/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.203 - (show annotations) (download)
Mon Dec 24 13:20:58 2007 UTC (6 years, 11 months ago) by phreak
Branch: MAIN
Changes since 1.202: +9 -1 lines
Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
(Portage version: 2.1.3.19)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.202 2007/12/24 13:09:01 phreak Exp $
4
5 *hardened-sources-2.6.23-r5 (24 Dec 2007)
6
7 24 Dec 2007; Christian Heim <phreak@gentoo.org>
8 hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
9 hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
10 hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
11 Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
12
13 24 Dec 2007; Christian Heim <phreak@gentoo.org>
14 -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
15 -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
16 -hardened-sources-2.6.23-r3.ebuild:
17 Cleaning out some unused, old versions.
18
19 24 Dec 2007; Christian Heim <phreak@gentoo.org>
20 hardened-sources-2.6.23-r4.ebuild:
21 Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
22 in the tree for long, but there isn't much of a difference between this and
23 -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
24
25 *hardened-sources-2.6.23-r4 (23 Dec 2007)
26
27 23 Dec 2007; Christian Heim <phreak@gentoo.org>
28 +hardened-sources-2.6.23-r4.ebuild:
29 Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
30
31 *hardened-sources-2.6.23-r3 (04 Dec 2007)
32
33 04 Dec 2007; Christian Heim <phreak@gentoo.org>
34 +hardened-sources-2.6.23-r3.ebuild:
35 Revision bump, pulling in 2.6.23.9.
36
37 *hardened-sources-2.6.23-r2 (25 Nov 2007)
38
39 25 Nov 2007; Christian Heim <phreak@gentoo.org>
40 +hardened-sources-2.6.23-r2.ebuild:
41 Updated patchset, thanks to solar.
42
43 *hardened-sources-2.6.23-r1 (31 Oct 2007)
44
45 31 Oct 2007; Christian Heim <phreak@gentoo.org>
46 +hardened-sources-2.6.23-r1.ebuild:
47 Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
48
49 29 Oct 2007; <solar@gentoo.org> metadata.xml:
50 - update metadata.xml
51
52 25 Oct 2007; Christian Heim <phreak@gentoo.org>
53 hardened-sources-2.6.22-r8.ebuild:
54 Marking 2.6.22-r8 stable on amd64 and x86.
55
56 21 Oct 2007; Christian Heim <phreak@gentoo.org>
57 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
58 -hardened-sources-2.6.21-r4.ebuild:
59 Removing old ebuilds.
60
61 *hardened-sources-2.4.35-r2 (21 Oct 2007)
62
63 21 Oct 2007; Christian Heim <phreak@gentoo.org>
64 +hardened-sources-2.4.35-r2.ebuild:
65 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
66 patches.
67
68 *hardened-sources-2.6.22-r8 (21 Oct 2007)
69
70 21 Oct 2007; Christian Heim <phreak@gentoo.org>
71 +hardened-sources-2.6.22-r8.ebuild:
72 Yet another new patch, hopefully fixing the remaining issues we had w/
73 2.6.22. Candidate for stabling.
74
75 *hardened-sources-2.6.23 (13 Oct 2007)
76
77 13 Oct 2007; Christian Heim <phreak@gentoo.org>
78 +hardened-sources-2.6.23.ebuild:
79 Initial hardened-sources-2.6.23. If people still have problems w/ bug
80 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
81
82 11 Oct 2007; Christian Heim <phreak@gentoo.org>
83 hardened-sources-2.6.20-r10.ebuild:
84 Pulling in yet another new genpatches version, fixing the PWC bug for real.
85
86 04 Oct 2007; Christian Heim <phreak@gentoo.org>
87 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
88 Removing old versions.
89
90 *hardened-sources-2.6.22-r7 (01 Oct 2007)
91
92 01 Oct 2007; Christian Heim <phreak@gentoo.org>
93 +hardened-sources-2.6.22-r7.ebuild:
94 Revision bump, pulling in a newer patch. Should fix #194276.
95
96 30 Sep 2007; Christian Heim <phreak@gentoo.org>
97 hardened-sources-2.6.20-r10.ebuild:
98 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
99 Mike Doty).
100
101 *hardened-sources-2.6.22-r6 (26 Sep 2007)
102
103 26 Sep 2007; Christian Heim <phreak@gentoo.org>
104 +hardened-sources-2.6.22-r6.ebuild:
105 Revision bump, grabbing up till Linux 2.6.22.9.
106
107 24 Sep 2007; Christian Heim <phreak@gentoo.org>
108 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
109 Cleaning up further.
110
111 *hardened-sources-2.6.20-r10 (24 Sep 2007)
112
113 24 Sep 2007; Christian Heim <phreak@gentoo.org>
114 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
115 +hardened-sources-2.6.20-r10.ebuild:
116 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
117 revisions.
118
119 *hardened-sources-2.6.22-r5 (22 Sep 2007)
120
121 22 Sep 2007; Christian Heim <phreak@gentoo.org>
122 +hardened-sources-2.6.22-r5.ebuild:
123 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
124
125 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
126 Removing johnm from metadata.xml (see #186467 for reference).
127
128 *hardened-sources-2.6.22-r4 (17 Sep 2007)
129
130 17 Sep 2007; Christian Heim <phreak@gentoo.org>
131 +hardened-sources-2.6.22-r4.ebuild:
132 Revision bump, hopefully fixing all those weird PAX failures.
133
134 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
135 Updating the metadata.xml.
136
137 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
138 Removing tocharian from metadata due to his retirement (see #71718 for
139 reference).
140
141 *hardened-sources-2.6.20-r9 (30 Aug 2007)
142
143 30 Aug 2007; Christian Heim <phreak@gentoo.org>
144 +hardened-sources-2.6.20-r9.ebuild:
145 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
146
147 29 Aug 2007; Christian Heim <phreak@gentoo.org>
148 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
149 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
150 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
151 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
152 -hardened-sources-2.6.22-r2.ebuild:
153 Removing some redundant versions.
154
155 *hardened-sources-2.4.35-r1 (29 Aug 2007)
156
157 29 Aug 2007; Christian Heim <phreak@gentoo.org>
158 +hardened-sources-2.4.35-r1.ebuild:
159 Revision bump, new grsecurity patch.
160
161 *hardened-sources-2.6.20-r8 (26 Aug 2007)
162
163 26 Aug 2007; Christian Heim <phreak@gentoo.org>
164 +hardened-sources-2.6.20-r8.ebuild:
165 Revision bump for Linux 2.6.20.17.
166
167 *hardened-sources-2.6.22-r3 (22 Aug 2007)
168
169 22 Aug 2007; Christian Heim <phreak@gentoo.org>
170 +hardened-sources-2.6.22-r3.ebuild:
171 Revision bump for Linux 2.6.22.4.
172
173 16 Aug 2007; Christian Heim <phreak@gentoo.org>
174 hardened-sources-2.6.22-r2.ebuild:
175 Updated patchset, to fix the alignment against 2.6.22.3.
176
177 *hardened-sources-2.6.22-r2 (16 Aug 2007)
178
179 16 Aug 2007; Christian Heim <phreak@gentoo.org>
180 +hardened-sources-2.6.22-r2.ebuild:
181 Revision bump for Linux 2.6.22.3.
182
183 *hardened-sources-2.4.35 (16 Aug 2007)
184
185 16 Aug 2007; Christian Heim <phreak@gentoo.org>
186 +hardened-sources-2.4.35.ebuild:
187 Version bump, initial version for Linux 2.4.35.
188
189 *hardened-sources-2.6.21-r4 (16 Aug 2007)
190
191 16 Aug 2007; Christian Heim <phreak@gentoo.org>
192 +hardened-sources-2.6.21-r4.ebuild:
193 Revision bump for Linux 2.6.21.6.
194
195 *hardened-sources-2.6.20-r7 (16 Aug 2007)
196
197 16 Aug 2007; Christian Heim <phreak@gentoo.org>
198 +hardened-sources-2.6.20-r7.ebuild:
199 Revision bump for Linux 2.6.20.16.
200
201 *hardened-sources-2.6.22-r1 (13 Aug 2007)
202
203 13 Aug 2007; Christian Heim <phreak@gentoo.org>
204 +hardened-sources-2.6.22-r1.ebuild:
205 Yet another revision bump.
206
207 *hardened-sources-2.6.22 (10 Aug 2007)
208
209 10 Aug 2007; Christian Heim <phreak@gentoo.org>
210 +hardened-sources-2.6.22.ebuild:
211 Initial release for 2.6.22. If you are using hardened-sources on a desktop
212 machine (P4 or newer), be aware you might need to disable
213 CONFIG_PAX_PAGEEXEC.
214
215 04 Aug 2007; Christian Heim <phreak@gentoo.org>
216 hardened-sources-2.6.20-r6.ebuild:
217 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
218 2.6.20.15.
219
220 10 Jul 2007; Christian Heim <phreak@gentoo.org>
221 hardened-sources-2.6.20-r5.ebuild:
222 Marking hardened-sources-2.6.20-r5 stable on ppc.
223
224 10 Jul 2007; Christian Heim <phreak@gentoo.org>
225 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
226 Cleanup.
227
228 *hardened-sources-2.6.20-r6 (08 Jul 2007)
229
230 08 Jul 2007; Christian Heim <phreak@gentoo.org>
231 +hardened-sources-2.6.20-r6.ebuild:
232 Revision bump, grabbing yet another stable release.
233
234 17 Jun 2007; Christian Heim <phreak@gentoo.org>
235 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
236 -hardened-sources-2.6.21-r2.ebuild:
237 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
238 alpha stable KEYWORD by mistake.
239
240 17 Jun 2007; Christian Heim <phreak@gentoo.org>
241 hardened-sources-2.6.20-r5.ebuild:
242 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
243 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
244
245 *hardened-sources-2.6.21-r3 (12 Jun 2007)
246
247 12 Jun 2007; Christian Heim <phreak@gentoo.org>
248 +hardened-sources-2.6.21-r3.ebuild:
249 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
250 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
251 love.
252
253 *hardened-sources-2.6.20-r5 (11 Jun 2007)
254
255 11 Jun 2007; Christian Heim <phreak@gentoo.org>
256 +hardened-sources-2.6.20-r5.ebuild:
257 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
258 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
259 love.
260
261 *hardened-sources-2.4.34.5 (11 Jun 2007)
262
263 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
264 +hardened-sources-2.4.34.5.ebuild:
265 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
266
267 30 May 2007; Christian Heim <phreak@gentoo.org>
268 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
269 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
270 stale ebuild(s).
271
272 30 May 2007; Christian Heim <phreak@gentoo.org>
273 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
274 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
275 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
276 Doing some cleanups, remove stale ebuilds.
277
278 26 May 2007; Christian Heim <phreak@gentoo.org>
279 hardened-sources-2.6.21-r2.ebuild:
280 Fixing the grsecurity patch, had one '};' too much.
281
282 *hardened-sources-2.6.21-r2 (26 May 2007)
283
284 26 May 2007; Christian Heim <phreak@gentoo.org>
285 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
286 +hardened-sources-2.6.21-r2.ebuild:
287 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
288 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
289
290 *hardened-sources-2.6.20-r4 (26 May 2007)
291
292 26 May 2007; Christian Heim <phreak@gentoo.org>
293 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
294 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
295 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
296
297 15 May 2007; Christian Heim <phreak@gentoo.org>
298 hardened-sources-2.6.20-r3.ebuild:
299 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
300 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
301 grsecurity patch fail in that exact same hunk.
302
303 *hardened-sources-2.6.20-r3 (15 May 2007)
304
305 15 May 2007; Christian Heim <phreak@gentoo.org>
306 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
307 Revision bump, incorporating Linux 2.6.20.11.
308
309 *hardened-sources-2.6.21-r1 (11 May 2007)
310
311 11 May 2007; Christian Heim <phreak@gentoo.org>
312 +hardened-sources-2.6.21-r1.ebuild:
313 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
314 mentioned in #177234.
315
316 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
317 files/digest-hardened-sources-2.6.21, Manifest:
318 Fix Manifest/digest for linux-2.6.21.tar.bz2
319
320 06 May 2007; Christian Heim <phreak@gentoo.org>
321 hardened-sources-2.6.21.ebuild:
322 Bumping the hardened-patches version, needed for the fix for #177234.
323
324 *hardened-sources-2.6.21 (02 May 2007)
325
326 02 May 2007; Christian Heim <phreak@gentoo.org>
327 +hardened-sources-2.6.21.ebuild:
328 Version bump, Linux 2.6.21-hardened.
329
330 29 Apr 2007; Christian Heim <phreak@gentoo.org>
331 hardened-sources-2.6.20-r2.ebuild:
332 Adding ~ia64 on Ned's request.
333
334 29 Apr 2007; Christian Heim <phreak@gentoo.org>
335 hardened-sources-2.6.20-r2.ebuild:
336 Fixing the included grsecurity patch, wasn't alligning due to the Index:
337 header line(s).
338
339 29 Apr 2007; Christian Heim <phreak@gentoo.org>
340 hardened-sources-2.6.20-r2.ebuild:
341 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
342
343 *hardened-sources-2.6.20-r2 (10 Apr 2007)
344
345 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
346 +hardened-sources-2.6.20-r2.ebuild:
347 Version bump, on behalf of phreak
348
349 *hardened-sources-2.6.20-r1 (04 Apr 2007)
350
351 04 Apr 2007; Christian Heim <phreak@gentoo.org>
352 +hardened-sources-2.6.20-r1.ebuild:
353 Revision bump, grabbing a newer grsecurity snapshot.
354
355 *hardened-sources-2.6.20 (25 Mar 2007)
356
357 25 Mar 2007; Christian Heim <phreak@gentoo.org>
358 +hardened-sources-2.6.20.ebuild:
359 Finally a hardened-sources version for 2.6.20; many people have been waiting
360 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
361 testbox.
362
363 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
364 hardened-sources-2.6.18-r6.ebuild:
365 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
366
367 *hardened-sources-2.6.18-r6 (16 Mar 2007)
368
369 16 Mar 2007; Christian Heim <phreak@gentoo.org>
370 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
371 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
372 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
373 supposed to be.
374
375 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
376 Fixing the Manifest, the previous one was broken (as in still had the
377 deleted ebuild in it).
378
379 06 Mar 2007; Christian Heim <phreak@gentoo.org>
380 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
381 +hardened-sources-2.6.18-r5.ebuild:
382 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
383 Linux 2.6.18.8. Also cleaning up the older version.
384
385 *hardened-sources-2.6.18-r5 (06 Mar 2007)
386
387 06 Mar 2007; Christian Heim <phreak@gentoo.org>
388 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
389 +hardened-sources-2.6.18-r5.ebuild:
390 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
391 Linux 2.6.18.8. Also cleaning up the older version.
392
393 24 Feb 2007; Christian Heim <phreak@gentoo.org>
394 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
395 -hardened-sources-2.6.19-r5.ebuild:
396 Removing some of the old version, that didn't work.
397
398 *hardened-sources-2.6.19-r6 (12 Feb 2007)
399
400 12 Feb 2007; Christian Heim <phreak@gentoo.org>
401 +hardened-sources-2.6.19-r6.ebuild:
402 Revision bump, including a new grsec version fixing #166235.
403
404 *hardened-sources-2.4.34 (24 Jan 2007)
405
406 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
407 Manifest:
408 updating Manifest with checksums of new tarball and ebuild
409
410 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
411 +hardened-sources-2.4.34.ebuild:
412 I added new hardened sources 2.4 update, this is a critical path
413 security bugfix - all users of h-s are strongly advised
414 to update their existing hardened sources to this version.
415 It contains a fix for a kernel vulnerability that is pertaining
416 to the PaX changes to virtual memory management, possibly leading
417 to a local kernel exploit ... see grsecurity.net forums and homepage
418
419 23 Jan 2007; Christian Heim <phreak@gentoo.org>
420 files/digest-hardened-sources-2.6.19-r5, Manifest:
421 Fixing the patch-tarball digest.
422
423 *hardened-sources-2.6.19-r5 (23 Jan 2007)
424
425 23 Jan 2007; Christian Heim <phreak@gentoo.org>
426 +hardened-sources-2.6.19-r5.ebuild:
427 Revision bump, closing the recently discovered PaX expand_stack()
428 vulnerability.
429
430 *hardened-sources-2.6.19-r4 (14 Jan 2007)
431
432 14 Jan 2007; Christian Heim <phreak@gentoo.org>
433 +hardened-sources-2.6.19-r4.ebuild:
434 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
435 dropping the randomized PID feature.
436
437 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
438 hardened-sources-2.4.33.4.ebuild:
439 stable x86, bug #161171
440
441 *hardened-sources-2.6.19-r3 (27 Dec 2006)
442
443 27 Dec 2006; Christian Heim <phreak@gentoo.org>
444 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
445 Revision bump for bug #157186 and #158786.
446
447 *hardened-sources-2.6.18-r4 (27 Dec 2006)
448
449 27 Dec 2006; Christian Heim <phreak@gentoo.org>
450 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
451 Revision bump for bug #157186.
452
453 *hardened-sources-2.6.19-r2 (23 Dec 2006)
454
455 23 Dec 2006; Christian Heim <phreak@gentoo.org>
456 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
457 Revision bump to pull in genpatches-2.6.19-3 for #157186.
458
459 17 Dec 2006; Christian Heim <phreak@gentoo.org>
460 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
461 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
462 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
463 hardened-sources-2.6.19-r1.ebuild:
464 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
465 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
466
467 *hardened-sources-2.4.33.4 (17 Dec 2006)
468
469 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
470 +hardened-sources-2.4.33.4.ebuild:
471 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
472 and quilting
473
474 *hardened-sources-2.6.19-r1 (14 Dec 2006)
475
476 14 Dec 2006; Christian Heim <phreak@gentoo.org>
477 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
478 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
479 for reporting).
480
481 *hardened-sources-2.6.19 (13 Dec 2006)
482
483 13 Dec 2006; Christian Heim <phreak@gentoo.org>
484 +hardened-sources-2.6.19.ebuild:
485 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
486 Brad for providing that prompt update.
487
488 *hardened-sources-2.6.18-r3 (13 Dec 2006)
489
490 13 Dec 2006; Christian Heim <phreak@gentoo.org>
491 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
492 +hardened-sources-2.6.18-r3.ebuild:
493 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
494 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
495
496 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
497 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
498
499 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
500 Stable on ppc wrt bug 157356
501
502 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
503 hardened-sources-2.6.18.ebuild:
504 stable x86, bug #157356
505
506 *hardened-sources-2.6.18-r2 (06 Dec 2006)
507
508 06 Dec 2006; Christian Heim <phreak@gentoo.org>
509 +hardened-sources-2.6.18-r2.ebuild:
510 Revision bump, including 2.6.18.5 (via genpatches) and
511 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
512 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
513 redesign.
514
515 06 Dec 2006; Christian Heim <phreak@gentoo.org>
516 hardened-sources-2.6.18.ebuild:
517 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
518 of Mike Doty).
519
520 *hardened-sources-2.6.18-r1 (23 Nov 2006)
521
522 23 Nov 2006; Christian Heim <phreak@gentoo.org>
523 +hardened-sources-2.6.18-r1.ebuild:
524 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
525
526 *hardened-sources-2.6.18 (11 Nov 2006)
527
528 11 Nov 2006; Christian Heim <phreak@gentoo.org>
529 +hardened-sources-2.6.18.ebuild:
530 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
531
532 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
533 - mark amd64 stable also. bug #151877
534
535 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
536 - mark 2.6.17-r1 stable
537
538 27 Aug 2006; Christian Heim <phreak@gentoo.org>
539 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
540 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
541
542 *hardened-sources-2.6.17-r1 (26 Aug 2006)
543
544 26 Aug 2006; Christian Heim <phreak@gentoo.org>
545 +hardened-sources-2.6.17-r1.ebuild:
546 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
547 grsecurity patch.
548
549 *hardened-sources-2.6.17 (17 Aug 2006)
550
551 17 Aug 2006; Christian Heim <phreak@gentoo.org>
552 +hardened-sources-2.6.17.ebuild:
553 Bumping the hardened-sources-2.6 series to 2.6.17, using
554 genpatches-2.6.17-6.base.
555
556 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
557 - stable on x86 and amd64
558
559 *hardened-sources-2.6.16-r11 (15 Jul 2006)
560
561 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
562 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
563 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
564 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
565 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
566 crusty ebuilds
567
568 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
569 hardened-sources-2.6.16-r10.ebuild:
570 marking stable on x86 and amd64
571
572 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
573 - 2.4.32-r6 stable on x86. RSBAC state unknown
574
575 *hardened-sources-2.4.32-r7 (10 Jul 2006)
576
577 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
578 +hardened-sources-2.4.32-r7.ebuild:
579 Bump PaX for RSBAC to test-17
580
581 *hardened-sources-2.6.16-r9 (03 Jul 2006)
582
583 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
584 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
585 hardened-sources-2.6.16 bump to latest -base.
586
587 *hardened-sources-2.4.32-r6 (30 Jun 2006)
588
589 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
590 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
591 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
592 sysctl controlable resource logging
593
594 *hardened-sources-2.6.16-r7 (05 Jun 2006)
595
596 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
597 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
598 push new 2.6.16 release in preparation for stable
599
600 22 May 2006; <solar@gentoo.org> :
601 - redigest bug 134002
602
603 *hardened-sources-2.4.32-r5 (16 May 2006)
604
605 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
606 +hardened-sources-2.4.32-r5.ebuild:
607 Fixes rsbac common patching (new patch in new -r5 patchset)
608
609 *hardened-sources-2.4.32-r4 (13 May 2006)
610
611 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
612 +hardened-sources-2.4.32-r4.ebuild:
613 - security bumps
614
615 *hardened-sources-2.6.16-r6 (03 May 2006)
616
617 03 May 2006; John Mylchreest <johnm@gentoo.org>
618 +hardened-sources-2.6.16-r6.ebuild:
619 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
620
621 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
622 hardened-sources-2.6.14-r8.ebuild:
623 fix x86_64 build problem, this will delay the digest issue again for a short
624 while but it will sort itself out
625
626 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
627 hardened-sources-2.6.14-r8.ebuild:
628 bump hardened patchset
629
630 27 Apr 2006; Alec Warner <antarus@gentoo.org>
631 files/digest-hardened-sources-2.4.32-r2,
632 files/digest-hardened-sources-2.4.32-r3,
633 files/digest-hardened-sources-2.6.14-r8, Manifest:
634 Fixing duff SHA256 digests: Bug # 131293
635
636 *hardened-sources-2.6.16-r5 (27 Apr 2006)
637
638 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
639 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
640 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
641 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
642 cleanup of old uneccessary sources
643
644 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
645 fix digest
646
647 *hardened-sources-2.6.14-r8 (20 Apr 2006)
648
649 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
650 +hardened-sources-2.6.14-r8.ebuild:
651 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
652
653 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
654 Turning on gpg-signing again, and recomitting
655
656 *hardened-sources-2.6.16-r4 (20 Apr 2006)
657
658 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
659 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
660 +hardened-sources-2.6.16-r4.ebuild:
661 Fix numerous security vulns
662
663 *hardened-sources-2.4.32-r3 (16 Apr 2006)
664
665 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
666 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
667 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
668 - security bump for bug #112791. Removed old ebuilds
669
670 *hardened-sources-2.6.16-r3 (15 Apr 2006)
671
672 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
673 +hardened-sources-2.6.16-r3.ebuild:
674 Removing silly localversion which I missed
675
676 *hardened-sources-2.6.14-r7 (14 Apr 2006)
677
678 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
679 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
680 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
681
682 *hardened-sources-2.6.16-r2 (13 Apr 2006)
683
684 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
685 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
686 +hardened-sources-2.6.16-r2.ebuild:
687 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
688 labels, dropping USERGROUP define fixes, since these were merged mainstream.
689
690 *hardened-sources-2.6.16-r1 (11 Apr 2006)
691
692 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
693 +hardened-sources-2.6.16-r1.ebuild:
694 Bumping to include ppc build fix and 2.6.16.3
695
696 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
697 hardened-sources-2.6.14-r6.ebuild:
698 Stable on x86; bug #127718
699
700 *hardened-sources-2.6.16 (31 Mar 2006)
701
702 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
703 +hardened-sources-2.6.16.ebuild:
704 Bumping to new version of grsec, and kernel base. New squashfs. Based on
705 2.6.16.1
706
707 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
708 hardened-sources-2.6.14-r6.ebuild:
709 Stable on amd64, bug 127718.
710
711 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
712 Stable on ppc. Bug #127718
713
714 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
715 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
716 -hardened-sources-2.6.14-r4.ebuild:
717 Cleanup.
718
719 *hardened-sources-2.6.14-r6 (15 Mar 2006)
720
721 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
722 +hardened-sources-2.6.14-r6.ebuild:
723 Fixes grsec policy recreation bug and adds a
724 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
725
726 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
727 - stable on x86
728
729 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
730 hardened-sources-2.6.14-r5.ebuild:
731 Stable on ppc.
732
733 *hardened-sources-2.6.14-r5 (01 Feb 2006)
734
735 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
736 +hardened-sources-2.6.14-r5.ebuild:
737 fixing every known exploit
738
739 *hardened-sources-2.4.32-r2 (26 Jan 2006)
740
741 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
742 +hardened-sources-2.4.32-r2.ebuild:
743 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
744
745 *hardened-sources-2.6.14-r4 (12 Jan 2006)
746
747 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
748 - version bump for new genpatches which fix up a few sec holes
749
750 *hardened-sources-2.4.32-r1 (05 Jan 2006)
751
752 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
753 - revision bump to add misc vital linux kernel security patches.
754
755 *hardened-sources-2.6.14-r3 (30 Dec 2005)
756
757 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
758 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
759 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
760
761 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
762 hardened-sources-2.6.14-r2.ebuild:
763 making x86 & amd64 stable following testing.
764
765 *hardened-sources-2.6.14-r2 (27 Dec 2005)
766
767 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
768 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
769 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
770 network hooks.
771
772 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
773 hardened-sources-2.6.14-r1.ebuild:
774 bumping to stable early for sec fix on x86 & amd64
775
776 *hardened-sources-2.6.14-r1 (05 Dec 2005)
777
778 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
779 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
780 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
781
782 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
783 - stable on x86 security bug #114227 CAN-2005-3257
784
785 *hardened-sources-2.4.32 (19 Nov 2005)
786
787 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
788 +hardened-sources-2.4.32.ebuild:
789 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
790 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
791 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
792 rsbac >> /etc/portage/package.use)
793
794 *hardened-sources-2.6.14 (14 Nov 2005)
795
796 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
797 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
798 Bumping 2.6 series to 2.6.14.2
799
800 *hardened-sources-2.6.13-r2 (20 Oct 2005)
801
802 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
803 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
804 +hardened-sources-2.6.13-r2.ebuild:
805 Fixes minor build error in ppc.
806
807 *hardened-sources-2.6.13-r1 (17 Oct 2005)
808
809 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
810 +hardened-sources-2.6.13-r1.ebuild:
811 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
812 2.6.13.4, fixes some major amd64 stability problems.
813
814 *hardened-sources-2.6.13 (16 Sep 2005)
815
816 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
817 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
818 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
819 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
820 users should test this thoroughly.
821
822 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
823 - stable on x86
824
825 *hardened-sources-2.6.11-r15 (27 Jun 2005)
826
827 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
828 +hardened-sources-2.6.11-r15.ebuild:
829 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
830 grsec redefining curr_ip struct.
831
832 *hardened-sources-2.4.31 (20 Jun 2005)
833
834 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
835 initial import of 2.4.31 tree
836
837 *hardened-sources-2.6.11-r14 (14 Jun 2005)
838
839 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
840 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
841 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
842 naming scheme to abide by genpatches
843
844 *hardened-sources-2.6.11-r13 (18 May 2005)
845
846 18 May 2005; John Mylchreest <johnm@gentoo.org>
847 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
848 Managed to mangle the Makefile patch from grsec, to miss out the grsec
849 target. sorry about that. Fixes bug #93022
850
851 *hardened-sources-2.6.11-r12 (17 May 2005)
852
853 17 May 2005; John Mylchreest <johnm@gentoo.org>
854 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
855 +hardened-sources-2.6.11-r12.ebuild:
856 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
857 merges in genpatches-base
858
859 *hardened-sources-2.6.11-r12 (17 May 2005)
860
861 17 May 2005; John Mylchreest <johnm@gentoo.org>
862 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
863 +hardened-sources-2.6.11-r12.ebuild:
864 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
865 merges in genpatches-base
866
867 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
868 -files/2.4.27-cmdline-race.patch,
869 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
870 -files/2.4.28-grsec-binfmt_a.out.patch,
871 -files/2.4.28-grsec-cmdline-race.patch,
872 -files/2.4.28-selinux-binfmt_a.out.patch,
873 -files/2.4.28-selinux-cmdline-race.patch,
874 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
875 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
876 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
877 cleanup..
878
879 *hardened-sources-2.4.30-r1 (21 Apr 2005)
880
881 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
882 - disable aout by default
883
884 *hardened-sources-2.4.30 (18 Apr 2005)
885
886 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
887 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
888 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
889 use
890
891 *hardened-sources-2.4.29 (30 Mar 2005)
892
893 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
894 +hardened-sources-2.4.29.ebuild:
895 New hardened-patches-2.4-29.0 patchball.
896 Removed SELinux support, upgraded GRSecurity to 2.1.4.
897
898 *hardened-sources-2.4.28-r5 (06 Mar 2005)
899
900 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
901 +hardened-sources-2.4.28-r5.ebuild:
902 Added a fix for a PaX vulnerability.
903
904 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
905 hardened-sources-2.4.28-r4.ebuild:
906 Stable on x86
907
908 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
909 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
910 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
911 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
912 - fixed/added RDEPEND= in all kernel-2 ebuilds
913
914 *hardened-sources-2.4.28-r4 (21 Jan 2005)
915
916 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
917 +hardened-sources-2.4.28-r4.ebuild:
918 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
919 backport of neighbour hash updates.
920
921 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
922 hardened-sources-2.4.28-r3.ebuild:
923 Stable on x86
924
925 *hardened-sources-2.6.10-r3 (20 Jan 2005)
926
927 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
928 +hardened-sources-2.6.10-r3.ebuild:
929 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
930 in 2005.0
931
932 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
933 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
934 hardened-sources-2.4.28-r2.ebuild:
935 Mark stable on x86
936
937 *hardened-sources-2.4.28-r3 (17 Jan 2005)
938
939 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
940 +hardened-sources-2.4.28-r3.ebuild:
941 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
942
943 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
944 hardened-sources-2.4.28.ebuild:
945 Mark stable on x86.
946
947 *hardened-sources-2.4.28-r2 (13 Jan 2005)
948
949 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
950 +hardened-sources-2.4.28-r2.ebuild:
951 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
952 Mazinger for grsecurity patches as well.
953
954 *hardened-sources-2.4.28-r1 (23 Dec 2004)
955
956 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
957 Security bump. Thank tocharian for rolling a new patchset...
958
959 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
960 +files/2.4.28-grsec-cmdline-race.patch,
961 +files/2.4.28-selinux-binfmt_a.out.patch,
962 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
963 - Round up remaining security patches that appear to be missing in 2.4.28. -
964 PaX standalone updated to current. hgpv=28.1
965
966 *hardened-sources-2.4.28 (28 Nov 2004)
967
968 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
969 security bump. Thank tocharian for rolling a new patchset
970
971 *hardened-sources-2.4.27-r3 (08 Sep 2004)
972
973 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
974 +hardened-sources-2.4.27-r3.ebuild:
975 Applies the new 2.4-27.2 patchball which updates
976 GRSecurity to the 2.0.1 version.
977
978 *hardened-sources-2.4.27-r2 (31 Aug 2004)
979
980 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
981 +hardened-sources-2.4.27-r2.ebuild:
982 Version bump.
983 This version uses the new 2.4-27.1 patchball which updates
984 both the SELinux PaX hooks patch and the SELinux headers.
985
986 *hardened-sources-2.4.27-r1 (09 Aug 2004)
987
988 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
989 +hardened-sources-2.4.27-r1.ebuild,
990 -hardened-sources-2.4.27.ebuild,
991 +files/2.4.27-cmdline-race.patch:
992 Version bump, fix for cmdline race. See bug #59905.
993
994 *hardened-sources-2.4.26-r6 (09 Aug 2004)
995
996 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
997 +hardened-sources-2.4.26-r6.ebuild,
998 -hardened-sources-2.4.26-r5.ebuild,
999 -hardened-sources-2.4.26-r4.ebuild,
1000 +files/2.4.26-cmdline-race.patch:
1001 Version bump, fix for cmdline race. See bug #59905.
1002
1003 *hardened-sources-2.4.27 (08 Aug 2004)
1004
1005 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1006 +hardened-sources-2.4.27.ebuild,
1007 +files/2.4.27-CAN-2004-0394.patch:
1008 Ported the patchball to the 2.4.27 kernel version.
1009
1010 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1011
1012 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1013 +hardened-sources-2.4.26-r5.ebuild:
1014 Updated to use the new hardened-patches-2.4-26.1 patchball.
1015 It adds the following features:
1016 - Squashfs
1017 - Ebtables
1018 - Netdev random (core+drivers)
1019 - Watchdog Timer (WDT) fix.
1020
1021 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1022
1023 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1024 +hardened-sources-2.4.26-r4.ebuild,
1025 +files/2.4.26-CAN-2004-0415.patch,
1026 -hardened-sources-2.4.26-3:
1027 Version bump, fix for CAN 0415, see bug #59378.
1028
1029 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1030
1031 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1032 +hardened-sources-2.4.26-r3.ebuild,
1033 +files/2.4.26-CAN-2004-0497.patch,
1034 -hardened-sources-2.4.26-r2.ebuild:
1035 Version bump, fixed CAN 0497, see bug #56171.
1036
1037 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1038
1039 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1040 +hardened-sources-2.4.26-r2.ebuild,
1041 +files/2.4.26-CAN-2004-0495.patch,
1042 +files/2.4.26-CAN-2004-0535.patch,
1043 -hardened-sources-2.4.26-r1.ebuild:
1044 Fixes for both CAN 0495 and 0535, see bug #54976
1045
1046 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1047 hardened-sources-2.4.26-r1.ebuild:
1048 QA - fix use invocation
1049
1050 *hardened-sources-2.4.26-r1 (22 June 2004)
1051
1052 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1053 +hardened-sources-2.4.26-r1.ebuild,
1054 +files/2.4.26-CAN-2004-0394.patch,
1055 +files/2.4.26-signal-race.patch,
1056 -hardened-sources-2.4.26.ebuild,
1057 -hardened-sources-2.4.24-r3.ebuild:
1058 Version bump for the CAN-2004-0394 issue and bug #53804
1059 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1060
1061
1062 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1063 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1064 Masked hardened-sources-2.4.26.ebuild broken for ppc
1065
1066 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1067 hardened-sources-2.4.24-r3.ebuild:
1068 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1069
1070 *hardened-sources-2.4.26 (29 May 2004)
1071
1072 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1073 +hardened-sources-2.4.26.ebuild:
1074 Updated hardened-sources for the 2.4.26 kernel
1075 Removed broken components, updated almost everything.
1076
1077 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1078
1079 17 Apr 2004; <plasmaroo@gentoo.org>
1080 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1081 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1082 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1083 +hardened-sources-2.4.24-r3.ebuild:
1084 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1085 vulnerabilities. Old revisions removed.
1086
1087 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1088
1089 15 Apr 2004; <plasmaroo@gentoo.org>
1090 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1091 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1092 Version bump for the CAN-2004-0109 issue; bug #47881.
1093
1094 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1095 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1096 Add eutils to inherit.
1097
1098 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1099
1100 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1101 files/hardened-sources-2.4.24.munmap.patch:
1102 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1103
1104 *hardened-sources-2.4.24 (06 Feb 2004)
1105
1106 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1107 hardened-sources-2.4.24.ebuild:
1108 Version bump, updated most of the components.
1109 This release includes the following:
1110
1111 - Hardened security
1112 - Netfilter patch-o-matic 20031219
1113 - FreeSWAN 2.04 & x509 1.4.8
1114 - EVMS 2.2.2
1115 - XFS 1.3.1
1116 - cryptoloop jari
1117 - grsecurity 2.0-rc4
1118 - SELinux
1119 - PaX 200402060000
1120 - PaX Obscurity 200308302223
1121 - Others...
1122
1123 Neither -ck nor systrace are included anymore.
1124
1125 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1126
1127 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1128 hardened-sources-2.4.22-r2.ebuild:
1129 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1130
1131 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1132
1133 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1134 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1135
1136 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1137 hardened-sources-2.4.22-r1.ebuild:
1138 Version bump for the 'do_brk' vulnerability.
1139
1140 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1141 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1142 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1143 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1144 Fix the 'do_brk' vulnerability.
1145
1146 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1147 hardened-sources-2.4.22.ebuild:
1148 - Removed the src_install() portion for SELinux flask
1149 components. These are no longer handled in the kernel
1150 so this code was not necessary.
1151
1152 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1153 New 2.4.22 based hardened-sources thanks to
1154 Phil West <p.west@computer.org>.
1155
1156 These sources include:
1157 - New SELinux API
1158 - Updated CK-base
1159 - Updated GRSec
1160 - Systrace
1161 - SuperFreeS/WAN 1.99.8
1162 - Propolice kernel build support
1163 - EVMS
1164 - Other various security related patches
1165
1166 *hardened-sources-2.4.21 (14 Sep 2003)
1167
1168 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1169 Updated hardened-sources based on the 2.4.21 Linux kernel.
1170 This includes updates to most major components such as:
1171 - ck-base-0306300059
1172 - selinux-2.4-2003071106
1173 - grsecurity-2.0-rc1
1174 - Updated IPTables patch-o-matic
1175 - Updated SuperFreeS/WAN
1176
1177 Thanks to Phil West <pwest@computer.org> for his work in getting this
1178 updated patch set ready for the 2.4.21 based kernel.
1179
1180 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1181 Initial import of hardened-sources-2.4.20-r4. This revision
1182 includes only a few changes, but one of these is an important
1183 security fix. It is recommended all users of hardened-sources
1184 upgrade to this release.
1185
1186 - ioperm bug fix
1187 - fixed compilation failure when building without GRSec
1188
1189 SAL (Secure Auditing for Linux) is NOT included in this revision
1190 due to time constraints, but is planned for inclusion in the near
1191 future.
1192
1193 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1194
1195 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1196 hardened-sources-2.4.20-r3.ebuild:
1197 Add Header...
1198
1199 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1200 hardened-sources-2.4.20-r3.ebuild:
1201 Removed warnings from ebuild. This kernel should be safe to
1202 use at this point.
1203
1204 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1205
1206 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1207 hardened-sources-2.4.20-r3.ebuild:
1208 New revision. Includes the following changes over -r2:
1209
1210 - ck7-base (O(1), preempt, low latency)
1211 - Super FreeS/WAN 1.99.7rc2
1212 - PaX for the LSM/SELinux branch
1213 - GRSecurity 2.0-pre4 (role based access control)
1214 - Systrace 1.3
1215 - EXT3 fixes
1216 - EVMS 2.0.1
1217 - GCC 3.1+ compile optimizations
1218 - ProPolice kernel build support
1219 - Hashing table security fixes
1220
1221 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1222
1223 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1224 Initial import of hardened-sources-r2. This new
1225 ebuild includes many new performance and security
1226 related patches. As in -r1, it will patch in
1227 LSM/SELinux if "selinux" is in USE, otherwise it
1228 will patch in GRSecurity. The following patches
1229 are included in this revision:
1230
1231 - O(1) Scheduler, Low Latency, and Preempt
1232 (pulled from the base CK patch)
1233 - ptrace exploit patch for the LSM kernel
1234 (the GRSec patch already fixes this)
1235 - LSM 2.4-2003040709
1236 - SELinux 2.4-2003040709
1237 - Systrace v1.2
1238 - IPTables patch-o-matic base patches - 20030107
1239 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1240 - Super FreeS/WAN 1.99.6.1
1241 - GRSecurity 1.9.9g
1242 - MPPE
1243 - EXT3 data journal fix
1244 - CIPE 1.5.4
1245
1246 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1247 hardened-sources-2.4.20-r1.ebuild, manifest:
1248 Updated to install flask components correctly for selinux.
1249
1250 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1251 hardened-sources-2.4.20-r1.ebuild:
1252 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1253 is patched in instead. Ptrace patches for selinux have also been added. In
1254 either case, systrace support will be patched in as well.
1255
1256 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1257 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1258 Revision bump for new sources.
1259
1260 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1261 hardened-sources-2.4.20-r1.ebuild:
1262 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1263
1264 *hardened-sources-2.4.20 (30 Mar 2003)
1265
1266 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1267 hardened-sources-2.4.20.ebuild:
1268 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20