[Clfs-commits] commit: r3914 - in /trunk/BOOK: ./ boot/alpha/ boot/mips/ boot/mips64/ boot/ppc/ boot/ppc64/ boot/sparc/ boot/sparc64/ boot/x86/ boot/x86_64/ bootable/alpha/ bootable/mips/ bootable/mips64/ bootable/ppc/ bootable/ppc64/ bootable/sparc/ bootable/sparc64-64/ bootable/sparc64/ bootable/x86/ bootable/x86_64-64/ bootable/x86_64/ introduction/common/ materials/common/
svn at cross-lfs.org
svn at cross-lfs.org
Tue Jun 17 09:22:37 PDT 2008
Author: ken
Date: Tue Jun 17 16:22:36 2008
New Revision: 3914
Log:
Fix the known kernel vulnerabilities.
Modified:
trunk/BOOK/boot/alpha/kernel.xml
trunk/BOOK/boot/mips/kernel.xml
trunk/BOOK/boot/mips64/kernel.xml
trunk/BOOK/boot/ppc/kernel.xml
trunk/BOOK/boot/ppc64/kernel.xml
trunk/BOOK/boot/sparc/kernel.xml
trunk/BOOK/boot/sparc64/kernel.xml
trunk/BOOK/boot/x86/kernel.xml
trunk/BOOK/boot/x86_64/kernel.xml
trunk/BOOK/bootable/alpha/kernel.xml
trunk/BOOK/bootable/mips/kernel.xml
trunk/BOOK/bootable/mips64/kernel.xml
trunk/BOOK/bootable/ppc/kernel.xml
trunk/BOOK/bootable/ppc64/kernel.xml
trunk/BOOK/bootable/sparc/kernel.xml
trunk/BOOK/bootable/sparc64-64/kernel.xml
trunk/BOOK/bootable/sparc64/kernel.xml
trunk/BOOK/bootable/x86/kernel.xml
trunk/BOOK/bootable/x86_64-64/kernel.xml
trunk/BOOK/bootable/x86_64/kernel.xml
trunk/BOOK/general.ent
trunk/BOOK/introduction/common/changelog.xml
trunk/BOOK/materials/common/patches.xml
trunk/BOOK/packages.ent
trunk/BOOK/patches.ent
Modified: trunk/BOOK/boot/alpha/kernel.xml
==============================================================================
--- trunk/BOOK/boot/alpha/kernel.xml (original)
+++ trunk/BOOK/boot/alpha/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/mips/kernel.xml
==============================================================================
--- trunk/BOOK/boot/mips/kernel.xml (original)
+++ trunk/BOOK/boot/mips/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/mips64/kernel.xml
==============================================================================
--- trunk/BOOK/boot/mips64/kernel.xml (original)
+++ trunk/BOOK/boot/mips64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/ppc/kernel.xml
==============================================================================
--- trunk/BOOK/boot/ppc/kernel.xml (original)
+++ trunk/BOOK/boot/ppc/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/ppc64/kernel.xml
==============================================================================
--- trunk/BOOK/boot/ppc64/kernel.xml (original)
+++ trunk/BOOK/boot/ppc64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/sparc/kernel.xml
==============================================================================
--- trunk/BOOK/boot/sparc/kernel.xml (original)
+++ trunk/BOOK/boot/sparc/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/sparc64/kernel.xml
==============================================================================
--- trunk/BOOK/boot/sparc64/kernel.xml (original)
+++ trunk/BOOK/boot/sparc64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/boot/x86/kernel.xml
==============================================================================
--- trunk/BOOK/boot/x86/kernel.xml (original)
+++ trunk/BOOK/boot/x86/kernel.xml Tue Jun 17 16:22:36 2008
@@ -31,6 +31,14 @@
<para>Also, try to avoid the use of modules if possible, and don't
use the resulting kernel image for production systems.</para>
</warning>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../../bootable/x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../../bootable/x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../../bootable/x86/kernel.xml"
Modified: trunk/BOOK/boot/x86_64/kernel.xml
==============================================================================
--- trunk/BOOK/boot/x86_64/kernel.xml (original)
+++ trunk/BOOK/boot/x86_64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -25,6 +25,14 @@
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
xpointer="xpointer(//*[@os='aa'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/alpha/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/alpha/kernel.xml (original)
+++ trunk/BOOK/bootable/alpha/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/mips/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/mips/kernel.xml (original)
+++ trunk/BOOK/bootable/mips/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/mips64/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/mips64/kernel.xml (original)
+++ trunk/BOOK/bootable/mips64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/ppc/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/ppc/kernel.xml (original)
+++ trunk/BOOK/bootable/ppc/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/ppc64/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/ppc64/kernel.xml (original)
+++ trunk/BOOK/bootable/ppc64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/sparc/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/sparc/kernel.xml (original)
+++ trunk/BOOK/bootable/sparc/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/sparc64-64/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/sparc64-64/kernel.xml (original)
+++ trunk/BOOK/bootable/sparc64-64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/sparc64/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/sparc64/kernel.xml (original)
+++ trunk/BOOK/bootable/sparc64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/x86/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/x86/kernel.xml (original)
+++ trunk/BOOK/bootable/x86/kernel.xml Tue Jun 17 16:22:36 2008
@@ -21,6 +21,12 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <para os="a1">A number of vulnerabilities have come to light after the
+ stable kernel team stopped supporting 2.6.24. The following patch addresses
+ them:</para>
+
+<screen os="a2"><userinput>patch -Np1 -i ../&linux-security-patch;</userinput></screen>
<para os="a">Building the kernel involves a few steps—configuration,
compilation, and installation. Read the <filename>README</filename>
Modified: trunk/BOOK/bootable/x86_64-64/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/x86_64-64/kernel.xml (original)
+++ trunk/BOOK/bootable/x86_64-64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/bootable/x86_64/kernel.xml
==============================================================================
--- trunk/BOOK/bootable/x86_64/kernel.xml (original)
+++ trunk/BOOK/bootable/x86_64/kernel.xml Tue Jun 17 16:22:36 2008
@@ -20,6 +20,14 @@
<sect2 role="installation">
<title>Installation of the kernel</title>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a1'])"/>
+
+ <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+ href="../x86/kernel.xml"
+ xpointer="xpointer(//*[@os='a2'])"/>
<xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
href="../x86/kernel.xml"
Modified: trunk/BOOK/general.ent
==============================================================================
--- trunk/BOOK/general.ent (original)
+++ trunk/BOOK/general.ent Tue Jun 17 16:22:36 2008
@@ -2,7 +2,7 @@
<!ENTITY month "06"> <!-- Use two digits -->
<!ENTITY month_name "June">
-<!ENTITY day "06"> <!-- Use two digits -->
+<!ENTITY day "17"> <!-- Use two digits -->
<!ENTITY year "2008"> <!-- Use four digits -->
<!ENTITY releasedate "&month_name; &day;, &year;">
Modified: trunk/BOOK/introduction/common/changelog.xml
==============================================================================
--- trunk/BOOK/introduction/common/changelog.xml (original)
+++ trunk/BOOK/introduction/common/changelog.xml Tue Jun 17 16:22:36 2008
@@ -37,7 +37,17 @@
-->
<listitem>
- <para>July 7, 2008</para>
+ <para>June 17, 2008</para>
+ <itemizedlist>
+ <listitem>
+ <para>[Ken] - Fix all known kernel vulnerabilities by upgrading to 2.6.24.7
+ plus a patch extracted from debian for the more recent fixes.</para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>June 7, 2008</para>
<itemizedlist>
<listitem>
<para>[Chris] - Updated dependency info for several packages.</para>
Modified: trunk/BOOK/materials/common/patches.xml
==============================================================================
--- trunk/BOOK/materials/common/patches.xml (original)
+++ trunk/BOOK/materials/common/patches.xml Tue Jun 17 16:22:36 2008
@@ -145,6 +145,15 @@
</varlistentry>
<varlistentry>
+ <term>Linux Security Fixes Patch - <token>&linux-security-patch-size;</token>:</term>
+ <listitem>
+ <para>Download: <ulink
+ url="&patches-root;&linux-security-patch;"/></para>
+ <para>MD5 sum: <literal>&linux-security-patch-md5;</literal></para>
+ </listitem>
+ </varlistentry>
+
+ <varlistentry>
<term>Mktemp Tempfile Patch - <token>&mktemp-tempfile-patch-size;</token>:</term>
<listitem>
<para>Download: <ulink
Modified: trunk/BOOK/packages.ent
==============================================================================
--- trunk/BOOK/packages.ent (original)
+++ trunk/BOOK/packages.ent Tue Jun 17 16:22:36 2008
@@ -243,10 +243,10 @@
<!ENTITY linux-dl-version "2.6">
-<!ENTITY linux-version "2.6.24">
-<!ENTITY linux-size "45,696 KB">
+<!ENTITY linux-version "2.6.24.7">
+<!ENTITY linux-size "45,638 KB">
<!ENTITY linux-url "&kernel;linux/kernel/v&linux-dl-version;/linux-&linux-version;.tar.bz2">
-<!ENTITY linux-md5 "3f23ad4b69d0a552042d1ed0f4399857">
+<!ENTITY linux-md5 "40a73780d51525d28d36dec852c680c4">
<!ENTITY linux-home "http://www.kernel.org">
<!ENTITY m4-version "1.4.10">
Modified: trunk/BOOK/patches.ent
==============================================================================
--- trunk/BOOK/patches.ent (original)
+++ trunk/BOOK/patches.ent Tue Jun 17 16:22:36 2008
@@ -60,6 +60,10 @@
<!ENTITY glibc-localedef_segfault-patch-md5 "3ce6946b16e90a73d90ac701a5940709">
<!ENTITY glibc-localedef_segfault-patch-size "4 KB">
+<!ENTITY linux-security-patch "linux-&linux-version;-security_fixes-1.patch">
+<!ENTITY linux-security-patch-md5 "7f244856cc40e478f5f66a6a6267d4c6">
+<!ENTITY linux-security-patch-size "15.5 KB">
+
<!ENTITY mktemp-tempfile-patch "mktemp-&mktemp-version;-add_tempfile-3.patch">
<!ENTITY mktemp-tempfile-patch-md5 "65d73faabe3f637ad79853b460d30a19">
<!ENTITY mktemp-tempfile-patch-size "3.6 KB">
More information about the Clfs-commits
mailing list