/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.195 - (show annotations) (download)
Thu Oct 25 11:17:54 2007 UTC (6 years, 10 months ago) by phreak
Branch: MAIN
Changes since 1.194: +5 -1 lines
Marking 2.6.22-r8 stable on amd64 and x86.
(Portage version: 2.1.3.9)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.194 2007/10/21 16:18:53 phreak Exp $
4
5 25 Oct 2007; Christian Heim <phreak@gentoo.org>
6 hardened-sources-2.6.22-r8.ebuild:
7 Marking 2.6.22-r8 stable on amd64 and x86.
8
9 21 Oct 2007; Christian Heim <phreak@gentoo.org>
10 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
11 -hardened-sources-2.6.21-r4.ebuild:
12 Removing old ebuilds.
13
14 *hardened-sources-2.4.35-r2 (21 Oct 2007)
15
16 21 Oct 2007; Christian Heim <phreak@gentoo.org>
17 +hardened-sources-2.4.35-r2.ebuild:
18 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
19 patches.
20
21 *hardened-sources-2.6.22-r8 (21 Oct 2007)
22
23 21 Oct 2007; Christian Heim <phreak@gentoo.org>
24 +hardened-sources-2.6.22-r8.ebuild:
25 Yet another new patch, hopefully fixing the remaining issues we had w/
26 2.6.22. Candidate for stabling.
27
28 *hardened-sources-2.6.23 (13 Oct 2007)
29
30 13 Oct 2007; Christian Heim <phreak@gentoo.org>
31 +hardened-sources-2.6.23.ebuild:
32 Initial hardened-sources-2.6.23. If people still have problems w/ bug
33 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
34
35 11 Oct 2007; Christian Heim <phreak@gentoo.org>
36 hardened-sources-2.6.20-r10.ebuild:
37 Pulling in yet another new genpatches version, fixing the PWC bug for real.
38
39 04 Oct 2007; Christian Heim <phreak@gentoo.org>
40 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
41 Removing old versions.
42
43 *hardened-sources-2.6.22-r7 (01 Oct 2007)
44
45 01 Oct 2007; Christian Heim <phreak@gentoo.org>
46 +hardened-sources-2.6.22-r7.ebuild:
47 Revision bump, pulling in a newer patch. Should fix #194276.
48
49 30 Sep 2007; Christian Heim <phreak@gentoo.org>
50 hardened-sources-2.6.20-r10.ebuild:
51 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
52 Mike Doty).
53
54 *hardened-sources-2.6.22-r6 (26 Sep 2007)
55
56 26 Sep 2007; Christian Heim <phreak@gentoo.org>
57 +hardened-sources-2.6.22-r6.ebuild:
58 Revision bump, grabbing up till Linux 2.6.22.9.
59
60 24 Sep 2007; Christian Heim <phreak@gentoo.org>
61 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
62 Cleaning up further.
63
64 *hardened-sources-2.6.20-r10 (24 Sep 2007)
65
66 24 Sep 2007; Christian Heim <phreak@gentoo.org>
67 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
68 +hardened-sources-2.6.20-r10.ebuild:
69 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
70 revisions.
71
72 *hardened-sources-2.6.22-r5 (22 Sep 2007)
73
74 22 Sep 2007; Christian Heim <phreak@gentoo.org>
75 +hardened-sources-2.6.22-r5.ebuild:
76 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
77
78 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
79 Removing johnm from metadata.xml (see #186467 for reference).
80
81 *hardened-sources-2.6.22-r4 (17 Sep 2007)
82
83 17 Sep 2007; Christian Heim <phreak@gentoo.org>
84 +hardened-sources-2.6.22-r4.ebuild:
85 Revision bump, hopefully fixing all those weird PAX failures.
86
87 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
88 Updating the metadata.xml.
89
90 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
91 Removing tocharian from metadata due to his retirement (see #71718 for
92 reference).
93
94 *hardened-sources-2.6.20-r9 (30 Aug 2007)
95
96 30 Aug 2007; Christian Heim <phreak@gentoo.org>
97 +hardened-sources-2.6.20-r9.ebuild:
98 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
99
100 29 Aug 2007; Christian Heim <phreak@gentoo.org>
101 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
102 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
103 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
104 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
105 -hardened-sources-2.6.22-r2.ebuild:
106 Removing some redundant versions.
107
108 *hardened-sources-2.4.35-r1 (29 Aug 2007)
109
110 29 Aug 2007; Christian Heim <phreak@gentoo.org>
111 +hardened-sources-2.4.35-r1.ebuild:
112 Revision bump, new grsecurity patch.
113
114 *hardened-sources-2.6.20-r8 (26 Aug 2007)
115
116 26 Aug 2007; Christian Heim <phreak@gentoo.org>
117 +hardened-sources-2.6.20-r8.ebuild:
118 Revision bump for Linux 2.6.20.17.
119
120 *hardened-sources-2.6.22-r3 (22 Aug 2007)
121
122 22 Aug 2007; Christian Heim <phreak@gentoo.org>
123 +hardened-sources-2.6.22-r3.ebuild:
124 Revision bump for Linux 2.6.22.4.
125
126 16 Aug 2007; Christian Heim <phreak@gentoo.org>
127 hardened-sources-2.6.22-r2.ebuild:
128 Updated patchset, to fix the alignment against 2.6.22.3.
129
130 *hardened-sources-2.6.22-r2 (16 Aug 2007)
131
132 16 Aug 2007; Christian Heim <phreak@gentoo.org>
133 +hardened-sources-2.6.22-r2.ebuild:
134 Revision bump for Linux 2.6.22.3.
135
136 *hardened-sources-2.4.35 (16 Aug 2007)
137
138 16 Aug 2007; Christian Heim <phreak@gentoo.org>
139 +hardened-sources-2.4.35.ebuild:
140 Version bump, initial version for Linux 2.4.35.
141
142 *hardened-sources-2.6.21-r4 (16 Aug 2007)
143
144 16 Aug 2007; Christian Heim <phreak@gentoo.org>
145 +hardened-sources-2.6.21-r4.ebuild:
146 Revision bump for Linux 2.6.21.6.
147
148 *hardened-sources-2.6.20-r7 (16 Aug 2007)
149
150 16 Aug 2007; Christian Heim <phreak@gentoo.org>
151 +hardened-sources-2.6.20-r7.ebuild:
152 Revision bump for Linux 2.6.20.16.
153
154 *hardened-sources-2.6.22-r1 (13 Aug 2007)
155
156 13 Aug 2007; Christian Heim <phreak@gentoo.org>
157 +hardened-sources-2.6.22-r1.ebuild:
158 Yet another revision bump.
159
160 *hardened-sources-2.6.22 (10 Aug 2007)
161
162 10 Aug 2007; Christian Heim <phreak@gentoo.org>
163 +hardened-sources-2.6.22.ebuild:
164 Initial release for 2.6.22. If you are using hardened-sources on a desktop
165 machine (P4 or newer), be aware you might need to disable
166 CONFIG_PAX_PAGEEXEC.
167
168 04 Aug 2007; Christian Heim <phreak@gentoo.org>
169 hardened-sources-2.6.20-r6.ebuild:
170 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
171 2.6.20.15.
172
173 10 Jul 2007; Christian Heim <phreak@gentoo.org>
174 hardened-sources-2.6.20-r5.ebuild:
175 Marking hardened-sources-2.6.20-r5 stable on ppc.
176
177 10 Jul 2007; Christian Heim <phreak@gentoo.org>
178 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
179 Cleanup.
180
181 *hardened-sources-2.6.20-r6 (08 Jul 2007)
182
183 08 Jul 2007; Christian Heim <phreak@gentoo.org>
184 +hardened-sources-2.6.20-r6.ebuild:
185 Revision bump, grabbing yet another stable release.
186
187 17 Jun 2007; Christian Heim <phreak@gentoo.org>
188 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
189 -hardened-sources-2.6.21-r2.ebuild:
190 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
191 alpha stable KEYWORD by mistake.
192
193 17 Jun 2007; Christian Heim <phreak@gentoo.org>
194 hardened-sources-2.6.20-r5.ebuild:
195 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
196 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
197
198 *hardened-sources-2.6.21-r3 (12 Jun 2007)
199
200 12 Jun 2007; Christian Heim <phreak@gentoo.org>
201 +hardened-sources-2.6.21-r3.ebuild:
202 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
203 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
204 love.
205
206 *hardened-sources-2.6.20-r5 (11 Jun 2007)
207
208 11 Jun 2007; Christian Heim <phreak@gentoo.org>
209 +hardened-sources-2.6.20-r5.ebuild:
210 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
211 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
212 love.
213
214 *hardened-sources-2.4.34.5 (11 Jun 2007)
215
216 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
217 +hardened-sources-2.4.34.5.ebuild:
218 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
219
220 30 May 2007; Christian Heim <phreak@gentoo.org>
221 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
222 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
223 stale ebuild(s).
224
225 30 May 2007; Christian Heim <phreak@gentoo.org>
226 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
227 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
228 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
229 Doing some cleanups, remove stale ebuilds.
230
231 26 May 2007; Christian Heim <phreak@gentoo.org>
232 hardened-sources-2.6.21-r2.ebuild:
233 Fixing the grsecurity patch, had one '};' too much.
234
235 *hardened-sources-2.6.21-r2 (26 May 2007)
236
237 26 May 2007; Christian Heim <phreak@gentoo.org>
238 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
239 +hardened-sources-2.6.21-r2.ebuild:
240 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
241 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
242
243 *hardened-sources-2.6.20-r4 (26 May 2007)
244
245 26 May 2007; Christian Heim <phreak@gentoo.org>
246 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
247 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
248 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
249
250 15 May 2007; Christian Heim <phreak@gentoo.org>
251 hardened-sources-2.6.20-r3.ebuild:
252 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
253 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
254 grsecurity patch fail in that exact same hunk.
255
256 *hardened-sources-2.6.20-r3 (15 May 2007)
257
258 15 May 2007; Christian Heim <phreak@gentoo.org>
259 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
260 Revision bump, incorporating Linux 2.6.20.11.
261
262 *hardened-sources-2.6.21-r1 (11 May 2007)
263
264 11 May 2007; Christian Heim <phreak@gentoo.org>
265 +hardened-sources-2.6.21-r1.ebuild:
266 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
267 mentioned in #177234.
268
269 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
270 files/digest-hardened-sources-2.6.21, Manifest:
271 Fix Manifest/digest for linux-2.6.21.tar.bz2
272
273 06 May 2007; Christian Heim <phreak@gentoo.org>
274 hardened-sources-2.6.21.ebuild:
275 Bumping the hardened-patches version, needed for the fix for #177234.
276
277 *hardened-sources-2.6.21 (02 May 2007)
278
279 02 May 2007; Christian Heim <phreak@gentoo.org>
280 +hardened-sources-2.6.21.ebuild:
281 Version bump, Linux 2.6.21-hardened.
282
283 29 Apr 2007; Christian Heim <phreak@gentoo.org>
284 hardened-sources-2.6.20-r2.ebuild:
285 Adding ~ia64 on Ned's request.
286
287 29 Apr 2007; Christian Heim <phreak@gentoo.org>
288 hardened-sources-2.6.20-r2.ebuild:
289 Fixing the included grsecurity patch, wasn't alligning due to the Index:
290 header line(s).
291
292 29 Apr 2007; Christian Heim <phreak@gentoo.org>
293 hardened-sources-2.6.20-r2.ebuild:
294 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
295
296 *hardened-sources-2.6.20-r2 (10 Apr 2007)
297
298 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
299 +hardened-sources-2.6.20-r2.ebuild:
300 Version bump, on behalf of phreak
301
302 *hardened-sources-2.6.20-r1 (04 Apr 2007)
303
304 04 Apr 2007; Christian Heim <phreak@gentoo.org>
305 +hardened-sources-2.6.20-r1.ebuild:
306 Revision bump, grabbing a newer grsecurity snapshot.
307
308 *hardened-sources-2.6.20 (25 Mar 2007)
309
310 25 Mar 2007; Christian Heim <phreak@gentoo.org>
311 +hardened-sources-2.6.20.ebuild:
312 Finally a hardened-sources version for 2.6.20; many people have been waiting
313 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
314 testbox.
315
316 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
317 hardened-sources-2.6.18-r6.ebuild:
318 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
319
320 *hardened-sources-2.6.18-r6 (16 Mar 2007)
321
322 16 Mar 2007; Christian Heim <phreak@gentoo.org>
323 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
324 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
325 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
326 supposed to be.
327
328 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
329 Fixing the Manifest, the previous one was broken (as in still had the
330 deleted ebuild in it).
331
332 06 Mar 2007; Christian Heim <phreak@gentoo.org>
333 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
334 +hardened-sources-2.6.18-r5.ebuild:
335 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
336 Linux 2.6.18.8. Also cleaning up the older version.
337
338 *hardened-sources-2.6.18-r5 (06 Mar 2007)
339
340 06 Mar 2007; Christian Heim <phreak@gentoo.org>
341 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
342 +hardened-sources-2.6.18-r5.ebuild:
343 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
344 Linux 2.6.18.8. Also cleaning up the older version.
345
346 24 Feb 2007; Christian Heim <phreak@gentoo.org>
347 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
348 -hardened-sources-2.6.19-r5.ebuild:
349 Removing some of the old version, that didn't work.
350
351 *hardened-sources-2.6.19-r6 (12 Feb 2007)
352
353 12 Feb 2007; Christian Heim <phreak@gentoo.org>
354 +hardened-sources-2.6.19-r6.ebuild:
355 Revision bump, including a new grsec version fixing #166235.
356
357 *hardened-sources-2.4.34 (24 Jan 2007)
358
359 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
360 Manifest:
361 updating Manifest with checksums of new tarball and ebuild
362
363 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
364 +hardened-sources-2.4.34.ebuild:
365 I added new hardened sources 2.4 update, this is a critical path
366 security bugfix - all users of h-s are strongly advised
367 to update their existing hardened sources to this version.
368 It contains a fix for a kernel vulnerability that is pertaining
369 to the PaX changes to virtual memory management, possibly leading
370 to a local kernel exploit ... see grsecurity.net forums and homepage
371
372 23 Jan 2007; Christian Heim <phreak@gentoo.org>
373 files/digest-hardened-sources-2.6.19-r5, Manifest:
374 Fixing the patch-tarball digest.
375
376 *hardened-sources-2.6.19-r5 (23 Jan 2007)
377
378 23 Jan 2007; Christian Heim <phreak@gentoo.org>
379 +hardened-sources-2.6.19-r5.ebuild:
380 Revision bump, closing the recently discovered PaX expand_stack()
381 vulnerability.
382
383 *hardened-sources-2.6.19-r4 (14 Jan 2007)
384
385 14 Jan 2007; Christian Heim <phreak@gentoo.org>
386 +hardened-sources-2.6.19-r4.ebuild:
387 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
388 dropping the randomized PID feature.
389
390 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
391 hardened-sources-2.4.33.4.ebuild:
392 stable x86, bug #161171
393
394 *hardened-sources-2.6.19-r3 (27 Dec 2006)
395
396 27 Dec 2006; Christian Heim <phreak@gentoo.org>
397 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
398 Revision bump for bug #157186 and #158786.
399
400 *hardened-sources-2.6.18-r4 (27 Dec 2006)
401
402 27 Dec 2006; Christian Heim <phreak@gentoo.org>
403 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
404 Revision bump for bug #157186.
405
406 *hardened-sources-2.6.19-r2 (23 Dec 2006)
407
408 23 Dec 2006; Christian Heim <phreak@gentoo.org>
409 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
410 Revision bump to pull in genpatches-2.6.19-3 for #157186.
411
412 17 Dec 2006; Christian Heim <phreak@gentoo.org>
413 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
414 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
415 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
416 hardened-sources-2.6.19-r1.ebuild:
417 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
418 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
419
420 *hardened-sources-2.4.33.4 (17 Dec 2006)
421
422 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
423 +hardened-sources-2.4.33.4.ebuild:
424 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
425 and quilting
426
427 *hardened-sources-2.6.19-r1 (14 Dec 2006)
428
429 14 Dec 2006; Christian Heim <phreak@gentoo.org>
430 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
431 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
432 for reporting).
433
434 *hardened-sources-2.6.19 (13 Dec 2006)
435
436 13 Dec 2006; Christian Heim <phreak@gentoo.org>
437 +hardened-sources-2.6.19.ebuild:
438 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
439 Brad for providing that prompt update.
440
441 *hardened-sources-2.6.18-r3 (13 Dec 2006)
442
443 13 Dec 2006; Christian Heim <phreak@gentoo.org>
444 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
445 +hardened-sources-2.6.18-r3.ebuild:
446 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
447 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
448
449 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
450 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
451
452 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
453 Stable on ppc wrt bug 157356
454
455 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
456 hardened-sources-2.6.18.ebuild:
457 stable x86, bug #157356
458
459 *hardened-sources-2.6.18-r2 (06 Dec 2006)
460
461 06 Dec 2006; Christian Heim <phreak@gentoo.org>
462 +hardened-sources-2.6.18-r2.ebuild:
463 Revision bump, including 2.6.18.5 (via genpatches) and
464 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
465 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
466 redesign.
467
468 06 Dec 2006; Christian Heim <phreak@gentoo.org>
469 hardened-sources-2.6.18.ebuild:
470 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
471 of Mike Doty).
472
473 *hardened-sources-2.6.18-r1 (23 Nov 2006)
474
475 23 Nov 2006; Christian Heim <phreak@gentoo.org>
476 +hardened-sources-2.6.18-r1.ebuild:
477 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
478
479 *hardened-sources-2.6.18 (11 Nov 2006)
480
481 11 Nov 2006; Christian Heim <phreak@gentoo.org>
482 +hardened-sources-2.6.18.ebuild:
483 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
484
485 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
486 - mark amd64 stable also. bug #151877
487
488 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
489 - mark 2.6.17-r1 stable
490
491 27 Aug 2006; Christian Heim <phreak@gentoo.org>
492 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
493 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
494
495 *hardened-sources-2.6.17-r1 (26 Aug 2006)
496
497 26 Aug 2006; Christian Heim <phreak@gentoo.org>
498 +hardened-sources-2.6.17-r1.ebuild:
499 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
500 grsecurity patch.
501
502 *hardened-sources-2.6.17 (17 Aug 2006)
503
504 17 Aug 2006; Christian Heim <phreak@gentoo.org>
505 +hardened-sources-2.6.17.ebuild:
506 Bumping the hardened-sources-2.6 series to 2.6.17, using
507 genpatches-2.6.17-6.base.
508
509 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
510 - stable on x86 and amd64
511
512 *hardened-sources-2.6.16-r11 (15 Jul 2006)
513
514 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
515 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
516 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
517 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
518 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
519 crusty ebuilds
520
521 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
522 hardened-sources-2.6.16-r10.ebuild:
523 marking stable on x86 and amd64
524
525 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
526 - 2.4.32-r6 stable on x86. RSBAC state unknown
527
528 *hardened-sources-2.4.32-r7 (10 Jul 2006)
529
530 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
531 +hardened-sources-2.4.32-r7.ebuild:
532 Bump PaX for RSBAC to test-17
533
534 *hardened-sources-2.6.16-r9 (03 Jul 2006)
535
536 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
537 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
538 hardened-sources-2.6.16 bump to latest -base.
539
540 *hardened-sources-2.4.32-r6 (30 Jun 2006)
541
542 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
543 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
544 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
545 sysctl controlable resource logging
546
547 *hardened-sources-2.6.16-r7 (05 Jun 2006)
548
549 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
550 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
551 push new 2.6.16 release in preparation for stable
552
553 22 May 2006; <solar@gentoo.org> :
554 - redigest bug 134002
555
556 *hardened-sources-2.4.32-r5 (16 May 2006)
557
558 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
559 +hardened-sources-2.4.32-r5.ebuild:
560 Fixes rsbac common patching (new patch in new -r5 patchset)
561
562 *hardened-sources-2.4.32-r4 (13 May 2006)
563
564 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
565 +hardened-sources-2.4.32-r4.ebuild:
566 - security bumps
567
568 *hardened-sources-2.6.16-r6 (03 May 2006)
569
570 03 May 2006; John Mylchreest <johnm@gentoo.org>
571 +hardened-sources-2.6.16-r6.ebuild:
572 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
573
574 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
575 hardened-sources-2.6.14-r8.ebuild:
576 fix x86_64 build problem, this will delay the digest issue again for a short
577 while but it will sort itself out
578
579 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
580 hardened-sources-2.6.14-r8.ebuild:
581 bump hardened patchset
582
583 27 Apr 2006; Alec Warner <antarus@gentoo.org>
584 files/digest-hardened-sources-2.4.32-r2,
585 files/digest-hardened-sources-2.4.32-r3,
586 files/digest-hardened-sources-2.6.14-r8, Manifest:
587 Fixing duff SHA256 digests: Bug # 131293
588
589 *hardened-sources-2.6.16-r5 (27 Apr 2006)
590
591 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
592 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
593 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
594 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
595 cleanup of old uneccessary sources
596
597 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
598 fix digest
599
600 *hardened-sources-2.6.14-r8 (20 Apr 2006)
601
602 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
603 +hardened-sources-2.6.14-r8.ebuild:
604 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
605
606 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
607 Turning on gpg-signing again, and recomitting
608
609 *hardened-sources-2.6.16-r4 (20 Apr 2006)
610
611 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
612 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
613 +hardened-sources-2.6.16-r4.ebuild:
614 Fix numerous security vulns
615
616 *hardened-sources-2.4.32-r3 (16 Apr 2006)
617
618 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
619 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
620 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
621 - security bump for bug #112791. Removed old ebuilds
622
623 *hardened-sources-2.6.16-r3 (15 Apr 2006)
624
625 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
626 +hardened-sources-2.6.16-r3.ebuild:
627 Removing silly localversion which I missed
628
629 *hardened-sources-2.6.14-r7 (14 Apr 2006)
630
631 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
632 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
633 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
634
635 *hardened-sources-2.6.16-r2 (13 Apr 2006)
636
637 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
638 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
639 +hardened-sources-2.6.16-r2.ebuild:
640 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
641 labels, dropping USERGROUP define fixes, since these were merged mainstream.
642
643 *hardened-sources-2.6.16-r1 (11 Apr 2006)
644
645 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
646 +hardened-sources-2.6.16-r1.ebuild:
647 Bumping to include ppc build fix and 2.6.16.3
648
649 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
650 hardened-sources-2.6.14-r6.ebuild:
651 Stable on x86; bug #127718
652
653 *hardened-sources-2.6.16 (31 Mar 2006)
654
655 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
656 +hardened-sources-2.6.16.ebuild:
657 Bumping to new version of grsec, and kernel base. New squashfs. Based on
658 2.6.16.1
659
660 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
661 hardened-sources-2.6.14-r6.ebuild:
662 Stable on amd64, bug 127718.
663
664 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
665 Stable on ppc. Bug #127718
666
667 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
668 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
669 -hardened-sources-2.6.14-r4.ebuild:
670 Cleanup.
671
672 *hardened-sources-2.6.14-r6 (15 Mar 2006)
673
674 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
675 +hardened-sources-2.6.14-r6.ebuild:
676 Fixes grsec policy recreation bug and adds a
677 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
678
679 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
680 - stable on x86
681
682 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
683 hardened-sources-2.6.14-r5.ebuild:
684 Stable on ppc.
685
686 *hardened-sources-2.6.14-r5 (01 Feb 2006)
687
688 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
689 +hardened-sources-2.6.14-r5.ebuild:
690 fixing every known exploit
691
692 *hardened-sources-2.4.32-r2 (26 Jan 2006)
693
694 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
695 +hardened-sources-2.4.32-r2.ebuild:
696 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
697
698 *hardened-sources-2.6.14-r4 (12 Jan 2006)
699
700 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
701 - version bump for new genpatches which fix up a few sec holes
702
703 *hardened-sources-2.4.32-r1 (05 Jan 2006)
704
705 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
706 - revision bump to add misc vital linux kernel security patches.
707
708 *hardened-sources-2.6.14-r3 (30 Dec 2005)
709
710 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
711 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
712 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
713
714 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
715 hardened-sources-2.6.14-r2.ebuild:
716 making x86 & amd64 stable following testing.
717
718 *hardened-sources-2.6.14-r2 (27 Dec 2005)
719
720 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
721 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
722 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
723 network hooks.
724
725 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
726 hardened-sources-2.6.14-r1.ebuild:
727 bumping to stable early for sec fix on x86 & amd64
728
729 *hardened-sources-2.6.14-r1 (05 Dec 2005)
730
731 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
732 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
733 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
734
735 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
736 - stable on x86 security bug #114227 CAN-2005-3257
737
738 *hardened-sources-2.4.32 (19 Nov 2005)
739
740 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
741 +hardened-sources-2.4.32.ebuild:
742 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
743 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
744 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
745 rsbac >> /etc/portage/package.use)
746
747 *hardened-sources-2.6.14 (14 Nov 2005)
748
749 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
750 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
751 Bumping 2.6 series to 2.6.14.2
752
753 *hardened-sources-2.6.13-r2 (20 Oct 2005)
754
755 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
756 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
757 +hardened-sources-2.6.13-r2.ebuild:
758 Fixes minor build error in ppc.
759
760 *hardened-sources-2.6.13-r1 (17 Oct 2005)
761
762 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
763 +hardened-sources-2.6.13-r1.ebuild:
764 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
765 2.6.13.4, fixes some major amd64 stability problems.
766
767 *hardened-sources-2.6.13 (16 Sep 2005)
768
769 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
770 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
771 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
772 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
773 users should test this thoroughly.
774
775 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
776 - stable on x86
777
778 *hardened-sources-2.6.11-r15 (27 Jun 2005)
779
780 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
781 +hardened-sources-2.6.11-r15.ebuild:
782 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
783 grsec redefining curr_ip struct.
784
785 *hardened-sources-2.4.31 (20 Jun 2005)
786
787 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
788 initial import of 2.4.31 tree
789
790 *hardened-sources-2.6.11-r14 (14 Jun 2005)
791
792 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
793 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
794 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
795 naming scheme to abide by genpatches
796
797 *hardened-sources-2.6.11-r13 (18 May 2005)
798
799 18 May 2005; John Mylchreest <johnm@gentoo.org>
800 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
801 Managed to mangle the Makefile patch from grsec, to miss out the grsec
802 target. sorry about that. Fixes bug #93022
803
804 *hardened-sources-2.6.11-r12 (17 May 2005)
805
806 17 May 2005; John Mylchreest <johnm@gentoo.org>
807 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
808 +hardened-sources-2.6.11-r12.ebuild:
809 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
810 merges in genpatches-base
811
812 *hardened-sources-2.6.11-r12 (17 May 2005)
813
814 17 May 2005; John Mylchreest <johnm@gentoo.org>
815 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
816 +hardened-sources-2.6.11-r12.ebuild:
817 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
818 merges in genpatches-base
819
820 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
821 -files/2.4.27-cmdline-race.patch,
822 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
823 -files/2.4.28-grsec-binfmt_a.out.patch,
824 -files/2.4.28-grsec-cmdline-race.patch,
825 -files/2.4.28-selinux-binfmt_a.out.patch,
826 -files/2.4.28-selinux-cmdline-race.patch,
827 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
828 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
829 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
830 cleanup..
831
832 *hardened-sources-2.4.30-r1 (21 Apr 2005)
833
834 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
835 - disable aout by default
836
837 *hardened-sources-2.4.30 (18 Apr 2005)
838
839 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
840 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
841 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
842 use
843
844 *hardened-sources-2.4.29 (30 Mar 2005)
845
846 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
847 +hardened-sources-2.4.29.ebuild:
848 New hardened-patches-2.4-29.0 patchball.
849 Removed SELinux support, upgraded GRSecurity to 2.1.4.
850
851 *hardened-sources-2.4.28-r5 (06 Mar 2005)
852
853 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
854 +hardened-sources-2.4.28-r5.ebuild:
855 Added a fix for a PaX vulnerability.
856
857 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
858 hardened-sources-2.4.28-r4.ebuild:
859 Stable on x86
860
861 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
862 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
863 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
864 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
865 - fixed/added RDEPEND= in all kernel-2 ebuilds
866
867 *hardened-sources-2.4.28-r4 (21 Jan 2005)
868
869 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
870 +hardened-sources-2.4.28-r4.ebuild:
871 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
872 backport of neighbour hash updates.
873
874 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
875 hardened-sources-2.4.28-r3.ebuild:
876 Stable on x86
877
878 *hardened-sources-2.6.10-r3 (20 Jan 2005)
879
880 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
881 +hardened-sources-2.6.10-r3.ebuild:
882 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
883 in 2005.0
884
885 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
886 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
887 hardened-sources-2.4.28-r2.ebuild:
888 Mark stable on x86
889
890 *hardened-sources-2.4.28-r3 (17 Jan 2005)
891
892 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
893 +hardened-sources-2.4.28-r3.ebuild:
894 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
895
896 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
897 hardened-sources-2.4.28.ebuild:
898 Mark stable on x86.
899
900 *hardened-sources-2.4.28-r2 (13 Jan 2005)
901
902 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
903 +hardened-sources-2.4.28-r2.ebuild:
904 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
905 Mazinger for grsecurity patches as well.
906
907 *hardened-sources-2.4.28-r1 (23 Dec 2004)
908
909 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
910 Security bump. Thank tocharian for rolling a new patchset...
911
912 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
913 +files/2.4.28-grsec-cmdline-race.patch,
914 +files/2.4.28-selinux-binfmt_a.out.patch,
915 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
916 - Round up remaining security patches that appear to be missing in 2.4.28. -
917 PaX standalone updated to current. hgpv=28.1
918
919 *hardened-sources-2.4.28 (28 Nov 2004)
920
921 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
922 security bump. Thank tocharian for rolling a new patchset
923
924 *hardened-sources-2.4.27-r3 (08 Sep 2004)
925
926 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
927 +hardened-sources-2.4.27-r3.ebuild:
928 Applies the new 2.4-27.2 patchball which updates
929 GRSecurity to the 2.0.1 version.
930
931 *hardened-sources-2.4.27-r2 (31 Aug 2004)
932
933 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
934 +hardened-sources-2.4.27-r2.ebuild:
935 Version bump.
936 This version uses the new 2.4-27.1 patchball which updates
937 both the SELinux PaX hooks patch and the SELinux headers.
938
939 *hardened-sources-2.4.27-r1 (09 Aug 2004)
940
941 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
942 +hardened-sources-2.4.27-r1.ebuild,
943 -hardened-sources-2.4.27.ebuild,
944 +files/2.4.27-cmdline-race.patch:
945 Version bump, fix for cmdline race. See bug #59905.
946
947 *hardened-sources-2.4.26-r6 (09 Aug 2004)
948
949 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
950 +hardened-sources-2.4.26-r6.ebuild,
951 -hardened-sources-2.4.26-r5.ebuild,
952 -hardened-sources-2.4.26-r4.ebuild,
953 +files/2.4.26-cmdline-race.patch:
954 Version bump, fix for cmdline race. See bug #59905.
955
956 *hardened-sources-2.4.27 (08 Aug 2004)
957
958 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
959 +hardened-sources-2.4.27.ebuild,
960 +files/2.4.27-CAN-2004-0394.patch:
961 Ported the patchball to the 2.4.27 kernel version.
962
963 *hardened-sources-2.4.26-r5 (07 Aug 2004)
964
965 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
966 +hardened-sources-2.4.26-r5.ebuild:
967 Updated to use the new hardened-patches-2.4-26.1 patchball.
968 It adds the following features:
969 - Squashfs
970 - Ebtables
971 - Netdev random (core+drivers)
972 - Watchdog Timer (WDT) fix.
973
974 *hardened-sources-2.4.26-r4 (04 Aug 2004)
975
976 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
977 +hardened-sources-2.4.26-r4.ebuild,
978 +files/2.4.26-CAN-2004-0415.patch,
979 -hardened-sources-2.4.26-3:
980 Version bump, fix for CAN 0415, see bug #59378.
981
982 *hardened-sources-2.4.26-r3 (22 Jul 2004)
983
984 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
985 +hardened-sources-2.4.26-r3.ebuild,
986 +files/2.4.26-CAN-2004-0497.patch,
987 -hardened-sources-2.4.26-r2.ebuild:
988 Version bump, fixed CAN 0497, see bug #56171.
989
990 *hardened-sources-2.4.26-r2 (29 Jun 2004)
991
992 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
993 +hardened-sources-2.4.26-r2.ebuild,
994 +files/2.4.26-CAN-2004-0495.patch,
995 +files/2.4.26-CAN-2004-0535.patch,
996 -hardened-sources-2.4.26-r1.ebuild:
997 Fixes for both CAN 0495 and 0535, see bug #54976
998
999 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1000 hardened-sources-2.4.26-r1.ebuild:
1001 QA - fix use invocation
1002
1003 *hardened-sources-2.4.26-r1 (22 June 2004)
1004
1005 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1006 +hardened-sources-2.4.26-r1.ebuild,
1007 +files/2.4.26-CAN-2004-0394.patch,
1008 +files/2.4.26-signal-race.patch,
1009 -hardened-sources-2.4.26.ebuild,
1010 -hardened-sources-2.4.24-r3.ebuild:
1011 Version bump for the CAN-2004-0394 issue and bug #53804
1012 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1013
1014
1015 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1016 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1017 Masked hardened-sources-2.4.26.ebuild broken for ppc
1018
1019 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1020 hardened-sources-2.4.24-r3.ebuild:
1021 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1022
1023 *hardened-sources-2.4.26 (29 May 2004)
1024
1025 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1026 +hardened-sources-2.4.26.ebuild:
1027 Updated hardened-sources for the 2.4.26 kernel
1028 Removed broken components, updated almost everything.
1029
1030 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1031
1032 17 Apr 2004; <plasmaroo@gentoo.org>
1033 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1034 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1035 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1036 +hardened-sources-2.4.24-r3.ebuild:
1037 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1038 vulnerabilities. Old revisions removed.
1039
1040 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1041
1042 15 Apr 2004; <plasmaroo@gentoo.org>
1043 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1044 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1045 Version bump for the CAN-2004-0109 issue; bug #47881.
1046
1047 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1048 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1049 Add eutils to inherit.
1050
1051 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1052
1053 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1054 files/hardened-sources-2.4.24.munmap.patch:
1055 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1056
1057 *hardened-sources-2.4.24 (06 Feb 2004)
1058
1059 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1060 hardened-sources-2.4.24.ebuild:
1061 Version bump, updated most of the components.
1062 This release includes the following:
1063
1064 - Hardened security
1065 - Netfilter patch-o-matic 20031219
1066 - FreeSWAN 2.04 & x509 1.4.8
1067 - EVMS 2.2.2
1068 - XFS 1.3.1
1069 - cryptoloop jari
1070 - grsecurity 2.0-rc4
1071 - SELinux
1072 - PaX 200402060000
1073 - PaX Obscurity 200308302223
1074 - Others...
1075
1076 Neither -ck nor systrace are included anymore.
1077
1078 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1079
1080 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1081 hardened-sources-2.4.22-r2.ebuild:
1082 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1083
1084 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1085
1086 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1087 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1088
1089 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1090 hardened-sources-2.4.22-r1.ebuild:
1091 Version bump for the 'do_brk' vulnerability.
1092
1093 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1094 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1095 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1096 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1097 Fix the 'do_brk' vulnerability.
1098
1099 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1100 hardened-sources-2.4.22.ebuild:
1101 - Removed the src_install() portion for SELinux flask
1102 components. These are no longer handled in the kernel
1103 so this code was not necessary.
1104
1105 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1106 New 2.4.22 based hardened-sources thanks to
1107 Phil West <p.west@computer.org>.
1108
1109 These sources include:
1110 - New SELinux API
1111 - Updated CK-base
1112 - Updated GRSec
1113 - Systrace
1114 - SuperFreeS/WAN 1.99.8
1115 - Propolice kernel build support
1116 - EVMS
1117 - Other various security related patches
1118
1119 *hardened-sources-2.4.21 (14 Sep 2003)
1120
1121 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1122 Updated hardened-sources based on the 2.4.21 Linux kernel.
1123 This includes updates to most major components such as:
1124 - ck-base-0306300059
1125 - selinux-2.4-2003071106
1126 - grsecurity-2.0-rc1
1127 - Updated IPTables patch-o-matic
1128 - Updated SuperFreeS/WAN
1129
1130 Thanks to Phil West <pwest@computer.org> for his work in getting this
1131 updated patch set ready for the 2.4.21 based kernel.
1132
1133 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1134 Initial import of hardened-sources-2.4.20-r4. This revision
1135 includes only a few changes, but one of these is an important
1136 security fix. It is recommended all users of hardened-sources
1137 upgrade to this release.
1138
1139 - ioperm bug fix
1140 - fixed compilation failure when building without GRSec
1141
1142 SAL (Secure Auditing for Linux) is NOT included in this revision
1143 due to time constraints, but is planned for inclusion in the near
1144 future.
1145
1146 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1147
1148 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1149 hardened-sources-2.4.20-r3.ebuild:
1150 Add Header...
1151
1152 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1153 hardened-sources-2.4.20-r3.ebuild:
1154 Removed warnings from ebuild. This kernel should be safe to
1155 use at this point.
1156
1157 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1158
1159 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1160 hardened-sources-2.4.20-r3.ebuild:
1161 New revision. Includes the following changes over -r2:
1162
1163 - ck7-base (O(1), preempt, low latency)
1164 - Super FreeS/WAN 1.99.7rc2
1165 - PaX for the LSM/SELinux branch
1166 - GRSecurity 2.0-pre4 (role based access control)
1167 - Systrace 1.3
1168 - EXT3 fixes
1169 - EVMS 2.0.1
1170 - GCC 3.1+ compile optimizations
1171 - ProPolice kernel build support
1172 - Hashing table security fixes
1173
1174 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1175
1176 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1177 Initial import of hardened-sources-r2. This new
1178 ebuild includes many new performance and security
1179 related patches. As in -r1, it will patch in
1180 LSM/SELinux if "selinux" is in USE, otherwise it
1181 will patch in GRSecurity. The following patches
1182 are included in this revision:
1183
1184 - O(1) Scheduler, Low Latency, and Preempt
1185 (pulled from the base CK patch)
1186 - ptrace exploit patch for the LSM kernel
1187 (the GRSec patch already fixes this)
1188 - LSM 2.4-2003040709
1189 - SELinux 2.4-2003040709
1190 - Systrace v1.2
1191 - IPTables patch-o-matic base patches - 20030107
1192 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1193 - Super FreeS/WAN 1.99.6.1
1194 - GRSecurity 1.9.9g
1195 - MPPE
1196 - EXT3 data journal fix
1197 - CIPE 1.5.4
1198
1199 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1200 hardened-sources-2.4.20-r1.ebuild, manifest:
1201 Updated to install flask components correctly for selinux.
1202
1203 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1204 hardened-sources-2.4.20-r1.ebuild:
1205 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1206 is patched in instead. Ptrace patches for selinux have also been added. In
1207 either case, systrace support will be patched in as well.
1208
1209 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1210 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1211 Revision bump for new sources.
1212
1213 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1214 hardened-sources-2.4.20-r1.ebuild:
1215 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1216
1217 *hardened-sources-2.4.20 (30 Mar 2003)
1218
1219 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1220 hardened-sources-2.4.20.ebuild:
1221 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20