/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.73 - (hide annotations) (download)
Thu Jan 5 16:56:16 2006 UTC (8 years, 8 months ago) by solar
Branch: MAIN
Changes since 1.72: +7 -2 lines
- revision bump to add misc vital linux kernel security patches.
(Portage version: 2.1_pre1)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3     # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.72 2005/12/30 18:03:36 johnm Exp $
4    
5     *hardened-sources-2.4.32-r1 (05 Jan 2006)
6    
7     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
8     - revision bump to add misc vital linux kernel security patches.
9 johnm 1.72
10     *hardened-sources-2.6.14-r3 (30 Dec 2005)
11    
12     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
13     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
14     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
15 johnm 1.71
16     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
17     hardened-sources-2.6.14-r2.ebuild:
18     making x86 & amd64 stable following testing.
19 johnm 1.70
20     *hardened-sources-2.6.14-r2 (27 Dec 2005)
21    
22     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
23     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
24     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
25     network hooks.
26 johnm 1.69
27     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
28     hardened-sources-2.6.14-r1.ebuild:
29     bumping to stable early for sec fix on x86 & amd64
30 johnm 1.68
31     *hardened-sources-2.6.14-r1 (05 Dec 2005)
32    
33     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
34     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
35     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
36 solar 1.67
37     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
38     - stable on x86 security bug #114227 CAN-2005-3257
39 kang 1.66
40     *hardened-sources-2.4.32 (19 Nov 2005)
41    
42     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
43     +hardened-sources-2.4.32.ebuild:
44     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
45     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
46     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
47     rsbac >> /etc/portage/package.use)
48 johnm 1.65
49     *hardened-sources-2.6.14 (14 Nov 2005)
50    
51     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
52     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
53     Bumping 2.6 series to 2.6.14.2
54 johnm 1.64
55     *hardened-sources-2.6.13-r2 (20 Oct 2005)
56    
57     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
58     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
59     +hardened-sources-2.6.13-r2.ebuild:
60     Fixes minor build error in ppc.
61 johnm 1.63
62     *hardened-sources-2.6.13-r1 (17 Oct 2005)
63    
64     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
65     +hardened-sources-2.6.13-r1.ebuild:
66     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
67     2.6.13.4, fixes some major amd64 stability problems.
68 johnm 1.62
69     *hardened-sources-2.6.13 (16 Sep 2005)
70    
71     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
72     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
73     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
74     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
75     users should test this thoroughly.
76 solar 1.61
77     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
78     - stable on x86
79 johnm 1.60
80     *hardened-sources-2.6.11-r15 (27 Jun 2005)
81    
82     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
83     +hardened-sources-2.6.11-r15.ebuild:
84     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
85     grsec redefining curr_ip struct.
86 solar 1.59
87     *hardened-sources-2.4.31 (20 Jun 2005)
88    
89     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
90     initial import of 2.4.31 tree
91 johnm 1.58
92     *hardened-sources-2.6.11-r14 (14 Jun 2005)
93    
94     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
95     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
96     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
97     naming scheme to abide by genpatches
98 johnm 1.57
99     *hardened-sources-2.6.11-r13 (18 May 2005)
100    
101     18 May 2005; John Mylchreest <johnm@gentoo.org>
102     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
103     Managed to mangle the Makefile patch from grsec, to miss out the grsec
104     target. sorry about that. Fixes bug #93022
105 johnm 1.56
106     *hardened-sources-2.6.11-r12 (17 May 2005)
107    
108     17 May 2005; John Mylchreest <johnm@gentoo.org>
109     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
110     +hardened-sources-2.6.11-r12.ebuild:
111     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
112     merges in genpatches-base
113 johnm 1.55
114     *hardened-sources-2.6.11-r12 (17 May 2005)
115    
116     17 May 2005; John Mylchreest <johnm@gentoo.org>
117     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
118     +hardened-sources-2.6.11-r12.ebuild:
119     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
120     merges in genpatches-base
121 solar 1.54
122     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
123     -files/2.4.27-cmdline-race.patch,
124     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
125     -files/2.4.28-grsec-binfmt_a.out.patch,
126     -files/2.4.28-grsec-cmdline-race.patch,
127     -files/2.4.28-selinux-binfmt_a.out.patch,
128     -files/2.4.28-selinux-cmdline-race.patch,
129     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
130     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
131     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
132     cleanup..
133 solar 1.53
134     *hardened-sources-2.4.30-r1 (21 Apr 2005)
135    
136     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
137     - disable aout by default
138 solar 1.52
139     *hardened-sources-2.4.30 (18 Apr 2005)
140    
141     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
142     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
143     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
144     use
145 tocharian 1.50
146 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
147    
148     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
149     +hardened-sources-2.4.29.ebuild:
150     New hardened-patches-2.4-29.0 patchball.
151     Removed SELinux support, upgraded GRSecurity to 2.1.4.
152    
153     *hardened-sources-2.4.28-r5 (06 Mar 2005)
154    
155     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
156     +hardened-sources-2.4.28-r5.ebuild:
157     Added a fix for a PaX vulnerability.
158    
159     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
160 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
161     Stable on x86
162 solar 1.49
163     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
164     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
165     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
166     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
167     - fixed/added RDEPEND= in all kernel-2 ebuilds
168 tocharian 1.48
169     *hardened-sources-2.4.28-r4 (21 Jan 2005)
170    
171     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
172     +hardened-sources-2.4.28-r4.ebuild:
173     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
174     backport of neighbour hash updates.
175 tocharian 1.47
176     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
177     hardened-sources-2.4.28-r3.ebuild:
178     Stable on x86
179 tseng 1.46
180     *hardened-sources-2.6.10-r3 (20 Jan 2005)
181    
182     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
183     +hardened-sources-2.6.10-r3.ebuild:
184     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
185     in 2005.0
186 tocharian 1.45
187     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
188     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
189     hardened-sources-2.4.28-r2.ebuild:
190     Mark stable on x86
191 tocharian 1.44
192     *hardened-sources-2.4.28-r3 (17 Jan 2005)
193    
194     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
195     +hardened-sources-2.4.28-r3.ebuild:
196     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
197 tocharian 1.43
198     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
199     hardened-sources-2.4.28.ebuild:
200     Mark stable on x86.
201 tocharian 1.42
202     *hardened-sources-2.4.28-r2 (13 Jan 2005)
203    
204     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
205     +hardened-sources-2.4.28-r2.ebuild:
206     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
207     Mazinger for grsecurity patches as well.
208 plasmaroo 1.41
209     *hardened-sources-2.4.28-r1 (23 Dec 2004)
210    
211     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
212     Security bump. Thank tocharian for rolling a new patchset...
213 solar 1.40
214     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
215     +files/2.4.28-grsec-cmdline-race.patch,
216     +files/2.4.28-selinux-binfmt_a.out.patch,
217     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
218     - Round up remaining security patches that appear to be missing in 2.4.28. -
219     PaX standalone updated to current. hgpv=28.1
220 solar 1.39
221     *hardened-sources-2.4.28 (28 Nov 2004)
222    
223     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
224     security bump. Thank tocharian for rolling a new patchset
225 scox 1.31
226 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
227    
228     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
229     +hardened-sources-2.4.27-r3.ebuild:
230     Applies the new 2.4-27.2 patchball which updates
231     GRSecurity to the 2.0.1 version.
232    
233 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
234    
235     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
236     +hardened-sources-2.4.27-r2.ebuild:
237     Version bump.
238     This version uses the new 2.4-27.1 patchball which updates
239     both the SELinux PaX hooks patch and the SELinux headers.
240    
241 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
242    
243     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
244     +hardened-sources-2.4.27-r1.ebuild,
245     -hardened-sources-2.4.27.ebuild,
246     +files/2.4.27-cmdline-race.patch:
247     Version bump, fix for cmdline race. See bug #59905.
248    
249     *hardened-sources-2.4.26-r6 (09 Aug 2004)
250    
251     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
252     +hardened-sources-2.4.26-r6.ebuild,
253     -hardened-sources-2.4.26-r5.ebuild,
254     -hardened-sources-2.4.26-r4.ebuild,
255     +files/2.4.26-cmdline-race.patch:
256     Version bump, fix for cmdline race. See bug #59905.
257    
258 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
259    
260     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
261     +hardened-sources-2.4.27.ebuild,
262     +files/2.4.27-CAN-2004-0394.patch:
263     Ported the patchball to the 2.4.27 kernel version.
264    
265 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
266    
267     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
268     +hardened-sources-2.4.26-r5.ebuild:
269 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
270 scox 1.34 It adds the following features:
271     - Squashfs
272     - Ebtables
273     - Netdev random (core+drivers)
274     - Watchdog Timer (WDT) fix.
275    
276 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
277    
278     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
279     +hardened-sources-2.4.26-r4.ebuild,
280     +files/2.4.26-CAN-2004-0415.patch,
281     -hardened-sources-2.4.26-3:
282     Version bump, fix for CAN 0415, see bug #59378.
283    
284 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
285    
286     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
287     +hardened-sources-2.4.26-r3.ebuild,
288     +files/2.4.26-CAN-2004-0497.patch,
289     -hardened-sources-2.4.26-r2.ebuild:
290     Version bump, fixed CAN 0497, see bug #56171.
291    
292 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
293    
294     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
295 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
296 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
297     +files/2.4.26-CAN-2004-0535.patch,
298     -hardened-sources-2.4.26-r1.ebuild:
299     Fixes for both CAN 0495 and 0535, see bug #54976
300 pvdabeel 1.27
301 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
302     hardened-sources-2.4.26-r1.ebuild:
303     QA - fix use invocation
304 scox 1.28
305     *hardened-sources-2.4.26-r1 (22 June 2004)
306    
307     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
308     +hardened-sources-2.4.26-r1.ebuild,
309     +files/2.4.26-CAN-2004-0394.patch,
310     +files/2.4.26-signal-race.patch,
311     -hardened-sources-2.4.26.ebuild,
312     -hardened-sources-2.4.24-r3.ebuild:
313     Version bump for the CAN-2004-0394 issue and bug #53804
314     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
315    
316    
317 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
318     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
319     Masked hardened-sources-2.4.26.ebuild broken for ppc
320    
321     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
322     hardened-sources-2.4.24-r3.ebuild:
323     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
324 plasmaroo 1.25
325 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
326    
327     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
328     +hardened-sources-2.4.26.ebuild:
329     Updated hardened-sources for the 2.4.26 kernel
330     Removed broken components, updated almost everything.
331    
332 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
333    
334     17 Apr 2004; <plasmaroo@gentoo.org>
335     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
336     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
337     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
338     +hardened-sources-2.4.24-r3.ebuild:
339     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
340     vulnerabilities. Old revisions removed.
341 plasmaroo 1.24
342     *hardened-sources-2.4.24-r2 (15 Apr 2004)
343    
344     15 Apr 2004; <plasmaroo@gentoo.org>
345     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
346     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
347     Version bump for the CAN-2004-0109 issue; bug #47881.
348 aliz 1.23
349     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
350     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
351     Add eutils to inherit.
352 plasmaroo 1.22
353     *hardened-sources-2.4.24-r1 (19 Feb 2004)
354    
355     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
356     files/hardened-sources-2.4.24.munmap.patch:
357     Added the patch for the mremap/munmap vulnerability. Bug #42024.
358 scox 1.19
359 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
360 scox 1.26
361 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
362     hardened-sources-2.4.24.ebuild:
363     Version bump, updated most of the components.
364     This release includes the following:
365    
366     - Hardened security
367     - Netfilter patch-o-matic 20031219
368     - FreeSWAN 2.04 & x509 1.4.8
369     - EVMS 2.2.2
370     - XFS 1.3.1
371     - cryptoloop jari
372     - grsecurity 2.0-rc4
373     - SELinux
374     - PaX 200402060000
375     - PaX Obscurity 200308302223
376     - Others...
377    
378     Neither -ck nor systrace are included anymore.
379    
380 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
381    
382     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
383     hardened-sources-2.4.22-r2.ebuild:
384 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
385 scox 1.19
386     *hardened-sources-2.4.22-r1 (02 Dec 2003)
387 iggy 1.17
388     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
389 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
390 iggy 1.16
391     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
392 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
393     Version bump for the 'do_brk' vulnerability.
394 iggy 1.15
395     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
396     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
397     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
398     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
399 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
400 frogger 1.14
401     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
402     hardened-sources-2.4.22.ebuild:
403 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
404     components. These are no longer handled in the kernel
405     so this code was not necessary.
406 frogger 1.13
407     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
408     New 2.4.22 based hardened-sources thanks to
409     Phil West <p.west@computer.org>.
410    
411     These sources include:
412 plasmaroo 1.18 - New SELinux API
413     - Updated CK-base
414     - Updated GRSec
415     - Systrace
416     - SuperFreeS/WAN 1.99.8
417     - Propolice kernel build support
418     - EVMS
419     - Other various security related patches
420 frogger 1.11
421 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
422    
423     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
424     Updated hardened-sources based on the 2.4.21 Linux kernel.
425     This includes updates to most major components such as:
426 plasmaroo 1.18 - ck-base-0306300059
427     - selinux-2.4-2003071106
428     - grsecurity-2.0-rc1
429     - Updated IPTables patch-o-matic
430     - Updated SuperFreeS/WAN
431    
432 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
433     updated patch set ready for the 2.4.21 based kernel.
434    
435 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
436     Initial import of hardened-sources-2.4.20-r4. This revision
437     includes only a few changes, but one of these is an important
438     security fix. It is recommended all users of hardened-sources
439     upgrade to this release.
440 plasmaroo 1.18
441 frogger 1.11 - ioperm bug fix
442     - fixed compilation failure when building without GRSec
443 plasmaroo 1.18
444 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
445     due to time constraints, but is planned for inclusion in the near
446     future.
447 msterret 1.10
448     *hardened-sources-2.4.20-r2 (12 Jun 2003)
449    
450     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
451     hardened-sources-2.4.20-r3.ebuild:
452 plasmaroo 1.18 Add Header...
453 frogger 1.9
454     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
455     hardened-sources-2.4.20-r3.ebuild:
456     Removed warnings from ebuild. This kernel should be safe to
457     use at this point.
458 frogger 1.8
459     *hardened-sources-2.4.20-r3 (08 Jun 2003)
460    
461     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
462     hardened-sources-2.4.20-r3.ebuild:
463     New revision. Includes the following changes over -r2:
464 plasmaroo 1.18
465 frogger 1.8 - ck7-base (O(1), preempt, low latency)
466     - Super FreeS/WAN 1.99.7rc2
467     - PaX for the LSM/SELinux branch
468     - GRSecurity 2.0-pre4 (role based access control)
469     - Systrace 1.3
470     - EXT3 fixes
471     - EVMS 2.0.1
472     - GCC 3.1+ compile optimizations
473     - ProPolice kernel build support
474     - Hashing table security fixes
475 frogger 1.3
476     *hardened-sources-2.4.20-r1 (09 Apr 2003)
477 frogger 1.7
478     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
479     Initial import of hardened-sources-r2. This new
480     ebuild includes many new performance and security
481     related patches. As in -r1, it will patch in
482     LSM/SELinux if "selinux" is in USE, otherwise it
483     will patch in GRSecurity. The following patches
484     are included in this revision:
485 plasmaroo 1.18
486 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
487     (pulled from the base CK patch)
488     - ptrace exploit patch for the LSM kernel
489     (the GRSec patch already fixes this)
490     - LSM 2.4-2003040709
491     - SELinux 2.4-2003040709
492     - Systrace v1.2
493     - IPTables patch-o-matic base patches - 20030107
494     - CryptoAPI 2.4.20.1 w/ loop-jari patch
495     - Super FreeS/WAN 1.99.6.1
496     - GRSecurity 1.9.9g
497     - MPPE
498     - EXT3 data journal fix
499     - CIPE 1.5.4
500 frogger 1.6
501     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
502     hardened-sources-2.4.20-r1.ebuild, manifest:
503 plasmaroo 1.18 Updated to install flask components correctly for selinux.
504 frogger 1.5
505     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
506     hardened-sources-2.4.20-r1.ebuild:
507     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
508     is patched in instead. Ptrace patches for selinux have also been added. In
509     either case, systrace support will be patched in as well.
510 frogger 1.3
511     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
512     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
513 plasmaroo 1.18 Revision bump for new sources.
514 frogger 1.4
515 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
516 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
517 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
518 method 1.1
519 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
520    
521 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
522     hardened-sources-2.4.20.ebuild:
523 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20