/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.122 - (show annotations) (download)
Wed Dec 13 22:10:00 2006 UTC (7 years, 4 months ago) by phreak
Branch: MAIN
Changes since 1.121: +9 -1 lines
Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
(Portage version: 2.1.2_rc3-r3)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.121 2006/12/09 09:25:28 phreak Exp $
4
5 *hardened-sources-2.6.18-r3 (13 Dec 2006)
6
7 13 Dec 2006; Christian Heim <phreak@gentoo.org>
8 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
9 +hardened-sources-2.6.18-r3.ebuild:
10 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
11 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
12
13 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
14 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
15
16 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
17 Stable on ppc wrt bug 157356
18
19 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
20 hardened-sources-2.6.18.ebuild:
21 stable x86, bug #157356
22
23 *hardened-sources-2.6.18-r2 (06 Dec 2006)
24
25 06 Dec 2006; Christian Heim <phreak@gentoo.org>
26 +hardened-sources-2.6.18-r2.ebuild:
27 Revision bump, including 2.6.18.5 (via genpatches) and
28 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
29 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
30 redesign.
31
32 06 Dec 2006; Christian Heim <phreak@gentoo.org>
33 hardened-sources-2.6.18.ebuild:
34 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
35 of Mike Doty).
36
37 *hardened-sources-2.6.18-r1 (23 Nov 2006)
38
39 23 Nov 2006; Christian Heim <phreak@gentoo.org>
40 +hardened-sources-2.6.18-r1.ebuild:
41 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
42
43 *hardened-sources-2.6.18 (11 Nov 2006)
44
45 11 Nov 2006; Christian Heim <phreak@gentoo.org>
46 +hardened-sources-2.6.18.ebuild:
47 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
48
49 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
50 - mark amd64 stable also. bug #151877
51
52 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
53 - mark 2.6.17-r1 stable
54
55 27 Aug 2006; Christian Heim <phreak@gentoo.org>
56 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
57 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
58
59 *hardened-sources-2.6.17-r1 (26 Aug 2006)
60
61 26 Aug 2006; Christian Heim <phreak@gentoo.org>
62 +hardened-sources-2.6.17-r1.ebuild:
63 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
64 grsecurity patch.
65
66 *hardened-sources-2.6.17 (17 Aug 2006)
67
68 17 Aug 2006; Christian Heim <phreak@gentoo.org>
69 +hardened-sources-2.6.17.ebuild:
70 Bumping the hardened-sources-2.6 series to 2.6.17, using
71 genpatches-2.6.17-6.base.
72
73 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
74 - stable on x86 and amd64
75
76 *hardened-sources-2.6.16-r11 (15 Jul 2006)
77
78 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
79 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
80 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
81 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
82 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
83 crusty ebuilds
84
85 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
86 hardened-sources-2.6.16-r10.ebuild:
87 marking stable on x86 and amd64
88
89 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
90 - 2.4.32-r6 stable on x86. RSBAC state unknown
91
92 *hardened-sources-2.4.32-r7 (10 Jul 2006)
93
94 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
95 +hardened-sources-2.4.32-r7.ebuild:
96 Bump PaX for RSBAC to test-17
97
98 *hardened-sources-2.6.16-r9 (03 Jul 2006)
99
100 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
101 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
102 hardened-sources-2.6.16 bump to latest -base.
103
104 *hardened-sources-2.4.32-r6 (30 Jun 2006)
105
106 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
107 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
108 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
109 sysctl controlable resource logging
110
111 *hardened-sources-2.6.16-r7 (05 Jun 2006)
112
113 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
114 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
115 push new 2.6.16 release in preparation for stable
116
117 22 May 2006; <solar@gentoo.org> :
118 - redigest bug 134002
119
120 *hardened-sources-2.4.32-r5 (16 May 2006)
121
122 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
123 +hardened-sources-2.4.32-r5.ebuild:
124 Fixes rsbac common patching (new patch in new -r5 patchset)
125
126 *hardened-sources-2.4.32-r4 (13 May 2006)
127
128 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
129 +hardened-sources-2.4.32-r4.ebuild:
130 - security bumps
131
132 *hardened-sources-2.6.16-r6 (03 May 2006)
133
134 03 May 2006; John Mylchreest <johnm@gentoo.org>
135 +hardened-sources-2.6.16-r6.ebuild:
136 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
137
138 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
139 hardened-sources-2.6.14-r8.ebuild:
140 fix x86_64 build problem, this will delay the digest issue again for a short
141 while but it will sort itself out
142
143 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
144 hardened-sources-2.6.14-r8.ebuild:
145 bump hardened patchset
146
147 27 Apr 2006; Alec Warner <antarus@gentoo.org>
148 files/digest-hardened-sources-2.4.32-r2,
149 files/digest-hardened-sources-2.4.32-r3,
150 files/digest-hardened-sources-2.6.14-r8, Manifest:
151 Fixing duff SHA256 digests: Bug # 131293
152
153 *hardened-sources-2.6.16-r5 (27 Apr 2006)
154
155 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
156 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
157 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
158 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
159 cleanup of old uneccessary sources
160
161 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
162 fix digest
163
164 *hardened-sources-2.6.14-r8 (20 Apr 2006)
165
166 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
167 +hardened-sources-2.6.14-r8.ebuild:
168 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
169
170 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
171 Turning on gpg-signing again, and recomitting
172
173 *hardened-sources-2.6.16-r4 (20 Apr 2006)
174
175 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
176 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
177 +hardened-sources-2.6.16-r4.ebuild:
178 Fix numerous security vulns
179
180 *hardened-sources-2.4.32-r3 (16 Apr 2006)
181
182 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
183 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
184 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
185 - security bump for bug #112791. Removed old ebuilds
186
187 *hardened-sources-2.6.16-r3 (15 Apr 2006)
188
189 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
190 +hardened-sources-2.6.16-r3.ebuild:
191 Removing silly localversion which I missed
192
193 *hardened-sources-2.6.14-r7 (14 Apr 2006)
194
195 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
196 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
197 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
198
199 *hardened-sources-2.6.16-r2 (13 Apr 2006)
200
201 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
202 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
203 +hardened-sources-2.6.16-r2.ebuild:
204 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
205 labels, dropping USERGROUP define fixes, since these were merged mainstream.
206
207 *hardened-sources-2.6.16-r1 (11 Apr 2006)
208
209 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
210 +hardened-sources-2.6.16-r1.ebuild:
211 Bumping to include ppc build fix and 2.6.16.3
212
213 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
214 hardened-sources-2.6.14-r6.ebuild:
215 Stable on x86; bug #127718
216
217 *hardened-sources-2.6.16 (31 Mar 2006)
218
219 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
220 +hardened-sources-2.6.16.ebuild:
221 Bumping to new version of grsec, and kernel base. New squashfs. Based on
222 2.6.16.1
223
224 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
225 hardened-sources-2.6.14-r6.ebuild:
226 Stable on amd64, bug 127718.
227
228 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
229 Stable on ppc. Bug #127718
230
231 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
232 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
233 -hardened-sources-2.6.14-r4.ebuild:
234 Cleanup.
235
236 *hardened-sources-2.6.14-r6 (15 Mar 2006)
237
238 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
239 +hardened-sources-2.6.14-r6.ebuild:
240 Fixes grsec policy recreation bug and adds a
241 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
242
243 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
244 - stable on x86
245
246 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
247 hardened-sources-2.6.14-r5.ebuild:
248 Stable on ppc.
249
250 *hardened-sources-2.6.14-r5 (01 Feb 2006)
251
252 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
253 +hardened-sources-2.6.14-r5.ebuild:
254 fixing every known exploit
255
256 *hardened-sources-2.4.32-r2 (26 Jan 2006)
257
258 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
259 +hardened-sources-2.4.32-r2.ebuild:
260 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
261
262 *hardened-sources-2.6.14-r4 (12 Jan 2006)
263
264 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
265 - version bump for new genpatches which fix up a few sec holes
266
267 *hardened-sources-2.4.32-r1 (05 Jan 2006)
268
269 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
270 - revision bump to add misc vital linux kernel security patches.
271
272 *hardened-sources-2.6.14-r3 (30 Dec 2005)
273
274 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
275 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
276 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
277
278 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
279 hardened-sources-2.6.14-r2.ebuild:
280 making x86 & amd64 stable following testing.
281
282 *hardened-sources-2.6.14-r2 (27 Dec 2005)
283
284 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
285 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
286 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
287 network hooks.
288
289 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
290 hardened-sources-2.6.14-r1.ebuild:
291 bumping to stable early for sec fix on x86 & amd64
292
293 *hardened-sources-2.6.14-r1 (05 Dec 2005)
294
295 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
296 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
297 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
298
299 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
300 - stable on x86 security bug #114227 CAN-2005-3257
301
302 *hardened-sources-2.4.32 (19 Nov 2005)
303
304 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
305 +hardened-sources-2.4.32.ebuild:
306 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
307 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
308 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
309 rsbac >> /etc/portage/package.use)
310
311 *hardened-sources-2.6.14 (14 Nov 2005)
312
313 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
314 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
315 Bumping 2.6 series to 2.6.14.2
316
317 *hardened-sources-2.6.13-r2 (20 Oct 2005)
318
319 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
320 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
321 +hardened-sources-2.6.13-r2.ebuild:
322 Fixes minor build error in ppc.
323
324 *hardened-sources-2.6.13-r1 (17 Oct 2005)
325
326 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
327 +hardened-sources-2.6.13-r1.ebuild:
328 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
329 2.6.13.4, fixes some major amd64 stability problems.
330
331 *hardened-sources-2.6.13 (16 Sep 2005)
332
333 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
334 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
335 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
336 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
337 users should test this thoroughly.
338
339 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
340 - stable on x86
341
342 *hardened-sources-2.6.11-r15 (27 Jun 2005)
343
344 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
345 +hardened-sources-2.6.11-r15.ebuild:
346 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
347 grsec redefining curr_ip struct.
348
349 *hardened-sources-2.4.31 (20 Jun 2005)
350
351 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
352 initial import of 2.4.31 tree
353
354 *hardened-sources-2.6.11-r14 (14 Jun 2005)
355
356 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
357 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
358 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
359 naming scheme to abide by genpatches
360
361 *hardened-sources-2.6.11-r13 (18 May 2005)
362
363 18 May 2005; John Mylchreest <johnm@gentoo.org>
364 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
365 Managed to mangle the Makefile patch from grsec, to miss out the grsec
366 target. sorry about that. Fixes bug #93022
367
368 *hardened-sources-2.6.11-r12 (17 May 2005)
369
370 17 May 2005; John Mylchreest <johnm@gentoo.org>
371 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
372 +hardened-sources-2.6.11-r12.ebuild:
373 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
374 merges in genpatches-base
375
376 *hardened-sources-2.6.11-r12 (17 May 2005)
377
378 17 May 2005; John Mylchreest <johnm@gentoo.org>
379 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
380 +hardened-sources-2.6.11-r12.ebuild:
381 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
382 merges in genpatches-base
383
384 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
385 -files/2.4.27-cmdline-race.patch,
386 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
387 -files/2.4.28-grsec-binfmt_a.out.patch,
388 -files/2.4.28-grsec-cmdline-race.patch,
389 -files/2.4.28-selinux-binfmt_a.out.patch,
390 -files/2.4.28-selinux-cmdline-race.patch,
391 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
392 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
393 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
394 cleanup..
395
396 *hardened-sources-2.4.30-r1 (21 Apr 2005)
397
398 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
399 - disable aout by default
400
401 *hardened-sources-2.4.30 (18 Apr 2005)
402
403 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
404 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
405 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
406 use
407
408 *hardened-sources-2.4.29 (30 Mar 2005)
409
410 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
411 +hardened-sources-2.4.29.ebuild:
412 New hardened-patches-2.4-29.0 patchball.
413 Removed SELinux support, upgraded GRSecurity to 2.1.4.
414
415 *hardened-sources-2.4.28-r5 (06 Mar 2005)
416
417 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
418 +hardened-sources-2.4.28-r5.ebuild:
419 Added a fix for a PaX vulnerability.
420
421 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
422 hardened-sources-2.4.28-r4.ebuild:
423 Stable on x86
424
425 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
426 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
427 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
428 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
429 - fixed/added RDEPEND= in all kernel-2 ebuilds
430
431 *hardened-sources-2.4.28-r4 (21 Jan 2005)
432
433 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
434 +hardened-sources-2.4.28-r4.ebuild:
435 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
436 backport of neighbour hash updates.
437
438 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
439 hardened-sources-2.4.28-r3.ebuild:
440 Stable on x86
441
442 *hardened-sources-2.6.10-r3 (20 Jan 2005)
443
444 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
445 +hardened-sources-2.6.10-r3.ebuild:
446 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
447 in 2005.0
448
449 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
450 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
451 hardened-sources-2.4.28-r2.ebuild:
452 Mark stable on x86
453
454 *hardened-sources-2.4.28-r3 (17 Jan 2005)
455
456 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
457 +hardened-sources-2.4.28-r3.ebuild:
458 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
459
460 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
461 hardened-sources-2.4.28.ebuild:
462 Mark stable on x86.
463
464 *hardened-sources-2.4.28-r2 (13 Jan 2005)
465
466 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
467 +hardened-sources-2.4.28-r2.ebuild:
468 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
469 Mazinger for grsecurity patches as well.
470
471 *hardened-sources-2.4.28-r1 (23 Dec 2004)
472
473 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
474 Security bump. Thank tocharian for rolling a new patchset...
475
476 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
477 +files/2.4.28-grsec-cmdline-race.patch,
478 +files/2.4.28-selinux-binfmt_a.out.patch,
479 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
480 - Round up remaining security patches that appear to be missing in 2.4.28. -
481 PaX standalone updated to current. hgpv=28.1
482
483 *hardened-sources-2.4.28 (28 Nov 2004)
484
485 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
486 security bump. Thank tocharian for rolling a new patchset
487
488 *hardened-sources-2.4.27-r3 (08 Sep 2004)
489
490 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
491 +hardened-sources-2.4.27-r3.ebuild:
492 Applies the new 2.4-27.2 patchball which updates
493 GRSecurity to the 2.0.1 version.
494
495 *hardened-sources-2.4.27-r2 (31 Aug 2004)
496
497 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
498 +hardened-sources-2.4.27-r2.ebuild:
499 Version bump.
500 This version uses the new 2.4-27.1 patchball which updates
501 both the SELinux PaX hooks patch and the SELinux headers.
502
503 *hardened-sources-2.4.27-r1 (09 Aug 2004)
504
505 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
506 +hardened-sources-2.4.27-r1.ebuild,
507 -hardened-sources-2.4.27.ebuild,
508 +files/2.4.27-cmdline-race.patch:
509 Version bump, fix for cmdline race. See bug #59905.
510
511 *hardened-sources-2.4.26-r6 (09 Aug 2004)
512
513 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
514 +hardened-sources-2.4.26-r6.ebuild,
515 -hardened-sources-2.4.26-r5.ebuild,
516 -hardened-sources-2.4.26-r4.ebuild,
517 +files/2.4.26-cmdline-race.patch:
518 Version bump, fix for cmdline race. See bug #59905.
519
520 *hardened-sources-2.4.27 (08 Aug 2004)
521
522 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
523 +hardened-sources-2.4.27.ebuild,
524 +files/2.4.27-CAN-2004-0394.patch:
525 Ported the patchball to the 2.4.27 kernel version.
526
527 *hardened-sources-2.4.26-r5 (07 Aug 2004)
528
529 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
530 +hardened-sources-2.4.26-r5.ebuild:
531 Updated to use the new hardened-patches-2.4-26.1 patchball.
532 It adds the following features:
533 - Squashfs
534 - Ebtables
535 - Netdev random (core+drivers)
536 - Watchdog Timer (WDT) fix.
537
538 *hardened-sources-2.4.26-r4 (04 Aug 2004)
539
540 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
541 +hardened-sources-2.4.26-r4.ebuild,
542 +files/2.4.26-CAN-2004-0415.patch,
543 -hardened-sources-2.4.26-3:
544 Version bump, fix for CAN 0415, see bug #59378.
545
546 *hardened-sources-2.4.26-r3 (22 Jul 2004)
547
548 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
549 +hardened-sources-2.4.26-r3.ebuild,
550 +files/2.4.26-CAN-2004-0497.patch,
551 -hardened-sources-2.4.26-r2.ebuild:
552 Version bump, fixed CAN 0497, see bug #56171.
553
554 *hardened-sources-2.4.26-r2 (29 Jun 2004)
555
556 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
557 +hardened-sources-2.4.26-r2.ebuild,
558 +files/2.4.26-CAN-2004-0495.patch,
559 +files/2.4.26-CAN-2004-0535.patch,
560 -hardened-sources-2.4.26-r1.ebuild:
561 Fixes for both CAN 0495 and 0535, see bug #54976
562
563 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
564 hardened-sources-2.4.26-r1.ebuild:
565 QA - fix use invocation
566
567 *hardened-sources-2.4.26-r1 (22 June 2004)
568
569 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
570 +hardened-sources-2.4.26-r1.ebuild,
571 +files/2.4.26-CAN-2004-0394.patch,
572 +files/2.4.26-signal-race.patch,
573 -hardened-sources-2.4.26.ebuild,
574 -hardened-sources-2.4.24-r3.ebuild:
575 Version bump for the CAN-2004-0394 issue and bug #53804
576 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
577
578
579 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
580 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
581 Masked hardened-sources-2.4.26.ebuild broken for ppc
582
583 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
584 hardened-sources-2.4.24-r3.ebuild:
585 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
586
587 *hardened-sources-2.4.26 (29 May 2004)
588
589 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
590 +hardened-sources-2.4.26.ebuild:
591 Updated hardened-sources for the 2.4.26 kernel
592 Removed broken components, updated almost everything.
593
594 *hardened-sources-2.4.24-r3 (17 Apr 2004)
595
596 17 Apr 2004; <plasmaroo@gentoo.org>
597 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
598 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
599 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
600 +hardened-sources-2.4.24-r3.ebuild:
601 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
602 vulnerabilities. Old revisions removed.
603
604 *hardened-sources-2.4.24-r2 (15 Apr 2004)
605
606 15 Apr 2004; <plasmaroo@gentoo.org>
607 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
608 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
609 Version bump for the CAN-2004-0109 issue; bug #47881.
610
611 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
612 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
613 Add eutils to inherit.
614
615 *hardened-sources-2.4.24-r1 (19 Feb 2004)
616
617 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
618 files/hardened-sources-2.4.24.munmap.patch:
619 Added the patch for the mremap/munmap vulnerability. Bug #42024.
620
621 *hardened-sources-2.4.24 (06 Feb 2004)
622
623 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
624 hardened-sources-2.4.24.ebuild:
625 Version bump, updated most of the components.
626 This release includes the following:
627
628 - Hardened security
629 - Netfilter patch-o-matic 20031219
630 - FreeSWAN 2.04 & x509 1.4.8
631 - EVMS 2.2.2
632 - XFS 1.3.1
633 - cryptoloop jari
634 - grsecurity 2.0-rc4
635 - SELinux
636 - PaX 200402060000
637 - PaX Obscurity 200308302223
638 - Others...
639
640 Neither -ck nor systrace are included anymore.
641
642 *hardened-sources-2.4.22-r2 (05 Jan 2004)
643
644 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
645 hardened-sources-2.4.22-r2.ebuild:
646 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
647
648 *hardened-sources-2.4.22-r1 (02 Dec 2003)
649
650 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
651 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
652
653 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
654 hardened-sources-2.4.22-r1.ebuild:
655 Version bump for the 'do_brk' vulnerability.
656
657 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
658 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
659 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
660 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
661 Fix the 'do_brk' vulnerability.
662
663 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
664 hardened-sources-2.4.22.ebuild:
665 - Removed the src_install() portion for SELinux flask
666 components. These are no longer handled in the kernel
667 so this code was not necessary.
668
669 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
670 New 2.4.22 based hardened-sources thanks to
671 Phil West <p.west@computer.org>.
672
673 These sources include:
674 - New SELinux API
675 - Updated CK-base
676 - Updated GRSec
677 - Systrace
678 - SuperFreeS/WAN 1.99.8
679 - Propolice kernel build support
680 - EVMS
681 - Other various security related patches
682
683 *hardened-sources-2.4.21 (14 Sep 2003)
684
685 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
686 Updated hardened-sources based on the 2.4.21 Linux kernel.
687 This includes updates to most major components such as:
688 - ck-base-0306300059
689 - selinux-2.4-2003071106
690 - grsecurity-2.0-rc1
691 - Updated IPTables patch-o-matic
692 - Updated SuperFreeS/WAN
693
694 Thanks to Phil West <pwest@computer.org> for his work in getting this
695 updated patch set ready for the 2.4.21 based kernel.
696
697 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
698 Initial import of hardened-sources-2.4.20-r4. This revision
699 includes only a few changes, but one of these is an important
700 security fix. It is recommended all users of hardened-sources
701 upgrade to this release.
702
703 - ioperm bug fix
704 - fixed compilation failure when building without GRSec
705
706 SAL (Secure Auditing for Linux) is NOT included in this revision
707 due to time constraints, but is planned for inclusion in the near
708 future.
709
710 *hardened-sources-2.4.20-r2 (12 Jun 2003)
711
712 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
713 hardened-sources-2.4.20-r3.ebuild:
714 Add Header...
715
716 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
717 hardened-sources-2.4.20-r3.ebuild:
718 Removed warnings from ebuild. This kernel should be safe to
719 use at this point.
720
721 *hardened-sources-2.4.20-r3 (08 Jun 2003)
722
723 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
724 hardened-sources-2.4.20-r3.ebuild:
725 New revision. Includes the following changes over -r2:
726
727 - ck7-base (O(1), preempt, low latency)
728 - Super FreeS/WAN 1.99.7rc2
729 - PaX for the LSM/SELinux branch
730 - GRSecurity 2.0-pre4 (role based access control)
731 - Systrace 1.3
732 - EXT3 fixes
733 - EVMS 2.0.1
734 - GCC 3.1+ compile optimizations
735 - ProPolice kernel build support
736 - Hashing table security fixes
737
738 *hardened-sources-2.4.20-r1 (09 Apr 2003)
739
740 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
741 Initial import of hardened-sources-r2. This new
742 ebuild includes many new performance and security
743 related patches. As in -r1, it will patch in
744 LSM/SELinux if "selinux" is in USE, otherwise it
745 will patch in GRSecurity. The following patches
746 are included in this revision:
747
748 - O(1) Scheduler, Low Latency, and Preempt
749 (pulled from the base CK patch)
750 - ptrace exploit patch for the LSM kernel
751 (the GRSec patch already fixes this)
752 - LSM 2.4-2003040709
753 - SELinux 2.4-2003040709
754 - Systrace v1.2
755 - IPTables patch-o-matic base patches - 20030107
756 - CryptoAPI 2.4.20.1 w/ loop-jari patch
757 - Super FreeS/WAN 1.99.6.1
758 - GRSecurity 1.9.9g
759 - MPPE
760 - EXT3 data journal fix
761 - CIPE 1.5.4
762
763 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
764 hardened-sources-2.4.20-r1.ebuild, manifest:
765 Updated to install flask components correctly for selinux.
766
767 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
768 hardened-sources-2.4.20-r1.ebuild:
769 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
770 is patched in instead. Ptrace patches for selinux have also been added. In
771 either case, systrace support will be patched in as well.
772
773 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
774 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
775 Revision bump for new sources.
776
777 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
778 hardened-sources-2.4.20-r1.ebuild:
779 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
780
781 *hardened-sources-2.4.20 (30 Mar 2003)
782
783 30 Mar 2003; Joshua Brindle <method@gentoo.org>
784 hardened-sources-2.4.20.ebuild:
785 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20