/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.25 - (show annotations) (download)
Sat Apr 17 11:31:19 2004 UTC (10 years, 7 months ago) by plasmaroo
Branch: MAIN
Changes since 1.24: +11 -1 lines
Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178 vulnerabilities.

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Technologies, Inc.; Distributed under the GPL v2
3 # $Header: /home/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.24 2004/04/15 22:28:46 plasmaroo Exp $
4
5 *hardened-sources-2.4.24-r3 (17 Apr 2004)
6
7 17 Apr 2004; <plasmaroo@gentoo.org>
8 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
9 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
10 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
11 +hardened-sources-2.4.24-r3.ebuild:
12 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
13 vulnerabilities. Old revisions removed.
14
15 *hardened-sources-2.4.24-r2 (15 Apr 2004)
16
17 15 Apr 2004; <plasmaroo@gentoo.org>
18 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
19 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
20 Version bump for the CAN-2004-0109 issue; bug #47881.
21
22 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
23 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
24 Add eutils to inherit.
25
26 *hardened-sources-2.4.24-r1 (19 Feb 2004)
27
28 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
29 files/hardened-sources-2.4.24.munmap.patch:
30 Added the patch for the mremap/munmap vulnerability. Bug #42024.
31
32 *hardened-sources-2.4.24 (06 Feb 2004)
33 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
34 hardened-sources-2.4.24.ebuild:
35 Version bump, updated most of the components.
36 This release includes the following:
37
38 - Hardened security
39 - Netfilter patch-o-matic 20031219
40 - FreeSWAN 2.04 & x509 1.4.8
41 - EVMS 2.2.2
42 - XFS 1.3.1
43 - cryptoloop jari
44 - grsecurity 2.0-rc4
45 - SELinux
46 - PaX 200402060000
47 - PaX Obscurity 200308302223
48 - Others...
49
50 Neither -ck nor systrace are included anymore.
51
52 *hardened-sources-2.4.22-r2 (05 Jan 2004)
53
54 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
55 hardened-sources-2.4.22-r2.ebuild:
56 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
57
58 *hardened-sources-2.4.22-r1 (02 Dec 2003)
59
60 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
61 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
62
63 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
64 hardened-sources-2.4.22-r1.ebuild:
65 Version bump for the 'do_brk' vulnerability.
66
67 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
68 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
69 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
70 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
71 Fix the 'do_brk' vulnerability.
72
73 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
74 hardened-sources-2.4.22.ebuild:
75 - Removed the src_install() portion for SELinux flask
76 components. These are no longer handled in the kernel
77 so this code was not necessary.
78
79 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
80 New 2.4.22 based hardened-sources thanks to
81 Phil West <p.west@computer.org>.
82
83 These sources include:
84 - New SELinux API
85 - Updated CK-base
86 - Updated GRSec
87 - Systrace
88 - SuperFreeS/WAN 1.99.8
89 - Propolice kernel build support
90 - EVMS
91 - Other various security related patches
92
93 *hardened-sources-2.4.21 (14 Sep 2003)
94
95 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
96 Updated hardened-sources based on the 2.4.21 Linux kernel.
97 This includes updates to most major components such as:
98 - ck-base-0306300059
99 - selinux-2.4-2003071106
100 - grsecurity-2.0-rc1
101 - Updated IPTables patch-o-matic
102 - Updated SuperFreeS/WAN
103
104 Thanks to Phil West <pwest@computer.org> for his work in getting this
105 updated patch set ready for the 2.4.21 based kernel.
106
107 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
108 Initial import of hardened-sources-2.4.20-r4. This revision
109 includes only a few changes, but one of these is an important
110 security fix. It is recommended all users of hardened-sources
111 upgrade to this release.
112
113 - ioperm bug fix
114 - fixed compilation failure when building without GRSec
115
116 SAL (Secure Auditing for Linux) is NOT included in this revision
117 due to time constraints, but is planned for inclusion in the near
118 future.
119
120 *hardened-sources-2.4.20-r2 (12 Jun 2003)
121
122 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
123 hardened-sources-2.4.20-r3.ebuild:
124 Add Header...
125
126 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
127 hardened-sources-2.4.20-r3.ebuild:
128 Removed warnings from ebuild. This kernel should be safe to
129 use at this point.
130
131 *hardened-sources-2.4.20-r3 (08 Jun 2003)
132
133 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
134 hardened-sources-2.4.20-r3.ebuild:
135 New revision. Includes the following changes over -r2:
136
137 - ck7-base (O(1), preempt, low latency)
138 - Super FreeS/WAN 1.99.7rc2
139 - PaX for the LSM/SELinux branch
140 - GRSecurity 2.0-pre4 (role based access control)
141 - Systrace 1.3
142 - EXT3 fixes
143 - EVMS 2.0.1
144 - GCC 3.1+ compile optimizations
145 - ProPolice kernel build support
146 - Hashing table security fixes
147
148 *hardened-sources-2.4.20-r1 (09 Apr 2003)
149
150 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
151 Initial import of hardened-sources-r2. This new
152 ebuild includes many new performance and security
153 related patches. As in -r1, it will patch in
154 LSM/SELinux if "selinux" is in USE, otherwise it
155 will patch in GRSecurity. The following patches
156 are included in this revision:
157
158 - O(1) Scheduler, Low Latency, and Preempt
159 (pulled from the base CK patch)
160 - ptrace exploit patch for the LSM kernel
161 (the GRSec patch already fixes this)
162 - LSM 2.4-2003040709
163 - SELinux 2.4-2003040709
164 - Systrace v1.2
165 - IPTables patch-o-matic base patches - 20030107
166 - CryptoAPI 2.4.20.1 w/ loop-jari patch
167 - Super FreeS/WAN 1.99.6.1
168 - GRSecurity 1.9.9g
169 - MPPE
170 - EXT3 data journal fix
171 - CIPE 1.5.4
172
173 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
174 hardened-sources-2.4.20-r1.ebuild, manifest:
175 Updated to install flask components correctly for selinux.
176
177 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
178 hardened-sources-2.4.20-r1.ebuild:
179 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
180 is patched in instead. Ptrace patches for selinux have also been added. In
181 either case, systrace support will be patched in as well.
182
183 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
184 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
185 Revision bump for new sources.
186
187 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
188 hardened-sources-2.4.20-r1.ebuild:
189 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
190
191 *hardened-sources-2.4.20 (30 Mar 2003)
192
193 30 Mar 2003; Joshua Brindle <method@gentoo.org>
194 hardened-sources-2.4.20.ebuild:
195 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20