View previous topic :: View next topic |
Author |
Message |
Budoka l33t
Joined: 03 Jun 2012 Posts: 777 Location: Tokyo, Japan
|
Posted: Sat Sep 07, 2013 2:03 am Post subject: Kernel Upgrade 3.10.7 [SOLVED] |
|
|
When doing an emerge I received the following message alerting me to the fact that there is a security bug in my kernel 3.8.13 and recommending upgrading to the latest stable kernel which is 3.10.7.
I have done a couple of upgrades in the past but am having difficulty this time around mostly because when I emerge Gentoo-Sources 3.10.7 doesn't come down. What am I doing wrong?
Quote: | # emerge -u gentoo-sources
* IMPORTANT: 14 news items need reading for repository 'gentoo'.
* Use eselect news to read news items.
Calculating dependencies... done!
!!! The following installed packages are masked:
- sys-kernel/gentoo-sources-3.8.13::gentoo (masked by: package.mask)
/usr/portage/profiles/package.mask:
# Tom Wijsman <TomWij@gentoo.org> (28 Aug 2013)
# Gentoo sources 3.8.13 masked due to security bug #475618: CVE-2013-1059:
# Linux Kernel Ceph NULL Pointer Dereference Denial of Service Vulnerability
#
# This kernel also contains other security bugs due to its old age (May 11).
#
# We advice users to upgrade to the new stable kernel 3.10.7; alternatively, if
# necessary, users can also choose to accept keywords and accept a kernel from
# the earlier long term stable branches (3.0.X or 3.4.Y), this might be the case
# if you have older hardware or an unfortunate stability bug on 3.10.7.
#
# You can accept keywords by adding sys-kernel/gentoo-sources to the file
# /etc/portage/package.accept_keywords after which you can run
# `emerge sys-kernel/gentoo-sources:X.Y.Z` to select a specific LTS kernel.
# When you choose to turn back to stable later, don't forget to remove that.
#
# For proprietary NVIDIA drivers users, we temporarily keep 3.9.11-r1 around
# as some of them experience problems with the new stable kernel 3.10.7; we aim
# to mask it in one of the next weeks when the new branch 3.11 is out.
#
# References:
#
# - http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1059
# - https://secunia.com/advisories/54042/
# - https://bugs.gentoo.org/show_bug.cgi?id=475618
# - https://bugs.gentoo.org/buglist.cgi?quicksearch=assignee%3Asecurity%20kernel
#
For more information, see the MASKED PACKAGES section in the emerge
man page or refer to the Gentoo Handbook.
>>> Recording sys-kernel/gentoo-sources in "world" favorites file...
>>> Auto-cleaning packages...
>>> No outdated packages were found on your system.
|
Quote: | $ equery l -p gentoo-sources
* Searching for gentoo-sources ...
[-P-] [ ~] sys-kernel/gentoo-sources-3.0.88:3.0.88
[-P-] [ ~] sys-kernel/gentoo-sources-3.0.90:3.0.90
[-P-] [ ~] sys-kernel/gentoo-sources-3.0.91:3.0.91
[-P-] [ ~] sys-kernel/gentoo-sources-3.0.92:3.0.92
[-P-] [ ~] sys-kernel/gentoo-sources-3.0.93:3.0.93
[-P-] [ ~] sys-kernel/gentoo-sources-3.0.94:3.0.94
[-P-] [ ~] sys-kernel/gentoo-sources-3.2.48:3.2.48
[-P-] [ ~] sys-kernel/gentoo-sources-3.4.55:3.4.55
[-P-] [ ~] sys-kernel/gentoo-sources-3.4.57:3.4.57
[-P-] [ ~] sys-kernel/gentoo-sources-3.4.58:3.4.58
[-P-] [ ~] sys-kernel/gentoo-sources-3.4.59:3.4.59
[-P-] [ ~] sys-kernel/gentoo-sources-3.4.60:3.4.60
[IP-] [M ] sys-kernel/gentoo-sources-3.8.13:3.8.13
[-P-] [ ~] sys-kernel/gentoo-sources-3.9.11-r1:3.9.11-r1
[-P-] [ ] sys-kernel/gentoo-sources-3.10.7:3.10.7
[-P-] [ ~] sys-kernel/gentoo-sources-3.10.8:3.10.8
[-P-] [ ~] sys-kernel/gentoo-sources-3.10.9:3.10.9
[-P-] [ ~] sys-kernel/gentoo-sources-3.10.10:3.10.10
[-P-] [ ~] sys-kernel/gentoo-sources-3.11.0:3.11.0
|
Quote: | $ eselect kernel list
Available kernel symlink targets:
[1] linux-3.8.4-gentoo
[2] linux-3.8.13-gentoo *
|
I use genkernel to configure, compile, and initramfs. Do I need to manually download the new kernel source. I haven't had to do that in the past. It just came down in gentoo-sources.
I use the following 2 wiki's to upgrade.
http://www.gentoo.org/doc/en/kernel-upgrade.xml
http://wiki.gentoo.org/wiki/Kernel/Upgrade
Last edited by Budoka on Mon Sep 16, 2013 5:03 am; edited 1 time in total |
|
Back to top |
|
|
VoidMage Watchman
Joined: 14 Oct 2006 Posts: 6196
|
Posted: Sat Sep 07, 2013 7:08 am Post subject: |
|
|
What happens when you explicitly 'emerge -1 =sys-kernel/gentoo-sources-3.10.7' ? |
|
Back to top |
|
|
Budoka l33t
Joined: 03 Jun 2012 Posts: 777 Location: Tokyo, Japan
|
Posted: Mon Sep 09, 2013 2:59 am Post subject: |
|
|
VoidMage wrote: | What happens when you explicitly 'emerge -1 =sys-kernel/gentoo-sources-3.10.7' ? |
I wasn't sure if I should do that because thought it should down in the gentoo-sources because it is the new stable version?
Anyway when I do that nothing happens.
Code: | # emerge -1 =sys-kernel/gentoo-sources-3.10.7
* IMPORTANT: 14 news items need reading for repository 'gentoo'.
* Use eselect news to read news items.
Calculating dependencies... done!
>>> Auto-cleaning packages...
>>> No outdated packages were found on your system.
|
|
|
Back to top |
|
|
fturco Veteran
Joined: 08 Dec 2010 Posts: 1181 Location: Italy
|
Posted: Mon Sep 09, 2013 7:33 am Post subject: |
|
|
Not related to your problem, but if I were you I would read Portage news with eselect as emerge says. Just to be sure you are not missing something important. |
|
Back to top |
|
|
Budoka l33t
Joined: 03 Jun 2012 Posts: 777 Location: Tokyo, Japan
|
Posted: Mon Sep 16, 2013 4:56 am Post subject: |
|
|
fturco wrote: | Not related to your problem, but if I were you I would read Portage news with eselect as emerge says. Just to be sure you are not missing something important. |
Thanks. I did as you suggested. |
|
Back to top |
|
|
Budoka l33t
Joined: 03 Jun 2012 Posts: 777 Location: Tokyo, Japan
|
Posted: Mon Sep 16, 2013 5:03 am Post subject: |
|
|
I want to thank everyone for their time and assistance. After banging my head against a wall for the past couple of weeks trying to figure this out, I discovered it was a problem of my own making. When I had a kernel problem in a past thread I was instructed to Jaglover wrote: | Another option is to put Code: | EMERGE_DEFAULT_OPTS="--exclude gentoo-sources" | into make.conf, it lets you manage kernel sources by hand. | and had forgotten about it. I un-commented it and was able to successfully upgrade kernel. My apologies for being a bone head. |
|
Back to top |
|
|
|