/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.275 - (hide annotations) (download)
Fri Jan 23 20:02:02 2009 UTC (5 years, 10 months ago) by nixnut
Branch: MAIN
Changes since 1.274: +5 -1 lines
ppc stable
(Portage version: 2.1.6.7/cvs/Linux ppc)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 gengor 1.268 # Copyright 2000-2009 Gentoo Foundation; Distributed under the GPL v2
3 nixnut 1.275 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.274 2009/01/21 10:19:48 gengor Exp $
4    
5     23 Jan 2009; nixnut <nixnut@gentoo.org>
6     hardened-sources-2.6.25-r13.ebuild:
7     ppc stable
8 gengor 1.274
9     21 Jan 2009; Gordon Malm <gengor@gentoo.org>
10     hardened-sources-2.6.25-r13.ebuild:
11     Fasttrack stable amd64/x86.
12 gengor 1.273
13     *hardened-sources-2.6.26-r9 (21 Jan 2009)
14    
15     21 Jan 2009; Gordon Malm <gengor@gentoo.org>
16     +hardened-sources-2.6.26-r9.ebuild:
17     Revert RLIMIT_STACK false-positives-avoidance patch. Bugs 253773, 254843
18 gengor 1.272
19     *hardened-sources-2.6.25-r13 (20 Jan 2009)
20    
21     20 Jan 2009; Gordon Malm <gengor@gentoo.org>
22     +hardened-sources-2.6.25-r13.ebuild:
23     Revert RLIMIT_STACK false-positives-avoidance patch. Bugs 253773, 254843
24 nixnut 1.271
25     20 Jan 2009; nixnut <nixnut@gentoo.org>
26     hardened-sources-2.6.25-r12.ebuild:
27     ppc stable
28 gengor 1.270
29     17 Jan 2009; Gordon Malm <gengor@gentoo.org>
30     hardened-sources-2.6.25-r12.ebuild:
31     Stable amd64/x86.
32 gengor 1.269
33     14 Jan 2009; Gordon Malm <gengor@gentoo.org>
34     -hardened-sources-2.6.25-r10.ebuild, -hardened-sources-2.6.26-r6.ebuild,
35     -hardened-sources-2.6.27-r2.ebuild:
36     Clean out old versions.
37 gengor 1.268
38     *hardened-sources-2.6.27-r4 (14 Jan 2009)
39     *hardened-sources-2.6.26-r8 (14 Jan 2009)
40     *hardened-sources-2.6.25-r12 (14 Jan 2009)
41    
42     14 Jan 2009; Gordon Malm <gengor@gentoo.org>
43     +hardened-sources-2.6.25-r12.ebuild, +hardened-sources-2.6.26-r8.ebuild,
44     +hardened-sources-2.6.27-r4.ebuild:
45     2.6.25-r12: Fixes bugs #249729, #250548, #252688, #254907
46     2.6.26-r8: Fixes bugs #249729, #250548, #252688, #254907
47     2.6.27-r4: Update to latest genpatches (includes Linux 2.6.27.10) and
48     grsecurity patch. Fixes bugs #249729, #250511, #250548, #252688, #254907
49 nixnut 1.267
50     15 Dec 2008; nixnut <nixnut@gentoo.org>
51     hardened-sources-2.6.25-r11.ebuild:
52     Stable on ppc
53 gengor 1.266
54     09 Dec 2008; Gordon Malm <gengor@gentoo.org>
55     hardened-sources-2.6.25-r11.ebuild:
56     Stable amd64/x86.
57 gengor 1.265
58     *hardened-sources-2.6.27-r3 (07 Dec 2008)
59    
60     07 Dec 2008; Gordon Malm <gengor@gentoo.org>
61     +hardened-sources-2.6.27-r3.ebuild:
62     Bump to latest genpatches, including Linux 2.6.27.8. Bump grsec/pax patches.
63     Fixes bug #248754, #249729 and #246607.
64 gengor 1.264
65     03 Dec 2008; Gordon Malm <gengor@gentoo.org>
66     -hardened-sources-2.6.25-r9.ebuild, -hardened-sources-2.6.26-r5.ebuild:
67     Remove old versions.
68 gengor 1.262
69     *hardened-sources-2.6.26-r7 (03 Dec 2008)
70     *hardened-sources-2.6.25-r11 (03 Dec 2008)
71    
72 gengor 1.263 03 Dec 2008; Gordon Malm <gengor@gentoo.org>
73     +hardened-sources-2.6.25-r11.ebuild, +hardened-sources-2.6.26-r7.ebuild:
74 gengor 1.262 2.6.25-r11: Fixes bugs 246607, 246710, 247453 and 248754.
75     2.6.26-r7: Fixes bugs 246607, 246710, 246763, 247453 and 248754.
76     Both include many backports from 2.6.27.{6,7} -stable releases.
77 gengor 1.261
78     24 Nov 2008; Gordon Malm <gengor@gentoo.org>
79     -hardened-sources-2.6.27.ebuild, -hardened-sources-2.6.27-r1.ebuild:
80     Remove versions broken on ARCHes != x86/amd64.
81 gengor 1.260
82     *hardened-sources-2.6.27-r2 (24 Nov 2008)
83    
84     24 Nov 2008; Gordon Malm <gengor@gentoo.org>
85     +hardened-sources-2.6.27-r2.ebuild:
86     Bump to Linux 2.6.27.7 and latest grsecurity patch.
87 gengor 1.259
88     19 Nov 2008; Gordon Malm <gengor@gentoo.org>
89     -hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r4.ebuild:
90     Remove old versions.
91 gengor 1.258
92     19 Nov 2008; Gordon Malm <gengor@gentoo.org>
93     hardened-sources-2.6.27.ebuild, hardened-sources-2.6.27-r1.ebuild:
94     Remove all but ~amd64 & ~x86 keywords (broken elsewhere).
95 nixnut 1.257
96     16 Nov 2008; nixnut <nixnut@gentoo.org>
97     hardened-sources-2.6.25-r10.ebuild:
98     Stable on ppc
99 gengor 1.256
100     15 Nov 2008; Gordon Malm <gengor@gentoo.org>
101     hardened-sources-2.6.25-r10.ebuild:
102     Stable amd64/x86.
103 gengor 1.255
104     *hardened-sources-2.6.26-r6 (12 Nov 2008)
105    
106     12 Nov 2008; Gordon Malm <gengor@gentoo.org>
107     +hardened-sources-2.6.26-r6.ebuild:
108     Bump to Linux 2.6.26.8 and fix security bug #245650.
109 gengor 1.254
110     *hardened-sources-2.6.25-r10 (12 Nov 2008)
111    
112     12 Nov 2008; Gordon Malm <gengor@gentoo.org>
113     +hardened-sources-2.6.25-r10.ebuild:
114     Update to Linux 2.6.25.20 and fix bugs #245427, #245650.
115 gengor 1.253
116     *hardened-sources-2.6.27-r1 (09 Nov 2008)
117    
118     09 Nov 2008; Gordon Malm <gengor@gentoo.org>
119     +hardened-sources-2.6.27-r1.ebuild:
120     Bump to stable kernel 2.6.27.5 and latest grsecurity patch.
121 gengor 1.252
122     *hardened-sources-2.6.27 (04 Nov 2008)
123    
124     04 Nov 2008; Gordon Malm <gengor@gentoo.org>
125     +hardened-sources-2.6.27.ebuild:
126     Initial 2.6.27 release.
127 gengor 1.251
128     *hardened-sources-2.6.26-r5 (03 Nov 2008)
129    
130     03 Nov 2008; Gordon Malm <gengor@gentoo.org>
131     -hardened-sources-2.6.25-r7.ebuild, -hardened-sources-2.6.26-r2.ebuild,
132     +hardened-sources-2.6.26-r5.ebuild:
133     2.6.26-r5: Bump to Linux 2.6.26.7, PaX updates.
134     Clean out some old versions.
135 nixnut 1.250
136     02 Nov 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r9.ebuild:
137     Stable on ppc
138 gengor 1.249
139     30 Oct 2008; Gordon Malm <gengor@gentoo.org>
140     hardened-sources-2.6.25-r9.ebuild:
141     Stable on amd64/x86.
142 gengor 1.248
143     *hardened-sources-2.6.25-r9 (26 Oct 2008)
144    
145     26 Oct 2008; Gordon Malm <gengor@gentoo.org>
146     +hardened-sources-2.6.25-r9.ebuild:
147     Update to Linux 2.6.25.19
148 nixnut 1.247
149     15 Oct 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r8.ebuild:
150     Stable on ppc
151 gengor 1.246
152     *hardened-sources-2.6.26-r4 (14 Oct 2008)
153    
154     14 Oct 2008; Gordon Malm <gengor@gentoo.org>
155     -hardened-sources-2.6.26-r3.ebuild, +hardened-sources-2.6.26-r4.ebuild:
156     Update to latest grsecurity patch, fixing building of non-modular kernels.
157 gengor 1.245
158     *hardened-sources-2.6.26-r3 (12 Oct 2008)
159    
160     12 Oct 2008; Gordon Malm <gengor@gentoo.org>
161     hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r1.ebuild,
162     +hardened-sources-2.6.26-r3.ebuild:
163     2.6.26-r3: Update to Linux 2.6.26.6 and latest grsecurity patch.
164     2.6.26-r1: Removed.
165     2.6.25-r8: Stable amd64/x86.
166 gengor 1.244
167     *hardened-sources-2.6.25-r8 (09 Oct 2008)
168    
169     09 Oct 2008; Gordon Malm <gengor@gentoo.org>
170     -hardened-sources-2.6.25-r4.ebuild, -hardened-sources-2.6.25-r5.ebuild,
171     -hardened-sources-2.6.25-r6.ebuild, +hardened-sources-2.6.25-r8.ebuild:
172     Update to genpatches-11 and Linux 2.6.25.18. Remove old versions.
173 nixnut 1.243
174     20 Sep 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r7.ebuild:
175     Stable on ppc
176 gengor 1.242
177     17 Sep 2008; Gordon Malm <gengor@gentoo.org>
178     hardened-sources-2.6.25-r7.ebuild:
179     Stable amd64/x86.
180 gengor 1.241
181     *hardened-sources-2.6.26-r2 (13 Sep 2008)
182    
183     13 Sep 2008; Gordon Malm <gengor@gentoo.org>
184     -hardened-sources-2.6.26.ebuild, +hardened-sources-2.6.26-r2.ebuild:
185     2.6.26-r2: Update to Linux 2.6.26.5, new grsecurity patch adding
186     PAX_REFCOUNT feature, fix bug #237473 (CVE-2008-3525). 2.6.26: Removed.
187 gengor 1.240
188     *hardened-sources-2.6.25-r7 (13 Sep 2008)
189    
190     13 Sep 2008; Gordon Malm <gengor@gentoo.org>
191     +hardened-sources-2.6.25-r7.ebuild:
192     Add 2.6.25-r7, fixing bug #237473 (CVE-2008-3525) and a PaX bug.
193 gengor 1.239
194     10 Sep 2008; Gordon Malm <gengor@gentoo.org>
195     hardened-sources-2.6.25-r4.ebuild, hardened-sources-2.6.25-r5.ebuild,
196     hardened-sources-2.6.25-r6.ebuild, hardened-sources-2.6.26.ebuild,
197     hardened-sources-2.6.26-r1.ebuild:
198     Update DESCRIPTION and HGPV_URI.
199 gengor 1.238
200     *hardened-sources-2.6.25-r6 (09 Sep 2008)
201    
202     09 Sep 2008; Gordon Malm <gengor@gentoo.org>
203     -hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25-r6.ebuild:
204     2.6.25-r6: Update to Linux 2.6.25.17.
205     2.6.24-r3: Removed.
206 gengor 1.237
207     08 Sep 2008; Gordon Malm <gengor@gentoo.org>
208     hardened-sources-2.6.25-r5.ebuild:
209     Stable on amd64/x86
210 gengor 1.236
211     07 Sep 2008; Gordon Malm <gengor@gentoo.org> metadata.xml:
212     Update my email address.
213 nixnut 1.235
214     31 Aug 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r4.ebuild:
215     stable on ppc
216 battousai 1.234
217     *hardened-sources-2.6.26-r1 (23 Aug 2008)
218     *hardened-sources-2.6.25-r5 (23 Aug 2008)
219    
220     23 Aug 2008; Bryan D. Stine <battousai@gentoo.org>
221     -hardened-sources-2.6.23-r13.ebuild, -hardened-sources-2.6.25-r3.ebuild,
222     hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.25-r5.ebuild,
223     +hardened-sources-2.6.26-r1.ebuild:
224     Bump to 2.6.25-r5 for updated patches and upstream .10 kernel, fixing
225     security bug #235221. Bump to 2.6.26-r1 for upstream .3 kernel, also
226     fixing security bug #235221. Marked 2.6.25-r4 stable on amd64 and x86.
227     Removed 2.6.23-r13 and 2.6.25-r3. Commit on behalf of Gordon Malm
228     (gengor).
229 solar 1.233
230     *hardened-sources-2.6.26 (18 Aug 2008)
231     *hardened-sources-2.6.25-r4 (18 Aug 2008)
232    
233     18 Aug 2008; <solar@gentoo.org> -hardened-sources-2.6.25-r2.ebuild,
234     +hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.26.ebuild:
235     - proxy commit for gengor 2.6.26: Initial 2.6.26 release. 2.6.25-r4: Update
236     to Linux 2.6.25.15. Fixes security bugs #234799, #234803 and #234812.
237     2.6.25-r2: Removed.
238 tove 1.232
239     16 Aug 2008; Torsten Veller <tove@gentoo.org> metadata.xml:
240     Remove phreak from metadata.xml (#96398)
241 solar 1.231
242     *hardened-sources-2.6.25-r3 (31 Jul 2008)
243    
244     31 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.24-r2.ebuild,
245     -hardened-sources-2.6.25.ebuild, -hardened-sources-2.6.25-r1.ebuild,
246     +hardened-sources-2.6.25-r3.ebuild:
247     - 2.6.25-r3: Update to Linux 2.6.25.13 and new grsecurity patch. Multiple
248     fixes, including security bug #231750.
249 nixnut 1.230
250     28 Jul 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.24-r3.ebuild:
251     Stable on ppc
252 solar 1.229
253     *hardened-sources-2.6.25-r2 (05 Jul 2008)
254    
255     05 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r11.ebuild,
256     -hardened-sources-2.6.23-r12.ebuild, hardened-sources-2.6.24-r3.ebuild,
257     +hardened-sources-2.6.25-r2.ebuild:
258     2.6.23-r4: Stable x86/amd64
259     2.6.25-r2: Update to Linux 2.6.25.10 and latest grsecurity release.
260     2.6.23-r{11,12}: Removed due to multiple vulns.
261     (gengor & kerframil)
262 nixnut 1.228
263     04 Jul 2008; nixnut <nixnut@gentoo.org>
264     hardened-sources-2.6.23-r13.ebuild:
265     Stable on ppc
266 solar 1.227
267     *hardened-sources-2.6.25-r1 (30 Jun 2008)
268    
269     30 Jun 2008; <solar@gentoo.org> hardened-sources-2.6.23-r13.ebuild,
270     +hardened-sources-2.6.25-r1.ebuild:
271     2.6.25-r1: Brings in Linux -stable tree patches 2.6.25.{7,8,9} and newer
272     grsecurity release. 2.6.23-r13: x86/amd64 stable
273 solar 1.226
274     *hardened-sources-2.6.25 (17 Jun 2008)
275     *hardened-sources-2.6.24-r3 (17 Jun 2008)
276     *hardened-sources-2.6.23-r13 (17 Jun 2008)
277    
278     17 Jun 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r13.ebuild,
279     +hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25.ebuild:
280     * 2.6.23-r13: Fixes security bugs #198997, #212136, #222331, #222635,
281     #224647, #225461, other fixes. * 2.6.24-r3: Fixes security bugs #212136,
282     #222331, #222635, #224647, #225461, grsec/PaX updates/fixes, other fixes. *
283     2.6.25: Initial 2.6.25 release.
284 solar 1.225
285     15 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r12.ebuild:
286     - fasttrack to stable x86/amd64
287 swegener 1.224
288     11 May 2008; Sven Wegener <swegener@gentoo.org> Manifest:
289     Fix broken digest for linux-2.6.24.tar.bz2.
290 solar 1.223
291     *hardened-sources-2.6.24-r2 (11 May 2008)
292     *hardened-sources-2.6.23-r12 (11 May 2008)
293    
294     11 May 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r7.ebuild,
295     -hardened-sources-2.6.23-r9.ebuild, -hardened-sources-2.6.23-r10.ebuild,
296     +hardened-sources-2.6.23-r12.ebuild, -hardened-sources-2.6.24.ebuild,
297     -hardened-sources-2.6.24-r1.ebuild, +hardened-sources-2.6.24-r2.ebuild:
298     proxy commit for gengor. 2.6.23-r11 shortlog: Fixes security bugs 220691,
299     220975, 220979, 221123. 2.6.24-r2 not-so-shortlog: Fixes bug 215442,
300     security bugs 219901, 220691, 220975, 220979, 221123. New
301     genpatches/grsecurity with numerous updates & fixes. 2.6.23-r7->2.6.23-r10
302     should be removed as far as I'm concerned, everything else remove due to
303     vulnerable to numerous security bugs or brokeness.
304 nixnut 1.222
305     10 May 2008; nixnut <nixnut@gentoo.org>
306     hardened-sources-2.6.23-r11.ebuild:
307     Stable on ppc
308 solar 1.221
309     05 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r11.ebuild:
310     - -r11 stable on x86/amd64
311 solar 1.220
312     *hardened-sources-2.6.23-r11 (01 May 2008)
313    
314     01 May 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r11.ebuild:
315     - version bump to fix ulgy linux bugs
316 phreak 1.219
317     *hardened-sources-2.6.24-r1 (30 Apr 2008)
318    
319     30 Apr 2008; Christian Heim <phreak@gentoo.org>
320     +hardened-sources-2.6.24-r1.ebuild:
321     Revision bump (thanks to Kerin and Gordon, again), pulling
322     genpatches-2.6.24-7, solving #219089. Additionally contains further security
323     fixes plus some minor updates.
324 phreak 1.218
325     *hardened-sources-2.6.23-r10 (30 Apr 2008)
326    
327     30 Apr 2008; Christian Heim <phreak@gentoo.org>
328     +hardened-sources-2.6.23-r10.ebuild:
329     Revision bump (thanks to Kerin and Gordon, again), solving #213811, #219089.
330     Additional contains "various other fixes".
331 phreak 1.217
332     09 Apr 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
333     Update the longdescription in metadata, thanks to Gordon Malm.
334 nixnut 1.216
335     08 Apr 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.23-r9.ebuild:
336     Stable on ppc wrt bug #213255
337 solar 1.215
338     07 Apr 2008; <solar@gentoo.org> -hardened-sources-2.4.35-r2.ebuild,
339     -hardened-sources-2.6.23-r8.ebuild, hardened-sources-2.6.23-r9.ebuild:
340     - stable on x86/amd64 per request. Removed obsolete ebuilds
341 phreak 1.214
342     *hardened-sources-2.6.24 (07 Apr 2008)
343    
344     07 Apr 2008; Christian Heim <phreak@gentoo.org>
345     +hardened-sources-2.6.24.ebuild:
346     Adding ebuild for hardened-sources-2.6.24 (many thanks to Kerin Millar
347     <kerframil at gmail.com> and Gordon Malm <bugs-gentoo-org-02 at bumpin.org>
348     for the many contributions and their continued effort in #216612) based on
349     2.6.24 and genpatches-2.6.24-5.
350    
351     The current ebuild/patchset contains these things:
352     * Incoporates unmodified grsec-2.1.11-2.6.24.4-200803262003 patch
353     * Introduces bespoke server and workstation oriented security levels
354     * VDSO_COMPAT cannot be enabled during runtime if PaX is enabled
355 phreak 1.213
356     30 Mar 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
357     Fix the metadata.xml (Kerin isn't a dev, though he and Gordon are
358     maintaining it).
359 phreak 1.212
360     24 Mar 2008; Christian Heim <phreak@gentoo.org>
361     hardened-sources-2.4.35-r2.ebuild:
362     Fixing SRC_URI for 2.4.35-r2.
363 phreak 1.211
364     *hardened-sources-2.6.23-r9 (22 Mar 2008)
365    
366     22 Mar 2008; Christian Heim <phreak@gentoo.org>
367     +hardened-sources-2.6.23-r9.ebuild:
368     * Revision bump, rebasing the patchset against genpatches-2.6.23-10.
369     * Change the default GIDs for some grsecurity options
370     * Revamp the Hardened [Gentoo] security level and make it the default level
371     * Fixing compilation on ia64 with CONFIG_MODULES=y (loadable module support)
372     * Fix a recursive lock -- call to capable() within ptrace_attach()
373     * Fix bug that allows audit and iscsi operations to be controlled via netlink
374 solar 1.210
375     *hardened-sources-2.6.23-r8 (27 Feb 2008)
376    
377     27 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r8.ebuild:
378     - version bump from Kerin Millar bug 210026
379 solar 1.209
380     17 Feb 2008; <solar@gentoo.org> metadata.xml,
381     -hardened-sources-2.4.33.4.ebuild, -hardened-sources-2.6.20-r6.ebuild,
382     -hardened-sources-2.6.20-r10.ebuild, -hardened-sources-2.6.23-r4.ebuild,
383     -hardened-sources-2.6.23-r6.ebuild, hardened-sources-2.6.23-r7.ebuild:
384     - stable on x86 and remove old ebuilds
385 solar 1.207
386     15 Feb 2008; <solar@gentoo.org> hardened-sources-2.6.23-r7.ebuild:
387 solar 1.208 - stable on amd64 per request of amd64 lead
388 solar 1.206
389     *hardened-sources-2.6.23-r7 (11 Feb 2008)
390    
391     11 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r7.ebuild:
392     - version bump from kerin.millar
393     Changes:
394    
395     * Bump to genpatches-base-2.6.23-9
396     * Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
397     * Disables COMPAT_VDSO in x86/defconfig
398     * Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig
399 phreak 1.205
400     25 Jan 2008; Christian Heim <phreak@gentoo.org>
401     -hardened-sources-2.6.22-r8.ebuild:
402     Cleaning up old versions.
403 phreak 1.204
404     *hardened-sources-2.6.23-r6 (25 Jan 2008)
405    
406     25 Jan 2008; Christian Heim <phreak@gentoo.org>
407     -hardened-sources-2.6.23-r5.ebuild, +hardened-sources-2.6.23-r6.ebuild:
408     Revision bump, pulling in the latest genpatches.
409 phreak 1.203
410     *hardened-sources-2.6.23-r5 (24 Dec 2007)
411    
412     24 Dec 2007; Christian Heim <phreak@gentoo.org>
413     hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
414     hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
415     hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
416     Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
417 phreak 1.202
418     24 Dec 2007; Christian Heim <phreak@gentoo.org>
419     -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
420     -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
421     -hardened-sources-2.6.23-r3.ebuild:
422     Cleaning out some unused, old versions.
423 phreak 1.201
424     24 Dec 2007; Christian Heim <phreak@gentoo.org>
425     hardened-sources-2.6.23-r4.ebuild:
426     Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
427     in the tree for long, but there isn't much of a difference between this and
428     -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
429 phreak 1.200
430     *hardened-sources-2.6.23-r4 (23 Dec 2007)
431    
432     23 Dec 2007; Christian Heim <phreak@gentoo.org>
433     +hardened-sources-2.6.23-r4.ebuild:
434     Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
435 phreak 1.199
436     *hardened-sources-2.6.23-r3 (04 Dec 2007)
437    
438     04 Dec 2007; Christian Heim <phreak@gentoo.org>
439     +hardened-sources-2.6.23-r3.ebuild:
440     Revision bump, pulling in 2.6.23.9.
441 phreak 1.198
442     *hardened-sources-2.6.23-r2 (25 Nov 2007)
443    
444     25 Nov 2007; Christian Heim <phreak@gentoo.org>
445     +hardened-sources-2.6.23-r2.ebuild:
446     Updated patchset, thanks to solar.
447 phreak 1.197
448     *hardened-sources-2.6.23-r1 (31 Oct 2007)
449    
450     31 Oct 2007; Christian Heim <phreak@gentoo.org>
451     +hardened-sources-2.6.23-r1.ebuild:
452     Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
453 solar 1.196
454     29 Oct 2007; <solar@gentoo.org> metadata.xml:
455     - update metadata.xml
456 phreak 1.195
457     25 Oct 2007; Christian Heim <phreak@gentoo.org>
458     hardened-sources-2.6.22-r8.ebuild:
459     Marking 2.6.22-r8 stable on amd64 and x86.
460 phreak 1.194
461     21 Oct 2007; Christian Heim <phreak@gentoo.org>
462     -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
463     -hardened-sources-2.6.21-r4.ebuild:
464     Removing old ebuilds.
465 phreak 1.193
466     *hardened-sources-2.4.35-r2 (21 Oct 2007)
467    
468     21 Oct 2007; Christian Heim <phreak@gentoo.org>
469     +hardened-sources-2.4.35-r2.ebuild:
470     Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
471     patches.
472 phreak 1.192
473     *hardened-sources-2.6.22-r8 (21 Oct 2007)
474    
475     21 Oct 2007; Christian Heim <phreak@gentoo.org>
476     +hardened-sources-2.6.22-r8.ebuild:
477     Yet another new patch, hopefully fixing the remaining issues we had w/
478     2.6.22. Candidate for stabling.
479 phreak 1.191
480     *hardened-sources-2.6.23 (13 Oct 2007)
481    
482     13 Oct 2007; Christian Heim <phreak@gentoo.org>
483     +hardened-sources-2.6.23.ebuild:
484     Initial hardened-sources-2.6.23. If people still have problems w/ bug
485     194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
486 phreak 1.190
487     11 Oct 2007; Christian Heim <phreak@gentoo.org>
488     hardened-sources-2.6.20-r10.ebuild:
489     Pulling in yet another new genpatches version, fixing the PWC bug for real.
490 phreak 1.189
491     04 Oct 2007; Christian Heim <phreak@gentoo.org>
492     -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
493     Removing old versions.
494 phreak 1.188
495     *hardened-sources-2.6.22-r7 (01 Oct 2007)
496    
497     01 Oct 2007; Christian Heim <phreak@gentoo.org>
498     +hardened-sources-2.6.22-r7.ebuild:
499     Revision bump, pulling in a newer patch. Should fix #194276.
500 phreak 1.187
501     30 Sep 2007; Christian Heim <phreak@gentoo.org>
502     hardened-sources-2.6.20-r10.ebuild:
503     Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
504     Mike Doty).
505 phreak 1.186
506     *hardened-sources-2.6.22-r6 (26 Sep 2007)
507    
508     26 Sep 2007; Christian Heim <phreak@gentoo.org>
509     +hardened-sources-2.6.22-r6.ebuild:
510     Revision bump, grabbing up till Linux 2.6.22.9.
511 phreak 1.185
512     24 Sep 2007; Christian Heim <phreak@gentoo.org>
513     -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
514     Cleaning up further.
515 phreak 1.184
516     *hardened-sources-2.6.20-r10 (24 Sep 2007)
517    
518     24 Sep 2007; Christian Heim <phreak@gentoo.org>
519     -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
520     +hardened-sources-2.6.20-r10.ebuild:
521     Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
522     revisions.
523 phreak 1.183
524     *hardened-sources-2.6.22-r5 (22 Sep 2007)
525    
526     22 Sep 2007; Christian Heim <phreak@gentoo.org>
527     +hardened-sources-2.6.22-r5.ebuild:
528     Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
529 phreak 1.182
530     17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
531     Removing johnm from metadata.xml (see #186467 for reference).
532 phreak 1.181
533     *hardened-sources-2.6.22-r4 (17 Sep 2007)
534    
535     17 Sep 2007; Christian Heim <phreak@gentoo.org>
536     +hardened-sources-2.6.22-r4.ebuild:
537     Revision bump, hopefully fixing all those weird PAX failures.
538 phreak 1.180
539     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
540     Updating the metadata.xml.
541 phreak 1.179
542     01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
543     Removing tocharian from metadata due to his retirement (see #71718 for
544     reference).
545 phreak 1.178
546     *hardened-sources-2.6.20-r9 (30 Aug 2007)
547    
548     30 Aug 2007; Christian Heim <phreak@gentoo.org>
549     +hardened-sources-2.6.20-r9.ebuild:
550     Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
551 phreak 1.177
552     29 Aug 2007; Christian Heim <phreak@gentoo.org>
553     -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
554     -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
555     -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
556     -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
557     -hardened-sources-2.6.22-r2.ebuild:
558     Removing some redundant versions.
559 phreak 1.176
560     *hardened-sources-2.4.35-r1 (29 Aug 2007)
561    
562     29 Aug 2007; Christian Heim <phreak@gentoo.org>
563     +hardened-sources-2.4.35-r1.ebuild:
564     Revision bump, new grsecurity patch.
565 phreak 1.175
566     *hardened-sources-2.6.20-r8 (26 Aug 2007)
567    
568     26 Aug 2007; Christian Heim <phreak@gentoo.org>
569     +hardened-sources-2.6.20-r8.ebuild:
570     Revision bump for Linux 2.6.20.17.
571 phreak 1.174
572     *hardened-sources-2.6.22-r3 (22 Aug 2007)
573    
574     22 Aug 2007; Christian Heim <phreak@gentoo.org>
575     +hardened-sources-2.6.22-r3.ebuild:
576     Revision bump for Linux 2.6.22.4.
577 phreak 1.173
578     16 Aug 2007; Christian Heim <phreak@gentoo.org>
579     hardened-sources-2.6.22-r2.ebuild:
580     Updated patchset, to fix the alignment against 2.6.22.3.
581 phreak 1.172
582     *hardened-sources-2.6.22-r2 (16 Aug 2007)
583    
584     16 Aug 2007; Christian Heim <phreak@gentoo.org>
585     +hardened-sources-2.6.22-r2.ebuild:
586     Revision bump for Linux 2.6.22.3.
587 phreak 1.171
588     *hardened-sources-2.4.35 (16 Aug 2007)
589    
590     16 Aug 2007; Christian Heim <phreak@gentoo.org>
591     +hardened-sources-2.4.35.ebuild:
592     Version bump, initial version for Linux 2.4.35.
593 phreak 1.170
594     *hardened-sources-2.6.21-r4 (16 Aug 2007)
595    
596     16 Aug 2007; Christian Heim <phreak@gentoo.org>
597     +hardened-sources-2.6.21-r4.ebuild:
598     Revision bump for Linux 2.6.21.6.
599 phreak 1.169
600     *hardened-sources-2.6.20-r7 (16 Aug 2007)
601    
602     16 Aug 2007; Christian Heim <phreak@gentoo.org>
603     +hardened-sources-2.6.20-r7.ebuild:
604     Revision bump for Linux 2.6.20.16.
605 phreak 1.168
606     *hardened-sources-2.6.22-r1 (13 Aug 2007)
607    
608     13 Aug 2007; Christian Heim <phreak@gentoo.org>
609     +hardened-sources-2.6.22-r1.ebuild:
610     Yet another revision bump.
611 phreak 1.167
612     *hardened-sources-2.6.22 (10 Aug 2007)
613    
614     10 Aug 2007; Christian Heim <phreak@gentoo.org>
615     +hardened-sources-2.6.22.ebuild:
616     Initial release for 2.6.22. If you are using hardened-sources on a desktop
617     machine (P4 or newer), be aware you might need to disable
618     CONFIG_PAX_PAGEEXEC.
619 phreak 1.166
620     04 Aug 2007; Christian Heim <phreak@gentoo.org>
621     hardened-sources-2.6.20-r6.ebuild:
622     Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
623     2.6.20.15.
624 phreak 1.165
625     10 Jul 2007; Christian Heim <phreak@gentoo.org>
626     hardened-sources-2.6.20-r5.ebuild:
627     Marking hardened-sources-2.6.20-r5 stable on ppc.
628 phreak 1.164
629     10 Jul 2007; Christian Heim <phreak@gentoo.org>
630     -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
631     Cleanup.
632 phreak 1.163
633     *hardened-sources-2.6.20-r6 (08 Jul 2007)
634    
635     08 Jul 2007; Christian Heim <phreak@gentoo.org>
636     +hardened-sources-2.6.20-r6.ebuild:
637     Revision bump, grabbing yet another stable release.
638 phreak 1.162
639     17 Jun 2007; Christian Heim <phreak@gentoo.org>
640     -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
641     -hardened-sources-2.6.21-r2.ebuild:
642     Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
643     alpha stable KEYWORD by mistake.
644 phreak 1.161
645     17 Jun 2007; Christian Heim <phreak@gentoo.org>
646     hardened-sources-2.6.20-r5.ebuild:
647     Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
648     genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
649 phreak 1.160
650     *hardened-sources-2.6.21-r3 (12 Jun 2007)
651    
652     12 Jun 2007; Christian Heim <phreak@gentoo.org>
653     +hardened-sources-2.6.21-r3.ebuild:
654     Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
655     of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
656     love.
657 phreak 1.159
658     *hardened-sources-2.6.20-r5 (11 Jun 2007)
659    
660     11 Jun 2007; Christian Heim <phreak@gentoo.org>
661     +hardened-sources-2.6.20-r5.ebuild:
662     Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
663     of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
664     love.
665 pappy 1.158
666     *hardened-sources-2.4.34.5 (11 Jun 2007)
667    
668     11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
669     +hardened-sources-2.4.34.5.ebuild:
670     added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
671 phreak 1.157
672     30 May 2007; Christian Heim <phreak@gentoo.org>
673     -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
674     Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
675     stale ebuild(s).
676 phreak 1.156
677     30 May 2007; Christian Heim <phreak@gentoo.org>
678     -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
679     -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
680     -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
681     Doing some cleanups, remove stale ebuilds.
682 phreak 1.155
683     26 May 2007; Christian Heim <phreak@gentoo.org>
684     hardened-sources-2.6.21-r2.ebuild:
685     Fixing the grsecurity patch, had one '};' too much.
686 phreak 1.154
687     *hardened-sources-2.6.21-r2 (26 May 2007)
688    
689     26 May 2007; Christian Heim <phreak@gentoo.org>
690     -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
691     +hardened-sources-2.6.21-r2.ebuild:
692     Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
693     grsecurity patch to 2.1.10-2.6.21.1-200705221918.
694 phreak 1.153
695     *hardened-sources-2.6.20-r4 (26 May 2007)
696    
697     26 May 2007; Christian Heim <phreak@gentoo.org>
698     -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
699     Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
700 phreak 1.154 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
701 phreak 1.152
702     15 May 2007; Christian Heim <phreak@gentoo.org>
703     hardened-sources-2.6.20-r3.ebuild:
704     Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
705     introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
706     grsecurity patch fail in that exact same hunk.
707 phreak 1.151
708     *hardened-sources-2.6.20-r3 (15 May 2007)
709    
710     15 May 2007; Christian Heim <phreak@gentoo.org>
711     +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
712     Revision bump, incorporating Linux 2.6.20.11.
713    
714     *hardened-sources-2.6.21-r1 (11 May 2007)
715    
716     11 May 2007; Christian Heim <phreak@gentoo.org>
717     +hardened-sources-2.6.21-r1.ebuild:
718     Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
719     mentioned in #177234.
720 kevquinn 1.150
721     07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
722     files/digest-hardened-sources-2.6.21, Manifest:
723     Fix Manifest/digest for linux-2.6.21.tar.bz2
724 phreak 1.149
725     06 May 2007; Christian Heim <phreak@gentoo.org>
726     hardened-sources-2.6.21.ebuild:
727     Bumping the hardened-patches version, needed for the fix for #177234.
728 phreak 1.148
729     *hardened-sources-2.6.21 (02 May 2007)
730    
731     02 May 2007; Christian Heim <phreak@gentoo.org>
732     +hardened-sources-2.6.21.ebuild:
733     Version bump, Linux 2.6.21-hardened.
734 phreak 1.147
735     29 Apr 2007; Christian Heim <phreak@gentoo.org>
736     hardened-sources-2.6.20-r2.ebuild:
737     Adding ~ia64 on Ned's request.
738 phreak 1.146
739     29 Apr 2007; Christian Heim <phreak@gentoo.org>
740     hardened-sources-2.6.20-r2.ebuild:
741     Fixing the included grsecurity patch, wasn't alligning due to the Index:
742     header line(s).
743 phreak 1.145
744     29 Apr 2007; Christian Heim <phreak@gentoo.org>
745     hardened-sources-2.6.20-r2.ebuild:
746     Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
747 armin76 1.144
748     *hardened-sources-2.6.20-r2 (10 Apr 2007)
749    
750     10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
751     +hardened-sources-2.6.20-r2.ebuild:
752     Version bump, on behalf of phreak
753 phreak 1.143
754     *hardened-sources-2.6.20-r1 (04 Apr 2007)
755    
756     04 Apr 2007; Christian Heim <phreak@gentoo.org>
757     +hardened-sources-2.6.20-r1.ebuild:
758     Revision bump, grabbing a newer grsecurity snapshot.
759 phreak 1.142
760     *hardened-sources-2.6.20 (25 Mar 2007)
761    
762     25 Mar 2007; Christian Heim <phreak@gentoo.org>
763     +hardened-sources-2.6.20.ebuild:
764     Finally a hardened-sources version for 2.6.20; many people have been waiting
765     for this. Thanks to Steve for preliminary testing, thanks to Ned for the
766     testbox.
767 chainsaw 1.141
768     16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
769     hardened-sources-2.6.18-r6.ebuild:
770     Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
771 phreak 1.140
772     *hardened-sources-2.6.18-r6 (16 Mar 2007)
773    
774     16 Mar 2007; Christian Heim <phreak@gentoo.org>
775     -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
776     Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
777     yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
778     supposed to be.
779 phreak 1.139
780     06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
781     Fixing the Manifest, the previous one was broken (as in still had the
782     deleted ebuild in it).
783 phreak 1.138
784     06 Mar 2007; Christian Heim <phreak@gentoo.org>
785     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
786     +hardened-sources-2.6.18-r5.ebuild:
787     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
788     Linux 2.6.18.8. Also cleaning up the older version.
789    
790     *hardened-sources-2.6.18-r5 (06 Mar 2007)
791    
792     06 Mar 2007; Christian Heim <phreak@gentoo.org>
793     -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
794     +hardened-sources-2.6.18-r5.ebuild:
795     Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
796     Linux 2.6.18.8. Also cleaning up the older version.
797 phreak 1.137
798     24 Feb 2007; Christian Heim <phreak@gentoo.org>
799     -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
800     -hardened-sources-2.6.19-r5.ebuild:
801     Removing some of the old version, that didn't work.
802 phreak 1.136
803     *hardened-sources-2.6.19-r6 (12 Feb 2007)
804    
805     12 Feb 2007; Christian Heim <phreak@gentoo.org>
806     +hardened-sources-2.6.19-r6.ebuild:
807     Revision bump, including a new grsec version fixing #166235.
808 pappy 1.134
809     *hardened-sources-2.4.34 (24 Jan 2007)
810    
811     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
812 pappy 1.135 Manifest:
813     updating Manifest with checksums of new tarball and ebuild
814    
815     24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
816 pappy 1.134 +hardened-sources-2.4.34.ebuild:
817     I added new hardened sources 2.4 update, this is a critical path
818     security bugfix - all users of h-s are strongly advised
819     to update their existing hardened sources to this version.
820     It contains a fix for a kernel vulnerability that is pertaining
821     to the PaX changes to virtual memory management, possibly leading
822     to a local kernel exploit ... see grsecurity.net forums and homepage
823 phreak 1.133
824     23 Jan 2007; Christian Heim <phreak@gentoo.org>
825     files/digest-hardened-sources-2.6.19-r5, Manifest:
826     Fixing the patch-tarball digest.
827 phreak 1.132
828     *hardened-sources-2.6.19-r5 (23 Jan 2007)
829    
830     23 Jan 2007; Christian Heim <phreak@gentoo.org>
831     +hardened-sources-2.6.19-r5.ebuild:
832     Revision bump, closing the recently discovered PaX expand_stack()
833     vulnerability.
834 phreak 1.131
835     *hardened-sources-2.6.19-r4 (14 Jan 2007)
836    
837     14 Jan 2007; Christian Heim <phreak@gentoo.org>
838     +hardened-sources-2.6.19-r4.ebuild:
839     Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
840     dropping the randomized PID feature.
841 opfer 1.130
842     11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
843     hardened-sources-2.4.33.4.ebuild:
844     stable x86, bug #161171
845 phreak 1.129
846     *hardened-sources-2.6.19-r3 (27 Dec 2006)
847    
848     27 Dec 2006; Christian Heim <phreak@gentoo.org>
849     -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
850     Revision bump for bug #157186 and #158786.
851 phreak 1.128
852     *hardened-sources-2.6.18-r4 (27 Dec 2006)
853    
854     27 Dec 2006; Christian Heim <phreak@gentoo.org>
855     -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
856     Revision bump for bug #157186.
857 phreak 1.127
858     *hardened-sources-2.6.19-r2 (23 Dec 2006)
859    
860     23 Dec 2006; Christian Heim <phreak@gentoo.org>
861     -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
862     Revision bump to pull in genpatches-2.6.19-3 for #157186.
863 phreak 1.126
864     17 Dec 2006; Christian Heim <phreak@gentoo.org>
865     hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
866     hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
867     hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
868     hardened-sources-2.6.19-r1.ebuild:
869     Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
870     adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
871 pappy 1.125
872     *hardened-sources-2.4.33.4 (17 Dec 2006)
873    
874     17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
875     +hardened-sources-2.4.33.4.ebuild:
876     new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
877     and quilting
878 phreak 1.124
879     *hardened-sources-2.6.19-r1 (14 Dec 2006)
880    
881     14 Dec 2006; Christian Heim <phreak@gentoo.org>
882     -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
883     Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
884     for reporting).
885 phreak 1.123
886     *hardened-sources-2.6.19 (13 Dec 2006)
887    
888     13 Dec 2006; Christian Heim <phreak@gentoo.org>
889     +hardened-sources-2.6.19.ebuild:
890     And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
891     Brad for providing that prompt update.
892 phreak 1.122
893     *hardened-sources-2.6.18-r3 (13 Dec 2006)
894    
895     13 Dec 2006; Christian Heim <phreak@gentoo.org>
896     -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
897     +hardened-sources-2.6.18-r3.ebuild:
898     Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
899     S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
900 phreak 1.121
901     09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
902     Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
903 nixnut 1.120
904     08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
905     Stable on ppc wrt bug 157356
906 opfer 1.119
907     07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
908     hardened-sources-2.6.18.ebuild:
909     stable x86, bug #157356
910 phreak 1.118
911     *hardened-sources-2.6.18-r2 (06 Dec 2006)
912    
913     06 Dec 2006; Christian Heim <phreak@gentoo.org>
914     +hardened-sources-2.6.18-r2.ebuild:
915     Revision bump, including 2.6.18.5 (via genpatches) and
916     4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
917     Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
918     redesign.
919 phreak 1.117
920     06 Dec 2006; Christian Heim <phreak@gentoo.org>
921     hardened-sources-2.6.18.ebuild:
922     Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
923     of Mike Doty).
924 phreak 1.116
925     *hardened-sources-2.6.18-r1 (23 Nov 2006)
926    
927     23 Nov 2006; Christian Heim <phreak@gentoo.org>
928     +hardened-sources-2.6.18-r1.ebuild:
929     Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
930 phreak 1.115
931     *hardened-sources-2.6.18 (11 Nov 2006)
932    
933     11 Nov 2006; Christian Heim <phreak@gentoo.org>
934     +hardened-sources-2.6.18.ebuild:
935     Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
936 solar 1.114
937     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
938     - mark amd64 stable also. bug #151877
939 solar 1.113
940     18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
941     - mark 2.6.17-r1 stable
942 phreak 1.112
943     27 Aug 2006; Christian Heim <phreak@gentoo.org>
944     -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
945     Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
946 phreak 1.111
947     *hardened-sources-2.6.17-r1 (26 Aug 2006)
948    
949     26 Aug 2006; Christian Heim <phreak@gentoo.org>
950     +hardened-sources-2.6.17-r1.ebuild:
951     Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
952     grsecurity patch.
953 phreak 1.110
954     *hardened-sources-2.6.17 (17 Aug 2006)
955    
956     17 Aug 2006; Christian Heim <phreak@gentoo.org>
957     +hardened-sources-2.6.17.ebuild:
958     Bumping the hardened-sources-2.6 series to 2.6.17, using
959     genpatches-2.6.17-6.base.
960 solar 1.109
961     07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
962     - stable on x86 and amd64
963 solar 1.108
964     *hardened-sources-2.6.16-r11 (15 Jul 2006)
965    
966     15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
967     -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
968     -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
969     -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
970     - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
971     crusty ebuilds
972 johnm 1.107
973     14 Jul 2006; John Mylchreest <johnm@gentoo.org>
974     hardened-sources-2.6.16-r10.ebuild:
975     marking stable on x86 and amd64
976 solar 1.106
977     13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
978     - 2.4.32-r6 stable on x86. RSBAC state unknown
979 kang 1.105
980     *hardened-sources-2.4.32-r7 (10 Jul 2006)
981    
982     10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
983     +hardened-sources-2.4.32-r7.ebuild:
984     Bump PaX for RSBAC to test-17
985 johnm 1.104
986     *hardened-sources-2.6.16-r9 (03 Jul 2006)
987    
988     03 Jul 2006; John Mylchreest <johnm@gentoo.org>
989     -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
990     hardened-sources-2.6.16 bump to latest -base.
991 solar 1.103
992     *hardened-sources-2.4.32-r6 (30 Jun 2006)
993    
994     30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
995     hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
996     - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
997     sysctl controlable resource logging
998 johnm 1.102
999     *hardened-sources-2.6.16-r7 (05 Jun 2006)
1000    
1001     05 Jun 2006; John Mylchreest <johnm@gentoo.org>
1002     -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
1003     push new 2.6.16 release in preparation for stable
1004 solar 1.101
1005     22 May 2006; <solar@gentoo.org> :
1006     - redigest bug 134002
1007 kang 1.100
1008     *hardened-sources-2.4.32-r5 (16 May 2006)
1009    
1010     16 May 2006; Guillaume Destuynder <kang@gentoo.org>
1011     +hardened-sources-2.4.32-r5.ebuild:
1012     Fixes rsbac common patching (new patch in new -r5 patchset)
1013 solar 1.99
1014     *hardened-sources-2.4.32-r4 (13 May 2006)
1015    
1016     13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
1017     +hardened-sources-2.4.32-r4.ebuild:
1018     - security bumps
1019 johnm 1.98
1020     *hardened-sources-2.6.16-r6 (03 May 2006)
1021    
1022     03 May 2006; John Mylchreest <johnm@gentoo.org>
1023     +hardened-sources-2.6.16-r6.ebuild:
1024     bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
1025 johnm 1.97
1026     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1027     hardened-sources-2.6.14-r8.ebuild:
1028     fix x86_64 build problem, this will delay the digest issue again for a short
1029     while but it will sort itself out
1030 johnm 1.96
1031     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1032     hardened-sources-2.6.14-r8.ebuild:
1033     bump hardened patchset
1034 antarus 1.94
1035     27 Apr 2006; Alec Warner <antarus@gentoo.org>
1036     files/digest-hardened-sources-2.4.32-r2,
1037     files/digest-hardened-sources-2.4.32-r3,
1038     files/digest-hardened-sources-2.6.14-r8, Manifest:
1039     Fixing duff SHA256 digests: Bug # 131293
1040 johnm 1.93
1041 johnm 1.95 *hardened-sources-2.6.16-r5 (27 Apr 2006)
1042    
1043     27 Apr 2006; John Mylchreest <johnm@gentoo.org>
1044     -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
1045     -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
1046     stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
1047     cleanup of old uneccessary sources
1048    
1049 johnm 1.93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1050     fix digest
1051 johnm 1.92
1052     *hardened-sources-2.6.14-r8 (20 Apr 2006)
1053    
1054     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1055     +hardened-sources-2.6.14-r8.ebuild:
1056     fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
1057 johnm 1.91
1058     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1059     Turning on gpg-signing again, and recomitting
1060 johnm 1.90
1061     *hardened-sources-2.6.16-r4 (20 Apr 2006)
1062    
1063     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1064     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
1065     +hardened-sources-2.6.16-r4.ebuild:
1066     Fix numerous security vulns
1067 solar 1.89
1068     *hardened-sources-2.4.32-r3 (16 Apr 2006)
1069    
1070     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
1071     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
1072     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
1073     - security bump for bug #112791. Removed old ebuilds
1074 johnm 1.88
1075     *hardened-sources-2.6.16-r3 (15 Apr 2006)
1076    
1077     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
1078     +hardened-sources-2.6.16-r3.ebuild:
1079     Removing silly localversion which I missed
1080 johnm 1.87
1081     *hardened-sources-2.6.14-r7 (14 Apr 2006)
1082    
1083     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
1084     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
1085     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
1086 johnm 1.86
1087     *hardened-sources-2.6.16-r2 (13 Apr 2006)
1088    
1089     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
1090     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
1091     +hardened-sources-2.6.16-r2.ebuild:
1092     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
1093     labels, dropping USERGROUP define fixes, since these were merged mainstream.
1094 johnm 1.85
1095     *hardened-sources-2.6.16-r1 (11 Apr 2006)
1096    
1097     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
1098     +hardened-sources-2.6.16-r1.ebuild:
1099     Bumping to include ppc build fix and 2.6.16.3
1100 tsunam 1.84
1101     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
1102     hardened-sources-2.6.14-r6.ebuild:
1103     Stable on x86; bug #127718
1104 johnm 1.83
1105     *hardened-sources-2.6.16 (31 Mar 2006)
1106    
1107     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
1108     +hardened-sources-2.6.16.ebuild:
1109     Bumping to new version of grsec, and kernel base. New squashfs. Based on
1110     2.6.16.1
1111 cryos 1.82
1112     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
1113     hardened-sources-2.6.14-r6.ebuild:
1114     Stable on amd64, bug 127718.
1115 nixnut 1.81
1116     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
1117     Stable on ppc. Bug #127718
1118 johnm 1.80
1119     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1120     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
1121     -hardened-sources-2.6.14-r4.ebuild:
1122     Cleanup.
1123 johnm 1.79
1124     *hardened-sources-2.6.14-r6 (15 Mar 2006)
1125    
1126     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1127     +hardened-sources-2.6.14-r6.ebuild:
1128     Fixes grsec policy recreation bug and adds a
1129     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
1130 solar 1.78
1131     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
1132     - stable on x86
1133 hansmi 1.77
1134     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
1135     hardened-sources-2.6.14-r5.ebuild:
1136     Stable on ppc.
1137 johnm 1.76
1138     *hardened-sources-2.6.14-r5 (01 Feb 2006)
1139    
1140     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
1141     +hardened-sources-2.6.14-r5.ebuild:
1142     fixing every known exploit
1143 solar 1.75
1144     *hardened-sources-2.4.32-r2 (26 Jan 2006)
1145    
1146     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
1147     +hardened-sources-2.4.32-r2.ebuild:
1148     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
1149 solar 1.74
1150     *hardened-sources-2.6.14-r4 (12 Jan 2006)
1151    
1152     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
1153     - version bump for new genpatches which fix up a few sec holes
1154 solar 1.73
1155     *hardened-sources-2.4.32-r1 (05 Jan 2006)
1156    
1157     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
1158     - revision bump to add misc vital linux kernel security patches.
1159 johnm 1.72
1160     *hardened-sources-2.6.14-r3 (30 Dec 2005)
1161    
1162     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
1163     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
1164     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
1165 johnm 1.71
1166     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
1167     hardened-sources-2.6.14-r2.ebuild:
1168     making x86 & amd64 stable following testing.
1169 johnm 1.70
1170     *hardened-sources-2.6.14-r2 (27 Dec 2005)
1171    
1172     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
1173     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
1174     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
1175     network hooks.
1176 johnm 1.69
1177     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
1178     hardened-sources-2.6.14-r1.ebuild:
1179     bumping to stable early for sec fix on x86 & amd64
1180 johnm 1.68
1181     *hardened-sources-2.6.14-r1 (05 Dec 2005)
1182    
1183     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
1184     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
1185     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
1186 solar 1.67
1187     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
1188     - stable on x86 security bug #114227 CAN-2005-3257
1189 kang 1.66
1190     *hardened-sources-2.4.32 (19 Nov 2005)
1191    
1192     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
1193     +hardened-sources-2.4.32.ebuild:
1194     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
1195     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
1196     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
1197     rsbac >> /etc/portage/package.use)
1198 johnm 1.65
1199     *hardened-sources-2.6.14 (14 Nov 2005)
1200    
1201     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
1202     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
1203     Bumping 2.6 series to 2.6.14.2
1204 johnm 1.64
1205     *hardened-sources-2.6.13-r2 (20 Oct 2005)
1206    
1207     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
1208     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
1209     +hardened-sources-2.6.13-r2.ebuild:
1210     Fixes minor build error in ppc.
1211 johnm 1.63
1212     *hardened-sources-2.6.13-r1 (17 Oct 2005)
1213    
1214     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
1215     +hardened-sources-2.6.13-r1.ebuild:
1216     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
1217     2.6.13.4, fixes some major amd64 stability problems.
1218 johnm 1.62
1219     *hardened-sources-2.6.13 (16 Sep 2005)
1220    
1221     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
1222     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
1223     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
1224     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
1225     users should test this thoroughly.
1226 solar 1.61
1227     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
1228     - stable on x86
1229 johnm 1.60
1230     *hardened-sources-2.6.11-r15 (27 Jun 2005)
1231    
1232     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
1233     +hardened-sources-2.6.11-r15.ebuild:
1234     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
1235     grsec redefining curr_ip struct.
1236 solar 1.59
1237     *hardened-sources-2.4.31 (20 Jun 2005)
1238    
1239     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
1240     initial import of 2.4.31 tree
1241 johnm 1.58
1242     *hardened-sources-2.6.11-r14 (14 Jun 2005)
1243    
1244     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
1245     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
1246     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
1247     naming scheme to abide by genpatches
1248 johnm 1.57
1249     *hardened-sources-2.6.11-r13 (18 May 2005)
1250    
1251     18 May 2005; John Mylchreest <johnm@gentoo.org>
1252     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
1253     Managed to mangle the Makefile patch from grsec, to miss out the grsec
1254     target. sorry about that. Fixes bug #93022
1255 johnm 1.56
1256     *hardened-sources-2.6.11-r12 (17 May 2005)
1257    
1258     17 May 2005; John Mylchreest <johnm@gentoo.org>
1259     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1260     +hardened-sources-2.6.11-r12.ebuild:
1261     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1262     merges in genpatches-base
1263 johnm 1.55
1264     *hardened-sources-2.6.11-r12 (17 May 2005)
1265    
1266     17 May 2005; John Mylchreest <johnm@gentoo.org>
1267     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1268     +hardened-sources-2.6.11-r12.ebuild:
1269     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1270     merges in genpatches-base
1271 solar 1.54
1272     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
1273     -files/2.4.27-cmdline-race.patch,
1274     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
1275     -files/2.4.28-grsec-binfmt_a.out.patch,
1276     -files/2.4.28-grsec-cmdline-race.patch,
1277     -files/2.4.28-selinux-binfmt_a.out.patch,
1278     -files/2.4.28-selinux-cmdline-race.patch,
1279     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
1280     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
1281     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
1282     cleanup..
1283 solar 1.53
1284     *hardened-sources-2.4.30-r1 (21 Apr 2005)
1285    
1286     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
1287     - disable aout by default
1288 solar 1.52
1289     *hardened-sources-2.4.30 (18 Apr 2005)
1290    
1291     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
1292     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
1293     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
1294     use
1295 tocharian 1.50
1296 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
1297    
1298     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1299     +hardened-sources-2.4.29.ebuild:
1300     New hardened-patches-2.4-29.0 patchball.
1301     Removed SELinux support, upgraded GRSecurity to 2.1.4.
1302    
1303     *hardened-sources-2.4.28-r5 (06 Mar 2005)
1304    
1305     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1306     +hardened-sources-2.4.28-r5.ebuild:
1307     Added a fix for a PaX vulnerability.
1308    
1309     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1310 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
1311     Stable on x86
1312 solar 1.49
1313     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
1314     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
1315     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
1316     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
1317     - fixed/added RDEPEND= in all kernel-2 ebuilds
1318 tocharian 1.48
1319     *hardened-sources-2.4.28-r4 (21 Jan 2005)
1320    
1321     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1322     +hardened-sources-2.4.28-r4.ebuild:
1323     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
1324     backport of neighbour hash updates.
1325 tocharian 1.47
1326     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1327     hardened-sources-2.4.28-r3.ebuild:
1328     Stable on x86
1329 tseng 1.46
1330     *hardened-sources-2.6.10-r3 (20 Jan 2005)
1331    
1332     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
1333     +hardened-sources-2.6.10-r3.ebuild:
1334     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
1335     in 2005.0
1336 tocharian 1.45
1337     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1338     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
1339     hardened-sources-2.4.28-r2.ebuild:
1340     Mark stable on x86
1341 tocharian 1.44
1342     *hardened-sources-2.4.28-r3 (17 Jan 2005)
1343    
1344     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1345     +hardened-sources-2.4.28-r3.ebuild:
1346     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
1347 tocharian 1.43
1348     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1349     hardened-sources-2.4.28.ebuild:
1350     Mark stable on x86.
1351 tocharian 1.42
1352     *hardened-sources-2.4.28-r2 (13 Jan 2005)
1353    
1354     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1355     +hardened-sources-2.4.28-r2.ebuild:
1356     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
1357     Mazinger for grsecurity patches as well.
1358 plasmaroo 1.41
1359     *hardened-sources-2.4.28-r1 (23 Dec 2004)
1360    
1361     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
1362     Security bump. Thank tocharian for rolling a new patchset...
1363 solar 1.40
1364     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
1365     +files/2.4.28-grsec-cmdline-race.patch,
1366     +files/2.4.28-selinux-binfmt_a.out.patch,
1367     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
1368     - Round up remaining security patches that appear to be missing in 2.4.28. -
1369     PaX standalone updated to current. hgpv=28.1
1370 solar 1.39
1371     *hardened-sources-2.4.28 (28 Nov 2004)
1372    
1373     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
1374     security bump. Thank tocharian for rolling a new patchset
1375 scox 1.31
1376 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
1377    
1378     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
1379     +hardened-sources-2.4.27-r3.ebuild:
1380     Applies the new 2.4-27.2 patchball which updates
1381     GRSecurity to the 2.0.1 version.
1382    
1383 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
1384    
1385     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1386     +hardened-sources-2.4.27-r2.ebuild:
1387     Version bump.
1388     This version uses the new 2.4-27.1 patchball which updates
1389     both the SELinux PaX hooks patch and the SELinux headers.
1390    
1391 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
1392    
1393     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1394     +hardened-sources-2.4.27-r1.ebuild,
1395     -hardened-sources-2.4.27.ebuild,
1396     +files/2.4.27-cmdline-race.patch:
1397     Version bump, fix for cmdline race. See bug #59905.
1398    
1399     *hardened-sources-2.4.26-r6 (09 Aug 2004)
1400    
1401     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1402     +hardened-sources-2.4.26-r6.ebuild,
1403     -hardened-sources-2.4.26-r5.ebuild,
1404     -hardened-sources-2.4.26-r4.ebuild,
1405     +files/2.4.26-cmdline-race.patch:
1406     Version bump, fix for cmdline race. See bug #59905.
1407    
1408 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
1409    
1410     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1411     +hardened-sources-2.4.27.ebuild,
1412     +files/2.4.27-CAN-2004-0394.patch:
1413     Ported the patchball to the 2.4.27 kernel version.
1414    
1415 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1416    
1417     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1418     +hardened-sources-2.4.26-r5.ebuild:
1419 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
1420 scox 1.34 It adds the following features:
1421     - Squashfs
1422     - Ebtables
1423     - Netdev random (core+drivers)
1424     - Watchdog Timer (WDT) fix.
1425    
1426 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1427    
1428     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1429     +hardened-sources-2.4.26-r4.ebuild,
1430     +files/2.4.26-CAN-2004-0415.patch,
1431     -hardened-sources-2.4.26-3:
1432     Version bump, fix for CAN 0415, see bug #59378.
1433    
1434 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1435    
1436     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1437     +hardened-sources-2.4.26-r3.ebuild,
1438     +files/2.4.26-CAN-2004-0497.patch,
1439     -hardened-sources-2.4.26-r2.ebuild:
1440     Version bump, fixed CAN 0497, see bug #56171.
1441    
1442 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1443    
1444     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1445 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
1446 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
1447     +files/2.4.26-CAN-2004-0535.patch,
1448     -hardened-sources-2.4.26-r1.ebuild:
1449     Fixes for both CAN 0495 and 0535, see bug #54976
1450 pvdabeel 1.27
1451 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1452     hardened-sources-2.4.26-r1.ebuild:
1453     QA - fix use invocation
1454 scox 1.28
1455     *hardened-sources-2.4.26-r1 (22 June 2004)
1456    
1457     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1458     +hardened-sources-2.4.26-r1.ebuild,
1459     +files/2.4.26-CAN-2004-0394.patch,
1460     +files/2.4.26-signal-race.patch,
1461     -hardened-sources-2.4.26.ebuild,
1462     -hardened-sources-2.4.24-r3.ebuild:
1463     Version bump for the CAN-2004-0394 issue and bug #53804
1464     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1465    
1466    
1467 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1468     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1469     Masked hardened-sources-2.4.26.ebuild broken for ppc
1470    
1471     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1472     hardened-sources-2.4.24-r3.ebuild:
1473     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1474 plasmaroo 1.25
1475 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
1476    
1477     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1478     +hardened-sources-2.4.26.ebuild:
1479     Updated hardened-sources for the 2.4.26 kernel
1480     Removed broken components, updated almost everything.
1481    
1482 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1483    
1484     17 Apr 2004; <plasmaroo@gentoo.org>
1485     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1486     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1487     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1488     +hardened-sources-2.4.24-r3.ebuild:
1489     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1490     vulnerabilities. Old revisions removed.
1491 plasmaroo 1.24
1492     *hardened-sources-2.4.24-r2 (15 Apr 2004)
1493    
1494     15 Apr 2004; <plasmaroo@gentoo.org>
1495     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1496     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1497     Version bump for the CAN-2004-0109 issue; bug #47881.
1498 aliz 1.23
1499     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1500     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1501     Add eutils to inherit.
1502 plasmaroo 1.22
1503     *hardened-sources-2.4.24-r1 (19 Feb 2004)
1504    
1505     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1506     files/hardened-sources-2.4.24.munmap.patch:
1507     Added the patch for the mremap/munmap vulnerability. Bug #42024.
1508 scox 1.19
1509 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
1510 scox 1.26
1511 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1512     hardened-sources-2.4.24.ebuild:
1513     Version bump, updated most of the components.
1514     This release includes the following:
1515    
1516     - Hardened security
1517     - Netfilter patch-o-matic 20031219
1518     - FreeSWAN 2.04 & x509 1.4.8
1519     - EVMS 2.2.2
1520     - XFS 1.3.1
1521     - cryptoloop jari
1522     - grsecurity 2.0-rc4
1523     - SELinux
1524     - PaX 200402060000
1525     - PaX Obscurity 200308302223
1526     - Others...
1527    
1528     Neither -ck nor systrace are included anymore.
1529    
1530 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1531    
1532     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1533     hardened-sources-2.4.22-r2.ebuild:
1534 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1535 scox 1.19
1536     *hardened-sources-2.4.22-r1 (02 Dec 2003)
1537 iggy 1.17
1538     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1539 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1540 iggy 1.16
1541     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1542 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
1543     Version bump for the 'do_brk' vulnerability.
1544 iggy 1.15
1545     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1546     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1547     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1548     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1549 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
1550 frogger 1.14
1551     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1552     hardened-sources-2.4.22.ebuild:
1553 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
1554     components. These are no longer handled in the kernel
1555     so this code was not necessary.
1556 frogger 1.13
1557     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1558     New 2.4.22 based hardened-sources thanks to
1559     Phil West <p.west@computer.org>.
1560    
1561     These sources include:
1562 plasmaroo 1.18 - New SELinux API
1563     - Updated CK-base
1564     - Updated GRSec
1565     - Systrace
1566     - SuperFreeS/WAN 1.99.8
1567     - Propolice kernel build support
1568     - EVMS
1569     - Other various security related patches
1570 frogger 1.11
1571 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
1572    
1573     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1574     Updated hardened-sources based on the 2.4.21 Linux kernel.
1575     This includes updates to most major components such as:
1576 plasmaroo 1.18 - ck-base-0306300059
1577     - selinux-2.4-2003071106
1578     - grsecurity-2.0-rc1
1579     - Updated IPTables patch-o-matic
1580     - Updated SuperFreeS/WAN
1581    
1582 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
1583     updated patch set ready for the 2.4.21 based kernel.
1584    
1585 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1586     Initial import of hardened-sources-2.4.20-r4. This revision
1587     includes only a few changes, but one of these is an important
1588     security fix. It is recommended all users of hardened-sources
1589     upgrade to this release.
1590 plasmaroo 1.18
1591 frogger 1.11 - ioperm bug fix
1592     - fixed compilation failure when building without GRSec
1593 plasmaroo 1.18
1594 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
1595     due to time constraints, but is planned for inclusion in the near
1596     future.
1597 msterret 1.10
1598     *hardened-sources-2.4.20-r2 (12 Jun 2003)
1599    
1600     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1601     hardened-sources-2.4.20-r3.ebuild:
1602 plasmaroo 1.18 Add Header...
1603 frogger 1.9
1604     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1605     hardened-sources-2.4.20-r3.ebuild:
1606     Removed warnings from ebuild. This kernel should be safe to
1607     use at this point.
1608 frogger 1.8
1609     *hardened-sources-2.4.20-r3 (08 Jun 2003)
1610    
1611     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1612     hardened-sources-2.4.20-r3.ebuild:
1613     New revision. Includes the following changes over -r2:
1614 plasmaroo 1.18
1615 frogger 1.8 - ck7-base (O(1), preempt, low latency)
1616     - Super FreeS/WAN 1.99.7rc2
1617     - PaX for the LSM/SELinux branch
1618     - GRSecurity 2.0-pre4 (role based access control)
1619     - Systrace 1.3
1620     - EXT3 fixes
1621     - EVMS 2.0.1
1622     - GCC 3.1+ compile optimizations
1623     - ProPolice kernel build support
1624     - Hashing table security fixes
1625 frogger 1.3
1626     *hardened-sources-2.4.20-r1 (09 Apr 2003)
1627 frogger 1.7
1628     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1629     Initial import of hardened-sources-r2. This new
1630     ebuild includes many new performance and security
1631     related patches. As in -r1, it will patch in
1632     LSM/SELinux if "selinux" is in USE, otherwise it
1633     will patch in GRSecurity. The following patches
1634     are included in this revision:
1635 plasmaroo 1.18
1636 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
1637     (pulled from the base CK patch)
1638     - ptrace exploit patch for the LSM kernel
1639     (the GRSec patch already fixes this)
1640     - LSM 2.4-2003040709
1641     - SELinux 2.4-2003040709
1642     - Systrace v1.2
1643     - IPTables patch-o-matic base patches - 20030107
1644     - CryptoAPI 2.4.20.1 w/ loop-jari patch
1645     - Super FreeS/WAN 1.99.6.1
1646     - GRSecurity 1.9.9g
1647     - MPPE
1648     - EXT3 data journal fix
1649     - CIPE 1.5.4
1650 frogger 1.6
1651     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1652     hardened-sources-2.4.20-r1.ebuild, manifest:
1653 plasmaroo 1.18 Updated to install flask components correctly for selinux.
1654 frogger 1.5
1655     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1656     hardened-sources-2.4.20-r1.ebuild:
1657     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1658     is patched in instead. Ptrace patches for selinux have also been added. In
1659     either case, systrace support will be patched in as well.
1660 frogger 1.3
1661     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1662     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1663 plasmaroo 1.18 Revision bump for new sources.
1664 frogger 1.4
1665 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1666 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
1667 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1668 method 1.1
1669 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
1670    
1671 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1672     hardened-sources-2.4.20.ebuild:
1673 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20