SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Distribution: Linux Mint 9, Linux Mint 17.2(xfce), LMDE2(Mate), Debian Jessie minimal (with standalone OBox)
Posts: 299
Rep:
Running 4.9.3 using the config wih debian patches from linux-source-4.9 (4.9.2-2) trimmed as much as understood and could safely do so, for my laptop..seems to be working great except for the random mouse and keyboard freezes when streaming videos..wonder if i should wait for an upgrade to the source before compiling for 4.9.4. Also, is 4.9 gong to be LTS or not, nobody seems to know for sure, Greg-Hartman's blog, if it's genuine said it was..
Edit: Oops, sorry to intrude, saw something about the kernel and jumped right in without thinking, have been a little on edge running the unstable version of Debian, my apologies.
Also, is 4.9 gong to be LTS or not, nobody seems to know for sure, Greg-Hartman's blog, if it's genuine said it was..
Nobody knows until Kroah-Hartman announces if he will make 4.9 LTS... last update I could find was in August when he stated his intention on making 4.9 LTS if developers don't add a bunch of "crud" into it just to make the LTS. Now we just need to wait until he decides if there's minimal enough "crud" for him to make it LTS.
Contrary to both of those articles, it hasn't been confirmed yet. Kroah-Hartman basically stated that the plan is for 4.9 to be LTS back in August, giving developers plenty of time to finalize what they want in the kernel. But in the past, this has lead to developers trying to push unfinished code that doesn't belong in an LTS just so it can be in there. Kroah-Hartman said that if developers don't throw crap into 4.9, it'll likely be LTS, but if they do, he'll likely pick either 4.8 or 4.10. As far as I've found, he hasn't said any more on the topic since August (and I do some minor searches every week or so since the 4.9 stable dropped).
I figured he would do it soon. Hopefully we see a config in testing/ soon (or an actual 4.9 kernel in -current)
I'm lazy and just want to wait for Pat's config before I upgrade my system. I missed some new features in the 3.18 kernel (mainly overlayfs) that caused me to rebuild it once Pat's config came out, so I don't want a repeat. He seems to have the eye to get all the pertinent options.
commit b9d6631395a1e25b210ce112b1bc10f3c665ea20 in Linux 4.4.44 fixes CVE-2016-919 and
commit 3490e72ad6d02cf396894d1139dc800e1d9fca83 fixes CVE-2017-2584
Building a local version here but maybe an official Slackware 14.2 update is in order ?
-- kjh
Code:
# grep CVE linux-4.4.44-ChangeLog
Fixes CVE-2016-9191, proc_sys_readdir doesn't drop reference
The calltrace of CVE-2016-9191:
fxrstor, sgdt, and sidt. This fixes CVE-2017-2584, a longstanding
This is CVE-2017-2583. On Intel this causes a failed vmentry because
Last edited by kjhambrick; 01-20-2017 at 09:17 AM.
Reason: missed one
I don't know what Pat will do. I'm surprised he's stayed with 4.4 in current this long, but I'll be moving to 4.10 when it comes out anyway, so it doesn't bother me either way.
Unofficial 4.4.44 and 4.9.5 now up at https://dusk.idlemoor.tk -- I don't intend to spam this thread every time, but as suggested by GazL (thanks!), there's also now a config directory, and the config is now included with the other gubbins in each kernel dir. For 4.9.5 the configs are completely unoffical, but derived from the 4.6 config in testing/.
commit b9d6631395a1e25b210ce112b1bc10f3c665ea20 in Linux 4.4.44 fixes CVE-2016-9191 and
commit 816307c80d4ddad5414a05ff5861f063d29cda6f fixes CVE-2017-2583 and
commit 3490e72ad6d02cf396894d1139dc800e1d9fca83 fixes CVE-2017-2584
Building a local version here but maybe an official Slackware 14.2 update is in order ?
-- kjh
I just posted a note in the Slackware-security thread about the CVE-fixes in 4.4.44.
Last edited by mats_b_tegner; 01-22-2017 at 10:44 AM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.