></para> diff --git a/chapter08/kernel.xml b/chapter08/kernel.xml index 92b058847..2a26d63c6 100644 --- a/chapter08/kernel.xml +++ b/chapter08/kernel.xml @@ -34,6 +34,12 @@ compilation, and installation. Read the <filename>README</filename> file in the kernel source tree for alternate methods to the way this book configures the kernel.</para> +<para>Kernel version 2.6.10 has a security vulnerability that will allow user +processes to gain root privledges upon loading of a kernel module. See: +<ulink url="http://www.uwsg.iu.edu/hypermail/linux/kernel/0412.3/0679.html"/> for more information. The following patch fixes this problem:</para> + +<screen><userinput>patch -Np1 -i ../linux-&linux-version;-security_fix-1.patch</userinput></screen> + <para>Prepare for compilation by running the following command:</para> <screen><userinput>make mrproper</userinput></screen> |