/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog

Diff of /sys-kernel/hardened-sources/ChangeLog

Parent Directory | Revision Log | View Patch Patch

 Legend:



Removed from v.1.17
 


changed lines


 
Added in v.1.18
 Legend:



Removed from v.1.17
 


changed lines


 
Added in v.1.18
-Removed from v.1.17
+Added in v.1.18

	ViewVC Help
Powered by ViewVC 1.1.13

Revision 1.17		Revision 1.18
1	# ChangeLog for sys-kernel/hardened-sources	1	# ChangeLog for sys-kernel/hardened-sources
2	# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2	2	# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
3	# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.17 2003/12/02 23:14:31 iggy Exp $	3	# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.18 2003/12/04 23:04:03 plasmaroo Exp $
4		4
5	02 Dec 2003; Brian Jackson <iggy@gentoo.org>	5	02 Dec 2003; Brian Jackson <iggy@gentoo.org>
6	hardened-sources-2.4.22-r1.ebuild:	6	hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
7	fix up a little booboo from earlier
8		7
9	*hardened-sources-2.4.22-r1 (02 Dec 2003)	8	*hardened-sources-2.4.22-r1 (02 Dec 2003)
10		9
11	02 Dec 2003; Brian Jackson <iggy@gentoo.org>	10	02 Dec 2003; Brian Jackson <iggy@gentoo.org>
12	hardened-sources-2.4.22-r1.ebuild:	11	hardened-sources-2.4.22-r1.ebuild:
13	version bump for do_brk vuln	12	Version bump for the 'do_brk' vulnerability.
14		13
15	01 Dec 2003; Brian Jackson <iggy@gentoo.org>	14	01 Dec 2003; Brian Jackson <iggy@gentoo.org>
16	hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,	15	hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
17	hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,	16	hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
18	hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:	17	hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
19	fix do_brk vuln	18	Fix the 'do_brk' vulnerability.
20		19
21	03 Nov 2003; Matthew Rickard <frogger@gentoo.org>	20	03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
22	hardened-sources-2.4.22.ebuild:	21	hardened-sources-2.4.22.ebuild:
23	-Removed the src_install() portion for SELinux flask	22	- Removed the src_install() portion for SELinux flask
24	components. These are no longer handled in the kernel	23	components. These are no longer handled in the kernel
25	so this code was not necessary.	24	so this code was not necessary.
26		25
27	29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:	26	29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
28	New 2.4.22 based hardened-sources thanks to	27	New 2.4.22 based hardened-sources thanks to
29	Phil West <p.west@computer.org>.	28	Phil West <p.west@computer.org>.
30		29
31	These sources include:	30	These sources include:
32	-New SELinux API	31	- New SELinux API
33	-Updated CK-base	32	- Updated CK-base
34	-Updated GRSec	33	- Updated GRSec
35	-Systrace	34	- Systrace
36	-SuperFreeS/WAN 1.99.8	35	- SuperFreeS/WAN 1.99.8
37	-Propolice kernel build support	36	- Propolice kernel build support
38	-EVMS	37	- EVMS
39	-Other various security related patches	38	- Other various security related patches
40		39
41	*hardened-sources-2.4.21 (14 Sep 2003)	40	*hardened-sources-2.4.21 (14 Sep 2003)
42		41
43	14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:	42	14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
44	Updated hardened-sources based on the 2.4.21 Linux kernel.	43	Updated hardened-sources based on the 2.4.21 Linux kernel.
45	This includes updates to most major components such as:	44	This includes updates to most major components such as:
46	-ck-base-0306300059	45	- ck-base-0306300059
47	-selinux-2.4-2003071106	46	- selinux-2.4-2003071106
48	-grsecurity-2.0-rc1	47	- grsecurity-2.0-rc1
49	-Updated IPTables patch-o-matic	48	- Updated IPTables patch-o-matic
50	-Updated SuperFreeS/WAN	49	- Updated SuperFreeS/WAN
		50
51	Thanks to Phil West <pwest@computer.org> for his work in getting this	51	Thanks to Phil West <pwest@computer.org> for his work in getting this
52	updated patch set ready for the 2.4.21 based kernel.	52	updated patch set ready for the 2.4.21 based kernel.
53		53
54	16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :	54	16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
55	Initial import of hardened-sources-2.4.20-r4. This revision	55	Initial import of hardened-sources-2.4.20-r4. This revision
56	includes only a few changes, but one of these is an important	56	includes only a few changes, but one of these is an important
57	security fix. It is recommended all users of hardened-sources	57	security fix. It is recommended all users of hardened-sources
58	upgrade to this release.	58	upgrade to this release.
		59
59	- ioperm bug fix	60	- ioperm bug fix
60	- fixed compilation failure when building without GRSec	61	- fixed compilation failure when building without GRSec
		62
61	SAL (Secure Auditing for Linux) is NOT included in this revision	63	SAL (Secure Auditing for Linux) is NOT included in this revision
62	due to time constraints, but is planned for inclusion in the near	64	due to time constraints, but is planned for inclusion in the near
63	future.	65	future.
64		66
65	*hardened-sources-2.4.20-r2 (12 Jun 2003)	67	*hardened-sources-2.4.20-r2 (12 Jun 2003)
66		68
67	12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,	69	12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
68	hardened-sources-2.4.20-r3.ebuild:	70	hardened-sources-2.4.20-r3.ebuild:
69	add Header	71	Add Header...
70		72
71	08 Jun 2003; Matthew Rickard <frogger@gentoo.org>	73	08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
72	hardened-sources-2.4.20-r3.ebuild:	74	hardened-sources-2.4.20-r3.ebuild:
73	Removed warnings from ebuild. This kernel should be safe to	75	Removed warnings from ebuild. This kernel should be safe to
74	use at this point.	76	use at this point.
…		…
76	*hardened-sources-2.4.20-r3 (08 Jun 2003)	78	*hardened-sources-2.4.20-r3 (08 Jun 2003)
77		79
78	08 Jun 2003; Matthew Rickard <frogger@gentoo.org>	80	08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
79	hardened-sources-2.4.20-r3.ebuild:	81	hardened-sources-2.4.20-r3.ebuild:
80	New revision. Includes the following changes over -r2:	82	New revision. Includes the following changes over -r2:
		83
81	- ck7-base (O(1), preempt, low latency)	84	- ck7-base (O(1), preempt, low latency)
82	- Super FreeS/WAN 1.99.7rc2	85	- Super FreeS/WAN 1.99.7rc2
83	- PaX for the LSM/SELinux branch	86	- PaX for the LSM/SELinux branch
84	- GRSecurity 2.0-pre4 (role based access control)	87	- GRSecurity 2.0-pre4 (role based access control)
85	- Systrace 1.3	88	- Systrace 1.3
…		…
96	ebuild includes many new performance and security	99	ebuild includes many new performance and security
97	related patches. As in -r1, it will patch in	100	related patches. As in -r1, it will patch in
98	LSM/SELinux if "selinux" is in USE, otherwise it	101	LSM/SELinux if "selinux" is in USE, otherwise it
99	will patch in GRSecurity. The following patches	102	will patch in GRSecurity. The following patches
100	are included in this revision:	103	are included in this revision:
		104
101	- O(1) Scheduler, Low Latency, and Preempt	105	- O(1) Scheduler, Low Latency, and Preempt
102	(pulled from the base CK patch)	106	(pulled from the base CK patch)
103	- ptrace exploit patch for the LSM kernel	107	- ptrace exploit patch for the LSM kernel
104	(the GRSec patch already fixes this)	108	(the GRSec patch already fixes this)
105	- LSM 2.4-2003040709	109	- LSM 2.4-2003040709
…		…
113	- EXT3 data journal fix	117	- EXT3 data journal fix
114	- CIPE 1.5.4	118	- CIPE 1.5.4
115		119
116	12 Apr 2003; Matthew Rickard <frogger@gentoo.org>	120	12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
117	hardened-sources-2.4.20-r1.ebuild, manifest:	121	hardened-sources-2.4.20-r1.ebuild, manifest:
118	Updated to install flask components correctly for selinux	122	Updated to install flask components correctly for selinux.
119		123
120	12 Apr 2003; Matthew Rickard <frogger@gentoo.org>	124	12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
121	hardened-sources-2.4.20-r1.ebuild:	125	hardened-sources-2.4.20-r1.ebuild:
122	LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity	126	LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
123	is patched in instead. Ptrace patches for selinux have also been added. In	127	is patched in instead. Ptrace patches for selinux have also been added. In
124	either case, systrace support will be patched in as well.	128	either case, systrace support will be patched in as well.
125		129
126	09 Apr 2003; Matthew Rickard <frogger@gentoo.org>	130	09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
127	hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:	131	hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
128	Revision bump for new sources	132	Revision bump for new sources.
129		133
130	09 Apr 2003; Matthew Rickard <frogger@gentoo.org>	134	09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
131	hardened-sources-2.4.20-r1.ebuild:	135	hardened-sources-2.4.20-r1.ebuild:
132	Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2	136	Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
133		137
134	*hardened-sources-2.4.20 (30 Mar 2003)	138	*hardened-sources-2.4.20 (30 Mar 2003)
135		139
136	30 Mar 2003; Joshua Brindle <method@gentoo.org>	140	30 Mar 2003; Joshua Brindle <method@gentoo.org>
137	hardened-sources-2.4.20.ebuild:	141	hardened-sources-2.4.20.ebuild:
138	initial import, only has systrace support	142	Initial import, only has systrace support.
139		143