Hi Francisco, and Michael! On 161025-16:10+0200, Francisco Blas Izquierdo Riera (klondike) wrote: > El 25/10/16 a las 12:56, Miroslav Rovis escribió: > > Hi! > Hi Miroslav! > > Due to this bug: > > https://bugs.gentoo.org/show_bug.cgi?id=597554 > > > > I can't use the patched 4.7.9 of hardened sources. > > > > hardened-sources-4.4.8-r1 do not appear to me to be mad COW patched. > I guess you are talking about CVE-2016–5195 here. Please correct me if > mistaken. Not likely. Prefer not to go checking it but mad [C]opy [O]n [W]rite has acquired enough notoriety by now. > > I looked up the sources, but am not able to see for sure how to patch > > 4.4.8-r1 myself. > > > > I have just rsynced my system and nothing new seems to have happened > > with 4.4.8-r1 yet. > If 4.4.8 gets patched you will find a new revision (i.e. 4.4.8-r2). > ... I know that more or less well. > > You can read more on the Gentoo project revision policy for ebuilds at > https://devmanual.gentoo.org/general-concepts/ebuild-revisions/ Awaiting for me. Gone through it to some extent once, but I'm too slow to figure much so well very soon... I'm nearly 60 yrs old and started with computing after I was 40... > > I'm CCing the Gentoo Hardened user list as other users may be able to > provide more and better input on this. Which is great, since I now subscribed. > > Sincerely, > Francisco Blas Izquierdo Riera (klondike) Thanks, Francisco!
The other correspondent in this thread, Michael Orlitzky, mentioned how 4.7.10 already works fine for him. I'll paste and ask him here: > > I'm testing 4.7.10 and will have it stabilized soon. > > > > FWIW, I've been panic-updating all of our x86/amd64 servers (mostly HP > Proliant) to 4.7.10 and nothing has blown up yet. Michael, are you talking about that bug: =sys-kernel/hardened-sources-4.7.6: Kernel panic when starting KVM guests > > https://bugs.gentoo.org/show_bug.cgi?id=597554 having been fixed in 4.7.10 Where are the hardened-sources? I tried: https://gitweb.gentoo.org/proj/hardened-kernel.git/ and see only very old stuff there. I tried: https://gitweb.gentoo.org/dev/blueness.git/ but can't find how to (maybe) get 4.7.10. (And I also couldn't find them on Github a few days ago. And alos currently don't have the time to study Gentoo git system more deeply.) Regards! -- Miroslav Rovis Zagreb, Croatia http://www.CroatiaFidelis.hr
signature.asc
Description: Digital signature
