/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.69 - (hide annotations) (download)
Tue Dec 6 12:18:54 2005 UTC (8 years, 9 months ago) by johnm
Branch: MAIN
Changes since 1.68: +5 -1 lines
bumping to stable early for sec fix on x86 & amd64
(Portage version: 2.0.53)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 tocharian 1.42 # Copyright 2000-2005 Gentoo Foundation; Distributed under the GPL v2
3 johnm 1.69 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.68 2005/12/05 19:06:41 johnm Exp $
4    
5     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
6     hardened-sources-2.6.14-r1.ebuild:
7     bumping to stable early for sec fix on x86 & amd64
8 johnm 1.68
9     *hardened-sources-2.6.14-r1 (05 Dec 2005)
10    
11     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
12     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
13     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
14 solar 1.67
15     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
16     - stable on x86 security bug #114227 CAN-2005-3257
17 kang 1.66
18     *hardened-sources-2.4.32 (19 Nov 2005)
19    
20     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
21     +hardened-sources-2.4.32.ebuild:
22     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
23     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
24     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
25     rsbac >> /etc/portage/package.use)
26 johnm 1.65
27     *hardened-sources-2.6.14 (14 Nov 2005)
28    
29     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
30     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
31     Bumping 2.6 series to 2.6.14.2
32 johnm 1.64
33     *hardened-sources-2.6.13-r2 (20 Oct 2005)
34    
35     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
36     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
37     +hardened-sources-2.6.13-r2.ebuild:
38     Fixes minor build error in ppc.
39 johnm 1.63
40     *hardened-sources-2.6.13-r1 (17 Oct 2005)
41    
42     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
43     +hardened-sources-2.6.13-r1.ebuild:
44     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
45     2.6.13.4, fixes some major amd64 stability problems.
46 johnm 1.62
47     *hardened-sources-2.6.13 (16 Sep 2005)
48    
49     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
50     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
51     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
52     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
53     users should test this thoroughly.
54 solar 1.61
55     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
56     - stable on x86
57 johnm 1.60
58     *hardened-sources-2.6.11-r15 (27 Jun 2005)
59    
60     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
61     +hardened-sources-2.6.11-r15.ebuild:
62     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
63     grsec redefining curr_ip struct.
64 solar 1.59
65     *hardened-sources-2.4.31 (20 Jun 2005)
66    
67     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
68     initial import of 2.4.31 tree
69 johnm 1.58
70     *hardened-sources-2.6.11-r14 (14 Jun 2005)
71    
72     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
73     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
74     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
75     naming scheme to abide by genpatches
76 johnm 1.57
77     *hardened-sources-2.6.11-r13 (18 May 2005)
78    
79     18 May 2005; John Mylchreest <johnm@gentoo.org>
80     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
81     Managed to mangle the Makefile patch from grsec, to miss out the grsec
82     target. sorry about that. Fixes bug #93022
83 johnm 1.56
84     *hardened-sources-2.6.11-r12 (17 May 2005)
85    
86     17 May 2005; John Mylchreest <johnm@gentoo.org>
87     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
88     +hardened-sources-2.6.11-r12.ebuild:
89     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
90     merges in genpatches-base
91 johnm 1.55
92     *hardened-sources-2.6.11-r12 (17 May 2005)
93    
94     17 May 2005; John Mylchreest <johnm@gentoo.org>
95     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
96     +hardened-sources-2.6.11-r12.ebuild:
97     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
98     merges in genpatches-base
99 solar 1.54
100     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
101     -files/2.4.27-cmdline-race.patch,
102     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
103     -files/2.4.28-grsec-binfmt_a.out.patch,
104     -files/2.4.28-grsec-cmdline-race.patch,
105     -files/2.4.28-selinux-binfmt_a.out.patch,
106     -files/2.4.28-selinux-cmdline-race.patch,
107     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
108     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
109     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
110     cleanup..
111 solar 1.53
112     *hardened-sources-2.4.30-r1 (21 Apr 2005)
113    
114     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
115     - disable aout by default
116 solar 1.52
117     *hardened-sources-2.4.30 (18 Apr 2005)
118    
119     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
120     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
121     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
122     use
123 tocharian 1.50
124 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
125    
126     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
127     +hardened-sources-2.4.29.ebuild:
128     New hardened-patches-2.4-29.0 patchball.
129     Removed SELinux support, upgraded GRSecurity to 2.1.4.
130    
131     *hardened-sources-2.4.28-r5 (06 Mar 2005)
132    
133     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
134     +hardened-sources-2.4.28-r5.ebuild:
135     Added a fix for a PaX vulnerability.
136    
137     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
138 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
139     Stable on x86
140 solar 1.49
141     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
142     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
143     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
144     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
145     - fixed/added RDEPEND= in all kernel-2 ebuilds
146 tocharian 1.48
147     *hardened-sources-2.4.28-r4 (21 Jan 2005)
148    
149     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
150     +hardened-sources-2.4.28-r4.ebuild:
151     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
152     backport of neighbour hash updates.
153 tocharian 1.47
154     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
155     hardened-sources-2.4.28-r3.ebuild:
156     Stable on x86
157 tseng 1.46
158     *hardened-sources-2.6.10-r3 (20 Jan 2005)
159    
160     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
161     +hardened-sources-2.6.10-r3.ebuild:
162     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
163     in 2005.0
164 tocharian 1.45
165     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
166     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
167     hardened-sources-2.4.28-r2.ebuild:
168     Mark stable on x86
169 tocharian 1.44
170     *hardened-sources-2.4.28-r3 (17 Jan 2005)
171    
172     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
173     +hardened-sources-2.4.28-r3.ebuild:
174     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
175 tocharian 1.43
176     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
177     hardened-sources-2.4.28.ebuild:
178     Mark stable on x86.
179 tocharian 1.42
180     *hardened-sources-2.4.28-r2 (13 Jan 2005)
181    
182     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
183     +hardened-sources-2.4.28-r2.ebuild:
184     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
185     Mazinger for grsecurity patches as well.
186 plasmaroo 1.41
187     *hardened-sources-2.4.28-r1 (23 Dec 2004)
188    
189     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
190     Security bump. Thank tocharian for rolling a new patchset...
191 solar 1.40
192     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
193     +files/2.4.28-grsec-cmdline-race.patch,
194     +files/2.4.28-selinux-binfmt_a.out.patch,
195     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
196     - Round up remaining security patches that appear to be missing in 2.4.28. -
197     PaX standalone updated to current. hgpv=28.1
198 solar 1.39
199     *hardened-sources-2.4.28 (28 Nov 2004)
200    
201     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
202     security bump. Thank tocharian for rolling a new patchset
203 scox 1.31
204 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
205    
206     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
207     +hardened-sources-2.4.27-r3.ebuild:
208     Applies the new 2.4-27.2 patchball which updates
209     GRSecurity to the 2.0.1 version.
210    
211 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
212    
213     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
214     +hardened-sources-2.4.27-r2.ebuild:
215     Version bump.
216     This version uses the new 2.4-27.1 patchball which updates
217     both the SELinux PaX hooks patch and the SELinux headers.
218    
219 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
220    
221     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
222     +hardened-sources-2.4.27-r1.ebuild,
223     -hardened-sources-2.4.27.ebuild,
224     +files/2.4.27-cmdline-race.patch:
225     Version bump, fix for cmdline race. See bug #59905.
226    
227     *hardened-sources-2.4.26-r6 (09 Aug 2004)
228    
229     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
230     +hardened-sources-2.4.26-r6.ebuild,
231     -hardened-sources-2.4.26-r5.ebuild,
232     -hardened-sources-2.4.26-r4.ebuild,
233     +files/2.4.26-cmdline-race.patch:
234     Version bump, fix for cmdline race. See bug #59905.
235    
236 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
237    
238     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
239     +hardened-sources-2.4.27.ebuild,
240     +files/2.4.27-CAN-2004-0394.patch:
241     Ported the patchball to the 2.4.27 kernel version.
242    
243 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
244    
245     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
246     +hardened-sources-2.4.26-r5.ebuild:
247 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
248 scox 1.34 It adds the following features:
249     - Squashfs
250     - Ebtables
251     - Netdev random (core+drivers)
252     - Watchdog Timer (WDT) fix.
253    
254 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
255    
256     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
257     +hardened-sources-2.4.26-r4.ebuild,
258     +files/2.4.26-CAN-2004-0415.patch,
259     -hardened-sources-2.4.26-3:
260     Version bump, fix for CAN 0415, see bug #59378.
261    
262 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
263    
264     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
265     +hardened-sources-2.4.26-r3.ebuild,
266     +files/2.4.26-CAN-2004-0497.patch,
267     -hardened-sources-2.4.26-r2.ebuild:
268     Version bump, fixed CAN 0497, see bug #56171.
269    
270 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
271    
272     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
273 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
274 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
275     +files/2.4.26-CAN-2004-0535.patch,
276     -hardened-sources-2.4.26-r1.ebuild:
277     Fixes for both CAN 0495 and 0535, see bug #54976
278 pvdabeel 1.27
279 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
280     hardened-sources-2.4.26-r1.ebuild:
281     QA - fix use invocation
282 scox 1.28
283     *hardened-sources-2.4.26-r1 (22 June 2004)
284    
285     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
286     +hardened-sources-2.4.26-r1.ebuild,
287     +files/2.4.26-CAN-2004-0394.patch,
288     +files/2.4.26-signal-race.patch,
289     -hardened-sources-2.4.26.ebuild,
290     -hardened-sources-2.4.24-r3.ebuild:
291     Version bump for the CAN-2004-0394 issue and bug #53804
292     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
293    
294    
295 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
296     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
297     Masked hardened-sources-2.4.26.ebuild broken for ppc
298    
299     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
300     hardened-sources-2.4.24-r3.ebuild:
301     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
302 plasmaroo 1.25
303 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
304    
305     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
306     +hardened-sources-2.4.26.ebuild:
307     Updated hardened-sources for the 2.4.26 kernel
308     Removed broken components, updated almost everything.
309    
310 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
311    
312     17 Apr 2004; <plasmaroo@gentoo.org>
313     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
314     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
315     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
316     +hardened-sources-2.4.24-r3.ebuild:
317     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
318     vulnerabilities. Old revisions removed.
319 plasmaroo 1.24
320     *hardened-sources-2.4.24-r2 (15 Apr 2004)
321    
322     15 Apr 2004; <plasmaroo@gentoo.org>
323     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
324     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
325     Version bump for the CAN-2004-0109 issue; bug #47881.
326 aliz 1.23
327     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
328     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
329     Add eutils to inherit.
330 plasmaroo 1.22
331     *hardened-sources-2.4.24-r1 (19 Feb 2004)
332    
333     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
334     files/hardened-sources-2.4.24.munmap.patch:
335     Added the patch for the mremap/munmap vulnerability. Bug #42024.
336 scox 1.19
337 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
338 scox 1.26
339 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
340     hardened-sources-2.4.24.ebuild:
341     Version bump, updated most of the components.
342     This release includes the following:
343    
344     - Hardened security
345     - Netfilter patch-o-matic 20031219
346     - FreeSWAN 2.04 & x509 1.4.8
347     - EVMS 2.2.2
348     - XFS 1.3.1
349     - cryptoloop jari
350     - grsecurity 2.0-rc4
351     - SELinux
352     - PaX 200402060000
353     - PaX Obscurity 200308302223
354     - Others...
355    
356     Neither -ck nor systrace are included anymore.
357    
358 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
359    
360     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
361     hardened-sources-2.4.22-r2.ebuild:
362 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
363 scox 1.19
364     *hardened-sources-2.4.22-r1 (02 Dec 2003)
365 iggy 1.17
366     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
367 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
368 iggy 1.16
369     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
370 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
371     Version bump for the 'do_brk' vulnerability.
372 iggy 1.15
373     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
374     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
375     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
376     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
377 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
378 frogger 1.14
379     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
380     hardened-sources-2.4.22.ebuild:
381 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
382     components. These are no longer handled in the kernel
383     so this code was not necessary.
384 frogger 1.13
385     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
386     New 2.4.22 based hardened-sources thanks to
387     Phil West <p.west@computer.org>.
388    
389     These sources include:
390 plasmaroo 1.18 - New SELinux API
391     - Updated CK-base
392     - Updated GRSec
393     - Systrace
394     - SuperFreeS/WAN 1.99.8
395     - Propolice kernel build support
396     - EVMS
397     - Other various security related patches
398 frogger 1.11
399 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
400    
401     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
402     Updated hardened-sources based on the 2.4.21 Linux kernel.
403     This includes updates to most major components such as:
404 plasmaroo 1.18 - ck-base-0306300059
405     - selinux-2.4-2003071106
406     - grsecurity-2.0-rc1
407     - Updated IPTables patch-o-matic
408     - Updated SuperFreeS/WAN
409    
410 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
411     updated patch set ready for the 2.4.21 based kernel.
412    
413 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
414     Initial import of hardened-sources-2.4.20-r4. This revision
415     includes only a few changes, but one of these is an important
416     security fix. It is recommended all users of hardened-sources
417     upgrade to this release.
418 plasmaroo 1.18
419 frogger 1.11 - ioperm bug fix
420     - fixed compilation failure when building without GRSec
421 plasmaroo 1.18
422 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
423     due to time constraints, but is planned for inclusion in the near
424     future.
425 msterret 1.10
426     *hardened-sources-2.4.20-r2 (12 Jun 2003)
427    
428     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
429     hardened-sources-2.4.20-r3.ebuild:
430 plasmaroo 1.18 Add Header...
431 frogger 1.9
432     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
433     hardened-sources-2.4.20-r3.ebuild:
434     Removed warnings from ebuild. This kernel should be safe to
435     use at this point.
436 frogger 1.8
437     *hardened-sources-2.4.20-r3 (08 Jun 2003)
438    
439     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
440     hardened-sources-2.4.20-r3.ebuild:
441     New revision. Includes the following changes over -r2:
442 plasmaroo 1.18
443 frogger 1.8 - ck7-base (O(1), preempt, low latency)
444     - Super FreeS/WAN 1.99.7rc2
445     - PaX for the LSM/SELinux branch
446     - GRSecurity 2.0-pre4 (role based access control)
447     - Systrace 1.3
448     - EXT3 fixes
449     - EVMS 2.0.1
450     - GCC 3.1+ compile optimizations
451     - ProPolice kernel build support
452     - Hashing table security fixes
453 frogger 1.3
454     *hardened-sources-2.4.20-r1 (09 Apr 2003)
455 frogger 1.7
456     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
457     Initial import of hardened-sources-r2. This new
458     ebuild includes many new performance and security
459     related patches. As in -r1, it will patch in
460     LSM/SELinux if "selinux" is in USE, otherwise it
461     will patch in GRSecurity. The following patches
462     are included in this revision:
463 plasmaroo 1.18
464 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
465     (pulled from the base CK patch)
466     - ptrace exploit patch for the LSM kernel
467     (the GRSec patch already fixes this)
468     - LSM 2.4-2003040709
469     - SELinux 2.4-2003040709
470     - Systrace v1.2
471     - IPTables patch-o-matic base patches - 20030107
472     - CryptoAPI 2.4.20.1 w/ loop-jari patch
473     - Super FreeS/WAN 1.99.6.1
474     - GRSecurity 1.9.9g
475     - MPPE
476     - EXT3 data journal fix
477     - CIPE 1.5.4
478 frogger 1.6
479     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
480     hardened-sources-2.4.20-r1.ebuild, manifest:
481 plasmaroo 1.18 Updated to install flask components correctly for selinux.
482 frogger 1.5
483     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
484     hardened-sources-2.4.20-r1.ebuild:
485     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
486     is patched in instead. Ptrace patches for selinux have also been added. In
487     either case, systrace support will be patched in as well.
488 frogger 1.3
489     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
490     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
491 plasmaroo 1.18 Revision bump for new sources.
492 frogger 1.4
493 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
494 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
495 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
496 method 1.1
497 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
498    
499 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
500     hardened-sources-2.4.20.ebuild:
501 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20