[Ksplice][Ubuntu 10.04 Updates] New updates available via Ksplice (2.6.32-23.37)

[Anders Kaseorg]

Synopsis: 2.6.32-23.37 can now be patched using Ksplice

Systems running Ubuntu 10.04 Lucid can now use Ksplice to patch against
the latest Ubuntu kernel update, 2.6.32-23.37.


INSTALLING THE UPDATES

We recommend that all Ksplice Uptrack Ubuntu 10.04 Lucid users install
these updates.  You can install these updates by running:

# uptrack-upgrade -y


DESCRIPTION

* NULL pointer dereference in readahead with btrfs.

The btrfs filesystem may trigger a NULL pointer dereference in
page_cache_sync_readahead, leading to denial of service.


* Denial of service in CIFS with remote OS/2 server.

When writing to a remote OS/2 server with the CIFS network filesystem,
invalid data returned from the server may trigger a kernel BUG,
leading to denial of service.


* Race condition in inotify watch addition/removal.

A race condition between inotify_new_watch and inotify_rm_watch may
cause a use-after-free or double-free of an fsnotify mark structure,
leading to denial of service.


* Resource leak in inotify release.

A user_struct is leaked in inotify_free_group_priv, possibly leading
to denial of service.


SUPPORT

Ksplice support is available at support at ksplice.com or +1 765-577-5423.