/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.74 - (hide annotations) (download)
Thu Jan 12 18:35:58 2006 UTC (8 years, 8 months ago) by solar
Branch: MAIN
Changes since 1.73: +6 -1 lines
- version bump for new genpatches which fix up a few sec holes
(Portage version: 2.1_pre1)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 solar 1.74 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.73 2006/01/05 16:56:16 solar Exp $
4    
5     *hardened-sources-2.6.14-r4 (12 Jan 2006)
6    
7     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
8     - version bump for new genpatches which fix up a few sec holes
9 solar 1.73
10     *hardened-sources-2.4.32-r1 (05 Jan 2006)
11    
12     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
13     - revision bump to add misc vital linux kernel security patches.
14 johnm 1.72
15     *hardened-sources-2.6.14-r3 (30 Dec 2005)
16    
17     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
18     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
19     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
20 johnm 1.71
21     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
22     hardened-sources-2.6.14-r2.ebuild:
23     making x86 & amd64 stable following testing.
24 johnm 1.70
25     *hardened-sources-2.6.14-r2 (27 Dec 2005)
26    
27     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
28     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
29     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
30     network hooks.
31 johnm 1.69
32     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
33     hardened-sources-2.6.14-r1.ebuild:
34     bumping to stable early for sec fix on x86 & amd64
35 johnm 1.68
36     *hardened-sources-2.6.14-r1 (05 Dec 2005)
37    
38     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
39     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
40     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
41 solar 1.67
42     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
43     - stable on x86 security bug #114227 CAN-2005-3257
44 kang 1.66
45     *hardened-sources-2.4.32 (19 Nov 2005)
46    
47     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
48     +hardened-sources-2.4.32.ebuild:
49     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
50     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
51     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
52     rsbac >> /etc/portage/package.use)
53 johnm 1.65
54     *hardened-sources-2.6.14 (14 Nov 2005)
55    
56     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
57     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
58     Bumping 2.6 series to 2.6.14.2
59 johnm 1.64
60     *hardened-sources-2.6.13-r2 (20 Oct 2005)
61    
62     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
63     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
64     +hardened-sources-2.6.13-r2.ebuild:
65     Fixes minor build error in ppc.
66 johnm 1.63
67     *hardened-sources-2.6.13-r1 (17 Oct 2005)
68    
69     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
70     +hardened-sources-2.6.13-r1.ebuild:
71     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
72     2.6.13.4, fixes some major amd64 stability problems.
73 johnm 1.62
74     *hardened-sources-2.6.13 (16 Sep 2005)
75    
76     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
77     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
78     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
79     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
80     users should test this thoroughly.
81 solar 1.61
82     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
83     - stable on x86
84 johnm 1.60
85     *hardened-sources-2.6.11-r15 (27 Jun 2005)
86    
87     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
88     +hardened-sources-2.6.11-r15.ebuild:
89     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
90     grsec redefining curr_ip struct.
91 solar 1.59
92     *hardened-sources-2.4.31 (20 Jun 2005)
93    
94     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
95     initial import of 2.4.31 tree
96 johnm 1.58
97     *hardened-sources-2.6.11-r14 (14 Jun 2005)
98    
99     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
100     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
101     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
102     naming scheme to abide by genpatches
103 johnm 1.57
104     *hardened-sources-2.6.11-r13 (18 May 2005)
105    
106     18 May 2005; John Mylchreest <johnm@gentoo.org>
107     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
108     Managed to mangle the Makefile patch from grsec, to miss out the grsec
109     target. sorry about that. Fixes bug #93022
110 johnm 1.56
111     *hardened-sources-2.6.11-r12 (17 May 2005)
112    
113     17 May 2005; John Mylchreest <johnm@gentoo.org>
114     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
115     +hardened-sources-2.6.11-r12.ebuild:
116     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
117     merges in genpatches-base
118 johnm 1.55
119     *hardened-sources-2.6.11-r12 (17 May 2005)
120    
121     17 May 2005; John Mylchreest <johnm@gentoo.org>
122     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
123     +hardened-sources-2.6.11-r12.ebuild:
124     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
125     merges in genpatches-base
126 solar 1.54
127     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
128     -files/2.4.27-cmdline-race.patch,
129     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
130     -files/2.4.28-grsec-binfmt_a.out.patch,
131     -files/2.4.28-grsec-cmdline-race.patch,
132     -files/2.4.28-selinux-binfmt_a.out.patch,
133     -files/2.4.28-selinux-cmdline-race.patch,
134     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
135     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
136     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
137     cleanup..
138 solar 1.53
139     *hardened-sources-2.4.30-r1 (21 Apr 2005)
140    
141     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
142     - disable aout by default
143 solar 1.52
144     *hardened-sources-2.4.30 (18 Apr 2005)
145    
146     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
147     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
148     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
149     use
150 tocharian 1.50
151 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
152    
153     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
154     +hardened-sources-2.4.29.ebuild:
155     New hardened-patches-2.4-29.0 patchball.
156     Removed SELinux support, upgraded GRSecurity to 2.1.4.
157    
158     *hardened-sources-2.4.28-r5 (06 Mar 2005)
159    
160     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
161     +hardened-sources-2.4.28-r5.ebuild:
162     Added a fix for a PaX vulnerability.
163    
164     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
165 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
166     Stable on x86
167 solar 1.49
168     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
169     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
170     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
171     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
172     - fixed/added RDEPEND= in all kernel-2 ebuilds
173 tocharian 1.48
174     *hardened-sources-2.4.28-r4 (21 Jan 2005)
175    
176     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
177     +hardened-sources-2.4.28-r4.ebuild:
178     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
179     backport of neighbour hash updates.
180 tocharian 1.47
181     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
182     hardened-sources-2.4.28-r3.ebuild:
183     Stable on x86
184 tseng 1.46
185     *hardened-sources-2.6.10-r3 (20 Jan 2005)
186    
187     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
188     +hardened-sources-2.6.10-r3.ebuild:
189     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
190     in 2005.0
191 tocharian 1.45
192     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
193     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
194     hardened-sources-2.4.28-r2.ebuild:
195     Mark stable on x86
196 tocharian 1.44
197     *hardened-sources-2.4.28-r3 (17 Jan 2005)
198    
199     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
200     +hardened-sources-2.4.28-r3.ebuild:
201     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
202 tocharian 1.43
203     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
204     hardened-sources-2.4.28.ebuild:
205     Mark stable on x86.
206 tocharian 1.42
207     *hardened-sources-2.4.28-r2 (13 Jan 2005)
208    
209     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
210     +hardened-sources-2.4.28-r2.ebuild:
211     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
212     Mazinger for grsecurity patches as well.
213 plasmaroo 1.41
214     *hardened-sources-2.4.28-r1 (23 Dec 2004)
215    
216     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
217     Security bump. Thank tocharian for rolling a new patchset...
218 solar 1.40
219     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
220     +files/2.4.28-grsec-cmdline-race.patch,
221     +files/2.4.28-selinux-binfmt_a.out.patch,
222     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
223     - Round up remaining security patches that appear to be missing in 2.4.28. -
224     PaX standalone updated to current. hgpv=28.1
225 solar 1.39
226     *hardened-sources-2.4.28 (28 Nov 2004)
227    
228     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
229     security bump. Thank tocharian for rolling a new patchset
230 scox 1.31
231 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
232    
233     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
234     +hardened-sources-2.4.27-r3.ebuild:
235     Applies the new 2.4-27.2 patchball which updates
236     GRSecurity to the 2.0.1 version.
237    
238 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
239    
240     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
241     +hardened-sources-2.4.27-r2.ebuild:
242     Version bump.
243     This version uses the new 2.4-27.1 patchball which updates
244     both the SELinux PaX hooks patch and the SELinux headers.
245    
246 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
247    
248     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
249     +hardened-sources-2.4.27-r1.ebuild,
250     -hardened-sources-2.4.27.ebuild,
251     +files/2.4.27-cmdline-race.patch:
252     Version bump, fix for cmdline race. See bug #59905.
253    
254     *hardened-sources-2.4.26-r6 (09 Aug 2004)
255    
256     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
257     +hardened-sources-2.4.26-r6.ebuild,
258     -hardened-sources-2.4.26-r5.ebuild,
259     -hardened-sources-2.4.26-r4.ebuild,
260     +files/2.4.26-cmdline-race.patch:
261     Version bump, fix for cmdline race. See bug #59905.
262    
263 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
264    
265     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
266     +hardened-sources-2.4.27.ebuild,
267     +files/2.4.27-CAN-2004-0394.patch:
268     Ported the patchball to the 2.4.27 kernel version.
269    
270 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
271    
272     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
273     +hardened-sources-2.4.26-r5.ebuild:
274 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
275 scox 1.34 It adds the following features:
276     - Squashfs
277     - Ebtables
278     - Netdev random (core+drivers)
279     - Watchdog Timer (WDT) fix.
280    
281 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
282    
283     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
284     +hardened-sources-2.4.26-r4.ebuild,
285     +files/2.4.26-CAN-2004-0415.patch,
286     -hardened-sources-2.4.26-3:
287     Version bump, fix for CAN 0415, see bug #59378.
288    
289 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
290    
291     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
292     +hardened-sources-2.4.26-r3.ebuild,
293     +files/2.4.26-CAN-2004-0497.patch,
294     -hardened-sources-2.4.26-r2.ebuild:
295     Version bump, fixed CAN 0497, see bug #56171.
296    
297 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
298    
299     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
300 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
301 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
302     +files/2.4.26-CAN-2004-0535.patch,
303     -hardened-sources-2.4.26-r1.ebuild:
304     Fixes for both CAN 0495 and 0535, see bug #54976
305 pvdabeel 1.27
306 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
307     hardened-sources-2.4.26-r1.ebuild:
308     QA - fix use invocation
309 scox 1.28
310     *hardened-sources-2.4.26-r1 (22 June 2004)
311    
312     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
313     +hardened-sources-2.4.26-r1.ebuild,
314     +files/2.4.26-CAN-2004-0394.patch,
315     +files/2.4.26-signal-race.patch,
316     -hardened-sources-2.4.26.ebuild,
317     -hardened-sources-2.4.24-r3.ebuild:
318     Version bump for the CAN-2004-0394 issue and bug #53804
319     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
320    
321    
322 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
323     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
324     Masked hardened-sources-2.4.26.ebuild broken for ppc
325    
326     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
327     hardened-sources-2.4.24-r3.ebuild:
328     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
329 plasmaroo 1.25
330 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
331    
332     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
333     +hardened-sources-2.4.26.ebuild:
334     Updated hardened-sources for the 2.4.26 kernel
335     Removed broken components, updated almost everything.
336    
337 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
338    
339     17 Apr 2004; <plasmaroo@gentoo.org>
340     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
341     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
342     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
343     +hardened-sources-2.4.24-r3.ebuild:
344     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
345     vulnerabilities. Old revisions removed.
346 plasmaroo 1.24
347     *hardened-sources-2.4.24-r2 (15 Apr 2004)
348    
349     15 Apr 2004; <plasmaroo@gentoo.org>
350     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
351     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
352     Version bump for the CAN-2004-0109 issue; bug #47881.
353 aliz 1.23
354     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
355     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
356     Add eutils to inherit.
357 plasmaroo 1.22
358     *hardened-sources-2.4.24-r1 (19 Feb 2004)
359    
360     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
361     files/hardened-sources-2.4.24.munmap.patch:
362     Added the patch for the mremap/munmap vulnerability. Bug #42024.
363 scox 1.19
364 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
365 scox 1.26
366 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
367     hardened-sources-2.4.24.ebuild:
368     Version bump, updated most of the components.
369     This release includes the following:
370    
371     - Hardened security
372     - Netfilter patch-o-matic 20031219
373     - FreeSWAN 2.04 & x509 1.4.8
374     - EVMS 2.2.2
375     - XFS 1.3.1
376     - cryptoloop jari
377     - grsecurity 2.0-rc4
378     - SELinux
379     - PaX 200402060000
380     - PaX Obscurity 200308302223
381     - Others...
382    
383     Neither -ck nor systrace are included anymore.
384    
385 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
386    
387     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
388     hardened-sources-2.4.22-r2.ebuild:
389 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
390 scox 1.19
391     *hardened-sources-2.4.22-r1 (02 Dec 2003)
392 iggy 1.17
393     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
394 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
395 iggy 1.16
396     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
397 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
398     Version bump for the 'do_brk' vulnerability.
399 iggy 1.15
400     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
401     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
402     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
403     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
404 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
405 frogger 1.14
406     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
407     hardened-sources-2.4.22.ebuild:
408 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
409     components. These are no longer handled in the kernel
410     so this code was not necessary.
411 frogger 1.13
412     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
413     New 2.4.22 based hardened-sources thanks to
414     Phil West <p.west@computer.org>.
415    
416     These sources include:
417 plasmaroo 1.18 - New SELinux API
418     - Updated CK-base
419     - Updated GRSec
420     - Systrace
421     - SuperFreeS/WAN 1.99.8
422     - Propolice kernel build support
423     - EVMS
424     - Other various security related patches
425 frogger 1.11
426 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
427    
428     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
429     Updated hardened-sources based on the 2.4.21 Linux kernel.
430     This includes updates to most major components such as:
431 plasmaroo 1.18 - ck-base-0306300059
432     - selinux-2.4-2003071106
433     - grsecurity-2.0-rc1
434     - Updated IPTables patch-o-matic
435     - Updated SuperFreeS/WAN
436    
437 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
438     updated patch set ready for the 2.4.21 based kernel.
439    
440 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
441     Initial import of hardened-sources-2.4.20-r4. This revision
442     includes only a few changes, but one of these is an important
443     security fix. It is recommended all users of hardened-sources
444     upgrade to this release.
445 plasmaroo 1.18
446 frogger 1.11 - ioperm bug fix
447     - fixed compilation failure when building without GRSec
448 plasmaroo 1.18
449 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
450     due to time constraints, but is planned for inclusion in the near
451     future.
452 msterret 1.10
453     *hardened-sources-2.4.20-r2 (12 Jun 2003)
454    
455     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
456     hardened-sources-2.4.20-r3.ebuild:
457 plasmaroo 1.18 Add Header...
458 frogger 1.9
459     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
460     hardened-sources-2.4.20-r3.ebuild:
461     Removed warnings from ebuild. This kernel should be safe to
462     use at this point.
463 frogger 1.8
464     *hardened-sources-2.4.20-r3 (08 Jun 2003)
465    
466     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
467     hardened-sources-2.4.20-r3.ebuild:
468     New revision. Includes the following changes over -r2:
469 plasmaroo 1.18
470 frogger 1.8 - ck7-base (O(1), preempt, low latency)
471     - Super FreeS/WAN 1.99.7rc2
472     - PaX for the LSM/SELinux branch
473     - GRSecurity 2.0-pre4 (role based access control)
474     - Systrace 1.3
475     - EXT3 fixes
476     - EVMS 2.0.1
477     - GCC 3.1+ compile optimizations
478     - ProPolice kernel build support
479     - Hashing table security fixes
480 frogger 1.3
481     *hardened-sources-2.4.20-r1 (09 Apr 2003)
482 frogger 1.7
483     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
484     Initial import of hardened-sources-r2. This new
485     ebuild includes many new performance and security
486     related patches. As in -r1, it will patch in
487     LSM/SELinux if "selinux" is in USE, otherwise it
488     will patch in GRSecurity. The following patches
489     are included in this revision:
490 plasmaroo 1.18
491 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
492     (pulled from the base CK patch)
493     - ptrace exploit patch for the LSM kernel
494     (the GRSec patch already fixes this)
495     - LSM 2.4-2003040709
496     - SELinux 2.4-2003040709
497     - Systrace v1.2
498     - IPTables patch-o-matic base patches - 20030107
499     - CryptoAPI 2.4.20.1 w/ loop-jari patch
500     - Super FreeS/WAN 1.99.6.1
501     - GRSecurity 1.9.9g
502     - MPPE
503     - EXT3 data journal fix
504     - CIPE 1.5.4
505 frogger 1.6
506     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
507     hardened-sources-2.4.20-r1.ebuild, manifest:
508 plasmaroo 1.18 Updated to install flask components correctly for selinux.
509 frogger 1.5
510     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
511     hardened-sources-2.4.20-r1.ebuild:
512     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
513     is patched in instead. Ptrace patches for selinux have also been added. In
514     either case, systrace support will be patched in as well.
515 frogger 1.3
516     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
517     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
518 plasmaroo 1.18 Revision bump for new sources.
519 frogger 1.4
520 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
521 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
522 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
523 method 1.1
524 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
525    
526 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
527     hardened-sources-2.4.20.ebuild:
528 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20