Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Date: Sun, 13 Mar 2011 04:23:23 +0300
From: Solar Designer <>
Subject: Owl-current & 3.0-stable 2011/03/12 snapshots


A new snapshot of Owl-current is available on the mirrors.  As usual,
this includes ISOs, OpenVZ container templates, RPMs, and sources.  The
ISOs may be downloaded via direct links from the Owl homepage:

With the OpenSSL update to 1.0.0d included in this snapshot, Owl-current
has finally deviated from Owl 3.0 and RHEL4 binary compatibility (moving
towards RHEL6 binary compatibility).  Besides OpenSSL, we've updated
vsftpd to 2.3.4 (remote DoS vulnerability fix, CVE-2011-0762),
patchutils to 0.3.2, and the Linux kernel to OpenVZ's latest "RHEL5
testing" one (-238.5.1.el5.028stab085.2) with our usual changes.

The Owl-current specific bug in checksum calculation of fragmented ICMP
echo request datagrams reported by Piotr Meyer in here has been fixed
(thank you, Piotr and Vasiliy!), and the eepro100 NIC driver has been
disabled in favor of e100.

As usual, these changes are documented in a bit more detail here:

At the same time, we've released the first pre-compiled snapshot of Owl
3.0-stable.  Compared to the 3.0 release, Owl 3.0-stable 2011/03/12
corrects a VIM packaging error, a vulnerability in the patch(1) program
(CVE-2010-4651), two vulnerabilities in OpenSSL (CVE-2010-4180,
CVE-2009-0590), which were at worst of moderate severity, and it updates
vsftpd to 2.3.4 (CVE-2011-0762 fix) and patchutils to 0.3.2.

The 3.0-stable snapshot is similarly complete (ISOs, vztemplates, RPMs,
sources), with its ISOs linked directly from the Owl homepage.

The Owl 3.0-stable change log is now available here:

Any feedback is welcome.


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.