/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.88 - (hide annotations) (download)
Sat Apr 15 16:33:07 2006 UTC (8 years, 5 months ago) by johnm
Branch: MAIN
Changes since 1.87: +7 -1 lines
Removing silly localversion which I missed
(Portage version: 2.1_pre8-r5)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 johnm 1.88 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.87 2006/04/14 18:48:29 johnm Exp $
4    
5     *hardened-sources-2.6.16-r3 (15 Apr 2006)
6    
7     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
8     +hardened-sources-2.6.16-r3.ebuild:
9     Removing silly localversion which I missed
10 johnm 1.87
11     *hardened-sources-2.6.14-r7 (14 Apr 2006)
12    
13     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
14     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
15     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
16 johnm 1.86
17     *hardened-sources-2.6.16-r2 (13 Apr 2006)
18    
19     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
20     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
21     +hardened-sources-2.6.16-r2.ebuild:
22     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
23     labels, dropping USERGROUP define fixes, since these were merged mainstream.
24 johnm 1.85
25     *hardened-sources-2.6.16-r1 (11 Apr 2006)
26    
27     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
28     +hardened-sources-2.6.16-r1.ebuild:
29     Bumping to include ppc build fix and 2.6.16.3
30 tsunam 1.84
31     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
32     hardened-sources-2.6.14-r6.ebuild:
33     Stable on x86; bug #127718
34 johnm 1.83
35     *hardened-sources-2.6.16 (31 Mar 2006)
36    
37     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
38     +hardened-sources-2.6.16.ebuild:
39     Bumping to new version of grsec, and kernel base. New squashfs. Based on
40     2.6.16.1
41 cryos 1.82
42     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
43     hardened-sources-2.6.14-r6.ebuild:
44     Stable on amd64, bug 127718.
45 nixnut 1.81
46     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
47     Stable on ppc. Bug #127718
48 johnm 1.80
49     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
50     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
51     -hardened-sources-2.6.14-r4.ebuild:
52     Cleanup.
53 johnm 1.79
54     *hardened-sources-2.6.14-r6 (15 Mar 2006)
55    
56     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
57     +hardened-sources-2.6.14-r6.ebuild:
58     Fixes grsec policy recreation bug and adds a
59     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
60 solar 1.78
61     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
62     - stable on x86
63 hansmi 1.77
64     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
65     hardened-sources-2.6.14-r5.ebuild:
66     Stable on ppc.
67 johnm 1.76
68     *hardened-sources-2.6.14-r5 (01 Feb 2006)
69    
70     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
71     +hardened-sources-2.6.14-r5.ebuild:
72     fixing every known exploit
73 solar 1.75
74     *hardened-sources-2.4.32-r2 (26 Jan 2006)
75    
76     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
77     +hardened-sources-2.4.32-r2.ebuild:
78     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
79 solar 1.74
80     *hardened-sources-2.6.14-r4 (12 Jan 2006)
81    
82     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
83     - version bump for new genpatches which fix up a few sec holes
84 solar 1.73
85     *hardened-sources-2.4.32-r1 (05 Jan 2006)
86    
87     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
88     - revision bump to add misc vital linux kernel security patches.
89 johnm 1.72
90     *hardened-sources-2.6.14-r3 (30 Dec 2005)
91    
92     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
93     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
94     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
95 johnm 1.71
96     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
97     hardened-sources-2.6.14-r2.ebuild:
98     making x86 & amd64 stable following testing.
99 johnm 1.70
100     *hardened-sources-2.6.14-r2 (27 Dec 2005)
101    
102     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
103     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
104     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
105     network hooks.
106 johnm 1.69
107     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
108     hardened-sources-2.6.14-r1.ebuild:
109     bumping to stable early for sec fix on x86 & amd64
110 johnm 1.68
111     *hardened-sources-2.6.14-r1 (05 Dec 2005)
112    
113     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
114     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
115     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
116 solar 1.67
117     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
118     - stable on x86 security bug #114227 CAN-2005-3257
119 kang 1.66
120     *hardened-sources-2.4.32 (19 Nov 2005)
121    
122     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
123     +hardened-sources-2.4.32.ebuild:
124     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
125     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
126     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
127     rsbac >> /etc/portage/package.use)
128 johnm 1.65
129     *hardened-sources-2.6.14 (14 Nov 2005)
130    
131     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
132     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
133     Bumping 2.6 series to 2.6.14.2
134 johnm 1.64
135     *hardened-sources-2.6.13-r2 (20 Oct 2005)
136    
137     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
138     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
139     +hardened-sources-2.6.13-r2.ebuild:
140     Fixes minor build error in ppc.
141 johnm 1.63
142     *hardened-sources-2.6.13-r1 (17 Oct 2005)
143    
144     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
145     +hardened-sources-2.6.13-r1.ebuild:
146     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
147     2.6.13.4, fixes some major amd64 stability problems.
148 johnm 1.62
149     *hardened-sources-2.6.13 (16 Sep 2005)
150    
151     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
152     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
153     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
154     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
155     users should test this thoroughly.
156 solar 1.61
157     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
158     - stable on x86
159 johnm 1.60
160     *hardened-sources-2.6.11-r15 (27 Jun 2005)
161    
162     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
163     +hardened-sources-2.6.11-r15.ebuild:
164     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
165     grsec redefining curr_ip struct.
166 solar 1.59
167     *hardened-sources-2.4.31 (20 Jun 2005)
168    
169     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
170     initial import of 2.4.31 tree
171 johnm 1.58
172     *hardened-sources-2.6.11-r14 (14 Jun 2005)
173    
174     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
175     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
176     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
177     naming scheme to abide by genpatches
178 johnm 1.57
179     *hardened-sources-2.6.11-r13 (18 May 2005)
180    
181     18 May 2005; John Mylchreest <johnm@gentoo.org>
182     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
183     Managed to mangle the Makefile patch from grsec, to miss out the grsec
184     target. sorry about that. Fixes bug #93022
185 johnm 1.56
186     *hardened-sources-2.6.11-r12 (17 May 2005)
187    
188     17 May 2005; John Mylchreest <johnm@gentoo.org>
189     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
190     +hardened-sources-2.6.11-r12.ebuild:
191     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
192     merges in genpatches-base
193 johnm 1.55
194     *hardened-sources-2.6.11-r12 (17 May 2005)
195    
196     17 May 2005; John Mylchreest <johnm@gentoo.org>
197     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
198     +hardened-sources-2.6.11-r12.ebuild:
199     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
200     merges in genpatches-base
201 solar 1.54
202     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
203     -files/2.4.27-cmdline-race.patch,
204     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
205     -files/2.4.28-grsec-binfmt_a.out.patch,
206     -files/2.4.28-grsec-cmdline-race.patch,
207     -files/2.4.28-selinux-binfmt_a.out.patch,
208     -files/2.4.28-selinux-cmdline-race.patch,
209     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
210     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
211     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
212     cleanup..
213 solar 1.53
214     *hardened-sources-2.4.30-r1 (21 Apr 2005)
215    
216     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
217     - disable aout by default
218 solar 1.52
219     *hardened-sources-2.4.30 (18 Apr 2005)
220    
221     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
222     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
223     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
224     use
225 tocharian 1.50
226 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
227    
228     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
229     +hardened-sources-2.4.29.ebuild:
230     New hardened-patches-2.4-29.0 patchball.
231     Removed SELinux support, upgraded GRSecurity to 2.1.4.
232    
233     *hardened-sources-2.4.28-r5 (06 Mar 2005)
234    
235     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
236     +hardened-sources-2.4.28-r5.ebuild:
237     Added a fix for a PaX vulnerability.
238    
239     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
240 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
241     Stable on x86
242 solar 1.49
243     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
244     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
245     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
246     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
247     - fixed/added RDEPEND= in all kernel-2 ebuilds
248 tocharian 1.48
249     *hardened-sources-2.4.28-r4 (21 Jan 2005)
250    
251     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
252     +hardened-sources-2.4.28-r4.ebuild:
253     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
254     backport of neighbour hash updates.
255 tocharian 1.47
256     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
257     hardened-sources-2.4.28-r3.ebuild:
258     Stable on x86
259 tseng 1.46
260     *hardened-sources-2.6.10-r3 (20 Jan 2005)
261    
262     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
263     +hardened-sources-2.6.10-r3.ebuild:
264     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
265     in 2005.0
266 tocharian 1.45
267     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
268     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
269     hardened-sources-2.4.28-r2.ebuild:
270     Mark stable on x86
271 tocharian 1.44
272     *hardened-sources-2.4.28-r3 (17 Jan 2005)
273    
274     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
275     +hardened-sources-2.4.28-r3.ebuild:
276     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
277 tocharian 1.43
278     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
279     hardened-sources-2.4.28.ebuild:
280     Mark stable on x86.
281 tocharian 1.42
282     *hardened-sources-2.4.28-r2 (13 Jan 2005)
283    
284     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
285     +hardened-sources-2.4.28-r2.ebuild:
286     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
287     Mazinger for grsecurity patches as well.
288 plasmaroo 1.41
289     *hardened-sources-2.4.28-r1 (23 Dec 2004)
290    
291     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
292     Security bump. Thank tocharian for rolling a new patchset...
293 solar 1.40
294     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
295     +files/2.4.28-grsec-cmdline-race.patch,
296     +files/2.4.28-selinux-binfmt_a.out.patch,
297     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
298     - Round up remaining security patches that appear to be missing in 2.4.28. -
299     PaX standalone updated to current. hgpv=28.1
300 solar 1.39
301     *hardened-sources-2.4.28 (28 Nov 2004)
302    
303     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
304     security bump. Thank tocharian for rolling a new patchset
305 scox 1.31
306 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
307    
308     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
309     +hardened-sources-2.4.27-r3.ebuild:
310     Applies the new 2.4-27.2 patchball which updates
311     GRSecurity to the 2.0.1 version.
312    
313 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
314    
315     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
316     +hardened-sources-2.4.27-r2.ebuild:
317     Version bump.
318     This version uses the new 2.4-27.1 patchball which updates
319     both the SELinux PaX hooks patch and the SELinux headers.
320    
321 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
322    
323     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
324     +hardened-sources-2.4.27-r1.ebuild,
325     -hardened-sources-2.4.27.ebuild,
326     +files/2.4.27-cmdline-race.patch:
327     Version bump, fix for cmdline race. See bug #59905.
328    
329     *hardened-sources-2.4.26-r6 (09 Aug 2004)
330    
331     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
332     +hardened-sources-2.4.26-r6.ebuild,
333     -hardened-sources-2.4.26-r5.ebuild,
334     -hardened-sources-2.4.26-r4.ebuild,
335     +files/2.4.26-cmdline-race.patch:
336     Version bump, fix for cmdline race. See bug #59905.
337    
338 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
339    
340     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
341     +hardened-sources-2.4.27.ebuild,
342     +files/2.4.27-CAN-2004-0394.patch:
343     Ported the patchball to the 2.4.27 kernel version.
344    
345 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
346    
347     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
348     +hardened-sources-2.4.26-r5.ebuild:
349 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
350 scox 1.34 It adds the following features:
351     - Squashfs
352     - Ebtables
353     - Netdev random (core+drivers)
354     - Watchdog Timer (WDT) fix.
355    
356 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
357    
358     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
359     +hardened-sources-2.4.26-r4.ebuild,
360     +files/2.4.26-CAN-2004-0415.patch,
361     -hardened-sources-2.4.26-3:
362     Version bump, fix for CAN 0415, see bug #59378.
363    
364 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
365    
366     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
367     +hardened-sources-2.4.26-r3.ebuild,
368     +files/2.4.26-CAN-2004-0497.patch,
369     -hardened-sources-2.4.26-r2.ebuild:
370     Version bump, fixed CAN 0497, see bug #56171.
371    
372 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
373    
374     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
375 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
376 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
377     +files/2.4.26-CAN-2004-0535.patch,
378     -hardened-sources-2.4.26-r1.ebuild:
379     Fixes for both CAN 0495 and 0535, see bug #54976
380 pvdabeel 1.27
381 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
382     hardened-sources-2.4.26-r1.ebuild:
383     QA - fix use invocation
384 scox 1.28
385     *hardened-sources-2.4.26-r1 (22 June 2004)
386    
387     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
388     +hardened-sources-2.4.26-r1.ebuild,
389     +files/2.4.26-CAN-2004-0394.patch,
390     +files/2.4.26-signal-race.patch,
391     -hardened-sources-2.4.26.ebuild,
392     -hardened-sources-2.4.24-r3.ebuild:
393     Version bump for the CAN-2004-0394 issue and bug #53804
394     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
395    
396    
397 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
398     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
399     Masked hardened-sources-2.4.26.ebuild broken for ppc
400    
401     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
402     hardened-sources-2.4.24-r3.ebuild:
403     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
404 plasmaroo 1.25
405 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
406    
407     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
408     +hardened-sources-2.4.26.ebuild:
409     Updated hardened-sources for the 2.4.26 kernel
410     Removed broken components, updated almost everything.
411    
412 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
413    
414     17 Apr 2004; <plasmaroo@gentoo.org>
415     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
416     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
417     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
418     +hardened-sources-2.4.24-r3.ebuild:
419     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
420     vulnerabilities. Old revisions removed.
421 plasmaroo 1.24
422     *hardened-sources-2.4.24-r2 (15 Apr 2004)
423    
424     15 Apr 2004; <plasmaroo@gentoo.org>
425     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
426     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
427     Version bump for the CAN-2004-0109 issue; bug #47881.
428 aliz 1.23
429     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
430     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
431     Add eutils to inherit.
432 plasmaroo 1.22
433     *hardened-sources-2.4.24-r1 (19 Feb 2004)
434    
435     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
436     files/hardened-sources-2.4.24.munmap.patch:
437     Added the patch for the mremap/munmap vulnerability. Bug #42024.
438 scox 1.19
439 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
440 scox 1.26
441 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
442     hardened-sources-2.4.24.ebuild:
443     Version bump, updated most of the components.
444     This release includes the following:
445    
446     - Hardened security
447     - Netfilter patch-o-matic 20031219
448     - FreeSWAN 2.04 & x509 1.4.8
449     - EVMS 2.2.2
450     - XFS 1.3.1
451     - cryptoloop jari
452     - grsecurity 2.0-rc4
453     - SELinux
454     - PaX 200402060000
455     - PaX Obscurity 200308302223
456     - Others...
457    
458     Neither -ck nor systrace are included anymore.
459    
460 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
461    
462     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
463     hardened-sources-2.4.22-r2.ebuild:
464 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
465 scox 1.19
466     *hardened-sources-2.4.22-r1 (02 Dec 2003)
467 iggy 1.17
468     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
469 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
470 iggy 1.16
471     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
472 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
473     Version bump for the 'do_brk' vulnerability.
474 iggy 1.15
475     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
476     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
477     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
478     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
479 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
480 frogger 1.14
481     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
482     hardened-sources-2.4.22.ebuild:
483 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
484     components. These are no longer handled in the kernel
485     so this code was not necessary.
486 frogger 1.13
487     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
488     New 2.4.22 based hardened-sources thanks to
489     Phil West <p.west@computer.org>.
490    
491     These sources include:
492 plasmaroo 1.18 - New SELinux API
493     - Updated CK-base
494     - Updated GRSec
495     - Systrace
496     - SuperFreeS/WAN 1.99.8
497     - Propolice kernel build support
498     - EVMS
499     - Other various security related patches
500 frogger 1.11
501 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
502    
503     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
504     Updated hardened-sources based on the 2.4.21 Linux kernel.
505     This includes updates to most major components such as:
506 plasmaroo 1.18 - ck-base-0306300059
507     - selinux-2.4-2003071106
508     - grsecurity-2.0-rc1
509     - Updated IPTables patch-o-matic
510     - Updated SuperFreeS/WAN
511    
512 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
513     updated patch set ready for the 2.4.21 based kernel.
514    
515 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
516     Initial import of hardened-sources-2.4.20-r4. This revision
517     includes only a few changes, but one of these is an important
518     security fix. It is recommended all users of hardened-sources
519     upgrade to this release.
520 plasmaroo 1.18
521 frogger 1.11 - ioperm bug fix
522     - fixed compilation failure when building without GRSec
523 plasmaroo 1.18
524 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
525     due to time constraints, but is planned for inclusion in the near
526     future.
527 msterret 1.10
528     *hardened-sources-2.4.20-r2 (12 Jun 2003)
529    
530     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
531     hardened-sources-2.4.20-r3.ebuild:
532 plasmaroo 1.18 Add Header...
533 frogger 1.9
534     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
535     hardened-sources-2.4.20-r3.ebuild:
536     Removed warnings from ebuild. This kernel should be safe to
537     use at this point.
538 frogger 1.8
539     *hardened-sources-2.4.20-r3 (08 Jun 2003)
540    
541     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
542     hardened-sources-2.4.20-r3.ebuild:
543     New revision. Includes the following changes over -r2:
544 plasmaroo 1.18
545 frogger 1.8 - ck7-base (O(1), preempt, low latency)
546     - Super FreeS/WAN 1.99.7rc2
547     - PaX for the LSM/SELinux branch
548     - GRSecurity 2.0-pre4 (role based access control)
549     - Systrace 1.3
550     - EXT3 fixes
551     - EVMS 2.0.1
552     - GCC 3.1+ compile optimizations
553     - ProPolice kernel build support
554     - Hashing table security fixes
555 frogger 1.3
556     *hardened-sources-2.4.20-r1 (09 Apr 2003)
557 frogger 1.7
558     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
559     Initial import of hardened-sources-r2. This new
560     ebuild includes many new performance and security
561     related patches. As in -r1, it will patch in
562     LSM/SELinux if "selinux" is in USE, otherwise it
563     will patch in GRSecurity. The following patches
564     are included in this revision:
565 plasmaroo 1.18
566 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
567     (pulled from the base CK patch)
568     - ptrace exploit patch for the LSM kernel
569     (the GRSec patch already fixes this)
570     - LSM 2.4-2003040709
571     - SELinux 2.4-2003040709
572     - Systrace v1.2
573     - IPTables patch-o-matic base patches - 20030107
574     - CryptoAPI 2.4.20.1 w/ loop-jari patch
575     - Super FreeS/WAN 1.99.6.1
576     - GRSecurity 1.9.9g
577     - MPPE
578     - EXT3 data journal fix
579     - CIPE 1.5.4
580 frogger 1.6
581     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
582     hardened-sources-2.4.20-r1.ebuild, manifest:
583 plasmaroo 1.18 Updated to install flask components correctly for selinux.
584 frogger 1.5
585     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
586     hardened-sources-2.4.20-r1.ebuild:
587     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
588     is patched in instead. Ptrace patches for selinux have also been added. In
589     either case, systrace support will be patched in as well.
590 frogger 1.3
591     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
592     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
593 plasmaroo 1.18 Revision bump for new sources.
594 frogger 1.4
595 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
596 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
597 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
598 method 1.1
599 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
600    
601 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
602     hardened-sources-2.4.20.ebuild:
603 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20