CVE-2008-5395 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-5395): The parisc_show_stack function in arch/parisc/kernel/traps.c in the Linux kernel before 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service (system crash) via vectors associated with an attempt to unwind a stack that contains userspace addresses.
Patch went into 2.6.27.9 vanilla http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.27.y.git;a=commitdiff;h=16a476e1419249a1c0733fdb683f29c9bde6f941 --> it's in genpatches 2.6.27-8 --> it's in gentoo-sources-2.6.27-r6
For the record: HPPA == PA-RISC. Thanks.
I'll check whether going stable early on a 2.6.28 kernel is the way for HPPA. I've been meaning to stabilise a 2.6.28 for a while now. Btw, hardened has nothing to do with this as HPPA doesn't do a hardened kernel or profile.
Stable for HPPA: =sys-kernel/gentoo-sources-2.6.28-r5 =sys-kernel/vanilla-sources-2.6.28.9