Kernel 2.4.27 fixes among other things a few security issues, at least some of them have already been fixed with patches before.... Not sure about CAN-2004-0565 and CAN-2004-685 From the changelog: Here is a list of the most important security issues fixed by this release: CAN-2004-0495 (Al Viro sparse fixes) CAN-2004-0497 (users could modify group ID of arbitrary files on the system) CAN-2004-0535 (e1000 minor info leak) CAN-2004-0685 (backported Conectiva usb sparse fixes) CAN-2004-0415 (file offset pointer handling race) CAN-2004-0565 (information leak ia64) Reproducible: Always Steps to Reproduce:
CAN-2004-0415 - Patched for * CAN-2004-0495 - Patched for * CAN-2004-0497 - Patched for * CAN-2004-0535 - Patched for * CAN-2004-0565 - Patched for ia64-sources; only these and {development,mm} have an ia64 KEYWORD. CAN-2004-0685 - Not patched, 2.4 only.
Created attachment 37041 [details, diff] Patch
All done, the following are left for their relevant maintainers: grsec-sources: Adding solar to the CC list. hppa-sources: Adding GMSoft to the CC list. mips-sources: Adding Kumba to the CC list. openmosix-sources: Adding the cluster herd to the CC list. {pegasos,ppc}-sources: Adding dholm to the CC list. rsbac-sources: Adding kang to the CC list. selinux-sources: Adding the hardened herd to the CC list. sparc-sources: Adding the Gentoo/SPARC team to the CC list.
grsec-sources 2.4.17 is in the tree. I'd like to pull 2.4.26 before having to add yet another patch for it.
done openmosix-sources
Done on hppa.
all done for rsbac-sources
mips-sources all patched up.
sparc-sources-2.4.27 is out and stable courtesy of Joker, fixed.
We are going to deprecate {ppc,pegasos}-sources as the 2.4 tree for ppc is no longer actively developed. I hope to be able to get this done later today.
selinux-src fixed
GLSA 200408-24.
