/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.200 - (hide annotations) (download)
Sun Dec 23 12:35:28 2007 UTC (6 years, 8 months ago) by phreak
Branch: MAIN
Changes since 1.199: +7 -1 lines
Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
(Portage version: 2.1.3.9)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 opfer 1.130 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 phreak 1.200 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.199 2007/12/04 18:32:09 phreak Exp $
4    
5     *hardened-sources-2.6.23-r4 (23 Dec 2007)
6    
7     23 Dec 2007; Christian Heim <phreak@gentoo.org>
8     +hardened-sources-2.6.23-r4.ebuild:
9     Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
10 phreak 1.199
11     *hardened-sources-2.6.23-r3 (04 Dec 2007)
12    
13     04 Dec 2007; Christian Heim <phreak@gentoo.org>
14     +hardened-sources-2.6.23-r3.ebuild:
15     Revision bump, pulling in 2.6.23.9.
16 phreak 1.198
17     *hardened-sources-2.6.23-r2 (25 Nov 2007)
18    
19     25 Nov 2007; Christian Heim <phreak@gentoo.org>
20     +hardened-sources-2.6.23-r2.ebuild:
21     Updated patchset, thanks to solar.
22 phreak 1.197
23     *hardened-sources-2.6.23-r1 (31 Oct 2007)
24    
25     31 Oct 2007; Christian Heim <phreak@gentoo.org>
26     +hardened-sources-2.6.23-r1.ebuild:
27     Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
28 solar 1.196
29     29 Oct 2007; <solar@gentoo.org> metadata.xml:
30     - update metadata.xml
31 phreak 1.195
32     25 Oct 2007; Christian Heim <phreak@gentoo.org>
33     hardened-sources-2.6.22-r8.ebuild:
34     Marking 2.6.22-r8 stable on amd64 and x86.
35 phreak 1.194
36     21 Oct 2007; Christian Heim <phreak@gentoo.org>
37     -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
38     -hardened-sources-2.6.21-r4.ebuild:
39     Removing old ebuilds.
40 phreak 1.193
41     *hardened-sources-2.4.35-r2 (21 Oct 2007)
42    
43     21 Oct 2007; Christian Heim <phreak@gentoo.org>
44     +hardened-sources-2.4.35-r2.ebuild:
45     Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
46     patches.
47 phreak 1.192
48     *hardened-sources-2.6.22-r8 (21 Oct 2007)
49    
50     21 Oct 2007; Christian Heim <phreak@gentoo.org>
51     +hardened-sources-2.6.22-r8.ebuild:
52     Yet another new patch, hopefully fixing the remaining issues we had w/
53     2.6.22. Candidate for stabling.
54 phreak 1.191
55     *hardened-sources-2.6.23 (13 Oct 2007)
56    
57     13 Oct 2007; Christian Heim <phreak@gentoo.org>
58     +hardened-sources-2.6.23.ebuild:
59     Initial hardened-sources-2.6.23. If people still have problems w/ bug
60     194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
61 phreak 1.190
62     11 Oct 2007; Christian Heim <phreak@gentoo.org>
63     hardened-sources-2.6.20-r10.ebuild:
64     Pulling in yet another new genpatches version, fixing the PWC bug for real.
65 phreak 1.189
66     04 Oct 2007; Christian Heim <phreak@gentoo.org>
67     -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
68     Removing old versions.
69 phreak 1.188
70     *hardened-sources-2.6.22-r7 (01 Oct 2007)
71    
72     01 Oct 2007; Christian Heim <phreak@gentoo.org>
73     +hardened-sources-2.6.22-r7.ebuild:
74     Revision bump, pulling in a newer patch. Should fix #194276.
75 phreak 1.187
76     30 Sep 2007; Christian Heim <phreak@gentoo.org>
77     hardened-sources-2.6.20-r10.ebuild:
78     Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
79     Mike Doty).
80 phreak 1.186
81     *hardened-sources-2.6.22-r6 (26 Sep 2007)
82    
83     26 Sep 2007; Christian Heim <phreak@gentoo.org>
84     +hardened-sources-2.6.22-r6.ebuild:
85     Revision bump, grabbing up till Linux 2.6.22.9.
86 phreak 1.185
87     24 Sep 2007; Christian Heim <phreak@gentoo.org>
88     -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
89     Cleaning up further.
90 phreak 1.184
91     *hardened-sources-2.6.20-r10 (24 Sep 2007)
92    
93     24 Sep 2007; Christian Heim <phreak@gentoo.org>
94     -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
95     +hardened-sources-2.6.20-r10.ebuild:
96     Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
97     revisions.
98 phreak 1.183
99     *hardened-sources-2.6.22-r5 (22 Sep 2007)
100    
101     22 Sep 2007; Christian Heim <phreak@gentoo.org>
102     +hardened-sources-2.6.22-r5.ebuild:
103     Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
104 phreak 1.182
105     17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
106     Removing johnm from metadata.xml (see #186467 for reference).
107 phreak 1.181
108     *hardened-sources-2.6.22-r4 (17 Sep 2007)
109    
110     17 Sep 2007; Christian Heim <phreak@gentoo.org>
111     +hardened-sources-2.6.22-r4.ebuild:
112     Revision bump, hopefully fixing all those weird PAX failures.
113 phreak 1.180
114     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
115     Updating the metadata.xml.
116 phreak 1.179
117     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
118     Removing tocharian from metadata due to his retirement (see #71718 for
119     reference).
120 phreak 1.178
121     *hardened-sources-2.6.20-r9 (30 Aug 2007)
122    
123     30 Aug 2007; Christian Heim <phreak@gentoo.org>
124     +hardened-sources-2.6.20-r9.ebuild:
125     Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
126 phreak 1.177
127     29 Aug 2007; Christian Heim <phreak@gentoo.org>
128     -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
129     -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
130     -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
131     -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
132     -hardened-sources-2.6.22-r2.ebuild:
133     Removing some redundant versions.
134 phreak 1.176
135     *hardened-sources-2.4.35-r1 (29 Aug 2007)
136    
137     29 Aug 2007; Christian Heim <phreak@gentoo.org>
138     +hardened-sources-2.4.35-r1.ebuild:
139     Revision bump, new grsecurity patch.
140 phreak 1.175
141     *hardened-sources-2.6.20-r8 (26 Aug 2007)
142    
143     26 Aug 2007; Christian Heim <phreak@gentoo.org>
144     +hardened-sources-2.6.20-r8.ebuild:
145     Revision bump for Linux 2.6.20.17.
146 phreak 1.174
147     *hardened-sources-2.6.22-r3 (22 Aug 2007)
148    
149     22 Aug 2007; Christian Heim <phreak@gentoo.org>
150     +hardened-sources-2.6.22-r3.ebuild:
151     Revision bump for Linux 2.6.22.4.
152 phreak 1.173
153     16 Aug 2007; Christian Heim <phreak@gentoo.org>
154     hardened-sources-2.6.22-r2.ebuild:
155     Updated patchset, to fix the alignment against 2.6.22.3.
156 phreak 1.172
157     *hardened-sources-2.6.22-r2 (16 Aug 2007)
158    
159     16 Aug 2007; Christian Heim <phreak@gentoo.org>
160     +hardened-sources-2.6.22-r2.ebuild:
161     Revision bump for Linux 2.6.22.3.
162 phreak 1.171
163     *hardened-sources-2.4.35 (16 Aug 2007)
164    
165     16 Aug 2007; Christian Heim <phreak@gentoo.org>
166     +hardened-sources-2.4.35.ebuild:
167     Version bump, initial version for Linux 2.4.35.
168 phreak 1.170
169     *hardened-sources-2.6.21-r4 (16 Aug 2007)
170    
171     16 Aug 2007; Christian Heim <phreak@gentoo.org>
172     +hardened-sources-2.6.21-r4.ebuild:
173     Revision bump for Linux 2.6.21.6.
174 phreak 1.169
175     *hardened-sources-2.6.20-r7 (16 Aug 2007)
176    
177     16 Aug 2007; Christian Heim <phreak@gentoo.org>
178     +hardened-sources-2.6.20-r7.ebuild:
179     Revision bump for Linux 2.6.20.16.
180 phreak 1.168
181     *hardened-sources-2.6.22-r1 (13 Aug 2007)
182    
183     13 Aug 2007; Christian Heim <phreak@gentoo.org>
184     +hardened-sources-2.6.22-r1.ebuild:
185     Yet another revision bump.
186 phreak 1.167
187     *hardened-sources-2.6.22 (10 Aug 2007)
188    
189     10 Aug 2007; Christian Heim <phreak@gentoo.org>
190     +hardened-sources-2.6.22.ebuild:
191     Initial release for 2.6.22. If you are using hardened-sources on a desktop
192     machine (P4 or newer), be aware you might need to disable
193     CONFIG_PAX_PAGEEXEC.
194 phreak 1.166
195     04 Aug 2007; Christian Heim <phreak@gentoo.org>
196     hardened-sources-2.6.20-r6.ebuild:
197     Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
198     2.6.20.15.
199 phreak 1.165
200     10 Jul 2007; Christian Heim <phreak@gentoo.org>
201     hardened-sources-2.6.20-r5.ebuild:
202     Marking hardened-sources-2.6.20-r5 stable on ppc.
203 phreak 1.164
204     10 Jul 2007; Christian Heim <phreak@gentoo.org>
205     -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
206     Cleanup.
207 phreak 1.163
208     *hardened-sources-2.6.20-r6 (08 Jul 2007)
209    
210     08 Jul 2007; Christian Heim <phreak@gentoo.org>
211     +hardened-sources-2.6.20-r6.ebuild:
212     Revision bump, grabbing yet another stable release.
213 phreak 1.162
214     17 Jun 2007; Christian Heim <phreak@gentoo.org>
215     -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
216     -hardened-sources-2.6.21-r2.ebuild:
217     Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
218     alpha stable KEYWORD by mistake.
219 phreak 1.161
220     17 Jun 2007; Christian Heim <phreak@gentoo.org>
221     hardened-sources-2.6.20-r5.ebuild:
222     Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
223     genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
224 phreak 1.160
225     *hardened-sources-2.6.21-r3 (12 Jun 2007)
226    
227     12 Jun 2007; Christian Heim <phreak@gentoo.org>
228     +hardened-sources-2.6.21-r3.ebuild:
229     Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
230     of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
231     love.
232 phreak 1.159
233     *hardened-sources-2.6.20-r5 (11 Jun 2007)
234    
235     11 Jun 2007; Christian Heim <phreak@gentoo.org>
236     +hardened-sources-2.6.20-r5.ebuild:
237     Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
238     of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
239     love.
240 pappy 1.158
241     *hardened-sources-2.4.34.5 (11 Jun 2007)
242    
243     11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
244     +hardened-sources-2.4.34.5.ebuild:
245     added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
246 phreak 1.157
247     30 May 2007; Christian Heim <phreak@gentoo.org>
248     -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
249     Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
250     stale ebuild(s).
251 phreak 1.156
252     30 May 2007; Christian Heim <phreak@gentoo.org>
253     -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
254     -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
255     -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
256     Doing some cleanups, remove stale ebuilds.
257 phreak 1.155
258     26 May 2007; Christian Heim <phreak@gentoo.org>
259     hardened-sources-2.6.21-r2.ebuild:
260     Fixing the grsecurity patch, had one '};' too much.
261 phreak 1.154
262     *hardened-sources-2.6.21-r2 (26 May 2007)
263    
264     26 May 2007; Christian Heim <phreak@gentoo.org>
265     -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
266     +hardened-sources-2.6.21-r2.ebuild:
267     Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
268     grsecurity patch to 2.1.10-2.6.21.1-200705221918.
269 phreak 1.153
270     *hardened-sources-2.6.20-r4 (26 May 2007)
271    
272     26 May 2007; Christian Heim <phreak@gentoo.org>
273     -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
274     Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
275 phreak 1.154 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
276 phreak 1.152
277     15 May 2007; Christian Heim <phreak@gentoo.org>
278     hardened-sources-2.6.20-r3.ebuild:
279     Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
280     introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
281     grsecurity patch fail in that exact same hunk.
282 phreak 1.151
283     *hardened-sources-2.6.20-r3 (15 May 2007)
284    
285     15 May 2007; Christian Heim <phreak@gentoo.org>
286     +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
287     Revision bump, incorporating Linux 2.6.20.11.
288    
289     *hardened-sources-2.6.21-r1 (11 May 2007)
290    
291     11 May 2007; Christian Heim <phreak@gentoo.org>
292     +hardened-sources-2.6.21-r1.ebuild:
293     Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
294     mentioned in #177234.
295 kevquinn 1.150
296     07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
297     files/digest-hardened-sources-2.6.21, Manifest:
298     Fix Manifest/digest for linux-2.6.21.tar.bz2
299 phreak 1.149
300     06 May 2007; Christian Heim <phreak@gentoo.org>
301     hardened-sources-2.6.21.ebuild:
302     Bumping the hardened-patches version, needed for the fix for #177234.
303 phreak 1.148
304     *hardened-sources-2.6.21 (02 May 2007)
305    
306     02 May 2007; Christian Heim <phreak@gentoo.org>
307     +hardened-sources-2.6.21.ebuild:
308     Version bump, Linux 2.6.21-hardened.
309 phreak 1.147
310     29 Apr 2007; Christian Heim <phreak@gentoo.org>
311     hardened-sources-2.6.20-r2.ebuild:
312     Adding ~ia64 on Ned's request.
313 phreak 1.146
314     29 Apr 2007; Christian Heim <phreak@gentoo.org>
315     hardened-sources-2.6.20-r2.ebuild:
316     Fixing the included grsecurity patch, wasn't alligning due to the Index:
317     header line(s).
318 phreak 1.145
319     29 Apr 2007; Christian Heim <phreak@gentoo.org>
320     hardened-sources-2.6.20-r2.ebuild:
321     Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
322 armin76 1.144
323     *hardened-sources-2.6.20-r2 (10 Apr 2007)
324    
325     10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
326     +hardened-sources-2.6.20-r2.ebuild:
327     Version bump, on behalf of phreak
328 phreak 1.143
329     *hardened-sources-2.6.20-r1 (04 Apr 2007)
330    
331     04 Apr 2007; Christian Heim <phreak@gentoo.org>
332     +hardened-sources-2.6.20-r1.ebuild:
333     Revision bump, grabbing a newer grsecurity snapshot.
334 phreak 1.142
335     *hardened-sources-2.6.20 (25 Mar 2007)
336    
337     25 Mar 2007; Christian Heim <phreak@gentoo.org>
338     +hardened-sources-2.6.20.ebuild:
339     Finally a hardened-sources version for 2.6.20; many people have been waiting
340     for this. Thanks to Steve for preliminary testing, thanks to Ned for the
341     testbox.
342 chainsaw 1.141
343     16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
344     hardened-sources-2.6.18-r6.ebuild:
345     Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
346 phreak 1.140
347     *hardened-sources-2.6.18-r6 (16 Mar 2007)
348    
349     16 Mar 2007; Christian Heim <phreak@gentoo.org>
350     -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
351     Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
352     yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
353     supposed to be.
354 phreak 1.139
355     06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
356     Fixing the Manifest, the previous one was broken (as in still had the
357     deleted ebuild in it).
358 phreak 1.138
359     06 Mar 2007; Christian Heim <phreak@gentoo.org>
360     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
361     +hardened-sources-2.6.18-r5.ebuild:
362     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
363     Linux 2.6.18.8. Also cleaning up the older version.
364    
365     *hardened-sources-2.6.18-r5 (06 Mar 2007)
366    
367     06 Mar 2007; Christian Heim <phreak@gentoo.org>
368     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
369     +hardened-sources-2.6.18-r5.ebuild:
370     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
371     Linux 2.6.18.8. Also cleaning up the older version.
372 phreak 1.137
373     24 Feb 2007; Christian Heim <phreak@gentoo.org>
374     -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
375     -hardened-sources-2.6.19-r5.ebuild:
376     Removing some of the old version, that didn't work.
377 phreak 1.136
378     *hardened-sources-2.6.19-r6 (12 Feb 2007)
379    
380     12 Feb 2007; Christian Heim <phreak@gentoo.org>
381     +hardened-sources-2.6.19-r6.ebuild:
382     Revision bump, including a new grsec version fixing #166235.
383 pappy 1.134
384     *hardened-sources-2.4.34 (24 Jan 2007)
385    
386     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
387 pappy 1.135 Manifest:
388     updating Manifest with checksums of new tarball and ebuild
389    
390     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
391 pappy 1.134 +hardened-sources-2.4.34.ebuild:
392     I added new hardened sources 2.4 update, this is a critical path
393     security bugfix - all users of h-s are strongly advised
394     to update their existing hardened sources to this version.
395     It contains a fix for a kernel vulnerability that is pertaining
396     to the PaX changes to virtual memory management, possibly leading
397     to a local kernel exploit ... see grsecurity.net forums and homepage
398 phreak 1.133
399     23 Jan 2007; Christian Heim <phreak@gentoo.org>
400     files/digest-hardened-sources-2.6.19-r5, Manifest:
401     Fixing the patch-tarball digest.
402 phreak 1.132
403     *hardened-sources-2.6.19-r5 (23 Jan 2007)
404    
405     23 Jan 2007; Christian Heim <phreak@gentoo.org>
406     +hardened-sources-2.6.19-r5.ebuild:
407     Revision bump, closing the recently discovered PaX expand_stack()
408     vulnerability.
409 phreak 1.131
410     *hardened-sources-2.6.19-r4 (14 Jan 2007)
411    
412     14 Jan 2007; Christian Heim <phreak@gentoo.org>
413     +hardened-sources-2.6.19-r4.ebuild:
414     Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
415     dropping the randomized PID feature.
416 opfer 1.130
417     11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
418     hardened-sources-2.4.33.4.ebuild:
419     stable x86, bug #161171
420 phreak 1.129
421     *hardened-sources-2.6.19-r3 (27 Dec 2006)
422    
423     27 Dec 2006; Christian Heim <phreak@gentoo.org>
424     -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
425     Revision bump for bug #157186 and #158786.
426 phreak 1.128
427     *hardened-sources-2.6.18-r4 (27 Dec 2006)
428    
429     27 Dec 2006; Christian Heim <phreak@gentoo.org>
430     -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
431     Revision bump for bug #157186.
432 phreak 1.127
433     *hardened-sources-2.6.19-r2 (23 Dec 2006)
434    
435     23 Dec 2006; Christian Heim <phreak@gentoo.org>
436     -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
437     Revision bump to pull in genpatches-2.6.19-3 for #157186.
438 phreak 1.126
439     17 Dec 2006; Christian Heim <phreak@gentoo.org>
440     hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
441     hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
442     hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
443     hardened-sources-2.6.19-r1.ebuild:
444     Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
445     adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
446 pappy 1.125
447     *hardened-sources-2.4.33.4 (17 Dec 2006)
448    
449     17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
450     +hardened-sources-2.4.33.4.ebuild:
451     new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
452     and quilting
453 phreak 1.124
454     *hardened-sources-2.6.19-r1 (14 Dec 2006)
455    
456     14 Dec 2006; Christian Heim <phreak@gentoo.org>
457     -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
458     Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
459     for reporting).
460 phreak 1.123
461     *hardened-sources-2.6.19 (13 Dec 2006)
462    
463     13 Dec 2006; Christian Heim <phreak@gentoo.org>
464     +hardened-sources-2.6.19.ebuild:
465     And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
466     Brad for providing that prompt update.
467 phreak 1.122
468     *hardened-sources-2.6.18-r3 (13 Dec 2006)
469    
470     13 Dec 2006; Christian Heim <phreak@gentoo.org>
471     -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
472     +hardened-sources-2.6.18-r3.ebuild:
473     Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
474     S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
475 phreak 1.121
476     09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
477     Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
478 nixnut 1.120
479     08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
480     Stable on ppc wrt bug 157356
481 opfer 1.119
482     07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
483     hardened-sources-2.6.18.ebuild:
484     stable x86, bug #157356
485 phreak 1.118
486     *hardened-sources-2.6.18-r2 (06 Dec 2006)
487    
488     06 Dec 2006; Christian Heim <phreak@gentoo.org>
489     +hardened-sources-2.6.18-r2.ebuild:
490     Revision bump, including 2.6.18.5 (via genpatches) and
491     4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
492     Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
493     redesign.
494 phreak 1.117
495     06 Dec 2006; Christian Heim <phreak@gentoo.org>
496     hardened-sources-2.6.18.ebuild:
497     Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
498     of Mike Doty).
499 phreak 1.116
500     *hardened-sources-2.6.18-r1 (23 Nov 2006)
501    
502     23 Nov 2006; Christian Heim <phreak@gentoo.org>
503     +hardened-sources-2.6.18-r1.ebuild:
504     Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
505 phreak 1.115
506     *hardened-sources-2.6.18 (11 Nov 2006)
507    
508     11 Nov 2006; Christian Heim <phreak@gentoo.org>
509     +hardened-sources-2.6.18.ebuild:
510     Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
511 solar 1.114
512     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
513     - mark amd64 stable also. bug #151877
514 solar 1.113
515     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
516     - mark 2.6.17-r1 stable
517 phreak 1.112
518     27 Aug 2006; Christian Heim <phreak@gentoo.org>
519     -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
520     Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
521 phreak 1.111
522     *hardened-sources-2.6.17-r1 (26 Aug 2006)
523    
524     26 Aug 2006; Christian Heim <phreak@gentoo.org>
525     +hardened-sources-2.6.17-r1.ebuild:
526     Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
527     grsecurity patch.
528 phreak 1.110
529     *hardened-sources-2.6.17 (17 Aug 2006)
530    
531     17 Aug 2006; Christian Heim <phreak@gentoo.org>
532     +hardened-sources-2.6.17.ebuild:
533     Bumping the hardened-sources-2.6 series to 2.6.17, using
534     genpatches-2.6.17-6.base.
535 solar 1.109
536     07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
537     - stable on x86 and amd64
538 solar 1.108
539     *hardened-sources-2.6.16-r11 (15 Jul 2006)
540    
541     15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
542     -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
543     -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
544     -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
545     - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
546     crusty ebuilds
547 johnm 1.107
548     14 Jul 2006; John Mylchreest <johnm@gentoo.org>
549     hardened-sources-2.6.16-r10.ebuild:
550     marking stable on x86 and amd64
551 solar 1.106
552     13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
553     - 2.4.32-r6 stable on x86. RSBAC state unknown
554 kang 1.105
555     *hardened-sources-2.4.32-r7 (10 Jul 2006)
556    
557     10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
558     +hardened-sources-2.4.32-r7.ebuild:
559     Bump PaX for RSBAC to test-17
560 johnm 1.104
561     *hardened-sources-2.6.16-r9 (03 Jul 2006)
562    
563     03 Jul 2006; John Mylchreest <johnm@gentoo.org>
564     -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
565     hardened-sources-2.6.16 bump to latest -base.
566 solar 1.103
567     *hardened-sources-2.4.32-r6 (30 Jun 2006)
568    
569     30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
570     hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
571     - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
572     sysctl controlable resource logging
573 johnm 1.102
574     *hardened-sources-2.6.16-r7 (05 Jun 2006)
575    
576     05 Jun 2006; John Mylchreest <johnm@gentoo.org>
577     -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
578     push new 2.6.16 release in preparation for stable
579 solar 1.101
580     22 May 2006; <solar@gentoo.org> :
581     - redigest bug 134002
582 kang 1.100
583     *hardened-sources-2.4.32-r5 (16 May 2006)
584    
585     16 May 2006; Guillaume Destuynder <kang@gentoo.org>
586     +hardened-sources-2.4.32-r5.ebuild:
587     Fixes rsbac common patching (new patch in new -r5 patchset)
588 solar 1.99
589     *hardened-sources-2.4.32-r4 (13 May 2006)
590    
591     13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
592     +hardened-sources-2.4.32-r4.ebuild:
593     - security bumps
594 johnm 1.98
595     *hardened-sources-2.6.16-r6 (03 May 2006)
596    
597     03 May 2006; John Mylchreest <johnm@gentoo.org>
598     +hardened-sources-2.6.16-r6.ebuild:
599     bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
600 johnm 1.97
601     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
602     hardened-sources-2.6.14-r8.ebuild:
603     fix x86_64 build problem, this will delay the digest issue again for a short
604     while but it will sort itself out
605 johnm 1.96
606     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
607     hardened-sources-2.6.14-r8.ebuild:
608     bump hardened patchset
609 antarus 1.94
610     27 Apr 2006; Alec Warner <antarus@gentoo.org>
611     files/digest-hardened-sources-2.4.32-r2,
612     files/digest-hardened-sources-2.4.32-r3,
613     files/digest-hardened-sources-2.6.14-r8, Manifest:
614     Fixing duff SHA256 digests: Bug # 131293
615 johnm 1.93
616 johnm 1.95 *hardened-sources-2.6.16-r5 (27 Apr 2006)
617    
618     27 Apr 2006; John Mylchreest <johnm@gentoo.org>
619     -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
620     -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
621     stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
622     cleanup of old uneccessary sources
623    
624 johnm 1.93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
625     fix digest
626 johnm 1.92
627     *hardened-sources-2.6.14-r8 (20 Apr 2006)
628    
629     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
630     +hardened-sources-2.6.14-r8.ebuild:
631     fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
632 johnm 1.91
633     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
634     Turning on gpg-signing again, and recomitting
635 johnm 1.90
636     *hardened-sources-2.6.16-r4 (20 Apr 2006)
637    
638     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
639     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
640     +hardened-sources-2.6.16-r4.ebuild:
641     Fix numerous security vulns
642 solar 1.89
643     *hardened-sources-2.4.32-r3 (16 Apr 2006)
644    
645     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
646     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
647     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
648     - security bump for bug #112791. Removed old ebuilds
649 johnm 1.88
650     *hardened-sources-2.6.16-r3 (15 Apr 2006)
651    
652     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
653     +hardened-sources-2.6.16-r3.ebuild:
654     Removing silly localversion which I missed
655 johnm 1.87
656     *hardened-sources-2.6.14-r7 (14 Apr 2006)
657    
658     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
659     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
660     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
661 johnm 1.86
662     *hardened-sources-2.6.16-r2 (13 Apr 2006)
663    
664     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
665     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
666     +hardened-sources-2.6.16-r2.ebuild:
667     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
668     labels, dropping USERGROUP define fixes, since these were merged mainstream.
669 johnm 1.85
670     *hardened-sources-2.6.16-r1 (11 Apr 2006)
671    
672     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
673     +hardened-sources-2.6.16-r1.ebuild:
674     Bumping to include ppc build fix and 2.6.16.3
675 tsunam 1.84
676     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
677     hardened-sources-2.6.14-r6.ebuild:
678     Stable on x86; bug #127718
679 johnm 1.83
680     *hardened-sources-2.6.16 (31 Mar 2006)
681    
682     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
683     +hardened-sources-2.6.16.ebuild:
684     Bumping to new version of grsec, and kernel base. New squashfs. Based on
685     2.6.16.1
686 cryos 1.82
687     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
688     hardened-sources-2.6.14-r6.ebuild:
689     Stable on amd64, bug 127718.
690 nixnut 1.81
691     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
692     Stable on ppc. Bug #127718
693 johnm 1.80
694     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
695     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
696     -hardened-sources-2.6.14-r4.ebuild:
697     Cleanup.
698 johnm 1.79
699     *hardened-sources-2.6.14-r6 (15 Mar 2006)
700    
701     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
702     +hardened-sources-2.6.14-r6.ebuild:
703     Fixes grsec policy recreation bug and adds a
704     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
705 solar 1.78
706     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
707     - stable on x86
708 hansmi 1.77
709     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
710     hardened-sources-2.6.14-r5.ebuild:
711     Stable on ppc.
712 johnm 1.76
713     *hardened-sources-2.6.14-r5 (01 Feb 2006)
714    
715     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
716     +hardened-sources-2.6.14-r5.ebuild:
717     fixing every known exploit
718 solar 1.75
719     *hardened-sources-2.4.32-r2 (26 Jan 2006)
720    
721     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
722     +hardened-sources-2.4.32-r2.ebuild:
723     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
724 solar 1.74
725     *hardened-sources-2.6.14-r4 (12 Jan 2006)
726    
727     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
728     - version bump for new genpatches which fix up a few sec holes
729 solar 1.73
730     *hardened-sources-2.4.32-r1 (05 Jan 2006)
731    
732     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
733     - revision bump to add misc vital linux kernel security patches.
734 johnm 1.72
735     *hardened-sources-2.6.14-r3 (30 Dec 2005)
736    
737     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
738     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
739     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
740 johnm 1.71
741     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
742     hardened-sources-2.6.14-r2.ebuild:
743     making x86 & amd64 stable following testing.
744 johnm 1.70
745     *hardened-sources-2.6.14-r2 (27 Dec 2005)
746    
747     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
748     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
749     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
750     network hooks.
751 johnm 1.69
752     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
753     hardened-sources-2.6.14-r1.ebuild:
754     bumping to stable early for sec fix on x86 & amd64
755 johnm 1.68
756     *hardened-sources-2.6.14-r1 (05 Dec 2005)
757    
758     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
759     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
760     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
761 solar 1.67
762     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
763     - stable on x86 security bug #114227 CAN-2005-3257
764 kang 1.66
765     *hardened-sources-2.4.32 (19 Nov 2005)
766    
767     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
768     +hardened-sources-2.4.32.ebuild:
769     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
770     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
771     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
772     rsbac >> /etc/portage/package.use)
773 johnm 1.65
774     *hardened-sources-2.6.14 (14 Nov 2005)
775    
776     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
777     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
778     Bumping 2.6 series to 2.6.14.2
779 johnm 1.64
780     *hardened-sources-2.6.13-r2 (20 Oct 2005)
781    
782     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
783     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
784     +hardened-sources-2.6.13-r2.ebuild:
785     Fixes minor build error in ppc.
786 johnm 1.63
787     *hardened-sources-2.6.13-r1 (17 Oct 2005)
788    
789     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
790     +hardened-sources-2.6.13-r1.ebuild:
791     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
792     2.6.13.4, fixes some major amd64 stability problems.
793 johnm 1.62
794     *hardened-sources-2.6.13 (16 Sep 2005)
795    
796     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
797     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
798     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
799     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
800     users should test this thoroughly.
801 solar 1.61
802     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
803     - stable on x86
804 johnm 1.60
805     *hardened-sources-2.6.11-r15 (27 Jun 2005)
806    
807     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
808     +hardened-sources-2.6.11-r15.ebuild:
809     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
810     grsec redefining curr_ip struct.
811 solar 1.59
812     *hardened-sources-2.4.31 (20 Jun 2005)
813    
814     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
815     initial import of 2.4.31 tree
816 johnm 1.58
817     *hardened-sources-2.6.11-r14 (14 Jun 2005)
818    
819     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
820     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
821     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
822     naming scheme to abide by genpatches
823 johnm 1.57
824     *hardened-sources-2.6.11-r13 (18 May 2005)
825    
826     18 May 2005; John Mylchreest <johnm@gentoo.org>
827     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
828     Managed to mangle the Makefile patch from grsec, to miss out the grsec
829     target. sorry about that. Fixes bug #93022
830 johnm 1.56
831     *hardened-sources-2.6.11-r12 (17 May 2005)
832    
833     17 May 2005; John Mylchreest <johnm@gentoo.org>
834     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
835     +hardened-sources-2.6.11-r12.ebuild:
836     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
837     merges in genpatches-base
838 johnm 1.55
839     *hardened-sources-2.6.11-r12 (17 May 2005)
840    
841     17 May 2005; John Mylchreest <johnm@gentoo.org>
842     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
843     +hardened-sources-2.6.11-r12.ebuild:
844     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
845     merges in genpatches-base
846 solar 1.54
847     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
848     -files/2.4.27-cmdline-race.patch,
849     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
850     -files/2.4.28-grsec-binfmt_a.out.patch,
851     -files/2.4.28-grsec-cmdline-race.patch,
852     -files/2.4.28-selinux-binfmt_a.out.patch,
853     -files/2.4.28-selinux-cmdline-race.patch,
854     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
855     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
856     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
857     cleanup..
858 solar 1.53
859     *hardened-sources-2.4.30-r1 (21 Apr 2005)
860    
861     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
862     - disable aout by default
863 solar 1.52
864     *hardened-sources-2.4.30 (18 Apr 2005)
865    
866     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
867     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
868     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
869     use
870 tocharian 1.50
871 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
872    
873     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
874     +hardened-sources-2.4.29.ebuild:
875     New hardened-patches-2.4-29.0 patchball.
876     Removed SELinux support, upgraded GRSecurity to 2.1.4.
877    
878     *hardened-sources-2.4.28-r5 (06 Mar 2005)
879    
880     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
881     +hardened-sources-2.4.28-r5.ebuild:
882     Added a fix for a PaX vulnerability.
883    
884     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
885 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
886     Stable on x86
887 solar 1.49
888     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
889     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
890     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
891     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
892     - fixed/added RDEPEND= in all kernel-2 ebuilds
893 tocharian 1.48
894     *hardened-sources-2.4.28-r4 (21 Jan 2005)
895    
896     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
897     +hardened-sources-2.4.28-r4.ebuild:
898     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
899     backport of neighbour hash updates.
900 tocharian 1.47
901     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
902     hardened-sources-2.4.28-r3.ebuild:
903     Stable on x86
904 tseng 1.46
905     *hardened-sources-2.6.10-r3 (20 Jan 2005)
906    
907     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
908     +hardened-sources-2.6.10-r3.ebuild:
909     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
910     in 2005.0
911 tocharian 1.45
912     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
913     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
914     hardened-sources-2.4.28-r2.ebuild:
915     Mark stable on x86
916 tocharian 1.44
917     *hardened-sources-2.4.28-r3 (17 Jan 2005)
918    
919     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
920     +hardened-sources-2.4.28-r3.ebuild:
921     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
922 tocharian 1.43
923     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
924     hardened-sources-2.4.28.ebuild:
925     Mark stable on x86.
926 tocharian 1.42
927     *hardened-sources-2.4.28-r2 (13 Jan 2005)
928    
929     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
930     +hardened-sources-2.4.28-r2.ebuild:
931     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
932     Mazinger for grsecurity patches as well.
933 plasmaroo 1.41
934     *hardened-sources-2.4.28-r1 (23 Dec 2004)
935    
936     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
937     Security bump. Thank tocharian for rolling a new patchset...
938 solar 1.40
939     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
940     +files/2.4.28-grsec-cmdline-race.patch,
941     +files/2.4.28-selinux-binfmt_a.out.patch,
942     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
943     - Round up remaining security patches that appear to be missing in 2.4.28. -
944     PaX standalone updated to current. hgpv=28.1
945 solar 1.39
946     *hardened-sources-2.4.28 (28 Nov 2004)
947    
948     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
949     security bump. Thank tocharian for rolling a new patchset
950 scox 1.31
951 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
952    
953     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
954     +hardened-sources-2.4.27-r3.ebuild:
955     Applies the new 2.4-27.2 patchball which updates
956     GRSecurity to the 2.0.1 version.
957    
958 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
959    
960     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
961     +hardened-sources-2.4.27-r2.ebuild:
962     Version bump.
963     This version uses the new 2.4-27.1 patchball which updates
964     both the SELinux PaX hooks patch and the SELinux headers.
965    
966 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
967    
968     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
969     +hardened-sources-2.4.27-r1.ebuild,
970     -hardened-sources-2.4.27.ebuild,
971     +files/2.4.27-cmdline-race.patch:
972     Version bump, fix for cmdline race. See bug #59905.
973    
974     *hardened-sources-2.4.26-r6 (09 Aug 2004)
975    
976     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
977     +hardened-sources-2.4.26-r6.ebuild,
978     -hardened-sources-2.4.26-r5.ebuild,
979     -hardened-sources-2.4.26-r4.ebuild,
980     +files/2.4.26-cmdline-race.patch:
981     Version bump, fix for cmdline race. See bug #59905.
982    
983 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
984    
985     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
986     +hardened-sources-2.4.27.ebuild,
987     +files/2.4.27-CAN-2004-0394.patch:
988     Ported the patchball to the 2.4.27 kernel version.
989    
990 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
991    
992     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
993     +hardened-sources-2.4.26-r5.ebuild:
994 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
995 scox 1.34 It adds the following features:
996     - Squashfs
997     - Ebtables
998     - Netdev random (core+drivers)
999     - Watchdog Timer (WDT) fix.
1000    
1001 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1002    
1003     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1004     +hardened-sources-2.4.26-r4.ebuild,
1005     +files/2.4.26-CAN-2004-0415.patch,
1006     -hardened-sources-2.4.26-3:
1007     Version bump, fix for CAN 0415, see bug #59378.
1008    
1009 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1010    
1011     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1012     +hardened-sources-2.4.26-r3.ebuild,
1013     +files/2.4.26-CAN-2004-0497.patch,
1014     -hardened-sources-2.4.26-r2.ebuild:
1015     Version bump, fixed CAN 0497, see bug #56171.
1016    
1017 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1018    
1019     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1020 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
1021 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
1022     +files/2.4.26-CAN-2004-0535.patch,
1023     -hardened-sources-2.4.26-r1.ebuild:
1024     Fixes for both CAN 0495 and 0535, see bug #54976
1025 pvdabeel 1.27
1026 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1027     hardened-sources-2.4.26-r1.ebuild:
1028     QA - fix use invocation
1029 scox 1.28
1030     *hardened-sources-2.4.26-r1 (22 June 2004)
1031    
1032     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1033     +hardened-sources-2.4.26-r1.ebuild,
1034     +files/2.4.26-CAN-2004-0394.patch,
1035     +files/2.4.26-signal-race.patch,
1036     -hardened-sources-2.4.26.ebuild,
1037     -hardened-sources-2.4.24-r3.ebuild:
1038     Version bump for the CAN-2004-0394 issue and bug #53804
1039     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1040    
1041    
1042 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1043     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1044     Masked hardened-sources-2.4.26.ebuild broken for ppc
1045    
1046     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1047     hardened-sources-2.4.24-r3.ebuild:
1048     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1049 plasmaroo 1.25
1050 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
1051    
1052     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1053     +hardened-sources-2.4.26.ebuild:
1054     Updated hardened-sources for the 2.4.26 kernel
1055     Removed broken components, updated almost everything.
1056    
1057 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1058    
1059     17 Apr 2004; <plasmaroo@gentoo.org>
1060     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1061     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1062     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1063     +hardened-sources-2.4.24-r3.ebuild:
1064     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1065     vulnerabilities. Old revisions removed.
1066 plasmaroo 1.24
1067     *hardened-sources-2.4.24-r2 (15 Apr 2004)
1068    
1069     15 Apr 2004; <plasmaroo@gentoo.org>
1070     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1071     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1072     Version bump for the CAN-2004-0109 issue; bug #47881.
1073 aliz 1.23
1074     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1075     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1076     Add eutils to inherit.
1077 plasmaroo 1.22
1078     *hardened-sources-2.4.24-r1 (19 Feb 2004)
1079    
1080     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1081     files/hardened-sources-2.4.24.munmap.patch:
1082     Added the patch for the mremap/munmap vulnerability. Bug #42024.
1083 scox 1.19
1084 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
1085 scox 1.26
1086 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1087     hardened-sources-2.4.24.ebuild:
1088     Version bump, updated most of the components.
1089     This release includes the following:
1090    
1091     - Hardened security
1092     - Netfilter patch-o-matic 20031219
1093     - FreeSWAN 2.04 & x509 1.4.8
1094     - EVMS 2.2.2
1095     - XFS 1.3.1
1096     - cryptoloop jari
1097     - grsecurity 2.0-rc4
1098     - SELinux
1099     - PaX 200402060000
1100     - PaX Obscurity 200308302223
1101     - Others...
1102    
1103     Neither -ck nor systrace are included anymore.
1104    
1105 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1106    
1107     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1108     hardened-sources-2.4.22-r2.ebuild:
1109 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1110 scox 1.19
1111     *hardened-sources-2.4.22-r1 (02 Dec 2003)
1112 iggy 1.17
1113     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1114 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1115 iggy 1.16
1116     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1117 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
1118     Version bump for the 'do_brk' vulnerability.
1119 iggy 1.15
1120     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1121     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1122     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1123     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1124 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
1125 frogger 1.14
1126     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1127     hardened-sources-2.4.22.ebuild:
1128 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
1129     components. These are no longer handled in the kernel
1130     so this code was not necessary.
1131 frogger 1.13
1132     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1133     New 2.4.22 based hardened-sources thanks to
1134     Phil West <p.west@computer.org>.
1135    
1136     These sources include:
1137 plasmaroo 1.18 - New SELinux API
1138     - Updated CK-base
1139     - Updated GRSec
1140     - Systrace
1141     - SuperFreeS/WAN 1.99.8
1142     - Propolice kernel build support
1143     - EVMS
1144     - Other various security related patches
1145 frogger 1.11
1146 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
1147    
1148     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1149     Updated hardened-sources based on the 2.4.21 Linux kernel.
1150     This includes updates to most major components such as:
1151 plasmaroo 1.18 - ck-base-0306300059
1152     - selinux-2.4-2003071106
1153     - grsecurity-2.0-rc1
1154     - Updated IPTables patch-o-matic
1155     - Updated SuperFreeS/WAN
1156    
1157 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
1158     updated patch set ready for the 2.4.21 based kernel.
1159    
1160 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1161     Initial import of hardened-sources-2.4.20-r4. This revision
1162     includes only a few changes, but one of these is an important
1163     security fix. It is recommended all users of hardened-sources
1164     upgrade to this release.
1165 plasmaroo 1.18
1166 frogger 1.11 - ioperm bug fix
1167     - fixed compilation failure when building without GRSec
1168 plasmaroo 1.18
1169 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
1170     due to time constraints, but is planned for inclusion in the near
1171     future.
1172 msterret 1.10
1173     *hardened-sources-2.4.20-r2 (12 Jun 2003)
1174    
1175     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1176     hardened-sources-2.4.20-r3.ebuild:
1177 plasmaroo 1.18 Add Header...
1178 frogger 1.9
1179     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1180     hardened-sources-2.4.20-r3.ebuild:
1181     Removed warnings from ebuild. This kernel should be safe to
1182     use at this point.
1183 frogger 1.8
1184     *hardened-sources-2.4.20-r3 (08 Jun 2003)
1185    
1186     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1187     hardened-sources-2.4.20-r3.ebuild:
1188     New revision. Includes the following changes over -r2:
1189 plasmaroo 1.18
1190 frogger 1.8 - ck7-base (O(1), preempt, low latency)
1191     - Super FreeS/WAN 1.99.7rc2
1192     - PaX for the LSM/SELinux branch
1193     - GRSecurity 2.0-pre4 (role based access control)
1194     - Systrace 1.3
1195     - EXT3 fixes
1196     - EVMS 2.0.1
1197     - GCC 3.1+ compile optimizations
1198     - ProPolice kernel build support
1199     - Hashing table security fixes
1200 frogger 1.3
1201     *hardened-sources-2.4.20-r1 (09 Apr 2003)
1202 frogger 1.7
1203     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1204     Initial import of hardened-sources-r2. This new
1205     ebuild includes many new performance and security
1206     related patches. As in -r1, it will patch in
1207     LSM/SELinux if "selinux" is in USE, otherwise it
1208     will patch in GRSecurity. The following patches
1209     are included in this revision:
1210 plasmaroo 1.18
1211 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
1212     (pulled from the base CK patch)
1213     - ptrace exploit patch for the LSM kernel
1214     (the GRSec patch already fixes this)
1215     - LSM 2.4-2003040709
1216     - SELinux 2.4-2003040709
1217     - Systrace v1.2
1218     - IPTables patch-o-matic base patches - 20030107
1219     - CryptoAPI 2.4.20.1 w/ loop-jari patch
1220     - Super FreeS/WAN 1.99.6.1
1221     - GRSecurity 1.9.9g
1222     - MPPE
1223     - EXT3 data journal fix
1224     - CIPE 1.5.4
1225 frogger 1.6
1226     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1227     hardened-sources-2.4.20-r1.ebuild, manifest:
1228 plasmaroo 1.18 Updated to install flask components correctly for selinux.
1229 frogger 1.5
1230     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1231     hardened-sources-2.4.20-r1.ebuild:
1232     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1233     is patched in instead. Ptrace patches for selinux have also been added. In
1234     either case, systrace support will be patched in as well.
1235 frogger 1.3
1236     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1237     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1238 plasmaroo 1.18 Revision bump for new sources.
1239 frogger 1.4
1240 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1241 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
1242 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1243 method 1.1
1244 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
1245    
1246 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1247     hardened-sources-2.4.20.ebuild:
1248 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20