/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.15 - (show annotations) (download)
Tue Dec 2 03:33:43 2003 UTC (10 years, 9 months ago) by iggy
Branch: MAIN
Changes since 1.14: +7 -1 lines
fix do_brk vuln

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
3 # $Header: /home/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.14 2003/11/04 03:39:40 frogger Exp $
4
5 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
6 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
7 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
8 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
9 fix do_brk vuln
10
11 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
12 hardened-sources-2.4.22.ebuild:
13 -Removed the src_install() portion for SELinux flask
14 components. These are no longer handled in the kernel
15 so this code was not necessary.
16
17 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
18 New 2.4.22 based hardened-sources thanks to
19 Phil West <p.west@computer.org>.
20
21 These sources include:
22 -New SELinux API
23 -Updated CK-base
24 -Updated GRSec
25 -Systrace
26 -SuperFreeS/WAN 1.99.8
27 -Propolice kernel build support
28 -EVMS
29 -Other various security related patches
30
31 *hardened-sources-2.4.21 (14 Sep 2003)
32
33 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
34 Updated hardened-sources based on the 2.4.21 Linux kernel.
35 This includes updates to most major components such as:
36 -ck-base-0306300059
37 -selinux-2.4-2003071106
38 -grsecurity-2.0-rc1
39 -Updated IPTables patch-o-matic
40 -Updated SuperFreeS/WAN
41 Thanks to Phil West <pwest@computer.org> for his work in getting this
42 updated patch set ready for the 2.4.21 based kernel.
43
44 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
45 Initial import of hardened-sources-2.4.20-r4. This revision
46 includes only a few changes, but one of these is an important
47 security fix. It is recommended all users of hardened-sources
48 upgrade to this release.
49 - ioperm bug fix
50 - fixed compilation failure when building without GRSec
51 SAL (Secure Auditing for Linux) is NOT included in this revision
52 due to time constraints, but is planned for inclusion in the near
53 future.
54
55 *hardened-sources-2.4.20-r2 (12 Jun 2003)
56
57 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
58 hardened-sources-2.4.20-r3.ebuild:
59 add Header
60
61 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
62 hardened-sources-2.4.20-r3.ebuild:
63 Removed warnings from ebuild. This kernel should be safe to
64 use at this point.
65
66 *hardened-sources-2.4.20-r3 (08 Jun 2003)
67
68 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
69 hardened-sources-2.4.20-r3.ebuild:
70 New revision. Includes the following changes over -r2:
71 - ck7-base (O(1), preempt, low latency)
72 - Super FreeS/WAN 1.99.7rc2
73 - PaX for the LSM/SELinux branch
74 - GRSecurity 2.0-pre4 (role based access control)
75 - Systrace 1.3
76 - EXT3 fixes
77 - EVMS 2.0.1
78 - GCC 3.1+ compile optimizations
79 - ProPolice kernel build support
80 - Hashing table security fixes
81
82 *hardened-sources-2.4.20-r1 (09 Apr 2003)
83
84 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
85 Initial import of hardened-sources-r2. This new
86 ebuild includes many new performance and security
87 related patches. As in -r1, it will patch in
88 LSM/SELinux if "selinux" is in USE, otherwise it
89 will patch in GRSecurity. The following patches
90 are included in this revision:
91 - O(1) Scheduler, Low Latency, and Preempt
92 (pulled from the base CK patch)
93 - ptrace exploit patch for the LSM kernel
94 (the GRSec patch already fixes this)
95 - LSM 2.4-2003040709
96 - SELinux 2.4-2003040709
97 - Systrace v1.2
98 - IPTables patch-o-matic base patches - 20030107
99 - CryptoAPI 2.4.20.1 w/ loop-jari patch
100 - Super FreeS/WAN 1.99.6.1
101 - GRSecurity 1.9.9g
102 - MPPE
103 - EXT3 data journal fix
104 - CIPE 1.5.4
105
106 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
107 hardened-sources-2.4.20-r1.ebuild, manifest:
108 Updated to install flask components correctly for selinux
109
110 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
111 hardened-sources-2.4.20-r1.ebuild:
112 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
113 is patched in instead. Ptrace patches for selinux have also been added. In
114 either case, systrace support will be patched in as well.
115
116 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
117 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
118 Revision bump for new sources
119
120 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
121 hardened-sources-2.4.20-r1.ebuild:
122 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2
123
124 *hardened-sources-2.4.20 (30 Mar 2003)
125
126 30 Mar 2003; Joshua Brindle <method@gentoo.org>
127 hardened-sources-2.4.20.ebuild:
128 initial import, only has systrace support

  ViewVC Help
Powered by ViewVC 1.1.20