I've just released Linux 2.4.36.4.

This release fixes two local security issues discovered by
Al Viro who also provided these patches :
CVE-2008-1669: Fix SMP ordering hole in fcntl_setlk()
CVE-2008-1375: Fix dnotify/close race

Note that during the process, he noticed that an earlier fix
related to 1669 was already missing, so all users of 2.4 are
really encouraged to upgrade, or at least to apply those
patches to their own tree.

The patch and changelog will appear soon at the following locations:
ftp://ftp.all.kernel.org/pub/linux/kernel/v2.4/
ftp://ftp.all.kernel.org/pub/linux/k...h-2.4.36.4.bz2
ftp://ftp.all.kernel.org/pub/linux/k...geLog-2.4.36.4

Git repository:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-v2.4.36.y.git
http://www.kernel.org/pub/scm/linux/...-v2.4.36.y.git

Git repository through the gitweb interface:
http://git.kernel.org/?p=linux/kerne...-v2.4.36.y.git

Regards,
Willy
----

Summary of changes from v2.4.36.3 to v2.4.36.4
============================================

Al Viro (1):
Fix SMP ordering hole in fcntl_setlk() (CVE-2008-1669)

Willy Tarreau (2):
Fix dnotify/close race (CVE-2008-1375)
Change VERSION to 2.4.36.4

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/