/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.78 - (hide annotations) (download)
Thu Mar 2 21:33:08 2006 UTC (8 years, 9 months ago) by solar
Branch: MAIN
Changes since 1.77: +4 -1 lines
- stable on x86
(Portage version: 2.1_pre4-r1)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 solar 1.78 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.77 2006/02/19 21:55:42 hansmi Exp $
4    
5     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
6     - stable on x86
7 hansmi 1.77
8     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
9     hardened-sources-2.6.14-r5.ebuild:
10     Stable on ppc.
11 johnm 1.76
12     *hardened-sources-2.6.14-r5 (01 Feb 2006)
13    
14     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
15     +hardened-sources-2.6.14-r5.ebuild:
16     fixing every known exploit
17 solar 1.75
18     *hardened-sources-2.4.32-r2 (26 Jan 2006)
19    
20     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
21     +hardened-sources-2.4.32-r2.ebuild:
22     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
23 solar 1.74
24     *hardened-sources-2.6.14-r4 (12 Jan 2006)
25    
26     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
27     - version bump for new genpatches which fix up a few sec holes
28 solar 1.73
29     *hardened-sources-2.4.32-r1 (05 Jan 2006)
30    
31     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
32     - revision bump to add misc vital linux kernel security patches.
33 johnm 1.72
34     *hardened-sources-2.6.14-r3 (30 Dec 2005)
35    
36     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
37     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
38     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
39 johnm 1.71
40     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
41     hardened-sources-2.6.14-r2.ebuild:
42     making x86 & amd64 stable following testing.
43 johnm 1.70
44     *hardened-sources-2.6.14-r2 (27 Dec 2005)
45    
46     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
47     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
48     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
49     network hooks.
50 johnm 1.69
51     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
52     hardened-sources-2.6.14-r1.ebuild:
53     bumping to stable early for sec fix on x86 & amd64
54 johnm 1.68
55     *hardened-sources-2.6.14-r1 (05 Dec 2005)
56    
57     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
58     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
59     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
60 solar 1.67
61     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
62     - stable on x86 security bug #114227 CAN-2005-3257
63 kang 1.66
64     *hardened-sources-2.4.32 (19 Nov 2005)
65    
66     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
67     +hardened-sources-2.4.32.ebuild:
68     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
69     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
70     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
71     rsbac >> /etc/portage/package.use)
72 johnm 1.65
73     *hardened-sources-2.6.14 (14 Nov 2005)
74    
75     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
76     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
77     Bumping 2.6 series to 2.6.14.2
78 johnm 1.64
79     *hardened-sources-2.6.13-r2 (20 Oct 2005)
80    
81     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
82     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
83     +hardened-sources-2.6.13-r2.ebuild:
84     Fixes minor build error in ppc.
85 johnm 1.63
86     *hardened-sources-2.6.13-r1 (17 Oct 2005)
87    
88     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
89     +hardened-sources-2.6.13-r1.ebuild:
90     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
91     2.6.13.4, fixes some major amd64 stability problems.
92 johnm 1.62
93     *hardened-sources-2.6.13 (16 Sep 2005)
94    
95     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
96     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
97     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
98     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
99     users should test this thoroughly.
100 solar 1.61
101     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
102     - stable on x86
103 johnm 1.60
104     *hardened-sources-2.6.11-r15 (27 Jun 2005)
105    
106     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
107     +hardened-sources-2.6.11-r15.ebuild:
108     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
109     grsec redefining curr_ip struct.
110 solar 1.59
111     *hardened-sources-2.4.31 (20 Jun 2005)
112    
113     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
114     initial import of 2.4.31 tree
115 johnm 1.58
116     *hardened-sources-2.6.11-r14 (14 Jun 2005)
117    
118     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
119     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
120     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
121     naming scheme to abide by genpatches
122 johnm 1.57
123     *hardened-sources-2.6.11-r13 (18 May 2005)
124    
125     18 May 2005; John Mylchreest <johnm@gentoo.org>
126     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
127     Managed to mangle the Makefile patch from grsec, to miss out the grsec
128     target. sorry about that. Fixes bug #93022
129 johnm 1.56
130     *hardened-sources-2.6.11-r12 (17 May 2005)
131    
132     17 May 2005; John Mylchreest <johnm@gentoo.org>
133     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
134     +hardened-sources-2.6.11-r12.ebuild:
135     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
136     merges in genpatches-base
137 johnm 1.55
138     *hardened-sources-2.6.11-r12 (17 May 2005)
139    
140     17 May 2005; John Mylchreest <johnm@gentoo.org>
141     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
142     +hardened-sources-2.6.11-r12.ebuild:
143     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
144     merges in genpatches-base
145 solar 1.54
146     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
147     -files/2.4.27-cmdline-race.patch,
148     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
149     -files/2.4.28-grsec-binfmt_a.out.patch,
150     -files/2.4.28-grsec-cmdline-race.patch,
151     -files/2.4.28-selinux-binfmt_a.out.patch,
152     -files/2.4.28-selinux-cmdline-race.patch,
153     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
154     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
155     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
156     cleanup..
157 solar 1.53
158     *hardened-sources-2.4.30-r1 (21 Apr 2005)
159    
160     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
161     - disable aout by default
162 solar 1.52
163     *hardened-sources-2.4.30 (18 Apr 2005)
164    
165     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
166     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
167     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
168     use
169 tocharian 1.50
170 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
171    
172     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
173     +hardened-sources-2.4.29.ebuild:
174     New hardened-patches-2.4-29.0 patchball.
175     Removed SELinux support, upgraded GRSecurity to 2.1.4.
176    
177     *hardened-sources-2.4.28-r5 (06 Mar 2005)
178    
179     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
180     +hardened-sources-2.4.28-r5.ebuild:
181     Added a fix for a PaX vulnerability.
182    
183     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
184 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
185     Stable on x86
186 solar 1.49
187     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
188     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
189     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
190     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
191     - fixed/added RDEPEND= in all kernel-2 ebuilds
192 tocharian 1.48
193     *hardened-sources-2.4.28-r4 (21 Jan 2005)
194    
195     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
196     +hardened-sources-2.4.28-r4.ebuild:
197     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
198     backport of neighbour hash updates.
199 tocharian 1.47
200     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
201     hardened-sources-2.4.28-r3.ebuild:
202     Stable on x86
203 tseng 1.46
204     *hardened-sources-2.6.10-r3 (20 Jan 2005)
205    
206     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
207     +hardened-sources-2.6.10-r3.ebuild:
208     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
209     in 2005.0
210 tocharian 1.45
211     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
212     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
213     hardened-sources-2.4.28-r2.ebuild:
214     Mark stable on x86
215 tocharian 1.44
216     *hardened-sources-2.4.28-r3 (17 Jan 2005)
217    
218     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
219     +hardened-sources-2.4.28-r3.ebuild:
220     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
221 tocharian 1.43
222     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
223     hardened-sources-2.4.28.ebuild:
224     Mark stable on x86.
225 tocharian 1.42
226     *hardened-sources-2.4.28-r2 (13 Jan 2005)
227    
228     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
229     +hardened-sources-2.4.28-r2.ebuild:
230     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
231     Mazinger for grsecurity patches as well.
232 plasmaroo 1.41
233     *hardened-sources-2.4.28-r1 (23 Dec 2004)
234    
235     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
236     Security bump. Thank tocharian for rolling a new patchset...
237 solar 1.40
238     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
239     +files/2.4.28-grsec-cmdline-race.patch,
240     +files/2.4.28-selinux-binfmt_a.out.patch,
241     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
242     - Round up remaining security patches that appear to be missing in 2.4.28. -
243     PaX standalone updated to current. hgpv=28.1
244 solar 1.39
245     *hardened-sources-2.4.28 (28 Nov 2004)
246    
247     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
248     security bump. Thank tocharian for rolling a new patchset
249 scox 1.31
250 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
251    
252     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
253     +hardened-sources-2.4.27-r3.ebuild:
254     Applies the new 2.4-27.2 patchball which updates
255     GRSecurity to the 2.0.1 version.
256    
257 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
258    
259     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
260     +hardened-sources-2.4.27-r2.ebuild:
261     Version bump.
262     This version uses the new 2.4-27.1 patchball which updates
263     both the SELinux PaX hooks patch and the SELinux headers.
264    
265 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
266    
267     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
268     +hardened-sources-2.4.27-r1.ebuild,
269     -hardened-sources-2.4.27.ebuild,
270     +files/2.4.27-cmdline-race.patch:
271     Version bump, fix for cmdline race. See bug #59905.
272    
273     *hardened-sources-2.4.26-r6 (09 Aug 2004)
274    
275     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
276     +hardened-sources-2.4.26-r6.ebuild,
277     -hardened-sources-2.4.26-r5.ebuild,
278     -hardened-sources-2.4.26-r4.ebuild,
279     +files/2.4.26-cmdline-race.patch:
280     Version bump, fix for cmdline race. See bug #59905.
281    
282 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
283    
284     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
285     +hardened-sources-2.4.27.ebuild,
286     +files/2.4.27-CAN-2004-0394.patch:
287     Ported the patchball to the 2.4.27 kernel version.
288    
289 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
290    
291     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
292     +hardened-sources-2.4.26-r5.ebuild:
293 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
294 scox 1.34 It adds the following features:
295     - Squashfs
296     - Ebtables
297     - Netdev random (core+drivers)
298     - Watchdog Timer (WDT) fix.
299    
300 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
301    
302     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
303     +hardened-sources-2.4.26-r4.ebuild,
304     +files/2.4.26-CAN-2004-0415.patch,
305     -hardened-sources-2.4.26-3:
306     Version bump, fix for CAN 0415, see bug #59378.
307    
308 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
309    
310     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
311     +hardened-sources-2.4.26-r3.ebuild,
312     +files/2.4.26-CAN-2004-0497.patch,
313     -hardened-sources-2.4.26-r2.ebuild:
314     Version bump, fixed CAN 0497, see bug #56171.
315    
316 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
317    
318     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
319 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
320 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
321     +files/2.4.26-CAN-2004-0535.patch,
322     -hardened-sources-2.4.26-r1.ebuild:
323     Fixes for both CAN 0495 and 0535, see bug #54976
324 pvdabeel 1.27
325 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
326     hardened-sources-2.4.26-r1.ebuild:
327     QA - fix use invocation
328 scox 1.28
329     *hardened-sources-2.4.26-r1 (22 June 2004)
330    
331     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
332     +hardened-sources-2.4.26-r1.ebuild,
333     +files/2.4.26-CAN-2004-0394.patch,
334     +files/2.4.26-signal-race.patch,
335     -hardened-sources-2.4.26.ebuild,
336     -hardened-sources-2.4.24-r3.ebuild:
337     Version bump for the CAN-2004-0394 issue and bug #53804
338     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
339    
340    
341 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
342     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
343     Masked hardened-sources-2.4.26.ebuild broken for ppc
344    
345     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
346     hardened-sources-2.4.24-r3.ebuild:
347     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
348 plasmaroo 1.25
349 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
350    
351     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
352     +hardened-sources-2.4.26.ebuild:
353     Updated hardened-sources for the 2.4.26 kernel
354     Removed broken components, updated almost everything.
355    
356 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
357    
358     17 Apr 2004; <plasmaroo@gentoo.org>
359     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
360     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
361     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
362     +hardened-sources-2.4.24-r3.ebuild:
363     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
364     vulnerabilities. Old revisions removed.
365 plasmaroo 1.24
366     *hardened-sources-2.4.24-r2 (15 Apr 2004)
367    
368     15 Apr 2004; <plasmaroo@gentoo.org>
369     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
370     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
371     Version bump for the CAN-2004-0109 issue; bug #47881.
372 aliz 1.23
373     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
374     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
375     Add eutils to inherit.
376 plasmaroo 1.22
377     *hardened-sources-2.4.24-r1 (19 Feb 2004)
378    
379     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
380     files/hardened-sources-2.4.24.munmap.patch:
381     Added the patch for the mremap/munmap vulnerability. Bug #42024.
382 scox 1.19
383 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
384 scox 1.26
385 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
386     hardened-sources-2.4.24.ebuild:
387     Version bump, updated most of the components.
388     This release includes the following:
389    
390     - Hardened security
391     - Netfilter patch-o-matic 20031219
392     - FreeSWAN 2.04 & x509 1.4.8
393     - EVMS 2.2.2
394     - XFS 1.3.1
395     - cryptoloop jari
396     - grsecurity 2.0-rc4
397     - SELinux
398     - PaX 200402060000
399     - PaX Obscurity 200308302223
400     - Others...
401    
402     Neither -ck nor systrace are included anymore.
403    
404 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
405    
406     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
407     hardened-sources-2.4.22-r2.ebuild:
408 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
409 scox 1.19
410     *hardened-sources-2.4.22-r1 (02 Dec 2003)
411 iggy 1.17
412     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
413 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
414 iggy 1.16
415     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
416 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
417     Version bump for the 'do_brk' vulnerability.
418 iggy 1.15
419     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
420     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
421     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
422     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
423 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
424 frogger 1.14
425     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
426     hardened-sources-2.4.22.ebuild:
427 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
428     components. These are no longer handled in the kernel
429     so this code was not necessary.
430 frogger 1.13
431     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
432     New 2.4.22 based hardened-sources thanks to
433     Phil West <p.west@computer.org>.
434    
435     These sources include:
436 plasmaroo 1.18 - New SELinux API
437     - Updated CK-base
438     - Updated GRSec
439     - Systrace
440     - SuperFreeS/WAN 1.99.8
441     - Propolice kernel build support
442     - EVMS
443     - Other various security related patches
444 frogger 1.11
445 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
446    
447     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
448     Updated hardened-sources based on the 2.4.21 Linux kernel.
449     This includes updates to most major components such as:
450 plasmaroo 1.18 - ck-base-0306300059
451     - selinux-2.4-2003071106
452     - grsecurity-2.0-rc1
453     - Updated IPTables patch-o-matic
454     - Updated SuperFreeS/WAN
455    
456 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
457     updated patch set ready for the 2.4.21 based kernel.
458    
459 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
460     Initial import of hardened-sources-2.4.20-r4. This revision
461     includes only a few changes, but one of these is an important
462     security fix. It is recommended all users of hardened-sources
463     upgrade to this release.
464 plasmaroo 1.18
465 frogger 1.11 - ioperm bug fix
466     - fixed compilation failure when building without GRSec
467 plasmaroo 1.18
468 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
469     due to time constraints, but is planned for inclusion in the near
470     future.
471 msterret 1.10
472     *hardened-sources-2.4.20-r2 (12 Jun 2003)
473    
474     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
475     hardened-sources-2.4.20-r3.ebuild:
476 plasmaroo 1.18 Add Header...
477 frogger 1.9
478     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
479     hardened-sources-2.4.20-r3.ebuild:
480     Removed warnings from ebuild. This kernel should be safe to
481     use at this point.
482 frogger 1.8
483     *hardened-sources-2.4.20-r3 (08 Jun 2003)
484    
485     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
486     hardened-sources-2.4.20-r3.ebuild:
487     New revision. Includes the following changes over -r2:
488 plasmaroo 1.18
489 frogger 1.8 - ck7-base (O(1), preempt, low latency)
490     - Super FreeS/WAN 1.99.7rc2
491     - PaX for the LSM/SELinux branch
492     - GRSecurity 2.0-pre4 (role based access control)
493     - Systrace 1.3
494     - EXT3 fixes
495     - EVMS 2.0.1
496     - GCC 3.1+ compile optimizations
497     - ProPolice kernel build support
498     - Hashing table security fixes
499 frogger 1.3
500     *hardened-sources-2.4.20-r1 (09 Apr 2003)
501 frogger 1.7
502     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
503     Initial import of hardened-sources-r2. This new
504     ebuild includes many new performance and security
505     related patches. As in -r1, it will patch in
506     LSM/SELinux if "selinux" is in USE, otherwise it
507     will patch in GRSecurity. The following patches
508     are included in this revision:
509 plasmaroo 1.18
510 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
511     (pulled from the base CK patch)
512     - ptrace exploit patch for the LSM kernel
513     (the GRSec patch already fixes this)
514     - LSM 2.4-2003040709
515     - SELinux 2.4-2003040709
516     - Systrace v1.2
517     - IPTables patch-o-matic base patches - 20030107
518     - CryptoAPI 2.4.20.1 w/ loop-jari patch
519     - Super FreeS/WAN 1.99.6.1
520     - GRSecurity 1.9.9g
521     - MPPE
522     - EXT3 data journal fix
523     - CIPE 1.5.4
524 frogger 1.6
525     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
526     hardened-sources-2.4.20-r1.ebuild, manifest:
527 plasmaroo 1.18 Updated to install flask components correctly for selinux.
528 frogger 1.5
529     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
530     hardened-sources-2.4.20-r1.ebuild:
531     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
532     is patched in instead. Ptrace patches for selinux have also been added. In
533     either case, systrace support will be patched in as well.
534 frogger 1.3
535     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
536     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
537 plasmaroo 1.18 Revision bump for new sources.
538 frogger 1.4
539 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
540 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
541 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
542 method 1.1
543 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
544    
545 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
546     hardened-sources-2.4.20.ebuild:
547 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20