/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.102 - (show annotations) (download)
Mon Jun 5 18:27:37 2006 UTC (8 years, 3 months ago) by johnm
Branch: MAIN
Changes since 1.101: +7 -1 lines
pushing 2.6.16-7 ready for testing prior to stable
(Portage version: 2.1_rc1-r2)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.101 2006/05/22 11:51:15 solar Exp $
4
5 *hardened-sources-2.6.16-r7 (05 Jun 2006)
6
7 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
8 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
9 push new 2.6.16 release in preparation for stable
10
11 22 May 2006; <solar@gentoo.org> :
12 - redigest bug 134002
13
14 *hardened-sources-2.4.32-r5 (16 May 2006)
15
16 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
17 +hardened-sources-2.4.32-r5.ebuild:
18 Fixes rsbac common patching (new patch in new -r5 patchset)
19
20 *hardened-sources-2.4.32-r4 (13 May 2006)
21
22 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
23 +hardened-sources-2.4.32-r4.ebuild:
24 - security bumps
25
26 *hardened-sources-2.6.16-r6 (03 May 2006)
27
28 03 May 2006; John Mylchreest <johnm@gentoo.org>
29 +hardened-sources-2.6.16-r6.ebuild:
30 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
31
32 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
33 hardened-sources-2.6.14-r8.ebuild:
34 fix x86_64 build problem, this will delay the digest issue again for a short
35 while but it will sort itself out
36
37 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
38 hardened-sources-2.6.14-r8.ebuild:
39 bump hardened patchset
40
41 27 Apr 2006; Alec Warner <antarus@gentoo.org>
42 files/digest-hardened-sources-2.4.32-r2,
43 files/digest-hardened-sources-2.4.32-r3,
44 files/digest-hardened-sources-2.6.14-r8, Manifest:
45 Fixing duff SHA256 digests: Bug # 131293
46
47 *hardened-sources-2.6.16-r5 (27 Apr 2006)
48
49 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
50 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
51 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
52 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
53 cleanup of old uneccessary sources
54
55 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
56 fix digest
57
58 *hardened-sources-2.6.14-r8 (20 Apr 2006)
59
60 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
61 +hardened-sources-2.6.14-r8.ebuild:
62 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
63
64 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
65 Turning on gpg-signing again, and recomitting
66
67 *hardened-sources-2.6.16-r4 (20 Apr 2006)
68
69 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
70 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
71 +hardened-sources-2.6.16-r4.ebuild:
72 Fix numerous security vulns
73
74 *hardened-sources-2.4.32-r3 (16 Apr 2006)
75
76 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
77 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
78 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
79 - security bump for bug #112791. Removed old ebuilds
80
81 *hardened-sources-2.6.16-r3 (15 Apr 2006)
82
83 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
84 +hardened-sources-2.6.16-r3.ebuild:
85 Removing silly localversion which I missed
86
87 *hardened-sources-2.6.14-r7 (14 Apr 2006)
88
89 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
90 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
91 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
92
93 *hardened-sources-2.6.16-r2 (13 Apr 2006)
94
95 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
96 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
97 +hardened-sources-2.6.16-r2.ebuild:
98 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
99 labels, dropping USERGROUP define fixes, since these were merged mainstream.
100
101 *hardened-sources-2.6.16-r1 (11 Apr 2006)
102
103 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
104 +hardened-sources-2.6.16-r1.ebuild:
105 Bumping to include ppc build fix and 2.6.16.3
106
107 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
108 hardened-sources-2.6.14-r6.ebuild:
109 Stable on x86; bug #127718
110
111 *hardened-sources-2.6.16 (31 Mar 2006)
112
113 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
114 +hardened-sources-2.6.16.ebuild:
115 Bumping to new version of grsec, and kernel base. New squashfs. Based on
116 2.6.16.1
117
118 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
119 hardened-sources-2.6.14-r6.ebuild:
120 Stable on amd64, bug 127718.
121
122 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
123 Stable on ppc. Bug #127718
124
125 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
126 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
127 -hardened-sources-2.6.14-r4.ebuild:
128 Cleanup.
129
130 *hardened-sources-2.6.14-r6 (15 Mar 2006)
131
132 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
133 +hardened-sources-2.6.14-r6.ebuild:
134 Fixes grsec policy recreation bug and adds a
135 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
136
137 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
138 - stable on x86
139
140 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
141 hardened-sources-2.6.14-r5.ebuild:
142 Stable on ppc.
143
144 *hardened-sources-2.6.14-r5 (01 Feb 2006)
145
146 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
147 +hardened-sources-2.6.14-r5.ebuild:
148 fixing every known exploit
149
150 *hardened-sources-2.4.32-r2 (26 Jan 2006)
151
152 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
153 +hardened-sources-2.4.32-r2.ebuild:
154 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
155
156 *hardened-sources-2.6.14-r4 (12 Jan 2006)
157
158 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
159 - version bump for new genpatches which fix up a few sec holes
160
161 *hardened-sources-2.4.32-r1 (05 Jan 2006)
162
163 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
164 - revision bump to add misc vital linux kernel security patches.
165
166 *hardened-sources-2.6.14-r3 (30 Dec 2005)
167
168 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
169 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
170 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
171
172 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
173 hardened-sources-2.6.14-r2.ebuild:
174 making x86 & amd64 stable following testing.
175
176 *hardened-sources-2.6.14-r2 (27 Dec 2005)
177
178 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
179 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
180 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
181 network hooks.
182
183 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
184 hardened-sources-2.6.14-r1.ebuild:
185 bumping to stable early for sec fix on x86 & amd64
186
187 *hardened-sources-2.6.14-r1 (05 Dec 2005)
188
189 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
190 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
191 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
192
193 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
194 - stable on x86 security bug #114227 CAN-2005-3257
195
196 *hardened-sources-2.4.32 (19 Nov 2005)
197
198 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
199 +hardened-sources-2.4.32.ebuild:
200 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
201 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
202 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
203 rsbac >> /etc/portage/package.use)
204
205 *hardened-sources-2.6.14 (14 Nov 2005)
206
207 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
208 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
209 Bumping 2.6 series to 2.6.14.2
210
211 *hardened-sources-2.6.13-r2 (20 Oct 2005)
212
213 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
214 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
215 +hardened-sources-2.6.13-r2.ebuild:
216 Fixes minor build error in ppc.
217
218 *hardened-sources-2.6.13-r1 (17 Oct 2005)
219
220 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
221 +hardened-sources-2.6.13-r1.ebuild:
222 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
223 2.6.13.4, fixes some major amd64 stability problems.
224
225 *hardened-sources-2.6.13 (16 Sep 2005)
226
227 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
228 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
229 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
230 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
231 users should test this thoroughly.
232
233 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
234 - stable on x86
235
236 *hardened-sources-2.6.11-r15 (27 Jun 2005)
237
238 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
239 +hardened-sources-2.6.11-r15.ebuild:
240 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
241 grsec redefining curr_ip struct.
242
243 *hardened-sources-2.4.31 (20 Jun 2005)
244
245 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
246 initial import of 2.4.31 tree
247
248 *hardened-sources-2.6.11-r14 (14 Jun 2005)
249
250 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
251 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
252 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
253 naming scheme to abide by genpatches
254
255 *hardened-sources-2.6.11-r13 (18 May 2005)
256
257 18 May 2005; John Mylchreest <johnm@gentoo.org>
258 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
259 Managed to mangle the Makefile patch from grsec, to miss out the grsec
260 target. sorry about that. Fixes bug #93022
261
262 *hardened-sources-2.6.11-r12 (17 May 2005)
263
264 17 May 2005; John Mylchreest <johnm@gentoo.org>
265 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
266 +hardened-sources-2.6.11-r12.ebuild:
267 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
268 merges in genpatches-base
269
270 *hardened-sources-2.6.11-r12 (17 May 2005)
271
272 17 May 2005; John Mylchreest <johnm@gentoo.org>
273 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
274 +hardened-sources-2.6.11-r12.ebuild:
275 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
276 merges in genpatches-base
277
278 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
279 -files/2.4.27-cmdline-race.patch,
280 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
281 -files/2.4.28-grsec-binfmt_a.out.patch,
282 -files/2.4.28-grsec-cmdline-race.patch,
283 -files/2.4.28-selinux-binfmt_a.out.patch,
284 -files/2.4.28-selinux-cmdline-race.patch,
285 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
286 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
287 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
288 cleanup..
289
290 *hardened-sources-2.4.30-r1 (21 Apr 2005)
291
292 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
293 - disable aout by default
294
295 *hardened-sources-2.4.30 (18 Apr 2005)
296
297 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
298 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
299 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
300 use
301
302 *hardened-sources-2.4.29 (30 Mar 2005)
303
304 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
305 +hardened-sources-2.4.29.ebuild:
306 New hardened-patches-2.4-29.0 patchball.
307 Removed SELinux support, upgraded GRSecurity to 2.1.4.
308
309 *hardened-sources-2.4.28-r5 (06 Mar 2005)
310
311 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
312 +hardened-sources-2.4.28-r5.ebuild:
313 Added a fix for a PaX vulnerability.
314
315 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
316 hardened-sources-2.4.28-r4.ebuild:
317 Stable on x86
318
319 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
320 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
321 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
322 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
323 - fixed/added RDEPEND= in all kernel-2 ebuilds
324
325 *hardened-sources-2.4.28-r4 (21 Jan 2005)
326
327 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
328 +hardened-sources-2.4.28-r4.ebuild:
329 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
330 backport of neighbour hash updates.
331
332 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
333 hardened-sources-2.4.28-r3.ebuild:
334 Stable on x86
335
336 *hardened-sources-2.6.10-r3 (20 Jan 2005)
337
338 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
339 +hardened-sources-2.6.10-r3.ebuild:
340 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
341 in 2005.0
342
343 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
344 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
345 hardened-sources-2.4.28-r2.ebuild:
346 Mark stable on x86
347
348 *hardened-sources-2.4.28-r3 (17 Jan 2005)
349
350 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
351 +hardened-sources-2.4.28-r3.ebuild:
352 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
353
354 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
355 hardened-sources-2.4.28.ebuild:
356 Mark stable on x86.
357
358 *hardened-sources-2.4.28-r2 (13 Jan 2005)
359
360 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
361 +hardened-sources-2.4.28-r2.ebuild:
362 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
363 Mazinger for grsecurity patches as well.
364
365 *hardened-sources-2.4.28-r1 (23 Dec 2004)
366
367 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
368 Security bump. Thank tocharian for rolling a new patchset...
369
370 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
371 +files/2.4.28-grsec-cmdline-race.patch,
372 +files/2.4.28-selinux-binfmt_a.out.patch,
373 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
374 - Round up remaining security patches that appear to be missing in 2.4.28. -
375 PaX standalone updated to current. hgpv=28.1
376
377 *hardened-sources-2.4.28 (28 Nov 2004)
378
379 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
380 security bump. Thank tocharian for rolling a new patchset
381
382 *hardened-sources-2.4.27-r3 (08 Sep 2004)
383
384 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
385 +hardened-sources-2.4.27-r3.ebuild:
386 Applies the new 2.4-27.2 patchball which updates
387 GRSecurity to the 2.0.1 version.
388
389 *hardened-sources-2.4.27-r2 (31 Aug 2004)
390
391 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
392 +hardened-sources-2.4.27-r2.ebuild:
393 Version bump.
394 This version uses the new 2.4-27.1 patchball which updates
395 both the SELinux PaX hooks patch and the SELinux headers.
396
397 *hardened-sources-2.4.27-r1 (09 Aug 2004)
398
399 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
400 +hardened-sources-2.4.27-r1.ebuild,
401 -hardened-sources-2.4.27.ebuild,
402 +files/2.4.27-cmdline-race.patch:
403 Version bump, fix for cmdline race. See bug #59905.
404
405 *hardened-sources-2.4.26-r6 (09 Aug 2004)
406
407 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
408 +hardened-sources-2.4.26-r6.ebuild,
409 -hardened-sources-2.4.26-r5.ebuild,
410 -hardened-sources-2.4.26-r4.ebuild,
411 +files/2.4.26-cmdline-race.patch:
412 Version bump, fix for cmdline race. See bug #59905.
413
414 *hardened-sources-2.4.27 (08 Aug 2004)
415
416 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
417 +hardened-sources-2.4.27.ebuild,
418 +files/2.4.27-CAN-2004-0394.patch:
419 Ported the patchball to the 2.4.27 kernel version.
420
421 *hardened-sources-2.4.26-r5 (07 Aug 2004)
422
423 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
424 +hardened-sources-2.4.26-r5.ebuild:
425 Updated to use the new hardened-patches-2.4-26.1 patchball.
426 It adds the following features:
427 - Squashfs
428 - Ebtables
429 - Netdev random (core+drivers)
430 - Watchdog Timer (WDT) fix.
431
432 *hardened-sources-2.4.26-r4 (04 Aug 2004)
433
434 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
435 +hardened-sources-2.4.26-r4.ebuild,
436 +files/2.4.26-CAN-2004-0415.patch,
437 -hardened-sources-2.4.26-3:
438 Version bump, fix for CAN 0415, see bug #59378.
439
440 *hardened-sources-2.4.26-r3 (22 Jul 2004)
441
442 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
443 +hardened-sources-2.4.26-r3.ebuild,
444 +files/2.4.26-CAN-2004-0497.patch,
445 -hardened-sources-2.4.26-r2.ebuild:
446 Version bump, fixed CAN 0497, see bug #56171.
447
448 *hardened-sources-2.4.26-r2 (29 Jun 2004)
449
450 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
451 +hardened-sources-2.4.26-r2.ebuild,
452 +files/2.4.26-CAN-2004-0495.patch,
453 +files/2.4.26-CAN-2004-0535.patch,
454 -hardened-sources-2.4.26-r1.ebuild:
455 Fixes for both CAN 0495 and 0535, see bug #54976
456
457 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
458 hardened-sources-2.4.26-r1.ebuild:
459 QA - fix use invocation
460
461 *hardened-sources-2.4.26-r1 (22 June 2004)
462
463 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
464 +hardened-sources-2.4.26-r1.ebuild,
465 +files/2.4.26-CAN-2004-0394.patch,
466 +files/2.4.26-signal-race.patch,
467 -hardened-sources-2.4.26.ebuild,
468 -hardened-sources-2.4.24-r3.ebuild:
469 Version bump for the CAN-2004-0394 issue and bug #53804
470 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
471
472
473 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
474 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
475 Masked hardened-sources-2.4.26.ebuild broken for ppc
476
477 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
478 hardened-sources-2.4.24-r3.ebuild:
479 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
480
481 *hardened-sources-2.4.26 (29 May 2004)
482
483 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
484 +hardened-sources-2.4.26.ebuild:
485 Updated hardened-sources for the 2.4.26 kernel
486 Removed broken components, updated almost everything.
487
488 *hardened-sources-2.4.24-r3 (17 Apr 2004)
489
490 17 Apr 2004; <plasmaroo@gentoo.org>
491 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
492 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
493 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
494 +hardened-sources-2.4.24-r3.ebuild:
495 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
496 vulnerabilities. Old revisions removed.
497
498 *hardened-sources-2.4.24-r2 (15 Apr 2004)
499
500 15 Apr 2004; <plasmaroo@gentoo.org>
501 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
502 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
503 Version bump for the CAN-2004-0109 issue; bug #47881.
504
505 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
506 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
507 Add eutils to inherit.
508
509 *hardened-sources-2.4.24-r1 (19 Feb 2004)
510
511 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
512 files/hardened-sources-2.4.24.munmap.patch:
513 Added the patch for the mremap/munmap vulnerability. Bug #42024.
514
515 *hardened-sources-2.4.24 (06 Feb 2004)
516
517 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
518 hardened-sources-2.4.24.ebuild:
519 Version bump, updated most of the components.
520 This release includes the following:
521
522 - Hardened security
523 - Netfilter patch-o-matic 20031219
524 - FreeSWAN 2.04 & x509 1.4.8
525 - EVMS 2.2.2
526 - XFS 1.3.1
527 - cryptoloop jari
528 - grsecurity 2.0-rc4
529 - SELinux
530 - PaX 200402060000
531 - PaX Obscurity 200308302223
532 - Others...
533
534 Neither -ck nor systrace are included anymore.
535
536 *hardened-sources-2.4.22-r2 (05 Jan 2004)
537
538 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
539 hardened-sources-2.4.22-r2.ebuild:
540 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
541
542 *hardened-sources-2.4.22-r1 (02 Dec 2003)
543
544 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
545 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
546
547 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
548 hardened-sources-2.4.22-r1.ebuild:
549 Version bump for the 'do_brk' vulnerability.
550
551 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
552 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
553 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
554 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
555 Fix the 'do_brk' vulnerability.
556
557 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
558 hardened-sources-2.4.22.ebuild:
559 - Removed the src_install() portion for SELinux flask
560 components. These are no longer handled in the kernel
561 so this code was not necessary.
562
563 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
564 New 2.4.22 based hardened-sources thanks to
565 Phil West <p.west@computer.org>.
566
567 These sources include:
568 - New SELinux API
569 - Updated CK-base
570 - Updated GRSec
571 - Systrace
572 - SuperFreeS/WAN 1.99.8
573 - Propolice kernel build support
574 - EVMS
575 - Other various security related patches
576
577 *hardened-sources-2.4.21 (14 Sep 2003)
578
579 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
580 Updated hardened-sources based on the 2.4.21 Linux kernel.
581 This includes updates to most major components such as:
582 - ck-base-0306300059
583 - selinux-2.4-2003071106
584 - grsecurity-2.0-rc1
585 - Updated IPTables patch-o-matic
586 - Updated SuperFreeS/WAN
587
588 Thanks to Phil West <pwest@computer.org> for his work in getting this
589 updated patch set ready for the 2.4.21 based kernel.
590
591 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
592 Initial import of hardened-sources-2.4.20-r4. This revision
593 includes only a few changes, but one of these is an important
594 security fix. It is recommended all users of hardened-sources
595 upgrade to this release.
596
597 - ioperm bug fix
598 - fixed compilation failure when building without GRSec
599
600 SAL (Secure Auditing for Linux) is NOT included in this revision
601 due to time constraints, but is planned for inclusion in the near
602 future.
603
604 *hardened-sources-2.4.20-r2 (12 Jun 2003)
605
606 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
607 hardened-sources-2.4.20-r3.ebuild:
608 Add Header...
609
610 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
611 hardened-sources-2.4.20-r3.ebuild:
612 Removed warnings from ebuild. This kernel should be safe to
613 use at this point.
614
615 *hardened-sources-2.4.20-r3 (08 Jun 2003)
616
617 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
618 hardened-sources-2.4.20-r3.ebuild:
619 New revision. Includes the following changes over -r2:
620
621 - ck7-base (O(1), preempt, low latency)
622 - Super FreeS/WAN 1.99.7rc2
623 - PaX for the LSM/SELinux branch
624 - GRSecurity 2.0-pre4 (role based access control)
625 - Systrace 1.3
626 - EXT3 fixes
627 - EVMS 2.0.1
628 - GCC 3.1+ compile optimizations
629 - ProPolice kernel build support
630 - Hashing table security fixes
631
632 *hardened-sources-2.4.20-r1 (09 Apr 2003)
633
634 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
635 Initial import of hardened-sources-r2. This new
636 ebuild includes many new performance and security
637 related patches. As in -r1, it will patch in
638 LSM/SELinux if "selinux" is in USE, otherwise it
639 will patch in GRSecurity. The following patches
640 are included in this revision:
641
642 - O(1) Scheduler, Low Latency, and Preempt
643 (pulled from the base CK patch)
644 - ptrace exploit patch for the LSM kernel
645 (the GRSec patch already fixes this)
646 - LSM 2.4-2003040709
647 - SELinux 2.4-2003040709
648 - Systrace v1.2
649 - IPTables patch-o-matic base patches - 20030107
650 - CryptoAPI 2.4.20.1 w/ loop-jari patch
651 - Super FreeS/WAN 1.99.6.1
652 - GRSecurity 1.9.9g
653 - MPPE
654 - EXT3 data journal fix
655 - CIPE 1.5.4
656
657 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
658 hardened-sources-2.4.20-r1.ebuild, manifest:
659 Updated to install flask components correctly for selinux.
660
661 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
662 hardened-sources-2.4.20-r1.ebuild:
663 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
664 is patched in instead. Ptrace patches for selinux have also been added. In
665 either case, systrace support will be patched in as well.
666
667 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
668 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
669 Revision bump for new sources.
670
671 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
672 hardened-sources-2.4.20-r1.ebuild:
673 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
674
675 *hardened-sources-2.4.20 (30 Mar 2003)
676
677 30 Mar 2003; Joshua Brindle <method@gentoo.org>
678 hardened-sources-2.4.20.ebuild:
679 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20