/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.146 - (hide annotations) (download)
Sun Apr 29 11:22:18 2007 UTC (7 years, 4 months ago) by phreak
Branch: MAIN
Changes since 1.145: +6 -1 lines
Fixing the included grsecurity patch, wasn't alligning due to the Index: header line(s).
(Portage version: 2.1.2.5)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 opfer 1.130 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 phreak 1.146 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.145 2007/04/29 09:18:00 phreak Exp $
4    
5     29 Apr 2007; Christian Heim <phreak@gentoo.org>
6     hardened-sources-2.6.20-r2.ebuild:
7     Fixing the included grsecurity patch, wasn't alligning due to the Index:
8     header line(s).
9 phreak 1.145
10     29 Apr 2007; Christian Heim <phreak@gentoo.org>
11     hardened-sources-2.6.20-r2.ebuild:
12     Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
13 armin76 1.144
14     *hardened-sources-2.6.20-r2 (10 Apr 2007)
15    
16     10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
17     +hardened-sources-2.6.20-r2.ebuild:
18     Version bump, on behalf of phreak
19 phreak 1.143
20     *hardened-sources-2.6.20-r1 (04 Apr 2007)
21    
22     04 Apr 2007; Christian Heim <phreak@gentoo.org>
23     +hardened-sources-2.6.20-r1.ebuild:
24     Revision bump, grabbing a newer grsecurity snapshot.
25 phreak 1.142
26     *hardened-sources-2.6.20 (25 Mar 2007)
27    
28     25 Mar 2007; Christian Heim <phreak@gentoo.org>
29     +hardened-sources-2.6.20.ebuild:
30     Finally a hardened-sources version for 2.6.20; many people have been waiting
31     for this. Thanks to Steve for preliminary testing, thanks to Ned for the
32     testbox.
33 chainsaw 1.141
34     16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
35     hardened-sources-2.6.18-r6.ebuild:
36     Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
37 phreak 1.140
38     *hardened-sources-2.6.18-r6 (16 Mar 2007)
39    
40     16 Mar 2007; Christian Heim <phreak@gentoo.org>
41     -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
42     Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
43     yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
44     supposed to be.
45 phreak 1.139
46     06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
47     Fixing the Manifest, the previous one was broken (as in still had the
48     deleted ebuild in it).
49 phreak 1.138
50     06 Mar 2007; Christian Heim <phreak@gentoo.org>
51     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
52     +hardened-sources-2.6.18-r5.ebuild:
53     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
54     Linux 2.6.18.8. Also cleaning up the older version.
55    
56     *hardened-sources-2.6.18-r5 (06 Mar 2007)
57    
58     06 Mar 2007; Christian Heim <phreak@gentoo.org>
59     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
60     +hardened-sources-2.6.18-r5.ebuild:
61     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
62     Linux 2.6.18.8. Also cleaning up the older version.
63 phreak 1.137
64     24 Feb 2007; Christian Heim <phreak@gentoo.org>
65     -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
66     -hardened-sources-2.6.19-r5.ebuild:
67     Removing some of the old version, that didn't work.
68 phreak 1.136
69     *hardened-sources-2.6.19-r6 (12 Feb 2007)
70    
71     12 Feb 2007; Christian Heim <phreak@gentoo.org>
72     +hardened-sources-2.6.19-r6.ebuild:
73     Revision bump, including a new grsec version fixing #166235.
74 pappy 1.134
75     *hardened-sources-2.4.34 (24 Jan 2007)
76    
77     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
78 pappy 1.135 Manifest:
79     updating Manifest with checksums of new tarball and ebuild
80    
81     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
82 pappy 1.134 +hardened-sources-2.4.34.ebuild:
83     I added new hardened sources 2.4 update, this is a critical path
84     security bugfix - all users of h-s are strongly advised
85     to update their existing hardened sources to this version.
86     It contains a fix for a kernel vulnerability that is pertaining
87     to the PaX changes to virtual memory management, possibly leading
88     to a local kernel exploit ... see grsecurity.net forums and homepage
89 phreak 1.133
90     23 Jan 2007; Christian Heim <phreak@gentoo.org>
91     files/digest-hardened-sources-2.6.19-r5, Manifest:
92     Fixing the patch-tarball digest.
93 phreak 1.132
94     *hardened-sources-2.6.19-r5 (23 Jan 2007)
95    
96     23 Jan 2007; Christian Heim <phreak@gentoo.org>
97     +hardened-sources-2.6.19-r5.ebuild:
98     Revision bump, closing the recently discovered PaX expand_stack()
99     vulnerability.
100 phreak 1.131
101     *hardened-sources-2.6.19-r4 (14 Jan 2007)
102    
103     14 Jan 2007; Christian Heim <phreak@gentoo.org>
104     +hardened-sources-2.6.19-r4.ebuild:
105     Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
106     dropping the randomized PID feature.
107 opfer 1.130
108     11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
109     hardened-sources-2.4.33.4.ebuild:
110     stable x86, bug #161171
111 phreak 1.129
112     *hardened-sources-2.6.19-r3 (27 Dec 2006)
113    
114     27 Dec 2006; Christian Heim <phreak@gentoo.org>
115     -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
116     Revision bump for bug #157186 and #158786.
117 phreak 1.128
118     *hardened-sources-2.6.18-r4 (27 Dec 2006)
119    
120     27 Dec 2006; Christian Heim <phreak@gentoo.org>
121     -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
122     Revision bump for bug #157186.
123 phreak 1.127
124     *hardened-sources-2.6.19-r2 (23 Dec 2006)
125    
126     23 Dec 2006; Christian Heim <phreak@gentoo.org>
127     -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
128     Revision bump to pull in genpatches-2.6.19-3 for #157186.
129 phreak 1.126
130     17 Dec 2006; Christian Heim <phreak@gentoo.org>
131     hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
132     hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
133     hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
134     hardened-sources-2.6.19-r1.ebuild:
135     Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
136     adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
137 pappy 1.125
138     *hardened-sources-2.4.33.4 (17 Dec 2006)
139    
140     17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
141     +hardened-sources-2.4.33.4.ebuild:
142     new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
143     and quilting
144 phreak 1.124
145     *hardened-sources-2.6.19-r1 (14 Dec 2006)
146    
147     14 Dec 2006; Christian Heim <phreak@gentoo.org>
148     -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
149     Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
150     for reporting).
151 phreak 1.123
152     *hardened-sources-2.6.19 (13 Dec 2006)
153    
154     13 Dec 2006; Christian Heim <phreak@gentoo.org>
155     +hardened-sources-2.6.19.ebuild:
156     And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
157     Brad for providing that prompt update.
158 phreak 1.122
159     *hardened-sources-2.6.18-r3 (13 Dec 2006)
160    
161     13 Dec 2006; Christian Heim <phreak@gentoo.org>
162     -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
163     +hardened-sources-2.6.18-r3.ebuild:
164     Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
165     S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
166 phreak 1.121
167     09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
168     Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
169 nixnut 1.120
170     08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
171     Stable on ppc wrt bug 157356
172 opfer 1.119
173     07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
174     hardened-sources-2.6.18.ebuild:
175     stable x86, bug #157356
176 phreak 1.118
177     *hardened-sources-2.6.18-r2 (06 Dec 2006)
178    
179     06 Dec 2006; Christian Heim <phreak@gentoo.org>
180     +hardened-sources-2.6.18-r2.ebuild:
181     Revision bump, including 2.6.18.5 (via genpatches) and
182     4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
183     Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
184     redesign.
185 phreak 1.117
186     06 Dec 2006; Christian Heim <phreak@gentoo.org>
187     hardened-sources-2.6.18.ebuild:
188     Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
189     of Mike Doty).
190 phreak 1.116
191     *hardened-sources-2.6.18-r1 (23 Nov 2006)
192    
193     23 Nov 2006; Christian Heim <phreak@gentoo.org>
194     +hardened-sources-2.6.18-r1.ebuild:
195     Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
196 phreak 1.115
197     *hardened-sources-2.6.18 (11 Nov 2006)
198    
199     11 Nov 2006; Christian Heim <phreak@gentoo.org>
200     +hardened-sources-2.6.18.ebuild:
201     Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
202 solar 1.114
203     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
204     - mark amd64 stable also. bug #151877
205 solar 1.113
206     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
207     - mark 2.6.17-r1 stable
208 phreak 1.112
209     27 Aug 2006; Christian Heim <phreak@gentoo.org>
210     -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
211     Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
212 phreak 1.111
213     *hardened-sources-2.6.17-r1 (26 Aug 2006)
214    
215     26 Aug 2006; Christian Heim <phreak@gentoo.org>
216     +hardened-sources-2.6.17-r1.ebuild:
217     Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
218     grsecurity patch.
219 phreak 1.110
220     *hardened-sources-2.6.17 (17 Aug 2006)
221    
222     17 Aug 2006; Christian Heim <phreak@gentoo.org>
223     +hardened-sources-2.6.17.ebuild:
224     Bumping the hardened-sources-2.6 series to 2.6.17, using
225     genpatches-2.6.17-6.base.
226 solar 1.109
227     07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
228     - stable on x86 and amd64
229 solar 1.108
230     *hardened-sources-2.6.16-r11 (15 Jul 2006)
231    
232     15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
233     -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
234     -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
235     -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
236     - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
237     crusty ebuilds
238 johnm 1.107
239     14 Jul 2006; John Mylchreest <johnm@gentoo.org>
240     hardened-sources-2.6.16-r10.ebuild:
241     marking stable on x86 and amd64
242 solar 1.106
243     13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
244     - 2.4.32-r6 stable on x86. RSBAC state unknown
245 kang 1.105
246     *hardened-sources-2.4.32-r7 (10 Jul 2006)
247    
248     10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
249     +hardened-sources-2.4.32-r7.ebuild:
250     Bump PaX for RSBAC to test-17
251 johnm 1.104
252     *hardened-sources-2.6.16-r9 (03 Jul 2006)
253    
254     03 Jul 2006; John Mylchreest <johnm@gentoo.org>
255     -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
256     hardened-sources-2.6.16 bump to latest -base.
257 solar 1.103
258     *hardened-sources-2.4.32-r6 (30 Jun 2006)
259    
260     30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
261     hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
262     - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
263     sysctl controlable resource logging
264 johnm 1.102
265     *hardened-sources-2.6.16-r7 (05 Jun 2006)
266    
267     05 Jun 2006; John Mylchreest <johnm@gentoo.org>
268     -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
269     push new 2.6.16 release in preparation for stable
270 solar 1.101
271     22 May 2006; <solar@gentoo.org> :
272     - redigest bug 134002
273 kang 1.100
274     *hardened-sources-2.4.32-r5 (16 May 2006)
275    
276     16 May 2006; Guillaume Destuynder <kang@gentoo.org>
277     +hardened-sources-2.4.32-r5.ebuild:
278     Fixes rsbac common patching (new patch in new -r5 patchset)
279 solar 1.99
280     *hardened-sources-2.4.32-r4 (13 May 2006)
281    
282     13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
283     +hardened-sources-2.4.32-r4.ebuild:
284     - security bumps
285 johnm 1.98
286     *hardened-sources-2.6.16-r6 (03 May 2006)
287    
288     03 May 2006; John Mylchreest <johnm@gentoo.org>
289     +hardened-sources-2.6.16-r6.ebuild:
290     bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
291 johnm 1.97
292     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
293     hardened-sources-2.6.14-r8.ebuild:
294     fix x86_64 build problem, this will delay the digest issue again for a short
295     while but it will sort itself out
296 johnm 1.96
297     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
298     hardened-sources-2.6.14-r8.ebuild:
299     bump hardened patchset
300 antarus 1.94
301     27 Apr 2006; Alec Warner <antarus@gentoo.org>
302     files/digest-hardened-sources-2.4.32-r2,
303     files/digest-hardened-sources-2.4.32-r3,
304     files/digest-hardened-sources-2.6.14-r8, Manifest:
305     Fixing duff SHA256 digests: Bug # 131293
306 johnm 1.93
307 johnm 1.95 *hardened-sources-2.6.16-r5 (27 Apr 2006)
308    
309     27 Apr 2006; John Mylchreest <johnm@gentoo.org>
310     -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
311     -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
312     stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
313     cleanup of old uneccessary sources
314    
315 johnm 1.93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
316     fix digest
317 johnm 1.92
318     *hardened-sources-2.6.14-r8 (20 Apr 2006)
319    
320     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
321     +hardened-sources-2.6.14-r8.ebuild:
322     fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
323 johnm 1.91
324     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
325     Turning on gpg-signing again, and recomitting
326 johnm 1.90
327     *hardened-sources-2.6.16-r4 (20 Apr 2006)
328    
329     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
330     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
331     +hardened-sources-2.6.16-r4.ebuild:
332     Fix numerous security vulns
333 solar 1.89
334     *hardened-sources-2.4.32-r3 (16 Apr 2006)
335    
336     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
337     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
338     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
339     - security bump for bug #112791. Removed old ebuilds
340 johnm 1.88
341     *hardened-sources-2.6.16-r3 (15 Apr 2006)
342    
343     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
344     +hardened-sources-2.6.16-r3.ebuild:
345     Removing silly localversion which I missed
346 johnm 1.87
347     *hardened-sources-2.6.14-r7 (14 Apr 2006)
348    
349     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
350     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
351     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
352 johnm 1.86
353     *hardened-sources-2.6.16-r2 (13 Apr 2006)
354    
355     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
356     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
357     +hardened-sources-2.6.16-r2.ebuild:
358     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
359     labels, dropping USERGROUP define fixes, since these were merged mainstream.
360 johnm 1.85
361     *hardened-sources-2.6.16-r1 (11 Apr 2006)
362    
363     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
364     +hardened-sources-2.6.16-r1.ebuild:
365     Bumping to include ppc build fix and 2.6.16.3
366 tsunam 1.84
367     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
368     hardened-sources-2.6.14-r6.ebuild:
369     Stable on x86; bug #127718
370 johnm 1.83
371     *hardened-sources-2.6.16 (31 Mar 2006)
372    
373     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
374     +hardened-sources-2.6.16.ebuild:
375     Bumping to new version of grsec, and kernel base. New squashfs. Based on
376     2.6.16.1
377 cryos 1.82
378     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
379     hardened-sources-2.6.14-r6.ebuild:
380     Stable on amd64, bug 127718.
381 nixnut 1.81
382     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
383     Stable on ppc. Bug #127718
384 johnm 1.80
385     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
386     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
387     -hardened-sources-2.6.14-r4.ebuild:
388     Cleanup.
389 johnm 1.79
390     *hardened-sources-2.6.14-r6 (15 Mar 2006)
391    
392     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
393     +hardened-sources-2.6.14-r6.ebuild:
394     Fixes grsec policy recreation bug and adds a
395     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
396 solar 1.78
397     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
398     - stable on x86
399 hansmi 1.77
400     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
401     hardened-sources-2.6.14-r5.ebuild:
402     Stable on ppc.
403 johnm 1.76
404     *hardened-sources-2.6.14-r5 (01 Feb 2006)
405    
406     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
407     +hardened-sources-2.6.14-r5.ebuild:
408     fixing every known exploit
409 solar 1.75
410     *hardened-sources-2.4.32-r2 (26 Jan 2006)
411    
412     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
413     +hardened-sources-2.4.32-r2.ebuild:
414     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
415 solar 1.74
416     *hardened-sources-2.6.14-r4 (12 Jan 2006)
417    
418     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
419     - version bump for new genpatches which fix up a few sec holes
420 solar 1.73
421     *hardened-sources-2.4.32-r1 (05 Jan 2006)
422    
423     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
424     - revision bump to add misc vital linux kernel security patches.
425 johnm 1.72
426     *hardened-sources-2.6.14-r3 (30 Dec 2005)
427    
428     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
429     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
430     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
431 johnm 1.71
432     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
433     hardened-sources-2.6.14-r2.ebuild:
434     making x86 & amd64 stable following testing.
435 johnm 1.70
436     *hardened-sources-2.6.14-r2 (27 Dec 2005)
437    
438     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
439     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
440     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
441     network hooks.
442 johnm 1.69
443     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
444     hardened-sources-2.6.14-r1.ebuild:
445     bumping to stable early for sec fix on x86 & amd64
446 johnm 1.68
447     *hardened-sources-2.6.14-r1 (05 Dec 2005)
448    
449     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
450     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
451     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
452 solar 1.67
453     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
454     - stable on x86 security bug #114227 CAN-2005-3257
455 kang 1.66
456     *hardened-sources-2.4.32 (19 Nov 2005)
457    
458     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
459     +hardened-sources-2.4.32.ebuild:
460     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
461     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
462     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
463     rsbac >> /etc/portage/package.use)
464 johnm 1.65
465     *hardened-sources-2.6.14 (14 Nov 2005)
466    
467     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
468     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
469     Bumping 2.6 series to 2.6.14.2
470 johnm 1.64
471     *hardened-sources-2.6.13-r2 (20 Oct 2005)
472    
473     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
474     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
475     +hardened-sources-2.6.13-r2.ebuild:
476     Fixes minor build error in ppc.
477 johnm 1.63
478     *hardened-sources-2.6.13-r1 (17 Oct 2005)
479    
480     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
481     +hardened-sources-2.6.13-r1.ebuild:
482     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
483     2.6.13.4, fixes some major amd64 stability problems.
484 johnm 1.62
485     *hardened-sources-2.6.13 (16 Sep 2005)
486    
487     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
488     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
489     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
490     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
491     users should test this thoroughly.
492 solar 1.61
493     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
494     - stable on x86
495 johnm 1.60
496     *hardened-sources-2.6.11-r15 (27 Jun 2005)
497    
498     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
499     +hardened-sources-2.6.11-r15.ebuild:
500     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
501     grsec redefining curr_ip struct.
502 solar 1.59
503     *hardened-sources-2.4.31 (20 Jun 2005)
504    
505     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
506     initial import of 2.4.31 tree
507 johnm 1.58
508     *hardened-sources-2.6.11-r14 (14 Jun 2005)
509    
510     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
511     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
512     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
513     naming scheme to abide by genpatches
514 johnm 1.57
515     *hardened-sources-2.6.11-r13 (18 May 2005)
516    
517     18 May 2005; John Mylchreest <johnm@gentoo.org>
518     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
519     Managed to mangle the Makefile patch from grsec, to miss out the grsec
520     target. sorry about that. Fixes bug #93022
521 johnm 1.56
522     *hardened-sources-2.6.11-r12 (17 May 2005)
523    
524     17 May 2005; John Mylchreest <johnm@gentoo.org>
525     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
526     +hardened-sources-2.6.11-r12.ebuild:
527     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
528     merges in genpatches-base
529 johnm 1.55
530     *hardened-sources-2.6.11-r12 (17 May 2005)
531    
532     17 May 2005; John Mylchreest <johnm@gentoo.org>
533     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
534     +hardened-sources-2.6.11-r12.ebuild:
535     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
536     merges in genpatches-base
537 solar 1.54
538     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
539     -files/2.4.27-cmdline-race.patch,
540     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
541     -files/2.4.28-grsec-binfmt_a.out.patch,
542     -files/2.4.28-grsec-cmdline-race.patch,
543     -files/2.4.28-selinux-binfmt_a.out.patch,
544     -files/2.4.28-selinux-cmdline-race.patch,
545     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
546     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
547     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
548     cleanup..
549 solar 1.53
550     *hardened-sources-2.4.30-r1 (21 Apr 2005)
551    
552     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
553     - disable aout by default
554 solar 1.52
555     *hardened-sources-2.4.30 (18 Apr 2005)
556    
557     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
558     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
559     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
560     use
561 tocharian 1.50
562 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
563    
564     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
565     +hardened-sources-2.4.29.ebuild:
566     New hardened-patches-2.4-29.0 patchball.
567     Removed SELinux support, upgraded GRSecurity to 2.1.4.
568    
569     *hardened-sources-2.4.28-r5 (06 Mar 2005)
570    
571     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
572     +hardened-sources-2.4.28-r5.ebuild:
573     Added a fix for a PaX vulnerability.
574    
575     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
576 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
577     Stable on x86
578 solar 1.49
579     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
580     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
581     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
582     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
583     - fixed/added RDEPEND= in all kernel-2 ebuilds
584 tocharian 1.48
585     *hardened-sources-2.4.28-r4 (21 Jan 2005)
586    
587     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
588     +hardened-sources-2.4.28-r4.ebuild:
589     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
590     backport of neighbour hash updates.
591 tocharian 1.47
592     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
593     hardened-sources-2.4.28-r3.ebuild:
594     Stable on x86
595 tseng 1.46
596     *hardened-sources-2.6.10-r3 (20 Jan 2005)
597    
598     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
599     +hardened-sources-2.6.10-r3.ebuild:
600     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
601     in 2005.0
602 tocharian 1.45
603     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
604     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
605     hardened-sources-2.4.28-r2.ebuild:
606     Mark stable on x86
607 tocharian 1.44
608     *hardened-sources-2.4.28-r3 (17 Jan 2005)
609    
610     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
611     +hardened-sources-2.4.28-r3.ebuild:
612     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
613 tocharian 1.43
614     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
615     hardened-sources-2.4.28.ebuild:
616     Mark stable on x86.
617 tocharian 1.42
618     *hardened-sources-2.4.28-r2 (13 Jan 2005)
619    
620     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
621     +hardened-sources-2.4.28-r2.ebuild:
622     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
623     Mazinger for grsecurity patches as well.
624 plasmaroo 1.41
625     *hardened-sources-2.4.28-r1 (23 Dec 2004)
626    
627     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
628     Security bump. Thank tocharian for rolling a new patchset...
629 solar 1.40
630     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
631     +files/2.4.28-grsec-cmdline-race.patch,
632     +files/2.4.28-selinux-binfmt_a.out.patch,
633     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
634     - Round up remaining security patches that appear to be missing in 2.4.28. -
635     PaX standalone updated to current. hgpv=28.1
636 solar 1.39
637     *hardened-sources-2.4.28 (28 Nov 2004)
638    
639     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
640     security bump. Thank tocharian for rolling a new patchset
641 scox 1.31
642 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
643    
644     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
645     +hardened-sources-2.4.27-r3.ebuild:
646     Applies the new 2.4-27.2 patchball which updates
647     GRSecurity to the 2.0.1 version.
648    
649 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
650    
651     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
652     +hardened-sources-2.4.27-r2.ebuild:
653     Version bump.
654     This version uses the new 2.4-27.1 patchball which updates
655     both the SELinux PaX hooks patch and the SELinux headers.
656    
657 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
658    
659     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
660     +hardened-sources-2.4.27-r1.ebuild,
661     -hardened-sources-2.4.27.ebuild,
662     +files/2.4.27-cmdline-race.patch:
663     Version bump, fix for cmdline race. See bug #59905.
664    
665     *hardened-sources-2.4.26-r6 (09 Aug 2004)
666    
667     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
668     +hardened-sources-2.4.26-r6.ebuild,
669     -hardened-sources-2.4.26-r5.ebuild,
670     -hardened-sources-2.4.26-r4.ebuild,
671     +files/2.4.26-cmdline-race.patch:
672     Version bump, fix for cmdline race. See bug #59905.
673    
674 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
675    
676     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
677     +hardened-sources-2.4.27.ebuild,
678     +files/2.4.27-CAN-2004-0394.patch:
679     Ported the patchball to the 2.4.27 kernel version.
680    
681 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
682    
683     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
684     +hardened-sources-2.4.26-r5.ebuild:
685 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
686 scox 1.34 It adds the following features:
687     - Squashfs
688     - Ebtables
689     - Netdev random (core+drivers)
690     - Watchdog Timer (WDT) fix.
691    
692 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
693    
694     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
695     +hardened-sources-2.4.26-r4.ebuild,
696     +files/2.4.26-CAN-2004-0415.patch,
697     -hardened-sources-2.4.26-3:
698     Version bump, fix for CAN 0415, see bug #59378.
699    
700 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
701    
702     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
703     +hardened-sources-2.4.26-r3.ebuild,
704     +files/2.4.26-CAN-2004-0497.patch,
705     -hardened-sources-2.4.26-r2.ebuild:
706     Version bump, fixed CAN 0497, see bug #56171.
707    
708 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
709    
710     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
711 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
712 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
713     +files/2.4.26-CAN-2004-0535.patch,
714     -hardened-sources-2.4.26-r1.ebuild:
715     Fixes for both CAN 0495 and 0535, see bug #54976
716 pvdabeel 1.27
717 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
718     hardened-sources-2.4.26-r1.ebuild:
719     QA - fix use invocation
720 scox 1.28
721     *hardened-sources-2.4.26-r1 (22 June 2004)
722    
723     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
724     +hardened-sources-2.4.26-r1.ebuild,
725     +files/2.4.26-CAN-2004-0394.patch,
726     +files/2.4.26-signal-race.patch,
727     -hardened-sources-2.4.26.ebuild,
728     -hardened-sources-2.4.24-r3.ebuild:
729     Version bump for the CAN-2004-0394 issue and bug #53804
730     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
731    
732    
733 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
734     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
735     Masked hardened-sources-2.4.26.ebuild broken for ppc
736    
737     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
738     hardened-sources-2.4.24-r3.ebuild:
739     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
740 plasmaroo 1.25
741 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
742    
743     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
744     +hardened-sources-2.4.26.ebuild:
745     Updated hardened-sources for the 2.4.26 kernel
746     Removed broken components, updated almost everything.
747    
748 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
749    
750     17 Apr 2004; <plasmaroo@gentoo.org>
751     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
752     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
753     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
754     +hardened-sources-2.4.24-r3.ebuild:
755     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
756     vulnerabilities. Old revisions removed.
757 plasmaroo 1.24
758     *hardened-sources-2.4.24-r2 (15 Apr 2004)
759    
760     15 Apr 2004; <plasmaroo@gentoo.org>
761     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
762     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
763     Version bump for the CAN-2004-0109 issue; bug #47881.
764 aliz 1.23
765     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
766     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
767     Add eutils to inherit.
768 plasmaroo 1.22
769     *hardened-sources-2.4.24-r1 (19 Feb 2004)
770    
771     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
772     files/hardened-sources-2.4.24.munmap.patch:
773     Added the patch for the mremap/munmap vulnerability. Bug #42024.
774 scox 1.19
775 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
776 scox 1.26
777 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
778     hardened-sources-2.4.24.ebuild:
779     Version bump, updated most of the components.
780     This release includes the following:
781    
782     - Hardened security
783     - Netfilter patch-o-matic 20031219
784     - FreeSWAN 2.04 & x509 1.4.8
785     - EVMS 2.2.2
786     - XFS 1.3.1
787     - cryptoloop jari
788     - grsecurity 2.0-rc4
789     - SELinux
790     - PaX 200402060000
791     - PaX Obscurity 200308302223
792     - Others...
793    
794     Neither -ck nor systrace are included anymore.
795    
796 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
797    
798     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
799     hardened-sources-2.4.22-r2.ebuild:
800 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
801 scox 1.19
802     *hardened-sources-2.4.22-r1 (02 Dec 2003)
803 iggy 1.17
804     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
805 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
806 iggy 1.16
807     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
808 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
809     Version bump for the 'do_brk' vulnerability.
810 iggy 1.15
811     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
812     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
813     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
814     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
815 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
816 frogger 1.14
817     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
818     hardened-sources-2.4.22.ebuild:
819 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
820     components. These are no longer handled in the kernel
821     so this code was not necessary.
822 frogger 1.13
823     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
824     New 2.4.22 based hardened-sources thanks to
825     Phil West <p.west@computer.org>.
826    
827     These sources include:
828 plasmaroo 1.18 - New SELinux API
829     - Updated CK-base
830     - Updated GRSec
831     - Systrace
832     - SuperFreeS/WAN 1.99.8
833     - Propolice kernel build support
834     - EVMS
835     - Other various security related patches
836 frogger 1.11
837 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
838    
839     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
840     Updated hardened-sources based on the 2.4.21 Linux kernel.
841     This includes updates to most major components such as:
842 plasmaroo 1.18 - ck-base-0306300059
843     - selinux-2.4-2003071106
844     - grsecurity-2.0-rc1
845     - Updated IPTables patch-o-matic
846     - Updated SuperFreeS/WAN
847    
848 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
849     updated patch set ready for the 2.4.21 based kernel.
850    
851 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
852     Initial import of hardened-sources-2.4.20-r4. This revision
853     includes only a few changes, but one of these is an important
854     security fix. It is recommended all users of hardened-sources
855     upgrade to this release.
856 plasmaroo 1.18
857 frogger 1.11 - ioperm bug fix
858     - fixed compilation failure when building without GRSec
859 plasmaroo 1.18
860 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
861     due to time constraints, but is planned for inclusion in the near
862     future.
863 msterret 1.10
864     *hardened-sources-2.4.20-r2 (12 Jun 2003)
865    
866     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
867     hardened-sources-2.4.20-r3.ebuild:
868 plasmaroo 1.18 Add Header...
869 frogger 1.9
870     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
871     hardened-sources-2.4.20-r3.ebuild:
872     Removed warnings from ebuild. This kernel should be safe to
873     use at this point.
874 frogger 1.8
875     *hardened-sources-2.4.20-r3 (08 Jun 2003)
876    
877     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
878     hardened-sources-2.4.20-r3.ebuild:
879     New revision. Includes the following changes over -r2:
880 plasmaroo 1.18
881 frogger 1.8 - ck7-base (O(1), preempt, low latency)
882     - Super FreeS/WAN 1.99.7rc2
883     - PaX for the LSM/SELinux branch
884     - GRSecurity 2.0-pre4 (role based access control)
885     - Systrace 1.3
886     - EXT3 fixes
887     - EVMS 2.0.1
888     - GCC 3.1+ compile optimizations
889     - ProPolice kernel build support
890     - Hashing table security fixes
891 frogger 1.3
892     *hardened-sources-2.4.20-r1 (09 Apr 2003)
893 frogger 1.7
894     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
895     Initial import of hardened-sources-r2. This new
896     ebuild includes many new performance and security
897     related patches. As in -r1, it will patch in
898     LSM/SELinux if "selinux" is in USE, otherwise it
899     will patch in GRSecurity. The following patches
900     are included in this revision:
901 plasmaroo 1.18
902 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
903     (pulled from the base CK patch)
904     - ptrace exploit patch for the LSM kernel
905     (the GRSec patch already fixes this)
906     - LSM 2.4-2003040709
907     - SELinux 2.4-2003040709
908     - Systrace v1.2
909     - IPTables patch-o-matic base patches - 20030107
910     - CryptoAPI 2.4.20.1 w/ loop-jari patch
911     - Super FreeS/WAN 1.99.6.1
912     - GRSecurity 1.9.9g
913     - MPPE
914     - EXT3 data journal fix
915     - CIPE 1.5.4
916 frogger 1.6
917     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
918     hardened-sources-2.4.20-r1.ebuild, manifest:
919 plasmaroo 1.18 Updated to install flask components correctly for selinux.
920 frogger 1.5
921     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
922     hardened-sources-2.4.20-r1.ebuild:
923     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
924     is patched in instead. Ptrace patches for selinux have also been added. In
925     either case, systrace support will be patched in as well.
926 frogger 1.3
927     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
928     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
929 plasmaroo 1.18 Revision bump for new sources.
930 frogger 1.4
931 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
932 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
933 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
934 method 1.1
935 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
936    
937 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
938     hardened-sources-2.4.20.ebuild:
939 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20