/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.38 - (hide annotations) (download)
Wed Sep 8 20:42:21 2004 UTC (9 years, 11 months ago) by scox
Branch: MAIN
Changes since 1.37: +7 -0 lines
Added h-s-2.4.27-r3 which uses the new 2.4-27.2 patchball (updates grsecurity to its current version, 2.0.1)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 agriffis 1.30 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 scox 1.31 # $Header: $
4    
5 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
6    
7     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
8     +hardened-sources-2.4.27-r3.ebuild:
9     Applies the new 2.4-27.2 patchball which updates
10     GRSecurity to the 2.0.1 version.
11    
12 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
13    
14     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
15     +hardened-sources-2.4.27-r2.ebuild:
16     Version bump.
17     This version uses the new 2.4-27.1 patchball which updates
18     both the SELinux PaX hooks patch and the SELinux headers.
19    
20 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
21    
22     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
23     +hardened-sources-2.4.27-r1.ebuild,
24     -hardened-sources-2.4.27.ebuild,
25     +files/2.4.27-cmdline-race.patch:
26     Version bump, fix for cmdline race. See bug #59905.
27    
28     *hardened-sources-2.4.26-r6 (09 Aug 2004)
29    
30     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
31     +hardened-sources-2.4.26-r6.ebuild,
32     -hardened-sources-2.4.26-r5.ebuild,
33     -hardened-sources-2.4.26-r4.ebuild,
34     +files/2.4.26-cmdline-race.patch:
35     Version bump, fix for cmdline race. See bug #59905.
36    
37 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
38    
39     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
40     +hardened-sources-2.4.27.ebuild,
41     +files/2.4.27-CAN-2004-0394.patch:
42     Ported the patchball to the 2.4.27 kernel version.
43    
44 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
45    
46     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
47     +hardened-sources-2.4.26-r5.ebuild:
48 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
49 scox 1.34 It adds the following features:
50     - Squashfs
51     - Ebtables
52     - Netdev random (core+drivers)
53     - Watchdog Timer (WDT) fix.
54    
55 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
56    
57     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
58     +hardened-sources-2.4.26-r4.ebuild,
59     +files/2.4.26-CAN-2004-0415.patch,
60     -hardened-sources-2.4.26-3:
61     Version bump, fix for CAN 0415, see bug #59378.
62    
63 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
64    
65     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
66     +hardened-sources-2.4.26-r3.ebuild,
67     +files/2.4.26-CAN-2004-0497.patch,
68     -hardened-sources-2.4.26-r2.ebuild:
69     Version bump, fixed CAN 0497, see bug #56171.
70    
71 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
72    
73     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
74 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
75 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
76     +files/2.4.26-CAN-2004-0535.patch,
77     -hardened-sources-2.4.26-r1.ebuild:
78     Fixes for both CAN 0495 and 0535, see bug #54976
79 pvdabeel 1.27
80 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
81     hardened-sources-2.4.26-r1.ebuild:
82     QA - fix use invocation
83 scox 1.28
84     *hardened-sources-2.4.26-r1 (22 June 2004)
85    
86     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
87     +hardened-sources-2.4.26-r1.ebuild,
88     +files/2.4.26-CAN-2004-0394.patch,
89     +files/2.4.26-signal-race.patch,
90     -hardened-sources-2.4.26.ebuild,
91     -hardened-sources-2.4.24-r3.ebuild:
92     Version bump for the CAN-2004-0394 issue and bug #53804
93     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
94    
95    
96 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
97     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
98     Masked hardened-sources-2.4.26.ebuild broken for ppc
99    
100     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
101     hardened-sources-2.4.24-r3.ebuild:
102     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
103 plasmaroo 1.25
104 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
105    
106     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
107     +hardened-sources-2.4.26.ebuild:
108     Updated hardened-sources for the 2.4.26 kernel
109     Removed broken components, updated almost everything.
110    
111 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
112    
113     17 Apr 2004; <plasmaroo@gentoo.org>
114     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
115     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
116     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
117     +hardened-sources-2.4.24-r3.ebuild:
118     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
119     vulnerabilities. Old revisions removed.
120 plasmaroo 1.24
121     *hardened-sources-2.4.24-r2 (15 Apr 2004)
122    
123     15 Apr 2004; <plasmaroo@gentoo.org>
124     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
125     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
126     Version bump for the CAN-2004-0109 issue; bug #47881.
127 aliz 1.23
128     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
129     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
130     Add eutils to inherit.
131 plasmaroo 1.22
132     *hardened-sources-2.4.24-r1 (19 Feb 2004)
133    
134     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
135     files/hardened-sources-2.4.24.munmap.patch:
136     Added the patch for the mremap/munmap vulnerability. Bug #42024.
137 scox 1.19
138 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
139 scox 1.26
140 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
141     hardened-sources-2.4.24.ebuild:
142     Version bump, updated most of the components.
143     This release includes the following:
144    
145     - Hardened security
146     - Netfilter patch-o-matic 20031219
147     - FreeSWAN 2.04 & x509 1.4.8
148     - EVMS 2.2.2
149     - XFS 1.3.1
150     - cryptoloop jari
151     - grsecurity 2.0-rc4
152     - SELinux
153     - PaX 200402060000
154     - PaX Obscurity 200308302223
155     - Others...
156    
157     Neither -ck nor systrace are included anymore.
158    
159 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
160    
161     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
162     hardened-sources-2.4.22-r2.ebuild:
163 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
164 scox 1.19
165     *hardened-sources-2.4.22-r1 (02 Dec 2003)
166 iggy 1.17
167     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
168 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
169 iggy 1.16
170     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
171 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
172     Version bump for the 'do_brk' vulnerability.
173 iggy 1.15
174     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
175     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
176     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
177     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
178 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
179 frogger 1.14
180     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
181     hardened-sources-2.4.22.ebuild:
182 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
183     components. These are no longer handled in the kernel
184     so this code was not necessary.
185 frogger 1.13
186     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
187     New 2.4.22 based hardened-sources thanks to
188     Phil West <p.west@computer.org>.
189    
190     These sources include:
191 plasmaroo 1.18 - New SELinux API
192     - Updated CK-base
193     - Updated GRSec
194     - Systrace
195     - SuperFreeS/WAN 1.99.8
196     - Propolice kernel build support
197     - EVMS
198     - Other various security related patches
199 frogger 1.11
200 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
201    
202     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
203     Updated hardened-sources based on the 2.4.21 Linux kernel.
204     This includes updates to most major components such as:
205 plasmaroo 1.18 - ck-base-0306300059
206     - selinux-2.4-2003071106
207     - grsecurity-2.0-rc1
208     - Updated IPTables patch-o-matic
209     - Updated SuperFreeS/WAN
210    
211 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
212     updated patch set ready for the 2.4.21 based kernel.
213    
214 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
215     Initial import of hardened-sources-2.4.20-r4. This revision
216     includes only a few changes, but one of these is an important
217     security fix. It is recommended all users of hardened-sources
218     upgrade to this release.
219 plasmaroo 1.18
220 frogger 1.11 - ioperm bug fix
221     - fixed compilation failure when building without GRSec
222 plasmaroo 1.18
223 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
224     due to time constraints, but is planned for inclusion in the near
225     future.
226 msterret 1.10
227     *hardened-sources-2.4.20-r2 (12 Jun 2003)
228    
229     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
230     hardened-sources-2.4.20-r3.ebuild:
231 plasmaroo 1.18 Add Header...
232 frogger 1.9
233     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
234     hardened-sources-2.4.20-r3.ebuild:
235     Removed warnings from ebuild. This kernel should be safe to
236     use at this point.
237 frogger 1.8
238     *hardened-sources-2.4.20-r3 (08 Jun 2003)
239    
240     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
241     hardened-sources-2.4.20-r3.ebuild:
242     New revision. Includes the following changes over -r2:
243 plasmaroo 1.18
244 frogger 1.8 - ck7-base (O(1), preempt, low latency)
245     - Super FreeS/WAN 1.99.7rc2
246     - PaX for the LSM/SELinux branch
247     - GRSecurity 2.0-pre4 (role based access control)
248     - Systrace 1.3
249     - EXT3 fixes
250     - EVMS 2.0.1
251     - GCC 3.1+ compile optimizations
252     - ProPolice kernel build support
253     - Hashing table security fixes
254 frogger 1.3
255     *hardened-sources-2.4.20-r1 (09 Apr 2003)
256 frogger 1.7
257     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
258     Initial import of hardened-sources-r2. This new
259     ebuild includes many new performance and security
260     related patches. As in -r1, it will patch in
261     LSM/SELinux if "selinux" is in USE, otherwise it
262     will patch in GRSecurity. The following patches
263     are included in this revision:
264 plasmaroo 1.18
265 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
266     (pulled from the base CK patch)
267     - ptrace exploit patch for the LSM kernel
268     (the GRSec patch already fixes this)
269     - LSM 2.4-2003040709
270     - SELinux 2.4-2003040709
271     - Systrace v1.2
272     - IPTables patch-o-matic base patches - 20030107
273     - CryptoAPI 2.4.20.1 w/ loop-jari patch
274     - Super FreeS/WAN 1.99.6.1
275     - GRSecurity 1.9.9g
276     - MPPE
277     - EXT3 data journal fix
278     - CIPE 1.5.4
279 frogger 1.6
280     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
281     hardened-sources-2.4.20-r1.ebuild, manifest:
282 plasmaroo 1.18 Updated to install flask components correctly for selinux.
283 frogger 1.5
284     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
285     hardened-sources-2.4.20-r1.ebuild:
286     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
287     is patched in instead. Ptrace patches for selinux have also been added. In
288     either case, systrace support will be patched in as well.
289 frogger 1.3
290     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
291     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
292 plasmaroo 1.18 Revision bump for new sources.
293 frogger 1.4
294 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
295 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
296 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
297 method 1.1
298 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
299    
300 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
301     hardened-sources-2.4.20.ebuild:
302 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20