Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux Kernel 2.6.11.9 Released (Security Update)

Posted by timothy on from the small-change dept.

GnuTer writes "Greg KH has just announced the availability of the newest Linux kernel release, 2.6.11.9. This version fixes various local vulnerabilities and exploits. You can get it from the usual mirrors at kernel.org/mirrors."

11 of 26 comments (clear)

  1. 2.6.11.10 by jtshaw · · Score: 4, Informative

    2.6.11.10 is out as of May 16th....

  2. #oldnews by irc.goatse.cx+troll · · Score: 3, Informative

    We just got done upgrading our kernel, except we upgraded to 2.6.11.10
    Changelog: http://www.kernel.org/pub/linux/kernel/v2.6/Change Log-2.6.11.10

    --
    Pain lasts, kid. Its how you know you're alive. Sometimes I think this growing up thing is just pain management-TheMaxx
  3. i think you mean... by martinjd · · Score: 2, Interesting

    yeah, i think you mean Linux 2.6.11.10
    from the changelog:
    author Greg KH Mon, 16 May 2005 10:48:16 -0700
    committer Greg KH Mon, 16 May 2005 10:48:16 -0700

    Linux 2.6.11.10

  4. Not too clear on the requirements by Mad+Merlin · · Score: 2, Insightful

    The advisory wasn't entirely clear on who this affected, it's clear that it's an issue with reading or writing a DVD drive (from the /dev/hdc found in the code and the name of the function), but what privledges does the attacker need to use this exploit? Raw read/write to a DVD drive? Raw read only to a DVD drive? Plain read only? Anybody know for sure?

    --
    Game! - Where the stick is mightier than the sword!
  5. Only a typo. by Saiyine · · Score: 4, Insightful

    It's obviusly only a typo, as the urls link to the correct kernel version.

    Real problem are the (paid!) editors that don't even check the submissions... So forget about TFA!

    --
    Hosting 20G hd, 1Tb bw! ssh $7.95
  6. Pathetic linux development .... by bitsformoney · · Score: 3, Funny

    is basically crawling to a halt, given they're now down to increasing the fourth number in the version number .... sheesh ...

    --
    This comment is printed on 100% recycled electrons.
    1. Re:Pathetic linux development .... by Reorax · · Score: 2, Funny

      Yeah, they should increase the third number, so that they get much more work done.

      --
      This sig is only here so people stop skipping the last lines of my posts.
  7. For those on the bleeding edge by jd · · Score: 2, Interesting

    The current bleeding-edge kernel is 2.6.12-rc4-mm2, which now seems to have at least some parts of the kitchen sink included. (I've not used vanilla kernels for a long time - the patchsets are usually much more feature-rich, often just as stable, and have a certain geekiness factor.)

    --
    It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
  8. paranoia by bzipitidoo · · Score: 2, Insightful
    I downloaded 2.6.11.10 yesterday. When I saw this story, my first instant thought was that I'd been tricked, perhaps by a corrupt DNS cache that pointed me to a bogus www.kernel.org. Maybe I should actually check those digital signatures. Good thing I haven't untarred and compiled 2.6.11.10 yet.

    But now, reading all these posts that point out the story is mistaken, and should say 2.6.11.10, not 2.6.11.9, I feel much better. So, uh, how do you check those signatures?

    --
    Intellectual Property is a monopolistic, selfish, and defective concept. It is "tyranny over the mind of man"
    1. Re:paranoia by thinkliberty · · Score: 2, Informative

      You check it with:

      gpg --verify kernel.sig kernel.tar

      It's all on kernel.org's website:
      http://www.kernel.org/signature.html

  9. The real answer... by jd · · Score: 2
    ...is to add a fifth number, to reflect the number of times that version of the kernel has been downloaded. And maybe a sixth, to reflect the number of patchsets are being actively maintained in parallel with that version.


    Does anyone remember the days that pre-releases had a letter of the alphabet attached, and cycles greater than 26 before the next "real" release were not uncommon? We're only on the tenth post-release and fourth pre-release - these are nothing, compared to past cycles, and really do reflect the impressive maturity of the kernel, for all that it is still growing at incredible speed.

    --
    It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)