/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Diff of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

Revision 1.17 Revision 1.18
1# ChangeLog for sys-kernel/hardened-sources 1# ChangeLog for sys-kernel/hardened-sources
2# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2 2# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
3# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.17 2003/12/02 23:14:31 iggy Exp $ 3# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.18 2003/12/04 23:04:03 plasmaroo Exp $
4 4
5 02 Dec 2003; Brian Jackson <iggy@gentoo.org> 5 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
6 hardened-sources-2.4.22-r1.ebuild: 6 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
7 fix up a little booboo from earlier
8 7
9*hardened-sources-2.4.22-r1 (02 Dec 2003) 8*hardened-sources-2.4.22-r1 (02 Dec 2003)
10 9
11 02 Dec 2003; Brian Jackson <iggy@gentoo.org> 10 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
12 hardened-sources-2.4.22-r1.ebuild: 11 hardened-sources-2.4.22-r1.ebuild:
13 version bump for do_brk vuln 12 Version bump for the 'do_brk' vulnerability.
14 13
15 01 Dec 2003; Brian Jackson <iggy@gentoo.org> 14 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
16 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild, 15 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
17 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild, 16 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
18 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch: 17 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
19 fix do_brk vuln 18 Fix the 'do_brk' vulnerability.
20 19
21 03 Nov 2003; Matthew Rickard <frogger@gentoo.org> 20 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
22 hardened-sources-2.4.22.ebuild: 21 hardened-sources-2.4.22.ebuild:
23 -Removed the src_install() portion for SELinux flask 22 - Removed the src_install() portion for SELinux flask
24 components. These are no longer handled in the kernel 23 components. These are no longer handled in the kernel
25 so this code was not necessary. 24 so this code was not necessary.
26 25
27 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild: 26 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
28 New 2.4.22 based hardened-sources thanks to 27 New 2.4.22 based hardened-sources thanks to
29 Phil West <p.west@computer.org>. 28 Phil West <p.west@computer.org>.
30 29
31 These sources include: 30 These sources include:
32 -New SELinux API 31 - New SELinux API
33 -Updated CK-base 32 - Updated CK-base
34 -Updated GRSec 33 - Updated GRSec
35 -Systrace 34 - Systrace
36 -SuperFreeS/WAN 1.99.8 35 - SuperFreeS/WAN 1.99.8
37 -Propolice kernel build support 36 - Propolice kernel build support
38 -EVMS 37 - EVMS
39 -Other various security related patches 38 - Other various security related patches
40 39
41*hardened-sources-2.4.21 (14 Sep 2003) 40*hardened-sources-2.4.21 (14 Sep 2003)
42 41
43 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild: 42 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
44 Updated hardened-sources based on the 2.4.21 Linux kernel. 43 Updated hardened-sources based on the 2.4.21 Linux kernel.
45 This includes updates to most major components such as: 44 This includes updates to most major components such as:
46 -ck-base-0306300059 45 - ck-base-0306300059
47 -selinux-2.4-2003071106 46 - selinux-2.4-2003071106
48 -grsecurity-2.0-rc1 47 - grsecurity-2.0-rc1
49 -Updated IPTables patch-o-matic 48 - Updated IPTables patch-o-matic
50 -Updated SuperFreeS/WAN 49 - Updated SuperFreeS/WAN
50
51 Thanks to Phil West <pwest@computer.org> for his work in getting this 51 Thanks to Phil West <pwest@computer.org> for his work in getting this
52 updated patch set ready for the 2.4.21 based kernel. 52 updated patch set ready for the 2.4.21 based kernel.
53 53
54 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> : 54 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
55 Initial import of hardened-sources-2.4.20-r4. This revision 55 Initial import of hardened-sources-2.4.20-r4. This revision
56 includes only a few changes, but one of these is an important 56 includes only a few changes, but one of these is an important
57 security fix. It is recommended all users of hardened-sources 57 security fix. It is recommended all users of hardened-sources
58 upgrade to this release. 58 upgrade to this release.
59
59 - ioperm bug fix 60 - ioperm bug fix
60 - fixed compilation failure when building without GRSec 61 - fixed compilation failure when building without GRSec
62
61 SAL (Secure Auditing for Linux) is NOT included in this revision 63 SAL (Secure Auditing for Linux) is NOT included in this revision
62 due to time constraints, but is planned for inclusion in the near 64 due to time constraints, but is planned for inclusion in the near
63 future. 65 future.
64 66
65*hardened-sources-2.4.20-r2 (12 Jun 2003) 67*hardened-sources-2.4.20-r2 (12 Jun 2003)
66 68
67 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild, 69 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
68 hardened-sources-2.4.20-r3.ebuild: 70 hardened-sources-2.4.20-r3.ebuild:
69 add Header 71 Add Header...
70 72
71 08 Jun 2003; Matthew Rickard <frogger@gentoo.org> 73 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
72 hardened-sources-2.4.20-r3.ebuild: 74 hardened-sources-2.4.20-r3.ebuild:
73 Removed warnings from ebuild. This kernel should be safe to 75 Removed warnings from ebuild. This kernel should be safe to
74 use at this point. 76 use at this point.
76*hardened-sources-2.4.20-r3 (08 Jun 2003) 78*hardened-sources-2.4.20-r3 (08 Jun 2003)
77 79
78 08 Jun 2003; Matthew Rickard <frogger@gentoo.org> 80 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
79 hardened-sources-2.4.20-r3.ebuild: 81 hardened-sources-2.4.20-r3.ebuild:
80 New revision. Includes the following changes over -r2: 82 New revision. Includes the following changes over -r2:
83
81 - ck7-base (O(1), preempt, low latency) 84 - ck7-base (O(1), preempt, low latency)
82 - Super FreeS/WAN 1.99.7rc2 85 - Super FreeS/WAN 1.99.7rc2
83 - PaX for the LSM/SELinux branch 86 - PaX for the LSM/SELinux branch
84 - GRSecurity 2.0-pre4 (role based access control) 87 - GRSecurity 2.0-pre4 (role based access control)
85 - Systrace 1.3 88 - Systrace 1.3
96 ebuild includes many new performance and security 99 ebuild includes many new performance and security
97 related patches. As in -r1, it will patch in 100 related patches. As in -r1, it will patch in
98 LSM/SELinux if "selinux" is in USE, otherwise it 101 LSM/SELinux if "selinux" is in USE, otherwise it
99 will patch in GRSecurity. The following patches 102 will patch in GRSecurity. The following patches
100 are included in this revision: 103 are included in this revision:
104
101 - O(1) Scheduler, Low Latency, and Preempt 105 - O(1) Scheduler, Low Latency, and Preempt
102 (pulled from the base CK patch) 106 (pulled from the base CK patch)
103 - ptrace exploit patch for the LSM kernel 107 - ptrace exploit patch for the LSM kernel
104 (the GRSec patch already fixes this) 108 (the GRSec patch already fixes this)
105 - LSM 2.4-2003040709 109 - LSM 2.4-2003040709
113 - EXT3 data journal fix 117 - EXT3 data journal fix
114 - CIPE 1.5.4 118 - CIPE 1.5.4
115 119
116 12 Apr 2003; Matthew Rickard <frogger@gentoo.org> 120 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
117 hardened-sources-2.4.20-r1.ebuild, manifest: 121 hardened-sources-2.4.20-r1.ebuild, manifest:
118 Updated to install flask components correctly for selinux 122 Updated to install flask components correctly for selinux.
119 123
120 12 Apr 2003; Matthew Rickard <frogger@gentoo.org> 124 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
121 hardened-sources-2.4.20-r1.ebuild: 125 hardened-sources-2.4.20-r1.ebuild:
122 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity 126 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
123 is patched in instead. Ptrace patches for selinux have also been added. In 127 is patched in instead. Ptrace patches for selinux have also been added. In
124 either case, systrace support will be patched in as well. 128 either case, systrace support will be patched in as well.
125 129
126 09 Apr 2003; Matthew Rickard <frogger@gentoo.org> 130 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
127 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest: 131 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
128 Revision bump for new sources 132 Revision bump for new sources.
129 133
130 09 Apr 2003; Matthew Rickard <frogger@gentoo.org> 134 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
131 hardened-sources-2.4.20-r1.ebuild: 135 hardened-sources-2.4.20-r1.ebuild:
132 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2 136 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
133 137
134*hardened-sources-2.4.20 (30 Mar 2003) 138*hardened-sources-2.4.20 (30 Mar 2003)
135 139
136 30 Mar 2003; Joshua Brindle <method@gentoo.org> 140 30 Mar 2003; Joshua Brindle <method@gentoo.org>
137 hardened-sources-2.4.20.ebuild: 141 hardened-sources-2.4.20.ebuild:
138 initial import, only has systrace support 142 Initial import, only has systrace support.
139 143

Legend:
Removed from v.1.17  
changed lines
  Added in v.1.18

  ViewVC Help
Powered by ViewVC 1.1.20