/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.97 - (hide annotations) (download)
Fri Apr 28 15:18:32 2006 UTC (8 years, 5 months ago) by johnm
Branch: MAIN
Changes since 1.96: +6 -1 lines
fix x86_64 build problem, this will delay the digest issue again for a short while but it will sort itself out
(Portage version: 2.1_pre9-r4)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 johnm 1.97 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.96 2006/04/28 10:12:36 johnm Exp $
4    
5     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
6     hardened-sources-2.6.14-r8.ebuild:
7     fix x86_64 build problem, this will delay the digest issue again for a short
8     while but it will sort itself out
9 johnm 1.96
10     28 Apr 2006; John Mylchreest <johnm@gentoo.org>
11     hardened-sources-2.6.14-r8.ebuild:
12     bump hardened patchset
13 antarus 1.94
14     27 Apr 2006; Alec Warner <antarus@gentoo.org>
15     files/digest-hardened-sources-2.4.32-r2,
16     files/digest-hardened-sources-2.4.32-r3,
17     files/digest-hardened-sources-2.6.14-r8, Manifest:
18     Fixing duff SHA256 digests: Bug # 131293
19 johnm 1.93
20 johnm 1.95 *hardened-sources-2.6.16-r5 (27 Apr 2006)
21    
22     27 Apr 2006; John Mylchreest <johnm@gentoo.org>
23     -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
24     -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
25     stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
26     cleanup of old uneccessary sources
27    
28 johnm 1.93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
29     fix digest
30 johnm 1.92
31     *hardened-sources-2.6.14-r8 (20 Apr 2006)
32    
33     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
34     +hardened-sources-2.6.14-r8.ebuild:
35     fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
36 johnm 1.91
37     20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
38     Turning on gpg-signing again, and recomitting
39 johnm 1.90
40     *hardened-sources-2.6.16-r4 (20 Apr 2006)
41    
42     20 Apr 2006; John Mylchreest <johnm@gentoo.org>
43     -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
44     +hardened-sources-2.6.16-r4.ebuild:
45     Fix numerous security vulns
46 solar 1.89
47     *hardened-sources-2.4.32-r3 (16 Apr 2006)
48    
49     16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
50     -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
51     +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
52     - security bump for bug #112791. Removed old ebuilds
53 johnm 1.88
54     *hardened-sources-2.6.16-r3 (15 Apr 2006)
55    
56     15 Apr 2006; John Mylchreest <johnm@gentoo.org>
57     +hardened-sources-2.6.16-r3.ebuild:
58     Removing silly localversion which I missed
59 johnm 1.87
60     *hardened-sources-2.6.14-r7 (14 Apr 2006)
61    
62     14 Apr 2006; John Mylchreest <johnm@gentoo.org>
63     -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
64     Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
65 johnm 1.86
66     *hardened-sources-2.6.16-r2 (13 Apr 2006)
67    
68     13 Apr 2006; John Mylchreest <johnm@gentoo.org>
69     -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
70     +hardened-sources-2.6.16-r2.ebuild:
71     Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
72     labels, dropping USERGROUP define fixes, since these were merged mainstream.
73 johnm 1.85
74     *hardened-sources-2.6.16-r1 (11 Apr 2006)
75    
76     11 Apr 2006; John Mylchreest <johnm@gentoo.org>
77     +hardened-sources-2.6.16-r1.ebuild:
78     Bumping to include ppc build fix and 2.6.16.3
79 tsunam 1.84
80     06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
81     hardened-sources-2.6.14-r6.ebuild:
82     Stable on x86; bug #127718
83 johnm 1.83
84     *hardened-sources-2.6.16 (31 Mar 2006)
85    
86     31 Mar 2006; John Mylchreest <johnm@gentoo.org>
87     +hardened-sources-2.6.16.ebuild:
88     Bumping to new version of grsec, and kernel base. New squashfs. Based on
89     2.6.16.1
90 cryos 1.82
91     30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
92     hardened-sources-2.6.14-r6.ebuild:
93     Stable on amd64, bug 127718.
94 nixnut 1.81
95     28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
96     Stable on ppc. Bug #127718
97 johnm 1.80
98     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
99     -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
100     -hardened-sources-2.6.14-r4.ebuild:
101     Cleanup.
102 johnm 1.79
103     *hardened-sources-2.6.14-r6 (15 Mar 2006)
104    
105     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
106     +hardened-sources-2.6.14-r6.ebuild:
107     Fixes grsec policy recreation bug and adds a
108     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
109 solar 1.78
110     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
111     - stable on x86
112 hansmi 1.77
113     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
114     hardened-sources-2.6.14-r5.ebuild:
115     Stable on ppc.
116 johnm 1.76
117     *hardened-sources-2.6.14-r5 (01 Feb 2006)
118    
119     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
120     +hardened-sources-2.6.14-r5.ebuild:
121     fixing every known exploit
122 solar 1.75
123     *hardened-sources-2.4.32-r2 (26 Jan 2006)
124    
125     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
126     +hardened-sources-2.4.32-r2.ebuild:
127     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
128 solar 1.74
129     *hardened-sources-2.6.14-r4 (12 Jan 2006)
130    
131     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
132     - version bump for new genpatches which fix up a few sec holes
133 solar 1.73
134     *hardened-sources-2.4.32-r1 (05 Jan 2006)
135    
136     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
137     - revision bump to add misc vital linux kernel security patches.
138 johnm 1.72
139     *hardened-sources-2.6.14-r3 (30 Dec 2005)
140    
141     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
142     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
143     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
144 johnm 1.71
145     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
146     hardened-sources-2.6.14-r2.ebuild:
147     making x86 & amd64 stable following testing.
148 johnm 1.70
149     *hardened-sources-2.6.14-r2 (27 Dec 2005)
150    
151     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
152     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
153     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
154     network hooks.
155 johnm 1.69
156     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
157     hardened-sources-2.6.14-r1.ebuild:
158     bumping to stable early for sec fix on x86 & amd64
159 johnm 1.68
160     *hardened-sources-2.6.14-r1 (05 Dec 2005)
161    
162     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
163     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
164     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
165 solar 1.67
166     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
167     - stable on x86 security bug #114227 CAN-2005-3257
168 kang 1.66
169     *hardened-sources-2.4.32 (19 Nov 2005)
170    
171     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
172     +hardened-sources-2.4.32.ebuild:
173     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
174     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
175     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
176     rsbac >> /etc/portage/package.use)
177 johnm 1.65
178     *hardened-sources-2.6.14 (14 Nov 2005)
179    
180     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
181     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
182     Bumping 2.6 series to 2.6.14.2
183 johnm 1.64
184     *hardened-sources-2.6.13-r2 (20 Oct 2005)
185    
186     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
187     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
188     +hardened-sources-2.6.13-r2.ebuild:
189     Fixes minor build error in ppc.
190 johnm 1.63
191     *hardened-sources-2.6.13-r1 (17 Oct 2005)
192    
193     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
194     +hardened-sources-2.6.13-r1.ebuild:
195     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
196     2.6.13.4, fixes some major amd64 stability problems.
197 johnm 1.62
198     *hardened-sources-2.6.13 (16 Sep 2005)
199    
200     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
201     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
202     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
203     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
204     users should test this thoroughly.
205 solar 1.61
206     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
207     - stable on x86
208 johnm 1.60
209     *hardened-sources-2.6.11-r15 (27 Jun 2005)
210    
211     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
212     +hardened-sources-2.6.11-r15.ebuild:
213     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
214     grsec redefining curr_ip struct.
215 solar 1.59
216     *hardened-sources-2.4.31 (20 Jun 2005)
217    
218     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
219     initial import of 2.4.31 tree
220 johnm 1.58
221     *hardened-sources-2.6.11-r14 (14 Jun 2005)
222    
223     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
224     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
225     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
226     naming scheme to abide by genpatches
227 johnm 1.57
228     *hardened-sources-2.6.11-r13 (18 May 2005)
229    
230     18 May 2005; John Mylchreest <johnm@gentoo.org>
231     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
232     Managed to mangle the Makefile patch from grsec, to miss out the grsec
233     target. sorry about that. Fixes bug #93022
234 johnm 1.56
235     *hardened-sources-2.6.11-r12 (17 May 2005)
236    
237     17 May 2005; John Mylchreest <johnm@gentoo.org>
238     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
239     +hardened-sources-2.6.11-r12.ebuild:
240     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
241     merges in genpatches-base
242 johnm 1.55
243     *hardened-sources-2.6.11-r12 (17 May 2005)
244    
245     17 May 2005; John Mylchreest <johnm@gentoo.org>
246     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
247     +hardened-sources-2.6.11-r12.ebuild:
248     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
249     merges in genpatches-base
250 solar 1.54
251     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
252     -files/2.4.27-cmdline-race.patch,
253     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
254     -files/2.4.28-grsec-binfmt_a.out.patch,
255     -files/2.4.28-grsec-cmdline-race.patch,
256     -files/2.4.28-selinux-binfmt_a.out.patch,
257     -files/2.4.28-selinux-cmdline-race.patch,
258     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
259     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
260     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
261     cleanup..
262 solar 1.53
263     *hardened-sources-2.4.30-r1 (21 Apr 2005)
264    
265     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
266     - disable aout by default
267 solar 1.52
268     *hardened-sources-2.4.30 (18 Apr 2005)
269    
270     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
271     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
272     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
273     use
274 tocharian 1.50
275 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
276    
277     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
278     +hardened-sources-2.4.29.ebuild:
279     New hardened-patches-2.4-29.0 patchball.
280     Removed SELinux support, upgraded GRSecurity to 2.1.4.
281    
282     *hardened-sources-2.4.28-r5 (06 Mar 2005)
283    
284     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
285     +hardened-sources-2.4.28-r5.ebuild:
286     Added a fix for a PaX vulnerability.
287    
288     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
289 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
290     Stable on x86
291 solar 1.49
292     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
293     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
294     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
295     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
296     - fixed/added RDEPEND= in all kernel-2 ebuilds
297 tocharian 1.48
298     *hardened-sources-2.4.28-r4 (21 Jan 2005)
299    
300     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
301     +hardened-sources-2.4.28-r4.ebuild:
302     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
303     backport of neighbour hash updates.
304 tocharian 1.47
305     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
306     hardened-sources-2.4.28-r3.ebuild:
307     Stable on x86
308 tseng 1.46
309     *hardened-sources-2.6.10-r3 (20 Jan 2005)
310    
311     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
312     +hardened-sources-2.6.10-r3.ebuild:
313     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
314     in 2005.0
315 tocharian 1.45
316     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
317     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
318     hardened-sources-2.4.28-r2.ebuild:
319     Mark stable on x86
320 tocharian 1.44
321     *hardened-sources-2.4.28-r3 (17 Jan 2005)
322    
323     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
324     +hardened-sources-2.4.28-r3.ebuild:
325     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
326 tocharian 1.43
327     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
328     hardened-sources-2.4.28.ebuild:
329     Mark stable on x86.
330 tocharian 1.42
331     *hardened-sources-2.4.28-r2 (13 Jan 2005)
332    
333     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
334     +hardened-sources-2.4.28-r2.ebuild:
335     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
336     Mazinger for grsecurity patches as well.
337 plasmaroo 1.41
338     *hardened-sources-2.4.28-r1 (23 Dec 2004)
339    
340     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
341     Security bump. Thank tocharian for rolling a new patchset...
342 solar 1.40
343     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
344     +files/2.4.28-grsec-cmdline-race.patch,
345     +files/2.4.28-selinux-binfmt_a.out.patch,
346     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
347     - Round up remaining security patches that appear to be missing in 2.4.28. -
348     PaX standalone updated to current. hgpv=28.1
349 solar 1.39
350     *hardened-sources-2.4.28 (28 Nov 2004)
351    
352     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
353     security bump. Thank tocharian for rolling a new patchset
354 scox 1.31
355 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
356    
357     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
358     +hardened-sources-2.4.27-r3.ebuild:
359     Applies the new 2.4-27.2 patchball which updates
360     GRSecurity to the 2.0.1 version.
361    
362 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
363    
364     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
365     +hardened-sources-2.4.27-r2.ebuild:
366     Version bump.
367     This version uses the new 2.4-27.1 patchball which updates
368     both the SELinux PaX hooks patch and the SELinux headers.
369    
370 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
371    
372     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
373     +hardened-sources-2.4.27-r1.ebuild,
374     -hardened-sources-2.4.27.ebuild,
375     +files/2.4.27-cmdline-race.patch:
376     Version bump, fix for cmdline race. See bug #59905.
377    
378     *hardened-sources-2.4.26-r6 (09 Aug 2004)
379    
380     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
381     +hardened-sources-2.4.26-r6.ebuild,
382     -hardened-sources-2.4.26-r5.ebuild,
383     -hardened-sources-2.4.26-r4.ebuild,
384     +files/2.4.26-cmdline-race.patch:
385     Version bump, fix for cmdline race. See bug #59905.
386    
387 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
388    
389     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
390     +hardened-sources-2.4.27.ebuild,
391     +files/2.4.27-CAN-2004-0394.patch:
392     Ported the patchball to the 2.4.27 kernel version.
393    
394 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
395    
396     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
397     +hardened-sources-2.4.26-r5.ebuild:
398 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
399 scox 1.34 It adds the following features:
400     - Squashfs
401     - Ebtables
402     - Netdev random (core+drivers)
403     - Watchdog Timer (WDT) fix.
404    
405 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
406    
407     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
408     +hardened-sources-2.4.26-r4.ebuild,
409     +files/2.4.26-CAN-2004-0415.patch,
410     -hardened-sources-2.4.26-3:
411     Version bump, fix for CAN 0415, see bug #59378.
412    
413 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
414    
415     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
416     +hardened-sources-2.4.26-r3.ebuild,
417     +files/2.4.26-CAN-2004-0497.patch,
418     -hardened-sources-2.4.26-r2.ebuild:
419     Version bump, fixed CAN 0497, see bug #56171.
420    
421 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
422    
423     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
424 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
425 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
426     +files/2.4.26-CAN-2004-0535.patch,
427     -hardened-sources-2.4.26-r1.ebuild:
428     Fixes for both CAN 0495 and 0535, see bug #54976
429 pvdabeel 1.27
430 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
431     hardened-sources-2.4.26-r1.ebuild:
432     QA - fix use invocation
433 scox 1.28
434     *hardened-sources-2.4.26-r1 (22 June 2004)
435    
436     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
437     +hardened-sources-2.4.26-r1.ebuild,
438     +files/2.4.26-CAN-2004-0394.patch,
439     +files/2.4.26-signal-race.patch,
440     -hardened-sources-2.4.26.ebuild,
441     -hardened-sources-2.4.24-r3.ebuild:
442     Version bump for the CAN-2004-0394 issue and bug #53804
443     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
444    
445    
446 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
447     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
448     Masked hardened-sources-2.4.26.ebuild broken for ppc
449    
450     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
451     hardened-sources-2.4.24-r3.ebuild:
452     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
453 plasmaroo 1.25
454 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
455    
456     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
457     +hardened-sources-2.4.26.ebuild:
458     Updated hardened-sources for the 2.4.26 kernel
459     Removed broken components, updated almost everything.
460    
461 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
462    
463     17 Apr 2004; <plasmaroo@gentoo.org>
464     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
465     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
466     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
467     +hardened-sources-2.4.24-r3.ebuild:
468     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
469     vulnerabilities. Old revisions removed.
470 plasmaroo 1.24
471     *hardened-sources-2.4.24-r2 (15 Apr 2004)
472    
473     15 Apr 2004; <plasmaroo@gentoo.org>
474     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
475     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
476     Version bump for the CAN-2004-0109 issue; bug #47881.
477 aliz 1.23
478     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
479     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
480     Add eutils to inherit.
481 plasmaroo 1.22
482     *hardened-sources-2.4.24-r1 (19 Feb 2004)
483    
484     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
485     files/hardened-sources-2.4.24.munmap.patch:
486     Added the patch for the mremap/munmap vulnerability. Bug #42024.
487 scox 1.19
488 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
489 scox 1.26
490 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
491     hardened-sources-2.4.24.ebuild:
492     Version bump, updated most of the components.
493     This release includes the following:
494    
495     - Hardened security
496     - Netfilter patch-o-matic 20031219
497     - FreeSWAN 2.04 & x509 1.4.8
498     - EVMS 2.2.2
499     - XFS 1.3.1
500     - cryptoloop jari
501     - grsecurity 2.0-rc4
502     - SELinux
503     - PaX 200402060000
504     - PaX Obscurity 200308302223
505     - Others...
506    
507     Neither -ck nor systrace are included anymore.
508    
509 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
510    
511     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
512     hardened-sources-2.4.22-r2.ebuild:
513 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
514 scox 1.19
515     *hardened-sources-2.4.22-r1 (02 Dec 2003)
516 iggy 1.17
517     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
518 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
519 iggy 1.16
520     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
521 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
522     Version bump for the 'do_brk' vulnerability.
523 iggy 1.15
524     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
525     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
526     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
527     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
528 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
529 frogger 1.14
530     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
531     hardened-sources-2.4.22.ebuild:
532 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
533     components. These are no longer handled in the kernel
534     so this code was not necessary.
535 frogger 1.13
536     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
537     New 2.4.22 based hardened-sources thanks to
538     Phil West <p.west@computer.org>.
539    
540     These sources include:
541 plasmaroo 1.18 - New SELinux API
542     - Updated CK-base
543     - Updated GRSec
544     - Systrace
545     - SuperFreeS/WAN 1.99.8
546     - Propolice kernel build support
547     - EVMS
548     - Other various security related patches
549 frogger 1.11
550 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
551    
552     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
553     Updated hardened-sources based on the 2.4.21 Linux kernel.
554     This includes updates to most major components such as:
555 plasmaroo 1.18 - ck-base-0306300059
556     - selinux-2.4-2003071106
557     - grsecurity-2.0-rc1
558     - Updated IPTables patch-o-matic
559     - Updated SuperFreeS/WAN
560    
561 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
562     updated patch set ready for the 2.4.21 based kernel.
563    
564 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
565     Initial import of hardened-sources-2.4.20-r4. This revision
566     includes only a few changes, but one of these is an important
567     security fix. It is recommended all users of hardened-sources
568     upgrade to this release.
569 plasmaroo 1.18
570 frogger 1.11 - ioperm bug fix
571     - fixed compilation failure when building without GRSec
572 plasmaroo 1.18
573 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
574     due to time constraints, but is planned for inclusion in the near
575     future.
576 msterret 1.10
577     *hardened-sources-2.4.20-r2 (12 Jun 2003)
578    
579     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
580     hardened-sources-2.4.20-r3.ebuild:
581 plasmaroo 1.18 Add Header...
582 frogger 1.9
583     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
584     hardened-sources-2.4.20-r3.ebuild:
585     Removed warnings from ebuild. This kernel should be safe to
586     use at this point.
587 frogger 1.8
588     *hardened-sources-2.4.20-r3 (08 Jun 2003)
589    
590     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
591     hardened-sources-2.4.20-r3.ebuild:
592     New revision. Includes the following changes over -r2:
593 plasmaroo 1.18
594 frogger 1.8 - ck7-base (O(1), preempt, low latency)
595     - Super FreeS/WAN 1.99.7rc2
596     - PaX for the LSM/SELinux branch
597     - GRSecurity 2.0-pre4 (role based access control)
598     - Systrace 1.3
599     - EXT3 fixes
600     - EVMS 2.0.1
601     - GCC 3.1+ compile optimizations
602     - ProPolice kernel build support
603     - Hashing table security fixes
604 frogger 1.3
605     *hardened-sources-2.4.20-r1 (09 Apr 2003)
606 frogger 1.7
607     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
608     Initial import of hardened-sources-r2. This new
609     ebuild includes many new performance and security
610     related patches. As in -r1, it will patch in
611     LSM/SELinux if "selinux" is in USE, otherwise it
612     will patch in GRSecurity. The following patches
613     are included in this revision:
614 plasmaroo 1.18
615 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
616     (pulled from the base CK patch)
617     - ptrace exploit patch for the LSM kernel
618     (the GRSec patch already fixes this)
619     - LSM 2.4-2003040709
620     - SELinux 2.4-2003040709
621     - Systrace v1.2
622     - IPTables patch-o-matic base patches - 20030107
623     - CryptoAPI 2.4.20.1 w/ loop-jari patch
624     - Super FreeS/WAN 1.99.6.1
625     - GRSecurity 1.9.9g
626     - MPPE
627     - EXT3 data journal fix
628     - CIPE 1.5.4
629 frogger 1.6
630     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
631     hardened-sources-2.4.20-r1.ebuild, manifest:
632 plasmaroo 1.18 Updated to install flask components correctly for selinux.
633 frogger 1.5
634     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
635     hardened-sources-2.4.20-r1.ebuild:
636     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
637     is patched in instead. Ptrace patches for selinux have also been added. In
638     either case, systrace support will be patched in as well.
639 frogger 1.3
640     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
641     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
642 plasmaroo 1.18 Revision bump for new sources.
643 frogger 1.4
644 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
645 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
646 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
647 method 1.1
648 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
649    
650 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
651     hardened-sources-2.4.20.ebuild:
652 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20