/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.109 - (show annotations) (download)
Mon Aug 7 14:01:30 2006 UTC (7 years, 11 months ago) by solar
Branch: MAIN
Changes since 1.108: +4 -1 lines
- stable on x86 and amd64
(Portage version: 2.1.1_pre2-r7)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.108 2006/07/15 16:00:36 solar Exp $
4
5 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
6 - stable on x86 and amd64
7
8 *hardened-sources-2.6.16-r11 (15 Jul 2006)
9
10 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
11 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
12 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
13 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
14 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
15 crusty ebuilds
16
17 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
18 hardened-sources-2.6.16-r10.ebuild:
19 marking stable on x86 and amd64
20
21 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
22 - 2.4.32-r6 stable on x86. RSBAC state unknown
23
24 *hardened-sources-2.4.32-r7 (10 Jul 2006)
25
26 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
27 +hardened-sources-2.4.32-r7.ebuild:
28 Bump PaX for RSBAC to test-17
29
30 *hardened-sources-2.6.16-r9 (03 Jul 2006)
31
32 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
33 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
34 hardened-sources-2.6.16 bump to latest -base.
35
36 *hardened-sources-2.4.32-r6 (30 Jun 2006)
37
38 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
39 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
40 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
41 sysctl controlable resource logging
42
43 *hardened-sources-2.6.16-r7 (05 Jun 2006)
44
45 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
46 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
47 push new 2.6.16 release in preparation for stable
48
49 22 May 2006; <solar@gentoo.org> :
50 - redigest bug 134002
51
52 *hardened-sources-2.4.32-r5 (16 May 2006)
53
54 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
55 +hardened-sources-2.4.32-r5.ebuild:
56 Fixes rsbac common patching (new patch in new -r5 patchset)
57
58 *hardened-sources-2.4.32-r4 (13 May 2006)
59
60 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
61 +hardened-sources-2.4.32-r4.ebuild:
62 - security bumps
63
64 *hardened-sources-2.6.16-r6 (03 May 2006)
65
66 03 May 2006; John Mylchreest <johnm@gentoo.org>
67 +hardened-sources-2.6.16-r6.ebuild:
68 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
69
70 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
71 hardened-sources-2.6.14-r8.ebuild:
72 fix x86_64 build problem, this will delay the digest issue again for a short
73 while but it will sort itself out
74
75 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
76 hardened-sources-2.6.14-r8.ebuild:
77 bump hardened patchset
78
79 27 Apr 2006; Alec Warner <antarus@gentoo.org>
80 files/digest-hardened-sources-2.4.32-r2,
81 files/digest-hardened-sources-2.4.32-r3,
82 files/digest-hardened-sources-2.6.14-r8, Manifest:
83 Fixing duff SHA256 digests: Bug # 131293
84
85 *hardened-sources-2.6.16-r5 (27 Apr 2006)
86
87 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
88 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
89 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
90 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
91 cleanup of old uneccessary sources
92
93 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
94 fix digest
95
96 *hardened-sources-2.6.14-r8 (20 Apr 2006)
97
98 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
99 +hardened-sources-2.6.14-r8.ebuild:
100 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
101
102 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
103 Turning on gpg-signing again, and recomitting
104
105 *hardened-sources-2.6.16-r4 (20 Apr 2006)
106
107 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
108 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
109 +hardened-sources-2.6.16-r4.ebuild:
110 Fix numerous security vulns
111
112 *hardened-sources-2.4.32-r3 (16 Apr 2006)
113
114 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
115 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
116 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
117 - security bump for bug #112791. Removed old ebuilds
118
119 *hardened-sources-2.6.16-r3 (15 Apr 2006)
120
121 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
122 +hardened-sources-2.6.16-r3.ebuild:
123 Removing silly localversion which I missed
124
125 *hardened-sources-2.6.14-r7 (14 Apr 2006)
126
127 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
128 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
129 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
130
131 *hardened-sources-2.6.16-r2 (13 Apr 2006)
132
133 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
134 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
135 +hardened-sources-2.6.16-r2.ebuild:
136 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
137 labels, dropping USERGROUP define fixes, since these were merged mainstream.
138
139 *hardened-sources-2.6.16-r1 (11 Apr 2006)
140
141 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
142 +hardened-sources-2.6.16-r1.ebuild:
143 Bumping to include ppc build fix and 2.6.16.3
144
145 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
146 hardened-sources-2.6.14-r6.ebuild:
147 Stable on x86; bug #127718
148
149 *hardened-sources-2.6.16 (31 Mar 2006)
150
151 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
152 +hardened-sources-2.6.16.ebuild:
153 Bumping to new version of grsec, and kernel base. New squashfs. Based on
154 2.6.16.1
155
156 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
157 hardened-sources-2.6.14-r6.ebuild:
158 Stable on amd64, bug 127718.
159
160 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
161 Stable on ppc. Bug #127718
162
163 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
164 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
165 -hardened-sources-2.6.14-r4.ebuild:
166 Cleanup.
167
168 *hardened-sources-2.6.14-r6 (15 Mar 2006)
169
170 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
171 +hardened-sources-2.6.14-r6.ebuild:
172 Fixes grsec policy recreation bug and adds a
173 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
174
175 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
176 - stable on x86
177
178 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
179 hardened-sources-2.6.14-r5.ebuild:
180 Stable on ppc.
181
182 *hardened-sources-2.6.14-r5 (01 Feb 2006)
183
184 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
185 +hardened-sources-2.6.14-r5.ebuild:
186 fixing every known exploit
187
188 *hardened-sources-2.4.32-r2 (26 Jan 2006)
189
190 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
191 +hardened-sources-2.4.32-r2.ebuild:
192 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
193
194 *hardened-sources-2.6.14-r4 (12 Jan 2006)
195
196 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
197 - version bump for new genpatches which fix up a few sec holes
198
199 *hardened-sources-2.4.32-r1 (05 Jan 2006)
200
201 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
202 - revision bump to add misc vital linux kernel security patches.
203
204 *hardened-sources-2.6.14-r3 (30 Dec 2005)
205
206 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
207 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
208 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
209
210 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
211 hardened-sources-2.6.14-r2.ebuild:
212 making x86 & amd64 stable following testing.
213
214 *hardened-sources-2.6.14-r2 (27 Dec 2005)
215
216 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
217 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
218 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
219 network hooks.
220
221 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
222 hardened-sources-2.6.14-r1.ebuild:
223 bumping to stable early for sec fix on x86 & amd64
224
225 *hardened-sources-2.6.14-r1 (05 Dec 2005)
226
227 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
228 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
229 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
230
231 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
232 - stable on x86 security bug #114227 CAN-2005-3257
233
234 *hardened-sources-2.4.32 (19 Nov 2005)
235
236 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
237 +hardened-sources-2.4.32.ebuild:
238 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
239 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
240 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
241 rsbac >> /etc/portage/package.use)
242
243 *hardened-sources-2.6.14 (14 Nov 2005)
244
245 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
246 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
247 Bumping 2.6 series to 2.6.14.2
248
249 *hardened-sources-2.6.13-r2 (20 Oct 2005)
250
251 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
252 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
253 +hardened-sources-2.6.13-r2.ebuild:
254 Fixes minor build error in ppc.
255
256 *hardened-sources-2.6.13-r1 (17 Oct 2005)
257
258 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
259 +hardened-sources-2.6.13-r1.ebuild:
260 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
261 2.6.13.4, fixes some major amd64 stability problems.
262
263 *hardened-sources-2.6.13 (16 Sep 2005)
264
265 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
266 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
267 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
268 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
269 users should test this thoroughly.
270
271 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
272 - stable on x86
273
274 *hardened-sources-2.6.11-r15 (27 Jun 2005)
275
276 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
277 +hardened-sources-2.6.11-r15.ebuild:
278 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
279 grsec redefining curr_ip struct.
280
281 *hardened-sources-2.4.31 (20 Jun 2005)
282
283 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
284 initial import of 2.4.31 tree
285
286 *hardened-sources-2.6.11-r14 (14 Jun 2005)
287
288 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
289 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
290 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
291 naming scheme to abide by genpatches
292
293 *hardened-sources-2.6.11-r13 (18 May 2005)
294
295 18 May 2005; John Mylchreest <johnm@gentoo.org>
296 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
297 Managed to mangle the Makefile patch from grsec, to miss out the grsec
298 target. sorry about that. Fixes bug #93022
299
300 *hardened-sources-2.6.11-r12 (17 May 2005)
301
302 17 May 2005; John Mylchreest <johnm@gentoo.org>
303 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
304 +hardened-sources-2.6.11-r12.ebuild:
305 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
306 merges in genpatches-base
307
308 *hardened-sources-2.6.11-r12 (17 May 2005)
309
310 17 May 2005; John Mylchreest <johnm@gentoo.org>
311 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
312 +hardened-sources-2.6.11-r12.ebuild:
313 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
314 merges in genpatches-base
315
316 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
317 -files/2.4.27-cmdline-race.patch,
318 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
319 -files/2.4.28-grsec-binfmt_a.out.patch,
320 -files/2.4.28-grsec-cmdline-race.patch,
321 -files/2.4.28-selinux-binfmt_a.out.patch,
322 -files/2.4.28-selinux-cmdline-race.patch,
323 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
324 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
325 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
326 cleanup..
327
328 *hardened-sources-2.4.30-r1 (21 Apr 2005)
329
330 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
331 - disable aout by default
332
333 *hardened-sources-2.4.30 (18 Apr 2005)
334
335 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
336 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
337 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
338 use
339
340 *hardened-sources-2.4.29 (30 Mar 2005)
341
342 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
343 +hardened-sources-2.4.29.ebuild:
344 New hardened-patches-2.4-29.0 patchball.
345 Removed SELinux support, upgraded GRSecurity to 2.1.4.
346
347 *hardened-sources-2.4.28-r5 (06 Mar 2005)
348
349 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
350 +hardened-sources-2.4.28-r5.ebuild:
351 Added a fix for a PaX vulnerability.
352
353 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
354 hardened-sources-2.4.28-r4.ebuild:
355 Stable on x86
356
357 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
358 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
359 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
360 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
361 - fixed/added RDEPEND= in all kernel-2 ebuilds
362
363 *hardened-sources-2.4.28-r4 (21 Jan 2005)
364
365 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
366 +hardened-sources-2.4.28-r4.ebuild:
367 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
368 backport of neighbour hash updates.
369
370 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
371 hardened-sources-2.4.28-r3.ebuild:
372 Stable on x86
373
374 *hardened-sources-2.6.10-r3 (20 Jan 2005)
375
376 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
377 +hardened-sources-2.6.10-r3.ebuild:
378 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
379 in 2005.0
380
381 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
382 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
383 hardened-sources-2.4.28-r2.ebuild:
384 Mark stable on x86
385
386 *hardened-sources-2.4.28-r3 (17 Jan 2005)
387
388 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
389 +hardened-sources-2.4.28-r3.ebuild:
390 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
391
392 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
393 hardened-sources-2.4.28.ebuild:
394 Mark stable on x86.
395
396 *hardened-sources-2.4.28-r2 (13 Jan 2005)
397
398 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
399 +hardened-sources-2.4.28-r2.ebuild:
400 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
401 Mazinger for grsecurity patches as well.
402
403 *hardened-sources-2.4.28-r1 (23 Dec 2004)
404
405 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
406 Security bump. Thank tocharian for rolling a new patchset...
407
408 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
409 +files/2.4.28-grsec-cmdline-race.patch,
410 +files/2.4.28-selinux-binfmt_a.out.patch,
411 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
412 - Round up remaining security patches that appear to be missing in 2.4.28. -
413 PaX standalone updated to current. hgpv=28.1
414
415 *hardened-sources-2.4.28 (28 Nov 2004)
416
417 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
418 security bump. Thank tocharian for rolling a new patchset
419
420 *hardened-sources-2.4.27-r3 (08 Sep 2004)
421
422 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
423 +hardened-sources-2.4.27-r3.ebuild:
424 Applies the new 2.4-27.2 patchball which updates
425 GRSecurity to the 2.0.1 version.
426
427 *hardened-sources-2.4.27-r2 (31 Aug 2004)
428
429 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
430 +hardened-sources-2.4.27-r2.ebuild:
431 Version bump.
432 This version uses the new 2.4-27.1 patchball which updates
433 both the SELinux PaX hooks patch and the SELinux headers.
434
435 *hardened-sources-2.4.27-r1 (09 Aug 2004)
436
437 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
438 +hardened-sources-2.4.27-r1.ebuild,
439 -hardened-sources-2.4.27.ebuild,
440 +files/2.4.27-cmdline-race.patch:
441 Version bump, fix for cmdline race. See bug #59905.
442
443 *hardened-sources-2.4.26-r6 (09 Aug 2004)
444
445 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
446 +hardened-sources-2.4.26-r6.ebuild,
447 -hardened-sources-2.4.26-r5.ebuild,
448 -hardened-sources-2.4.26-r4.ebuild,
449 +files/2.4.26-cmdline-race.patch:
450 Version bump, fix for cmdline race. See bug #59905.
451
452 *hardened-sources-2.4.27 (08 Aug 2004)
453
454 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
455 +hardened-sources-2.4.27.ebuild,
456 +files/2.4.27-CAN-2004-0394.patch:
457 Ported the patchball to the 2.4.27 kernel version.
458
459 *hardened-sources-2.4.26-r5 (07 Aug 2004)
460
461 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
462 +hardened-sources-2.4.26-r5.ebuild:
463 Updated to use the new hardened-patches-2.4-26.1 patchball.
464 It adds the following features:
465 - Squashfs
466 - Ebtables
467 - Netdev random (core+drivers)
468 - Watchdog Timer (WDT) fix.
469
470 *hardened-sources-2.4.26-r4 (04 Aug 2004)
471
472 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
473 +hardened-sources-2.4.26-r4.ebuild,
474 +files/2.4.26-CAN-2004-0415.patch,
475 -hardened-sources-2.4.26-3:
476 Version bump, fix for CAN 0415, see bug #59378.
477
478 *hardened-sources-2.4.26-r3 (22 Jul 2004)
479
480 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
481 +hardened-sources-2.4.26-r3.ebuild,
482 +files/2.4.26-CAN-2004-0497.patch,
483 -hardened-sources-2.4.26-r2.ebuild:
484 Version bump, fixed CAN 0497, see bug #56171.
485
486 *hardened-sources-2.4.26-r2 (29 Jun 2004)
487
488 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
489 +hardened-sources-2.4.26-r2.ebuild,
490 +files/2.4.26-CAN-2004-0495.patch,
491 +files/2.4.26-CAN-2004-0535.patch,
492 -hardened-sources-2.4.26-r1.ebuild:
493 Fixes for both CAN 0495 and 0535, see bug #54976
494
495 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
496 hardened-sources-2.4.26-r1.ebuild:
497 QA - fix use invocation
498
499 *hardened-sources-2.4.26-r1 (22 June 2004)
500
501 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
502 +hardened-sources-2.4.26-r1.ebuild,
503 +files/2.4.26-CAN-2004-0394.patch,
504 +files/2.4.26-signal-race.patch,
505 -hardened-sources-2.4.26.ebuild,
506 -hardened-sources-2.4.24-r3.ebuild:
507 Version bump for the CAN-2004-0394 issue and bug #53804
508 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
509
510
511 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
512 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
513 Masked hardened-sources-2.4.26.ebuild broken for ppc
514
515 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
516 hardened-sources-2.4.24-r3.ebuild:
517 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
518
519 *hardened-sources-2.4.26 (29 May 2004)
520
521 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
522 +hardened-sources-2.4.26.ebuild:
523 Updated hardened-sources for the 2.4.26 kernel
524 Removed broken components, updated almost everything.
525
526 *hardened-sources-2.4.24-r3 (17 Apr 2004)
527
528 17 Apr 2004; <plasmaroo@gentoo.org>
529 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
530 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
531 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
532 +hardened-sources-2.4.24-r3.ebuild:
533 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
534 vulnerabilities. Old revisions removed.
535
536 *hardened-sources-2.4.24-r2 (15 Apr 2004)
537
538 15 Apr 2004; <plasmaroo@gentoo.org>
539 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
540 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
541 Version bump for the CAN-2004-0109 issue; bug #47881.
542
543 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
544 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
545 Add eutils to inherit.
546
547 *hardened-sources-2.4.24-r1 (19 Feb 2004)
548
549 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
550 files/hardened-sources-2.4.24.munmap.patch:
551 Added the patch for the mremap/munmap vulnerability. Bug #42024.
552
553 *hardened-sources-2.4.24 (06 Feb 2004)
554
555 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
556 hardened-sources-2.4.24.ebuild:
557 Version bump, updated most of the components.
558 This release includes the following:
559
560 - Hardened security
561 - Netfilter patch-o-matic 20031219
562 - FreeSWAN 2.04 & x509 1.4.8
563 - EVMS 2.2.2
564 - XFS 1.3.1
565 - cryptoloop jari
566 - grsecurity 2.0-rc4
567 - SELinux
568 - PaX 200402060000
569 - PaX Obscurity 200308302223
570 - Others...
571
572 Neither -ck nor systrace are included anymore.
573
574 *hardened-sources-2.4.22-r2 (05 Jan 2004)
575
576 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
577 hardened-sources-2.4.22-r2.ebuild:
578 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
579
580 *hardened-sources-2.4.22-r1 (02 Dec 2003)
581
582 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
583 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
584
585 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
586 hardened-sources-2.4.22-r1.ebuild:
587 Version bump for the 'do_brk' vulnerability.
588
589 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
590 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
591 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
592 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
593 Fix the 'do_brk' vulnerability.
594
595 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
596 hardened-sources-2.4.22.ebuild:
597 - Removed the src_install() portion for SELinux flask
598 components. These are no longer handled in the kernel
599 so this code was not necessary.
600
601 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
602 New 2.4.22 based hardened-sources thanks to
603 Phil West <p.west@computer.org>.
604
605 These sources include:
606 - New SELinux API
607 - Updated CK-base
608 - Updated GRSec
609 - Systrace
610 - SuperFreeS/WAN 1.99.8
611 - Propolice kernel build support
612 - EVMS
613 - Other various security related patches
614
615 *hardened-sources-2.4.21 (14 Sep 2003)
616
617 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
618 Updated hardened-sources based on the 2.4.21 Linux kernel.
619 This includes updates to most major components such as:
620 - ck-base-0306300059
621 - selinux-2.4-2003071106
622 - grsecurity-2.0-rc1
623 - Updated IPTables patch-o-matic
624 - Updated SuperFreeS/WAN
625
626 Thanks to Phil West <pwest@computer.org> for his work in getting this
627 updated patch set ready for the 2.4.21 based kernel.
628
629 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
630 Initial import of hardened-sources-2.4.20-r4. This revision
631 includes only a few changes, but one of these is an important
632 security fix. It is recommended all users of hardened-sources
633 upgrade to this release.
634
635 - ioperm bug fix
636 - fixed compilation failure when building without GRSec
637
638 SAL (Secure Auditing for Linux) is NOT included in this revision
639 due to time constraints, but is planned for inclusion in the near
640 future.
641
642 *hardened-sources-2.4.20-r2 (12 Jun 2003)
643
644 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
645 hardened-sources-2.4.20-r3.ebuild:
646 Add Header...
647
648 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
649 hardened-sources-2.4.20-r3.ebuild:
650 Removed warnings from ebuild. This kernel should be safe to
651 use at this point.
652
653 *hardened-sources-2.4.20-r3 (08 Jun 2003)
654
655 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
656 hardened-sources-2.4.20-r3.ebuild:
657 New revision. Includes the following changes over -r2:
658
659 - ck7-base (O(1), preempt, low latency)
660 - Super FreeS/WAN 1.99.7rc2
661 - PaX for the LSM/SELinux branch
662 - GRSecurity 2.0-pre4 (role based access control)
663 - Systrace 1.3
664 - EXT3 fixes
665 - EVMS 2.0.1
666 - GCC 3.1+ compile optimizations
667 - ProPolice kernel build support
668 - Hashing table security fixes
669
670 *hardened-sources-2.4.20-r1 (09 Apr 2003)
671
672 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
673 Initial import of hardened-sources-r2. This new
674 ebuild includes many new performance and security
675 related patches. As in -r1, it will patch in
676 LSM/SELinux if "selinux" is in USE, otherwise it
677 will patch in GRSecurity. The following patches
678 are included in this revision:
679
680 - O(1) Scheduler, Low Latency, and Preempt
681 (pulled from the base CK patch)
682 - ptrace exploit patch for the LSM kernel
683 (the GRSec patch already fixes this)
684 - LSM 2.4-2003040709
685 - SELinux 2.4-2003040709
686 - Systrace v1.2
687 - IPTables patch-o-matic base patches - 20030107
688 - CryptoAPI 2.4.20.1 w/ loop-jari patch
689 - Super FreeS/WAN 1.99.6.1
690 - GRSecurity 1.9.9g
691 - MPPE
692 - EXT3 data journal fix
693 - CIPE 1.5.4
694
695 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
696 hardened-sources-2.4.20-r1.ebuild, manifest:
697 Updated to install flask components correctly for selinux.
698
699 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
700 hardened-sources-2.4.20-r1.ebuild:
701 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
702 is patched in instead. Ptrace patches for selinux have also been added. In
703 either case, systrace support will be patched in as well.
704
705 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
706 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
707 Revision bump for new sources.
708
709 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
710 hardened-sources-2.4.20-r1.ebuild:
711 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
712
713 *hardened-sources-2.4.20 (30 Mar 2003)
714
715 30 Mar 2003; Joshua Brindle <method@gentoo.org>
716 hardened-sources-2.4.20.ebuild:
717 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20