/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.236 - (show annotations) (download)
Sun Sep 7 23:35:42 2008 UTC (5 years, 10 months ago) by gengor
Branch: MAIN
Changes since 1.235: +4 -1 lines
Update my email address in metadata.xml
(Portage version: 2.1.4.4)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2008 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.235 2008/08/31 19:06:09 nixnut Exp $
4
5 07 Sep 2008; Gordon Malm <gengor@gentoo.org> metadata.xml:
6 Update my email address.
7
8 31 Aug 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r4.ebuild:
9 stable on ppc
10
11 *hardened-sources-2.6.26-r1 (23 Aug 2008)
12 *hardened-sources-2.6.25-r5 (23 Aug 2008)
13
14 23 Aug 2008; Bryan D. Stine <battousai@gentoo.org>
15 -hardened-sources-2.6.23-r13.ebuild, -hardened-sources-2.6.25-r3.ebuild,
16 hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.25-r5.ebuild,
17 +hardened-sources-2.6.26-r1.ebuild:
18 Bump to 2.6.25-r5 for updated patches and upstream .10 kernel, fixing
19 security bug #235221. Bump to 2.6.26-r1 for upstream .3 kernel, also
20 fixing security bug #235221. Marked 2.6.25-r4 stable on amd64 and x86.
21 Removed 2.6.23-r13 and 2.6.25-r3. Commit on behalf of Gordon Malm
22 (gengor).
23
24 *hardened-sources-2.6.26 (18 Aug 2008)
25 *hardened-sources-2.6.25-r4 (18 Aug 2008)
26
27 18 Aug 2008; <solar@gentoo.org> -hardened-sources-2.6.25-r2.ebuild,
28 +hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.26.ebuild:
29 - proxy commit for gengor 2.6.26: Initial 2.6.26 release. 2.6.25-r4: Update
30 to Linux 2.6.25.15. Fixes security bugs #234799, #234803 and #234812.
31 2.6.25-r2: Removed.
32
33 16 Aug 2008; Torsten Veller <tove@gentoo.org> metadata.xml:
34 Remove phreak from metadata.xml (#96398)
35
36 *hardened-sources-2.6.25-r3 (31 Jul 2008)
37
38 31 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.24-r2.ebuild,
39 -hardened-sources-2.6.25.ebuild, -hardened-sources-2.6.25-r1.ebuild,
40 +hardened-sources-2.6.25-r3.ebuild:
41 - 2.6.25-r3: Update to Linux 2.6.25.13 and new grsecurity patch. Multiple
42 fixes, including security bug #231750.
43
44 28 Jul 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.24-r3.ebuild:
45 Stable on ppc
46
47 *hardened-sources-2.6.25-r2 (05 Jul 2008)
48
49 05 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r11.ebuild,
50 -hardened-sources-2.6.23-r12.ebuild, hardened-sources-2.6.24-r3.ebuild,
51 +hardened-sources-2.6.25-r2.ebuild:
52 2.6.23-r4: Stable x86/amd64
53 2.6.25-r2: Update to Linux 2.6.25.10 and latest grsecurity release.
54 2.6.23-r{11,12}: Removed due to multiple vulns.
55 (gengor & kerframil)
56
57 04 Jul 2008; nixnut <nixnut@gentoo.org>
58 hardened-sources-2.6.23-r13.ebuild:
59 Stable on ppc
60
61 *hardened-sources-2.6.25-r1 (30 Jun 2008)
62
63 30 Jun 2008; <solar@gentoo.org> hardened-sources-2.6.23-r13.ebuild,
64 +hardened-sources-2.6.25-r1.ebuild:
65 2.6.25-r1: Brings in Linux -stable tree patches 2.6.25.{7,8,9} and newer
66 grsecurity release. 2.6.23-r13: x86/amd64 stable
67
68 *hardened-sources-2.6.25 (17 Jun 2008)
69 *hardened-sources-2.6.24-r3 (17 Jun 2008)
70 *hardened-sources-2.6.23-r13 (17 Jun 2008)
71
72 17 Jun 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r13.ebuild,
73 +hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25.ebuild:
74 * 2.6.23-r13: Fixes security bugs #198997, #212136, #222331, #222635,
75 #224647, #225461, other fixes. * 2.6.24-r3: Fixes security bugs #212136,
76 #222331, #222635, #224647, #225461, grsec/PaX updates/fixes, other fixes. *
77 2.6.25: Initial 2.6.25 release.
78
79 15 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r12.ebuild:
80 - fasttrack to stable x86/amd64
81
82 11 May 2008; Sven Wegener <swegener@gentoo.org> Manifest:
83 Fix broken digest for linux-2.6.24.tar.bz2.
84
85 *hardened-sources-2.6.24-r2 (11 May 2008)
86 *hardened-sources-2.6.23-r12 (11 May 2008)
87
88 11 May 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r7.ebuild,
89 -hardened-sources-2.6.23-r9.ebuild, -hardened-sources-2.6.23-r10.ebuild,
90 +hardened-sources-2.6.23-r12.ebuild, -hardened-sources-2.6.24.ebuild,
91 -hardened-sources-2.6.24-r1.ebuild, +hardened-sources-2.6.24-r2.ebuild:
92 proxy commit for gengor. 2.6.23-r11 shortlog: Fixes security bugs 220691,
93 220975, 220979, 221123. 2.6.24-r2 not-so-shortlog: Fixes bug 215442,
94 security bugs 219901, 220691, 220975, 220979, 221123. New
95 genpatches/grsecurity with numerous updates & fixes. 2.6.23-r7->2.6.23-r10
96 should be removed as far as I'm concerned, everything else remove due to
97 vulnerable to numerous security bugs or brokeness.
98
99 10 May 2008; nixnut <nixnut@gentoo.org>
100 hardened-sources-2.6.23-r11.ebuild:
101 Stable on ppc
102
103 05 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r11.ebuild:
104 - -r11 stable on x86/amd64
105
106 *hardened-sources-2.6.23-r11 (01 May 2008)
107
108 01 May 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r11.ebuild:
109 - version bump to fix ulgy linux bugs
110
111 *hardened-sources-2.6.24-r1 (30 Apr 2008)
112
113 30 Apr 2008; Christian Heim <phreak@gentoo.org>
114 +hardened-sources-2.6.24-r1.ebuild:
115 Revision bump (thanks to Kerin and Gordon, again), pulling
116 genpatches-2.6.24-7, solving #219089. Additionally contains further security
117 fixes plus some minor updates.
118
119 *hardened-sources-2.6.23-r10 (30 Apr 2008)
120
121 30 Apr 2008; Christian Heim <phreak@gentoo.org>
122 +hardened-sources-2.6.23-r10.ebuild:
123 Revision bump (thanks to Kerin and Gordon, again), solving #213811, #219089.
124 Additional contains "various other fixes".
125
126 09 Apr 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
127 Update the longdescription in metadata, thanks to Gordon Malm.
128
129 08 Apr 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.23-r9.ebuild:
130 Stable on ppc wrt bug #213255
131
132 07 Apr 2008; <solar@gentoo.org> -hardened-sources-2.4.35-r2.ebuild,
133 -hardened-sources-2.6.23-r8.ebuild, hardened-sources-2.6.23-r9.ebuild:
134 - stable on x86/amd64 per request. Removed obsolete ebuilds
135
136 *hardened-sources-2.6.24 (07 Apr 2008)
137
138 07 Apr 2008; Christian Heim <phreak@gentoo.org>
139 +hardened-sources-2.6.24.ebuild:
140 Adding ebuild for hardened-sources-2.6.24 (many thanks to Kerin Millar
141 <kerframil at gmail.com> and Gordon Malm <bugs-gentoo-org-02 at bumpin.org>
142 for the many contributions and their continued effort in #216612) based on
143 2.6.24 and genpatches-2.6.24-5.
144
145 The current ebuild/patchset contains these things:
146 * Incoporates unmodified grsec-2.1.11-2.6.24.4-200803262003 patch
147 * Introduces bespoke server and workstation oriented security levels
148 * VDSO_COMPAT cannot be enabled during runtime if PaX is enabled
149
150 30 Mar 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
151 Fix the metadata.xml (Kerin isn't a dev, though he and Gordon are
152 maintaining it).
153
154 24 Mar 2008; Christian Heim <phreak@gentoo.org>
155 hardened-sources-2.4.35-r2.ebuild:
156 Fixing SRC_URI for 2.4.35-r2.
157
158 *hardened-sources-2.6.23-r9 (22 Mar 2008)
159
160 22 Mar 2008; Christian Heim <phreak@gentoo.org>
161 +hardened-sources-2.6.23-r9.ebuild:
162 * Revision bump, rebasing the patchset against genpatches-2.6.23-10.
163 * Change the default GIDs for some grsecurity options
164 * Revamp the Hardened [Gentoo] security level and make it the default level
165 * Fixing compilation on ia64 with CONFIG_MODULES=y (loadable module support)
166 * Fix a recursive lock -- call to capable() within ptrace_attach()
167 * Fix bug that allows audit and iscsi operations to be controlled via netlink
168
169 *hardened-sources-2.6.23-r8 (27 Feb 2008)
170
171 27 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r8.ebuild:
172 - version bump from Kerin Millar bug 210026
173
174 17 Feb 2008; <solar@gentoo.org> metadata.xml,
175 -hardened-sources-2.4.33.4.ebuild, -hardened-sources-2.6.20-r6.ebuild,
176 -hardened-sources-2.6.20-r10.ebuild, -hardened-sources-2.6.23-r4.ebuild,
177 -hardened-sources-2.6.23-r6.ebuild, hardened-sources-2.6.23-r7.ebuild:
178 - stable on x86 and remove old ebuilds
179
180 15 Feb 2008; <solar@gentoo.org> hardened-sources-2.6.23-r7.ebuild:
181 - stable on amd64 per request of amd64 lead
182
183 *hardened-sources-2.6.23-r7 (11 Feb 2008)
184
185 11 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r7.ebuild:
186 - version bump from kerin.millar
187 Changes:
188
189 * Bump to genpatches-base-2.6.23-9
190 * Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
191 * Disables COMPAT_VDSO in x86/defconfig
192 * Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig
193
194 25 Jan 2008; Christian Heim <phreak@gentoo.org>
195 -hardened-sources-2.6.22-r8.ebuild:
196 Cleaning up old versions.
197
198 *hardened-sources-2.6.23-r6 (25 Jan 2008)
199
200 25 Jan 2008; Christian Heim <phreak@gentoo.org>
201 -hardened-sources-2.6.23-r5.ebuild, +hardened-sources-2.6.23-r6.ebuild:
202 Revision bump, pulling in the latest genpatches.
203
204 *hardened-sources-2.6.23-r5 (24 Dec 2007)
205
206 24 Dec 2007; Christian Heim <phreak@gentoo.org>
207 hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
208 hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
209 hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
210 Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
211
212 24 Dec 2007; Christian Heim <phreak@gentoo.org>
213 -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
214 -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
215 -hardened-sources-2.6.23-r3.ebuild:
216 Cleaning out some unused, old versions.
217
218 24 Dec 2007; Christian Heim <phreak@gentoo.org>
219 hardened-sources-2.6.23-r4.ebuild:
220 Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
221 in the tree for long, but there isn't much of a difference between this and
222 -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
223
224 *hardened-sources-2.6.23-r4 (23 Dec 2007)
225
226 23 Dec 2007; Christian Heim <phreak@gentoo.org>
227 +hardened-sources-2.6.23-r4.ebuild:
228 Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
229
230 *hardened-sources-2.6.23-r3 (04 Dec 2007)
231
232 04 Dec 2007; Christian Heim <phreak@gentoo.org>
233 +hardened-sources-2.6.23-r3.ebuild:
234 Revision bump, pulling in 2.6.23.9.
235
236 *hardened-sources-2.6.23-r2 (25 Nov 2007)
237
238 25 Nov 2007; Christian Heim <phreak@gentoo.org>
239 +hardened-sources-2.6.23-r2.ebuild:
240 Updated patchset, thanks to solar.
241
242 *hardened-sources-2.6.23-r1 (31 Oct 2007)
243
244 31 Oct 2007; Christian Heim <phreak@gentoo.org>
245 +hardened-sources-2.6.23-r1.ebuild:
246 Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
247
248 29 Oct 2007; <solar@gentoo.org> metadata.xml:
249 - update metadata.xml
250
251 25 Oct 2007; Christian Heim <phreak@gentoo.org>
252 hardened-sources-2.6.22-r8.ebuild:
253 Marking 2.6.22-r8 stable on amd64 and x86.
254
255 21 Oct 2007; Christian Heim <phreak@gentoo.org>
256 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
257 -hardened-sources-2.6.21-r4.ebuild:
258 Removing old ebuilds.
259
260 *hardened-sources-2.4.35-r2 (21 Oct 2007)
261
262 21 Oct 2007; Christian Heim <phreak@gentoo.org>
263 +hardened-sources-2.4.35-r2.ebuild:
264 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
265 patches.
266
267 *hardened-sources-2.6.22-r8 (21 Oct 2007)
268
269 21 Oct 2007; Christian Heim <phreak@gentoo.org>
270 +hardened-sources-2.6.22-r8.ebuild:
271 Yet another new patch, hopefully fixing the remaining issues we had w/
272 2.6.22. Candidate for stabling.
273
274 *hardened-sources-2.6.23 (13 Oct 2007)
275
276 13 Oct 2007; Christian Heim <phreak@gentoo.org>
277 +hardened-sources-2.6.23.ebuild:
278 Initial hardened-sources-2.6.23. If people still have problems w/ bug
279 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
280
281 11 Oct 2007; Christian Heim <phreak@gentoo.org>
282 hardened-sources-2.6.20-r10.ebuild:
283 Pulling in yet another new genpatches version, fixing the PWC bug for real.
284
285 04 Oct 2007; Christian Heim <phreak@gentoo.org>
286 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
287 Removing old versions.
288
289 *hardened-sources-2.6.22-r7 (01 Oct 2007)
290
291 01 Oct 2007; Christian Heim <phreak@gentoo.org>
292 +hardened-sources-2.6.22-r7.ebuild:
293 Revision bump, pulling in a newer patch. Should fix #194276.
294
295 30 Sep 2007; Christian Heim <phreak@gentoo.org>
296 hardened-sources-2.6.20-r10.ebuild:
297 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
298 Mike Doty).
299
300 *hardened-sources-2.6.22-r6 (26 Sep 2007)
301
302 26 Sep 2007; Christian Heim <phreak@gentoo.org>
303 +hardened-sources-2.6.22-r6.ebuild:
304 Revision bump, grabbing up till Linux 2.6.22.9.
305
306 24 Sep 2007; Christian Heim <phreak@gentoo.org>
307 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
308 Cleaning up further.
309
310 *hardened-sources-2.6.20-r10 (24 Sep 2007)
311
312 24 Sep 2007; Christian Heim <phreak@gentoo.org>
313 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
314 +hardened-sources-2.6.20-r10.ebuild:
315 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
316 revisions.
317
318 *hardened-sources-2.6.22-r5 (22 Sep 2007)
319
320 22 Sep 2007; Christian Heim <phreak@gentoo.org>
321 +hardened-sources-2.6.22-r5.ebuild:
322 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
323
324 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
325 Removing johnm from metadata.xml (see #186467 for reference).
326
327 *hardened-sources-2.6.22-r4 (17 Sep 2007)
328
329 17 Sep 2007; Christian Heim <phreak@gentoo.org>
330 +hardened-sources-2.6.22-r4.ebuild:
331 Revision bump, hopefully fixing all those weird PAX failures.
332
333 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
334 Updating the metadata.xml.
335
336 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
337 Removing tocharian from metadata due to his retirement (see #71718 for
338 reference).
339
340 *hardened-sources-2.6.20-r9 (30 Aug 2007)
341
342 30 Aug 2007; Christian Heim <phreak@gentoo.org>
343 +hardened-sources-2.6.20-r9.ebuild:
344 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
345
346 29 Aug 2007; Christian Heim <phreak@gentoo.org>
347 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
348 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
349 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
350 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
351 -hardened-sources-2.6.22-r2.ebuild:
352 Removing some redundant versions.
353
354 *hardened-sources-2.4.35-r1 (29 Aug 2007)
355
356 29 Aug 2007; Christian Heim <phreak@gentoo.org>
357 +hardened-sources-2.4.35-r1.ebuild:
358 Revision bump, new grsecurity patch.
359
360 *hardened-sources-2.6.20-r8 (26 Aug 2007)
361
362 26 Aug 2007; Christian Heim <phreak@gentoo.org>
363 +hardened-sources-2.6.20-r8.ebuild:
364 Revision bump for Linux 2.6.20.17.
365
366 *hardened-sources-2.6.22-r3 (22 Aug 2007)
367
368 22 Aug 2007; Christian Heim <phreak@gentoo.org>
369 +hardened-sources-2.6.22-r3.ebuild:
370 Revision bump for Linux 2.6.22.4.
371
372 16 Aug 2007; Christian Heim <phreak@gentoo.org>
373 hardened-sources-2.6.22-r2.ebuild:
374 Updated patchset, to fix the alignment against 2.6.22.3.
375
376 *hardened-sources-2.6.22-r2 (16 Aug 2007)
377
378 16 Aug 2007; Christian Heim <phreak@gentoo.org>
379 +hardened-sources-2.6.22-r2.ebuild:
380 Revision bump for Linux 2.6.22.3.
381
382 *hardened-sources-2.4.35 (16 Aug 2007)
383
384 16 Aug 2007; Christian Heim <phreak@gentoo.org>
385 +hardened-sources-2.4.35.ebuild:
386 Version bump, initial version for Linux 2.4.35.
387
388 *hardened-sources-2.6.21-r4 (16 Aug 2007)
389
390 16 Aug 2007; Christian Heim <phreak@gentoo.org>
391 +hardened-sources-2.6.21-r4.ebuild:
392 Revision bump for Linux 2.6.21.6.
393
394 *hardened-sources-2.6.20-r7 (16 Aug 2007)
395
396 16 Aug 2007; Christian Heim <phreak@gentoo.org>
397 +hardened-sources-2.6.20-r7.ebuild:
398 Revision bump for Linux 2.6.20.16.
399
400 *hardened-sources-2.6.22-r1 (13 Aug 2007)
401
402 13 Aug 2007; Christian Heim <phreak@gentoo.org>
403 +hardened-sources-2.6.22-r1.ebuild:
404 Yet another revision bump.
405
406 *hardened-sources-2.6.22 (10 Aug 2007)
407
408 10 Aug 2007; Christian Heim <phreak@gentoo.org>
409 +hardened-sources-2.6.22.ebuild:
410 Initial release for 2.6.22. If you are using hardened-sources on a desktop
411 machine (P4 or newer), be aware you might need to disable
412 CONFIG_PAX_PAGEEXEC.
413
414 04 Aug 2007; Christian Heim <phreak@gentoo.org>
415 hardened-sources-2.6.20-r6.ebuild:
416 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
417 2.6.20.15.
418
419 10 Jul 2007; Christian Heim <phreak@gentoo.org>
420 hardened-sources-2.6.20-r5.ebuild:
421 Marking hardened-sources-2.6.20-r5 stable on ppc.
422
423 10 Jul 2007; Christian Heim <phreak@gentoo.org>
424 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
425 Cleanup.
426
427 *hardened-sources-2.6.20-r6 (08 Jul 2007)
428
429 08 Jul 2007; Christian Heim <phreak@gentoo.org>
430 +hardened-sources-2.6.20-r6.ebuild:
431 Revision bump, grabbing yet another stable release.
432
433 17 Jun 2007; Christian Heim <phreak@gentoo.org>
434 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
435 -hardened-sources-2.6.21-r2.ebuild:
436 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
437 alpha stable KEYWORD by mistake.
438
439 17 Jun 2007; Christian Heim <phreak@gentoo.org>
440 hardened-sources-2.6.20-r5.ebuild:
441 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
442 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
443
444 *hardened-sources-2.6.21-r3 (12 Jun 2007)
445
446 12 Jun 2007; Christian Heim <phreak@gentoo.org>
447 +hardened-sources-2.6.21-r3.ebuild:
448 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
449 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
450 love.
451
452 *hardened-sources-2.6.20-r5 (11 Jun 2007)
453
454 11 Jun 2007; Christian Heim <phreak@gentoo.org>
455 +hardened-sources-2.6.20-r5.ebuild:
456 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
457 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
458 love.
459
460 *hardened-sources-2.4.34.5 (11 Jun 2007)
461
462 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
463 +hardened-sources-2.4.34.5.ebuild:
464 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
465
466 30 May 2007; Christian Heim <phreak@gentoo.org>
467 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
468 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
469 stale ebuild(s).
470
471 30 May 2007; Christian Heim <phreak@gentoo.org>
472 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
473 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
474 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
475 Doing some cleanups, remove stale ebuilds.
476
477 26 May 2007; Christian Heim <phreak@gentoo.org>
478 hardened-sources-2.6.21-r2.ebuild:
479 Fixing the grsecurity patch, had one '};' too much.
480
481 *hardened-sources-2.6.21-r2 (26 May 2007)
482
483 26 May 2007; Christian Heim <phreak@gentoo.org>
484 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
485 +hardened-sources-2.6.21-r2.ebuild:
486 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
487 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
488
489 *hardened-sources-2.6.20-r4 (26 May 2007)
490
491 26 May 2007; Christian Heim <phreak@gentoo.org>
492 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
493 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
494 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
495
496 15 May 2007; Christian Heim <phreak@gentoo.org>
497 hardened-sources-2.6.20-r3.ebuild:
498 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
499 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
500 grsecurity patch fail in that exact same hunk.
501
502 *hardened-sources-2.6.20-r3 (15 May 2007)
503
504 15 May 2007; Christian Heim <phreak@gentoo.org>
505 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
506 Revision bump, incorporating Linux 2.6.20.11.
507
508 *hardened-sources-2.6.21-r1 (11 May 2007)
509
510 11 May 2007; Christian Heim <phreak@gentoo.org>
511 +hardened-sources-2.6.21-r1.ebuild:
512 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
513 mentioned in #177234.
514
515 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
516 files/digest-hardened-sources-2.6.21, Manifest:
517 Fix Manifest/digest for linux-2.6.21.tar.bz2
518
519 06 May 2007; Christian Heim <phreak@gentoo.org>
520 hardened-sources-2.6.21.ebuild:
521 Bumping the hardened-patches version, needed for the fix for #177234.
522
523 *hardened-sources-2.6.21 (02 May 2007)
524
525 02 May 2007; Christian Heim <phreak@gentoo.org>
526 +hardened-sources-2.6.21.ebuild:
527 Version bump, Linux 2.6.21-hardened.
528
529 29 Apr 2007; Christian Heim <phreak@gentoo.org>
530 hardened-sources-2.6.20-r2.ebuild:
531 Adding ~ia64 on Ned's request.
532
533 29 Apr 2007; Christian Heim <phreak@gentoo.org>
534 hardened-sources-2.6.20-r2.ebuild:
535 Fixing the included grsecurity patch, wasn't alligning due to the Index:
536 header line(s).
537
538 29 Apr 2007; Christian Heim <phreak@gentoo.org>
539 hardened-sources-2.6.20-r2.ebuild:
540 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
541
542 *hardened-sources-2.6.20-r2 (10 Apr 2007)
543
544 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
545 +hardened-sources-2.6.20-r2.ebuild:
546 Version bump, on behalf of phreak
547
548 *hardened-sources-2.6.20-r1 (04 Apr 2007)
549
550 04 Apr 2007; Christian Heim <phreak@gentoo.org>
551 +hardened-sources-2.6.20-r1.ebuild:
552 Revision bump, grabbing a newer grsecurity snapshot.
553
554 *hardened-sources-2.6.20 (25 Mar 2007)
555
556 25 Mar 2007; Christian Heim <phreak@gentoo.org>
557 +hardened-sources-2.6.20.ebuild:
558 Finally a hardened-sources version for 2.6.20; many people have been waiting
559 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
560 testbox.
561
562 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
563 hardened-sources-2.6.18-r6.ebuild:
564 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
565
566 *hardened-sources-2.6.18-r6 (16 Mar 2007)
567
568 16 Mar 2007; Christian Heim <phreak@gentoo.org>
569 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
570 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
571 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
572 supposed to be.
573
574 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
575 Fixing the Manifest, the previous one was broken (as in still had the
576 deleted ebuild in it).
577
578 06 Mar 2007; Christian Heim <phreak@gentoo.org>
579 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
580 +hardened-sources-2.6.18-r5.ebuild:
581 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
582 Linux 2.6.18.8. Also cleaning up the older version.
583
584 *hardened-sources-2.6.18-r5 (06 Mar 2007)
585
586 06 Mar 2007; Christian Heim <phreak@gentoo.org>
587 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
588 +hardened-sources-2.6.18-r5.ebuild:
589 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
590 Linux 2.6.18.8. Also cleaning up the older version.
591
592 24 Feb 2007; Christian Heim <phreak@gentoo.org>
593 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
594 -hardened-sources-2.6.19-r5.ebuild:
595 Removing some of the old version, that didn't work.
596
597 *hardened-sources-2.6.19-r6 (12 Feb 2007)
598
599 12 Feb 2007; Christian Heim <phreak@gentoo.org>
600 +hardened-sources-2.6.19-r6.ebuild:
601 Revision bump, including a new grsec version fixing #166235.
602
603 *hardened-sources-2.4.34 (24 Jan 2007)
604
605 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
606 Manifest:
607 updating Manifest with checksums of new tarball and ebuild
608
609 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
610 +hardened-sources-2.4.34.ebuild:
611 I added new hardened sources 2.4 update, this is a critical path
612 security bugfix - all users of h-s are strongly advised
613 to update their existing hardened sources to this version.
614 It contains a fix for a kernel vulnerability that is pertaining
615 to the PaX changes to virtual memory management, possibly leading
616 to a local kernel exploit ... see grsecurity.net forums and homepage
617
618 23 Jan 2007; Christian Heim <phreak@gentoo.org>
619 files/digest-hardened-sources-2.6.19-r5, Manifest:
620 Fixing the patch-tarball digest.
621
622 *hardened-sources-2.6.19-r5 (23 Jan 2007)
623
624 23 Jan 2007; Christian Heim <phreak@gentoo.org>
625 +hardened-sources-2.6.19-r5.ebuild:
626 Revision bump, closing the recently discovered PaX expand_stack()
627 vulnerability.
628
629 *hardened-sources-2.6.19-r4 (14 Jan 2007)
630
631 14 Jan 2007; Christian Heim <phreak@gentoo.org>
632 +hardened-sources-2.6.19-r4.ebuild:
633 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
634 dropping the randomized PID feature.
635
636 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
637 hardened-sources-2.4.33.4.ebuild:
638 stable x86, bug #161171
639
640 *hardened-sources-2.6.19-r3 (27 Dec 2006)
641
642 27 Dec 2006; Christian Heim <phreak@gentoo.org>
643 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
644 Revision bump for bug #157186 and #158786.
645
646 *hardened-sources-2.6.18-r4 (27 Dec 2006)
647
648 27 Dec 2006; Christian Heim <phreak@gentoo.org>
649 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
650 Revision bump for bug #157186.
651
652 *hardened-sources-2.6.19-r2 (23 Dec 2006)
653
654 23 Dec 2006; Christian Heim <phreak@gentoo.org>
655 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
656 Revision bump to pull in genpatches-2.6.19-3 for #157186.
657
658 17 Dec 2006; Christian Heim <phreak@gentoo.org>
659 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
660 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
661 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
662 hardened-sources-2.6.19-r1.ebuild:
663 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
664 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
665
666 *hardened-sources-2.4.33.4 (17 Dec 2006)
667
668 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
669 +hardened-sources-2.4.33.4.ebuild:
670 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
671 and quilting
672
673 *hardened-sources-2.6.19-r1 (14 Dec 2006)
674
675 14 Dec 2006; Christian Heim <phreak@gentoo.org>
676 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
677 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
678 for reporting).
679
680 *hardened-sources-2.6.19 (13 Dec 2006)
681
682 13 Dec 2006; Christian Heim <phreak@gentoo.org>
683 +hardened-sources-2.6.19.ebuild:
684 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
685 Brad for providing that prompt update.
686
687 *hardened-sources-2.6.18-r3 (13 Dec 2006)
688
689 13 Dec 2006; Christian Heim <phreak@gentoo.org>
690 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
691 +hardened-sources-2.6.18-r3.ebuild:
692 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
693 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
694
695 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
696 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
697
698 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
699 Stable on ppc wrt bug 157356
700
701 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
702 hardened-sources-2.6.18.ebuild:
703 stable x86, bug #157356
704
705 *hardened-sources-2.6.18-r2 (06 Dec 2006)
706
707 06 Dec 2006; Christian Heim <phreak@gentoo.org>
708 +hardened-sources-2.6.18-r2.ebuild:
709 Revision bump, including 2.6.18.5 (via genpatches) and
710 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
711 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
712 redesign.
713
714 06 Dec 2006; Christian Heim <phreak@gentoo.org>
715 hardened-sources-2.6.18.ebuild:
716 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
717 of Mike Doty).
718
719 *hardened-sources-2.6.18-r1 (23 Nov 2006)
720
721 23 Nov 2006; Christian Heim <phreak@gentoo.org>
722 +hardened-sources-2.6.18-r1.ebuild:
723 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
724
725 *hardened-sources-2.6.18 (11 Nov 2006)
726
727 11 Nov 2006; Christian Heim <phreak@gentoo.org>
728 +hardened-sources-2.6.18.ebuild:
729 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
730
731 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
732 - mark amd64 stable also. bug #151877
733
734 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
735 - mark 2.6.17-r1 stable
736
737 27 Aug 2006; Christian Heim <phreak@gentoo.org>
738 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
739 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
740
741 *hardened-sources-2.6.17-r1 (26 Aug 2006)
742
743 26 Aug 2006; Christian Heim <phreak@gentoo.org>
744 +hardened-sources-2.6.17-r1.ebuild:
745 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
746 grsecurity patch.
747
748 *hardened-sources-2.6.17 (17 Aug 2006)
749
750 17 Aug 2006; Christian Heim <phreak@gentoo.org>
751 +hardened-sources-2.6.17.ebuild:
752 Bumping the hardened-sources-2.6 series to 2.6.17, using
753 genpatches-2.6.17-6.base.
754
755 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
756 - stable on x86 and amd64
757
758 *hardened-sources-2.6.16-r11 (15 Jul 2006)
759
760 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
761 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
762 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
763 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
764 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
765 crusty ebuilds
766
767 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
768 hardened-sources-2.6.16-r10.ebuild:
769 marking stable on x86 and amd64
770
771 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
772 - 2.4.32-r6 stable on x86. RSBAC state unknown
773
774 *hardened-sources-2.4.32-r7 (10 Jul 2006)
775
776 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
777 +hardened-sources-2.4.32-r7.ebuild:
778 Bump PaX for RSBAC to test-17
779
780 *hardened-sources-2.6.16-r9 (03 Jul 2006)
781
782 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
783 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
784 hardened-sources-2.6.16 bump to latest -base.
785
786 *hardened-sources-2.4.32-r6 (30 Jun 2006)
787
788 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
789 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
790 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
791 sysctl controlable resource logging
792
793 *hardened-sources-2.6.16-r7 (05 Jun 2006)
794
795 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
796 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
797 push new 2.6.16 release in preparation for stable
798
799 22 May 2006; <solar@gentoo.org> :
800 - redigest bug 134002
801
802 *hardened-sources-2.4.32-r5 (16 May 2006)
803
804 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
805 +hardened-sources-2.4.32-r5.ebuild:
806 Fixes rsbac common patching (new patch in new -r5 patchset)
807
808 *hardened-sources-2.4.32-r4 (13 May 2006)
809
810 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
811 +hardened-sources-2.4.32-r4.ebuild:
812 - security bumps
813
814 *hardened-sources-2.6.16-r6 (03 May 2006)
815
816 03 May 2006; John Mylchreest <johnm@gentoo.org>
817 +hardened-sources-2.6.16-r6.ebuild:
818 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
819
820 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
821 hardened-sources-2.6.14-r8.ebuild:
822 fix x86_64 build problem, this will delay the digest issue again for a short
823 while but it will sort itself out
824
825 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
826 hardened-sources-2.6.14-r8.ebuild:
827 bump hardened patchset
828
829 27 Apr 2006; Alec Warner <antarus@gentoo.org>
830 files/digest-hardened-sources-2.4.32-r2,
831 files/digest-hardened-sources-2.4.32-r3,
832 files/digest-hardened-sources-2.6.14-r8, Manifest:
833 Fixing duff SHA256 digests: Bug # 131293
834
835 *hardened-sources-2.6.16-r5 (27 Apr 2006)
836
837 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
838 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
839 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
840 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
841 cleanup of old uneccessary sources
842
843 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
844 fix digest
845
846 *hardened-sources-2.6.14-r8 (20 Apr 2006)
847
848 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
849 +hardened-sources-2.6.14-r8.ebuild:
850 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
851
852 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
853 Turning on gpg-signing again, and recomitting
854
855 *hardened-sources-2.6.16-r4 (20 Apr 2006)
856
857 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
858 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
859 +hardened-sources-2.6.16-r4.ebuild:
860 Fix numerous security vulns
861
862 *hardened-sources-2.4.32-r3 (16 Apr 2006)
863
864 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
865 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
866 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
867 - security bump for bug #112791. Removed old ebuilds
868
869 *hardened-sources-2.6.16-r3 (15 Apr 2006)
870
871 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
872 +hardened-sources-2.6.16-r3.ebuild:
873 Removing silly localversion which I missed
874
875 *hardened-sources-2.6.14-r7 (14 Apr 2006)
876
877 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
878 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
879 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
880
881 *hardened-sources-2.6.16-r2 (13 Apr 2006)
882
883 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
884 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
885 +hardened-sources-2.6.16-r2.ebuild:
886 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
887 labels, dropping USERGROUP define fixes, since these were merged mainstream.
888
889 *hardened-sources-2.6.16-r1 (11 Apr 2006)
890
891 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
892 +hardened-sources-2.6.16-r1.ebuild:
893 Bumping to include ppc build fix and 2.6.16.3
894
895 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
896 hardened-sources-2.6.14-r6.ebuild:
897 Stable on x86; bug #127718
898
899 *hardened-sources-2.6.16 (31 Mar 2006)
900
901 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
902 +hardened-sources-2.6.16.ebuild:
903 Bumping to new version of grsec, and kernel base. New squashfs. Based on
904 2.6.16.1
905
906 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
907 hardened-sources-2.6.14-r6.ebuild:
908 Stable on amd64, bug 127718.
909
910 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
911 Stable on ppc. Bug #127718
912
913 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
914 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
915 -hardened-sources-2.6.14-r4.ebuild:
916 Cleanup.
917
918 *hardened-sources-2.6.14-r6 (15 Mar 2006)
919
920 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
921 +hardened-sources-2.6.14-r6.ebuild:
922 Fixes grsec policy recreation bug and adds a
923 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
924
925 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
926 - stable on x86
927
928 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
929 hardened-sources-2.6.14-r5.ebuild:
930 Stable on ppc.
931
932 *hardened-sources-2.6.14-r5 (01 Feb 2006)
933
934 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
935 +hardened-sources-2.6.14-r5.ebuild:
936 fixing every known exploit
937
938 *hardened-sources-2.4.32-r2 (26 Jan 2006)
939
940 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
941 +hardened-sources-2.4.32-r2.ebuild:
942 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
943
944 *hardened-sources-2.6.14-r4 (12 Jan 2006)
945
946 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
947 - version bump for new genpatches which fix up a few sec holes
948
949 *hardened-sources-2.4.32-r1 (05 Jan 2006)
950
951 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
952 - revision bump to add misc vital linux kernel security patches.
953
954 *hardened-sources-2.6.14-r3 (30 Dec 2005)
955
956 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
957 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
958 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
959
960 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
961 hardened-sources-2.6.14-r2.ebuild:
962 making x86 & amd64 stable following testing.
963
964 *hardened-sources-2.6.14-r2 (27 Dec 2005)
965
966 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
967 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
968 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
969 network hooks.
970
971 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
972 hardened-sources-2.6.14-r1.ebuild:
973 bumping to stable early for sec fix on x86 & amd64
974
975 *hardened-sources-2.6.14-r1 (05 Dec 2005)
976
977 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
978 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
979 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
980
981 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
982 - stable on x86 security bug #114227 CAN-2005-3257
983
984 *hardened-sources-2.4.32 (19 Nov 2005)
985
986 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
987 +hardened-sources-2.4.32.ebuild:
988 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
989 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
990 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
991 rsbac >> /etc/portage/package.use)
992
993 *hardened-sources-2.6.14 (14 Nov 2005)
994
995 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
996 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
997 Bumping 2.6 series to 2.6.14.2
998
999 *hardened-sources-2.6.13-r2 (20 Oct 2005)
1000
1001 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
1002 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
1003 +hardened-sources-2.6.13-r2.ebuild:
1004 Fixes minor build error in ppc.
1005
1006 *hardened-sources-2.6.13-r1 (17 Oct 2005)
1007
1008 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
1009 +hardened-sources-2.6.13-r1.ebuild:
1010 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
1011 2.6.13.4, fixes some major amd64 stability problems.
1012
1013 *hardened-sources-2.6.13 (16 Sep 2005)
1014
1015 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
1016 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
1017 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
1018 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
1019 users should test this thoroughly.
1020
1021 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
1022 - stable on x86
1023
1024 *hardened-sources-2.6.11-r15 (27 Jun 2005)
1025
1026 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
1027 +hardened-sources-2.6.11-r15.ebuild:
1028 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
1029 grsec redefining curr_ip struct.
1030
1031 *hardened-sources-2.4.31 (20 Jun 2005)
1032
1033 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
1034 initial import of 2.4.31 tree
1035
1036 *hardened-sources-2.6.11-r14 (14 Jun 2005)
1037
1038 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
1039 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
1040 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
1041 naming scheme to abide by genpatches
1042
1043 *hardened-sources-2.6.11-r13 (18 May 2005)
1044
1045 18 May 2005; John Mylchreest <johnm@gentoo.org>
1046 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
1047 Managed to mangle the Makefile patch from grsec, to miss out the grsec
1048 target. sorry about that. Fixes bug #93022
1049
1050 *hardened-sources-2.6.11-r12 (17 May 2005)
1051
1052 17 May 2005; John Mylchreest <johnm@gentoo.org>
1053 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1054 +hardened-sources-2.6.11-r12.ebuild:
1055 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1056 merges in genpatches-base
1057
1058 *hardened-sources-2.6.11-r12 (17 May 2005)
1059
1060 17 May 2005; John Mylchreest <johnm@gentoo.org>
1061 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1062 +hardened-sources-2.6.11-r12.ebuild:
1063 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1064 merges in genpatches-base
1065
1066 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
1067 -files/2.4.27-cmdline-race.patch,
1068 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
1069 -files/2.4.28-grsec-binfmt_a.out.patch,
1070 -files/2.4.28-grsec-cmdline-race.patch,
1071 -files/2.4.28-selinux-binfmt_a.out.patch,
1072 -files/2.4.28-selinux-cmdline-race.patch,
1073 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
1074 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
1075 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
1076 cleanup..
1077
1078 *hardened-sources-2.4.30-r1 (21 Apr 2005)
1079
1080 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
1081 - disable aout by default
1082
1083 *hardened-sources-2.4.30 (18 Apr 2005)
1084
1085 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
1086 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
1087 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
1088 use
1089
1090 *hardened-sources-2.4.29 (30 Mar 2005)
1091
1092 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1093 +hardened-sources-2.4.29.ebuild:
1094 New hardened-patches-2.4-29.0 patchball.
1095 Removed SELinux support, upgraded GRSecurity to 2.1.4.
1096
1097 *hardened-sources-2.4.28-r5 (06 Mar 2005)
1098
1099 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1100 +hardened-sources-2.4.28-r5.ebuild:
1101 Added a fix for a PaX vulnerability.
1102
1103 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1104 hardened-sources-2.4.28-r4.ebuild:
1105 Stable on x86
1106
1107 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
1108 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
1109 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
1110 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
1111 - fixed/added RDEPEND= in all kernel-2 ebuilds
1112
1113 *hardened-sources-2.4.28-r4 (21 Jan 2005)
1114
1115 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1116 +hardened-sources-2.4.28-r4.ebuild:
1117 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
1118 backport of neighbour hash updates.
1119
1120 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1121 hardened-sources-2.4.28-r3.ebuild:
1122 Stable on x86
1123
1124 *hardened-sources-2.6.10-r3 (20 Jan 2005)
1125
1126 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
1127 +hardened-sources-2.6.10-r3.ebuild:
1128 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
1129 in 2005.0
1130
1131 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1132 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
1133 hardened-sources-2.4.28-r2.ebuild:
1134 Mark stable on x86
1135
1136 *hardened-sources-2.4.28-r3 (17 Jan 2005)
1137
1138 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1139 +hardened-sources-2.4.28-r3.ebuild:
1140 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
1141
1142 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1143 hardened-sources-2.4.28.ebuild:
1144 Mark stable on x86.
1145
1146 *hardened-sources-2.4.28-r2 (13 Jan 2005)
1147
1148 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1149 +hardened-sources-2.4.28-r2.ebuild:
1150 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
1151 Mazinger for grsecurity patches as well.
1152
1153 *hardened-sources-2.4.28-r1 (23 Dec 2004)
1154
1155 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
1156 Security bump. Thank tocharian for rolling a new patchset...
1157
1158 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
1159 +files/2.4.28-grsec-cmdline-race.patch,
1160 +files/2.4.28-selinux-binfmt_a.out.patch,
1161 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
1162 - Round up remaining security patches that appear to be missing in 2.4.28. -
1163 PaX standalone updated to current. hgpv=28.1
1164
1165 *hardened-sources-2.4.28 (28 Nov 2004)
1166
1167 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
1168 security bump. Thank tocharian for rolling a new patchset
1169
1170 *hardened-sources-2.4.27-r3 (08 Sep 2004)
1171
1172 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
1173 +hardened-sources-2.4.27-r3.ebuild:
1174 Applies the new 2.4-27.2 patchball which updates
1175 GRSecurity to the 2.0.1 version.
1176
1177 *hardened-sources-2.4.27-r2 (31 Aug 2004)
1178
1179 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1180 +hardened-sources-2.4.27-r2.ebuild:
1181 Version bump.
1182 This version uses the new 2.4-27.1 patchball which updates
1183 both the SELinux PaX hooks patch and the SELinux headers.
1184
1185 *hardened-sources-2.4.27-r1 (09 Aug 2004)
1186
1187 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1188 +hardened-sources-2.4.27-r1.ebuild,
1189 -hardened-sources-2.4.27.ebuild,
1190 +files/2.4.27-cmdline-race.patch:
1191 Version bump, fix for cmdline race. See bug #59905.
1192
1193 *hardened-sources-2.4.26-r6 (09 Aug 2004)
1194
1195 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1196 +hardened-sources-2.4.26-r6.ebuild,
1197 -hardened-sources-2.4.26-r5.ebuild,
1198 -hardened-sources-2.4.26-r4.ebuild,
1199 +files/2.4.26-cmdline-race.patch:
1200 Version bump, fix for cmdline race. See bug #59905.
1201
1202 *hardened-sources-2.4.27 (08 Aug 2004)
1203
1204 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1205 +hardened-sources-2.4.27.ebuild,
1206 +files/2.4.27-CAN-2004-0394.patch:
1207 Ported the patchball to the 2.4.27 kernel version.
1208
1209 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1210
1211 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1212 +hardened-sources-2.4.26-r5.ebuild:
1213 Updated to use the new hardened-patches-2.4-26.1 patchball.
1214 It adds the following features:
1215 - Squashfs
1216 - Ebtables
1217 - Netdev random (core+drivers)
1218 - Watchdog Timer (WDT) fix.
1219
1220 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1221
1222 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1223 +hardened-sources-2.4.26-r4.ebuild,
1224 +files/2.4.26-CAN-2004-0415.patch,
1225 -hardened-sources-2.4.26-3:
1226 Version bump, fix for CAN 0415, see bug #59378.
1227
1228 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1229
1230 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1231 +hardened-sources-2.4.26-r3.ebuild,
1232 +files/2.4.26-CAN-2004-0497.patch,
1233 -hardened-sources-2.4.26-r2.ebuild:
1234 Version bump, fixed CAN 0497, see bug #56171.
1235
1236 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1237
1238 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1239 +hardened-sources-2.4.26-r2.ebuild,
1240 +files/2.4.26-CAN-2004-0495.patch,
1241 +files/2.4.26-CAN-2004-0535.patch,
1242 -hardened-sources-2.4.26-r1.ebuild:
1243 Fixes for both CAN 0495 and 0535, see bug #54976
1244
1245 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1246 hardened-sources-2.4.26-r1.ebuild:
1247 QA - fix use invocation
1248
1249 *hardened-sources-2.4.26-r1 (22 June 2004)
1250
1251 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1252 +hardened-sources-2.4.26-r1.ebuild,
1253 +files/2.4.26-CAN-2004-0394.patch,
1254 +files/2.4.26-signal-race.patch,
1255 -hardened-sources-2.4.26.ebuild,
1256 -hardened-sources-2.4.24-r3.ebuild:
1257 Version bump for the CAN-2004-0394 issue and bug #53804
1258 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1259
1260
1261 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1262 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1263 Masked hardened-sources-2.4.26.ebuild broken for ppc
1264
1265 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1266 hardened-sources-2.4.24-r3.ebuild:
1267 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1268
1269 *hardened-sources-2.4.26 (29 May 2004)
1270
1271 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1272 +hardened-sources-2.4.26.ebuild:
1273 Updated hardened-sources for the 2.4.26 kernel
1274 Removed broken components, updated almost everything.
1275
1276 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1277
1278 17 Apr 2004; <plasmaroo@gentoo.org>
1279 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1280 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1281 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1282 +hardened-sources-2.4.24-r3.ebuild:
1283 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1284 vulnerabilities. Old revisions removed.
1285
1286 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1287
1288 15 Apr 2004; <plasmaroo@gentoo.org>
1289 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1290 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1291 Version bump for the CAN-2004-0109 issue; bug #47881.
1292
1293 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1294 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1295 Add eutils to inherit.
1296
1297 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1298
1299 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1300 files/hardened-sources-2.4.24.munmap.patch:
1301 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1302
1303 *hardened-sources-2.4.24 (06 Feb 2004)
1304
1305 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1306 hardened-sources-2.4.24.ebuild:
1307 Version bump, updated most of the components.
1308 This release includes the following:
1309
1310 - Hardened security
1311 - Netfilter patch-o-matic 20031219
1312 - FreeSWAN 2.04 & x509 1.4.8
1313 - EVMS 2.2.2
1314 - XFS 1.3.1
1315 - cryptoloop jari
1316 - grsecurity 2.0-rc4
1317 - SELinux
1318 - PaX 200402060000
1319 - PaX Obscurity 200308302223
1320 - Others...
1321
1322 Neither -ck nor systrace are included anymore.
1323
1324 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1325
1326 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1327 hardened-sources-2.4.22-r2.ebuild:
1328 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1329
1330 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1331
1332 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1333 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1334
1335 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1336 hardened-sources-2.4.22-r1.ebuild:
1337 Version bump for the 'do_brk' vulnerability.
1338
1339 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1340 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1341 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1342 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1343 Fix the 'do_brk' vulnerability.
1344
1345 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1346 hardened-sources-2.4.22.ebuild:
1347 - Removed the src_install() portion for SELinux flask
1348 components. These are no longer handled in the kernel
1349 so this code was not necessary.
1350
1351 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1352 New 2.4.22 based hardened-sources thanks to
1353 Phil West <p.west@computer.org>.
1354
1355 These sources include:
1356 - New SELinux API
1357 - Updated CK-base
1358 - Updated GRSec
1359 - Systrace
1360 - SuperFreeS/WAN 1.99.8
1361 - Propolice kernel build support
1362 - EVMS
1363 - Other various security related patches
1364
1365 *hardened-sources-2.4.21 (14 Sep 2003)
1366
1367 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1368 Updated hardened-sources based on the 2.4.21 Linux kernel.
1369 This includes updates to most major components such as:
1370 - ck-base-0306300059
1371 - selinux-2.4-2003071106
1372 - grsecurity-2.0-rc1
1373 - Updated IPTables patch-o-matic
1374 - Updated SuperFreeS/WAN
1375
1376 Thanks to Phil West <pwest@computer.org> for his work in getting this
1377 updated patch set ready for the 2.4.21 based kernel.
1378
1379 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1380 Initial import of hardened-sources-2.4.20-r4. This revision
1381 includes only a few changes, but one of these is an important
1382 security fix. It is recommended all users of hardened-sources
1383 upgrade to this release.
1384
1385 - ioperm bug fix
1386 - fixed compilation failure when building without GRSec
1387
1388 SAL (Secure Auditing for Linux) is NOT included in this revision
1389 due to time constraints, but is planned for inclusion in the near
1390 future.
1391
1392 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1393
1394 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1395 hardened-sources-2.4.20-r3.ebuild:
1396 Add Header...
1397
1398 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1399 hardened-sources-2.4.20-r3.ebuild:
1400 Removed warnings from ebuild. This kernel should be safe to
1401 use at this point.
1402
1403 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1404
1405 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1406 hardened-sources-2.4.20-r3.ebuild:
1407 New revision. Includes the following changes over -r2:
1408
1409 - ck7-base (O(1), preempt, low latency)
1410 - Super FreeS/WAN 1.99.7rc2
1411 - PaX for the LSM/SELinux branch
1412 - GRSecurity 2.0-pre4 (role based access control)
1413 - Systrace 1.3
1414 - EXT3 fixes
1415 - EVMS 2.0.1
1416 - GCC 3.1+ compile optimizations
1417 - ProPolice kernel build support
1418 - Hashing table security fixes
1419
1420 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1421
1422 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1423 Initial import of hardened-sources-r2. This new
1424 ebuild includes many new performance and security
1425 related patches. As in -r1, it will patch in
1426 LSM/SELinux if "selinux" is in USE, otherwise it
1427 will patch in GRSecurity. The following patches
1428 are included in this revision:
1429
1430 - O(1) Scheduler, Low Latency, and Preempt
1431 (pulled from the base CK patch)
1432 - ptrace exploit patch for the LSM kernel
1433 (the GRSec patch already fixes this)
1434 - LSM 2.4-2003040709
1435 - SELinux 2.4-2003040709
1436 - Systrace v1.2
1437 - IPTables patch-o-matic base patches - 20030107
1438 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1439 - Super FreeS/WAN 1.99.6.1
1440 - GRSecurity 1.9.9g
1441 - MPPE
1442 - EXT3 data journal fix
1443 - CIPE 1.5.4
1444
1445 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1446 hardened-sources-2.4.20-r1.ebuild, manifest:
1447 Updated to install flask components correctly for selinux.
1448
1449 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1450 hardened-sources-2.4.20-r1.ebuild:
1451 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1452 is patched in instead. Ptrace patches for selinux have also been added. In
1453 either case, systrace support will be patched in as well.
1454
1455 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1456 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1457 Revision bump for new sources.
1458
1459 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1460 hardened-sources-2.4.20-r1.ebuild:
1461 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1462
1463 *hardened-sources-2.4.20 (30 Mar 2003)
1464
1465 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1466 hardened-sources-2.4.20.ebuild:
1467 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20