Hi,
Today the kernel was updated to 3.2.53 in the wok.
This will surely be the version available in the future cooking.
The suggestions made by kultex, shann, Tom (sorry for those I forgot) have been added to the kernel configuration.
if we forgot something do not hesitate to report it here.

New Kernel version in the Wok
(37 posts) (8 voices)-
Posted 11 years ago #
-
Hi,
kernel/ptrace.c __ptrace_may_access privilege escalation
http://www.scip.ch/en/?vuldb.11366VulDB: Linux Kernel 3.4.71/3.10.21/3.11.10/3.12.2 kernel/ptrace.c __ptrace_may_access privilege escalation
General
scipID: 11366
Affected: Linux Kernel 2.6.32.61/2.6.34.14/3.2.53/3.4.70/3.10.20/3.11.9/3.12.1
Published: 11/13/2013 (Vasily Kulikov)
Risk: problematic
Entry: 85.9% complete
Created: 12/05/2013Posted 11 years ago # -
Not a big risk since the exploit can only be used locally (as in being logged into the server itself)
Posted 11 years ago # -
Patch: git.kernel.org
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=4004afd5f51ad0a86be405522b1ecf28ba66f4e5Posted 11 years ago # -
Applied: http://hg.slitaz.org/wok/rev/a5cec45811e4
Tahnk you.
Posted 11 years ago # -
pascal already included the patch into rolling - thx a lot
as Kernel 3.2.xx is at the moment the kernel with longest support - until April 2017 see http://en.wikipedia.org/wiki/Linux_kernel - I think it should be also part of backports to update the kernel version as soon as it arrives. In my experience - if we stay on 3.2.xx - it will never screw up the system.
and good news for the fans of 64-bit - pascal also created a core64 iso http://hg.slitaz.org/flavors/rev/7e312dd1f5f9
it is available now - http://mirror.slitaz.org/iso/rolling/
Posted 11 years ago # -
linux.log
[..]
Apply linux-CVE-2013-2929.u
patching file arch/ia64/include/asm/processor.h
patching file include/linux/binfmts.h
patching file include/linux/sched.h
patching file kernel/ptrace.cThanks.
Posted 11 years ago # -
kernel panic?
slitaz-rolling-core64.iso 20131220
slitaz-rolling-core64.iso 20131222Trying to unpack rootfs image as initramfs...
....
Kernel panic - not syncing: Attempted to kill init!
Pid:1, comm: swapper/0 Tainted: G D 3.2-slitaz #2
Call Trace:
...or
Trying to unpack rootfs image as initramfs...
BUG: unable to handle kernel paging request at 0000000039b84000
...Posted 11 years ago # -
@ erjo: Can someone take a look at the new kernel config?
My ATA disk (/dev/sda) not showing up in spacefm (thanks for updating)
Merry Christmas to you and everyone!
Posted 11 years ago # -
thats no issue with kernel config - thats an issue with /etc/udevil/udevil.conf
line 136
allowed_internal_devices = /dev/*
Posted 11 years ago # -
I have the same issue.
Only root can see my disk.
I would like that works as PcmanFM for this part.@kultex: I had this line but nothing change. Even with the full file from your testing ISO,
another idea?Posted 11 years ago # -
did you open the drives window - red arrow in the screenshot - then you click right in the window -> Settings -> show internal drives
Posted 11 years ago # -
Works for me kultex
CDROM/DVD drive not showing up though?
I notice it was linked to /dev/sr0 on your iso
Many thanks
Posted 11 years ago # -
so it would be nice, if somebody could put my kernel-config at least to undigest
Posted 11 years ago # -
Kultex, what I would like most is to merge your configuration with one that is currently in the wok.
Posted 11 years ago #
Reply »
You must log in to post.