/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.186 - (show annotations) (download)
Wed Sep 26 22:34:30 2007 UTC (7 years ago) by phreak
Branch: MAIN
Changes since 1.185: +7 -1 lines
Revision bump, grabbing up till Linux 2.6.22.9.
(Portage version: 2.1.3.9)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.185 2007/09/24 17:27:56 phreak Exp $
4
5 *hardened-sources-2.6.22-r6 (26 Sep 2007)
6
7 26 Sep 2007; Christian Heim <phreak@gentoo.org>
8 +hardened-sources-2.6.22-r6.ebuild:
9 Revision bump, grabbing up till Linux 2.6.22.9.
10
11 24 Sep 2007; Christian Heim <phreak@gentoo.org>
12 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
13 Cleaning up further.
14
15 *hardened-sources-2.6.20-r10 (24 Sep 2007)
16
17 24 Sep 2007; Christian Heim <phreak@gentoo.org>
18 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
19 +hardened-sources-2.6.20-r10.ebuild:
20 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
21 revisions.
22
23 *hardened-sources-2.6.22-r5 (22 Sep 2007)
24
25 22 Sep 2007; Christian Heim <phreak@gentoo.org>
26 +hardened-sources-2.6.22-r5.ebuild:
27 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
28
29 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
30 Removing johnm from metadata.xml (see #186467 for reference).
31
32 *hardened-sources-2.6.22-r4 (17 Sep 2007)
33
34 17 Sep 2007; Christian Heim <phreak@gentoo.org>
35 +hardened-sources-2.6.22-r4.ebuild:
36 Revision bump, hopefully fixing all those weird PAX failures.
37
38 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
39 Updating the metadata.xml.
40
41 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
42 Removing tocharian from metadata due to his retirement (see #71718 for
43 reference).
44
45 *hardened-sources-2.6.20-r9 (30 Aug 2007)
46
47 30 Aug 2007; Christian Heim <phreak@gentoo.org>
48 +hardened-sources-2.6.20-r9.ebuild:
49 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
50
51 29 Aug 2007; Christian Heim <phreak@gentoo.org>
52 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
53 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
54 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
55 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
56 -hardened-sources-2.6.22-r2.ebuild:
57 Removing some redundant versions.
58
59 *hardened-sources-2.4.35-r1 (29 Aug 2007)
60
61 29 Aug 2007; Christian Heim <phreak@gentoo.org>
62 +hardened-sources-2.4.35-r1.ebuild:
63 Revision bump, new grsecurity patch.
64
65 *hardened-sources-2.6.20-r8 (26 Aug 2007)
66
67 26 Aug 2007; Christian Heim <phreak@gentoo.org>
68 +hardened-sources-2.6.20-r8.ebuild:
69 Revision bump for Linux 2.6.20.17.
70
71 *hardened-sources-2.6.22-r3 (22 Aug 2007)
72
73 22 Aug 2007; Christian Heim <phreak@gentoo.org>
74 +hardened-sources-2.6.22-r3.ebuild:
75 Revision bump for Linux 2.6.22.4.
76
77 16 Aug 2007; Christian Heim <phreak@gentoo.org>
78 hardened-sources-2.6.22-r2.ebuild:
79 Updated patchset, to fix the alignment against 2.6.22.3.
80
81 *hardened-sources-2.6.22-r2 (16 Aug 2007)
82
83 16 Aug 2007; Christian Heim <phreak@gentoo.org>
84 +hardened-sources-2.6.22-r2.ebuild:
85 Revision bump for Linux 2.6.22.3.
86
87 *hardened-sources-2.4.35 (16 Aug 2007)
88
89 16 Aug 2007; Christian Heim <phreak@gentoo.org>
90 +hardened-sources-2.4.35.ebuild:
91 Version bump, initial version for Linux 2.4.35.
92
93 *hardened-sources-2.6.21-r4 (16 Aug 2007)
94
95 16 Aug 2007; Christian Heim <phreak@gentoo.org>
96 +hardened-sources-2.6.21-r4.ebuild:
97 Revision bump for Linux 2.6.21.6.
98
99 *hardened-sources-2.6.20-r7 (16 Aug 2007)
100
101 16 Aug 2007; Christian Heim <phreak@gentoo.org>
102 +hardened-sources-2.6.20-r7.ebuild:
103 Revision bump for Linux 2.6.20.16.
104
105 *hardened-sources-2.6.22-r1 (13 Aug 2007)
106
107 13 Aug 2007; Christian Heim <phreak@gentoo.org>
108 +hardened-sources-2.6.22-r1.ebuild:
109 Yet another revision bump.
110
111 *hardened-sources-2.6.22 (10 Aug 2007)
112
113 10 Aug 2007; Christian Heim <phreak@gentoo.org>
114 +hardened-sources-2.6.22.ebuild:
115 Initial release for 2.6.22. If you are using hardened-sources on a desktop
116 machine (P4 or newer), be aware you might need to disable
117 CONFIG_PAX_PAGEEXEC.
118
119 04 Aug 2007; Christian Heim <phreak@gentoo.org>
120 hardened-sources-2.6.20-r6.ebuild:
121 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
122 2.6.20.15.
123
124 10 Jul 2007; Christian Heim <phreak@gentoo.org>
125 hardened-sources-2.6.20-r5.ebuild:
126 Marking hardened-sources-2.6.20-r5 stable on ppc.
127
128 10 Jul 2007; Christian Heim <phreak@gentoo.org>
129 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
130 Cleanup.
131
132 *hardened-sources-2.6.20-r6 (08 Jul 2007)
133
134 08 Jul 2007; Christian Heim <phreak@gentoo.org>
135 +hardened-sources-2.6.20-r6.ebuild:
136 Revision bump, grabbing yet another stable release.
137
138 17 Jun 2007; Christian Heim <phreak@gentoo.org>
139 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
140 -hardened-sources-2.6.21-r2.ebuild:
141 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
142 alpha stable KEYWORD by mistake.
143
144 17 Jun 2007; Christian Heim <phreak@gentoo.org>
145 hardened-sources-2.6.20-r5.ebuild:
146 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
147 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
148
149 *hardened-sources-2.6.21-r3 (12 Jun 2007)
150
151 12 Jun 2007; Christian Heim <phreak@gentoo.org>
152 +hardened-sources-2.6.21-r3.ebuild:
153 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
154 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
155 love.
156
157 *hardened-sources-2.6.20-r5 (11 Jun 2007)
158
159 11 Jun 2007; Christian Heim <phreak@gentoo.org>
160 +hardened-sources-2.6.20-r5.ebuild:
161 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
162 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
163 love.
164
165 *hardened-sources-2.4.34.5 (11 Jun 2007)
166
167 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
168 +hardened-sources-2.4.34.5.ebuild:
169 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
170
171 30 May 2007; Christian Heim <phreak@gentoo.org>
172 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
173 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
174 stale ebuild(s).
175
176 30 May 2007; Christian Heim <phreak@gentoo.org>
177 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
178 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
179 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
180 Doing some cleanups, remove stale ebuilds.
181
182 26 May 2007; Christian Heim <phreak@gentoo.org>
183 hardened-sources-2.6.21-r2.ebuild:
184 Fixing the grsecurity patch, had one '};' too much.
185
186 *hardened-sources-2.6.21-r2 (26 May 2007)
187
188 26 May 2007; Christian Heim <phreak@gentoo.org>
189 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
190 +hardened-sources-2.6.21-r2.ebuild:
191 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
192 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
193
194 *hardened-sources-2.6.20-r4 (26 May 2007)
195
196 26 May 2007; Christian Heim <phreak@gentoo.org>
197 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
198 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
199 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
200
201 15 May 2007; Christian Heim <phreak@gentoo.org>
202 hardened-sources-2.6.20-r3.ebuild:
203 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
204 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
205 grsecurity patch fail in that exact same hunk.
206
207 *hardened-sources-2.6.20-r3 (15 May 2007)
208
209 15 May 2007; Christian Heim <phreak@gentoo.org>
210 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
211 Revision bump, incorporating Linux 2.6.20.11.
212
213 *hardened-sources-2.6.21-r1 (11 May 2007)
214
215 11 May 2007; Christian Heim <phreak@gentoo.org>
216 +hardened-sources-2.6.21-r1.ebuild:
217 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
218 mentioned in #177234.
219
220 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
221 files/digest-hardened-sources-2.6.21, Manifest:
222 Fix Manifest/digest for linux-2.6.21.tar.bz2
223
224 06 May 2007; Christian Heim <phreak@gentoo.org>
225 hardened-sources-2.6.21.ebuild:
226 Bumping the hardened-patches version, needed for the fix for #177234.
227
228 *hardened-sources-2.6.21 (02 May 2007)
229
230 02 May 2007; Christian Heim <phreak@gentoo.org>
231 +hardened-sources-2.6.21.ebuild:
232 Version bump, Linux 2.6.21-hardened.
233
234 29 Apr 2007; Christian Heim <phreak@gentoo.org>
235 hardened-sources-2.6.20-r2.ebuild:
236 Adding ~ia64 on Ned's request.
237
238 29 Apr 2007; Christian Heim <phreak@gentoo.org>
239 hardened-sources-2.6.20-r2.ebuild:
240 Fixing the included grsecurity patch, wasn't alligning due to the Index:
241 header line(s).
242
243 29 Apr 2007; Christian Heim <phreak@gentoo.org>
244 hardened-sources-2.6.20-r2.ebuild:
245 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
246
247 *hardened-sources-2.6.20-r2 (10 Apr 2007)
248
249 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
250 +hardened-sources-2.6.20-r2.ebuild:
251 Version bump, on behalf of phreak
252
253 *hardened-sources-2.6.20-r1 (04 Apr 2007)
254
255 04 Apr 2007; Christian Heim <phreak@gentoo.org>
256 +hardened-sources-2.6.20-r1.ebuild:
257 Revision bump, grabbing a newer grsecurity snapshot.
258
259 *hardened-sources-2.6.20 (25 Mar 2007)
260
261 25 Mar 2007; Christian Heim <phreak@gentoo.org>
262 +hardened-sources-2.6.20.ebuild:
263 Finally a hardened-sources version for 2.6.20; many people have been waiting
264 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
265 testbox.
266
267 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
268 hardened-sources-2.6.18-r6.ebuild:
269 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
270
271 *hardened-sources-2.6.18-r6 (16 Mar 2007)
272
273 16 Mar 2007; Christian Heim <phreak@gentoo.org>
274 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
275 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
276 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
277 supposed to be.
278
279 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
280 Fixing the Manifest, the previous one was broken (as in still had the
281 deleted ebuild in it).
282
283 06 Mar 2007; Christian Heim <phreak@gentoo.org>
284 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
285 +hardened-sources-2.6.18-r5.ebuild:
286 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
287 Linux 2.6.18.8. Also cleaning up the older version.
288
289 *hardened-sources-2.6.18-r5 (06 Mar 2007)
290
291 06 Mar 2007; Christian Heim <phreak@gentoo.org>
292 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
293 +hardened-sources-2.6.18-r5.ebuild:
294 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
295 Linux 2.6.18.8. Also cleaning up the older version.
296
297 24 Feb 2007; Christian Heim <phreak@gentoo.org>
298 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
299 -hardened-sources-2.6.19-r5.ebuild:
300 Removing some of the old version, that didn't work.
301
302 *hardened-sources-2.6.19-r6 (12 Feb 2007)
303
304 12 Feb 2007; Christian Heim <phreak@gentoo.org>
305 +hardened-sources-2.6.19-r6.ebuild:
306 Revision bump, including a new grsec version fixing #166235.
307
308 *hardened-sources-2.4.34 (24 Jan 2007)
309
310 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
311 Manifest:
312 updating Manifest with checksums of new tarball and ebuild
313
314 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
315 +hardened-sources-2.4.34.ebuild:
316 I added new hardened sources 2.4 update, this is a critical path
317 security bugfix - all users of h-s are strongly advised
318 to update their existing hardened sources to this version.
319 It contains a fix for a kernel vulnerability that is pertaining
320 to the PaX changes to virtual memory management, possibly leading
321 to a local kernel exploit ... see grsecurity.net forums and homepage
322
323 23 Jan 2007; Christian Heim <phreak@gentoo.org>
324 files/digest-hardened-sources-2.6.19-r5, Manifest:
325 Fixing the patch-tarball digest.
326
327 *hardened-sources-2.6.19-r5 (23 Jan 2007)
328
329 23 Jan 2007; Christian Heim <phreak@gentoo.org>
330 +hardened-sources-2.6.19-r5.ebuild:
331 Revision bump, closing the recently discovered PaX expand_stack()
332 vulnerability.
333
334 *hardened-sources-2.6.19-r4 (14 Jan 2007)
335
336 14 Jan 2007; Christian Heim <phreak@gentoo.org>
337 +hardened-sources-2.6.19-r4.ebuild:
338 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
339 dropping the randomized PID feature.
340
341 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
342 hardened-sources-2.4.33.4.ebuild:
343 stable x86, bug #161171
344
345 *hardened-sources-2.6.19-r3 (27 Dec 2006)
346
347 27 Dec 2006; Christian Heim <phreak@gentoo.org>
348 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
349 Revision bump for bug #157186 and #158786.
350
351 *hardened-sources-2.6.18-r4 (27 Dec 2006)
352
353 27 Dec 2006; Christian Heim <phreak@gentoo.org>
354 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
355 Revision bump for bug #157186.
356
357 *hardened-sources-2.6.19-r2 (23 Dec 2006)
358
359 23 Dec 2006; Christian Heim <phreak@gentoo.org>
360 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
361 Revision bump to pull in genpatches-2.6.19-3 for #157186.
362
363 17 Dec 2006; Christian Heim <phreak@gentoo.org>
364 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
365 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
366 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
367 hardened-sources-2.6.19-r1.ebuild:
368 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
369 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
370
371 *hardened-sources-2.4.33.4 (17 Dec 2006)
372
373 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
374 +hardened-sources-2.4.33.4.ebuild:
375 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
376 and quilting
377
378 *hardened-sources-2.6.19-r1 (14 Dec 2006)
379
380 14 Dec 2006; Christian Heim <phreak@gentoo.org>
381 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
382 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
383 for reporting).
384
385 *hardened-sources-2.6.19 (13 Dec 2006)
386
387 13 Dec 2006; Christian Heim <phreak@gentoo.org>
388 +hardened-sources-2.6.19.ebuild:
389 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
390 Brad for providing that prompt update.
391
392 *hardened-sources-2.6.18-r3 (13 Dec 2006)
393
394 13 Dec 2006; Christian Heim <phreak@gentoo.org>
395 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
396 +hardened-sources-2.6.18-r3.ebuild:
397 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
398 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
399
400 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
401 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
402
403 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
404 Stable on ppc wrt bug 157356
405
406 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
407 hardened-sources-2.6.18.ebuild:
408 stable x86, bug #157356
409
410 *hardened-sources-2.6.18-r2 (06 Dec 2006)
411
412 06 Dec 2006; Christian Heim <phreak@gentoo.org>
413 +hardened-sources-2.6.18-r2.ebuild:
414 Revision bump, including 2.6.18.5 (via genpatches) and
415 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
416 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
417 redesign.
418
419 06 Dec 2006; Christian Heim <phreak@gentoo.org>
420 hardened-sources-2.6.18.ebuild:
421 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
422 of Mike Doty).
423
424 *hardened-sources-2.6.18-r1 (23 Nov 2006)
425
426 23 Nov 2006; Christian Heim <phreak@gentoo.org>
427 +hardened-sources-2.6.18-r1.ebuild:
428 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
429
430 *hardened-sources-2.6.18 (11 Nov 2006)
431
432 11 Nov 2006; Christian Heim <phreak@gentoo.org>
433 +hardened-sources-2.6.18.ebuild:
434 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
435
436 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
437 - mark amd64 stable also. bug #151877
438
439 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
440 - mark 2.6.17-r1 stable
441
442 27 Aug 2006; Christian Heim <phreak@gentoo.org>
443 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
444 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
445
446 *hardened-sources-2.6.17-r1 (26 Aug 2006)
447
448 26 Aug 2006; Christian Heim <phreak@gentoo.org>
449 +hardened-sources-2.6.17-r1.ebuild:
450 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
451 grsecurity patch.
452
453 *hardened-sources-2.6.17 (17 Aug 2006)
454
455 17 Aug 2006; Christian Heim <phreak@gentoo.org>
456 +hardened-sources-2.6.17.ebuild:
457 Bumping the hardened-sources-2.6 series to 2.6.17, using
458 genpatches-2.6.17-6.base.
459
460 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
461 - stable on x86 and amd64
462
463 *hardened-sources-2.6.16-r11 (15 Jul 2006)
464
465 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
466 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
467 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
468 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
469 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
470 crusty ebuilds
471
472 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
473 hardened-sources-2.6.16-r10.ebuild:
474 marking stable on x86 and amd64
475
476 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
477 - 2.4.32-r6 stable on x86. RSBAC state unknown
478
479 *hardened-sources-2.4.32-r7 (10 Jul 2006)
480
481 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
482 +hardened-sources-2.4.32-r7.ebuild:
483 Bump PaX for RSBAC to test-17
484
485 *hardened-sources-2.6.16-r9 (03 Jul 2006)
486
487 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
488 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
489 hardened-sources-2.6.16 bump to latest -base.
490
491 *hardened-sources-2.4.32-r6 (30 Jun 2006)
492
493 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
494 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
495 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
496 sysctl controlable resource logging
497
498 *hardened-sources-2.6.16-r7 (05 Jun 2006)
499
500 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
501 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
502 push new 2.6.16 release in preparation for stable
503
504 22 May 2006; <solar@gentoo.org> :
505 - redigest bug 134002
506
507 *hardened-sources-2.4.32-r5 (16 May 2006)
508
509 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
510 +hardened-sources-2.4.32-r5.ebuild:
511 Fixes rsbac common patching (new patch in new -r5 patchset)
512
513 *hardened-sources-2.4.32-r4 (13 May 2006)
514
515 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
516 +hardened-sources-2.4.32-r4.ebuild:
517 - security bumps
518
519 *hardened-sources-2.6.16-r6 (03 May 2006)
520
521 03 May 2006; John Mylchreest <johnm@gentoo.org>
522 +hardened-sources-2.6.16-r6.ebuild:
523 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
524
525 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
526 hardened-sources-2.6.14-r8.ebuild:
527 fix x86_64 build problem, this will delay the digest issue again for a short
528 while but it will sort itself out
529
530 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
531 hardened-sources-2.6.14-r8.ebuild:
532 bump hardened patchset
533
534 27 Apr 2006; Alec Warner <antarus@gentoo.org>
535 files/digest-hardened-sources-2.4.32-r2,
536 files/digest-hardened-sources-2.4.32-r3,
537 files/digest-hardened-sources-2.6.14-r8, Manifest:
538 Fixing duff SHA256 digests: Bug # 131293
539
540 *hardened-sources-2.6.16-r5 (27 Apr 2006)
541
542 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
543 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
544 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
545 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
546 cleanup of old uneccessary sources
547
548 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
549 fix digest
550
551 *hardened-sources-2.6.14-r8 (20 Apr 2006)
552
553 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
554 +hardened-sources-2.6.14-r8.ebuild:
555 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
556
557 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
558 Turning on gpg-signing again, and recomitting
559
560 *hardened-sources-2.6.16-r4 (20 Apr 2006)
561
562 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
563 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
564 +hardened-sources-2.6.16-r4.ebuild:
565 Fix numerous security vulns
566
567 *hardened-sources-2.4.32-r3 (16 Apr 2006)
568
569 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
570 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
571 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
572 - security bump for bug #112791. Removed old ebuilds
573
574 *hardened-sources-2.6.16-r3 (15 Apr 2006)
575
576 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
577 +hardened-sources-2.6.16-r3.ebuild:
578 Removing silly localversion which I missed
579
580 *hardened-sources-2.6.14-r7 (14 Apr 2006)
581
582 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
583 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
584 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
585
586 *hardened-sources-2.6.16-r2 (13 Apr 2006)
587
588 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
589 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
590 +hardened-sources-2.6.16-r2.ebuild:
591 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
592 labels, dropping USERGROUP define fixes, since these were merged mainstream.
593
594 *hardened-sources-2.6.16-r1 (11 Apr 2006)
595
596 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
597 +hardened-sources-2.6.16-r1.ebuild:
598 Bumping to include ppc build fix and 2.6.16.3
599
600 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
601 hardened-sources-2.6.14-r6.ebuild:
602 Stable on x86; bug #127718
603
604 *hardened-sources-2.6.16 (31 Mar 2006)
605
606 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
607 +hardened-sources-2.6.16.ebuild:
608 Bumping to new version of grsec, and kernel base. New squashfs. Based on
609 2.6.16.1
610
611 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
612 hardened-sources-2.6.14-r6.ebuild:
613 Stable on amd64, bug 127718.
614
615 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
616 Stable on ppc. Bug #127718
617
618 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
619 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
620 -hardened-sources-2.6.14-r4.ebuild:
621 Cleanup.
622
623 *hardened-sources-2.6.14-r6 (15 Mar 2006)
624
625 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
626 +hardened-sources-2.6.14-r6.ebuild:
627 Fixes grsec policy recreation bug and adds a
628 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
629
630 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
631 - stable on x86
632
633 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
634 hardened-sources-2.6.14-r5.ebuild:
635 Stable on ppc.
636
637 *hardened-sources-2.6.14-r5 (01 Feb 2006)
638
639 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
640 +hardened-sources-2.6.14-r5.ebuild:
641 fixing every known exploit
642
643 *hardened-sources-2.4.32-r2 (26 Jan 2006)
644
645 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
646 +hardened-sources-2.4.32-r2.ebuild:
647 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
648
649 *hardened-sources-2.6.14-r4 (12 Jan 2006)
650
651 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
652 - version bump for new genpatches which fix up a few sec holes
653
654 *hardened-sources-2.4.32-r1 (05 Jan 2006)
655
656 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
657 - revision bump to add misc vital linux kernel security patches.
658
659 *hardened-sources-2.6.14-r3 (30 Dec 2005)
660
661 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
662 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
663 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
664
665 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
666 hardened-sources-2.6.14-r2.ebuild:
667 making x86 & amd64 stable following testing.
668
669 *hardened-sources-2.6.14-r2 (27 Dec 2005)
670
671 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
672 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
673 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
674 network hooks.
675
676 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
677 hardened-sources-2.6.14-r1.ebuild:
678 bumping to stable early for sec fix on x86 & amd64
679
680 *hardened-sources-2.6.14-r1 (05 Dec 2005)
681
682 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
683 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
684 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
685
686 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
687 - stable on x86 security bug #114227 CAN-2005-3257
688
689 *hardened-sources-2.4.32 (19 Nov 2005)
690
691 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
692 +hardened-sources-2.4.32.ebuild:
693 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
694 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
695 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
696 rsbac >> /etc/portage/package.use)
697
698 *hardened-sources-2.6.14 (14 Nov 2005)
699
700 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
701 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
702 Bumping 2.6 series to 2.6.14.2
703
704 *hardened-sources-2.6.13-r2 (20 Oct 2005)
705
706 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
707 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
708 +hardened-sources-2.6.13-r2.ebuild:
709 Fixes minor build error in ppc.
710
711 *hardened-sources-2.6.13-r1 (17 Oct 2005)
712
713 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
714 +hardened-sources-2.6.13-r1.ebuild:
715 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
716 2.6.13.4, fixes some major amd64 stability problems.
717
718 *hardened-sources-2.6.13 (16 Sep 2005)
719
720 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
721 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
722 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
723 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
724 users should test this thoroughly.
725
726 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
727 - stable on x86
728
729 *hardened-sources-2.6.11-r15 (27 Jun 2005)
730
731 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
732 +hardened-sources-2.6.11-r15.ebuild:
733 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
734 grsec redefining curr_ip struct.
735
736 *hardened-sources-2.4.31 (20 Jun 2005)
737
738 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
739 initial import of 2.4.31 tree
740
741 *hardened-sources-2.6.11-r14 (14 Jun 2005)
742
743 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
744 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
745 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
746 naming scheme to abide by genpatches
747
748 *hardened-sources-2.6.11-r13 (18 May 2005)
749
750 18 May 2005; John Mylchreest <johnm@gentoo.org>
751 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
752 Managed to mangle the Makefile patch from grsec, to miss out the grsec
753 target. sorry about that. Fixes bug #93022
754
755 *hardened-sources-2.6.11-r12 (17 May 2005)
756
757 17 May 2005; John Mylchreest <johnm@gentoo.org>
758 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
759 +hardened-sources-2.6.11-r12.ebuild:
760 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
761 merges in genpatches-base
762
763 *hardened-sources-2.6.11-r12 (17 May 2005)
764
765 17 May 2005; John Mylchreest <johnm@gentoo.org>
766 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
767 +hardened-sources-2.6.11-r12.ebuild:
768 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
769 merges in genpatches-base
770
771 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
772 -files/2.4.27-cmdline-race.patch,
773 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
774 -files/2.4.28-grsec-binfmt_a.out.patch,
775 -files/2.4.28-grsec-cmdline-race.patch,
776 -files/2.4.28-selinux-binfmt_a.out.patch,
777 -files/2.4.28-selinux-cmdline-race.patch,
778 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
779 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
780 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
781 cleanup..
782
783 *hardened-sources-2.4.30-r1 (21 Apr 2005)
784
785 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
786 - disable aout by default
787
788 *hardened-sources-2.4.30 (18 Apr 2005)
789
790 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
791 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
792 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
793 use
794
795 *hardened-sources-2.4.29 (30 Mar 2005)
796
797 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
798 +hardened-sources-2.4.29.ebuild:
799 New hardened-patches-2.4-29.0 patchball.
800 Removed SELinux support, upgraded GRSecurity to 2.1.4.
801
802 *hardened-sources-2.4.28-r5 (06 Mar 2005)
803
804 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
805 +hardened-sources-2.4.28-r5.ebuild:
806 Added a fix for a PaX vulnerability.
807
808 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
809 hardened-sources-2.4.28-r4.ebuild:
810 Stable on x86
811
812 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
813 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
814 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
815 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
816 - fixed/added RDEPEND= in all kernel-2 ebuilds
817
818 *hardened-sources-2.4.28-r4 (21 Jan 2005)
819
820 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
821 +hardened-sources-2.4.28-r4.ebuild:
822 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
823 backport of neighbour hash updates.
824
825 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
826 hardened-sources-2.4.28-r3.ebuild:
827 Stable on x86
828
829 *hardened-sources-2.6.10-r3 (20 Jan 2005)
830
831 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
832 +hardened-sources-2.6.10-r3.ebuild:
833 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
834 in 2005.0
835
836 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
837 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
838 hardened-sources-2.4.28-r2.ebuild:
839 Mark stable on x86
840
841 *hardened-sources-2.4.28-r3 (17 Jan 2005)
842
843 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
844 +hardened-sources-2.4.28-r3.ebuild:
845 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
846
847 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
848 hardened-sources-2.4.28.ebuild:
849 Mark stable on x86.
850
851 *hardened-sources-2.4.28-r2 (13 Jan 2005)
852
853 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
854 +hardened-sources-2.4.28-r2.ebuild:
855 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
856 Mazinger for grsecurity patches as well.
857
858 *hardened-sources-2.4.28-r1 (23 Dec 2004)
859
860 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
861 Security bump. Thank tocharian for rolling a new patchset...
862
863 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
864 +files/2.4.28-grsec-cmdline-race.patch,
865 +files/2.4.28-selinux-binfmt_a.out.patch,
866 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
867 - Round up remaining security patches that appear to be missing in 2.4.28. -
868 PaX standalone updated to current. hgpv=28.1
869
870 *hardened-sources-2.4.28 (28 Nov 2004)
871
872 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
873 security bump. Thank tocharian for rolling a new patchset
874
875 *hardened-sources-2.4.27-r3 (08 Sep 2004)
876
877 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
878 +hardened-sources-2.4.27-r3.ebuild:
879 Applies the new 2.4-27.2 patchball which updates
880 GRSecurity to the 2.0.1 version.
881
882 *hardened-sources-2.4.27-r2 (31 Aug 2004)
883
884 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
885 +hardened-sources-2.4.27-r2.ebuild:
886 Version bump.
887 This version uses the new 2.4-27.1 patchball which updates
888 both the SELinux PaX hooks patch and the SELinux headers.
889
890 *hardened-sources-2.4.27-r1 (09 Aug 2004)
891
892 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
893 +hardened-sources-2.4.27-r1.ebuild,
894 -hardened-sources-2.4.27.ebuild,
895 +files/2.4.27-cmdline-race.patch:
896 Version bump, fix for cmdline race. See bug #59905.
897
898 *hardened-sources-2.4.26-r6 (09 Aug 2004)
899
900 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
901 +hardened-sources-2.4.26-r6.ebuild,
902 -hardened-sources-2.4.26-r5.ebuild,
903 -hardened-sources-2.4.26-r4.ebuild,
904 +files/2.4.26-cmdline-race.patch:
905 Version bump, fix for cmdline race. See bug #59905.
906
907 *hardened-sources-2.4.27 (08 Aug 2004)
908
909 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
910 +hardened-sources-2.4.27.ebuild,
911 +files/2.4.27-CAN-2004-0394.patch:
912 Ported the patchball to the 2.4.27 kernel version.
913
914 *hardened-sources-2.4.26-r5 (07 Aug 2004)
915
916 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
917 +hardened-sources-2.4.26-r5.ebuild:
918 Updated to use the new hardened-patches-2.4-26.1 patchball.
919 It adds the following features:
920 - Squashfs
921 - Ebtables
922 - Netdev random (core+drivers)
923 - Watchdog Timer (WDT) fix.
924
925 *hardened-sources-2.4.26-r4 (04 Aug 2004)
926
927 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
928 +hardened-sources-2.4.26-r4.ebuild,
929 +files/2.4.26-CAN-2004-0415.patch,
930 -hardened-sources-2.4.26-3:
931 Version bump, fix for CAN 0415, see bug #59378.
932
933 *hardened-sources-2.4.26-r3 (22 Jul 2004)
934
935 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
936 +hardened-sources-2.4.26-r3.ebuild,
937 +files/2.4.26-CAN-2004-0497.patch,
938 -hardened-sources-2.4.26-r2.ebuild:
939 Version bump, fixed CAN 0497, see bug #56171.
940
941 *hardened-sources-2.4.26-r2 (29 Jun 2004)
942
943 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
944 +hardened-sources-2.4.26-r2.ebuild,
945 +files/2.4.26-CAN-2004-0495.patch,
946 +files/2.4.26-CAN-2004-0535.patch,
947 -hardened-sources-2.4.26-r1.ebuild:
948 Fixes for both CAN 0495 and 0535, see bug #54976
949
950 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
951 hardened-sources-2.4.26-r1.ebuild:
952 QA - fix use invocation
953
954 *hardened-sources-2.4.26-r1 (22 June 2004)
955
956 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
957 +hardened-sources-2.4.26-r1.ebuild,
958 +files/2.4.26-CAN-2004-0394.patch,
959 +files/2.4.26-signal-race.patch,
960 -hardened-sources-2.4.26.ebuild,
961 -hardened-sources-2.4.24-r3.ebuild:
962 Version bump for the CAN-2004-0394 issue and bug #53804
963 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
964
965
966 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
967 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
968 Masked hardened-sources-2.4.26.ebuild broken for ppc
969
970 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
971 hardened-sources-2.4.24-r3.ebuild:
972 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
973
974 *hardened-sources-2.4.26 (29 May 2004)
975
976 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
977 +hardened-sources-2.4.26.ebuild:
978 Updated hardened-sources for the 2.4.26 kernel
979 Removed broken components, updated almost everything.
980
981 *hardened-sources-2.4.24-r3 (17 Apr 2004)
982
983 17 Apr 2004; <plasmaroo@gentoo.org>
984 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
985 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
986 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
987 +hardened-sources-2.4.24-r3.ebuild:
988 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
989 vulnerabilities. Old revisions removed.
990
991 *hardened-sources-2.4.24-r2 (15 Apr 2004)
992
993 15 Apr 2004; <plasmaroo@gentoo.org>
994 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
995 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
996 Version bump for the CAN-2004-0109 issue; bug #47881.
997
998 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
999 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1000 Add eutils to inherit.
1001
1002 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1003
1004 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1005 files/hardened-sources-2.4.24.munmap.patch:
1006 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1007
1008 *hardened-sources-2.4.24 (06 Feb 2004)
1009
1010 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1011 hardened-sources-2.4.24.ebuild:
1012 Version bump, updated most of the components.
1013 This release includes the following:
1014
1015 - Hardened security
1016 - Netfilter patch-o-matic 20031219
1017 - FreeSWAN 2.04 & x509 1.4.8
1018 - EVMS 2.2.2
1019 - XFS 1.3.1
1020 - cryptoloop jari
1021 - grsecurity 2.0-rc4
1022 - SELinux
1023 - PaX 200402060000
1024 - PaX Obscurity 200308302223
1025 - Others...
1026
1027 Neither -ck nor systrace are included anymore.
1028
1029 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1030
1031 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1032 hardened-sources-2.4.22-r2.ebuild:
1033 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1034
1035 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1036
1037 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1038 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1039
1040 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1041 hardened-sources-2.4.22-r1.ebuild:
1042 Version bump for the 'do_brk' vulnerability.
1043
1044 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1045 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1046 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1047 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1048 Fix the 'do_brk' vulnerability.
1049
1050 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1051 hardened-sources-2.4.22.ebuild:
1052 - Removed the src_install() portion for SELinux flask
1053 components. These are no longer handled in the kernel
1054 so this code was not necessary.
1055
1056 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1057 New 2.4.22 based hardened-sources thanks to
1058 Phil West <p.west@computer.org>.
1059
1060 These sources include:
1061 - New SELinux API
1062 - Updated CK-base
1063 - Updated GRSec
1064 - Systrace
1065 - SuperFreeS/WAN 1.99.8
1066 - Propolice kernel build support
1067 - EVMS
1068 - Other various security related patches
1069
1070 *hardened-sources-2.4.21 (14 Sep 2003)
1071
1072 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1073 Updated hardened-sources based on the 2.4.21 Linux kernel.
1074 This includes updates to most major components such as:
1075 - ck-base-0306300059
1076 - selinux-2.4-2003071106
1077 - grsecurity-2.0-rc1
1078 - Updated IPTables patch-o-matic
1079 - Updated SuperFreeS/WAN
1080
1081 Thanks to Phil West <pwest@computer.org> for his work in getting this
1082 updated patch set ready for the 2.4.21 based kernel.
1083
1084 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1085 Initial import of hardened-sources-2.4.20-r4. This revision
1086 includes only a few changes, but one of these is an important
1087 security fix. It is recommended all users of hardened-sources
1088 upgrade to this release.
1089
1090 - ioperm bug fix
1091 - fixed compilation failure when building without GRSec
1092
1093 SAL (Secure Auditing for Linux) is NOT included in this revision
1094 due to time constraints, but is planned for inclusion in the near
1095 future.
1096
1097 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1098
1099 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1100 hardened-sources-2.4.20-r3.ebuild:
1101 Add Header...
1102
1103 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1104 hardened-sources-2.4.20-r3.ebuild:
1105 Removed warnings from ebuild. This kernel should be safe to
1106 use at this point.
1107
1108 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1109
1110 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1111 hardened-sources-2.4.20-r3.ebuild:
1112 New revision. Includes the following changes over -r2:
1113
1114 - ck7-base (O(1), preempt, low latency)
1115 - Super FreeS/WAN 1.99.7rc2
1116 - PaX for the LSM/SELinux branch
1117 - GRSecurity 2.0-pre4 (role based access control)
1118 - Systrace 1.3
1119 - EXT3 fixes
1120 - EVMS 2.0.1
1121 - GCC 3.1+ compile optimizations
1122 - ProPolice kernel build support
1123 - Hashing table security fixes
1124
1125 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1126
1127 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1128 Initial import of hardened-sources-r2. This new
1129 ebuild includes many new performance and security
1130 related patches. As in -r1, it will patch in
1131 LSM/SELinux if "selinux" is in USE, otherwise it
1132 will patch in GRSecurity. The following patches
1133 are included in this revision:
1134
1135 - O(1) Scheduler, Low Latency, and Preempt
1136 (pulled from the base CK patch)
1137 - ptrace exploit patch for the LSM kernel
1138 (the GRSec patch already fixes this)
1139 - LSM 2.4-2003040709
1140 - SELinux 2.4-2003040709
1141 - Systrace v1.2
1142 - IPTables patch-o-matic base patches - 20030107
1143 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1144 - Super FreeS/WAN 1.99.6.1
1145 - GRSecurity 1.9.9g
1146 - MPPE
1147 - EXT3 data journal fix
1148 - CIPE 1.5.4
1149
1150 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1151 hardened-sources-2.4.20-r1.ebuild, manifest:
1152 Updated to install flask components correctly for selinux.
1153
1154 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1155 hardened-sources-2.4.20-r1.ebuild:
1156 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1157 is patched in instead. Ptrace patches for selinux have also been added. In
1158 either case, systrace support will be patched in as well.
1159
1160 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1161 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1162 Revision bump for new sources.
1163
1164 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1165 hardened-sources-2.4.20-r1.ebuild:
1166 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1167
1168 *hardened-sources-2.4.20 (30 Mar 2003)
1169
1170 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1171 hardened-sources-2.4.20.ebuild:
1172 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20