/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.200 - (show annotations) (download)
Sun Dec 23 12:35:28 2007 UTC (6 years, 8 months ago) by phreak
Branch: MAIN
Changes since 1.199: +7 -1 lines
Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
(Portage version: 2.1.3.9)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.199 2007/12/04 18:32:09 phreak Exp $
4
5 *hardened-sources-2.6.23-r4 (23 Dec 2007)
6
7 23 Dec 2007; Christian Heim <phreak@gentoo.org>
8 +hardened-sources-2.6.23-r4.ebuild:
9 Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
10
11 *hardened-sources-2.6.23-r3 (04 Dec 2007)
12
13 04 Dec 2007; Christian Heim <phreak@gentoo.org>
14 +hardened-sources-2.6.23-r3.ebuild:
15 Revision bump, pulling in 2.6.23.9.
16
17 *hardened-sources-2.6.23-r2 (25 Nov 2007)
18
19 25 Nov 2007; Christian Heim <phreak@gentoo.org>
20 +hardened-sources-2.6.23-r2.ebuild:
21 Updated patchset, thanks to solar.
22
23 *hardened-sources-2.6.23-r1 (31 Oct 2007)
24
25 31 Oct 2007; Christian Heim <phreak@gentoo.org>
26 +hardened-sources-2.6.23-r1.ebuild:
27 Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
28
29 29 Oct 2007; <solar@gentoo.org> metadata.xml:
30 - update metadata.xml
31
32 25 Oct 2007; Christian Heim <phreak@gentoo.org>
33 hardened-sources-2.6.22-r8.ebuild:
34 Marking 2.6.22-r8 stable on amd64 and x86.
35
36 21 Oct 2007; Christian Heim <phreak@gentoo.org>
37 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
38 -hardened-sources-2.6.21-r4.ebuild:
39 Removing old ebuilds.
40
41 *hardened-sources-2.4.35-r2 (21 Oct 2007)
42
43 21 Oct 2007; Christian Heim <phreak@gentoo.org>
44 +hardened-sources-2.4.35-r2.ebuild:
45 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
46 patches.
47
48 *hardened-sources-2.6.22-r8 (21 Oct 2007)
49
50 21 Oct 2007; Christian Heim <phreak@gentoo.org>
51 +hardened-sources-2.6.22-r8.ebuild:
52 Yet another new patch, hopefully fixing the remaining issues we had w/
53 2.6.22. Candidate for stabling.
54
55 *hardened-sources-2.6.23 (13 Oct 2007)
56
57 13 Oct 2007; Christian Heim <phreak@gentoo.org>
58 +hardened-sources-2.6.23.ebuild:
59 Initial hardened-sources-2.6.23. If people still have problems w/ bug
60 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
61
62 11 Oct 2007; Christian Heim <phreak@gentoo.org>
63 hardened-sources-2.6.20-r10.ebuild:
64 Pulling in yet another new genpatches version, fixing the PWC bug for real.
65
66 04 Oct 2007; Christian Heim <phreak@gentoo.org>
67 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
68 Removing old versions.
69
70 *hardened-sources-2.6.22-r7 (01 Oct 2007)
71
72 01 Oct 2007; Christian Heim <phreak@gentoo.org>
73 +hardened-sources-2.6.22-r7.ebuild:
74 Revision bump, pulling in a newer patch. Should fix #194276.
75
76 30 Sep 2007; Christian Heim <phreak@gentoo.org>
77 hardened-sources-2.6.20-r10.ebuild:
78 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
79 Mike Doty).
80
81 *hardened-sources-2.6.22-r6 (26 Sep 2007)
82
83 26 Sep 2007; Christian Heim <phreak@gentoo.org>
84 +hardened-sources-2.6.22-r6.ebuild:
85 Revision bump, grabbing up till Linux 2.6.22.9.
86
87 24 Sep 2007; Christian Heim <phreak@gentoo.org>
88 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
89 Cleaning up further.
90
91 *hardened-sources-2.6.20-r10 (24 Sep 2007)
92
93 24 Sep 2007; Christian Heim <phreak@gentoo.org>
94 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
95 +hardened-sources-2.6.20-r10.ebuild:
96 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
97 revisions.
98
99 *hardened-sources-2.6.22-r5 (22 Sep 2007)
100
101 22 Sep 2007; Christian Heim <phreak@gentoo.org>
102 +hardened-sources-2.6.22-r5.ebuild:
103 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
104
105 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
106 Removing johnm from metadata.xml (see #186467 for reference).
107
108 *hardened-sources-2.6.22-r4 (17 Sep 2007)
109
110 17 Sep 2007; Christian Heim <phreak@gentoo.org>
111 +hardened-sources-2.6.22-r4.ebuild:
112 Revision bump, hopefully fixing all those weird PAX failures.
113
114 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
115 Updating the metadata.xml.
116
117 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
118 Removing tocharian from metadata due to his retirement (see #71718 for
119 reference).
120
121 *hardened-sources-2.6.20-r9 (30 Aug 2007)
122
123 30 Aug 2007; Christian Heim <phreak@gentoo.org>
124 +hardened-sources-2.6.20-r9.ebuild:
125 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
126
127 29 Aug 2007; Christian Heim <phreak@gentoo.org>
128 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
129 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
130 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
131 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
132 -hardened-sources-2.6.22-r2.ebuild:
133 Removing some redundant versions.
134
135 *hardened-sources-2.4.35-r1 (29 Aug 2007)
136
137 29 Aug 2007; Christian Heim <phreak@gentoo.org>
138 +hardened-sources-2.4.35-r1.ebuild:
139 Revision bump, new grsecurity patch.
140
141 *hardened-sources-2.6.20-r8 (26 Aug 2007)
142
143 26 Aug 2007; Christian Heim <phreak@gentoo.org>
144 +hardened-sources-2.6.20-r8.ebuild:
145 Revision bump for Linux 2.6.20.17.
146
147 *hardened-sources-2.6.22-r3 (22 Aug 2007)
148
149 22 Aug 2007; Christian Heim <phreak@gentoo.org>
150 +hardened-sources-2.6.22-r3.ebuild:
151 Revision bump for Linux 2.6.22.4.
152
153 16 Aug 2007; Christian Heim <phreak@gentoo.org>
154 hardened-sources-2.6.22-r2.ebuild:
155 Updated patchset, to fix the alignment against 2.6.22.3.
156
157 *hardened-sources-2.6.22-r2 (16 Aug 2007)
158
159 16 Aug 2007; Christian Heim <phreak@gentoo.org>
160 +hardened-sources-2.6.22-r2.ebuild:
161 Revision bump for Linux 2.6.22.3.
162
163 *hardened-sources-2.4.35 (16 Aug 2007)
164
165 16 Aug 2007; Christian Heim <phreak@gentoo.org>
166 +hardened-sources-2.4.35.ebuild:
167 Version bump, initial version for Linux 2.4.35.
168
169 *hardened-sources-2.6.21-r4 (16 Aug 2007)
170
171 16 Aug 2007; Christian Heim <phreak@gentoo.org>
172 +hardened-sources-2.6.21-r4.ebuild:
173 Revision bump for Linux 2.6.21.6.
174
175 *hardened-sources-2.6.20-r7 (16 Aug 2007)
176
177 16 Aug 2007; Christian Heim <phreak@gentoo.org>
178 +hardened-sources-2.6.20-r7.ebuild:
179 Revision bump for Linux 2.6.20.16.
180
181 *hardened-sources-2.6.22-r1 (13 Aug 2007)
182
183 13 Aug 2007; Christian Heim <phreak@gentoo.org>
184 +hardened-sources-2.6.22-r1.ebuild:
185 Yet another revision bump.
186
187 *hardened-sources-2.6.22 (10 Aug 2007)
188
189 10 Aug 2007; Christian Heim <phreak@gentoo.org>
190 +hardened-sources-2.6.22.ebuild:
191 Initial release for 2.6.22. If you are using hardened-sources on a desktop
192 machine (P4 or newer), be aware you might need to disable
193 CONFIG_PAX_PAGEEXEC.
194
195 04 Aug 2007; Christian Heim <phreak@gentoo.org>
196 hardened-sources-2.6.20-r6.ebuild:
197 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
198 2.6.20.15.
199
200 10 Jul 2007; Christian Heim <phreak@gentoo.org>
201 hardened-sources-2.6.20-r5.ebuild:
202 Marking hardened-sources-2.6.20-r5 stable on ppc.
203
204 10 Jul 2007; Christian Heim <phreak@gentoo.org>
205 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
206 Cleanup.
207
208 *hardened-sources-2.6.20-r6 (08 Jul 2007)
209
210 08 Jul 2007; Christian Heim <phreak@gentoo.org>
211 +hardened-sources-2.6.20-r6.ebuild:
212 Revision bump, grabbing yet another stable release.
213
214 17 Jun 2007; Christian Heim <phreak@gentoo.org>
215 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
216 -hardened-sources-2.6.21-r2.ebuild:
217 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
218 alpha stable KEYWORD by mistake.
219
220 17 Jun 2007; Christian Heim <phreak@gentoo.org>
221 hardened-sources-2.6.20-r5.ebuild:
222 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
223 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
224
225 *hardened-sources-2.6.21-r3 (12 Jun 2007)
226
227 12 Jun 2007; Christian Heim <phreak@gentoo.org>
228 +hardened-sources-2.6.21-r3.ebuild:
229 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
230 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
231 love.
232
233 *hardened-sources-2.6.20-r5 (11 Jun 2007)
234
235 11 Jun 2007; Christian Heim <phreak@gentoo.org>
236 +hardened-sources-2.6.20-r5.ebuild:
237 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
238 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
239 love.
240
241 *hardened-sources-2.4.34.5 (11 Jun 2007)
242
243 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
244 +hardened-sources-2.4.34.5.ebuild:
245 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
246
247 30 May 2007; Christian Heim <phreak@gentoo.org>
248 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
249 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
250 stale ebuild(s).
251
252 30 May 2007; Christian Heim <phreak@gentoo.org>
253 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
254 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
255 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
256 Doing some cleanups, remove stale ebuilds.
257
258 26 May 2007; Christian Heim <phreak@gentoo.org>
259 hardened-sources-2.6.21-r2.ebuild:
260 Fixing the grsecurity patch, had one '};' too much.
261
262 *hardened-sources-2.6.21-r2 (26 May 2007)
263
264 26 May 2007; Christian Heim <phreak@gentoo.org>
265 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
266 +hardened-sources-2.6.21-r2.ebuild:
267 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
268 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
269
270 *hardened-sources-2.6.20-r4 (26 May 2007)
271
272 26 May 2007; Christian Heim <phreak@gentoo.org>
273 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
274 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
275 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
276
277 15 May 2007; Christian Heim <phreak@gentoo.org>
278 hardened-sources-2.6.20-r3.ebuild:
279 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
280 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
281 grsecurity patch fail in that exact same hunk.
282
283 *hardened-sources-2.6.20-r3 (15 May 2007)
284
285 15 May 2007; Christian Heim <phreak@gentoo.org>
286 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
287 Revision bump, incorporating Linux 2.6.20.11.
288
289 *hardened-sources-2.6.21-r1 (11 May 2007)
290
291 11 May 2007; Christian Heim <phreak@gentoo.org>
292 +hardened-sources-2.6.21-r1.ebuild:
293 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
294 mentioned in #177234.
295
296 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
297 files/digest-hardened-sources-2.6.21, Manifest:
298 Fix Manifest/digest for linux-2.6.21.tar.bz2
299
300 06 May 2007; Christian Heim <phreak@gentoo.org>
301 hardened-sources-2.6.21.ebuild:
302 Bumping the hardened-patches version, needed for the fix for #177234.
303
304 *hardened-sources-2.6.21 (02 May 2007)
305
306 02 May 2007; Christian Heim <phreak@gentoo.org>
307 +hardened-sources-2.6.21.ebuild:
308 Version bump, Linux 2.6.21-hardened.
309
310 29 Apr 2007; Christian Heim <phreak@gentoo.org>
311 hardened-sources-2.6.20-r2.ebuild:
312 Adding ~ia64 on Ned's request.
313
314 29 Apr 2007; Christian Heim <phreak@gentoo.org>
315 hardened-sources-2.6.20-r2.ebuild:
316 Fixing the included grsecurity patch, wasn't alligning due to the Index:
317 header line(s).
318
319 29 Apr 2007; Christian Heim <phreak@gentoo.org>
320 hardened-sources-2.6.20-r2.ebuild:
321 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
322
323 *hardened-sources-2.6.20-r2 (10 Apr 2007)
324
325 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
326 +hardened-sources-2.6.20-r2.ebuild:
327 Version bump, on behalf of phreak
328
329 *hardened-sources-2.6.20-r1 (04 Apr 2007)
330
331 04 Apr 2007; Christian Heim <phreak@gentoo.org>
332 +hardened-sources-2.6.20-r1.ebuild:
333 Revision bump, grabbing a newer grsecurity snapshot.
334
335 *hardened-sources-2.6.20 (25 Mar 2007)
336
337 25 Mar 2007; Christian Heim <phreak@gentoo.org>
338 +hardened-sources-2.6.20.ebuild:
339 Finally a hardened-sources version for 2.6.20; many people have been waiting
340 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
341 testbox.
342
343 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
344 hardened-sources-2.6.18-r6.ebuild:
345 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
346
347 *hardened-sources-2.6.18-r6 (16 Mar 2007)
348
349 16 Mar 2007; Christian Heim <phreak@gentoo.org>
350 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
351 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
352 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
353 supposed to be.
354
355 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
356 Fixing the Manifest, the previous one was broken (as in still had the
357 deleted ebuild in it).
358
359 06 Mar 2007; Christian Heim <phreak@gentoo.org>
360 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
361 +hardened-sources-2.6.18-r5.ebuild:
362 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
363 Linux 2.6.18.8. Also cleaning up the older version.
364
365 *hardened-sources-2.6.18-r5 (06 Mar 2007)
366
367 06 Mar 2007; Christian Heim <phreak@gentoo.org>
368 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
369 +hardened-sources-2.6.18-r5.ebuild:
370 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
371 Linux 2.6.18.8. Also cleaning up the older version.
372
373 24 Feb 2007; Christian Heim <phreak@gentoo.org>
374 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
375 -hardened-sources-2.6.19-r5.ebuild:
376 Removing some of the old version, that didn't work.
377
378 *hardened-sources-2.6.19-r6 (12 Feb 2007)
379
380 12 Feb 2007; Christian Heim <phreak@gentoo.org>
381 +hardened-sources-2.6.19-r6.ebuild:
382 Revision bump, including a new grsec version fixing #166235.
383
384 *hardened-sources-2.4.34 (24 Jan 2007)
385
386 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
387 Manifest:
388 updating Manifest with checksums of new tarball and ebuild
389
390 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
391 +hardened-sources-2.4.34.ebuild:
392 I added new hardened sources 2.4 update, this is a critical path
393 security bugfix - all users of h-s are strongly advised
394 to update their existing hardened sources to this version.
395 It contains a fix for a kernel vulnerability that is pertaining
396 to the PaX changes to virtual memory management, possibly leading
397 to a local kernel exploit ... see grsecurity.net forums and homepage
398
399 23 Jan 2007; Christian Heim <phreak@gentoo.org>
400 files/digest-hardened-sources-2.6.19-r5, Manifest:
401 Fixing the patch-tarball digest.
402
403 *hardened-sources-2.6.19-r5 (23 Jan 2007)
404
405 23 Jan 2007; Christian Heim <phreak@gentoo.org>
406 +hardened-sources-2.6.19-r5.ebuild:
407 Revision bump, closing the recently discovered PaX expand_stack()
408 vulnerability.
409
410 *hardened-sources-2.6.19-r4 (14 Jan 2007)
411
412 14 Jan 2007; Christian Heim <phreak@gentoo.org>
413 +hardened-sources-2.6.19-r4.ebuild:
414 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
415 dropping the randomized PID feature.
416
417 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
418 hardened-sources-2.4.33.4.ebuild:
419 stable x86, bug #161171
420
421 *hardened-sources-2.6.19-r3 (27 Dec 2006)
422
423 27 Dec 2006; Christian Heim <phreak@gentoo.org>
424 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
425 Revision bump for bug #157186 and #158786.
426
427 *hardened-sources-2.6.18-r4 (27 Dec 2006)
428
429 27 Dec 2006; Christian Heim <phreak@gentoo.org>
430 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
431 Revision bump for bug #157186.
432
433 *hardened-sources-2.6.19-r2 (23 Dec 2006)
434
435 23 Dec 2006; Christian Heim <phreak@gentoo.org>
436 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
437 Revision bump to pull in genpatches-2.6.19-3 for #157186.
438
439 17 Dec 2006; Christian Heim <phreak@gentoo.org>
440 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
441 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
442 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
443 hardened-sources-2.6.19-r1.ebuild:
444 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
445 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
446
447 *hardened-sources-2.4.33.4 (17 Dec 2006)
448
449 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
450 +hardened-sources-2.4.33.4.ebuild:
451 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
452 and quilting
453
454 *hardened-sources-2.6.19-r1 (14 Dec 2006)
455
456 14 Dec 2006; Christian Heim <phreak@gentoo.org>
457 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
458 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
459 for reporting).
460
461 *hardened-sources-2.6.19 (13 Dec 2006)
462
463 13 Dec 2006; Christian Heim <phreak@gentoo.org>
464 +hardened-sources-2.6.19.ebuild:
465 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
466 Brad for providing that prompt update.
467
468 *hardened-sources-2.6.18-r3 (13 Dec 2006)
469
470 13 Dec 2006; Christian Heim <phreak@gentoo.org>
471 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
472 +hardened-sources-2.6.18-r3.ebuild:
473 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
474 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
475
476 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
477 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
478
479 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
480 Stable on ppc wrt bug 157356
481
482 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
483 hardened-sources-2.6.18.ebuild:
484 stable x86, bug #157356
485
486 *hardened-sources-2.6.18-r2 (06 Dec 2006)
487
488 06 Dec 2006; Christian Heim <phreak@gentoo.org>
489 +hardened-sources-2.6.18-r2.ebuild:
490 Revision bump, including 2.6.18.5 (via genpatches) and
491 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
492 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
493 redesign.
494
495 06 Dec 2006; Christian Heim <phreak@gentoo.org>
496 hardened-sources-2.6.18.ebuild:
497 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
498 of Mike Doty).
499
500 *hardened-sources-2.6.18-r1 (23 Nov 2006)
501
502 23 Nov 2006; Christian Heim <phreak@gentoo.org>
503 +hardened-sources-2.6.18-r1.ebuild:
504 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
505
506 *hardened-sources-2.6.18 (11 Nov 2006)
507
508 11 Nov 2006; Christian Heim <phreak@gentoo.org>
509 +hardened-sources-2.6.18.ebuild:
510 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
511
512 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
513 - mark amd64 stable also. bug #151877
514
515 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
516 - mark 2.6.17-r1 stable
517
518 27 Aug 2006; Christian Heim <phreak@gentoo.org>
519 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
520 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
521
522 *hardened-sources-2.6.17-r1 (26 Aug 2006)
523
524 26 Aug 2006; Christian Heim <phreak@gentoo.org>
525 +hardened-sources-2.6.17-r1.ebuild:
526 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
527 grsecurity patch.
528
529 *hardened-sources-2.6.17 (17 Aug 2006)
530
531 17 Aug 2006; Christian Heim <phreak@gentoo.org>
532 +hardened-sources-2.6.17.ebuild:
533 Bumping the hardened-sources-2.6 series to 2.6.17, using
534 genpatches-2.6.17-6.base.
535
536 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
537 - stable on x86 and amd64
538
539 *hardened-sources-2.6.16-r11 (15 Jul 2006)
540
541 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
542 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
543 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
544 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
545 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
546 crusty ebuilds
547
548 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
549 hardened-sources-2.6.16-r10.ebuild:
550 marking stable on x86 and amd64
551
552 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
553 - 2.4.32-r6 stable on x86. RSBAC state unknown
554
555 *hardened-sources-2.4.32-r7 (10 Jul 2006)
556
557 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
558 +hardened-sources-2.4.32-r7.ebuild:
559 Bump PaX for RSBAC to test-17
560
561 *hardened-sources-2.6.16-r9 (03 Jul 2006)
562
563 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
564 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
565 hardened-sources-2.6.16 bump to latest -base.
566
567 *hardened-sources-2.4.32-r6 (30 Jun 2006)
568
569 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
570 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
571 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
572 sysctl controlable resource logging
573
574 *hardened-sources-2.6.16-r7 (05 Jun 2006)
575
576 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
577 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
578 push new 2.6.16 release in preparation for stable
579
580 22 May 2006; <solar@gentoo.org> :
581 - redigest bug 134002
582
583 *hardened-sources-2.4.32-r5 (16 May 2006)
584
585 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
586 +hardened-sources-2.4.32-r5.ebuild:
587 Fixes rsbac common patching (new patch in new -r5 patchset)
588
589 *hardened-sources-2.4.32-r4 (13 May 2006)
590
591 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
592 +hardened-sources-2.4.32-r4.ebuild:
593 - security bumps
594
595 *hardened-sources-2.6.16-r6 (03 May 2006)
596
597 03 May 2006; John Mylchreest <johnm@gentoo.org>
598 +hardened-sources-2.6.16-r6.ebuild:
599 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
600
601 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
602 hardened-sources-2.6.14-r8.ebuild:
603 fix x86_64 build problem, this will delay the digest issue again for a short
604 while but it will sort itself out
605
606 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
607 hardened-sources-2.6.14-r8.ebuild:
608 bump hardened patchset
609
610 27 Apr 2006; Alec Warner <antarus@gentoo.org>
611 files/digest-hardened-sources-2.4.32-r2,
612 files/digest-hardened-sources-2.4.32-r3,
613 files/digest-hardened-sources-2.6.14-r8, Manifest:
614 Fixing duff SHA256 digests: Bug # 131293
615
616 *hardened-sources-2.6.16-r5 (27 Apr 2006)
617
618 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
619 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
620 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
621 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
622 cleanup of old uneccessary sources
623
624 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
625 fix digest
626
627 *hardened-sources-2.6.14-r8 (20 Apr 2006)
628
629 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
630 +hardened-sources-2.6.14-r8.ebuild:
631 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
632
633 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
634 Turning on gpg-signing again, and recomitting
635
636 *hardened-sources-2.6.16-r4 (20 Apr 2006)
637
638 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
639 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
640 +hardened-sources-2.6.16-r4.ebuild:
641 Fix numerous security vulns
642
643 *hardened-sources-2.4.32-r3 (16 Apr 2006)
644
645 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
646 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
647 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
648 - security bump for bug #112791. Removed old ebuilds
649
650 *hardened-sources-2.6.16-r3 (15 Apr 2006)
651
652 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
653 +hardened-sources-2.6.16-r3.ebuild:
654 Removing silly localversion which I missed
655
656 *hardened-sources-2.6.14-r7 (14 Apr 2006)
657
658 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
659 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
660 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
661
662 *hardened-sources-2.6.16-r2 (13 Apr 2006)
663
664 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
665 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
666 +hardened-sources-2.6.16-r2.ebuild:
667 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
668 labels, dropping USERGROUP define fixes, since these were merged mainstream.
669
670 *hardened-sources-2.6.16-r1 (11 Apr 2006)
671
672 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
673 +hardened-sources-2.6.16-r1.ebuild:
674 Bumping to include ppc build fix and 2.6.16.3
675
676 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
677 hardened-sources-2.6.14-r6.ebuild:
678 Stable on x86; bug #127718
679
680 *hardened-sources-2.6.16 (31 Mar 2006)
681
682 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
683 +hardened-sources-2.6.16.ebuild:
684 Bumping to new version of grsec, and kernel base. New squashfs. Based on
685 2.6.16.1
686
687 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
688 hardened-sources-2.6.14-r6.ebuild:
689 Stable on amd64, bug 127718.
690
691 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
692 Stable on ppc. Bug #127718
693
694 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
695 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
696 -hardened-sources-2.6.14-r4.ebuild:
697 Cleanup.
698
699 *hardened-sources-2.6.14-r6 (15 Mar 2006)
700
701 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
702 +hardened-sources-2.6.14-r6.ebuild:
703 Fixes grsec policy recreation bug and adds a
704 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
705
706 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
707 - stable on x86
708
709 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
710 hardened-sources-2.6.14-r5.ebuild:
711 Stable on ppc.
712
713 *hardened-sources-2.6.14-r5 (01 Feb 2006)
714
715 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
716 +hardened-sources-2.6.14-r5.ebuild:
717 fixing every known exploit
718
719 *hardened-sources-2.4.32-r2 (26 Jan 2006)
720
721 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
722 +hardened-sources-2.4.32-r2.ebuild:
723 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
724
725 *hardened-sources-2.6.14-r4 (12 Jan 2006)
726
727 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
728 - version bump for new genpatches which fix up a few sec holes
729
730 *hardened-sources-2.4.32-r1 (05 Jan 2006)
731
732 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
733 - revision bump to add misc vital linux kernel security patches.
734
735 *hardened-sources-2.6.14-r3 (30 Dec 2005)
736
737 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
738 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
739 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
740
741 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
742 hardened-sources-2.6.14-r2.ebuild:
743 making x86 & amd64 stable following testing.
744
745 *hardened-sources-2.6.14-r2 (27 Dec 2005)
746
747 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
748 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
749 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
750 network hooks.
751
752 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
753 hardened-sources-2.6.14-r1.ebuild:
754 bumping to stable early for sec fix on x86 & amd64
755
756 *hardened-sources-2.6.14-r1 (05 Dec 2005)
757
758 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
759 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
760 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
761
762 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
763 - stable on x86 security bug #114227 CAN-2005-3257
764
765 *hardened-sources-2.4.32 (19 Nov 2005)
766
767 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
768 +hardened-sources-2.4.32.ebuild:
769 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
770 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
771 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
772 rsbac >> /etc/portage/package.use)
773
774 *hardened-sources-2.6.14 (14 Nov 2005)
775
776 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
777 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
778 Bumping 2.6 series to 2.6.14.2
779
780 *hardened-sources-2.6.13-r2 (20 Oct 2005)
781
782 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
783 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
784 +hardened-sources-2.6.13-r2.ebuild:
785 Fixes minor build error in ppc.
786
787 *hardened-sources-2.6.13-r1 (17 Oct 2005)
788
789 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
790 +hardened-sources-2.6.13-r1.ebuild:
791 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
792 2.6.13.4, fixes some major amd64 stability problems.
793
794 *hardened-sources-2.6.13 (16 Sep 2005)
795
796 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
797 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
798 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
799 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
800 users should test this thoroughly.
801
802 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
803 - stable on x86
804
805 *hardened-sources-2.6.11-r15 (27 Jun 2005)
806
807 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
808 +hardened-sources-2.6.11-r15.ebuild:
809 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
810 grsec redefining curr_ip struct.
811
812 *hardened-sources-2.4.31 (20 Jun 2005)
813
814 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
815 initial import of 2.4.31 tree
816
817 *hardened-sources-2.6.11-r14 (14 Jun 2005)
818
819 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
820 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
821 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
822 naming scheme to abide by genpatches
823
824 *hardened-sources-2.6.11-r13 (18 May 2005)
825
826 18 May 2005; John Mylchreest <johnm@gentoo.org>
827 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
828 Managed to mangle the Makefile patch from grsec, to miss out the grsec
829 target. sorry about that. Fixes bug #93022
830
831 *hardened-sources-2.6.11-r12 (17 May 2005)
832
833 17 May 2005; John Mylchreest <johnm@gentoo.org>
834 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
835 +hardened-sources-2.6.11-r12.ebuild:
836 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
837 merges in genpatches-base
838
839 *hardened-sources-2.6.11-r12 (17 May 2005)
840
841 17 May 2005; John Mylchreest <johnm@gentoo.org>
842 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
843 +hardened-sources-2.6.11-r12.ebuild:
844 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
845 merges in genpatches-base
846
847 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
848 -files/2.4.27-cmdline-race.patch,
849 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
850 -files/2.4.28-grsec-binfmt_a.out.patch,
851 -files/2.4.28-grsec-cmdline-race.patch,
852 -files/2.4.28-selinux-binfmt_a.out.patch,
853 -files/2.4.28-selinux-cmdline-race.patch,
854 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
855 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
856 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
857 cleanup..
858
859 *hardened-sources-2.4.30-r1 (21 Apr 2005)
860
861 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
862 - disable aout by default
863
864 *hardened-sources-2.4.30 (18 Apr 2005)
865
866 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
867 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
868 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
869 use
870
871 *hardened-sources-2.4.29 (30 Mar 2005)
872
873 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
874 +hardened-sources-2.4.29.ebuild:
875 New hardened-patches-2.4-29.0 patchball.
876 Removed SELinux support, upgraded GRSecurity to 2.1.4.
877
878 *hardened-sources-2.4.28-r5 (06 Mar 2005)
879
880 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
881 +hardened-sources-2.4.28-r5.ebuild:
882 Added a fix for a PaX vulnerability.
883
884 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
885 hardened-sources-2.4.28-r4.ebuild:
886 Stable on x86
887
888 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
889 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
890 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
891 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
892 - fixed/added RDEPEND= in all kernel-2 ebuilds
893
894 *hardened-sources-2.4.28-r4 (21 Jan 2005)
895
896 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
897 +hardened-sources-2.4.28-r4.ebuild:
898 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
899 backport of neighbour hash updates.
900
901 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
902 hardened-sources-2.4.28-r3.ebuild:
903 Stable on x86
904
905 *hardened-sources-2.6.10-r3 (20 Jan 2005)
906
907 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
908 +hardened-sources-2.6.10-r3.ebuild:
909 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
910 in 2005.0
911
912 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
913 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
914 hardened-sources-2.4.28-r2.ebuild:
915 Mark stable on x86
916
917 *hardened-sources-2.4.28-r3 (17 Jan 2005)
918
919 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
920 +hardened-sources-2.4.28-r3.ebuild:
921 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
922
923 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
924 hardened-sources-2.4.28.ebuild:
925 Mark stable on x86.
926
927 *hardened-sources-2.4.28-r2 (13 Jan 2005)
928
929 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
930 +hardened-sources-2.4.28-r2.ebuild:
931 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
932 Mazinger for grsecurity patches as well.
933
934 *hardened-sources-2.4.28-r1 (23 Dec 2004)
935
936 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
937 Security bump. Thank tocharian for rolling a new patchset...
938
939 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
940 +files/2.4.28-grsec-cmdline-race.patch,
941 +files/2.4.28-selinux-binfmt_a.out.patch,
942 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
943 - Round up remaining security patches that appear to be missing in 2.4.28. -
944 PaX standalone updated to current. hgpv=28.1
945
946 *hardened-sources-2.4.28 (28 Nov 2004)
947
948 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
949 security bump. Thank tocharian for rolling a new patchset
950
951 *hardened-sources-2.4.27-r3 (08 Sep 2004)
952
953 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
954 +hardened-sources-2.4.27-r3.ebuild:
955 Applies the new 2.4-27.2 patchball which updates
956 GRSecurity to the 2.0.1 version.
957
958 *hardened-sources-2.4.27-r2 (31 Aug 2004)
959
960 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
961 +hardened-sources-2.4.27-r2.ebuild:
962 Version bump.
963 This version uses the new 2.4-27.1 patchball which updates
964 both the SELinux PaX hooks patch and the SELinux headers.
965
966 *hardened-sources-2.4.27-r1 (09 Aug 2004)
967
968 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
969 +hardened-sources-2.4.27-r1.ebuild,
970 -hardened-sources-2.4.27.ebuild,
971 +files/2.4.27-cmdline-race.patch:
972 Version bump, fix for cmdline race. See bug #59905.
973
974 *hardened-sources-2.4.26-r6 (09 Aug 2004)
975
976 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
977 +hardened-sources-2.4.26-r6.ebuild,
978 -hardened-sources-2.4.26-r5.ebuild,
979 -hardened-sources-2.4.26-r4.ebuild,
980 +files/2.4.26-cmdline-race.patch:
981 Version bump, fix for cmdline race. See bug #59905.
982
983 *hardened-sources-2.4.27 (08 Aug 2004)
984
985 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
986 +hardened-sources-2.4.27.ebuild,
987 +files/2.4.27-CAN-2004-0394.patch:
988 Ported the patchball to the 2.4.27 kernel version.
989
990 *hardened-sources-2.4.26-r5 (07 Aug 2004)
991
992 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
993 +hardened-sources-2.4.26-r5.ebuild:
994 Updated to use the new hardened-patches-2.4-26.1 patchball.
995 It adds the following features:
996 - Squashfs
997 - Ebtables
998 - Netdev random (core+drivers)
999 - Watchdog Timer (WDT) fix.
1000
1001 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1002
1003 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1004 +hardened-sources-2.4.26-r4.ebuild,
1005 +files/2.4.26-CAN-2004-0415.patch,
1006 -hardened-sources-2.4.26-3:
1007 Version bump, fix for CAN 0415, see bug #59378.
1008
1009 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1010
1011 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1012 +hardened-sources-2.4.26-r3.ebuild,
1013 +files/2.4.26-CAN-2004-0497.patch,
1014 -hardened-sources-2.4.26-r2.ebuild:
1015 Version bump, fixed CAN 0497, see bug #56171.
1016
1017 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1018
1019 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1020 +hardened-sources-2.4.26-r2.ebuild,
1021 +files/2.4.26-CAN-2004-0495.patch,
1022 +files/2.4.26-CAN-2004-0535.patch,
1023 -hardened-sources-2.4.26-r1.ebuild:
1024 Fixes for both CAN 0495 and 0535, see bug #54976
1025
1026 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1027 hardened-sources-2.4.26-r1.ebuild:
1028 QA - fix use invocation
1029
1030 *hardened-sources-2.4.26-r1 (22 June 2004)
1031
1032 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1033 +hardened-sources-2.4.26-r1.ebuild,
1034 +files/2.4.26-CAN-2004-0394.patch,
1035 +files/2.4.26-signal-race.patch,
1036 -hardened-sources-2.4.26.ebuild,
1037 -hardened-sources-2.4.24-r3.ebuild:
1038 Version bump for the CAN-2004-0394 issue and bug #53804
1039 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1040
1041
1042 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1043 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1044 Masked hardened-sources-2.4.26.ebuild broken for ppc
1045
1046 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1047 hardened-sources-2.4.24-r3.ebuild:
1048 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1049
1050 *hardened-sources-2.4.26 (29 May 2004)
1051
1052 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1053 +hardened-sources-2.4.26.ebuild:
1054 Updated hardened-sources for the 2.4.26 kernel
1055 Removed broken components, updated almost everything.
1056
1057 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1058
1059 17 Apr 2004; <plasmaroo@gentoo.org>
1060 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1061 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1062 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1063 +hardened-sources-2.4.24-r3.ebuild:
1064 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1065 vulnerabilities. Old revisions removed.
1066
1067 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1068
1069 15 Apr 2004; <plasmaroo@gentoo.org>
1070 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1071 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1072 Version bump for the CAN-2004-0109 issue; bug #47881.
1073
1074 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1075 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1076 Add eutils to inherit.
1077
1078 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1079
1080 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1081 files/hardened-sources-2.4.24.munmap.patch:
1082 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1083
1084 *hardened-sources-2.4.24 (06 Feb 2004)
1085
1086 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1087 hardened-sources-2.4.24.ebuild:
1088 Version bump, updated most of the components.
1089 This release includes the following:
1090
1091 - Hardened security
1092 - Netfilter patch-o-matic 20031219
1093 - FreeSWAN 2.04 & x509 1.4.8
1094 - EVMS 2.2.2
1095 - XFS 1.3.1
1096 - cryptoloop jari
1097 - grsecurity 2.0-rc4
1098 - SELinux
1099 - PaX 200402060000
1100 - PaX Obscurity 200308302223
1101 - Others...
1102
1103 Neither -ck nor systrace are included anymore.
1104
1105 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1106
1107 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1108 hardened-sources-2.4.22-r2.ebuild:
1109 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1110
1111 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1112
1113 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1114 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1115
1116 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1117 hardened-sources-2.4.22-r1.ebuild:
1118 Version bump for the 'do_brk' vulnerability.
1119
1120 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1121 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1122 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1123 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1124 Fix the 'do_brk' vulnerability.
1125
1126 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1127 hardened-sources-2.4.22.ebuild:
1128 - Removed the src_install() portion for SELinux flask
1129 components. These are no longer handled in the kernel
1130 so this code was not necessary.
1131
1132 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1133 New 2.4.22 based hardened-sources thanks to
1134 Phil West <p.west@computer.org>.
1135
1136 These sources include:
1137 - New SELinux API
1138 - Updated CK-base
1139 - Updated GRSec
1140 - Systrace
1141 - SuperFreeS/WAN 1.99.8
1142 - Propolice kernel build support
1143 - EVMS
1144 - Other various security related patches
1145
1146 *hardened-sources-2.4.21 (14 Sep 2003)
1147
1148 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1149 Updated hardened-sources based on the 2.4.21 Linux kernel.
1150 This includes updates to most major components such as:
1151 - ck-base-0306300059
1152 - selinux-2.4-2003071106
1153 - grsecurity-2.0-rc1
1154 - Updated IPTables patch-o-matic
1155 - Updated SuperFreeS/WAN
1156
1157 Thanks to Phil West <pwest@computer.org> for his work in getting this
1158 updated patch set ready for the 2.4.21 based kernel.
1159
1160 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1161 Initial import of hardened-sources-2.4.20-r4. This revision
1162 includes only a few changes, but one of these is an important
1163 security fix. It is recommended all users of hardened-sources
1164 upgrade to this release.
1165
1166 - ioperm bug fix
1167 - fixed compilation failure when building without GRSec
1168
1169 SAL (Secure Auditing for Linux) is NOT included in this revision
1170 due to time constraints, but is planned for inclusion in the near
1171 future.
1172
1173 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1174
1175 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1176 hardened-sources-2.4.20-r3.ebuild:
1177 Add Header...
1178
1179 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1180 hardened-sources-2.4.20-r3.ebuild:
1181 Removed warnings from ebuild. This kernel should be safe to
1182 use at this point.
1183
1184 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1185
1186 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1187 hardened-sources-2.4.20-r3.ebuild:
1188 New revision. Includes the following changes over -r2:
1189
1190 - ck7-base (O(1), preempt, low latency)
1191 - Super FreeS/WAN 1.99.7rc2
1192 - PaX for the LSM/SELinux branch
1193 - GRSecurity 2.0-pre4 (role based access control)
1194 - Systrace 1.3
1195 - EXT3 fixes
1196 - EVMS 2.0.1
1197 - GCC 3.1+ compile optimizations
1198 - ProPolice kernel build support
1199 - Hashing table security fixes
1200
1201 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1202
1203 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1204 Initial import of hardened-sources-r2. This new
1205 ebuild includes many new performance and security
1206 related patches. As in -r1, it will patch in
1207 LSM/SELinux if "selinux" is in USE, otherwise it
1208 will patch in GRSecurity. The following patches
1209 are included in this revision:
1210
1211 - O(1) Scheduler, Low Latency, and Preempt
1212 (pulled from the base CK patch)
1213 - ptrace exploit patch for the LSM kernel
1214 (the GRSec patch already fixes this)
1215 - LSM 2.4-2003040709
1216 - SELinux 2.4-2003040709
1217 - Systrace v1.2
1218 - IPTables patch-o-matic base patches - 20030107
1219 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1220 - Super FreeS/WAN 1.99.6.1
1221 - GRSecurity 1.9.9g
1222 - MPPE
1223 - EXT3 data journal fix
1224 - CIPE 1.5.4
1225
1226 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1227 hardened-sources-2.4.20-r1.ebuild, manifest:
1228 Updated to install flask components correctly for selinux.
1229
1230 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1231 hardened-sources-2.4.20-r1.ebuild:
1232 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1233 is patched in instead. Ptrace patches for selinux have also been added. In
1234 either case, systrace support will be patched in as well.
1235
1236 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1237 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1238 Revision bump for new sources.
1239
1240 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1241 hardened-sources-2.4.20-r1.ebuild:
1242 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1243
1244 *hardened-sources-2.4.20 (30 Mar 2003)
1245
1246 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1247 hardened-sources-2.4.20.ebuild:
1248 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20