/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.269 - (hide annotations) (download)
Wed Jan 14 16:44:34 2009 UTC (5 years, 11 months ago) by gengor
Branch: MAIN
Changes since 1.268: +6 -1 lines
Remove old hardened-sources 2.6.25-r10, 2.6.26-r6 and 2.6.27-r2
(Portage version: 2.1.6.4/cvs/Linux 2.6.27-hardened-r4-rc1-2009011401 i686)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 gengor 1.268 # Copyright 2000-2009 Gentoo Foundation; Distributed under the GPL v2
3 gengor 1.269 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.268 2009/01/14 16:28:01 gengor Exp $
4    
5     14 Jan 2009; Gordon Malm <gengor@gentoo.org>
6     -hardened-sources-2.6.25-r10.ebuild, -hardened-sources-2.6.26-r6.ebuild,
7     -hardened-sources-2.6.27-r2.ebuild:
8     Clean out old versions.
9 gengor 1.268
10     *hardened-sources-2.6.27-r4 (14 Jan 2009)
11     *hardened-sources-2.6.26-r8 (14 Jan 2009)
12     *hardened-sources-2.6.25-r12 (14 Jan 2009)
13    
14     14 Jan 2009; Gordon Malm <gengor@gentoo.org>
15     +hardened-sources-2.6.25-r12.ebuild, +hardened-sources-2.6.26-r8.ebuild,
16     +hardened-sources-2.6.27-r4.ebuild:
17     2.6.25-r12: Fixes bugs #249729, #250548, #252688, #254907
18     2.6.26-r8: Fixes bugs #249729, #250548, #252688, #254907
19     2.6.27-r4: Update to latest genpatches (includes Linux 2.6.27.10) and
20     grsecurity patch. Fixes bugs #249729, #250511, #250548, #252688, #254907
21 nixnut 1.267
22     15 Dec 2008; nixnut <nixnut@gentoo.org>
23     hardened-sources-2.6.25-r11.ebuild:
24     Stable on ppc
25 gengor 1.266
26     09 Dec 2008; Gordon Malm <gengor@gentoo.org>
27     hardened-sources-2.6.25-r11.ebuild:
28     Stable amd64/x86.
29 gengor 1.265
30     *hardened-sources-2.6.27-r3 (07 Dec 2008)
31    
32     07 Dec 2008; Gordon Malm <gengor@gentoo.org>
33     +hardened-sources-2.6.27-r3.ebuild:
34     Bump to latest genpatches, including Linux 2.6.27.8. Bump grsec/pax patches.
35     Fixes bug #248754, #249729 and #246607.
36 gengor 1.264
37     03 Dec 2008; Gordon Malm <gengor@gentoo.org>
38     -hardened-sources-2.6.25-r9.ebuild, -hardened-sources-2.6.26-r5.ebuild:
39     Remove old versions.
40 gengor 1.262
41     *hardened-sources-2.6.26-r7 (03 Dec 2008)
42     *hardened-sources-2.6.25-r11 (03 Dec 2008)
43    
44 gengor 1.263 03 Dec 2008; Gordon Malm <gengor@gentoo.org>
45     +hardened-sources-2.6.25-r11.ebuild, +hardened-sources-2.6.26-r7.ebuild:
46 gengor 1.262 2.6.25-r11: Fixes bugs 246607, 246710, 247453 and 248754.
47     2.6.26-r7: Fixes bugs 246607, 246710, 246763, 247453 and 248754.
48     Both include many backports from 2.6.27.{6,7} -stable releases.
49 gengor 1.261
50     24 Nov 2008; Gordon Malm <gengor@gentoo.org>
51     -hardened-sources-2.6.27.ebuild, -hardened-sources-2.6.27-r1.ebuild:
52     Remove versions broken on ARCHes != x86/amd64.
53 gengor 1.260
54     *hardened-sources-2.6.27-r2 (24 Nov 2008)
55    
56     24 Nov 2008; Gordon Malm <gengor@gentoo.org>
57     +hardened-sources-2.6.27-r2.ebuild:
58     Bump to Linux 2.6.27.7 and latest grsecurity patch.
59 gengor 1.259
60     19 Nov 2008; Gordon Malm <gengor@gentoo.org>
61     -hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r4.ebuild:
62     Remove old versions.
63 gengor 1.258
64     19 Nov 2008; Gordon Malm <gengor@gentoo.org>
65     hardened-sources-2.6.27.ebuild, hardened-sources-2.6.27-r1.ebuild:
66     Remove all but ~amd64 & ~x86 keywords (broken elsewhere).
67 nixnut 1.257
68     16 Nov 2008; nixnut <nixnut@gentoo.org>
69     hardened-sources-2.6.25-r10.ebuild:
70     Stable on ppc
71 gengor 1.256
72     15 Nov 2008; Gordon Malm <gengor@gentoo.org>
73     hardened-sources-2.6.25-r10.ebuild:
74     Stable amd64/x86.
75 gengor 1.255
76     *hardened-sources-2.6.26-r6 (12 Nov 2008)
77    
78     12 Nov 2008; Gordon Malm <gengor@gentoo.org>
79     +hardened-sources-2.6.26-r6.ebuild:
80     Bump to Linux 2.6.26.8 and fix security bug #245650.
81 gengor 1.254
82     *hardened-sources-2.6.25-r10 (12 Nov 2008)
83    
84     12 Nov 2008; Gordon Malm <gengor@gentoo.org>
85     +hardened-sources-2.6.25-r10.ebuild:
86     Update to Linux 2.6.25.20 and fix bugs #245427, #245650.
87 gengor 1.253
88     *hardened-sources-2.6.27-r1 (09 Nov 2008)
89    
90     09 Nov 2008; Gordon Malm <gengor@gentoo.org>
91     +hardened-sources-2.6.27-r1.ebuild:
92     Bump to stable kernel 2.6.27.5 and latest grsecurity patch.
93 gengor 1.252
94     *hardened-sources-2.6.27 (04 Nov 2008)
95    
96     04 Nov 2008; Gordon Malm <gengor@gentoo.org>
97     +hardened-sources-2.6.27.ebuild:
98     Initial 2.6.27 release.
99 gengor 1.251
100     *hardened-sources-2.6.26-r5 (03 Nov 2008)
101    
102     03 Nov 2008; Gordon Malm <gengor@gentoo.org>
103     -hardened-sources-2.6.25-r7.ebuild, -hardened-sources-2.6.26-r2.ebuild,
104     +hardened-sources-2.6.26-r5.ebuild:
105     2.6.26-r5: Bump to Linux 2.6.26.7, PaX updates.
106     Clean out some old versions.
107 nixnut 1.250
108     02 Nov 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r9.ebuild:
109     Stable on ppc
110 gengor 1.249
111     30 Oct 2008; Gordon Malm <gengor@gentoo.org>
112     hardened-sources-2.6.25-r9.ebuild:
113     Stable on amd64/x86.
114 gengor 1.248
115     *hardened-sources-2.6.25-r9 (26 Oct 2008)
116    
117     26 Oct 2008; Gordon Malm <gengor@gentoo.org>
118     +hardened-sources-2.6.25-r9.ebuild:
119     Update to Linux 2.6.25.19
120 nixnut 1.247
121     15 Oct 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r8.ebuild:
122     Stable on ppc
123 gengor 1.246
124     *hardened-sources-2.6.26-r4 (14 Oct 2008)
125    
126     14 Oct 2008; Gordon Malm <gengor@gentoo.org>
127     -hardened-sources-2.6.26-r3.ebuild, +hardened-sources-2.6.26-r4.ebuild:
128     Update to latest grsecurity patch, fixing building of non-modular kernels.
129 gengor 1.245
130     *hardened-sources-2.6.26-r3 (12 Oct 2008)
131    
132     12 Oct 2008; Gordon Malm <gengor@gentoo.org>
133     hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r1.ebuild,
134     +hardened-sources-2.6.26-r3.ebuild:
135     2.6.26-r3: Update to Linux 2.6.26.6 and latest grsecurity patch.
136     2.6.26-r1: Removed.
137     2.6.25-r8: Stable amd64/x86.
138 gengor 1.244
139     *hardened-sources-2.6.25-r8 (09 Oct 2008)
140    
141     09 Oct 2008; Gordon Malm <gengor@gentoo.org>
142     -hardened-sources-2.6.25-r4.ebuild, -hardened-sources-2.6.25-r5.ebuild,
143     -hardened-sources-2.6.25-r6.ebuild, +hardened-sources-2.6.25-r8.ebuild:
144     Update to genpatches-11 and Linux 2.6.25.18. Remove old versions.
145 nixnut 1.243
146     20 Sep 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r7.ebuild:
147     Stable on ppc
148 gengor 1.242
149     17 Sep 2008; Gordon Malm <gengor@gentoo.org>
150     hardened-sources-2.6.25-r7.ebuild:
151     Stable amd64/x86.
152 gengor 1.241
153     *hardened-sources-2.6.26-r2 (13 Sep 2008)
154    
155     13 Sep 2008; Gordon Malm <gengor@gentoo.org>
156     -hardened-sources-2.6.26.ebuild, +hardened-sources-2.6.26-r2.ebuild:
157     2.6.26-r2: Update to Linux 2.6.26.5, new grsecurity patch adding
158     PAX_REFCOUNT feature, fix bug #237473 (CVE-2008-3525). 2.6.26: Removed.
159 gengor 1.240
160     *hardened-sources-2.6.25-r7 (13 Sep 2008)
161    
162     13 Sep 2008; Gordon Malm <gengor@gentoo.org>
163     +hardened-sources-2.6.25-r7.ebuild:
164     Add 2.6.25-r7, fixing bug #237473 (CVE-2008-3525) and a PaX bug.
165 gengor 1.239
166     10 Sep 2008; Gordon Malm <gengor@gentoo.org>
167     hardened-sources-2.6.25-r4.ebuild, hardened-sources-2.6.25-r5.ebuild,
168     hardened-sources-2.6.25-r6.ebuild, hardened-sources-2.6.26.ebuild,
169     hardened-sources-2.6.26-r1.ebuild:
170     Update DESCRIPTION and HGPV_URI.
171 gengor 1.238
172     *hardened-sources-2.6.25-r6 (09 Sep 2008)
173    
174     09 Sep 2008; Gordon Malm <gengor@gentoo.org>
175     -hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25-r6.ebuild:
176     2.6.25-r6: Update to Linux 2.6.25.17.
177     2.6.24-r3: Removed.
178 gengor 1.237
179     08 Sep 2008; Gordon Malm <gengor@gentoo.org>
180     hardened-sources-2.6.25-r5.ebuild:
181     Stable on amd64/x86
182 gengor 1.236
183     07 Sep 2008; Gordon Malm <gengor@gentoo.org> metadata.xml:
184     Update my email address.
185 nixnut 1.235
186     31 Aug 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r4.ebuild:
187     stable on ppc
188 battousai 1.234
189     *hardened-sources-2.6.26-r1 (23 Aug 2008)
190     *hardened-sources-2.6.25-r5 (23 Aug 2008)
191    
192     23 Aug 2008; Bryan D. Stine <battousai@gentoo.org>
193     -hardened-sources-2.6.23-r13.ebuild, -hardened-sources-2.6.25-r3.ebuild,
194     hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.25-r5.ebuild,
195     +hardened-sources-2.6.26-r1.ebuild:
196     Bump to 2.6.25-r5 for updated patches and upstream .10 kernel, fixing
197     security bug #235221. Bump to 2.6.26-r1 for upstream .3 kernel, also
198     fixing security bug #235221. Marked 2.6.25-r4 stable on amd64 and x86.
199     Removed 2.6.23-r13 and 2.6.25-r3. Commit on behalf of Gordon Malm
200     (gengor).
201 solar 1.233
202     *hardened-sources-2.6.26 (18 Aug 2008)
203     *hardened-sources-2.6.25-r4 (18 Aug 2008)
204    
205     18 Aug 2008; <solar@gentoo.org> -hardened-sources-2.6.25-r2.ebuild,
206     +hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.26.ebuild:
207     - proxy commit for gengor 2.6.26: Initial 2.6.26 release. 2.6.25-r4: Update
208     to Linux 2.6.25.15. Fixes security bugs #234799, #234803 and #234812.
209     2.6.25-r2: Removed.
210 tove 1.232
211     16 Aug 2008; Torsten Veller <tove@gentoo.org> metadata.xml:
212     Remove phreak from metadata.xml (#96398)
213 solar 1.231
214     *hardened-sources-2.6.25-r3 (31 Jul 2008)
215    
216     31 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.24-r2.ebuild,
217     -hardened-sources-2.6.25.ebuild, -hardened-sources-2.6.25-r1.ebuild,
218     +hardened-sources-2.6.25-r3.ebuild:
219     - 2.6.25-r3: Update to Linux 2.6.25.13 and new grsecurity patch. Multiple
220     fixes, including security bug #231750.
221 nixnut 1.230
222     28 Jul 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.24-r3.ebuild:
223     Stable on ppc
224 solar 1.229
225     *hardened-sources-2.6.25-r2 (05 Jul 2008)
226    
227     05 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r11.ebuild,
228     -hardened-sources-2.6.23-r12.ebuild, hardened-sources-2.6.24-r3.ebuild,
229     +hardened-sources-2.6.25-r2.ebuild:
230     2.6.23-r4: Stable x86/amd64
231     2.6.25-r2: Update to Linux 2.6.25.10 and latest grsecurity release.
232     2.6.23-r{11,12}: Removed due to multiple vulns.
233     (gengor & kerframil)
234 nixnut 1.228
235     04 Jul 2008; nixnut <nixnut@gentoo.org>
236     hardened-sources-2.6.23-r13.ebuild:
237     Stable on ppc
238 solar 1.227
239     *hardened-sources-2.6.25-r1 (30 Jun 2008)
240    
241     30 Jun 2008; <solar@gentoo.org> hardened-sources-2.6.23-r13.ebuild,
242     +hardened-sources-2.6.25-r1.ebuild:
243     2.6.25-r1: Brings in Linux -stable tree patches 2.6.25.{7,8,9} and newer
244     grsecurity release. 2.6.23-r13: x86/amd64 stable
245 solar 1.226
246     *hardened-sources-2.6.25 (17 Jun 2008)
247     *hardened-sources-2.6.24-r3 (17 Jun 2008)
248     *hardened-sources-2.6.23-r13 (17 Jun 2008)
249    
250     17 Jun 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r13.ebuild,
251     +hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25.ebuild:
252     * 2.6.23-r13: Fixes security bugs #198997, #212136, #222331, #222635,
253     #224647, #225461, other fixes. * 2.6.24-r3: Fixes security bugs #212136,
254     #222331, #222635, #224647, #225461, grsec/PaX updates/fixes, other fixes. *
255     2.6.25: Initial 2.6.25 release.
256 solar 1.225
257     15 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r12.ebuild:
258     - fasttrack to stable x86/amd64
259 swegener 1.224
260     11 May 2008; Sven Wegener <swegener@gentoo.org> Manifest:
261     Fix broken digest for linux-2.6.24.tar.bz2.
262 solar 1.223
263     *hardened-sources-2.6.24-r2 (11 May 2008)
264     *hardened-sources-2.6.23-r12 (11 May 2008)
265    
266     11 May 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r7.ebuild,
267     -hardened-sources-2.6.23-r9.ebuild, -hardened-sources-2.6.23-r10.ebuild,
268     +hardened-sources-2.6.23-r12.ebuild, -hardened-sources-2.6.24.ebuild,
269     -hardened-sources-2.6.24-r1.ebuild, +hardened-sources-2.6.24-r2.ebuild:
270     proxy commit for gengor. 2.6.23-r11 shortlog: Fixes security bugs 220691,
271     220975, 220979, 221123. 2.6.24-r2 not-so-shortlog: Fixes bug 215442,
272     security bugs 219901, 220691, 220975, 220979, 221123. New
273     genpatches/grsecurity with numerous updates & fixes. 2.6.23-r7->2.6.23-r10
274     should be removed as far as I'm concerned, everything else remove due to
275     vulnerable to numerous security bugs or brokeness.
276 nixnut 1.222
277     10 May 2008; nixnut <nixnut@gentoo.org>
278     hardened-sources-2.6.23-r11.ebuild:
279     Stable on ppc
280 solar 1.221
281     05 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r11.ebuild:
282     - -r11 stable on x86/amd64
283 solar 1.220
284     *hardened-sources-2.6.23-r11 (01 May 2008)
285    
286     01 May 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r11.ebuild:
287     - version bump to fix ulgy linux bugs
288 phreak 1.219
289     *hardened-sources-2.6.24-r1 (30 Apr 2008)
290    
291     30 Apr 2008; Christian Heim <phreak@gentoo.org>
292     +hardened-sources-2.6.24-r1.ebuild:
293     Revision bump (thanks to Kerin and Gordon, again), pulling
294     genpatches-2.6.24-7, solving #219089. Additionally contains further security
295     fixes plus some minor updates.
296 phreak 1.218
297     *hardened-sources-2.6.23-r10 (30 Apr 2008)
298    
299     30 Apr 2008; Christian Heim <phreak@gentoo.org>
300     +hardened-sources-2.6.23-r10.ebuild:
301     Revision bump (thanks to Kerin and Gordon, again), solving #213811, #219089.
302     Additional contains "various other fixes".
303 phreak 1.217
304     09 Apr 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
305     Update the longdescription in metadata, thanks to Gordon Malm.
306 nixnut 1.216
307     08 Apr 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.23-r9.ebuild:
308     Stable on ppc wrt bug #213255
309 solar 1.215
310     07 Apr 2008; <solar@gentoo.org> -hardened-sources-2.4.35-r2.ebuild,
311     -hardened-sources-2.6.23-r8.ebuild, hardened-sources-2.6.23-r9.ebuild:
312     - stable on x86/amd64 per request. Removed obsolete ebuilds
313 phreak 1.214
314     *hardened-sources-2.6.24 (07 Apr 2008)
315    
316     07 Apr 2008; Christian Heim <phreak@gentoo.org>
317     +hardened-sources-2.6.24.ebuild:
318     Adding ebuild for hardened-sources-2.6.24 (many thanks to Kerin Millar
319     <kerframil at gmail.com> and Gordon Malm <bugs-gentoo-org-02 at bumpin.org>
320     for the many contributions and their continued effort in #216612) based on
321     2.6.24 and genpatches-2.6.24-5.
322    
323     The current ebuild/patchset contains these things:
324     * Incoporates unmodified grsec-2.1.11-2.6.24.4-200803262003 patch
325     * Introduces bespoke server and workstation oriented security levels
326     * VDSO_COMPAT cannot be enabled during runtime if PaX is enabled
327 phreak 1.213
328     30 Mar 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
329     Fix the metadata.xml (Kerin isn't a dev, though he and Gordon are
330     maintaining it).
331 phreak 1.212
332     24 Mar 2008; Christian Heim <phreak@gentoo.org>
333     hardened-sources-2.4.35-r2.ebuild:
334     Fixing SRC_URI for 2.4.35-r2.
335 phreak 1.211
336     *hardened-sources-2.6.23-r9 (22 Mar 2008)
337    
338     22 Mar 2008; Christian Heim <phreak@gentoo.org>
339     +hardened-sources-2.6.23-r9.ebuild:
340     * Revision bump, rebasing the patchset against genpatches-2.6.23-10.
341     * Change the default GIDs for some grsecurity options
342     * Revamp the Hardened [Gentoo] security level and make it the default level
343     * Fixing compilation on ia64 with CONFIG_MODULES=y (loadable module support)
344     * Fix a recursive lock -- call to capable() within ptrace_attach()
345     * Fix bug that allows audit and iscsi operations to be controlled via netlink
346 solar 1.210
347     *hardened-sources-2.6.23-r8 (27 Feb 2008)
348    
349     27 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r8.ebuild:
350     - version bump from Kerin Millar bug 210026
351 solar 1.209
352     17 Feb 2008; <solar@gentoo.org> metadata.xml,
353     -hardened-sources-2.4.33.4.ebuild, -hardened-sources-2.6.20-r6.ebuild,
354     -hardened-sources-2.6.20-r10.ebuild, -hardened-sources-2.6.23-r4.ebuild,
355     -hardened-sources-2.6.23-r6.ebuild, hardened-sources-2.6.23-r7.ebuild:
356     - stable on x86 and remove old ebuilds
357 solar 1.207
358     15 Feb 2008; <solar@gentoo.org> hardened-sources-2.6.23-r7.ebuild:
359 solar 1.208 - stable on amd64 per request of amd64 lead
360 solar 1.206
361     *hardened-sources-2.6.23-r7 (11 Feb 2008)
362    
363     11 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r7.ebuild:
364     - version bump from kerin.millar
365     Changes:
366    
367     * Bump to genpatches-base-2.6.23-9
368     * Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
369     * Disables COMPAT_VDSO in x86/defconfig
370     * Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig
371 phreak 1.205
372     25 Jan 2008; Christian Heim <phreak@gentoo.org>
373     -hardened-sources-2.6.22-r8.ebuild:
374     Cleaning up old versions.
375 phreak 1.204
376     *hardened-sources-2.6.23-r6 (25 Jan 2008)
377    
378     25 Jan 2008; Christian Heim <phreak@gentoo.org>
379     -hardened-sources-2.6.23-r5.ebuild, +hardened-sources-2.6.23-r6.ebuild:
380     Revision bump, pulling in the latest genpatches.
381 phreak 1.203
382     *hardened-sources-2.6.23-r5 (24 Dec 2007)
383    
384     24 Dec 2007; Christian Heim <phreak@gentoo.org>
385     hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
386     hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
387     hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
388     Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
389 phreak 1.202
390     24 Dec 2007; Christian Heim <phreak@gentoo.org>
391     -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
392     -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
393     -hardened-sources-2.6.23-r3.ebuild:
394     Cleaning out some unused, old versions.
395 phreak 1.201
396     24 Dec 2007; Christian Heim <phreak@gentoo.org>
397     hardened-sources-2.6.23-r4.ebuild:
398     Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
399     in the tree for long, but there isn't much of a difference between this and
400     -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
401 phreak 1.200
402     *hardened-sources-2.6.23-r4 (23 Dec 2007)
403    
404     23 Dec 2007; Christian Heim <phreak@gentoo.org>
405     +hardened-sources-2.6.23-r4.ebuild:
406     Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
407 phreak 1.199
408     *hardened-sources-2.6.23-r3 (04 Dec 2007)
409    
410     04 Dec 2007; Christian Heim <phreak@gentoo.org>
411     +hardened-sources-2.6.23-r3.ebuild:
412     Revision bump, pulling in 2.6.23.9.
413 phreak 1.198
414     *hardened-sources-2.6.23-r2 (25 Nov 2007)
415    
416     25 Nov 2007; Christian Heim <phreak@gentoo.org>
417     +hardened-sources-2.6.23-r2.ebuild:
418     Updated patchset, thanks to solar.
419 phreak 1.197
420     *hardened-sources-2.6.23-r1 (31 Oct 2007)
421    
422     31 Oct 2007; Christian Heim <phreak@gentoo.org>
423     +hardened-sources-2.6.23-r1.ebuild:
424     Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
425 solar 1.196
426     29 Oct 2007; <solar@gentoo.org> metadata.xml:
427     - update metadata.xml
428 phreak 1.195
429     25 Oct 2007; Christian Heim <phreak@gentoo.org>
430     hardened-sources-2.6.22-r8.ebuild:
431     Marking 2.6.22-r8 stable on amd64 and x86.
432 phreak 1.194
433     21 Oct 2007; Christian Heim <phreak@gentoo.org>
434     -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
435     -hardened-sources-2.6.21-r4.ebuild:
436     Removing old ebuilds.
437 phreak 1.193
438     *hardened-sources-2.4.35-r2 (21 Oct 2007)
439    
440     21 Oct 2007; Christian Heim <phreak@gentoo.org>
441     +hardened-sources-2.4.35-r2.ebuild:
442     Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
443     patches.
444 phreak 1.192
445     *hardened-sources-2.6.22-r8 (21 Oct 2007)
446    
447     21 Oct 2007; Christian Heim <phreak@gentoo.org>
448     +hardened-sources-2.6.22-r8.ebuild:
449     Yet another new patch, hopefully fixing the remaining issues we had w/
450     2.6.22. Candidate for stabling.
451 phreak 1.191
452     *hardened-sources-2.6.23 (13 Oct 2007)
453    
454     13 Oct 2007; Christian Heim <phreak@gentoo.org>
455     +hardened-sources-2.6.23.ebuild:
456     Initial hardened-sources-2.6.23. If people still have problems w/ bug
457     194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
458 phreak 1.190
459     11 Oct 2007; Christian Heim <phreak@gentoo.org>
460     hardened-sources-2.6.20-r10.ebuild:
461     Pulling in yet another new genpatches version, fixing the PWC bug for real.
462 phreak 1.189
463     04 Oct 2007; Christian Heim <phreak@gentoo.org>
464     -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
465     Removing old versions.
466 phreak 1.188
467     *hardened-sources-2.6.22-r7 (01 Oct 2007)
468    
469     01 Oct 2007; Christian Heim <phreak@gentoo.org>
470     +hardened-sources-2.6.22-r7.ebuild:
471     Revision bump, pulling in a newer patch. Should fix #194276.
472 phreak 1.187
473     30 Sep 2007; Christian Heim <phreak@gentoo.org>
474     hardened-sources-2.6.20-r10.ebuild:
475     Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
476     Mike Doty).
477 phreak 1.186
478     *hardened-sources-2.6.22-r6 (26 Sep 2007)
479    
480     26 Sep 2007; Christian Heim <phreak@gentoo.org>
481     +hardened-sources-2.6.22-r6.ebuild:
482     Revision bump, grabbing up till Linux 2.6.22.9.
483 phreak 1.185
484     24 Sep 2007; Christian Heim <phreak@gentoo.org>
485     -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
486     Cleaning up further.
487 phreak 1.184
488     *hardened-sources-2.6.20-r10 (24 Sep 2007)
489    
490     24 Sep 2007; Christian Heim <phreak@gentoo.org>
491     -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
492     +hardened-sources-2.6.20-r10.ebuild:
493     Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
494     revisions.
495 phreak 1.183
496     *hardened-sources-2.6.22-r5 (22 Sep 2007)
497    
498     22 Sep 2007; Christian Heim <phreak@gentoo.org>
499     +hardened-sources-2.6.22-r5.ebuild:
500     Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
501 phreak 1.182
502     17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
503     Removing johnm from metadata.xml (see #186467 for reference).
504 phreak 1.181
505     *hardened-sources-2.6.22-r4 (17 Sep 2007)
506    
507     17 Sep 2007; Christian Heim <phreak@gentoo.org>
508     +hardened-sources-2.6.22-r4.ebuild:
509     Revision bump, hopefully fixing all those weird PAX failures.
510 phreak 1.180
511     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
512     Updating the metadata.xml.
513 phreak 1.179
514     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
515     Removing tocharian from metadata due to his retirement (see #71718 for
516     reference).
517 phreak 1.178
518     *hardened-sources-2.6.20-r9 (30 Aug 2007)
519    
520     30 Aug 2007; Christian Heim <phreak@gentoo.org>
521     +hardened-sources-2.6.20-r9.ebuild:
522     Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
523 phreak 1.177
524     29 Aug 2007; Christian Heim <phreak@gentoo.org>
525     -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
526     -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
527     -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
528     -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
529     -hardened-sources-2.6.22-r2.ebuild:
530     Removing some redundant versions.
531 phreak 1.176
532     *hardened-sources-2.4.35-r1 (29 Aug 2007)
533    
534     29 Aug 2007; Christian Heim <phreak@gentoo.org>
535     +hardened-sources-2.4.35-r1.ebuild:
536     Revision bump, new grsecurity patch.
537 phreak 1.175
538     *hardened-sources-2.6.20-r8 (26 Aug 2007)
539    
540     26 Aug 2007; Christian Heim <phreak@gentoo.org>
541     +hardened-sources-2.6.20-r8.ebuild:
542     Revision bump for Linux 2.6.20.17.
543 phreak 1.174
544     *hardened-sources-2.6.22-r3 (22 Aug 2007)
545    
546     22 Aug 2007; Christian Heim <phreak@gentoo.org>
547     +hardened-sources-2.6.22-r3.ebuild:
548     Revision bump for Linux 2.6.22.4.
549 phreak 1.173
550     16 Aug 2007; Christian Heim <phreak@gentoo.org>
551     hardened-sources-2.6.22-r2.ebuild:
552     Updated patchset, to fix the alignment against 2.6.22.3.
553 phreak 1.172
554     *hardened-sources-2.6.22-r2 (16 Aug 2007)
555    
556     16 Aug 2007; Christian Heim <phreak@gentoo.org>
557     +hardened-sources-2.6.22-r2.ebuild:
558     Revision bump for Linux 2.6.22.3.
559 phreak 1.171
560     *hardened-sources-2.4.35 (16 Aug 2007)
561    
562     16 Aug 2007; Christian Heim <phreak@gentoo.org>
563     +hardened-sources-2.4.35.ebuild:
564     Version bump, initial version for Linux 2.4.35.
565 phreak 1.170
566     *hardened-sources-2.6.21-r4 (16 Aug 2007)
567    
568     16 Aug 2007; Christian Heim <phreak@gentoo.org>
569     +hardened-sources-2.6.21-r4.ebuild:
570     Revision bump for Linux 2.6.21.6.
571 phreak 1.169
572     *hardened-sources-2.6.20-r7 (16 Aug 2007)
573    
574     16 Aug 2007; Christian Heim <phreak@gentoo.org>
575     +hardened-sources-2.6.20-r7.ebuild:
576     Revision bump for Linux 2.6.20.16.
577 phreak 1.168
578     *hardened-sources-2.6.22-r1 (13 Aug 2007)
579    
580     13 Aug 2007; Christian Heim <phreak@gentoo.org>
581     +hardened-sources-2.6.22-r1.ebuild:
582     Yet another revision bump.
583 phreak 1.167
584     *hardened-sources-2.6.22 (10 Aug 2007)
585    
586     10 Aug 2007; Christian Heim <phreak@gentoo.org>
587     +hardened-sources-2.6.22.ebuild:
588     Initial release for 2.6.22. If you are using hardened-sources on a desktop
589     machine (P4 or newer), be aware you might need to disable
590     CONFIG_PAX_PAGEEXEC.
591 phreak 1.166
592     04 Aug 2007; Christian Heim <phreak@gentoo.org>
593     hardened-sources-2.6.20-r6.ebuild:
594     Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
595     2.6.20.15.
596 phreak 1.165
597     10 Jul 2007; Christian Heim <phreak@gentoo.org>
598     hardened-sources-2.6.20-r5.ebuild:
599     Marking hardened-sources-2.6.20-r5 stable on ppc.
600 phreak 1.164
601     10 Jul 2007; Christian Heim <phreak@gentoo.org>
602     -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
603     Cleanup.
604 phreak 1.163
605     *hardened-sources-2.6.20-r6 (08 Jul 2007)
606    
607     08 Jul 2007; Christian Heim <phreak@gentoo.org>
608     +hardened-sources-2.6.20-r6.ebuild:
609     Revision bump, grabbing yet another stable release.
610 phreak 1.162
611     17 Jun 2007; Christian Heim <phreak@gentoo.org>
612     -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
613     -hardened-sources-2.6.21-r2.ebuild:
614     Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
615     alpha stable KEYWORD by mistake.
616 phreak 1.161
617     17 Jun 2007; Christian Heim <phreak@gentoo.org>
618     hardened-sources-2.6.20-r5.ebuild:
619     Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
620     genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
621 phreak 1.160
622     *hardened-sources-2.6.21-r3 (12 Jun 2007)
623    
624     12 Jun 2007; Christian Heim <phreak@gentoo.org>
625     +hardened-sources-2.6.21-r3.ebuild:
626     Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
627     of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
628     love.
629 phreak 1.159
630     *hardened-sources-2.6.20-r5 (11 Jun 2007)
631    
632     11 Jun 2007; Christian Heim <phreak@gentoo.org>
633     +hardened-sources-2.6.20-r5.ebuild:
634     Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
635     of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
636     love.
637 pappy 1.158
638     *hardened-sources-2.4.34.5 (11 Jun 2007)
639    
640     11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
641     +hardened-sources-2.4.34.5.ebuild:
642     added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
643 phreak 1.157
644     30 May 2007; Christian Heim <phreak@gentoo.org>
645     -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
646     Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
647     stale ebuild(s).
648 phreak 1.156
649     30 May 2007; Christian Heim <phreak@gentoo.org>
650     -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
651     -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
652     -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
653     Doing some cleanups, remove stale ebuilds.
654 phreak 1.155
655     26 May 2007; Christian Heim <phreak@gentoo.org>
656     hardened-sources-2.6.21-r2.ebuild:
657     Fixing the grsecurity patch, had one '};' too much.
658 phreak 1.154
659     *hardened-sources-2.6.21-r2 (26 May 2007)
660    
661     26 May 2007; Christian Heim <phreak@gentoo.org>
662     -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
663     +hardened-sources-2.6.21-r2.ebuild:
664     Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
665     grsecurity patch to 2.1.10-2.6.21.1-200705221918.
666 phreak 1.153
667     *hardened-sources-2.6.20-r4 (26 May 2007)
668    
669     26 May 2007; Christian Heim <phreak@gentoo.org>
670     -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
671     Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
672 phreak 1.154 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
673 phreak 1.152
674     15 May 2007; Christian Heim <phreak@gentoo.org>
675     hardened-sources-2.6.20-r3.ebuild:
676     Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
677     introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
678     grsecurity patch fail in that exact same hunk.
679 phreak 1.151
680     *hardened-sources-2.6.20-r3 (15 May 2007)
681    
682     15 May 2007; Christian Heim <phreak@gentoo.org>
683     +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
684     Revision bump, incorporating Linux 2.6.20.11.
685    
686     *hardened-sources-2.6.21-r1 (11 May 2007)
687    
688     11 May 2007; Christian Heim <phreak@gentoo.org>
689     +hardened-sources-2.6.21-r1.ebuild:
690     Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
691     mentioned in #177234.
692 kevquinn 1.150
693     07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
694     files/digest-hardened-sources-2.6.21, Manifest:
695     Fix Manifest/digest for linux-2.6.21.tar.bz2
696 phreak 1.149
697     06 May 2007; Christian Heim <phreak@gentoo.org>
698     hardened-sources-2.6.21.ebuild:
699     Bumping the hardened-patches version, needed for the fix for #177234.
700 phreak 1.148
701     *hardened-sources-2.6.21 (02 May 2007)
702    
703     02 May 2007; Christian Heim <phreak@gentoo.org>
704     +hardened-sources-2.6.21.ebuild:
705     Version bump, Linux 2.6.21-hardened.
706 phreak 1.147
707     29 Apr 2007; Christian Heim <phreak@gentoo.org>
708     hardened-sources-2.6.20-r2.ebuild:
709     Adding ~ia64 on Ned's request.
710 phreak 1.146
711     29 Apr 2007; Christian Heim <phreak@gentoo.org>
712     hardened-sources-2.6.20-r2.ebuild:
713     Fixing the included grsecurity patch, wasn't alligning due to the Index:
714     header line(s).
715 phreak 1.145
716     29 Apr 2007; Christian Heim <phreak@gentoo.org>
717     hardened-sources-2.6.20-r2.ebuild:
718     Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
719 armin76 1.144
720     *hardened-sources-2.6.20-r2 (10 Apr 2007)
721    
722     10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
723     +hardened-sources-2.6.20-r2.ebuild:
724     Version bump, on behalf of phreak
725 phreak 1.143
726     *hardened-sources-2.6.20-r1 (04 Apr 2007)
727    
728     04 Apr 2007; Christian Heim <phreak@gentoo.org>
729     +hardened-sources-2.6.20-r1.ebuild:
730     Revision bump, grabbing a newer grsecurity snapshot.
731 phreak 1.142
732     *hardened-sources-2.6.20 (25 Mar 2007)
733    
734     25 Mar 2007; Christian Heim <phreak@gentoo.org>
735     +hardened-sources-2.6.20.ebuild:
736     Finally a hardened-sources version for 2.6.20; many people have been waiting
737     for this. Thanks to Steve for preliminary testing, thanks to Ned for the
738     testbox.
739 chainsaw 1.141
740     16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
741     hardened-sources-2.6.18-r6.ebuild:
742     Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
743 phreak 1.140
744     *hardened-sources-2.6.18-r6 (16 Mar 2007)
745    
746     16 Mar 2007; Christian Heim <phreak@gentoo.org>
747     -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
748     Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
749     yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
750     supposed to be.
751 phreak 1.139
752     06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
753     Fixing the Manifest, the previous one was broken (as in still had the
754     deleted ebuild in it).
755 phreak 1.138
756     06 Mar 2007; Christian Heim <phreak@gentoo.org>
757     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
758     +hardened-sources-2.6.18-r5.ebuild:
759     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
760     Linux 2.6.18.8. Also cleaning up the older version.
761    
762     *hardened-sources-2.6.18-r5 (06 Mar 2007)
763    
764     06 Mar 2007; Christian Heim <phreak@gentoo.org>
765     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
766     +hardened-sources-2.6.18-r5.ebuild:
767     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
768     Linux 2.6.18.8. Also cleaning up the older version.
769 phreak 1.137
770     24 Feb 2007; Christian Heim <phreak@gentoo.org>
771     -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
772     -hardened-sources-2.6.19-r5.ebuild:
773     Removing some of the old version, that didn't work.
774 phreak 1.136
775     *hardened-sources-2.6.19-r6 (12 Feb 2007)
776    
777     12 Feb 2007; Christian Heim <phreak@gentoo.org>
778     +hardened-sources-2.6.19-r6.ebuild:
779     Revision bump, including a new grsec version fixing #166235.
780 pappy 1.134
781     *hardened-sources-2.4.34 (24 Jan 2007)
782    
783     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
784 pappy 1.135 Manifest:
785     updating Manifest with checksums of new tarball and ebuild
786    
787     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
788 pappy 1.134 +hardened-sources-2.4.34.ebuild:
789     I added new hardened sources 2.4 update, this is a critical path
790     security bugfix - all users of h-s are strongly advised
791     to update their existing hardened sources to this version.
792     It contains a fix for a kernel vulnerability that is pertaining
793     to the PaX changes to virtual memory management, possibly leading
794     to a local kernel exploit ... see grsecurity.net forums and homepage
795 phreak 1.133
796     23 Jan 2007; Christian Heim <phreak@gentoo.org>
797     files/digest-hardened-sources-2.6.19-r5, Manifest:
798     Fixing the patch-tarball digest.
799 phreak 1.132
800     *hardened-sources-2.6.19-r5 (23 Jan 2007)
801    
802     23 Jan 2007; Christian Heim <phreak@gentoo.org>
803     +hardened-sources-2.6.19-r5.ebuild:
804     Revision bump, closing the recently discovered PaX expand_stack()
805     vulnerability.
806 phreak 1.131
807     *hardened-sources-2.6.19-r4 (14 Jan 2007)
808    
809     14 Jan 2007; Christian Heim <phreak@gentoo.org>
810     +hardened-sources-2.6.19-r4.ebuild:
811     Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
812     dropping the randomized PID feature.
813 opfer 1.130
814     11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
815     hardened-sources-2.4.33.4.ebuild:
816     stable x86, bug #161171
817 phreak 1.129
818     *hardened-sources-2.6.19-r3 (27 Dec 2006)
819    
820     27 Dec 2006; Christian Heim <phreak@gentoo.org>
821     -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
822     Revision bump for bug #157186 and #158786.
823 phreak 1.128
824     *hardened-sources-2.6.18-r4 (27 Dec 2006)
825    
826     27 Dec 2006; Christian Heim <phreak@gentoo.org>
827     -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
828     Revision bump for bug #157186.
829 phreak 1.127
830     *hardened-sources-2.6.19-r2 (23 Dec 2006)
831    
832     23 Dec 2006; Christian Heim <phreak@gentoo.org>
833     -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
834     Revision bump to pull in genpatches-2.6.19-3 for #157186.
835 phreak 1.126
836     17 Dec 2006; Christian Heim <phreak@gentoo.org>
837     hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
838     hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
839     hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
840     hardened-sources-2.6.19-r1.ebuild:
841     Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
842     adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
843 pappy 1.125
844     *hardened-sources-2.4.33.4 (17 Dec 2006)
845    
846     17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
847     +hardened-sources-2.4.33.4.ebuild:
848     new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
849     and quilting
850 phreak 1.124
851     *hardened-sources-2.6.19-r1 (14 Dec 2006)
852    
853     14 Dec 2006; Christian Heim <phreak@gentoo.org>
854     -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
855     Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
856     for reporting).
857 phreak 1.123
858     *hardened-sources-2.6.19 (13 Dec 2006)
859    
860     13 Dec 2006; Christian Heim <phreak@gentoo.org>
861     +hardened-sources-2.6.19.ebuild:
862     And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
863     Brad for providing that prompt update.
864 phreak 1.122
865     *hardened-sources-2.6.18-r3 (13 Dec 2006)
866    
867     13 Dec 2006; Christian Heim <phreak@gentoo.org>
868     -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
869     +hardened-sources-2.6.18-r3.ebuild:
870     Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
871     S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
872 phreak 1.121
873     09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
874     Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
875 nixnut 1.120
876     08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
877     Stable on ppc wrt bug 157356
878 opfer 1.119
879     07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
880     hardened-sources-2.6.18.ebuild:
881     stable x86, bug #157356
882 phreak 1.118
883     *hardened-sources-2.6.18-r2 (06 Dec 2006)
884    
885     06 Dec 2006; Christian Heim <phreak@gentoo.org>
886     +hardened-sources-2.6.18-r2.ebuild:
887     Revision bump, including 2.6.18.5 (via genpatches) and
888     4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
889     Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
890     redesign.
891 phreak 1.117
892     06 Dec 2006; Christian Heim <phreak@gentoo.org>
893     hardened-sources-2.6.18.ebuild:
894     Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
895     of Mike Doty).
896 phreak 1.116
897     *hardened-sources-2.6.18-r1 (23 Nov 2006)
898    
899     23 Nov 2006; Christian Heim <phreak@gentoo.org>
900     +hardened-sources-2.6.18-r1.ebuild:
901     Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
902 phreak 1.115
903     *hardened-sources-2.6.18 (11 Nov 2006)
904    
905     11 Nov 2006; Christian Heim <phreak@gentoo.org>
906     +hardened-sources-2.6.18.ebuild:
907     Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
908 solar 1.114
909     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
910     - mark amd64 stable also. bug #151877
911 solar 1.113
912     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
913     - mark 2.6.17-r1 stable
914 phreak 1.112
915     27 Aug 2006; Christian Heim <phreak@gentoo.org>
916     -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
917     Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
918 phreak 1.111
919     *hardened-sources-2.6.17-r1 (26 Aug 2006)
920    
921     26 Aug 2006; Christian Heim <phreak@gentoo.org>
922     +hardened-sources-2.6.17-r1.ebuild:
923     Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
924     grsecurity patch.
925 phreak 1.110
926     *hardened-sources-2.6.17 (17 Aug 2006)
927    
928     17 Aug 2006; Christian Heim <phreak@gentoo.org>
929     +hardened-sources-2.6.17.ebuild:
930     Bumping the hardened-sources-2.6 series to 2.6.17, using
931     genpatches-2.6.17-6.base.
932 solar 1.109
933     07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
934     - stable on x86 and amd64
935 solar 1.108
936     *hardened-sources-2.6.16-r11 (15 Jul 2006)
937    
938     15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
939     -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
940     -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
941     -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
942     - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
943     crusty ebuilds
944 johnm 1.107
945     14 Jul 2006; John Mylchreest <johnm@gentoo.org>
946     hardened-sources-2.6.16-r10.ebuild:
947     marking stable on x86 and amd64
948 solar 1.106
949     13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
950     - 2.4.32-r6 stable on x86. RSBAC state unknown
951 kang 1.105
952     *hardened-sources-2.4.32-r7 (10 Jul 2006)
953    
954     10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
955     +hardened-sources-2.4.32-r7.ebuild:
956     Bump PaX for RSBAC to test-17
957 johnm 1.104
958     *hardened-sources-2.6.16-r9 (03 Jul 2006)
959    
960     03 Jul 2006; John Mylchreest <johnm@gentoo.org>
961     -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
962     hardened-sources-2.6.16 bump to latest -base.
963 solar 1.103
964     *hardened-sources-2.4.32-r6 (30 Jun 2006)
965    
966     30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
967     hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
968     - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
969     sysctl controlable resource logging
970 johnm 1.102
971     *hardened-sources-2.6.16-r7 (05 Jun 2006)
972    
973     05 Jun 2006; John Mylchreest <johnm@gentoo.org>
974     -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
975     push new 2.6.16 release in preparation for stable
976 solar 1.101
977     22 May 2006; <solar@gentoo.org> :
978     - redigest bug 134002
979 kang 1.100
980     *hardened-sources-2.4.32-r5 (16 May 2006)
981    
982     16 May 2006; Guillaume Destuynder <kang@gentoo.org>
983     +hardened-sources-2.4.32-r5.ebuild:
984     Fixes rsbac common patching (new patch in new -r5 patchset)
985 solar 1.99
986     *hardened-sources-2.4.32-r4 (13 May 2006)
987    
988     13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
989     +hardened-sources-2.4.32-r4.ebuild:
990     - security bumps
991 johnm 1.98
992     *hardened-sources-2.6.16-r6 (03 May 2006)
993    
994     03 May 2006; John Mylchreest <johnm@gentoo.org>
995     +hardened-sources-2.6.16-r6.ebuild:
996     bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
997 johnm 1.97
998     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
999     hardened-sources-2.6.14-r8.ebuild:
1000     fix x86_64 build problem, this will delay the digest issue again for a short
1001     while but it will sort itself out
1002 johnm 1.96
1003     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1004     hardened-sources-2.6.14-r8.ebuild:
1005     bump hardened patchset
1006 antarus 1.94
1007     27 Apr 2006; Alec Warner <antarus@gentoo.org>
1008     files/digest-hardened-sources-2.4.32-r2,
1009     files/digest-hardened-sources-2.4.32-r3,
1010     files/digest-hardened-sources-2.6.14-r8, Manifest:
1011     Fixing duff SHA256 digests: Bug # 131293
1012 johnm 1.93
1013 johnm 1.95 *hardened-sources-2.6.16-r5 (27 Apr 2006)
1014    
1015     27 Apr 2006; John Mylchreest <johnm@gentoo.org>
1016     -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
1017     -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
1018     stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
1019     cleanup of old uneccessary sources
1020    
1021 johnm 1.93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1022     fix digest
1023 johnm 1.92
1024     *hardened-sources-2.6.14-r8 (20 Apr 2006)
1025    
1026     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1027     +hardened-sources-2.6.14-r8.ebuild:
1028     fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
1029 johnm 1.91
1030     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1031     Turning on gpg-signing again, and recomitting
1032 johnm 1.90
1033     *hardened-sources-2.6.16-r4 (20 Apr 2006)
1034    
1035     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1036     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
1037     +hardened-sources-2.6.16-r4.ebuild:
1038     Fix numerous security vulns
1039 solar 1.89
1040     *hardened-sources-2.4.32-r3 (16 Apr 2006)
1041    
1042     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
1043     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
1044     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
1045     - security bump for bug #112791. Removed old ebuilds
1046 johnm 1.88
1047     *hardened-sources-2.6.16-r3 (15 Apr 2006)
1048    
1049     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
1050     +hardened-sources-2.6.16-r3.ebuild:
1051     Removing silly localversion which I missed
1052 johnm 1.87
1053     *hardened-sources-2.6.14-r7 (14 Apr 2006)
1054    
1055     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
1056     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
1057     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
1058 johnm 1.86
1059     *hardened-sources-2.6.16-r2 (13 Apr 2006)
1060    
1061     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
1062     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
1063     +hardened-sources-2.6.16-r2.ebuild:
1064     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
1065     labels, dropping USERGROUP define fixes, since these were merged mainstream.
1066 johnm 1.85
1067     *hardened-sources-2.6.16-r1 (11 Apr 2006)
1068    
1069     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
1070     +hardened-sources-2.6.16-r1.ebuild:
1071     Bumping to include ppc build fix and 2.6.16.3
1072 tsunam 1.84
1073     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
1074     hardened-sources-2.6.14-r6.ebuild:
1075     Stable on x86; bug #127718
1076 johnm 1.83
1077     *hardened-sources-2.6.16 (31 Mar 2006)
1078    
1079     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
1080     +hardened-sources-2.6.16.ebuild:
1081     Bumping to new version of grsec, and kernel base. New squashfs. Based on
1082     2.6.16.1
1083 cryos 1.82
1084     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
1085     hardened-sources-2.6.14-r6.ebuild:
1086     Stable on amd64, bug 127718.
1087 nixnut 1.81
1088     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
1089     Stable on ppc. Bug #127718
1090 johnm 1.80
1091     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1092     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
1093     -hardened-sources-2.6.14-r4.ebuild:
1094     Cleanup.
1095 johnm 1.79
1096     *hardened-sources-2.6.14-r6 (15 Mar 2006)
1097    
1098     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1099     +hardened-sources-2.6.14-r6.ebuild:
1100     Fixes grsec policy recreation bug and adds a
1101     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
1102 solar 1.78
1103     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
1104     - stable on x86
1105 hansmi 1.77
1106     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
1107     hardened-sources-2.6.14-r5.ebuild:
1108     Stable on ppc.
1109 johnm 1.76
1110     *hardened-sources-2.6.14-r5 (01 Feb 2006)
1111    
1112     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
1113     +hardened-sources-2.6.14-r5.ebuild:
1114     fixing every known exploit
1115 solar 1.75
1116     *hardened-sources-2.4.32-r2 (26 Jan 2006)
1117    
1118     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
1119     +hardened-sources-2.4.32-r2.ebuild:
1120     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
1121 solar 1.74
1122     *hardened-sources-2.6.14-r4 (12 Jan 2006)
1123    
1124     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
1125     - version bump for new genpatches which fix up a few sec holes
1126 solar 1.73
1127     *hardened-sources-2.4.32-r1 (05 Jan 2006)
1128    
1129     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
1130     - revision bump to add misc vital linux kernel security patches.
1131 johnm 1.72
1132     *hardened-sources-2.6.14-r3 (30 Dec 2005)
1133    
1134     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
1135     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
1136     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
1137 johnm 1.71
1138     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
1139     hardened-sources-2.6.14-r2.ebuild:
1140     making x86 & amd64 stable following testing.
1141 johnm 1.70
1142     *hardened-sources-2.6.14-r2 (27 Dec 2005)
1143    
1144     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
1145     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
1146     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
1147     network hooks.
1148 johnm 1.69
1149     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
1150     hardened-sources-2.6.14-r1.ebuild:
1151     bumping to stable early for sec fix on x86 & amd64
1152 johnm 1.68
1153     *hardened-sources-2.6.14-r1 (05 Dec 2005)
1154    
1155     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
1156     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
1157     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
1158 solar 1.67
1159     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
1160     - stable on x86 security bug #114227 CAN-2005-3257
1161 kang 1.66
1162     *hardened-sources-2.4.32 (19 Nov 2005)
1163    
1164     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
1165     +hardened-sources-2.4.32.ebuild:
1166     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
1167     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
1168     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
1169     rsbac >> /etc/portage/package.use)
1170 johnm 1.65
1171     *hardened-sources-2.6.14 (14 Nov 2005)
1172    
1173     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
1174     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
1175     Bumping 2.6 series to 2.6.14.2
1176 johnm 1.64
1177     *hardened-sources-2.6.13-r2 (20 Oct 2005)
1178    
1179     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
1180     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
1181     +hardened-sources-2.6.13-r2.ebuild:
1182     Fixes minor build error in ppc.
1183 johnm 1.63
1184     *hardened-sources-2.6.13-r1 (17 Oct 2005)
1185    
1186     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
1187     +hardened-sources-2.6.13-r1.ebuild:
1188     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
1189     2.6.13.4, fixes some major amd64 stability problems.
1190 johnm 1.62
1191     *hardened-sources-2.6.13 (16 Sep 2005)
1192    
1193     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
1194     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
1195     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
1196     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
1197     users should test this thoroughly.
1198 solar 1.61
1199     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
1200     - stable on x86
1201 johnm 1.60
1202     *hardened-sources-2.6.11-r15 (27 Jun 2005)
1203    
1204     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
1205     +hardened-sources-2.6.11-r15.ebuild:
1206     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
1207     grsec redefining curr_ip struct.
1208 solar 1.59
1209     *hardened-sources-2.4.31 (20 Jun 2005)
1210    
1211     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
1212     initial import of 2.4.31 tree
1213 johnm 1.58
1214     *hardened-sources-2.6.11-r14 (14 Jun 2005)
1215    
1216     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
1217     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
1218     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
1219     naming scheme to abide by genpatches
1220 johnm 1.57
1221     *hardened-sources-2.6.11-r13 (18 May 2005)
1222    
1223     18 May 2005; John Mylchreest <johnm@gentoo.org>
1224     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
1225     Managed to mangle the Makefile patch from grsec, to miss out the grsec
1226     target. sorry about that. Fixes bug #93022
1227 johnm 1.56
1228     *hardened-sources-2.6.11-r12 (17 May 2005)
1229    
1230     17 May 2005; John Mylchreest <johnm@gentoo.org>
1231     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1232     +hardened-sources-2.6.11-r12.ebuild:
1233     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1234     merges in genpatches-base
1235 johnm 1.55
1236     *hardened-sources-2.6.11-r12 (17 May 2005)
1237    
1238     17 May 2005; John Mylchreest <johnm@gentoo.org>
1239     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1240     +hardened-sources-2.6.11-r12.ebuild:
1241     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1242     merges in genpatches-base
1243 solar 1.54
1244     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
1245     -files/2.4.27-cmdline-race.patch,
1246     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
1247     -files/2.4.28-grsec-binfmt_a.out.patch,
1248     -files/2.4.28-grsec-cmdline-race.patch,
1249     -files/2.4.28-selinux-binfmt_a.out.patch,
1250     -files/2.4.28-selinux-cmdline-race.patch,
1251     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
1252     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
1253     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
1254     cleanup..
1255 solar 1.53
1256     *hardened-sources-2.4.30-r1 (21 Apr 2005)
1257    
1258     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
1259     - disable aout by default
1260 solar 1.52
1261     *hardened-sources-2.4.30 (18 Apr 2005)
1262    
1263     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
1264     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
1265     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
1266     use
1267 tocharian 1.50
1268 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
1269    
1270     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1271     +hardened-sources-2.4.29.ebuild:
1272     New hardened-patches-2.4-29.0 patchball.
1273     Removed SELinux support, upgraded GRSecurity to 2.1.4.
1274    
1275     *hardened-sources-2.4.28-r5 (06 Mar 2005)
1276    
1277     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1278     +hardened-sources-2.4.28-r5.ebuild:
1279     Added a fix for a PaX vulnerability.
1280    
1281     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1282 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
1283     Stable on x86
1284 solar 1.49
1285     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
1286     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
1287     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
1288     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
1289     - fixed/added RDEPEND= in all kernel-2 ebuilds
1290 tocharian 1.48
1291     *hardened-sources-2.4.28-r4 (21 Jan 2005)
1292    
1293     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1294     +hardened-sources-2.4.28-r4.ebuild:
1295     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
1296     backport of neighbour hash updates.
1297 tocharian 1.47
1298     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1299     hardened-sources-2.4.28-r3.ebuild:
1300     Stable on x86
1301 tseng 1.46
1302     *hardened-sources-2.6.10-r3 (20 Jan 2005)
1303    
1304     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
1305     +hardened-sources-2.6.10-r3.ebuild:
1306     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
1307     in 2005.0
1308 tocharian 1.45
1309     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1310     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
1311     hardened-sources-2.4.28-r2.ebuild:
1312     Mark stable on x86
1313 tocharian 1.44
1314     *hardened-sources-2.4.28-r3 (17 Jan 2005)
1315    
1316     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1317     +hardened-sources-2.4.28-r3.ebuild:
1318     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
1319 tocharian 1.43
1320     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1321     hardened-sources-2.4.28.ebuild:
1322     Mark stable on x86.
1323 tocharian 1.42
1324     *hardened-sources-2.4.28-r2 (13 Jan 2005)
1325    
1326     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1327     +hardened-sources-2.4.28-r2.ebuild:
1328     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
1329     Mazinger for grsecurity patches as well.
1330 plasmaroo 1.41
1331     *hardened-sources-2.4.28-r1 (23 Dec 2004)
1332    
1333     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
1334     Security bump. Thank tocharian for rolling a new patchset...
1335 solar 1.40
1336     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
1337     +files/2.4.28-grsec-cmdline-race.patch,
1338     +files/2.4.28-selinux-binfmt_a.out.patch,
1339     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
1340     - Round up remaining security patches that appear to be missing in 2.4.28. -
1341     PaX standalone updated to current. hgpv=28.1
1342 solar 1.39
1343     *hardened-sources-2.4.28 (28 Nov 2004)
1344    
1345     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
1346     security bump. Thank tocharian for rolling a new patchset
1347 scox 1.31
1348 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
1349    
1350     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
1351     +hardened-sources-2.4.27-r3.ebuild:
1352     Applies the new 2.4-27.2 patchball which updates
1353     GRSecurity to the 2.0.1 version.
1354    
1355 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
1356    
1357     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1358     +hardened-sources-2.4.27-r2.ebuild:
1359     Version bump.
1360     This version uses the new 2.4-27.1 patchball which updates
1361     both the SELinux PaX hooks patch and the SELinux headers.
1362    
1363 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
1364    
1365     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1366     +hardened-sources-2.4.27-r1.ebuild,
1367     -hardened-sources-2.4.27.ebuild,
1368     +files/2.4.27-cmdline-race.patch:
1369     Version bump, fix for cmdline race. See bug #59905.
1370    
1371     *hardened-sources-2.4.26-r6 (09 Aug 2004)
1372    
1373     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1374     +hardened-sources-2.4.26-r6.ebuild,
1375     -hardened-sources-2.4.26-r5.ebuild,
1376     -hardened-sources-2.4.26-r4.ebuild,
1377     +files/2.4.26-cmdline-race.patch:
1378     Version bump, fix for cmdline race. See bug #59905.
1379    
1380 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
1381    
1382     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1383     +hardened-sources-2.4.27.ebuild,
1384     +files/2.4.27-CAN-2004-0394.patch:
1385     Ported the patchball to the 2.4.27 kernel version.
1386    
1387 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1388    
1389     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1390     +hardened-sources-2.4.26-r5.ebuild:
1391 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
1392 scox 1.34 It adds the following features:
1393     - Squashfs
1394     - Ebtables
1395     - Netdev random (core+drivers)
1396     - Watchdog Timer (WDT) fix.
1397    
1398 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1399    
1400     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1401     +hardened-sources-2.4.26-r4.ebuild,
1402     +files/2.4.26-CAN-2004-0415.patch,
1403     -hardened-sources-2.4.26-3:
1404     Version bump, fix for CAN 0415, see bug #59378.
1405    
1406 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1407    
1408     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1409     +hardened-sources-2.4.26-r3.ebuild,
1410     +files/2.4.26-CAN-2004-0497.patch,
1411     -hardened-sources-2.4.26-r2.ebuild:
1412     Version bump, fixed CAN 0497, see bug #56171.
1413    
1414 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1415    
1416     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1417 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
1418 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
1419     +files/2.4.26-CAN-2004-0535.patch,
1420     -hardened-sources-2.4.26-r1.ebuild:
1421     Fixes for both CAN 0495 and 0535, see bug #54976
1422 pvdabeel 1.27
1423 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1424     hardened-sources-2.4.26-r1.ebuild:
1425     QA - fix use invocation
1426 scox 1.28
1427     *hardened-sources-2.4.26-r1 (22 June 2004)
1428    
1429     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1430     +hardened-sources-2.4.26-r1.ebuild,
1431     +files/2.4.26-CAN-2004-0394.patch,
1432     +files/2.4.26-signal-race.patch,
1433     -hardened-sources-2.4.26.ebuild,
1434     -hardened-sources-2.4.24-r3.ebuild:
1435     Version bump for the CAN-2004-0394 issue and bug #53804
1436     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1437    
1438    
1439 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1440     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1441     Masked hardened-sources-2.4.26.ebuild broken for ppc
1442    
1443     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1444     hardened-sources-2.4.24-r3.ebuild:
1445     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1446 plasmaroo 1.25
1447 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
1448    
1449     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1450     +hardened-sources-2.4.26.ebuild:
1451     Updated hardened-sources for the 2.4.26 kernel
1452     Removed broken components, updated almost everything.
1453    
1454 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1455    
1456     17 Apr 2004; <plasmaroo@gentoo.org>
1457     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1458     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1459     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1460     +hardened-sources-2.4.24-r3.ebuild:
1461     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1462     vulnerabilities. Old revisions removed.
1463 plasmaroo 1.24
1464     *hardened-sources-2.4.24-r2 (15 Apr 2004)
1465    
1466     15 Apr 2004; <plasmaroo@gentoo.org>
1467     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1468     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1469     Version bump for the CAN-2004-0109 issue; bug #47881.
1470 aliz 1.23
1471     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1472     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1473     Add eutils to inherit.
1474 plasmaroo 1.22
1475     *hardened-sources-2.4.24-r1 (19 Feb 2004)
1476    
1477     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1478     files/hardened-sources-2.4.24.munmap.patch:
1479     Added the patch for the mremap/munmap vulnerability. Bug #42024.
1480 scox 1.19
1481 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
1482 scox 1.26
1483 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1484     hardened-sources-2.4.24.ebuild:
1485     Version bump, updated most of the components.
1486     This release includes the following:
1487    
1488     - Hardened security
1489     - Netfilter patch-o-matic 20031219
1490     - FreeSWAN 2.04 & x509 1.4.8
1491     - EVMS 2.2.2
1492     - XFS 1.3.1
1493     - cryptoloop jari
1494     - grsecurity 2.0-rc4
1495     - SELinux
1496     - PaX 200402060000
1497     - PaX Obscurity 200308302223
1498     - Others...
1499    
1500     Neither -ck nor systrace are included anymore.
1501    
1502 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1503    
1504     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1505     hardened-sources-2.4.22-r2.ebuild:
1506 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1507 scox 1.19
1508     *hardened-sources-2.4.22-r1 (02 Dec 2003)
1509 iggy 1.17
1510     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1511 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1512 iggy 1.16
1513     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1514 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
1515     Version bump for the 'do_brk' vulnerability.
1516 iggy 1.15
1517     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1518     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1519     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1520     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1521 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
1522 frogger 1.14
1523     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1524     hardened-sources-2.4.22.ebuild:
1525 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
1526     components. These are no longer handled in the kernel
1527     so this code was not necessary.
1528 frogger 1.13
1529     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1530     New 2.4.22 based hardened-sources thanks to
1531     Phil West <p.west@computer.org>.
1532    
1533     These sources include:
1534 plasmaroo 1.18 - New SELinux API
1535     - Updated CK-base
1536     - Updated GRSec
1537     - Systrace
1538     - SuperFreeS/WAN 1.99.8
1539     - Propolice kernel build support
1540     - EVMS
1541     - Other various security related patches
1542 frogger 1.11
1543 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
1544    
1545     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1546     Updated hardened-sources based on the 2.4.21 Linux kernel.
1547     This includes updates to most major components such as:
1548 plasmaroo 1.18 - ck-base-0306300059
1549     - selinux-2.4-2003071106
1550     - grsecurity-2.0-rc1
1551     - Updated IPTables patch-o-matic
1552     - Updated SuperFreeS/WAN
1553    
1554 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
1555     updated patch set ready for the 2.4.21 based kernel.
1556    
1557 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1558     Initial import of hardened-sources-2.4.20-r4. This revision
1559     includes only a few changes, but one of these is an important
1560     security fix. It is recommended all users of hardened-sources
1561     upgrade to this release.
1562 plasmaroo 1.18
1563 frogger 1.11 - ioperm bug fix
1564     - fixed compilation failure when building without GRSec
1565 plasmaroo 1.18
1566 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
1567     due to time constraints, but is planned for inclusion in the near
1568     future.
1569 msterret 1.10
1570     *hardened-sources-2.4.20-r2 (12 Jun 2003)
1571    
1572     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1573     hardened-sources-2.4.20-r3.ebuild:
1574 plasmaroo 1.18 Add Header...
1575 frogger 1.9
1576     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1577     hardened-sources-2.4.20-r3.ebuild:
1578     Removed warnings from ebuild. This kernel should be safe to
1579     use at this point.
1580 frogger 1.8
1581     *hardened-sources-2.4.20-r3 (08 Jun 2003)
1582    
1583     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1584     hardened-sources-2.4.20-r3.ebuild:
1585     New revision. Includes the following changes over -r2:
1586 plasmaroo 1.18
1587 frogger 1.8 - ck7-base (O(1), preempt, low latency)
1588     - Super FreeS/WAN 1.99.7rc2
1589     - PaX for the LSM/SELinux branch
1590     - GRSecurity 2.0-pre4 (role based access control)
1591     - Systrace 1.3
1592     - EXT3 fixes
1593     - EVMS 2.0.1
1594     - GCC 3.1+ compile optimizations
1595     - ProPolice kernel build support
1596     - Hashing table security fixes
1597 frogger 1.3
1598     *hardened-sources-2.4.20-r1 (09 Apr 2003)
1599 frogger 1.7
1600     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1601     Initial import of hardened-sources-r2. This new
1602     ebuild includes many new performance and security
1603     related patches. As in -r1, it will patch in
1604     LSM/SELinux if "selinux" is in USE, otherwise it
1605     will patch in GRSecurity. The following patches
1606     are included in this revision:
1607 plasmaroo 1.18
1608 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
1609     (pulled from the base CK patch)
1610     - ptrace exploit patch for the LSM kernel
1611     (the GRSec patch already fixes this)
1612     - LSM 2.4-2003040709
1613     - SELinux 2.4-2003040709
1614     - Systrace v1.2
1615     - IPTables patch-o-matic base patches - 20030107
1616     - CryptoAPI 2.4.20.1 w/ loop-jari patch
1617     - Super FreeS/WAN 1.99.6.1
1618     - GRSecurity 1.9.9g
1619     - MPPE
1620     - EXT3 data journal fix
1621     - CIPE 1.5.4
1622 frogger 1.6
1623     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1624     hardened-sources-2.4.20-r1.ebuild, manifest:
1625 plasmaroo 1.18 Updated to install flask components correctly for selinux.
1626 frogger 1.5
1627     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1628     hardened-sources-2.4.20-r1.ebuild:
1629     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1630     is patched in instead. Ptrace patches for selinux have also been added. In
1631     either case, systrace support will be patched in as well.
1632 frogger 1.3
1633     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1634     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1635 plasmaroo 1.18 Revision bump for new sources.
1636 frogger 1.4
1637 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1638 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
1639 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1640 method 1.1
1641 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
1642    
1643 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1644     hardened-sources-2.4.20.ebuild:
1645 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20