Let’s talk about kernel releases, the latest two kernel vulnerabilities, and what vanilla or gentoo-sources you should be running.<\/p>\n
The two vulnerabilities I’m talking about are:<\/p>\n
CVE-2010-3301 (http:\/\/bugs.gentoo.org\/show_bug.cgi?id=337645<\/a>) 2.6.34<\/strong> 2.6.35<\/strong> If *anyone* feels a kernel version needs to be stabilized we have this cool thing called bugzilla<\/a>.\u00a0 Open a bug! We also have this other cool thing (I don’t think Gentoo invented it, not sure) called IRC.\u00a0 I am on IRC 24\/7 and will always look to see if someone highlights my name. Talk to me first. Then feel free to bash me if I don’t respond in our user’s best interest. I always try to do what’s best for the community and if I am slacking, it’s only due to life\/wife\/family\/job.<\/p>\n The gentoo-sources team actively supports gentoo-source users. No matter the keyword state. We used to only support two versions (current release and 1 – current release). But now we support the latest upstream LTS as well.<\/p>\n We would also welcome any users or devs who are interested in maintaining the kernel at Gentoo to join the team.<\/p>\n Hope this helps clarify things, always feel free to reach out to me.<\/p>\n Mike<\/p>\n","protected":false},"excerpt":{"rendered":" Let’s talk about kernel releases, the latest two kernel vulnerabilities, and what vanilla or gentoo-sources you should be running. The two vulnerabilities I’m talking about are: CVE-2010-3301 (http:\/\/bugs.gentoo.org\/show_bug.cgi?id=337645) CVE-2010-3081 (http:\/\/bugs.gentoo.org\/show_bug.cgi?id=337659) Kernel Versions 2.6.32 >=gentoo-sources-2.6.32-r18 and vanilla-sources-2.6.32.23 contain the fixes for…
\nCVE-2010-3081 (http:\/\/bugs.gentoo.org\/show_bug.cgi?id=337659<\/a>)
\n
\nKernel Versions
\n<\/strong>
\n2.6.32<\/strong>
\n>=gentoo-sources-2.6.32-r18 and vanilla-sources-2.6.32.23 contain the fixes for both CVE-2010-3081 and CVE-2010-3301.
\nstable request: http:\/\/bugs.gentoo.org\/show_bug.cgi?id=338317<\/a><\/p>\n
\n>=gentoo-sources-2.6.34-r11 (and no vanilla 2.6.34) contain the fixes for both CVE-2010-3081 and CVE-2010-3301.
\nstable request: http:\/\/bugs.gentoo.org\/show_bug.cgi?id=339819<\/a><\/p>\n
\n>=gentoo-sources-2.6.35-r8 >= vanilla-sources-2.6.35.5 contain the fixes for both CVE-2010-3081 and CVE-2010-3301.
\n2.6.35 will only be stabilized after the new baselayout 1.2.14-r1 has been in the tree for 30 days. I described the problem in an earlier blog post<\/a> so I will not rehash the whole story<\/p>\n
Read more<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-142","post","type-post","status-publish","format-standard","hentry","category-gentoo"],"_links":{"self":[{"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/142","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=142"}],"version-history":[{"count":0,"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/142\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=142"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=142"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mpagano.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=142"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}