- -------------------------------------------------------------------------- Debian-Edu/Skolelinux Security Advisory DESA 2004-025 http://www.skolelinux.no/security/ Finn-Arne Johansen December 29th, 2004 debian-edu-security@lists.alioth.debian.org - -------------------------------------------------------------------------- Package : kernel-image-2.4.27-i386 Vulnerability : vulnerability in the clear_fpu() macro Problem-Type : local Need reboot : yes Debian-Edu-specific : no CVE ID : CAN-2004-0554 DSA ID : - A critical security vulnerability has been found in the Linux kernel in the clear_fpu() macro code. For more details, take a look at: http://linuxreviews.org/news/2004-06-11_kernel_crash/index.html We recommend that you upgrade your kernel packages to the new 2.4.27 version built for Debian. Upgrade Instructions - -------------------- Make sure 'deb ftp://ftp.skolelinux.no/skolelinux/ woody local' is present in your /etc/apt/sources.list and run 'apt-get update' to update your package lists. Find which flavour of the kernel you are running with the command 'uname -r' (examples: 386, 586tsc, 686, 686-smp, k6, k7, k7-smp). To upgrade, run this command replacing <flavour> with yours: apt-get install kernel-image-2.4.27-1-<flavour> If you are unfamiliar with kernel upgrades, please visit our mini-HOWTO on this subject: http://www.skolelinux.no/security/kernel-upgrade - -------------------------------------------------------------------------- For apt-get: deb ftp://ftp.skolelinux.no/skolelinux/ woody local Mailing lists: bruker@skolelinux.no, debian-edu@lists.debian.org, linuxiskolen@skolelinux.no, user@skolelinux.de, admin-discuss@skolelinux.org Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature