-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] Slackware 8.1 kernel security update (SSA:2004-008-01) New kernels are available for Slackware 8.1 containing a backported fix from a bounds-checking problem in the kernel's mremap() call which could be used by a local attacker to gain root privileges. This fix was previously issued for Slackware 9.0, 9.1, and -current (SSA:2004-006-01). Sites running Slackware 8.1 should upgrade to the new kernel. After installing the new kernel, be sure to run 'lilo'. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0985 Here are the details from the Slackware 8.1 ChangeLog: +--------------------------+ Thu Jan 8 18:21:27 PST 2004 patches/kernels/*: These are 2.4.18 kernels containing a backported fix for a security problem with the kernel's mremap() function. A local user could exploit this hole to gain root privileges. For more details, see: