/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.41 - (hide annotations) (download)
Fri Dec 24 19:45:08 2004 UTC (9 years, 6 months ago) by plasmaroo
Branch: MAIN
Changes since 1.40: +6 -1 lines
Security bump. Thank tocharian for rolling a new patchset...

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 agriffis 1.30 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 plasmaroo 1.41 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.40 2004/11/29 02:45:14 solar Exp $
4    
5     *hardened-sources-2.4.28-r1 (23 Dec 2004)
6    
7     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
8     Security bump. Thank tocharian for rolling a new patchset...
9 solar 1.40
10     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
11     +files/2.4.28-grsec-cmdline-race.patch,
12     +files/2.4.28-selinux-binfmt_a.out.patch,
13     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
14     - Round up remaining security patches that appear to be missing in 2.4.28. -
15     PaX standalone updated to current. hgpv=28.1
16 solar 1.39
17     *hardened-sources-2.4.28 (28 Nov 2004)
18    
19     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
20     security bump. Thank tocharian for rolling a new patchset
21 scox 1.31
22 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
23    
24     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
25     +hardened-sources-2.4.27-r3.ebuild:
26     Applies the new 2.4-27.2 patchball which updates
27     GRSecurity to the 2.0.1 version.
28    
29 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
30    
31     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
32     +hardened-sources-2.4.27-r2.ebuild:
33     Version bump.
34     This version uses the new 2.4-27.1 patchball which updates
35     both the SELinux PaX hooks patch and the SELinux headers.
36    
37 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
38    
39     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
40     +hardened-sources-2.4.27-r1.ebuild,
41     -hardened-sources-2.4.27.ebuild,
42     +files/2.4.27-cmdline-race.patch:
43     Version bump, fix for cmdline race. See bug #59905.
44    
45     *hardened-sources-2.4.26-r6 (09 Aug 2004)
46    
47     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
48     +hardened-sources-2.4.26-r6.ebuild,
49     -hardened-sources-2.4.26-r5.ebuild,
50     -hardened-sources-2.4.26-r4.ebuild,
51     +files/2.4.26-cmdline-race.patch:
52     Version bump, fix for cmdline race. See bug #59905.
53    
54 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
55    
56     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
57     +hardened-sources-2.4.27.ebuild,
58     +files/2.4.27-CAN-2004-0394.patch:
59     Ported the patchball to the 2.4.27 kernel version.
60    
61 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
62    
63     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
64     +hardened-sources-2.4.26-r5.ebuild:
65 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
66 scox 1.34 It adds the following features:
67     - Squashfs
68     - Ebtables
69     - Netdev random (core+drivers)
70     - Watchdog Timer (WDT) fix.
71    
72 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
73    
74     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
75     +hardened-sources-2.4.26-r4.ebuild,
76     +files/2.4.26-CAN-2004-0415.patch,
77     -hardened-sources-2.4.26-3:
78     Version bump, fix for CAN 0415, see bug #59378.
79    
80 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
81    
82     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
83     +hardened-sources-2.4.26-r3.ebuild,
84     +files/2.4.26-CAN-2004-0497.patch,
85     -hardened-sources-2.4.26-r2.ebuild:
86     Version bump, fixed CAN 0497, see bug #56171.
87    
88 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
89    
90     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
91 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
92 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
93     +files/2.4.26-CAN-2004-0535.patch,
94     -hardened-sources-2.4.26-r1.ebuild:
95     Fixes for both CAN 0495 and 0535, see bug #54976
96 pvdabeel 1.27
97 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
98     hardened-sources-2.4.26-r1.ebuild:
99     QA - fix use invocation
100 scox 1.28
101     *hardened-sources-2.4.26-r1 (22 June 2004)
102    
103     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
104     +hardened-sources-2.4.26-r1.ebuild,
105     +files/2.4.26-CAN-2004-0394.patch,
106     +files/2.4.26-signal-race.patch,
107     -hardened-sources-2.4.26.ebuild,
108     -hardened-sources-2.4.24-r3.ebuild:
109     Version bump for the CAN-2004-0394 issue and bug #53804
110     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
111    
112    
113 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
114     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
115     Masked hardened-sources-2.4.26.ebuild broken for ppc
116    
117     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
118     hardened-sources-2.4.24-r3.ebuild:
119     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
120 plasmaroo 1.25
121 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
122    
123     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
124     +hardened-sources-2.4.26.ebuild:
125     Updated hardened-sources for the 2.4.26 kernel
126     Removed broken components, updated almost everything.
127    
128 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
129    
130     17 Apr 2004; <plasmaroo@gentoo.org>
131     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
132     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
133     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
134     +hardened-sources-2.4.24-r3.ebuild:
135     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
136     vulnerabilities. Old revisions removed.
137 plasmaroo 1.24
138     *hardened-sources-2.4.24-r2 (15 Apr 2004)
139    
140     15 Apr 2004; <plasmaroo@gentoo.org>
141     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
142     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
143     Version bump for the CAN-2004-0109 issue; bug #47881.
144 aliz 1.23
145     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
146     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
147     Add eutils to inherit.
148 plasmaroo 1.22
149     *hardened-sources-2.4.24-r1 (19 Feb 2004)
150    
151     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
152     files/hardened-sources-2.4.24.munmap.patch:
153     Added the patch for the mremap/munmap vulnerability. Bug #42024.
154 scox 1.19
155 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
156 scox 1.26
157 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
158     hardened-sources-2.4.24.ebuild:
159     Version bump, updated most of the components.
160     This release includes the following:
161    
162     - Hardened security
163     - Netfilter patch-o-matic 20031219
164     - FreeSWAN 2.04 & x509 1.4.8
165     - EVMS 2.2.2
166     - XFS 1.3.1
167     - cryptoloop jari
168     - grsecurity 2.0-rc4
169     - SELinux
170     - PaX 200402060000
171     - PaX Obscurity 200308302223
172     - Others...
173    
174     Neither -ck nor systrace are included anymore.
175    
176 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
177    
178     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
179     hardened-sources-2.4.22-r2.ebuild:
180 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
181 scox 1.19
182     *hardened-sources-2.4.22-r1 (02 Dec 2003)
183 iggy 1.17
184     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
185 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
186 iggy 1.16
187     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
188 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
189     Version bump for the 'do_brk' vulnerability.
190 iggy 1.15
191     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
192     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
193     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
194     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
195 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
196 frogger 1.14
197     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
198     hardened-sources-2.4.22.ebuild:
199 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
200     components. These are no longer handled in the kernel
201     so this code was not necessary.
202 frogger 1.13
203     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
204     New 2.4.22 based hardened-sources thanks to
205     Phil West <p.west@computer.org>.
206    
207     These sources include:
208 plasmaroo 1.18 - New SELinux API
209     - Updated CK-base
210     - Updated GRSec
211     - Systrace
212     - SuperFreeS/WAN 1.99.8
213     - Propolice kernel build support
214     - EVMS
215     - Other various security related patches
216 frogger 1.11
217 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
218    
219     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
220     Updated hardened-sources based on the 2.4.21 Linux kernel.
221     This includes updates to most major components such as:
222 plasmaroo 1.18 - ck-base-0306300059
223     - selinux-2.4-2003071106
224     - grsecurity-2.0-rc1
225     - Updated IPTables patch-o-matic
226     - Updated SuperFreeS/WAN
227    
228 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
229     updated patch set ready for the 2.4.21 based kernel.
230    
231 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
232     Initial import of hardened-sources-2.4.20-r4. This revision
233     includes only a few changes, but one of these is an important
234     security fix. It is recommended all users of hardened-sources
235     upgrade to this release.
236 plasmaroo 1.18
237 frogger 1.11 - ioperm bug fix
238     - fixed compilation failure when building without GRSec
239 plasmaroo 1.18
240 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
241     due to time constraints, but is planned for inclusion in the near
242     future.
243 msterret 1.10
244     *hardened-sources-2.4.20-r2 (12 Jun 2003)
245    
246     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
247     hardened-sources-2.4.20-r3.ebuild:
248 plasmaroo 1.18 Add Header...
249 frogger 1.9
250     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
251     hardened-sources-2.4.20-r3.ebuild:
252     Removed warnings from ebuild. This kernel should be safe to
253     use at this point.
254 frogger 1.8
255     *hardened-sources-2.4.20-r3 (08 Jun 2003)
256    
257     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
258     hardened-sources-2.4.20-r3.ebuild:
259     New revision. Includes the following changes over -r2:
260 plasmaroo 1.18
261 frogger 1.8 - ck7-base (O(1), preempt, low latency)
262     - Super FreeS/WAN 1.99.7rc2
263     - PaX for the LSM/SELinux branch
264     - GRSecurity 2.0-pre4 (role based access control)
265     - Systrace 1.3
266     - EXT3 fixes
267     - EVMS 2.0.1
268     - GCC 3.1+ compile optimizations
269     - ProPolice kernel build support
270     - Hashing table security fixes
271 frogger 1.3
272     *hardened-sources-2.4.20-r1 (09 Apr 2003)
273 frogger 1.7
274     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
275     Initial import of hardened-sources-r2. This new
276     ebuild includes many new performance and security
277     related patches. As in -r1, it will patch in
278     LSM/SELinux if "selinux" is in USE, otherwise it
279     will patch in GRSecurity. The following patches
280     are included in this revision:
281 plasmaroo 1.18
282 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
283     (pulled from the base CK patch)
284     - ptrace exploit patch for the LSM kernel
285     (the GRSec patch already fixes this)
286     - LSM 2.4-2003040709
287     - SELinux 2.4-2003040709
288     - Systrace v1.2
289     - IPTables patch-o-matic base patches - 20030107
290     - CryptoAPI 2.4.20.1 w/ loop-jari patch
291     - Super FreeS/WAN 1.99.6.1
292     - GRSecurity 1.9.9g
293     - MPPE
294     - EXT3 data journal fix
295     - CIPE 1.5.4
296 frogger 1.6
297     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
298     hardened-sources-2.4.20-r1.ebuild, manifest:
299 plasmaroo 1.18 Updated to install flask components correctly for selinux.
300 frogger 1.5
301     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
302     hardened-sources-2.4.20-r1.ebuild:
303     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
304     is patched in instead. Ptrace patches for selinux have also been added. In
305     either case, systrace support will be patched in as well.
306 frogger 1.3
307     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
308     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
309 plasmaroo 1.18 Revision bump for new sources.
310 frogger 1.4
311 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
312 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
313 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
314 method 1.1
315 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
316    
317 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
318     hardened-sources-2.4.20.ebuild:
319 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20