LinuxQuestions.org
Latest LQ Deal: Linux Power User Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 10-10-2018, 02:31 AM   #781
Thom1b
Member
 
Registered: Mar 2010
Location: France
Distribution: Slackware
Posts: 216

Rep: Reputation: 164Reputation: 164

linux-4.4.160 is released with 2 security fixes. One concerning ext4.
Quote:
commit cd3d6463759d21f4093d3434effacc358dd0caf8
Author: Theodore Ts'o <tytso@mit.edu>
Date: Sat Jun 16 15:40:48 2018 -0400

ext4: never move the system.data xattr out of the inode body

commit 8cdb5240ec5928b20490a2bb34cb87e9a5f40226 upstream.

When expanding the extra isize space, we must never move the
system.data xattr out of the inode body. For performance reasons, it
doesn't make any sense, and the inline data implementation assumes
that system.data xattr is never in the external xattr block.

This addresses CVE-2018-10880

https://bugzilla.kernel.org/show_bug.cgi?id=200005

Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Cc: stable@kernel.org
Signed-off-by: Zubin Mithra <zsm@chromium.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 
3 members found this post helpful.
Old Yesterday, 10:52 AM   #782
mats_b_tegner
Member
 
Registered: Nov 2009
Location: Gothenburg, Sweden
Distribution: Slackware64
Posts: 459

Rep: Reputation: 250Reputation: 250Reputation: 250
Ruby

Ruby versions 2.3.8, 2.4.5 and 2.5.3 fixes the following security vulnerabilities:
https://www.ruby-lang.org/en/news/20...ve-2018-16395/
https://www.ruby-lang.org/en/news/20...ve-2018-16396/
https://cache.ruby-lang.org/pub/ruby...y-2.3.8.tar.xz
https://cache.ruby-lang.org/pub/ruby...y-2.4.5.tar.xz
https://cache.ruby-lang.org/pub/ruby...y-2.5.3.tar.xz
 
1 members found this post helpful.
  


Reply

Tags
exploit, security, slackware


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[Slackware Security]: Some pending vulnerabilities... mancha Slackware 7 08-22-2013 09:08 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 11:41 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration