Johnny Hughes
2014-Jun-16 22:15 UTC
[CentOS-announce] CESA-2014:X009 Important: Xen4CentOS kernel Security Update
CentOS Errata and Security Advisory 2014:X009 (Xen4CentOS) The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) ----------------------------- X86_64 ----------------------------- b46a8cc4391424f463aec8e81e716152357426ae3601857b2661bc5a1257f9b3 e1000e-2.5.4-3.10.43.2.el6.centos.alt.x86_64.rpm 0528f65b84416ced556de3a320bd564119f991ed45788a39149c70165c3f49e1 kernel-3.10.43-11.el6.centos.alt.x86_64.rpm b73f39b966c049755e084ebcefc620c85b06c3057bb6b865e98569a87ac9d2bf kernel-devel-3.10.43-11.el6.centos.alt.x86_64.rpm 84f31763fefee0f9b239a4857e90bdf69c8a93469e5ccb9dc24e68d433a4e49c kernel-doc-3.10.43-11.el6.centos.alt.noarch.rpm cfcc0b15c5733b56a806f769cc0c9adb43b8eb74ac79a82be5e57235403fc88e kernel-firmware-3.10.43-11.el6.centos.alt.noarch.rpm d7bf65737662549f3da4ddf674956d000bbc23aab690a70d30451738a00f55bf kernel-headers-3.10.43-11.el6.centos.alt.x86_64.rpm d382d890feb56a58559433232eb842274074eb26566eb7956f5a1e7a506e0b0a perf-3.10.43-11.el6.centos.alt.x86_64.rpm ----------------------------- Source: ----------------------------- 739803937e9552290f64d442d884af6ea1f236ef7c119c3cbb2abced6a302b75 e1000e-2.5.4-3.10.43.2.el6.centos.alt.src.rpm 478a93491c7b821d18b0586b2e47012a1c6f1b73e145068395199060decfdbb4 kernel-3.10.43-11.el6.centos.alt.src.rpm ==================================================== Kernel Changelog info from the SPEC file: * Mon Jun 16 2014 Johnny Hughes <johnny at centos.org> - 3.10.43-11 - upgraded to upstream 3.10.43 - addresses CVE-2014-0155, CVE-2014-0196, CVE-2014-1739, and CVE-2014-3153. * Mon May 5 2014 Johnny Hughes <johnny at centos.org> - 3.10.38-11 - upgraded to upstream 3.10.38 - addresses CVE-2014-0055 and CVE-2014-0077 * Wed Mar 26 2014 Johnny Hughes <johnny at centos.org> - 3.10.34-11 - upgrade to upstream 3.10.34 - addresses CVE-2014-0049 and CVE-2014-0069 e1000e Changelog info from the SPEC file: * Mon Jun 16 2014 Johnny Hughes <johnny at centos.org> - 2.5.4-3.10.34.2.el6.centos.alt - build against version 3.10.43 kernel * Thu Apr 3 2014 Johnny Hughes <johnny at centos.org> - 2.5.4-3.10.34.2.el6.centos.alt - build against version 3.10.34 kernel ==================================================== The following kernel changelogs are available from kernel.org since the previous kernel: https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.33 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.34 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.35 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.36 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.37 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.38 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.39 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.40 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.41 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.42 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.43 ==================================================== The following security issues are addressed in this update: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0049 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0055 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0069 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0077 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0155 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0196 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3153 http://seclists.org/oss-sec/2014/q2/529 (for CVE-2014-1739, its blank on the nist.gov list) ==================================================== NOTE: You must run /usr/bin/grub-bootxen.sh to update the file /boot/grub/grub.conf (or you must update that file manually) to boot the new kernel on a dom0 xen machine. See for info: http://wiki.centos.org/HowTos/Xen/Xen4QuickStart -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #centos at irc.freenode.net
Possibly Parallel Threads
- CentOS-announce Digest, Vol 112, Issue 7
- CESA-2013:X012 Xen4CentOS Medium kernel Security Update
- CESA-2014:X011 Moderate kernel Xen4CentOS Security Update
- CESA-2013:X018 Important Xen4CentOS kernel Security Update
- CESA-2013:0620-01 Important Xen4CentOS kernel Update