Grsecurity update - 3.14.19-101

  • 3.14.19-101
    • Update to grsecurity-3.0-3.14.19-201409282024 Diff from the previous version on my Git repo


If you're running e1000 driver with intensive UDP traffic, you surely have encountered kernel panics.
I've reported the issue, which seems to be an upstream bug. Hope to see a patch soon.


It appears that pcid detection is broken on latest 3.14 tree. UDEREF will make udev segfault and make the init process exit before completing boot.
The solution to fallback on slow and weak UDEREF - which in my opinion is better than having no UDEREF at all - is to pass nopcid flag to your kernel command line.
The issue has been reported to PAX team and we're waiting for a fix :)

# dmesg | grep UDEREF 
PAX: slow and weak UDEREF enabled

As usual RPMs are available using the YUM repository, and don't hesitate to contact me if you find any issue.