/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.36 - (hide annotations) (download)
Tue Aug 10 00:11:08 2004 UTC (9 years, 8 months ago) by scox
Branch: MAIN
Changes since 1.35: +17 -0 lines
Bumped to 2.4.26-r6 and to 2.4.27-r1 in order to fix bug #59905

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 agriffis 1.30 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 scox 1.31 # $Header: $
4    
5 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
6    
7     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
8     +hardened-sources-2.4.27-r1.ebuild,
9     -hardened-sources-2.4.27.ebuild,
10     +files/2.4.27-cmdline-race.patch:
11     Version bump, fix for cmdline race. See bug #59905.
12    
13     *hardened-sources-2.4.26-r6 (09 Aug 2004)
14    
15     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
16     +hardened-sources-2.4.26-r6.ebuild,
17     -hardened-sources-2.4.26-r5.ebuild,
18     -hardened-sources-2.4.26-r4.ebuild,
19     +files/2.4.26-cmdline-race.patch:
20     Version bump, fix for cmdline race. See bug #59905.
21    
22 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
23    
24     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
25     +hardened-sources-2.4.27.ebuild,
26     +files/2.4.27-CAN-2004-0394.patch:
27     Ported the patchball to the 2.4.27 kernel version.
28    
29 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
30    
31     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
32     +hardened-sources-2.4.26-r5.ebuild:
33 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
34 scox 1.34 It adds the following features:
35     - Squashfs
36     - Ebtables
37     - Netdev random (core+drivers)
38     - Watchdog Timer (WDT) fix.
39    
40 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
41    
42     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
43     +hardened-sources-2.4.26-r4.ebuild,
44     +files/2.4.26-CAN-2004-0415.patch,
45     -hardened-sources-2.4.26-3:
46     Version bump, fix for CAN 0415, see bug #59378.
47    
48 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
49    
50     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
51     +hardened-sources-2.4.26-r3.ebuild,
52     +files/2.4.26-CAN-2004-0497.patch,
53     -hardened-sources-2.4.26-r2.ebuild:
54     Version bump, fixed CAN 0497, see bug #56171.
55    
56 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
57    
58     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
59 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
60 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
61     +files/2.4.26-CAN-2004-0535.patch,
62     -hardened-sources-2.4.26-r1.ebuild:
63     Fixes for both CAN 0495 and 0535, see bug #54976
64 pvdabeel 1.27
65 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
66     hardened-sources-2.4.26-r1.ebuild:
67     QA - fix use invocation
68 scox 1.28
69     *hardened-sources-2.4.26-r1 (22 June 2004)
70    
71     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
72     +hardened-sources-2.4.26-r1.ebuild,
73     +files/2.4.26-CAN-2004-0394.patch,
74     +files/2.4.26-signal-race.patch,
75     -hardened-sources-2.4.26.ebuild,
76     -hardened-sources-2.4.24-r3.ebuild:
77     Version bump for the CAN-2004-0394 issue and bug #53804
78     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
79    
80    
81 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
82     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
83     Masked hardened-sources-2.4.26.ebuild broken for ppc
84    
85     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
86     hardened-sources-2.4.24-r3.ebuild:
87     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
88 plasmaroo 1.25
89 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
90    
91     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
92     +hardened-sources-2.4.26.ebuild:
93     Updated hardened-sources for the 2.4.26 kernel
94     Removed broken components, updated almost everything.
95    
96 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
97    
98     17 Apr 2004; <plasmaroo@gentoo.org>
99     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
100     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
101     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
102     +hardened-sources-2.4.24-r3.ebuild:
103     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
104     vulnerabilities. Old revisions removed.
105 plasmaroo 1.24
106     *hardened-sources-2.4.24-r2 (15 Apr 2004)
107    
108     15 Apr 2004; <plasmaroo@gentoo.org>
109     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
110     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
111     Version bump for the CAN-2004-0109 issue; bug #47881.
112 aliz 1.23
113     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
114     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
115     Add eutils to inherit.
116 plasmaroo 1.22
117     *hardened-sources-2.4.24-r1 (19 Feb 2004)
118    
119     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
120     files/hardened-sources-2.4.24.munmap.patch:
121     Added the patch for the mremap/munmap vulnerability. Bug #42024.
122 scox 1.19
123 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
124 scox 1.26
125 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
126     hardened-sources-2.4.24.ebuild:
127     Version bump, updated most of the components.
128     This release includes the following:
129    
130     - Hardened security
131     - Netfilter patch-o-matic 20031219
132     - FreeSWAN 2.04 & x509 1.4.8
133     - EVMS 2.2.2
134     - XFS 1.3.1
135     - cryptoloop jari
136     - grsecurity 2.0-rc4
137     - SELinux
138     - PaX 200402060000
139     - PaX Obscurity 200308302223
140     - Others...
141    
142     Neither -ck nor systrace are included anymore.
143    
144 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
145    
146     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
147     hardened-sources-2.4.22-r2.ebuild:
148 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
149 scox 1.19
150     *hardened-sources-2.4.22-r1 (02 Dec 2003)
151 iggy 1.17
152     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
153 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
154 iggy 1.16
155     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
156 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
157     Version bump for the 'do_brk' vulnerability.
158 iggy 1.15
159     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
160     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
161     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
162     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
163 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
164 frogger 1.14
165     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
166     hardened-sources-2.4.22.ebuild:
167 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
168     components. These are no longer handled in the kernel
169     so this code was not necessary.
170 frogger 1.13
171     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
172     New 2.4.22 based hardened-sources thanks to
173     Phil West <p.west@computer.org>.
174    
175     These sources include:
176 plasmaroo 1.18 - New SELinux API
177     - Updated CK-base
178     - Updated GRSec
179     - Systrace
180     - SuperFreeS/WAN 1.99.8
181     - Propolice kernel build support
182     - EVMS
183     - Other various security related patches
184 frogger 1.11
185 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
186    
187     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
188     Updated hardened-sources based on the 2.4.21 Linux kernel.
189     This includes updates to most major components such as:
190 plasmaroo 1.18 - ck-base-0306300059
191     - selinux-2.4-2003071106
192     - grsecurity-2.0-rc1
193     - Updated IPTables patch-o-matic
194     - Updated SuperFreeS/WAN
195    
196 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
197     updated patch set ready for the 2.4.21 based kernel.
198    
199 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
200     Initial import of hardened-sources-2.4.20-r4. This revision
201     includes only a few changes, but one of these is an important
202     security fix. It is recommended all users of hardened-sources
203     upgrade to this release.
204 plasmaroo 1.18
205 frogger 1.11 - ioperm bug fix
206     - fixed compilation failure when building without GRSec
207 plasmaroo 1.18
208 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
209     due to time constraints, but is planned for inclusion in the near
210     future.
211 msterret 1.10
212     *hardened-sources-2.4.20-r2 (12 Jun 2003)
213    
214     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
215     hardened-sources-2.4.20-r3.ebuild:
216 plasmaroo 1.18 Add Header...
217 frogger 1.9
218     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
219     hardened-sources-2.4.20-r3.ebuild:
220     Removed warnings from ebuild. This kernel should be safe to
221     use at this point.
222 frogger 1.8
223     *hardened-sources-2.4.20-r3 (08 Jun 2003)
224    
225     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
226     hardened-sources-2.4.20-r3.ebuild:
227     New revision. Includes the following changes over -r2:
228 plasmaroo 1.18
229 frogger 1.8 - ck7-base (O(1), preempt, low latency)
230     - Super FreeS/WAN 1.99.7rc2
231     - PaX for the LSM/SELinux branch
232     - GRSecurity 2.0-pre4 (role based access control)
233     - Systrace 1.3
234     - EXT3 fixes
235     - EVMS 2.0.1
236     - GCC 3.1+ compile optimizations
237     - ProPolice kernel build support
238     - Hashing table security fixes
239 frogger 1.3
240     *hardened-sources-2.4.20-r1 (09 Apr 2003)
241 frogger 1.7
242     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
243     Initial import of hardened-sources-r2. This new
244     ebuild includes many new performance and security
245     related patches. As in -r1, it will patch in
246     LSM/SELinux if "selinux" is in USE, otherwise it
247     will patch in GRSecurity. The following patches
248     are included in this revision:
249 plasmaroo 1.18
250 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
251     (pulled from the base CK patch)
252     - ptrace exploit patch for the LSM kernel
253     (the GRSec patch already fixes this)
254     - LSM 2.4-2003040709
255     - SELinux 2.4-2003040709
256     - Systrace v1.2
257     - IPTables patch-o-matic base patches - 20030107
258     - CryptoAPI 2.4.20.1 w/ loop-jari patch
259     - Super FreeS/WAN 1.99.6.1
260     - GRSecurity 1.9.9g
261     - MPPE
262     - EXT3 data journal fix
263     - CIPE 1.5.4
264 frogger 1.6
265     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
266     hardened-sources-2.4.20-r1.ebuild, manifest:
267 plasmaroo 1.18 Updated to install flask components correctly for selinux.
268 frogger 1.5
269     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
270     hardened-sources-2.4.20-r1.ebuild:
271     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
272     is patched in instead. Ptrace patches for selinux have also been added. In
273     either case, systrace support will be patched in as well.
274 frogger 1.3
275     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
276     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
277 plasmaroo 1.18 Revision bump for new sources.
278 frogger 1.4
279 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
280 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
281 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
282 method 1.1
283 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
284    
285 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
286     hardened-sources-2.4.20.ebuild:
287 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20