/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.15 - (hide annotations) (download)
Tue Dec 2 03:33:43 2003 UTC (10 years, 9 months ago) by iggy
Branch: MAIN
Changes since 1.14: +7 -1 lines
fix do_brk vuln

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2     # Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
3 iggy 1.15 # $Header: /home/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.14 2003/11/04 03:39:40 frogger Exp $
4    
5     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
6     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
7     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
8     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
9     fix do_brk vuln
10 frogger 1.14
11     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
12     hardened-sources-2.4.22.ebuild:
13     -Removed the src_install() portion for SELinux flask
14     components. These are no longer handled in the kernel
15     so this code was not necessary.
16 frogger 1.13
17     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
18     New 2.4.22 based hardened-sources thanks to
19     Phil West <p.west@computer.org>.
20    
21     These sources include:
22     -New SELinux API
23     -Updated CK-base
24     -Updated GRSec
25     -Systrace
26     -SuperFreeS/WAN 1.99.8
27     -Propolice kernel build support
28     -EVMS
29     -Other various security related patches
30 frogger 1.11
31 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
32    
33     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
34     Updated hardened-sources based on the 2.4.21 Linux kernel.
35     This includes updates to most major components such as:
36     -ck-base-0306300059
37     -selinux-2.4-2003071106
38     -grsecurity-2.0-rc1
39     -Updated IPTables patch-o-matic
40     -Updated SuperFreeS/WAN
41     Thanks to Phil West <pwest@computer.org> for his work in getting this
42     updated patch set ready for the 2.4.21 based kernel.
43    
44 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
45     Initial import of hardened-sources-2.4.20-r4. This revision
46     includes only a few changes, but one of these is an important
47     security fix. It is recommended all users of hardened-sources
48     upgrade to this release.
49     - ioperm bug fix
50     - fixed compilation failure when building without GRSec
51     SAL (Secure Auditing for Linux) is NOT included in this revision
52     due to time constraints, but is planned for inclusion in the near
53     future.
54 msterret 1.10
55     *hardened-sources-2.4.20-r2 (12 Jun 2003)
56    
57     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
58     hardened-sources-2.4.20-r3.ebuild:
59     add Header
60 frogger 1.9
61     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
62     hardened-sources-2.4.20-r3.ebuild:
63     Removed warnings from ebuild. This kernel should be safe to
64     use at this point.
65 frogger 1.8
66     *hardened-sources-2.4.20-r3 (08 Jun 2003)
67    
68     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
69     hardened-sources-2.4.20-r3.ebuild:
70     New revision. Includes the following changes over -r2:
71     - ck7-base (O(1), preempt, low latency)
72     - Super FreeS/WAN 1.99.7rc2
73     - PaX for the LSM/SELinux branch
74     - GRSecurity 2.0-pre4 (role based access control)
75     - Systrace 1.3
76     - EXT3 fixes
77     - EVMS 2.0.1
78     - GCC 3.1+ compile optimizations
79     - ProPolice kernel build support
80     - Hashing table security fixes
81 frogger 1.3
82     *hardened-sources-2.4.20-r1 (09 Apr 2003)
83 frogger 1.7
84     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
85     Initial import of hardened-sources-r2. This new
86     ebuild includes many new performance and security
87     related patches. As in -r1, it will patch in
88     LSM/SELinux if "selinux" is in USE, otherwise it
89     will patch in GRSecurity. The following patches
90     are included in this revision:
91     - O(1) Scheduler, Low Latency, and Preempt
92     (pulled from the base CK patch)
93     - ptrace exploit patch for the LSM kernel
94     (the GRSec patch already fixes this)
95     - LSM 2.4-2003040709
96     - SELinux 2.4-2003040709
97     - Systrace v1.2
98     - IPTables patch-o-matic base patches - 20030107
99     - CryptoAPI 2.4.20.1 w/ loop-jari patch
100     - Super FreeS/WAN 1.99.6.1
101     - GRSecurity 1.9.9g
102     - MPPE
103     - EXT3 data journal fix
104     - CIPE 1.5.4
105 frogger 1.6
106     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
107     hardened-sources-2.4.20-r1.ebuild, manifest:
108     Updated to install flask components correctly for selinux
109 frogger 1.5
110     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
111     hardened-sources-2.4.20-r1.ebuild:
112     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
113     is patched in instead. Ptrace patches for selinux have also been added. In
114     either case, systrace support will be patched in as well.
115 frogger 1.3
116     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
117     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
118     Revision bump for new sources
119 frogger 1.4
120 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
121 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
122 frogger 1.2 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2
123 method 1.1
124 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
125    
126 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
127     hardened-sources-2.4.20.ebuild:
128     initial import, only has systrace support

  ViewVC Help
Powered by ViewVC 1.1.20