[CentOS-virt] Xen kernel-3.18.25-18 for EL6 and EL7 (CVE-2016-0728)

Tue Jan 19 23:22:29 UTC 2016
Johnny Hughes <johnny at centos.org>

There is now a kernel-3.18.25-18 that fixes CVE-2016-0728 (and upgrades
to the lastest 3.18  LTS kernel) for Xen4CentOS users.

This kernel can be tested from here:

http://cbs.centos.org/repos/virt6-xen-common-testing/x86_64/os/Packages/
(CentOS-6)

and here:

http://cbs.centos.org/repos/virt7-xen-common-testing/x86_64/os/Packages/
(CentOS-7)

Once we get several tested installs we can move this to released.  For
more info on CVE-2016-0728:

http://bit.ly/1nifPm4

There is info in the above link on testing the vulnerability is fixed ..
see the code under 'Triggering the bug from userspace is fairly
straightforward, as we can see in the following code snippet'.

Reports that the kernel works, and that the CVE-2016-0728 issue is
tested (before and after installing the new kernel) would be greatly
appreciated on this thread.

The following changelogs are also applicable in a upgrade from the
current 3.18.21-17 release and this 3.18.25-18 release:

https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.25

https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.24

https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.23

https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.22

Thanks.
Johnny Hughes

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos-virt/attachments/20160119/bbc0ea49/attachment-0005.sig>