From 1d609dcea74f89e44ee39b4b1acdfef0e43ae652 Mon Sep 17 00:00:00 2001 From: Jeremy Utley Date: Fri, 31 Dec 2004 06:29:29 +0000 Subject: Added the fix for the linux kernel security vulnerability into the build instructions - Thanks Matt for catching this one git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@4469 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689 --- chapter03/patches.xml | 7 +++++++ chapter08/kernel.xml | 11 ++++++----- 2 files changed, 13 insertions(+), 5 deletions(-) diff --git a/chapter03/patches.xml b/chapter03/patches.xml index 7875036f2..bd07b2ec8 100644 --- a/chapter03/patches.xml +++ b/chapter03/patches.xml @@ -107,6 +107,13 @@ following: + +Linux 2.6.10 Security Vulnerability Patch - 1 KB: + + + + + Man 80-Columns Patch - 1 KB: diff --git a/chapter08/kernel.xml b/chapter08/kernel.xml index 1d41e21b7..01bac036b 100644 --- a/chapter08/kernel.xml +++ b/chapter08/kernel.xml @@ -23,14 +23,15 @@ Installation of the kernel -Prepare for compilation by running the following command: +Kernel version 2.6.10 has a security vulnerability that will allow user +processes to gain root privledges upon loading of a kernel module. See: + for more information. The following patch fixes this problem: -make mrproper +patch -Np1 -i ../linux-&linux-version;-security_fix-1.patch -Also, ensure that the kernel does not attempt to pass hotplugging events -to userspace until userspace specifies that it is ready: +Prepare for compilation by running the following command: -sed -i 's@/sbin/hotplug@/bin/true@' kernel/kmod.c +make mrproper If, in , you decided you want to compile the keymap into the kernel, issue the command below: -- cgit v1.2.3-54-g00ecf