/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.208 - (show annotations) (download)
Fri Feb 15 19:08:54 2008 UTC (6 years, 2 months ago) by solar
Branch: MAIN
Changes since 1.207: +2 -2 lines
- stable on amd64 per request of amd64 lead
(Portage version: 2.1.3.19)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2008 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.207 2008/02/15 19:07:56 solar Exp $
4
5 15 Feb 2008; <solar@gentoo.org> hardened-sources-2.6.23-r7.ebuild:
6 - stable on amd64 per request of amd64 lead
7
8 *hardened-sources-2.6.23-r7 (11 Feb 2008)
9
10 11 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r7.ebuild:
11 - version bump from kerin.millar
12 Changes:
13
14 * Bump to genpatches-base-2.6.23-9
15 * Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
16 * Disables COMPAT_VDSO in x86/defconfig
17 * Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig
18
19 25 Jan 2008; Christian Heim <phreak@gentoo.org>
20 -hardened-sources-2.6.22-r8.ebuild:
21 Cleaning up old versions.
22
23 *hardened-sources-2.6.23-r6 (25 Jan 2008)
24
25 25 Jan 2008; Christian Heim <phreak@gentoo.org>
26 -hardened-sources-2.6.23-r5.ebuild, +hardened-sources-2.6.23-r6.ebuild:
27 Revision bump, pulling in the latest genpatches.
28
29 *hardened-sources-2.6.23-r5 (24 Dec 2007)
30
31 24 Dec 2007; Christian Heim <phreak@gentoo.org>
32 hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
33 hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
34 hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
35 Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
36
37 24 Dec 2007; Christian Heim <phreak@gentoo.org>
38 -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
39 -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
40 -hardened-sources-2.6.23-r3.ebuild:
41 Cleaning out some unused, old versions.
42
43 24 Dec 2007; Christian Heim <phreak@gentoo.org>
44 hardened-sources-2.6.23-r4.ebuild:
45 Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
46 in the tree for long, but there isn't much of a difference between this and
47 -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
48
49 *hardened-sources-2.6.23-r4 (23 Dec 2007)
50
51 23 Dec 2007; Christian Heim <phreak@gentoo.org>
52 +hardened-sources-2.6.23-r4.ebuild:
53 Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
54
55 *hardened-sources-2.6.23-r3 (04 Dec 2007)
56
57 04 Dec 2007; Christian Heim <phreak@gentoo.org>
58 +hardened-sources-2.6.23-r3.ebuild:
59 Revision bump, pulling in 2.6.23.9.
60
61 *hardened-sources-2.6.23-r2 (25 Nov 2007)
62
63 25 Nov 2007; Christian Heim <phreak@gentoo.org>
64 +hardened-sources-2.6.23-r2.ebuild:
65 Updated patchset, thanks to solar.
66
67 *hardened-sources-2.6.23-r1 (31 Oct 2007)
68
69 31 Oct 2007; Christian Heim <phreak@gentoo.org>
70 +hardened-sources-2.6.23-r1.ebuild:
71 Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
72
73 29 Oct 2007; <solar@gentoo.org> metadata.xml:
74 - update metadata.xml
75
76 25 Oct 2007; Christian Heim <phreak@gentoo.org>
77 hardened-sources-2.6.22-r8.ebuild:
78 Marking 2.6.22-r8 stable on amd64 and x86.
79
80 21 Oct 2007; Christian Heim <phreak@gentoo.org>
81 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
82 -hardened-sources-2.6.21-r4.ebuild:
83 Removing old ebuilds.
84
85 *hardened-sources-2.4.35-r2 (21 Oct 2007)
86
87 21 Oct 2007; Christian Heim <phreak@gentoo.org>
88 +hardened-sources-2.4.35-r2.ebuild:
89 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
90 patches.
91
92 *hardened-sources-2.6.22-r8 (21 Oct 2007)
93
94 21 Oct 2007; Christian Heim <phreak@gentoo.org>
95 +hardened-sources-2.6.22-r8.ebuild:
96 Yet another new patch, hopefully fixing the remaining issues we had w/
97 2.6.22. Candidate for stabling.
98
99 *hardened-sources-2.6.23 (13 Oct 2007)
100
101 13 Oct 2007; Christian Heim <phreak@gentoo.org>
102 +hardened-sources-2.6.23.ebuild:
103 Initial hardened-sources-2.6.23. If people still have problems w/ bug
104 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
105
106 11 Oct 2007; Christian Heim <phreak@gentoo.org>
107 hardened-sources-2.6.20-r10.ebuild:
108 Pulling in yet another new genpatches version, fixing the PWC bug for real.
109
110 04 Oct 2007; Christian Heim <phreak@gentoo.org>
111 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
112 Removing old versions.
113
114 *hardened-sources-2.6.22-r7 (01 Oct 2007)
115
116 01 Oct 2007; Christian Heim <phreak@gentoo.org>
117 +hardened-sources-2.6.22-r7.ebuild:
118 Revision bump, pulling in a newer patch. Should fix #194276.
119
120 30 Sep 2007; Christian Heim <phreak@gentoo.org>
121 hardened-sources-2.6.20-r10.ebuild:
122 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
123 Mike Doty).
124
125 *hardened-sources-2.6.22-r6 (26 Sep 2007)
126
127 26 Sep 2007; Christian Heim <phreak@gentoo.org>
128 +hardened-sources-2.6.22-r6.ebuild:
129 Revision bump, grabbing up till Linux 2.6.22.9.
130
131 24 Sep 2007; Christian Heim <phreak@gentoo.org>
132 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
133 Cleaning up further.
134
135 *hardened-sources-2.6.20-r10 (24 Sep 2007)
136
137 24 Sep 2007; Christian Heim <phreak@gentoo.org>
138 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
139 +hardened-sources-2.6.20-r10.ebuild:
140 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
141 revisions.
142
143 *hardened-sources-2.6.22-r5 (22 Sep 2007)
144
145 22 Sep 2007; Christian Heim <phreak@gentoo.org>
146 +hardened-sources-2.6.22-r5.ebuild:
147 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
148
149 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
150 Removing johnm from metadata.xml (see #186467 for reference).
151
152 *hardened-sources-2.6.22-r4 (17 Sep 2007)
153
154 17 Sep 2007; Christian Heim <phreak@gentoo.org>
155 +hardened-sources-2.6.22-r4.ebuild:
156 Revision bump, hopefully fixing all those weird PAX failures.
157
158 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
159 Updating the metadata.xml.
160
161 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
162 Removing tocharian from metadata due to his retirement (see #71718 for
163 reference).
164
165 *hardened-sources-2.6.20-r9 (30 Aug 2007)
166
167 30 Aug 2007; Christian Heim <phreak@gentoo.org>
168 +hardened-sources-2.6.20-r9.ebuild:
169 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
170
171 29 Aug 2007; Christian Heim <phreak@gentoo.org>
172 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
173 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
174 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
175 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
176 -hardened-sources-2.6.22-r2.ebuild:
177 Removing some redundant versions.
178
179 *hardened-sources-2.4.35-r1 (29 Aug 2007)
180
181 29 Aug 2007; Christian Heim <phreak@gentoo.org>
182 +hardened-sources-2.4.35-r1.ebuild:
183 Revision bump, new grsecurity patch.
184
185 *hardened-sources-2.6.20-r8 (26 Aug 2007)
186
187 26 Aug 2007; Christian Heim <phreak@gentoo.org>
188 +hardened-sources-2.6.20-r8.ebuild:
189 Revision bump for Linux 2.6.20.17.
190
191 *hardened-sources-2.6.22-r3 (22 Aug 2007)
192
193 22 Aug 2007; Christian Heim <phreak@gentoo.org>
194 +hardened-sources-2.6.22-r3.ebuild:
195 Revision bump for Linux 2.6.22.4.
196
197 16 Aug 2007; Christian Heim <phreak@gentoo.org>
198 hardened-sources-2.6.22-r2.ebuild:
199 Updated patchset, to fix the alignment against 2.6.22.3.
200
201 *hardened-sources-2.6.22-r2 (16 Aug 2007)
202
203 16 Aug 2007; Christian Heim <phreak@gentoo.org>
204 +hardened-sources-2.6.22-r2.ebuild:
205 Revision bump for Linux 2.6.22.3.
206
207 *hardened-sources-2.4.35 (16 Aug 2007)
208
209 16 Aug 2007; Christian Heim <phreak@gentoo.org>
210 +hardened-sources-2.4.35.ebuild:
211 Version bump, initial version for Linux 2.4.35.
212
213 *hardened-sources-2.6.21-r4 (16 Aug 2007)
214
215 16 Aug 2007; Christian Heim <phreak@gentoo.org>
216 +hardened-sources-2.6.21-r4.ebuild:
217 Revision bump for Linux 2.6.21.6.
218
219 *hardened-sources-2.6.20-r7 (16 Aug 2007)
220
221 16 Aug 2007; Christian Heim <phreak@gentoo.org>
222 +hardened-sources-2.6.20-r7.ebuild:
223 Revision bump for Linux 2.6.20.16.
224
225 *hardened-sources-2.6.22-r1 (13 Aug 2007)
226
227 13 Aug 2007; Christian Heim <phreak@gentoo.org>
228 +hardened-sources-2.6.22-r1.ebuild:
229 Yet another revision bump.
230
231 *hardened-sources-2.6.22 (10 Aug 2007)
232
233 10 Aug 2007; Christian Heim <phreak@gentoo.org>
234 +hardened-sources-2.6.22.ebuild:
235 Initial release for 2.6.22. If you are using hardened-sources on a desktop
236 machine (P4 or newer), be aware you might need to disable
237 CONFIG_PAX_PAGEEXEC.
238
239 04 Aug 2007; Christian Heim <phreak@gentoo.org>
240 hardened-sources-2.6.20-r6.ebuild:
241 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
242 2.6.20.15.
243
244 10 Jul 2007; Christian Heim <phreak@gentoo.org>
245 hardened-sources-2.6.20-r5.ebuild:
246 Marking hardened-sources-2.6.20-r5 stable on ppc.
247
248 10 Jul 2007; Christian Heim <phreak@gentoo.org>
249 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
250 Cleanup.
251
252 *hardened-sources-2.6.20-r6 (08 Jul 2007)
253
254 08 Jul 2007; Christian Heim <phreak@gentoo.org>
255 +hardened-sources-2.6.20-r6.ebuild:
256 Revision bump, grabbing yet another stable release.
257
258 17 Jun 2007; Christian Heim <phreak@gentoo.org>
259 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
260 -hardened-sources-2.6.21-r2.ebuild:
261 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
262 alpha stable KEYWORD by mistake.
263
264 17 Jun 2007; Christian Heim <phreak@gentoo.org>
265 hardened-sources-2.6.20-r5.ebuild:
266 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
267 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
268
269 *hardened-sources-2.6.21-r3 (12 Jun 2007)
270
271 12 Jun 2007; Christian Heim <phreak@gentoo.org>
272 +hardened-sources-2.6.21-r3.ebuild:
273 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
274 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
275 love.
276
277 *hardened-sources-2.6.20-r5 (11 Jun 2007)
278
279 11 Jun 2007; Christian Heim <phreak@gentoo.org>
280 +hardened-sources-2.6.20-r5.ebuild:
281 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
282 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
283 love.
284
285 *hardened-sources-2.4.34.5 (11 Jun 2007)
286
287 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
288 +hardened-sources-2.4.34.5.ebuild:
289 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
290
291 30 May 2007; Christian Heim <phreak@gentoo.org>
292 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
293 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
294 stale ebuild(s).
295
296 30 May 2007; Christian Heim <phreak@gentoo.org>
297 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
298 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
299 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
300 Doing some cleanups, remove stale ebuilds.
301
302 26 May 2007; Christian Heim <phreak@gentoo.org>
303 hardened-sources-2.6.21-r2.ebuild:
304 Fixing the grsecurity patch, had one '};' too much.
305
306 *hardened-sources-2.6.21-r2 (26 May 2007)
307
308 26 May 2007; Christian Heim <phreak@gentoo.org>
309 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
310 +hardened-sources-2.6.21-r2.ebuild:
311 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
312 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
313
314 *hardened-sources-2.6.20-r4 (26 May 2007)
315
316 26 May 2007; Christian Heim <phreak@gentoo.org>
317 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
318 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
319 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
320
321 15 May 2007; Christian Heim <phreak@gentoo.org>
322 hardened-sources-2.6.20-r3.ebuild:
323 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
324 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
325 grsecurity patch fail in that exact same hunk.
326
327 *hardened-sources-2.6.20-r3 (15 May 2007)
328
329 15 May 2007; Christian Heim <phreak@gentoo.org>
330 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
331 Revision bump, incorporating Linux 2.6.20.11.
332
333 *hardened-sources-2.6.21-r1 (11 May 2007)
334
335 11 May 2007; Christian Heim <phreak@gentoo.org>
336 +hardened-sources-2.6.21-r1.ebuild:
337 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
338 mentioned in #177234.
339
340 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
341 files/digest-hardened-sources-2.6.21, Manifest:
342 Fix Manifest/digest for linux-2.6.21.tar.bz2
343
344 06 May 2007; Christian Heim <phreak@gentoo.org>
345 hardened-sources-2.6.21.ebuild:
346 Bumping the hardened-patches version, needed for the fix for #177234.
347
348 *hardened-sources-2.6.21 (02 May 2007)
349
350 02 May 2007; Christian Heim <phreak@gentoo.org>
351 +hardened-sources-2.6.21.ebuild:
352 Version bump, Linux 2.6.21-hardened.
353
354 29 Apr 2007; Christian Heim <phreak@gentoo.org>
355 hardened-sources-2.6.20-r2.ebuild:
356 Adding ~ia64 on Ned's request.
357
358 29 Apr 2007; Christian Heim <phreak@gentoo.org>
359 hardened-sources-2.6.20-r2.ebuild:
360 Fixing the included grsecurity patch, wasn't alligning due to the Index:
361 header line(s).
362
363 29 Apr 2007; Christian Heim <phreak@gentoo.org>
364 hardened-sources-2.6.20-r2.ebuild:
365 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
366
367 *hardened-sources-2.6.20-r2 (10 Apr 2007)
368
369 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
370 +hardened-sources-2.6.20-r2.ebuild:
371 Version bump, on behalf of phreak
372
373 *hardened-sources-2.6.20-r1 (04 Apr 2007)
374
375 04 Apr 2007; Christian Heim <phreak@gentoo.org>
376 +hardened-sources-2.6.20-r1.ebuild:
377 Revision bump, grabbing a newer grsecurity snapshot.
378
379 *hardened-sources-2.6.20 (25 Mar 2007)
380
381 25 Mar 2007; Christian Heim <phreak@gentoo.org>
382 +hardened-sources-2.6.20.ebuild:
383 Finally a hardened-sources version for 2.6.20; many people have been waiting
384 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
385 testbox.
386
387 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
388 hardened-sources-2.6.18-r6.ebuild:
389 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
390
391 *hardened-sources-2.6.18-r6 (16 Mar 2007)
392
393 16 Mar 2007; Christian Heim <phreak@gentoo.org>
394 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
395 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
396 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
397 supposed to be.
398
399 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
400 Fixing the Manifest, the previous one was broken (as in still had the
401 deleted ebuild in it).
402
403 06 Mar 2007; Christian Heim <phreak@gentoo.org>
404 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
405 +hardened-sources-2.6.18-r5.ebuild:
406 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
407 Linux 2.6.18.8. Also cleaning up the older version.
408
409 *hardened-sources-2.6.18-r5 (06 Mar 2007)
410
411 06 Mar 2007; Christian Heim <phreak@gentoo.org>
412 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
413 +hardened-sources-2.6.18-r5.ebuild:
414 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
415 Linux 2.6.18.8. Also cleaning up the older version.
416
417 24 Feb 2007; Christian Heim <phreak@gentoo.org>
418 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
419 -hardened-sources-2.6.19-r5.ebuild:
420 Removing some of the old version, that didn't work.
421
422 *hardened-sources-2.6.19-r6 (12 Feb 2007)
423
424 12 Feb 2007; Christian Heim <phreak@gentoo.org>
425 +hardened-sources-2.6.19-r6.ebuild:
426 Revision bump, including a new grsec version fixing #166235.
427
428 *hardened-sources-2.4.34 (24 Jan 2007)
429
430 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
431 Manifest:
432 updating Manifest with checksums of new tarball and ebuild
433
434 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
435 +hardened-sources-2.4.34.ebuild:
436 I added new hardened sources 2.4 update, this is a critical path
437 security bugfix - all users of h-s are strongly advised
438 to update their existing hardened sources to this version.
439 It contains a fix for a kernel vulnerability that is pertaining
440 to the PaX changes to virtual memory management, possibly leading
441 to a local kernel exploit ... see grsecurity.net forums and homepage
442
443 23 Jan 2007; Christian Heim <phreak@gentoo.org>
444 files/digest-hardened-sources-2.6.19-r5, Manifest:
445 Fixing the patch-tarball digest.
446
447 *hardened-sources-2.6.19-r5 (23 Jan 2007)
448
449 23 Jan 2007; Christian Heim <phreak@gentoo.org>
450 +hardened-sources-2.6.19-r5.ebuild:
451 Revision bump, closing the recently discovered PaX expand_stack()
452 vulnerability.
453
454 *hardened-sources-2.6.19-r4 (14 Jan 2007)
455
456 14 Jan 2007; Christian Heim <phreak@gentoo.org>
457 +hardened-sources-2.6.19-r4.ebuild:
458 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
459 dropping the randomized PID feature.
460
461 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
462 hardened-sources-2.4.33.4.ebuild:
463 stable x86, bug #161171
464
465 *hardened-sources-2.6.19-r3 (27 Dec 2006)
466
467 27 Dec 2006; Christian Heim <phreak@gentoo.org>
468 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
469 Revision bump for bug #157186 and #158786.
470
471 *hardened-sources-2.6.18-r4 (27 Dec 2006)
472
473 27 Dec 2006; Christian Heim <phreak@gentoo.org>
474 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
475 Revision bump for bug #157186.
476
477 *hardened-sources-2.6.19-r2 (23 Dec 2006)
478
479 23 Dec 2006; Christian Heim <phreak@gentoo.org>
480 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
481 Revision bump to pull in genpatches-2.6.19-3 for #157186.
482
483 17 Dec 2006; Christian Heim <phreak@gentoo.org>
484 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
485 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
486 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
487 hardened-sources-2.6.19-r1.ebuild:
488 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
489 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
490
491 *hardened-sources-2.4.33.4 (17 Dec 2006)
492
493 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
494 +hardened-sources-2.4.33.4.ebuild:
495 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
496 and quilting
497
498 *hardened-sources-2.6.19-r1 (14 Dec 2006)
499
500 14 Dec 2006; Christian Heim <phreak@gentoo.org>
501 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
502 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
503 for reporting).
504
505 *hardened-sources-2.6.19 (13 Dec 2006)
506
507 13 Dec 2006; Christian Heim <phreak@gentoo.org>
508 +hardened-sources-2.6.19.ebuild:
509 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
510 Brad for providing that prompt update.
511
512 *hardened-sources-2.6.18-r3 (13 Dec 2006)
513
514 13 Dec 2006; Christian Heim <phreak@gentoo.org>
515 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
516 +hardened-sources-2.6.18-r3.ebuild:
517 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
518 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
519
520 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
521 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
522
523 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
524 Stable on ppc wrt bug 157356
525
526 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
527 hardened-sources-2.6.18.ebuild:
528 stable x86, bug #157356
529
530 *hardened-sources-2.6.18-r2 (06 Dec 2006)
531
532 06 Dec 2006; Christian Heim <phreak@gentoo.org>
533 +hardened-sources-2.6.18-r2.ebuild:
534 Revision bump, including 2.6.18.5 (via genpatches) and
535 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
536 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
537 redesign.
538
539 06 Dec 2006; Christian Heim <phreak@gentoo.org>
540 hardened-sources-2.6.18.ebuild:
541 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
542 of Mike Doty).
543
544 *hardened-sources-2.6.18-r1 (23 Nov 2006)
545
546 23 Nov 2006; Christian Heim <phreak@gentoo.org>
547 +hardened-sources-2.6.18-r1.ebuild:
548 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
549
550 *hardened-sources-2.6.18 (11 Nov 2006)
551
552 11 Nov 2006; Christian Heim <phreak@gentoo.org>
553 +hardened-sources-2.6.18.ebuild:
554 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
555
556 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
557 - mark amd64 stable also. bug #151877
558
559 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
560 - mark 2.6.17-r1 stable
561
562 27 Aug 2006; Christian Heim <phreak@gentoo.org>
563 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
564 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
565
566 *hardened-sources-2.6.17-r1 (26 Aug 2006)
567
568 26 Aug 2006; Christian Heim <phreak@gentoo.org>
569 +hardened-sources-2.6.17-r1.ebuild:
570 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
571 grsecurity patch.
572
573 *hardened-sources-2.6.17 (17 Aug 2006)
574
575 17 Aug 2006; Christian Heim <phreak@gentoo.org>
576 +hardened-sources-2.6.17.ebuild:
577 Bumping the hardened-sources-2.6 series to 2.6.17, using
578 genpatches-2.6.17-6.base.
579
580 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
581 - stable on x86 and amd64
582
583 *hardened-sources-2.6.16-r11 (15 Jul 2006)
584
585 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
586 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
587 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
588 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
589 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
590 crusty ebuilds
591
592 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
593 hardened-sources-2.6.16-r10.ebuild:
594 marking stable on x86 and amd64
595
596 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
597 - 2.4.32-r6 stable on x86. RSBAC state unknown
598
599 *hardened-sources-2.4.32-r7 (10 Jul 2006)
600
601 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
602 +hardened-sources-2.4.32-r7.ebuild:
603 Bump PaX for RSBAC to test-17
604
605 *hardened-sources-2.6.16-r9 (03 Jul 2006)
606
607 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
608 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
609 hardened-sources-2.6.16 bump to latest -base.
610
611 *hardened-sources-2.4.32-r6 (30 Jun 2006)
612
613 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
614 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
615 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
616 sysctl controlable resource logging
617
618 *hardened-sources-2.6.16-r7 (05 Jun 2006)
619
620 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
621 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
622 push new 2.6.16 release in preparation for stable
623
624 22 May 2006; <solar@gentoo.org> :
625 - redigest bug 134002
626
627 *hardened-sources-2.4.32-r5 (16 May 2006)
628
629 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
630 +hardened-sources-2.4.32-r5.ebuild:
631 Fixes rsbac common patching (new patch in new -r5 patchset)
632
633 *hardened-sources-2.4.32-r4 (13 May 2006)
634
635 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
636 +hardened-sources-2.4.32-r4.ebuild:
637 - security bumps
638
639 *hardened-sources-2.6.16-r6 (03 May 2006)
640
641 03 May 2006; John Mylchreest <johnm@gentoo.org>
642 +hardened-sources-2.6.16-r6.ebuild:
643 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
644
645 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
646 hardened-sources-2.6.14-r8.ebuild:
647 fix x86_64 build problem, this will delay the digest issue again for a short
648 while but it will sort itself out
649
650 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
651 hardened-sources-2.6.14-r8.ebuild:
652 bump hardened patchset
653
654 27 Apr 2006; Alec Warner <antarus@gentoo.org>
655 files/digest-hardened-sources-2.4.32-r2,
656 files/digest-hardened-sources-2.4.32-r3,
657 files/digest-hardened-sources-2.6.14-r8, Manifest:
658 Fixing duff SHA256 digests: Bug # 131293
659
660 *hardened-sources-2.6.16-r5 (27 Apr 2006)
661
662 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
663 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
664 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
665 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
666 cleanup of old uneccessary sources
667
668 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
669 fix digest
670
671 *hardened-sources-2.6.14-r8 (20 Apr 2006)
672
673 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
674 +hardened-sources-2.6.14-r8.ebuild:
675 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
676
677 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
678 Turning on gpg-signing again, and recomitting
679
680 *hardened-sources-2.6.16-r4 (20 Apr 2006)
681
682 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
683 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
684 +hardened-sources-2.6.16-r4.ebuild:
685 Fix numerous security vulns
686
687 *hardened-sources-2.4.32-r3 (16 Apr 2006)
688
689 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
690 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
691 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
692 - security bump for bug #112791. Removed old ebuilds
693
694 *hardened-sources-2.6.16-r3 (15 Apr 2006)
695
696 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
697 +hardened-sources-2.6.16-r3.ebuild:
698 Removing silly localversion which I missed
699
700 *hardened-sources-2.6.14-r7 (14 Apr 2006)
701
702 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
703 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
704 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
705
706 *hardened-sources-2.6.16-r2 (13 Apr 2006)
707
708 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
709 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
710 +hardened-sources-2.6.16-r2.ebuild:
711 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
712 labels, dropping USERGROUP define fixes, since these were merged mainstream.
713
714 *hardened-sources-2.6.16-r1 (11 Apr 2006)
715
716 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
717 +hardened-sources-2.6.16-r1.ebuild:
718 Bumping to include ppc build fix and 2.6.16.3
719
720 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
721 hardened-sources-2.6.14-r6.ebuild:
722 Stable on x86; bug #127718
723
724 *hardened-sources-2.6.16 (31 Mar 2006)
725
726 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
727 +hardened-sources-2.6.16.ebuild:
728 Bumping to new version of grsec, and kernel base. New squashfs. Based on
729 2.6.16.1
730
731 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
732 hardened-sources-2.6.14-r6.ebuild:
733 Stable on amd64, bug 127718.
734
735 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
736 Stable on ppc. Bug #127718
737
738 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
739 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
740 -hardened-sources-2.6.14-r4.ebuild:
741 Cleanup.
742
743 *hardened-sources-2.6.14-r6 (15 Mar 2006)
744
745 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
746 +hardened-sources-2.6.14-r6.ebuild:
747 Fixes grsec policy recreation bug and adds a
748 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
749
750 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
751 - stable on x86
752
753 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
754 hardened-sources-2.6.14-r5.ebuild:
755 Stable on ppc.
756
757 *hardened-sources-2.6.14-r5 (01 Feb 2006)
758
759 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
760 +hardened-sources-2.6.14-r5.ebuild:
761 fixing every known exploit
762
763 *hardened-sources-2.4.32-r2 (26 Jan 2006)
764
765 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
766 +hardened-sources-2.4.32-r2.ebuild:
767 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
768
769 *hardened-sources-2.6.14-r4 (12 Jan 2006)
770
771 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
772 - version bump for new genpatches which fix up a few sec holes
773
774 *hardened-sources-2.4.32-r1 (05 Jan 2006)
775
776 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
777 - revision bump to add misc vital linux kernel security patches.
778
779 *hardened-sources-2.6.14-r3 (30 Dec 2005)
780
781 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
782 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
783 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
784
785 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
786 hardened-sources-2.6.14-r2.ebuild:
787 making x86 & amd64 stable following testing.
788
789 *hardened-sources-2.6.14-r2 (27 Dec 2005)
790
791 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
792 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
793 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
794 network hooks.
795
796 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
797 hardened-sources-2.6.14-r1.ebuild:
798 bumping to stable early for sec fix on x86 & amd64
799
800 *hardened-sources-2.6.14-r1 (05 Dec 2005)
801
802 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
803 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
804 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
805
806 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
807 - stable on x86 security bug #114227 CAN-2005-3257
808
809 *hardened-sources-2.4.32 (19 Nov 2005)
810
811 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
812 +hardened-sources-2.4.32.ebuild:
813 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
814 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
815 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
816 rsbac >> /etc/portage/package.use)
817
818 *hardened-sources-2.6.14 (14 Nov 2005)
819
820 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
821 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
822 Bumping 2.6 series to 2.6.14.2
823
824 *hardened-sources-2.6.13-r2 (20 Oct 2005)
825
826 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
827 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
828 +hardened-sources-2.6.13-r2.ebuild:
829 Fixes minor build error in ppc.
830
831 *hardened-sources-2.6.13-r1 (17 Oct 2005)
832
833 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
834 +hardened-sources-2.6.13-r1.ebuild:
835 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
836 2.6.13.4, fixes some major amd64 stability problems.
837
838 *hardened-sources-2.6.13 (16 Sep 2005)
839
840 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
841 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
842 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
843 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
844 users should test this thoroughly.
845
846 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
847 - stable on x86
848
849 *hardened-sources-2.6.11-r15 (27 Jun 2005)
850
851 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
852 +hardened-sources-2.6.11-r15.ebuild:
853 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
854 grsec redefining curr_ip struct.
855
856 *hardened-sources-2.4.31 (20 Jun 2005)
857
858 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
859 initial import of 2.4.31 tree
860
861 *hardened-sources-2.6.11-r14 (14 Jun 2005)
862
863 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
864 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
865 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
866 naming scheme to abide by genpatches
867
868 *hardened-sources-2.6.11-r13 (18 May 2005)
869
870 18 May 2005; John Mylchreest <johnm@gentoo.org>
871 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
872 Managed to mangle the Makefile patch from grsec, to miss out the grsec
873 target. sorry about that. Fixes bug #93022
874
875 *hardened-sources-2.6.11-r12 (17 May 2005)
876
877 17 May 2005; John Mylchreest <johnm@gentoo.org>
878 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
879 +hardened-sources-2.6.11-r12.ebuild:
880 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
881 merges in genpatches-base
882
883 *hardened-sources-2.6.11-r12 (17 May 2005)
884
885 17 May 2005; John Mylchreest <johnm@gentoo.org>
886 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
887 +hardened-sources-2.6.11-r12.ebuild:
888 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
889 merges in genpatches-base
890
891 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
892 -files/2.4.27-cmdline-race.patch,
893 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
894 -files/2.4.28-grsec-binfmt_a.out.patch,
895 -files/2.4.28-grsec-cmdline-race.patch,
896 -files/2.4.28-selinux-binfmt_a.out.patch,
897 -files/2.4.28-selinux-cmdline-race.patch,
898 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
899 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
900 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
901 cleanup..
902
903 *hardened-sources-2.4.30-r1 (21 Apr 2005)
904
905 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
906 - disable aout by default
907
908 *hardened-sources-2.4.30 (18 Apr 2005)
909
910 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
911 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
912 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
913 use
914
915 *hardened-sources-2.4.29 (30 Mar 2005)
916
917 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
918 +hardened-sources-2.4.29.ebuild:
919 New hardened-patches-2.4-29.0 patchball.
920 Removed SELinux support, upgraded GRSecurity to 2.1.4.
921
922 *hardened-sources-2.4.28-r5 (06 Mar 2005)
923
924 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
925 +hardened-sources-2.4.28-r5.ebuild:
926 Added a fix for a PaX vulnerability.
927
928 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
929 hardened-sources-2.4.28-r4.ebuild:
930 Stable on x86
931
932 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
933 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
934 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
935 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
936 - fixed/added RDEPEND= in all kernel-2 ebuilds
937
938 *hardened-sources-2.4.28-r4 (21 Jan 2005)
939
940 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
941 +hardened-sources-2.4.28-r4.ebuild:
942 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
943 backport of neighbour hash updates.
944
945 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
946 hardened-sources-2.4.28-r3.ebuild:
947 Stable on x86
948
949 *hardened-sources-2.6.10-r3 (20 Jan 2005)
950
951 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
952 +hardened-sources-2.6.10-r3.ebuild:
953 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
954 in 2005.0
955
956 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
957 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
958 hardened-sources-2.4.28-r2.ebuild:
959 Mark stable on x86
960
961 *hardened-sources-2.4.28-r3 (17 Jan 2005)
962
963 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
964 +hardened-sources-2.4.28-r3.ebuild:
965 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
966
967 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
968 hardened-sources-2.4.28.ebuild:
969 Mark stable on x86.
970
971 *hardened-sources-2.4.28-r2 (13 Jan 2005)
972
973 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
974 +hardened-sources-2.4.28-r2.ebuild:
975 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
976 Mazinger for grsecurity patches as well.
977
978 *hardened-sources-2.4.28-r1 (23 Dec 2004)
979
980 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
981 Security bump. Thank tocharian for rolling a new patchset...
982
983 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
984 +files/2.4.28-grsec-cmdline-race.patch,
985 +files/2.4.28-selinux-binfmt_a.out.patch,
986 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
987 - Round up remaining security patches that appear to be missing in 2.4.28. -
988 PaX standalone updated to current. hgpv=28.1
989
990 *hardened-sources-2.4.28 (28 Nov 2004)
991
992 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
993 security bump. Thank tocharian for rolling a new patchset
994
995 *hardened-sources-2.4.27-r3 (08 Sep 2004)
996
997 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
998 +hardened-sources-2.4.27-r3.ebuild:
999 Applies the new 2.4-27.2 patchball which updates
1000 GRSecurity to the 2.0.1 version.
1001
1002 *hardened-sources-2.4.27-r2 (31 Aug 2004)
1003
1004 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1005 +hardened-sources-2.4.27-r2.ebuild:
1006 Version bump.
1007 This version uses the new 2.4-27.1 patchball which updates
1008 both the SELinux PaX hooks patch and the SELinux headers.
1009
1010 *hardened-sources-2.4.27-r1 (09 Aug 2004)
1011
1012 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1013 +hardened-sources-2.4.27-r1.ebuild,
1014 -hardened-sources-2.4.27.ebuild,
1015 +files/2.4.27-cmdline-race.patch:
1016 Version bump, fix for cmdline race. See bug #59905.
1017
1018 *hardened-sources-2.4.26-r6 (09 Aug 2004)
1019
1020 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1021 +hardened-sources-2.4.26-r6.ebuild,
1022 -hardened-sources-2.4.26-r5.ebuild,
1023 -hardened-sources-2.4.26-r4.ebuild,
1024 +files/2.4.26-cmdline-race.patch:
1025 Version bump, fix for cmdline race. See bug #59905.
1026
1027 *hardened-sources-2.4.27 (08 Aug 2004)
1028
1029 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1030 +hardened-sources-2.4.27.ebuild,
1031 +files/2.4.27-CAN-2004-0394.patch:
1032 Ported the patchball to the 2.4.27 kernel version.
1033
1034 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1035
1036 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1037 +hardened-sources-2.4.26-r5.ebuild:
1038 Updated to use the new hardened-patches-2.4-26.1 patchball.
1039 It adds the following features:
1040 - Squashfs
1041 - Ebtables
1042 - Netdev random (core+drivers)
1043 - Watchdog Timer (WDT) fix.
1044
1045 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1046
1047 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1048 +hardened-sources-2.4.26-r4.ebuild,
1049 +files/2.4.26-CAN-2004-0415.patch,
1050 -hardened-sources-2.4.26-3:
1051 Version bump, fix for CAN 0415, see bug #59378.
1052
1053 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1054
1055 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1056 +hardened-sources-2.4.26-r3.ebuild,
1057 +files/2.4.26-CAN-2004-0497.patch,
1058 -hardened-sources-2.4.26-r2.ebuild:
1059 Version bump, fixed CAN 0497, see bug #56171.
1060
1061 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1062
1063 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1064 +hardened-sources-2.4.26-r2.ebuild,
1065 +files/2.4.26-CAN-2004-0495.patch,
1066 +files/2.4.26-CAN-2004-0535.patch,
1067 -hardened-sources-2.4.26-r1.ebuild:
1068 Fixes for both CAN 0495 and 0535, see bug #54976
1069
1070 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1071 hardened-sources-2.4.26-r1.ebuild:
1072 QA - fix use invocation
1073
1074 *hardened-sources-2.4.26-r1 (22 June 2004)
1075
1076 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1077 +hardened-sources-2.4.26-r1.ebuild,
1078 +files/2.4.26-CAN-2004-0394.patch,
1079 +files/2.4.26-signal-race.patch,
1080 -hardened-sources-2.4.26.ebuild,
1081 -hardened-sources-2.4.24-r3.ebuild:
1082 Version bump for the CAN-2004-0394 issue and bug #53804
1083 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1084
1085
1086 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1087 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1088 Masked hardened-sources-2.4.26.ebuild broken for ppc
1089
1090 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1091 hardened-sources-2.4.24-r3.ebuild:
1092 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1093
1094 *hardened-sources-2.4.26 (29 May 2004)
1095
1096 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1097 +hardened-sources-2.4.26.ebuild:
1098 Updated hardened-sources for the 2.4.26 kernel
1099 Removed broken components, updated almost everything.
1100
1101 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1102
1103 17 Apr 2004; <plasmaroo@gentoo.org>
1104 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1105 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1106 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1107 +hardened-sources-2.4.24-r3.ebuild:
1108 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1109 vulnerabilities. Old revisions removed.
1110
1111 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1112
1113 15 Apr 2004; <plasmaroo@gentoo.org>
1114 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1115 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1116 Version bump for the CAN-2004-0109 issue; bug #47881.
1117
1118 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1119 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1120 Add eutils to inherit.
1121
1122 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1123
1124 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1125 files/hardened-sources-2.4.24.munmap.patch:
1126 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1127
1128 *hardened-sources-2.4.24 (06 Feb 2004)
1129
1130 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1131 hardened-sources-2.4.24.ebuild:
1132 Version bump, updated most of the components.
1133 This release includes the following:
1134
1135 - Hardened security
1136 - Netfilter patch-o-matic 20031219
1137 - FreeSWAN 2.04 & x509 1.4.8
1138 - EVMS 2.2.2
1139 - XFS 1.3.1
1140 - cryptoloop jari
1141 - grsecurity 2.0-rc4
1142 - SELinux
1143 - PaX 200402060000
1144 - PaX Obscurity 200308302223
1145 - Others...
1146
1147 Neither -ck nor systrace are included anymore.
1148
1149 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1150
1151 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1152 hardened-sources-2.4.22-r2.ebuild:
1153 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1154
1155 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1156
1157 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1158 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1159
1160 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1161 hardened-sources-2.4.22-r1.ebuild:
1162 Version bump for the 'do_brk' vulnerability.
1163
1164 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1165 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1166 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1167 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1168 Fix the 'do_brk' vulnerability.
1169
1170 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1171 hardened-sources-2.4.22.ebuild:
1172 - Removed the src_install() portion for SELinux flask
1173 components. These are no longer handled in the kernel
1174 so this code was not necessary.
1175
1176 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1177 New 2.4.22 based hardened-sources thanks to
1178 Phil West <p.west@computer.org>.
1179
1180 These sources include:
1181 - New SELinux API
1182 - Updated CK-base
1183 - Updated GRSec
1184 - Systrace
1185 - SuperFreeS/WAN 1.99.8
1186 - Propolice kernel build support
1187 - EVMS
1188 - Other various security related patches
1189
1190 *hardened-sources-2.4.21 (14 Sep 2003)
1191
1192 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1193 Updated hardened-sources based on the 2.4.21 Linux kernel.
1194 This includes updates to most major components such as:
1195 - ck-base-0306300059
1196 - selinux-2.4-2003071106
1197 - grsecurity-2.0-rc1
1198 - Updated IPTables patch-o-matic
1199 - Updated SuperFreeS/WAN
1200
1201 Thanks to Phil West <pwest@computer.org> for his work in getting this
1202 updated patch set ready for the 2.4.21 based kernel.
1203
1204 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1205 Initial import of hardened-sources-2.4.20-r4. This revision
1206 includes only a few changes, but one of these is an important
1207 security fix. It is recommended all users of hardened-sources
1208 upgrade to this release.
1209
1210 - ioperm bug fix
1211 - fixed compilation failure when building without GRSec
1212
1213 SAL (Secure Auditing for Linux) is NOT included in this revision
1214 due to time constraints, but is planned for inclusion in the near
1215 future.
1216
1217 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1218
1219 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1220 hardened-sources-2.4.20-r3.ebuild:
1221 Add Header...
1222
1223 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1224 hardened-sources-2.4.20-r3.ebuild:
1225 Removed warnings from ebuild. This kernel should be safe to
1226 use at this point.
1227
1228 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1229
1230 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1231 hardened-sources-2.4.20-r3.ebuild:
1232 New revision. Includes the following changes over -r2:
1233
1234 - ck7-base (O(1), preempt, low latency)
1235 - Super FreeS/WAN 1.99.7rc2
1236 - PaX for the LSM/SELinux branch
1237 - GRSecurity 2.0-pre4 (role based access control)
1238 - Systrace 1.3
1239 - EXT3 fixes
1240 - EVMS 2.0.1
1241 - GCC 3.1+ compile optimizations
1242 - ProPolice kernel build support
1243 - Hashing table security fixes
1244
1245 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1246
1247 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1248 Initial import of hardened-sources-r2. This new
1249 ebuild includes many new performance and security
1250 related patches. As in -r1, it will patch in
1251 LSM/SELinux if "selinux" is in USE, otherwise it
1252 will patch in GRSecurity. The following patches
1253 are included in this revision:
1254
1255 - O(1) Scheduler, Low Latency, and Preempt
1256 (pulled from the base CK patch)
1257 - ptrace exploit patch for the LSM kernel
1258 (the GRSec patch already fixes this)
1259 - LSM 2.4-2003040709
1260 - SELinux 2.4-2003040709
1261 - Systrace v1.2
1262 - IPTables patch-o-matic base patches - 20030107
1263 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1264 - Super FreeS/WAN 1.99.6.1
1265 - GRSecurity 1.9.9g
1266 - MPPE
1267 - EXT3 data journal fix
1268 - CIPE 1.5.4
1269
1270 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1271 hardened-sources-2.4.20-r1.ebuild, manifest:
1272 Updated to install flask components correctly for selinux.
1273
1274 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1275 hardened-sources-2.4.20-r1.ebuild:
1276 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1277 is patched in instead. Ptrace patches for selinux have also been added. In
1278 either case, systrace support will be patched in as well.
1279
1280 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1281 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1282 Revision bump for new sources.
1283
1284 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1285 hardened-sources-2.4.20-r1.ebuild:
1286 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1287
1288 *hardened-sources-2.4.20 (30 Mar 2003)
1289
1290 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1291 hardened-sources-2.4.20.ebuild:
1292 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20