CentOS - Dec 2013 - CentOS-announce Digest, Vol 106, Issue 15

Send CentOS-announce mailing list submissions to
	centos-announce at centos.org

To subscribe or unsubscribe via the World Wide Web, visit
	http://lists.centos.org/mailman/listinfo/centos-announce
or, via email, send a message with subject or body 'help' to
	centos-announce-request at centos.org

You can reach the person managing the list at
	centos-announce-owner at centos.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of CentOS-announce digest..."


Today's Topics:

   1. CESA-2013:X018 Important Xen4CentOS kernel	Security Update
      (Johnny Hughes)


----------------------------------------------------------------------

Message: 1
Date: Sat, 28 Dec 2013 16:38:45 +0000
From: Johnny Hughes <johnny at centos.org>
Subject: [CentOS-announce] CESA-2013:X018 Important Xen4CentOS kernel
	Security Update
To: CentOS-announce at centos.org
Message-ID: <20131228163845.GA42596 at n04.lon1.karan.org>
Content-Type: text/plain; charset=us-ascii

CentOS Errata and Security Advisory 2013:X018 (Xen4CentOS)

The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )

-----------------------------
X86_64
-----------------------------

2ac8f3b6799eac04c6fc5fe054a68d00bdf914f173087a7802c9bce8b4366e48
e1000e-2.5.4-3.10.25.2.el6.centos.alt.x86_64.rpm
ac80d6e58bc9fd234b4baf3f51e35ef01a61ae592b0214cdc92af62565463e43
kernel-3.10.25-11.el6.centos.alt.x86_64.rpm
35cf6745c91e45cf90657baedde114f5e7911a59d8a0764d22f95c236462f3d8
kernel-devel-3.10.25-11.el6.centos.alt.x86_64.rpm
80af2fa6099081cf4ca7500551ab927a2f66fde7dbbfeac5fd9511f5c134b943
kernel-doc-3.10.25-11.el6.centos.alt.noarch.rpm
4b1695185de72f03cb530b29baf5fede27601ddd710b00f62e3978e8273417ac
kernel-firmware-3.10.25-11.el6.centos.alt.noarch.rpm
be1d1b7b7dd9100859bac1eb4bb6441eb206478aa0a36912dd83b760984ebd1f
kernel-headers-3.10.25-11.el6.centos.alt.x86_64.rpm
e237b1dbbd40285da0a616679adc6674eb6e6f86855e857b886b66cc402a4fab
perf-3.10.25-11.el6.centos.alt.x86_64.rpm

-----------------------------
Source:
-----------------------------

6babccc82261cf25110059cdc8e0365e8a2fa085a0009501ed24fee15760
e1000e-2.5.4-3.10.25.2.el6.centos.alt.src.rpm
3197faef868a5637acef74b626723ff75eaa4fc5082a8c79165178418c683c54
kernel-3.10.25-11.el6.centos.alt.src.rpm

====================================================
Kernel Changelog info from the SPEC file:

* Sat Dec 27 2013 Johnny Hughes <johnny at centos.org> 3.10.25-11
- addresses CVE-2013-4587, CVE-2013-6367, CVE-2013-6368, CVE-2013-6376

e1000e Changelog info from the SPEC file:

* Fri Dec 27 2013 Johnny Hughes <johnny at centos.org> -
2.5.4-3.10.25.2.el6.centos.alt
- build against version 3.10.25 kernel

====================================================
The following kernel changelogs are available from kernel.org since the previous
kernel:

https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.25
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.24

====================================================
The following security issues are addressed in this update:

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4587
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6367
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6368
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6376

====================================================
NOTE: You must run /usr/bin/grub-bootxen.sh to update the file
      /boot/grub/grub.conf (or you must update that file manually)
      to boot the new kernel on a dom0 xen machine.  See for info:
      http://wiki.centos.org/HowTos/Xen/Xen4QuickStart
 
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #centos at irc.freenode.net



------------------------------

_______________________________________________
CentOS-announce mailing list
CentOS-announce at centos.org
http://lists.centos.org/mailman/listinfo/centos-announce


End of CentOS-announce Digest, Vol 106, Issue 15
************************************************