On 27/02/17 13:28, Jacco Ligthart wrote:
Hi all,
in the end CVE-2017-6074 was fixed in 4.4.52 and 4.9.13
I also noticed that upstream raspberry repo moved to 4.9. So I did a build of that for raspberry2 (armv5). First result is, that the current spec file can be used with 'normal' changes. Just updating the code blobs and the version number resulted in a booting raspberry2 kernel. (hmm, now I think of it I tested only on a raspberry 3)
I guess this should be similar for armv7
next test: does it also work for raspberry version 1 :)
https://buildlogs.centos.org/centos/7/kernel/armhfp/kernel-rpi2/Packages/ : already built 4.9.13 for raspberrypi :-) (and generic kernel is now being built too)
In parallel I've built linux-firmware as there is now the needed broadcom fw for wifi in the pi3 (http://git.kernel.org/cgit/linux/kernel/git/firmware/linux-firmware.git/tree...) Those linux-firmware packages are now sent to signing queue so will appear on mirror.centos.org soon (hopefully)