Bug 2845 - Update request: kernel-2.6.38.8-6.mga
Summary: Update request: kernel-2.6.38.8-6.mga
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 1
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact:
URL:
Whiteboard:
Keywords: validated_update
Depends on:
Blocks:
 
Reported: 2011-09-26 23:22 CEST by Thomas Backlund
Modified: 2011-10-07 15:41 CEST (History)
7 users (show)

See Also:
Source RPM: kernel
CVE:
Status comment:


Attachments

Description Thomas Backlund 2011-09-26 23:22:43 CEST
There is now (or soon) a kernel-2.6.38.8-6.mga in core/updates_testing to validate ( yes a new one... :) )


Suggested advisory:
-------------------
This update addresses the folloving CVE:

* FUSE_NOTIFY_INVAL_ENTRY didn't check the length of the write so
  the message processing could overrun and result in a BUG_ON() in
  fuse_copy_fill().
  User able to mount FUSE filesystems can use this flaw to crash 
  the system. (CVE-2011-3353)

* tasktats: make taskstats require root access 
  (prevents information leak, addendum to CVE-2011-2495)



Other fixes in this release:

* proc: fix a race in do_io_accounting

* fix keucr in staging to not conflict with scsi namespace

* revert "ide: Convert to bdops->check_events()" merged in upstream
  2.6.38.8 as it introduced regression for some users regarding
  udev getting stuck at 100% cpu (mga #1954)



Added hardware support:
* add Intel C600 Series Chipset SAS Controller support

* Input: wacom - add support for Lenovo tablet ID 0xE6 (mga #2811)

* ahci: add ids for Intel Panther Point 1E0E and Marvell 91A3
* pata_marvell: add ids for Marvell 91A0 and 91A4
-------------------
Comment 1 Samuel Verschelde 2011-09-27 12:06:06 CEST
I can't test the fixes, but now the new kernel makes no difference with the previous one on this i586 box, so that's positive.

CC: (none) => stormi

Comment 2 David GEIGER 2011-09-27 15:21:41 CEST
Hello,


Tested on Mageia release 1 (Official) for x86_64 and I can confirm that the 
update of kernel-server-2.6.38.8-6 work for me really correctly.

The bug #1954 is fixed. udevd process now work correctly.

$ uname -r
2.6.38.8-server-6.mga

Thank you.

CC: (none) => geiger.david68210

Comment 3 claire robinson 2011-09-27 15:56:38 CEST
David, are you able to confirm it is fixed i586 too? 

I don't have the udevd problem.
Comment 4 David GEIGER 2011-09-27 16:12:14 CEST
(In reply to comment #3)
> David, are you able to confirm it is fixed i586 too? 
> 
> I don't have the udevd problem.

Really sorry claire ,but no i can't test this on i586.
Comment 5 Luan Pham 2011-09-27 17:18:46 CEST
So far this new kernel work fine on my i586 laptop and my other x86_64 laptop too.  I don't see any problem.

CC: (none) => pham182b

Comment 6 Manuel Hiebel 2011-09-27 22:24:52 CEST
https://bugs.mageia.org/show_bug.cgi?id=1954#c63 :

"The xen-pvops rpm packages are missing on i586, as well as the
kernel-server-latest and kernel-server-devel-latest."
Comment 7 Dave Hodgins 2011-09-27 23:58:40 CEST
Thanks Manuel.  :-) I'll try to be more careful which bug report I'm looking
at, when adding a comment.

CC: (none) => davidwhodgins

Comment 8 Dave Hodgins 2011-09-28 23:14:35 CEST
Reassigning back to developer until the rpm packages show up in
the repositories as per comment 6.

Assignee: qa-bugs => tmb

Comment 9 Sander Lepik 2011-09-28 23:28:40 CEST
http://ftp.belnet.be/mirror/mageia/distrib/1/x86_64/media/core/updates_testing/ --- missing?

CC: (none) => sander.lepik
Assignee: tmb => qa-bugs

Comment 10 Manuel Hiebel 2011-09-28 23:31:29 CEST
hey ! "on i586," :)
Comment 11 Sander Lepik 2011-09-28 23:38:15 CEST
Ok, then it's more like a BS problem :S
Comment 12 Thomas Backlund 2011-09-29 12:55:45 CEST
Gah,

BS missed to upload those...

They are now available on primarsy mirror, so they should soon be on public mirrors.
Comment 13 Dave Hodgins 2011-09-30 02:51:25 CEST
(In reply to comment #12)
> BS missed to upload those...

Got them.  Will test shortly.

Any idea why the BS keeps doing this?
Comment 14 Dave Hodgins 2011-09-30 05:05:28 CEST
Testing complete on i586.  All 5 versions boot, kde starts, sound works, etc.
Glad to see make xconfig works again, for the source.
kernel-doc installs ok.
Comment 15 Manuel Hiebel 2011-10-01 22:45:34 CEST
Testing on x86_64 since the beginning at the week, and all is OK for me.
Comment 16 claire robinson 2011-10-02 12:24:14 CEST
Old i586 laptop intel everything and x86_64 Q6600 desktop nvidia graphics been using this since it was available no problems noticed.
Comment 17 Dave Hodgins 2011-10-03 08:21:56 CEST
As this update fixes bug 1954, and has not shown any regressions, I'm
going to go ahead and validate the update.

Can someone from the sysadmin team push the srpm
kernel-2.6.38.8-6.mga1.src.rpm
from Core Updates Testing to Core Updates.

Advisory:
This update addresses the folloving CVE:
* FUSE_NOTIFY_INVAL_ENTRY didn't check the length of the write so
  the message processing could overrun and result in a BUG_ON() in
  fuse_copy_fill().
  User able to mount FUSE filesystems can use this flaw to crash 
  the system. (CVE-2011-3353)
* tasktats: make taskstats require root access 
  (prevents information leak, addendum to CVE-2011-2495)

Other fixes in this release:
* proc: fix a race in do_io_accounting
* fix keucr in staging to not conflict with scsi namespace
* revert "ide: Convert to bdops->check_events()" merged in upstream
  2.6.38.8 as it introduced regression for some users regarding
  udev getting stuck at 100% cpu (mga #1954)

Added hardware support:
* add Intel C600 Series Chipset SAS Controller support
* Input: wacom - add support for Lenovo tablet ID 0xE6 (mga #2811)
* ahci: add ids for Intel Panther Point 1E0E and Marvell 91A3
* pata_marvell: add ids for Marvell 91A0 and 91A4

https://bugs.mageia.org/show_bug.cgi?id=2845

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Comment 18 D Morgan 2011-10-07 15:41:44 CEST
update pushed.

Status: NEW => RESOLVED
CC: (none) => dmorganec
Resolution: (none) => FIXED


Note You need to log in before you can comment on or make changes to this bug.