| 1 |
# ChangeLog for sys-kernel/hardened-sources |
| 2 |
# Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2 |
| 3 |
# $Header: /home/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.10 2003/06/12 22:13:45 msterret Exp $ |
| 4 |
|
| 5 |
16 Jun 2003; Matthew Rickard <frogger@gentoo.org> : |
| 6 |
Initial import of hardened-sources-2.4.20-r4. This revision |
| 7 |
includes only a few changes, but one of these is an important |
| 8 |
security fix. It is recommended all users of hardened-sources |
| 9 |
upgrade to this release. |
| 10 |
- ioperm bug fix |
| 11 |
- fixed compilation failure when building without GRSec |
| 12 |
SAL (Secure Auditing for Linux) is NOT included in this revision |
| 13 |
due to time constraints, but is planned for inclusion in the near |
| 14 |
future. |
| 15 |
|
| 16 |
*hardened-sources-2.4.20-r2 (12 Jun 2003) |
| 17 |
|
| 18 |
12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild, |
| 19 |
hardened-sources-2.4.20-r3.ebuild: |
| 20 |
add Header |
| 21 |
|
| 22 |
08 Jun 2003; Matthew Rickard <frogger@gentoo.org> |
| 23 |
hardened-sources-2.4.20-r3.ebuild: |
| 24 |
Removed warnings from ebuild. This kernel should be safe to |
| 25 |
use at this point. |
| 26 |
|
| 27 |
*hardened-sources-2.4.20-r3 (08 Jun 2003) |
| 28 |
|
| 29 |
08 Jun 2003; Matthew Rickard <frogger@gentoo.org> |
| 30 |
hardened-sources-2.4.20-r3.ebuild: |
| 31 |
New revision. Includes the following changes over -r2: |
| 32 |
- ck7-base (O(1), preempt, low latency) |
| 33 |
- Super FreeS/WAN 1.99.7rc2 |
| 34 |
- PaX for the LSM/SELinux branch |
| 35 |
- GRSecurity 2.0-pre4 (role based access control) |
| 36 |
- Systrace 1.3 |
| 37 |
- EXT3 fixes |
| 38 |
- EVMS 2.0.1 |
| 39 |
- GCC 3.1+ compile optimizations |
| 40 |
- ProPolice kernel build support |
| 41 |
- Hashing table security fixes |
| 42 |
|
| 43 |
*hardened-sources-2.4.20-r1 (09 Apr 2003) |
| 44 |
|
| 45 |
23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest: |
| 46 |
Initial import of hardened-sources-r2. This new |
| 47 |
ebuild includes many new performance and security |
| 48 |
related patches. As in -r1, it will patch in |
| 49 |
LSM/SELinux if "selinux" is in USE, otherwise it |
| 50 |
will patch in GRSecurity. The following patches |
| 51 |
are included in this revision: |
| 52 |
- O(1) Scheduler, Low Latency, and Preempt |
| 53 |
(pulled from the base CK patch) |
| 54 |
- ptrace exploit patch for the LSM kernel |
| 55 |
(the GRSec patch already fixes this) |
| 56 |
- LSM 2.4-2003040709 |
| 57 |
- SELinux 2.4-2003040709 |
| 58 |
- Systrace v1.2 |
| 59 |
- IPTables patch-o-matic base patches - 20030107 |
| 60 |
- CryptoAPI 2.4.20.1 w/ loop-jari patch |
| 61 |
- Super FreeS/WAN 1.99.6.1 |
| 62 |
- GRSecurity 1.9.9g |
| 63 |
- MPPE |
| 64 |
- EXT3 data journal fix |
| 65 |
- CIPE 1.5.4 |
| 66 |
|
| 67 |
12 Apr 2003; Matthew Rickard <frogger@gentoo.org> |
| 68 |
hardened-sources-2.4.20-r1.ebuild, manifest: |
| 69 |
Updated to install flask components correctly for selinux |
| 70 |
|
| 71 |
12 Apr 2003; Matthew Rickard <frogger@gentoo.org> |
| 72 |
hardened-sources-2.4.20-r1.ebuild: |
| 73 |
LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity |
| 74 |
is patched in instead. Ptrace patches for selinux have also been added. In |
| 75 |
either case, systrace support will be patched in as well. |
| 76 |
|
| 77 |
09 Apr 2003; Matthew Rickard <frogger@gentoo.org> |
| 78 |
hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest: |
| 79 |
Revision bump for new sources |
| 80 |
|
| 81 |
09 Apr 2003; Matthew Rickard <frogger@gentoo.org> |
| 82 |
hardened-sources-2.4.20-r1.ebuild: |
| 83 |
Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2 |
| 84 |
|
| 85 |
*hardened-sources-2.4.20 (30 Mar 2003) |
| 86 |
|
| 87 |
30 Mar 2003; Joshua Brindle <method@gentoo.org> |
| 88 |
hardened-sources-2.4.20.ebuild: |
| 89 |
initial import, only has systrace support |
Parent Directory
| 
Revision Log