/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.39 - (hide annotations) (download)
Sun Nov 28 18:10:26 2004 UTC (10 years ago) by solar
Branch: MAIN
Changes since 1.38: +6 -1 lines
security bump. Thank tocharian for rolling a new patchset

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 agriffis 1.30 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 solar 1.39 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.38 2004/09/08 20:42:21 scox Exp $
4    
5     *hardened-sources-2.4.28 (28 Nov 2004)
6    
7     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
8     security bump. Thank tocharian for rolling a new patchset
9 scox 1.31
10 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
11    
12     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
13     +hardened-sources-2.4.27-r3.ebuild:
14     Applies the new 2.4-27.2 patchball which updates
15     GRSecurity to the 2.0.1 version.
16    
17 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
18    
19     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
20     +hardened-sources-2.4.27-r2.ebuild:
21     Version bump.
22     This version uses the new 2.4-27.1 patchball which updates
23     both the SELinux PaX hooks patch and the SELinux headers.
24    
25 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
26    
27     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
28     +hardened-sources-2.4.27-r1.ebuild,
29     -hardened-sources-2.4.27.ebuild,
30     +files/2.4.27-cmdline-race.patch:
31     Version bump, fix for cmdline race. See bug #59905.
32    
33     *hardened-sources-2.4.26-r6 (09 Aug 2004)
34    
35     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
36     +hardened-sources-2.4.26-r6.ebuild,
37     -hardened-sources-2.4.26-r5.ebuild,
38     -hardened-sources-2.4.26-r4.ebuild,
39     +files/2.4.26-cmdline-race.patch:
40     Version bump, fix for cmdline race. See bug #59905.
41    
42 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
43    
44     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
45     +hardened-sources-2.4.27.ebuild,
46     +files/2.4.27-CAN-2004-0394.patch:
47     Ported the patchball to the 2.4.27 kernel version.
48    
49 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
50    
51     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
52     +hardened-sources-2.4.26-r5.ebuild:
53 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
54 scox 1.34 It adds the following features:
55     - Squashfs
56     - Ebtables
57     - Netdev random (core+drivers)
58     - Watchdog Timer (WDT) fix.
59    
60 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
61    
62     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
63     +hardened-sources-2.4.26-r4.ebuild,
64     +files/2.4.26-CAN-2004-0415.patch,
65     -hardened-sources-2.4.26-3:
66     Version bump, fix for CAN 0415, see bug #59378.
67    
68 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
69    
70     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
71     +hardened-sources-2.4.26-r3.ebuild,
72     +files/2.4.26-CAN-2004-0497.patch,
73     -hardened-sources-2.4.26-r2.ebuild:
74     Version bump, fixed CAN 0497, see bug #56171.
75    
76 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
77    
78     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
79 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
80 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
81     +files/2.4.26-CAN-2004-0535.patch,
82     -hardened-sources-2.4.26-r1.ebuild:
83     Fixes for both CAN 0495 and 0535, see bug #54976
84 pvdabeel 1.27
85 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
86     hardened-sources-2.4.26-r1.ebuild:
87     QA - fix use invocation
88 scox 1.28
89     *hardened-sources-2.4.26-r1 (22 June 2004)
90    
91     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
92     +hardened-sources-2.4.26-r1.ebuild,
93     +files/2.4.26-CAN-2004-0394.patch,
94     +files/2.4.26-signal-race.patch,
95     -hardened-sources-2.4.26.ebuild,
96     -hardened-sources-2.4.24-r3.ebuild:
97     Version bump for the CAN-2004-0394 issue and bug #53804
98     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
99    
100    
101 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
102     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
103     Masked hardened-sources-2.4.26.ebuild broken for ppc
104    
105     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
106     hardened-sources-2.4.24-r3.ebuild:
107     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
108 plasmaroo 1.25
109 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
110    
111     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
112     +hardened-sources-2.4.26.ebuild:
113     Updated hardened-sources for the 2.4.26 kernel
114     Removed broken components, updated almost everything.
115    
116 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
117    
118     17 Apr 2004; <plasmaroo@gentoo.org>
119     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
120     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
121     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
122     +hardened-sources-2.4.24-r3.ebuild:
123     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
124     vulnerabilities. Old revisions removed.
125 plasmaroo 1.24
126     *hardened-sources-2.4.24-r2 (15 Apr 2004)
127    
128     15 Apr 2004; <plasmaroo@gentoo.org>
129     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
130     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
131     Version bump for the CAN-2004-0109 issue; bug #47881.
132 aliz 1.23
133     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
134     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
135     Add eutils to inherit.
136 plasmaroo 1.22
137     *hardened-sources-2.4.24-r1 (19 Feb 2004)
138    
139     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
140     files/hardened-sources-2.4.24.munmap.patch:
141     Added the patch for the mremap/munmap vulnerability. Bug #42024.
142 scox 1.19
143 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
144 scox 1.26
145 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
146     hardened-sources-2.4.24.ebuild:
147     Version bump, updated most of the components.
148     This release includes the following:
149    
150     - Hardened security
151     - Netfilter patch-o-matic 20031219
152     - FreeSWAN 2.04 & x509 1.4.8
153     - EVMS 2.2.2
154     - XFS 1.3.1
155     - cryptoloop jari
156     - grsecurity 2.0-rc4
157     - SELinux
158     - PaX 200402060000
159     - PaX Obscurity 200308302223
160     - Others...
161    
162     Neither -ck nor systrace are included anymore.
163    
164 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
165    
166     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
167     hardened-sources-2.4.22-r2.ebuild:
168 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
169 scox 1.19
170     *hardened-sources-2.4.22-r1 (02 Dec 2003)
171 iggy 1.17
172     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
173 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
174 iggy 1.16
175     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
176 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
177     Version bump for the 'do_brk' vulnerability.
178 iggy 1.15
179     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
180     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
181     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
182     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
183 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
184 frogger 1.14
185     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
186     hardened-sources-2.4.22.ebuild:
187 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
188     components. These are no longer handled in the kernel
189     so this code was not necessary.
190 frogger 1.13
191     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
192     New 2.4.22 based hardened-sources thanks to
193     Phil West <p.west@computer.org>.
194    
195     These sources include:
196 plasmaroo 1.18 - New SELinux API
197     - Updated CK-base
198     - Updated GRSec
199     - Systrace
200     - SuperFreeS/WAN 1.99.8
201     - Propolice kernel build support
202     - EVMS
203     - Other various security related patches
204 frogger 1.11
205 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
206    
207     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
208     Updated hardened-sources based on the 2.4.21 Linux kernel.
209     This includes updates to most major components such as:
210 plasmaroo 1.18 - ck-base-0306300059
211     - selinux-2.4-2003071106
212     - grsecurity-2.0-rc1
213     - Updated IPTables patch-o-matic
214     - Updated SuperFreeS/WAN
215    
216 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
217     updated patch set ready for the 2.4.21 based kernel.
218    
219 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
220     Initial import of hardened-sources-2.4.20-r4. This revision
221     includes only a few changes, but one of these is an important
222     security fix. It is recommended all users of hardened-sources
223     upgrade to this release.
224 plasmaroo 1.18
225 frogger 1.11 - ioperm bug fix
226     - fixed compilation failure when building without GRSec
227 plasmaroo 1.18
228 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
229     due to time constraints, but is planned for inclusion in the near
230     future.
231 msterret 1.10
232     *hardened-sources-2.4.20-r2 (12 Jun 2003)
233    
234     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
235     hardened-sources-2.4.20-r3.ebuild:
236 plasmaroo 1.18 Add Header...
237 frogger 1.9
238     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
239     hardened-sources-2.4.20-r3.ebuild:
240     Removed warnings from ebuild. This kernel should be safe to
241     use at this point.
242 frogger 1.8
243     *hardened-sources-2.4.20-r3 (08 Jun 2003)
244    
245     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
246     hardened-sources-2.4.20-r3.ebuild:
247     New revision. Includes the following changes over -r2:
248 plasmaroo 1.18
249 frogger 1.8 - ck7-base (O(1), preempt, low latency)
250     - Super FreeS/WAN 1.99.7rc2
251     - PaX for the LSM/SELinux branch
252     - GRSecurity 2.0-pre4 (role based access control)
253     - Systrace 1.3
254     - EXT3 fixes
255     - EVMS 2.0.1
256     - GCC 3.1+ compile optimizations
257     - ProPolice kernel build support
258     - Hashing table security fixes
259 frogger 1.3
260     *hardened-sources-2.4.20-r1 (09 Apr 2003)
261 frogger 1.7
262     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
263     Initial import of hardened-sources-r2. This new
264     ebuild includes many new performance and security
265     related patches. As in -r1, it will patch in
266     LSM/SELinux if "selinux" is in USE, otherwise it
267     will patch in GRSecurity. The following patches
268     are included in this revision:
269 plasmaroo 1.18
270 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
271     (pulled from the base CK patch)
272     - ptrace exploit patch for the LSM kernel
273     (the GRSec patch already fixes this)
274     - LSM 2.4-2003040709
275     - SELinux 2.4-2003040709
276     - Systrace v1.2
277     - IPTables patch-o-matic base patches - 20030107
278     - CryptoAPI 2.4.20.1 w/ loop-jari patch
279     - Super FreeS/WAN 1.99.6.1
280     - GRSecurity 1.9.9g
281     - MPPE
282     - EXT3 data journal fix
283     - CIPE 1.5.4
284 frogger 1.6
285     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
286     hardened-sources-2.4.20-r1.ebuild, manifest:
287 plasmaroo 1.18 Updated to install flask components correctly for selinux.
288 frogger 1.5
289     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
290     hardened-sources-2.4.20-r1.ebuild:
291     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
292     is patched in instead. Ptrace patches for selinux have also been added. In
293     either case, systrace support will be patched in as well.
294 frogger 1.3
295     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
296     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
297 plasmaroo 1.18 Revision bump for new sources.
298 frogger 1.4
299 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
300 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
301 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
302 method 1.1
303 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
304    
305 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
306     hardened-sources-2.4.20.ebuild:
307 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20