/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.196 - (hide annotations) (download)
Mon Oct 29 04:33:28 2007 UTC (6 years, 9 months ago) by solar
Branch: MAIN
Changes since 1.195: +4 -1 lines
- update metadata.xml
(Portage version: 2.1.3.9)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 opfer 1.130 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 solar 1.196 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.195 2007/10/25 11:17:54 phreak Exp $
4    
5     29 Oct 2007; <solar@gentoo.org> metadata.xml:
6     - update metadata.xml
7 phreak 1.195
8     25 Oct 2007; Christian Heim <phreak@gentoo.org>
9     hardened-sources-2.6.22-r8.ebuild:
10     Marking 2.6.22-r8 stable on amd64 and x86.
11 phreak 1.194
12     21 Oct 2007; Christian Heim <phreak@gentoo.org>
13     -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
14     -hardened-sources-2.6.21-r4.ebuild:
15     Removing old ebuilds.
16 phreak 1.193
17     *hardened-sources-2.4.35-r2 (21 Oct 2007)
18    
19     21 Oct 2007; Christian Heim <phreak@gentoo.org>
20     +hardened-sources-2.4.35-r2.ebuild:
21     Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
22     patches.
23 phreak 1.192
24     *hardened-sources-2.6.22-r8 (21 Oct 2007)
25    
26     21 Oct 2007; Christian Heim <phreak@gentoo.org>
27     +hardened-sources-2.6.22-r8.ebuild:
28     Yet another new patch, hopefully fixing the remaining issues we had w/
29     2.6.22. Candidate for stabling.
30 phreak 1.191
31     *hardened-sources-2.6.23 (13 Oct 2007)
32    
33     13 Oct 2007; Christian Heim <phreak@gentoo.org>
34     +hardened-sources-2.6.23.ebuild:
35     Initial hardened-sources-2.6.23. If people still have problems w/ bug
36     194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
37 phreak 1.190
38     11 Oct 2007; Christian Heim <phreak@gentoo.org>
39     hardened-sources-2.6.20-r10.ebuild:
40     Pulling in yet another new genpatches version, fixing the PWC bug for real.
41 phreak 1.189
42     04 Oct 2007; Christian Heim <phreak@gentoo.org>
43     -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
44     Removing old versions.
45 phreak 1.188
46     *hardened-sources-2.6.22-r7 (01 Oct 2007)
47    
48     01 Oct 2007; Christian Heim <phreak@gentoo.org>
49     +hardened-sources-2.6.22-r7.ebuild:
50     Revision bump, pulling in a newer patch. Should fix #194276.
51 phreak 1.187
52     30 Sep 2007; Christian Heim <phreak@gentoo.org>
53     hardened-sources-2.6.20-r10.ebuild:
54     Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
55     Mike Doty).
56 phreak 1.186
57     *hardened-sources-2.6.22-r6 (26 Sep 2007)
58    
59     26 Sep 2007; Christian Heim <phreak@gentoo.org>
60     +hardened-sources-2.6.22-r6.ebuild:
61     Revision bump, grabbing up till Linux 2.6.22.9.
62 phreak 1.185
63     24 Sep 2007; Christian Heim <phreak@gentoo.org>
64     -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
65     Cleaning up further.
66 phreak 1.184
67     *hardened-sources-2.6.20-r10 (24 Sep 2007)
68    
69     24 Sep 2007; Christian Heim <phreak@gentoo.org>
70     -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
71     +hardened-sources-2.6.20-r10.ebuild:
72     Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
73     revisions.
74 phreak 1.183
75     *hardened-sources-2.6.22-r5 (22 Sep 2007)
76    
77     22 Sep 2007; Christian Heim <phreak@gentoo.org>
78     +hardened-sources-2.6.22-r5.ebuild:
79     Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
80 phreak 1.182
81     17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
82     Removing johnm from metadata.xml (see #186467 for reference).
83 phreak 1.181
84     *hardened-sources-2.6.22-r4 (17 Sep 2007)
85    
86     17 Sep 2007; Christian Heim <phreak@gentoo.org>
87     +hardened-sources-2.6.22-r4.ebuild:
88     Revision bump, hopefully fixing all those weird PAX failures.
89 phreak 1.180
90     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
91     Updating the metadata.xml.
92 phreak 1.179
93     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
94     Removing tocharian from metadata due to his retirement (see #71718 for
95     reference).
96 phreak 1.178
97     *hardened-sources-2.6.20-r9 (30 Aug 2007)
98    
99     30 Aug 2007; Christian Heim <phreak@gentoo.org>
100     +hardened-sources-2.6.20-r9.ebuild:
101     Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
102 phreak 1.177
103     29 Aug 2007; Christian Heim <phreak@gentoo.org>
104     -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
105     -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
106     -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
107     -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
108     -hardened-sources-2.6.22-r2.ebuild:
109     Removing some redundant versions.
110 phreak 1.176
111     *hardened-sources-2.4.35-r1 (29 Aug 2007)
112    
113     29 Aug 2007; Christian Heim <phreak@gentoo.org>
114     +hardened-sources-2.4.35-r1.ebuild:
115     Revision bump, new grsecurity patch.
116 phreak 1.175
117     *hardened-sources-2.6.20-r8 (26 Aug 2007)
118    
119     26 Aug 2007; Christian Heim <phreak@gentoo.org>
120     +hardened-sources-2.6.20-r8.ebuild:
121     Revision bump for Linux 2.6.20.17.
122 phreak 1.174
123     *hardened-sources-2.6.22-r3 (22 Aug 2007)
124    
125     22 Aug 2007; Christian Heim <phreak@gentoo.org>
126     +hardened-sources-2.6.22-r3.ebuild:
127     Revision bump for Linux 2.6.22.4.
128 phreak 1.173
129     16 Aug 2007; Christian Heim <phreak@gentoo.org>
130     hardened-sources-2.6.22-r2.ebuild:
131     Updated patchset, to fix the alignment against 2.6.22.3.
132 phreak 1.172
133     *hardened-sources-2.6.22-r2 (16 Aug 2007)
134    
135     16 Aug 2007; Christian Heim <phreak@gentoo.org>
136     +hardened-sources-2.6.22-r2.ebuild:
137     Revision bump for Linux 2.6.22.3.
138 phreak 1.171
139     *hardened-sources-2.4.35 (16 Aug 2007)
140    
141     16 Aug 2007; Christian Heim <phreak@gentoo.org>
142     +hardened-sources-2.4.35.ebuild:
143     Version bump, initial version for Linux 2.4.35.
144 phreak 1.170
145     *hardened-sources-2.6.21-r4 (16 Aug 2007)
146    
147     16 Aug 2007; Christian Heim <phreak@gentoo.org>
148     +hardened-sources-2.6.21-r4.ebuild:
149     Revision bump for Linux 2.6.21.6.
150 phreak 1.169
151     *hardened-sources-2.6.20-r7 (16 Aug 2007)
152    
153     16 Aug 2007; Christian Heim <phreak@gentoo.org>
154     +hardened-sources-2.6.20-r7.ebuild:
155     Revision bump for Linux 2.6.20.16.
156 phreak 1.168
157     *hardened-sources-2.6.22-r1 (13 Aug 2007)
158    
159     13 Aug 2007; Christian Heim <phreak@gentoo.org>
160     +hardened-sources-2.6.22-r1.ebuild:
161     Yet another revision bump.
162 phreak 1.167
163     *hardened-sources-2.6.22 (10 Aug 2007)
164    
165     10 Aug 2007; Christian Heim <phreak@gentoo.org>
166     +hardened-sources-2.6.22.ebuild:
167     Initial release for 2.6.22. If you are using hardened-sources on a desktop
168     machine (P4 or newer), be aware you might need to disable
169     CONFIG_PAX_PAGEEXEC.
170 phreak 1.166
171     04 Aug 2007; Christian Heim <phreak@gentoo.org>
172     hardened-sources-2.6.20-r6.ebuild:
173     Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
174     2.6.20.15.
175 phreak 1.165
176     10 Jul 2007; Christian Heim <phreak@gentoo.org>
177     hardened-sources-2.6.20-r5.ebuild:
178     Marking hardened-sources-2.6.20-r5 stable on ppc.
179 phreak 1.164
180     10 Jul 2007; Christian Heim <phreak@gentoo.org>
181     -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
182     Cleanup.
183 phreak 1.163
184     *hardened-sources-2.6.20-r6 (08 Jul 2007)
185    
186     08 Jul 2007; Christian Heim <phreak@gentoo.org>
187     +hardened-sources-2.6.20-r6.ebuild:
188     Revision bump, grabbing yet another stable release.
189 phreak 1.162
190     17 Jun 2007; Christian Heim <phreak@gentoo.org>
191     -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
192     -hardened-sources-2.6.21-r2.ebuild:
193     Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
194     alpha stable KEYWORD by mistake.
195 phreak 1.161
196     17 Jun 2007; Christian Heim <phreak@gentoo.org>
197     hardened-sources-2.6.20-r5.ebuild:
198     Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
199     genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
200 phreak 1.160
201     *hardened-sources-2.6.21-r3 (12 Jun 2007)
202    
203     12 Jun 2007; Christian Heim <phreak@gentoo.org>
204     +hardened-sources-2.6.21-r3.ebuild:
205     Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
206     of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
207     love.
208 phreak 1.159
209     *hardened-sources-2.6.20-r5 (11 Jun 2007)
210    
211     11 Jun 2007; Christian Heim <phreak@gentoo.org>
212     +hardened-sources-2.6.20-r5.ebuild:
213     Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
214     of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
215     love.
216 pappy 1.158
217     *hardened-sources-2.4.34.5 (11 Jun 2007)
218    
219     11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
220     +hardened-sources-2.4.34.5.ebuild:
221     added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
222 phreak 1.157
223     30 May 2007; Christian Heim <phreak@gentoo.org>
224     -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
225     Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
226     stale ebuild(s).
227 phreak 1.156
228     30 May 2007; Christian Heim <phreak@gentoo.org>
229     -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
230     -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
231     -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
232     Doing some cleanups, remove stale ebuilds.
233 phreak 1.155
234     26 May 2007; Christian Heim <phreak@gentoo.org>
235     hardened-sources-2.6.21-r2.ebuild:
236     Fixing the grsecurity patch, had one '};' too much.
237 phreak 1.154
238     *hardened-sources-2.6.21-r2 (26 May 2007)
239    
240     26 May 2007; Christian Heim <phreak@gentoo.org>
241     -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
242     +hardened-sources-2.6.21-r2.ebuild:
243     Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
244     grsecurity patch to 2.1.10-2.6.21.1-200705221918.
245 phreak 1.153
246     *hardened-sources-2.6.20-r4 (26 May 2007)
247    
248     26 May 2007; Christian Heim <phreak@gentoo.org>
249     -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
250     Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
251 phreak 1.154 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
252 phreak 1.152
253     15 May 2007; Christian Heim <phreak@gentoo.org>
254     hardened-sources-2.6.20-r3.ebuild:
255     Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
256     introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
257     grsecurity patch fail in that exact same hunk.
258 phreak 1.151
259     *hardened-sources-2.6.20-r3 (15 May 2007)
260    
261     15 May 2007; Christian Heim <phreak@gentoo.org>
262     +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
263     Revision bump, incorporating Linux 2.6.20.11.
264    
265     *hardened-sources-2.6.21-r1 (11 May 2007)
266    
267     11 May 2007; Christian Heim <phreak@gentoo.org>
268     +hardened-sources-2.6.21-r1.ebuild:
269     Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
270     mentioned in #177234.
271 kevquinn 1.150
272     07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
273     files/digest-hardened-sources-2.6.21, Manifest:
274     Fix Manifest/digest for linux-2.6.21.tar.bz2
275 phreak 1.149
276     06 May 2007; Christian Heim <phreak@gentoo.org>
277     hardened-sources-2.6.21.ebuild:
278     Bumping the hardened-patches version, needed for the fix for #177234.
279 phreak 1.148
280     *hardened-sources-2.6.21 (02 May 2007)
281    
282     02 May 2007; Christian Heim <phreak@gentoo.org>
283     +hardened-sources-2.6.21.ebuild:
284     Version bump, Linux 2.6.21-hardened.
285 phreak 1.147
286     29 Apr 2007; Christian Heim <phreak@gentoo.org>
287     hardened-sources-2.6.20-r2.ebuild:
288     Adding ~ia64 on Ned's request.
289 phreak 1.146
290     29 Apr 2007; Christian Heim <phreak@gentoo.org>
291     hardened-sources-2.6.20-r2.ebuild:
292     Fixing the included grsecurity patch, wasn't alligning due to the Index:
293     header line(s).
294 phreak 1.145
295     29 Apr 2007; Christian Heim <phreak@gentoo.org>
296     hardened-sources-2.6.20-r2.ebuild:
297     Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
298 armin76 1.144
299     *hardened-sources-2.6.20-r2 (10 Apr 2007)
300    
301     10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
302     +hardened-sources-2.6.20-r2.ebuild:
303     Version bump, on behalf of phreak
304 phreak 1.143
305     *hardened-sources-2.6.20-r1 (04 Apr 2007)
306    
307     04 Apr 2007; Christian Heim <phreak@gentoo.org>
308     +hardened-sources-2.6.20-r1.ebuild:
309     Revision bump, grabbing a newer grsecurity snapshot.
310 phreak 1.142
311     *hardened-sources-2.6.20 (25 Mar 2007)
312    
313     25 Mar 2007; Christian Heim <phreak@gentoo.org>
314     +hardened-sources-2.6.20.ebuild:
315     Finally a hardened-sources version for 2.6.20; many people have been waiting
316     for this. Thanks to Steve for preliminary testing, thanks to Ned for the
317     testbox.
318 chainsaw 1.141
319     16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
320     hardened-sources-2.6.18-r6.ebuild:
321     Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
322 phreak 1.140
323     *hardened-sources-2.6.18-r6 (16 Mar 2007)
324    
325     16 Mar 2007; Christian Heim <phreak@gentoo.org>
326     -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
327     Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
328     yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
329     supposed to be.
330 phreak 1.139
331     06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
332     Fixing the Manifest, the previous one was broken (as in still had the
333     deleted ebuild in it).
334 phreak 1.138
335     06 Mar 2007; Christian Heim <phreak@gentoo.org>
336     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
337     +hardened-sources-2.6.18-r5.ebuild:
338     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
339     Linux 2.6.18.8. Also cleaning up the older version.
340    
341     *hardened-sources-2.6.18-r5 (06 Mar 2007)
342    
343     06 Mar 2007; Christian Heim <phreak@gentoo.org>
344     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
345     +hardened-sources-2.6.18-r5.ebuild:
346     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
347     Linux 2.6.18.8. Also cleaning up the older version.
348 phreak 1.137
349     24 Feb 2007; Christian Heim <phreak@gentoo.org>
350     -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
351     -hardened-sources-2.6.19-r5.ebuild:
352     Removing some of the old version, that didn't work.
353 phreak 1.136
354     *hardened-sources-2.6.19-r6 (12 Feb 2007)
355    
356     12 Feb 2007; Christian Heim <phreak@gentoo.org>
357     +hardened-sources-2.6.19-r6.ebuild:
358     Revision bump, including a new grsec version fixing #166235.
359 pappy 1.134
360     *hardened-sources-2.4.34 (24 Jan 2007)
361    
362     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
363 pappy 1.135 Manifest:
364     updating Manifest with checksums of new tarball and ebuild
365    
366     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
367 pappy 1.134 +hardened-sources-2.4.34.ebuild:
368     I added new hardened sources 2.4 update, this is a critical path
369     security bugfix - all users of h-s are strongly advised
370     to update their existing hardened sources to this version.
371     It contains a fix for a kernel vulnerability that is pertaining
372     to the PaX changes to virtual memory management, possibly leading
373     to a local kernel exploit ... see grsecurity.net forums and homepage
374 phreak 1.133
375     23 Jan 2007; Christian Heim <phreak@gentoo.org>
376     files/digest-hardened-sources-2.6.19-r5, Manifest:
377     Fixing the patch-tarball digest.
378 phreak 1.132
379     *hardened-sources-2.6.19-r5 (23 Jan 2007)
380    
381     23 Jan 2007; Christian Heim <phreak@gentoo.org>
382     +hardened-sources-2.6.19-r5.ebuild:
383     Revision bump, closing the recently discovered PaX expand_stack()
384     vulnerability.
385 phreak 1.131
386     *hardened-sources-2.6.19-r4 (14 Jan 2007)
387    
388     14 Jan 2007; Christian Heim <phreak@gentoo.org>
389     +hardened-sources-2.6.19-r4.ebuild:
390     Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
391     dropping the randomized PID feature.
392 opfer 1.130
393     11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
394     hardened-sources-2.4.33.4.ebuild:
395     stable x86, bug #161171
396 phreak 1.129
397     *hardened-sources-2.6.19-r3 (27 Dec 2006)
398    
399     27 Dec 2006; Christian Heim <phreak@gentoo.org>
400     -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
401     Revision bump for bug #157186 and #158786.
402 phreak 1.128
403     *hardened-sources-2.6.18-r4 (27 Dec 2006)
404    
405     27 Dec 2006; Christian Heim <phreak@gentoo.org>
406     -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
407     Revision bump for bug #157186.
408 phreak 1.127
409     *hardened-sources-2.6.19-r2 (23 Dec 2006)
410    
411     23 Dec 2006; Christian Heim <phreak@gentoo.org>
412     -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
413     Revision bump to pull in genpatches-2.6.19-3 for #157186.
414 phreak 1.126
415     17 Dec 2006; Christian Heim <phreak@gentoo.org>
416     hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
417     hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
418     hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
419     hardened-sources-2.6.19-r1.ebuild:
420     Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
421     adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
422 pappy 1.125
423     *hardened-sources-2.4.33.4 (17 Dec 2006)
424    
425     17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
426     +hardened-sources-2.4.33.4.ebuild:
427     new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
428     and quilting
429 phreak 1.124
430     *hardened-sources-2.6.19-r1 (14 Dec 2006)
431    
432     14 Dec 2006; Christian Heim <phreak@gentoo.org>
433     -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
434     Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
435     for reporting).
436 phreak 1.123
437     *hardened-sources-2.6.19 (13 Dec 2006)
438    
439     13 Dec 2006; Christian Heim <phreak@gentoo.org>
440     +hardened-sources-2.6.19.ebuild:
441     And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
442     Brad for providing that prompt update.
443 phreak 1.122
444     *hardened-sources-2.6.18-r3 (13 Dec 2006)
445    
446     13 Dec 2006; Christian Heim <phreak@gentoo.org>
447     -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
448     +hardened-sources-2.6.18-r3.ebuild:
449     Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
450     S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
451 phreak 1.121
452     09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
453     Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
454 nixnut 1.120
455     08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
456     Stable on ppc wrt bug 157356
457 opfer 1.119
458     07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
459     hardened-sources-2.6.18.ebuild:
460     stable x86, bug #157356
461 phreak 1.118
462     *hardened-sources-2.6.18-r2 (06 Dec 2006)
463    
464     06 Dec 2006; Christian Heim <phreak@gentoo.org>
465     +hardened-sources-2.6.18-r2.ebuild:
466     Revision bump, including 2.6.18.5 (via genpatches) and
467     4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
468     Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
469     redesign.
470 phreak 1.117
471     06 Dec 2006; Christian Heim <phreak@gentoo.org>
472     hardened-sources-2.6.18.ebuild:
473     Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
474     of Mike Doty).
475 phreak 1.116
476     *hardened-sources-2.6.18-r1 (23 Nov 2006)
477    
478     23 Nov 2006; Christian Heim <phreak@gentoo.org>
479     +hardened-sources-2.6.18-r1.ebuild:
480     Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
481 phreak 1.115
482     *hardened-sources-2.6.18 (11 Nov 2006)
483    
484     11 Nov 2006; Christian Heim <phreak@gentoo.org>
485     +hardened-sources-2.6.18.ebuild:
486     Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
487 solar 1.114
488     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
489     - mark amd64 stable also. bug #151877
490 solar 1.113
491     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
492     - mark 2.6.17-r1 stable
493 phreak 1.112
494     27 Aug 2006; Christian Heim <phreak@gentoo.org>
495     -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
496     Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
497 phreak 1.111
498     *hardened-sources-2.6.17-r1 (26 Aug 2006)
499    
500     26 Aug 2006; Christian Heim <phreak@gentoo.org>
501     +hardened-sources-2.6.17-r1.ebuild:
502     Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
503     grsecurity patch.
504 phreak 1.110
505     *hardened-sources-2.6.17 (17 Aug 2006)
506    
507     17 Aug 2006; Christian Heim <phreak@gentoo.org>
508     +hardened-sources-2.6.17.ebuild:
509     Bumping the hardened-sources-2.6 series to 2.6.17, using
510     genpatches-2.6.17-6.base.
511 solar 1.109
512     07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
513     - stable on x86 and amd64
514 solar 1.108
515     *hardened-sources-2.6.16-r11 (15 Jul 2006)
516    
517     15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
518     -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
519     -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
520     -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
521     - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
522     crusty ebuilds
523 johnm 1.107
524     14 Jul 2006; John Mylchreest <johnm@gentoo.org>
525     hardened-sources-2.6.16-r10.ebuild:
526     marking stable on x86 and amd64
527 solar 1.106
528     13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
529     - 2.4.32-r6 stable on x86. RSBAC state unknown
530 kang 1.105
531     *hardened-sources-2.4.32-r7 (10 Jul 2006)
532    
533     10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
534     +hardened-sources-2.4.32-r7.ebuild:
535     Bump PaX for RSBAC to test-17
536 johnm 1.104
537     *hardened-sources-2.6.16-r9 (03 Jul 2006)
538    
539     03 Jul 2006; John Mylchreest <johnm@gentoo.org>
540     -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
541     hardened-sources-2.6.16 bump to latest -base.
542 solar 1.103
543     *hardened-sources-2.4.32-r6 (30 Jun 2006)
544    
545     30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
546     hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
547     - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
548     sysctl controlable resource logging
549 johnm 1.102
550     *hardened-sources-2.6.16-r7 (05 Jun 2006)
551    
552     05 Jun 2006; John Mylchreest <johnm@gentoo.org>
553     -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
554     push new 2.6.16 release in preparation for stable
555 solar 1.101
556     22 May 2006; <solar@gentoo.org> :
557     - redigest bug 134002
558 kang 1.100
559     *hardened-sources-2.4.32-r5 (16 May 2006)
560    
561     16 May 2006; Guillaume Destuynder <kang@gentoo.org>
562     +hardened-sources-2.4.32-r5.ebuild:
563     Fixes rsbac common patching (new patch in new -r5 patchset)
564 solar 1.99
565     *hardened-sources-2.4.32-r4 (13 May 2006)
566    
567     13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
568     +hardened-sources-2.4.32-r4.ebuild:
569     - security bumps
570 johnm 1.98
571     *hardened-sources-2.6.16-r6 (03 May 2006)
572    
573     03 May 2006; John Mylchreest <johnm@gentoo.org>
574     +hardened-sources-2.6.16-r6.ebuild:
575     bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
576 johnm 1.97
577     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
578     hardened-sources-2.6.14-r8.ebuild:
579     fix x86_64 build problem, this will delay the digest issue again for a short
580     while but it will sort itself out
581 johnm 1.96
582     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
583     hardened-sources-2.6.14-r8.ebuild:
584     bump hardened patchset
585 antarus 1.94
586     27 Apr 2006; Alec Warner <antarus@gentoo.org>
587     files/digest-hardened-sources-2.4.32-r2,
588     files/digest-hardened-sources-2.4.32-r3,
589     files/digest-hardened-sources-2.6.14-r8, Manifest:
590     Fixing duff SHA256 digests: Bug # 131293
591 johnm 1.93
592 johnm 1.95 *hardened-sources-2.6.16-r5 (27 Apr 2006)
593    
594     27 Apr 2006; John Mylchreest <johnm@gentoo.org>
595     -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
596     -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
597     stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
598     cleanup of old uneccessary sources
599    
600 johnm 1.93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
601     fix digest
602 johnm 1.92
603     *hardened-sources-2.6.14-r8 (20 Apr 2006)
604    
605     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
606     +hardened-sources-2.6.14-r8.ebuild:
607     fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
608 johnm 1.91
609     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
610     Turning on gpg-signing again, and recomitting
611 johnm 1.90
612     *hardened-sources-2.6.16-r4 (20 Apr 2006)
613    
614     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
615     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
616     +hardened-sources-2.6.16-r4.ebuild:
617     Fix numerous security vulns
618 solar 1.89
619     *hardened-sources-2.4.32-r3 (16 Apr 2006)
620    
621     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
622     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
623     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
624     - security bump for bug #112791. Removed old ebuilds
625 johnm 1.88
626     *hardened-sources-2.6.16-r3 (15 Apr 2006)
627    
628     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
629     +hardened-sources-2.6.16-r3.ebuild:
630     Removing silly localversion which I missed
631 johnm 1.87
632     *hardened-sources-2.6.14-r7 (14 Apr 2006)
633    
634     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
635     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
636     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
637 johnm 1.86
638     *hardened-sources-2.6.16-r2 (13 Apr 2006)
639    
640     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
641     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
642     +hardened-sources-2.6.16-r2.ebuild:
643     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
644     labels, dropping USERGROUP define fixes, since these were merged mainstream.
645 johnm 1.85
646     *hardened-sources-2.6.16-r1 (11 Apr 2006)
647    
648     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
649     +hardened-sources-2.6.16-r1.ebuild:
650     Bumping to include ppc build fix and 2.6.16.3
651 tsunam 1.84
652     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
653     hardened-sources-2.6.14-r6.ebuild:
654     Stable on x86; bug #127718
655 johnm 1.83
656     *hardened-sources-2.6.16 (31 Mar 2006)
657    
658     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
659     +hardened-sources-2.6.16.ebuild:
660     Bumping to new version of grsec, and kernel base. New squashfs. Based on
661     2.6.16.1
662 cryos 1.82
663     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
664     hardened-sources-2.6.14-r6.ebuild:
665     Stable on amd64, bug 127718.
666 nixnut 1.81
667     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
668     Stable on ppc. Bug #127718
669 johnm 1.80
670     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
671     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
672     -hardened-sources-2.6.14-r4.ebuild:
673     Cleanup.
674 johnm 1.79
675     *hardened-sources-2.6.14-r6 (15 Mar 2006)
676    
677     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
678     +hardened-sources-2.6.14-r6.ebuild:
679     Fixes grsec policy recreation bug and adds a
680     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
681 solar 1.78
682     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
683     - stable on x86
684 hansmi 1.77
685     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
686     hardened-sources-2.6.14-r5.ebuild:
687     Stable on ppc.
688 johnm 1.76
689     *hardened-sources-2.6.14-r5 (01 Feb 2006)
690    
691     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
692     +hardened-sources-2.6.14-r5.ebuild:
693     fixing every known exploit
694 solar 1.75
695     *hardened-sources-2.4.32-r2 (26 Jan 2006)
696    
697     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
698     +hardened-sources-2.4.32-r2.ebuild:
699     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
700 solar 1.74
701     *hardened-sources-2.6.14-r4 (12 Jan 2006)
702    
703     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
704     - version bump for new genpatches which fix up a few sec holes
705 solar 1.73
706     *hardened-sources-2.4.32-r1 (05 Jan 2006)
707    
708     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
709     - revision bump to add misc vital linux kernel security patches.
710 johnm 1.72
711     *hardened-sources-2.6.14-r3 (30 Dec 2005)
712    
713     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
714     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
715     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
716 johnm 1.71
717     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
718     hardened-sources-2.6.14-r2.ebuild:
719     making x86 & amd64 stable following testing.
720 johnm 1.70
721     *hardened-sources-2.6.14-r2 (27 Dec 2005)
722    
723     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
724     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
725     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
726     network hooks.
727 johnm 1.69
728     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
729     hardened-sources-2.6.14-r1.ebuild:
730     bumping to stable early for sec fix on x86 & amd64
731 johnm 1.68
732     *hardened-sources-2.6.14-r1 (05 Dec 2005)
733    
734     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
735     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
736     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
737 solar 1.67
738     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
739     - stable on x86 security bug #114227 CAN-2005-3257
740 kang 1.66
741     *hardened-sources-2.4.32 (19 Nov 2005)
742    
743     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
744     +hardened-sources-2.4.32.ebuild:
745     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
746     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
747     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
748     rsbac >> /etc/portage/package.use)
749 johnm 1.65
750     *hardened-sources-2.6.14 (14 Nov 2005)
751    
752     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
753     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
754     Bumping 2.6 series to 2.6.14.2
755 johnm 1.64
756     *hardened-sources-2.6.13-r2 (20 Oct 2005)
757    
758     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
759     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
760     +hardened-sources-2.6.13-r2.ebuild:
761     Fixes minor build error in ppc.
762 johnm 1.63
763     *hardened-sources-2.6.13-r1 (17 Oct 2005)
764    
765     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
766     +hardened-sources-2.6.13-r1.ebuild:
767     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
768     2.6.13.4, fixes some major amd64 stability problems.
769 johnm 1.62
770     *hardened-sources-2.6.13 (16 Sep 2005)
771    
772     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
773     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
774     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
775     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
776     users should test this thoroughly.
777 solar 1.61
778     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
779     - stable on x86
780 johnm 1.60
781     *hardened-sources-2.6.11-r15 (27 Jun 2005)
782    
783     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
784     +hardened-sources-2.6.11-r15.ebuild:
785     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
786     grsec redefining curr_ip struct.
787 solar 1.59
788     *hardened-sources-2.4.31 (20 Jun 2005)
789    
790     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
791     initial import of 2.4.31 tree
792 johnm 1.58
793     *hardened-sources-2.6.11-r14 (14 Jun 2005)
794    
795     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
796     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
797     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
798     naming scheme to abide by genpatches
799 johnm 1.57
800     *hardened-sources-2.6.11-r13 (18 May 2005)
801    
802     18 May 2005; John Mylchreest <johnm@gentoo.org>
803     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
804     Managed to mangle the Makefile patch from grsec, to miss out the grsec
805     target. sorry about that. Fixes bug #93022
806 johnm 1.56
807     *hardened-sources-2.6.11-r12 (17 May 2005)
808    
809     17 May 2005; John Mylchreest <johnm@gentoo.org>
810     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
811     +hardened-sources-2.6.11-r12.ebuild:
812     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
813     merges in genpatches-base
814 johnm 1.55
815     *hardened-sources-2.6.11-r12 (17 May 2005)
816    
817     17 May 2005; John Mylchreest <johnm@gentoo.org>
818     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
819     +hardened-sources-2.6.11-r12.ebuild:
820     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
821     merges in genpatches-base
822 solar 1.54
823     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
824     -files/2.4.27-cmdline-race.patch,
825     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
826     -files/2.4.28-grsec-binfmt_a.out.patch,
827     -files/2.4.28-grsec-cmdline-race.patch,
828     -files/2.4.28-selinux-binfmt_a.out.patch,
829     -files/2.4.28-selinux-cmdline-race.patch,
830     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
831     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
832     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
833     cleanup..
834 solar 1.53
835     *hardened-sources-2.4.30-r1 (21 Apr 2005)
836    
837     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
838     - disable aout by default
839 solar 1.52
840     *hardened-sources-2.4.30 (18 Apr 2005)
841    
842     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
843     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
844     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
845     use
846 tocharian 1.50
847 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
848    
849     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
850     +hardened-sources-2.4.29.ebuild:
851     New hardened-patches-2.4-29.0 patchball.
852     Removed SELinux support, upgraded GRSecurity to 2.1.4.
853    
854     *hardened-sources-2.4.28-r5 (06 Mar 2005)
855    
856     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
857     +hardened-sources-2.4.28-r5.ebuild:
858     Added a fix for a PaX vulnerability.
859    
860     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
861 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
862     Stable on x86
863 solar 1.49
864     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
865     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
866     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
867     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
868     - fixed/added RDEPEND= in all kernel-2 ebuilds
869 tocharian 1.48
870     *hardened-sources-2.4.28-r4 (21 Jan 2005)
871    
872     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
873     +hardened-sources-2.4.28-r4.ebuild:
874     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
875     backport of neighbour hash updates.
876 tocharian 1.47
877     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
878     hardened-sources-2.4.28-r3.ebuild:
879     Stable on x86
880 tseng 1.46
881     *hardened-sources-2.6.10-r3 (20 Jan 2005)
882    
883     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
884     +hardened-sources-2.6.10-r3.ebuild:
885     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
886     in 2005.0
887 tocharian 1.45
888     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
889     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
890     hardened-sources-2.4.28-r2.ebuild:
891     Mark stable on x86
892 tocharian 1.44
893     *hardened-sources-2.4.28-r3 (17 Jan 2005)
894    
895     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
896     +hardened-sources-2.4.28-r3.ebuild:
897     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
898 tocharian 1.43
899     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
900     hardened-sources-2.4.28.ebuild:
901     Mark stable on x86.
902 tocharian 1.42
903     *hardened-sources-2.4.28-r2 (13 Jan 2005)
904    
905     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
906     +hardened-sources-2.4.28-r2.ebuild:
907     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
908     Mazinger for grsecurity patches as well.
909 plasmaroo 1.41
910     *hardened-sources-2.4.28-r1 (23 Dec 2004)
911    
912     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
913     Security bump. Thank tocharian for rolling a new patchset...
914 solar 1.40
915     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
916     +files/2.4.28-grsec-cmdline-race.patch,
917     +files/2.4.28-selinux-binfmt_a.out.patch,
918     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
919     - Round up remaining security patches that appear to be missing in 2.4.28. -
920     PaX standalone updated to current. hgpv=28.1
921 solar 1.39
922     *hardened-sources-2.4.28 (28 Nov 2004)
923    
924     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
925     security bump. Thank tocharian for rolling a new patchset
926 scox 1.31
927 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
928    
929     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
930     +hardened-sources-2.4.27-r3.ebuild:
931     Applies the new 2.4-27.2 patchball which updates
932     GRSecurity to the 2.0.1 version.
933    
934 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
935    
936     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
937     +hardened-sources-2.4.27-r2.ebuild:
938     Version bump.
939     This version uses the new 2.4-27.1 patchball which updates
940     both the SELinux PaX hooks patch and the SELinux headers.
941    
942 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
943    
944     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
945     +hardened-sources-2.4.27-r1.ebuild,
946     -hardened-sources-2.4.27.ebuild,
947     +files/2.4.27-cmdline-race.patch:
948     Version bump, fix for cmdline race. See bug #59905.
949    
950     *hardened-sources-2.4.26-r6 (09 Aug 2004)
951    
952     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
953     +hardened-sources-2.4.26-r6.ebuild,
954     -hardened-sources-2.4.26-r5.ebuild,
955     -hardened-sources-2.4.26-r4.ebuild,
956     +files/2.4.26-cmdline-race.patch:
957     Version bump, fix for cmdline race. See bug #59905.
958    
959 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
960    
961     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
962     +hardened-sources-2.4.27.ebuild,
963     +files/2.4.27-CAN-2004-0394.patch:
964     Ported the patchball to the 2.4.27 kernel version.
965    
966 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
967    
968     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
969     +hardened-sources-2.4.26-r5.ebuild:
970 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
971 scox 1.34 It adds the following features:
972     - Squashfs
973     - Ebtables
974     - Netdev random (core+drivers)
975     - Watchdog Timer (WDT) fix.
976    
977 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
978    
979     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
980     +hardened-sources-2.4.26-r4.ebuild,
981     +files/2.4.26-CAN-2004-0415.patch,
982     -hardened-sources-2.4.26-3:
983     Version bump, fix for CAN 0415, see bug #59378.
984    
985 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
986    
987     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
988     +hardened-sources-2.4.26-r3.ebuild,
989     +files/2.4.26-CAN-2004-0497.patch,
990     -hardened-sources-2.4.26-r2.ebuild:
991     Version bump, fixed CAN 0497, see bug #56171.
992    
993 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
994    
995     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
996 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
997 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
998     +files/2.4.26-CAN-2004-0535.patch,
999     -hardened-sources-2.4.26-r1.ebuild:
1000     Fixes for both CAN 0495 and 0535, see bug #54976
1001 pvdabeel 1.27
1002 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1003     hardened-sources-2.4.26-r1.ebuild:
1004     QA - fix use invocation
1005 scox 1.28
1006     *hardened-sources-2.4.26-r1 (22 June 2004)
1007    
1008     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1009     +hardened-sources-2.4.26-r1.ebuild,
1010     +files/2.4.26-CAN-2004-0394.patch,
1011     +files/2.4.26-signal-race.patch,
1012     -hardened-sources-2.4.26.ebuild,
1013     -hardened-sources-2.4.24-r3.ebuild:
1014     Version bump for the CAN-2004-0394 issue and bug #53804
1015     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1016    
1017    
1018 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1019     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1020     Masked hardened-sources-2.4.26.ebuild broken for ppc
1021    
1022     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1023     hardened-sources-2.4.24-r3.ebuild:
1024     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1025 plasmaroo 1.25
1026 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
1027    
1028     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1029     +hardened-sources-2.4.26.ebuild:
1030     Updated hardened-sources for the 2.4.26 kernel
1031     Removed broken components, updated almost everything.
1032    
1033 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1034    
1035     17 Apr 2004; <plasmaroo@gentoo.org>
1036     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1037     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1038     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1039     +hardened-sources-2.4.24-r3.ebuild:
1040     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1041     vulnerabilities. Old revisions removed.
1042 plasmaroo 1.24
1043     *hardened-sources-2.4.24-r2 (15 Apr 2004)
1044    
1045     15 Apr 2004; <plasmaroo@gentoo.org>
1046     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1047     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1048     Version bump for the CAN-2004-0109 issue; bug #47881.
1049 aliz 1.23
1050     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1051     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1052     Add eutils to inherit.
1053 plasmaroo 1.22
1054     *hardened-sources-2.4.24-r1 (19 Feb 2004)
1055    
1056     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1057     files/hardened-sources-2.4.24.munmap.patch:
1058     Added the patch for the mremap/munmap vulnerability. Bug #42024.
1059 scox 1.19
1060 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
1061 scox 1.26
1062 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1063     hardened-sources-2.4.24.ebuild:
1064     Version bump, updated most of the components.
1065     This release includes the following:
1066    
1067     - Hardened security
1068     - Netfilter patch-o-matic 20031219
1069     - FreeSWAN 2.04 & x509 1.4.8
1070     - EVMS 2.2.2
1071     - XFS 1.3.1
1072     - cryptoloop jari
1073     - grsecurity 2.0-rc4
1074     - SELinux
1075     - PaX 200402060000
1076     - PaX Obscurity 200308302223
1077     - Others...
1078    
1079     Neither -ck nor systrace are included anymore.
1080    
1081 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1082    
1083     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1084     hardened-sources-2.4.22-r2.ebuild:
1085 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1086 scox 1.19
1087     *hardened-sources-2.4.22-r1 (02 Dec 2003)
1088 iggy 1.17
1089     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1090 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1091 iggy 1.16
1092     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1093 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
1094     Version bump for the 'do_brk' vulnerability.
1095 iggy 1.15
1096     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1097     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1098     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1099     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1100 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
1101 frogger 1.14
1102     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1103     hardened-sources-2.4.22.ebuild:
1104 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
1105     components. These are no longer handled in the kernel
1106     so this code was not necessary.
1107 frogger 1.13
1108     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1109     New 2.4.22 based hardened-sources thanks to
1110     Phil West <p.west@computer.org>.
1111    
1112     These sources include:
1113 plasmaroo 1.18 - New SELinux API
1114     - Updated CK-base
1115     - Updated GRSec
1116     - Systrace
1117     - SuperFreeS/WAN 1.99.8
1118     - Propolice kernel build support
1119     - EVMS
1120     - Other various security related patches
1121 frogger 1.11
1122 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
1123    
1124     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1125     Updated hardened-sources based on the 2.4.21 Linux kernel.
1126     This includes updates to most major components such as:
1127 plasmaroo 1.18 - ck-base-0306300059
1128     - selinux-2.4-2003071106
1129     - grsecurity-2.0-rc1
1130     - Updated IPTables patch-o-matic
1131     - Updated SuperFreeS/WAN
1132    
1133 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
1134     updated patch set ready for the 2.4.21 based kernel.
1135    
1136 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1137     Initial import of hardened-sources-2.4.20-r4. This revision
1138     includes only a few changes, but one of these is an important
1139     security fix. It is recommended all users of hardened-sources
1140     upgrade to this release.
1141 plasmaroo 1.18
1142 frogger 1.11 - ioperm bug fix
1143     - fixed compilation failure when building without GRSec
1144 plasmaroo 1.18
1145 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
1146     due to time constraints, but is planned for inclusion in the near
1147     future.
1148 msterret 1.10
1149     *hardened-sources-2.4.20-r2 (12 Jun 2003)
1150    
1151     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1152     hardened-sources-2.4.20-r3.ebuild:
1153 plasmaroo 1.18 Add Header...
1154 frogger 1.9
1155     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1156     hardened-sources-2.4.20-r3.ebuild:
1157     Removed warnings from ebuild. This kernel should be safe to
1158     use at this point.
1159 frogger 1.8
1160     *hardened-sources-2.4.20-r3 (08 Jun 2003)
1161    
1162     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1163     hardened-sources-2.4.20-r3.ebuild:
1164     New revision. Includes the following changes over -r2:
1165 plasmaroo 1.18
1166 frogger 1.8 - ck7-base (O(1), preempt, low latency)
1167     - Super FreeS/WAN 1.99.7rc2
1168     - PaX for the LSM/SELinux branch
1169     - GRSecurity 2.0-pre4 (role based access control)
1170     - Systrace 1.3
1171     - EXT3 fixes
1172     - EVMS 2.0.1
1173     - GCC 3.1+ compile optimizations
1174     - ProPolice kernel build support
1175     - Hashing table security fixes
1176 frogger 1.3
1177     *hardened-sources-2.4.20-r1 (09 Apr 2003)
1178 frogger 1.7
1179     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1180     Initial import of hardened-sources-r2. This new
1181     ebuild includes many new performance and security
1182     related patches. As in -r1, it will patch in
1183     LSM/SELinux if "selinux" is in USE, otherwise it
1184     will patch in GRSecurity. The following patches
1185     are included in this revision:
1186 plasmaroo 1.18
1187 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
1188     (pulled from the base CK patch)
1189     - ptrace exploit patch for the LSM kernel
1190     (the GRSec patch already fixes this)
1191     - LSM 2.4-2003040709
1192     - SELinux 2.4-2003040709
1193     - Systrace v1.2
1194     - IPTables patch-o-matic base patches - 20030107
1195     - CryptoAPI 2.4.20.1 w/ loop-jari patch
1196     - Super FreeS/WAN 1.99.6.1
1197     - GRSecurity 1.9.9g
1198     - MPPE
1199     - EXT3 data journal fix
1200     - CIPE 1.5.4
1201 frogger 1.6
1202     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1203     hardened-sources-2.4.20-r1.ebuild, manifest:
1204 plasmaroo 1.18 Updated to install flask components correctly for selinux.
1205 frogger 1.5
1206     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1207     hardened-sources-2.4.20-r1.ebuild:
1208     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1209     is patched in instead. Ptrace patches for selinux have also been added. In
1210     either case, systrace support will be patched in as well.
1211 frogger 1.3
1212     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1213     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1214 plasmaroo 1.18 Revision bump for new sources.
1215 frogger 1.4
1216 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1217 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
1218 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1219 method 1.1
1220 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
1221    
1222 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1223     hardened-sources-2.4.20.ebuild:
1224 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20