Linus Torvalds has released the Linux 2.6.7 stable kernel. It fixes a security bug that allowed users with shell access to a Linux host to bring down the system. Linus announced:

"Ok, it's out there. The most notable change may be the one-liner that should fix the embarrassing FP exception problem. Other than that, we've had a random collection of fixes and updates since rc3 [story]. cifs, ntfs, cpufreq. ide, sparc, s390.

"Full 2.6.6->2.6.7 changelog available at the same places the release is."

http://www.kernel.org

It's all good (and much faster fixes than Redmond). :) At least users and admins of Linux systems do tend to apply security patches, much more than M$ users and sys admins... In our company, the IT dept are fools, they apply worm patches 4 months after their released, once the network is infected... And then pat them selves on the back once its fixed.... :rolleyes:

Linus, you are the man!

Open Source and GPL software can never be beaten by commercial apps for response time.

WAHAHHAHA, time to recompile a new kernel
this is so exciting!!

If you're using the latest fedora kernel you're using 2.6.7rc3 or something like that, could any of you kernel guys and girls enlighten the rest of us on whether this issue is solved in this?

i downloaded recompiled and it works fine for awhile, however when i execute any java code where i need jre, it keep giving me segemntation fault, gonna see if jre is the caused of it.

as for 2.6.7rc3 you might want to check the changelog on rc3 release, see if the security patch was in rc3.

i'm downloaded patch-2.6.7.bz2 from www.kernel.org. So how i install to my FC2 box, currently my kernel 2.6.6-1.427.

The current errata kernel (2.6.6-1.435) does contain this patch, not to mention most of the rest of 2.6.7rc3:

% rpm -q --changelog kernel-2.6.6-1.435 | head -16
* Sun Jun 13 2004 Arjan van de Ven <arjanv@redhat.com>

- add patch from DaveM to fix the ppp-keeps-iface-busy bug

* Sat Jun 12 2004 Arjan van de Ven <arjanv@redhat.com>

- add fix from Andi Kleen/Linus for the fpu-DoS

* Thu Jun 10 2004 Arjan van de Ven <arjanv@redhat.com>

- disable mlock-uses-rlimit patch, it has a security hole and needs more thought
- revert airo driver to the FC2 one since the new one breaks

* Tue Jun 08 2004 Dave Jones <davej@redhat.com>

- Update to 2.6.7rc3

If you're running kernel-2.6.6-1.435, you're safe for now, and do not need to compile your own kernel, unless, of course, you simply want to anyway.

By the way, Arjan's got 2.6.7 kernel RPMs in his repo now.

Oh, thanks for the tip. I was about to go get the new one. :)

perhaps you need to load misc binary support

It's always fun to do your own, as you can call it what your want in the Makefile.

If you do your own, will you loose the one you have? I am invariably mistyping. Don't laugh, I've been using Linux a month.

No, no. You jsut add another one you can choose when you boot up the machine.

Look in /boot/grub/grub.conf for examples of what you can boot. You will just add another entry in there.