/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.107 - (show annotations) (download)
Fri Jul 14 15:35:02 2006 UTC (8 years, 5 months ago) by johnm
Branch: MAIN
Changes since 1.106: +5 -1 lines
marking stable on x86 and amd64
(Portage version: 2.1.1_pre2-r6)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.106 2006/07/13 22:01:46 solar Exp $
4
5 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
6 hardened-sources-2.6.16-r10.ebuild:
7 marking stable on x86 and amd64
8
9 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
10 - 2.4.32-r6 stable on x86. RSBAC state unknown
11
12 *hardened-sources-2.4.32-r7 (10 Jul 2006)
13
14 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
15 +hardened-sources-2.4.32-r7.ebuild:
16 Bump PaX for RSBAC to test-17
17
18 *hardened-sources-2.6.16-r9 (03 Jul 2006)
19
20 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
21 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
22 hardened-sources-2.6.16 bump to latest -base.
23
24 *hardened-sources-2.4.32-r6 (30 Jun 2006)
25
26 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
27 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
28 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
29 sysctl controlable resource logging
30
31 *hardened-sources-2.6.16-r7 (05 Jun 2006)
32
33 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
34 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
35 push new 2.6.16 release in preparation for stable
36
37 22 May 2006; <solar@gentoo.org> :
38 - redigest bug 134002
39
40 *hardened-sources-2.4.32-r5 (16 May 2006)
41
42 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
43 +hardened-sources-2.4.32-r5.ebuild:
44 Fixes rsbac common patching (new patch in new -r5 patchset)
45
46 *hardened-sources-2.4.32-r4 (13 May 2006)
47
48 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
49 +hardened-sources-2.4.32-r4.ebuild:
50 - security bumps
51
52 *hardened-sources-2.6.16-r6 (03 May 2006)
53
54 03 May 2006; John Mylchreest <johnm@gentoo.org>
55 +hardened-sources-2.6.16-r6.ebuild:
56 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
57
58 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
59 hardened-sources-2.6.14-r8.ebuild:
60 fix x86_64 build problem, this will delay the digest issue again for a short
61 while but it will sort itself out
62
63 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
64 hardened-sources-2.6.14-r8.ebuild:
65 bump hardened patchset
66
67 27 Apr 2006; Alec Warner <antarus@gentoo.org>
68 files/digest-hardened-sources-2.4.32-r2,
69 files/digest-hardened-sources-2.4.32-r3,
70 files/digest-hardened-sources-2.6.14-r8, Manifest:
71 Fixing duff SHA256 digests: Bug # 131293
72
73 *hardened-sources-2.6.16-r5 (27 Apr 2006)
74
75 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
76 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
77 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
78 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
79 cleanup of old uneccessary sources
80
81 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
82 fix digest
83
84 *hardened-sources-2.6.14-r8 (20 Apr 2006)
85
86 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
87 +hardened-sources-2.6.14-r8.ebuild:
88 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
89
90 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
91 Turning on gpg-signing again, and recomitting
92
93 *hardened-sources-2.6.16-r4 (20 Apr 2006)
94
95 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
96 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
97 +hardened-sources-2.6.16-r4.ebuild:
98 Fix numerous security vulns
99
100 *hardened-sources-2.4.32-r3 (16 Apr 2006)
101
102 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
103 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
104 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
105 - security bump for bug #112791. Removed old ebuilds
106
107 *hardened-sources-2.6.16-r3 (15 Apr 2006)
108
109 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
110 +hardened-sources-2.6.16-r3.ebuild:
111 Removing silly localversion which I missed
112
113 *hardened-sources-2.6.14-r7 (14 Apr 2006)
114
115 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
116 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
117 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
118
119 *hardened-sources-2.6.16-r2 (13 Apr 2006)
120
121 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
122 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
123 +hardened-sources-2.6.16-r2.ebuild:
124 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
125 labels, dropping USERGROUP define fixes, since these were merged mainstream.
126
127 *hardened-sources-2.6.16-r1 (11 Apr 2006)
128
129 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
130 +hardened-sources-2.6.16-r1.ebuild:
131 Bumping to include ppc build fix and 2.6.16.3
132
133 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
134 hardened-sources-2.6.14-r6.ebuild:
135 Stable on x86; bug #127718
136
137 *hardened-sources-2.6.16 (31 Mar 2006)
138
139 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
140 +hardened-sources-2.6.16.ebuild:
141 Bumping to new version of grsec, and kernel base. New squashfs. Based on
142 2.6.16.1
143
144 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
145 hardened-sources-2.6.14-r6.ebuild:
146 Stable on amd64, bug 127718.
147
148 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
149 Stable on ppc. Bug #127718
150
151 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
152 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
153 -hardened-sources-2.6.14-r4.ebuild:
154 Cleanup.
155
156 *hardened-sources-2.6.14-r6 (15 Mar 2006)
157
158 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
159 +hardened-sources-2.6.14-r6.ebuild:
160 Fixes grsec policy recreation bug and adds a
161 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
162
163 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
164 - stable on x86
165
166 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
167 hardened-sources-2.6.14-r5.ebuild:
168 Stable on ppc.
169
170 *hardened-sources-2.6.14-r5 (01 Feb 2006)
171
172 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
173 +hardened-sources-2.6.14-r5.ebuild:
174 fixing every known exploit
175
176 *hardened-sources-2.4.32-r2 (26 Jan 2006)
177
178 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
179 +hardened-sources-2.4.32-r2.ebuild:
180 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
181
182 *hardened-sources-2.6.14-r4 (12 Jan 2006)
183
184 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
185 - version bump for new genpatches which fix up a few sec holes
186
187 *hardened-sources-2.4.32-r1 (05 Jan 2006)
188
189 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
190 - revision bump to add misc vital linux kernel security patches.
191
192 *hardened-sources-2.6.14-r3 (30 Dec 2005)
193
194 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
195 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
196 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
197
198 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
199 hardened-sources-2.6.14-r2.ebuild:
200 making x86 & amd64 stable following testing.
201
202 *hardened-sources-2.6.14-r2 (27 Dec 2005)
203
204 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
205 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
206 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
207 network hooks.
208
209 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
210 hardened-sources-2.6.14-r1.ebuild:
211 bumping to stable early for sec fix on x86 & amd64
212
213 *hardened-sources-2.6.14-r1 (05 Dec 2005)
214
215 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
216 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
217 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
218
219 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
220 - stable on x86 security bug #114227 CAN-2005-3257
221
222 *hardened-sources-2.4.32 (19 Nov 2005)
223
224 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
225 +hardened-sources-2.4.32.ebuild:
226 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
227 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
228 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
229 rsbac >> /etc/portage/package.use)
230
231 *hardened-sources-2.6.14 (14 Nov 2005)
232
233 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
234 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
235 Bumping 2.6 series to 2.6.14.2
236
237 *hardened-sources-2.6.13-r2 (20 Oct 2005)
238
239 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
240 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
241 +hardened-sources-2.6.13-r2.ebuild:
242 Fixes minor build error in ppc.
243
244 *hardened-sources-2.6.13-r1 (17 Oct 2005)
245
246 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
247 +hardened-sources-2.6.13-r1.ebuild:
248 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
249 2.6.13.4, fixes some major amd64 stability problems.
250
251 *hardened-sources-2.6.13 (16 Sep 2005)
252
253 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
254 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
255 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
256 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
257 users should test this thoroughly.
258
259 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
260 - stable on x86
261
262 *hardened-sources-2.6.11-r15 (27 Jun 2005)
263
264 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
265 +hardened-sources-2.6.11-r15.ebuild:
266 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
267 grsec redefining curr_ip struct.
268
269 *hardened-sources-2.4.31 (20 Jun 2005)
270
271 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
272 initial import of 2.4.31 tree
273
274 *hardened-sources-2.6.11-r14 (14 Jun 2005)
275
276 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
277 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
278 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
279 naming scheme to abide by genpatches
280
281 *hardened-sources-2.6.11-r13 (18 May 2005)
282
283 18 May 2005; John Mylchreest <johnm@gentoo.org>
284 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
285 Managed to mangle the Makefile patch from grsec, to miss out the grsec
286 target. sorry about that. Fixes bug #93022
287
288 *hardened-sources-2.6.11-r12 (17 May 2005)
289
290 17 May 2005; John Mylchreest <johnm@gentoo.org>
291 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
292 +hardened-sources-2.6.11-r12.ebuild:
293 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
294 merges in genpatches-base
295
296 *hardened-sources-2.6.11-r12 (17 May 2005)
297
298 17 May 2005; John Mylchreest <johnm@gentoo.org>
299 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
300 +hardened-sources-2.6.11-r12.ebuild:
301 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
302 merges in genpatches-base
303
304 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
305 -files/2.4.27-cmdline-race.patch,
306 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
307 -files/2.4.28-grsec-binfmt_a.out.patch,
308 -files/2.4.28-grsec-cmdline-race.patch,
309 -files/2.4.28-selinux-binfmt_a.out.patch,
310 -files/2.4.28-selinux-cmdline-race.patch,
311 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
312 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
313 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
314 cleanup..
315
316 *hardened-sources-2.4.30-r1 (21 Apr 2005)
317
318 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
319 - disable aout by default
320
321 *hardened-sources-2.4.30 (18 Apr 2005)
322
323 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
324 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
325 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
326 use
327
328 *hardened-sources-2.4.29 (30 Mar 2005)
329
330 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
331 +hardened-sources-2.4.29.ebuild:
332 New hardened-patches-2.4-29.0 patchball.
333 Removed SELinux support, upgraded GRSecurity to 2.1.4.
334
335 *hardened-sources-2.4.28-r5 (06 Mar 2005)
336
337 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
338 +hardened-sources-2.4.28-r5.ebuild:
339 Added a fix for a PaX vulnerability.
340
341 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
342 hardened-sources-2.4.28-r4.ebuild:
343 Stable on x86
344
345 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
346 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
347 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
348 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
349 - fixed/added RDEPEND= in all kernel-2 ebuilds
350
351 *hardened-sources-2.4.28-r4 (21 Jan 2005)
352
353 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
354 +hardened-sources-2.4.28-r4.ebuild:
355 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
356 backport of neighbour hash updates.
357
358 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
359 hardened-sources-2.4.28-r3.ebuild:
360 Stable on x86
361
362 *hardened-sources-2.6.10-r3 (20 Jan 2005)
363
364 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
365 +hardened-sources-2.6.10-r3.ebuild:
366 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
367 in 2005.0
368
369 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
370 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
371 hardened-sources-2.4.28-r2.ebuild:
372 Mark stable on x86
373
374 *hardened-sources-2.4.28-r3 (17 Jan 2005)
375
376 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
377 +hardened-sources-2.4.28-r3.ebuild:
378 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
379
380 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
381 hardened-sources-2.4.28.ebuild:
382 Mark stable on x86.
383
384 *hardened-sources-2.4.28-r2 (13 Jan 2005)
385
386 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
387 +hardened-sources-2.4.28-r2.ebuild:
388 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
389 Mazinger for grsecurity patches as well.
390
391 *hardened-sources-2.4.28-r1 (23 Dec 2004)
392
393 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
394 Security bump. Thank tocharian for rolling a new patchset...
395
396 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
397 +files/2.4.28-grsec-cmdline-race.patch,
398 +files/2.4.28-selinux-binfmt_a.out.patch,
399 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
400 - Round up remaining security patches that appear to be missing in 2.4.28. -
401 PaX standalone updated to current. hgpv=28.1
402
403 *hardened-sources-2.4.28 (28 Nov 2004)
404
405 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
406 security bump. Thank tocharian for rolling a new patchset
407
408 *hardened-sources-2.4.27-r3 (08 Sep 2004)
409
410 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
411 +hardened-sources-2.4.27-r3.ebuild:
412 Applies the new 2.4-27.2 patchball which updates
413 GRSecurity to the 2.0.1 version.
414
415 *hardened-sources-2.4.27-r2 (31 Aug 2004)
416
417 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
418 +hardened-sources-2.4.27-r2.ebuild:
419 Version bump.
420 This version uses the new 2.4-27.1 patchball which updates
421 both the SELinux PaX hooks patch and the SELinux headers.
422
423 *hardened-sources-2.4.27-r1 (09 Aug 2004)
424
425 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
426 +hardened-sources-2.4.27-r1.ebuild,
427 -hardened-sources-2.4.27.ebuild,
428 +files/2.4.27-cmdline-race.patch:
429 Version bump, fix for cmdline race. See bug #59905.
430
431 *hardened-sources-2.4.26-r6 (09 Aug 2004)
432
433 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
434 +hardened-sources-2.4.26-r6.ebuild,
435 -hardened-sources-2.4.26-r5.ebuild,
436 -hardened-sources-2.4.26-r4.ebuild,
437 +files/2.4.26-cmdline-race.patch:
438 Version bump, fix for cmdline race. See bug #59905.
439
440 *hardened-sources-2.4.27 (08 Aug 2004)
441
442 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
443 +hardened-sources-2.4.27.ebuild,
444 +files/2.4.27-CAN-2004-0394.patch:
445 Ported the patchball to the 2.4.27 kernel version.
446
447 *hardened-sources-2.4.26-r5 (07 Aug 2004)
448
449 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
450 +hardened-sources-2.4.26-r5.ebuild:
451 Updated to use the new hardened-patches-2.4-26.1 patchball.
452 It adds the following features:
453 - Squashfs
454 - Ebtables
455 - Netdev random (core+drivers)
456 - Watchdog Timer (WDT) fix.
457
458 *hardened-sources-2.4.26-r4 (04 Aug 2004)
459
460 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
461 +hardened-sources-2.4.26-r4.ebuild,
462 +files/2.4.26-CAN-2004-0415.patch,
463 -hardened-sources-2.4.26-3:
464 Version bump, fix for CAN 0415, see bug #59378.
465
466 *hardened-sources-2.4.26-r3 (22 Jul 2004)
467
468 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
469 +hardened-sources-2.4.26-r3.ebuild,
470 +files/2.4.26-CAN-2004-0497.patch,
471 -hardened-sources-2.4.26-r2.ebuild:
472 Version bump, fixed CAN 0497, see bug #56171.
473
474 *hardened-sources-2.4.26-r2 (29 Jun 2004)
475
476 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
477 +hardened-sources-2.4.26-r2.ebuild,
478 +files/2.4.26-CAN-2004-0495.patch,
479 +files/2.4.26-CAN-2004-0535.patch,
480 -hardened-sources-2.4.26-r1.ebuild:
481 Fixes for both CAN 0495 and 0535, see bug #54976
482
483 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
484 hardened-sources-2.4.26-r1.ebuild:
485 QA - fix use invocation
486
487 *hardened-sources-2.4.26-r1 (22 June 2004)
488
489 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
490 +hardened-sources-2.4.26-r1.ebuild,
491 +files/2.4.26-CAN-2004-0394.patch,
492 +files/2.4.26-signal-race.patch,
493 -hardened-sources-2.4.26.ebuild,
494 -hardened-sources-2.4.24-r3.ebuild:
495 Version bump for the CAN-2004-0394 issue and bug #53804
496 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
497
498
499 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
500 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
501 Masked hardened-sources-2.4.26.ebuild broken for ppc
502
503 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
504 hardened-sources-2.4.24-r3.ebuild:
505 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
506
507 *hardened-sources-2.4.26 (29 May 2004)
508
509 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
510 +hardened-sources-2.4.26.ebuild:
511 Updated hardened-sources for the 2.4.26 kernel
512 Removed broken components, updated almost everything.
513
514 *hardened-sources-2.4.24-r3 (17 Apr 2004)
515
516 17 Apr 2004; <plasmaroo@gentoo.org>
517 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
518 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
519 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
520 +hardened-sources-2.4.24-r3.ebuild:
521 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
522 vulnerabilities. Old revisions removed.
523
524 *hardened-sources-2.4.24-r2 (15 Apr 2004)
525
526 15 Apr 2004; <plasmaroo@gentoo.org>
527 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
528 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
529 Version bump for the CAN-2004-0109 issue; bug #47881.
530
531 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
532 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
533 Add eutils to inherit.
534
535 *hardened-sources-2.4.24-r1 (19 Feb 2004)
536
537 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
538 files/hardened-sources-2.4.24.munmap.patch:
539 Added the patch for the mremap/munmap vulnerability. Bug #42024.
540
541 *hardened-sources-2.4.24 (06 Feb 2004)
542
543 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
544 hardened-sources-2.4.24.ebuild:
545 Version bump, updated most of the components.
546 This release includes the following:
547
548 - Hardened security
549 - Netfilter patch-o-matic 20031219
550 - FreeSWAN 2.04 & x509 1.4.8
551 - EVMS 2.2.2
552 - XFS 1.3.1
553 - cryptoloop jari
554 - grsecurity 2.0-rc4
555 - SELinux
556 - PaX 200402060000
557 - PaX Obscurity 200308302223
558 - Others...
559
560 Neither -ck nor systrace are included anymore.
561
562 *hardened-sources-2.4.22-r2 (05 Jan 2004)
563
564 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
565 hardened-sources-2.4.22-r2.ebuild:
566 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
567
568 *hardened-sources-2.4.22-r1 (02 Dec 2003)
569
570 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
571 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
572
573 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
574 hardened-sources-2.4.22-r1.ebuild:
575 Version bump for the 'do_brk' vulnerability.
576
577 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
578 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
579 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
580 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
581 Fix the 'do_brk' vulnerability.
582
583 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
584 hardened-sources-2.4.22.ebuild:
585 - Removed the src_install() portion for SELinux flask
586 components. These are no longer handled in the kernel
587 so this code was not necessary.
588
589 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
590 New 2.4.22 based hardened-sources thanks to
591 Phil West <p.west@computer.org>.
592
593 These sources include:
594 - New SELinux API
595 - Updated CK-base
596 - Updated GRSec
597 - Systrace
598 - SuperFreeS/WAN 1.99.8
599 - Propolice kernel build support
600 - EVMS
601 - Other various security related patches
602
603 *hardened-sources-2.4.21 (14 Sep 2003)
604
605 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
606 Updated hardened-sources based on the 2.4.21 Linux kernel.
607 This includes updates to most major components such as:
608 - ck-base-0306300059
609 - selinux-2.4-2003071106
610 - grsecurity-2.0-rc1
611 - Updated IPTables patch-o-matic
612 - Updated SuperFreeS/WAN
613
614 Thanks to Phil West <pwest@computer.org> for his work in getting this
615 updated patch set ready for the 2.4.21 based kernel.
616
617 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
618 Initial import of hardened-sources-2.4.20-r4. This revision
619 includes only a few changes, but one of these is an important
620 security fix. It is recommended all users of hardened-sources
621 upgrade to this release.
622
623 - ioperm bug fix
624 - fixed compilation failure when building without GRSec
625
626 SAL (Secure Auditing for Linux) is NOT included in this revision
627 due to time constraints, but is planned for inclusion in the near
628 future.
629
630 *hardened-sources-2.4.20-r2 (12 Jun 2003)
631
632 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
633 hardened-sources-2.4.20-r3.ebuild:
634 Add Header...
635
636 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
637 hardened-sources-2.4.20-r3.ebuild:
638 Removed warnings from ebuild. This kernel should be safe to
639 use at this point.
640
641 *hardened-sources-2.4.20-r3 (08 Jun 2003)
642
643 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
644 hardened-sources-2.4.20-r3.ebuild:
645 New revision. Includes the following changes over -r2:
646
647 - ck7-base (O(1), preempt, low latency)
648 - Super FreeS/WAN 1.99.7rc2
649 - PaX for the LSM/SELinux branch
650 - GRSecurity 2.0-pre4 (role based access control)
651 - Systrace 1.3
652 - EXT3 fixes
653 - EVMS 2.0.1
654 - GCC 3.1+ compile optimizations
655 - ProPolice kernel build support
656 - Hashing table security fixes
657
658 *hardened-sources-2.4.20-r1 (09 Apr 2003)
659
660 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
661 Initial import of hardened-sources-r2. This new
662 ebuild includes many new performance and security
663 related patches. As in -r1, it will patch in
664 LSM/SELinux if "selinux" is in USE, otherwise it
665 will patch in GRSecurity. The following patches
666 are included in this revision:
667
668 - O(1) Scheduler, Low Latency, and Preempt
669 (pulled from the base CK patch)
670 - ptrace exploit patch for the LSM kernel
671 (the GRSec patch already fixes this)
672 - LSM 2.4-2003040709
673 - SELinux 2.4-2003040709
674 - Systrace v1.2
675 - IPTables patch-o-matic base patches - 20030107
676 - CryptoAPI 2.4.20.1 w/ loop-jari patch
677 - Super FreeS/WAN 1.99.6.1
678 - GRSecurity 1.9.9g
679 - MPPE
680 - EXT3 data journal fix
681 - CIPE 1.5.4
682
683 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
684 hardened-sources-2.4.20-r1.ebuild, manifest:
685 Updated to install flask components correctly for selinux.
686
687 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
688 hardened-sources-2.4.20-r1.ebuild:
689 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
690 is patched in instead. Ptrace patches for selinux have also been added. In
691 either case, systrace support will be patched in as well.
692
693 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
694 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
695 Revision bump for new sources.
696
697 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
698 hardened-sources-2.4.20-r1.ebuild:
699 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
700
701 *hardened-sources-2.4.20 (30 Mar 2003)
702
703 30 Mar 2003; Joshua Brindle <method@gentoo.org>
704 hardened-sources-2.4.20.ebuild:
705 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20