/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.293 - (show annotations) (download)
Fri Mar 13 02:37:03 2009 UTC (5 years, 4 months ago) by gengor
Branch: MAIN
Changes since 1.292: +5 -1 lines
Quick stable sys-kernel/hardened-sources-2.6.28-r2 on amd64/x86
(Portage version: 2.1.6.7/cvs/Linux i686)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2009 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.292 2009/03/11 21:09:46 gengor Exp $
4
5 13 Mar 2009; Gordon Malm <gengor@gentoo.org>
6 hardened-sources-2.6.28-r2.ebuild:
7 Stable amd64/x86.
8
9 *hardened-sources-2.6.28-r2 (11 Mar 2009)
10
11 11 Mar 2009; Gordon Malm <gengor@gentoo.org>
12 +hardened-sources-2.6.28-r2.ebuild:
13 Version bump bringing in latest grsecurity patch.
14
15 *hardened-sources-2.6.28-r1 (09 Mar 2009)
16
17 09 Mar 2009; Gordon Malm <gengor@gentoo.org>
18 -hardened-sources-2.6.28.ebuild, +hardened-sources-2.6.28-r1.ebuild:
19 Version bump and remove old.
20
21 07 Mar 2009; nixnut <nixnut@gentoo.org> hardened-sources-2.6.27-r8.ebuild:
22 ppc stable
23
24 01 Mar 2009; Gordon Malm <gengor@gentoo.org>
25 hardened-sources-2.6.27-r8.ebuild:
26 Remove amd64 testing keyword, bug 256226.
27
28 01 Mar 2009; Gordon Malm <gengor@gentoo.org>
29 hardened-sources-2.6.27-r8.ebuild:
30 Revert amd64 stable, bug #256226.
31
32 01 Mar 2009; Gordon Malm <gengor@gentoo.org>
33 hardened-sources-2.6.27-r8.ebuild:
34 Stable on amd64/x86.
35
36 24 Feb 2009; Gordon Malm <gengor@gentoo.org>
37 -hardened-sources-2.6.27-r6.ebuild:
38 Remove old 2.6.27 release.
39
40 *hardened-sources-2.6.27-r8 (24 Feb 2009)
41
42 24 Feb 2009; Gordon Malm <gengor@gentoo.org>
43 +hardened-sources-2.6.27-r8.ebuild:
44 Bump to latest genpatches, Linux 2.6.27.19, PaX updates. Fixes bug #256067
45 and probably more.
46
47 04 Feb 2009; nixnut <nixnut@gentoo.org> hardened-sources-2.6.26-r9.ebuild:
48 ppc stable
49
50 *hardened-sources-2.6.28 (25 Jan 2009)
51
52 25 Jan 2009; Gordon Malm <gengor@gentoo.org>
53 +hardened-sources-2.6.28.ebuild:
54 Initial 2.6.28 release.
55
56 *hardened-sources-2.6.27-r7 (25 Jan 2009)
57
58 25 Jan 2009; Gordon Malm <gengor@gentoo.org>
59 +hardened-sources-2.6.27-r7.ebuild:
60 Bump to Linux 2.6.27.13.
61
62 25 Jan 2009; Gordon Malm <gengor@gentoo.org>
63 hardened-sources-2.6.26-r9.ebuild:
64 Stable amd64/x86.
65
66 24 Jan 2009; Gordon Malm <gengor@gentoo.org>
67 -hardened-sources-2.6.27-r3.ebuild, -hardened-sources-2.6.27-r4.ebuild,
68 -hardened-sources-2.6.27-r5.ebuild:
69 Remove problem versions.
70
71 *hardened-sources-2.6.27-r6 (24 Jan 2009)
72
73 24 Jan 2009; Gordon Malm <gengor@gentoo.org>
74 +hardened-sources-2.6.27-r6.ebuild:
75 Revert PaX test29 to test30 changes. Fixes bug 256226.
76
77 *hardened-sources-2.6.27-r5 (24 Jan 2009)
78
79 24 Jan 2009; Gordon Malm <gengor@gentoo.org>
80 +hardened-sources-2.6.27-r5.ebuild:
81 Bump to genpatches-10 (includes Linux 2.6.27.{11,12}) and fix bugs 253733,
82 254843.
83
84 23 Jan 2009; Gordon Malm <gengor@gentoo.org>
85 -hardened-sources-2.6.25-r11.ebuild, -hardened-sources-2.6.25-r12.ebuild,
86 -hardened-sources-2.6.26-r7.ebuild, -hardened-sources-2.6.26-r8.ebuild:
87 Remove problem versions.
88
89 23 Jan 2009; nixnut <nixnut@gentoo.org>
90 hardened-sources-2.6.25-r13.ebuild:
91 ppc stable
92
93 21 Jan 2009; Gordon Malm <gengor@gentoo.org>
94 hardened-sources-2.6.25-r13.ebuild:
95 Fasttrack stable amd64/x86.
96
97 *hardened-sources-2.6.26-r9 (21 Jan 2009)
98
99 21 Jan 2009; Gordon Malm <gengor@gentoo.org>
100 +hardened-sources-2.6.26-r9.ebuild:
101 Revert RLIMIT_STACK false-positives-avoidance patch. Bugs 253733, 254843
102
103 *hardened-sources-2.6.25-r13 (20 Jan 2009)
104
105 20 Jan 2009; Gordon Malm <gengor@gentoo.org>
106 +hardened-sources-2.6.25-r13.ebuild:
107 Revert RLIMIT_STACK false-positives-avoidance patch. Bugs 253733, 254843
108
109 20 Jan 2009; nixnut <nixnut@gentoo.org>
110 hardened-sources-2.6.25-r12.ebuild:
111 ppc stable
112
113 17 Jan 2009; Gordon Malm <gengor@gentoo.org>
114 hardened-sources-2.6.25-r12.ebuild:
115 Stable amd64/x86.
116
117 14 Jan 2009; Gordon Malm <gengor@gentoo.org>
118 -hardened-sources-2.6.25-r10.ebuild, -hardened-sources-2.6.26-r6.ebuild,
119 -hardened-sources-2.6.27-r2.ebuild:
120 Clean out old versions.
121
122 *hardened-sources-2.6.27-r4 (14 Jan 2009)
123 *hardened-sources-2.6.26-r8 (14 Jan 2009)
124 *hardened-sources-2.6.25-r12 (14 Jan 2009)
125
126 14 Jan 2009; Gordon Malm <gengor@gentoo.org>
127 +hardened-sources-2.6.25-r12.ebuild, +hardened-sources-2.6.26-r8.ebuild,
128 +hardened-sources-2.6.27-r4.ebuild:
129 2.6.25-r12: Fixes bugs #249729, #250548, #252688, #254907
130 2.6.26-r8: Fixes bugs #249729, #250548, #252688, #254907
131 2.6.27-r4: Update to latest genpatches (includes Linux 2.6.27.10) and
132 grsecurity patch. Fixes bugs #249729, #250511, #250548, #252688, #254907
133
134 15 Dec 2008; nixnut <nixnut@gentoo.org>
135 hardened-sources-2.6.25-r11.ebuild:
136 Stable on ppc
137
138 09 Dec 2008; Gordon Malm <gengor@gentoo.org>
139 hardened-sources-2.6.25-r11.ebuild:
140 Stable amd64/x86.
141
142 *hardened-sources-2.6.27-r3 (07 Dec 2008)
143
144 07 Dec 2008; Gordon Malm <gengor@gentoo.org>
145 +hardened-sources-2.6.27-r3.ebuild:
146 Bump to latest genpatches, including Linux 2.6.27.8. Bump grsec/pax patches.
147 Fixes bug #248754, #249729 and #246607.
148
149 03 Dec 2008; Gordon Malm <gengor@gentoo.org>
150 -hardened-sources-2.6.25-r9.ebuild, -hardened-sources-2.6.26-r5.ebuild:
151 Remove old versions.
152
153 *hardened-sources-2.6.26-r7 (03 Dec 2008)
154 *hardened-sources-2.6.25-r11 (03 Dec 2008)
155
156 03 Dec 2008; Gordon Malm <gengor@gentoo.org>
157 +hardened-sources-2.6.25-r11.ebuild, +hardened-sources-2.6.26-r7.ebuild:
158 2.6.25-r11: Fixes bugs 246607, 246710, 247453 and 248754.
159 2.6.26-r7: Fixes bugs 246607, 246710, 246763, 247453 and 248754.
160 Both include many backports from 2.6.27.{6,7} -stable releases.
161
162 24 Nov 2008; Gordon Malm <gengor@gentoo.org>
163 -hardened-sources-2.6.27.ebuild, -hardened-sources-2.6.27-r1.ebuild:
164 Remove versions broken on ARCHes != x86/amd64.
165
166 *hardened-sources-2.6.27-r2 (24 Nov 2008)
167
168 24 Nov 2008; Gordon Malm <gengor@gentoo.org>
169 +hardened-sources-2.6.27-r2.ebuild:
170 Bump to Linux 2.6.27.7 and latest grsecurity patch.
171
172 19 Nov 2008; Gordon Malm <gengor@gentoo.org>
173 -hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r4.ebuild:
174 Remove old versions.
175
176 19 Nov 2008; Gordon Malm <gengor@gentoo.org>
177 hardened-sources-2.6.27.ebuild, hardened-sources-2.6.27-r1.ebuild:
178 Remove all but ~amd64 & ~x86 keywords (broken elsewhere).
179
180 16 Nov 2008; nixnut <nixnut@gentoo.org>
181 hardened-sources-2.6.25-r10.ebuild:
182 Stable on ppc
183
184 15 Nov 2008; Gordon Malm <gengor@gentoo.org>
185 hardened-sources-2.6.25-r10.ebuild:
186 Stable amd64/x86.
187
188 *hardened-sources-2.6.26-r6 (12 Nov 2008)
189
190 12 Nov 2008; Gordon Malm <gengor@gentoo.org>
191 +hardened-sources-2.6.26-r6.ebuild:
192 Bump to Linux 2.6.26.8 and fix security bug #245650.
193
194 *hardened-sources-2.6.25-r10 (12 Nov 2008)
195
196 12 Nov 2008; Gordon Malm <gengor@gentoo.org>
197 +hardened-sources-2.6.25-r10.ebuild:
198 Update to Linux 2.6.25.20 and fix bugs #245427, #245650.
199
200 *hardened-sources-2.6.27-r1 (09 Nov 2008)
201
202 09 Nov 2008; Gordon Malm <gengor@gentoo.org>
203 +hardened-sources-2.6.27-r1.ebuild:
204 Bump to stable kernel 2.6.27.5 and latest grsecurity patch.
205
206 *hardened-sources-2.6.27 (04 Nov 2008)
207
208 04 Nov 2008; Gordon Malm <gengor@gentoo.org>
209 +hardened-sources-2.6.27.ebuild:
210 Initial 2.6.27 release.
211
212 *hardened-sources-2.6.26-r5 (03 Nov 2008)
213
214 03 Nov 2008; Gordon Malm <gengor@gentoo.org>
215 -hardened-sources-2.6.25-r7.ebuild, -hardened-sources-2.6.26-r2.ebuild,
216 +hardened-sources-2.6.26-r5.ebuild:
217 2.6.26-r5: Bump to Linux 2.6.26.7, PaX updates.
218 Clean out some old versions.
219
220 02 Nov 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r9.ebuild:
221 Stable on ppc
222
223 30 Oct 2008; Gordon Malm <gengor@gentoo.org>
224 hardened-sources-2.6.25-r9.ebuild:
225 Stable on amd64/x86.
226
227 *hardened-sources-2.6.25-r9 (26 Oct 2008)
228
229 26 Oct 2008; Gordon Malm <gengor@gentoo.org>
230 +hardened-sources-2.6.25-r9.ebuild:
231 Update to Linux 2.6.25.19
232
233 15 Oct 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r8.ebuild:
234 Stable on ppc
235
236 *hardened-sources-2.6.26-r4 (14 Oct 2008)
237
238 14 Oct 2008; Gordon Malm <gengor@gentoo.org>
239 -hardened-sources-2.6.26-r3.ebuild, +hardened-sources-2.6.26-r4.ebuild:
240 Update to latest grsecurity patch, fixing building of non-modular kernels.
241
242 *hardened-sources-2.6.26-r3 (12 Oct 2008)
243
244 12 Oct 2008; Gordon Malm <gengor@gentoo.org>
245 hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r1.ebuild,
246 +hardened-sources-2.6.26-r3.ebuild:
247 2.6.26-r3: Update to Linux 2.6.26.6 and latest grsecurity patch.
248 2.6.26-r1: Removed.
249 2.6.25-r8: Stable amd64/x86.
250
251 *hardened-sources-2.6.25-r8 (09 Oct 2008)
252
253 09 Oct 2008; Gordon Malm <gengor@gentoo.org>
254 -hardened-sources-2.6.25-r4.ebuild, -hardened-sources-2.6.25-r5.ebuild,
255 -hardened-sources-2.6.25-r6.ebuild, +hardened-sources-2.6.25-r8.ebuild:
256 Update to genpatches-11 and Linux 2.6.25.18. Remove old versions.
257
258 20 Sep 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r7.ebuild:
259 Stable on ppc
260
261 17 Sep 2008; Gordon Malm <gengor@gentoo.org>
262 hardened-sources-2.6.25-r7.ebuild:
263 Stable amd64/x86.
264
265 *hardened-sources-2.6.26-r2 (13 Sep 2008)
266
267 13 Sep 2008; Gordon Malm <gengor@gentoo.org>
268 -hardened-sources-2.6.26.ebuild, +hardened-sources-2.6.26-r2.ebuild:
269 2.6.26-r2: Update to Linux 2.6.26.5, new grsecurity patch adding
270 PAX_REFCOUNT feature, fix bug #237473 (CVE-2008-3525). 2.6.26: Removed.
271
272 *hardened-sources-2.6.25-r7 (13 Sep 2008)
273
274 13 Sep 2008; Gordon Malm <gengor@gentoo.org>
275 +hardened-sources-2.6.25-r7.ebuild:
276 Add 2.6.25-r7, fixing bug #237473 (CVE-2008-3525) and a PaX bug.
277
278 10 Sep 2008; Gordon Malm <gengor@gentoo.org>
279 hardened-sources-2.6.25-r4.ebuild, hardened-sources-2.6.25-r5.ebuild,
280 hardened-sources-2.6.25-r6.ebuild, hardened-sources-2.6.26.ebuild,
281 hardened-sources-2.6.26-r1.ebuild:
282 Update DESCRIPTION and HGPV_URI.
283
284 *hardened-sources-2.6.25-r6 (09 Sep 2008)
285
286 09 Sep 2008; Gordon Malm <gengor@gentoo.org>
287 -hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25-r6.ebuild:
288 2.6.25-r6: Update to Linux 2.6.25.17.
289 2.6.24-r3: Removed.
290
291 08 Sep 2008; Gordon Malm <gengor@gentoo.org>
292 hardened-sources-2.6.25-r5.ebuild:
293 Stable on amd64/x86
294
295 07 Sep 2008; Gordon Malm <gengor@gentoo.org> metadata.xml:
296 Update my email address.
297
298 31 Aug 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r4.ebuild:
299 stable on ppc
300
301 *hardened-sources-2.6.26-r1 (23 Aug 2008)
302 *hardened-sources-2.6.25-r5 (23 Aug 2008)
303
304 23 Aug 2008; Bryan D. Stine <battousai@gentoo.org>
305 -hardened-sources-2.6.23-r13.ebuild, -hardened-sources-2.6.25-r3.ebuild,
306 hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.25-r5.ebuild,
307 +hardened-sources-2.6.26-r1.ebuild:
308 Bump to 2.6.25-r5 for updated patches and upstream .10 kernel, fixing
309 security bug #235221. Bump to 2.6.26-r1 for upstream .3 kernel, also
310 fixing security bug #235221. Marked 2.6.25-r4 stable on amd64 and x86.
311 Removed 2.6.23-r13 and 2.6.25-r3. Commit on behalf of Gordon Malm
312 (gengor).
313
314 *hardened-sources-2.6.26 (18 Aug 2008)
315 *hardened-sources-2.6.25-r4 (18 Aug 2008)
316
317 18 Aug 2008; <solar@gentoo.org> -hardened-sources-2.6.25-r2.ebuild,
318 +hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.26.ebuild:
319 - proxy commit for gengor 2.6.26: Initial 2.6.26 release. 2.6.25-r4: Update
320 to Linux 2.6.25.15. Fixes security bugs #234799, #234803 and #234812.
321 2.6.25-r2: Removed.
322
323 16 Aug 2008; Torsten Veller <tove@gentoo.org> metadata.xml:
324 Remove phreak from metadata.xml (#96398)
325
326 *hardened-sources-2.6.25-r3 (31 Jul 2008)
327
328 31 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.24-r2.ebuild,
329 -hardened-sources-2.6.25.ebuild, -hardened-sources-2.6.25-r1.ebuild,
330 +hardened-sources-2.6.25-r3.ebuild:
331 - 2.6.25-r3: Update to Linux 2.6.25.13 and new grsecurity patch. Multiple
332 fixes, including security bug #231750.
333
334 28 Jul 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.24-r3.ebuild:
335 Stable on ppc
336
337 *hardened-sources-2.6.25-r2 (05 Jul 2008)
338
339 05 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r11.ebuild,
340 -hardened-sources-2.6.23-r12.ebuild, hardened-sources-2.6.24-r3.ebuild,
341 +hardened-sources-2.6.25-r2.ebuild:
342 2.6.23-r4: Stable x86/amd64
343 2.6.25-r2: Update to Linux 2.6.25.10 and latest grsecurity release.
344 2.6.23-r{11,12}: Removed due to multiple vulns.
345 (gengor & kerframil)
346
347 04 Jul 2008; nixnut <nixnut@gentoo.org>
348 hardened-sources-2.6.23-r13.ebuild:
349 Stable on ppc
350
351 *hardened-sources-2.6.25-r1 (30 Jun 2008)
352
353 30 Jun 2008; <solar@gentoo.org> hardened-sources-2.6.23-r13.ebuild,
354 +hardened-sources-2.6.25-r1.ebuild:
355 2.6.25-r1: Brings in Linux -stable tree patches 2.6.25.{7,8,9} and newer
356 grsecurity release. 2.6.23-r13: x86/amd64 stable
357
358 *hardened-sources-2.6.25 (17 Jun 2008)
359 *hardened-sources-2.6.24-r3 (17 Jun 2008)
360 *hardened-sources-2.6.23-r13 (17 Jun 2008)
361
362 17 Jun 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r13.ebuild,
363 +hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25.ebuild:
364 * 2.6.23-r13: Fixes security bugs #198997, #212136, #222331, #222635,
365 #224647, #225461, other fixes. * 2.6.24-r3: Fixes security bugs #212136,
366 #222331, #222635, #224647, #225461, grsec/PaX updates/fixes, other fixes. *
367 2.6.25: Initial 2.6.25 release.
368
369 15 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r12.ebuild:
370 - fasttrack to stable x86/amd64
371
372 11 May 2008; Sven Wegener <swegener@gentoo.org> Manifest:
373 Fix broken digest for linux-2.6.24.tar.bz2.
374
375 *hardened-sources-2.6.24-r2 (11 May 2008)
376 *hardened-sources-2.6.23-r12 (11 May 2008)
377
378 11 May 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r7.ebuild,
379 -hardened-sources-2.6.23-r9.ebuild, -hardened-sources-2.6.23-r10.ebuild,
380 +hardened-sources-2.6.23-r12.ebuild, -hardened-sources-2.6.24.ebuild,
381 -hardened-sources-2.6.24-r1.ebuild, +hardened-sources-2.6.24-r2.ebuild:
382 proxy commit for gengor. 2.6.23-r11 shortlog: Fixes security bugs 220691,
383 220975, 220979, 221123. 2.6.24-r2 not-so-shortlog: Fixes bug 215442,
384 security bugs 219901, 220691, 220975, 220979, 221123. New
385 genpatches/grsecurity with numerous updates & fixes. 2.6.23-r7->2.6.23-r10
386 should be removed as far as I'm concerned, everything else remove due to
387 vulnerable to numerous security bugs or brokeness.
388
389 10 May 2008; nixnut <nixnut@gentoo.org>
390 hardened-sources-2.6.23-r11.ebuild:
391 Stable on ppc
392
393 05 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r11.ebuild:
394 - -r11 stable on x86/amd64
395
396 *hardened-sources-2.6.23-r11 (01 May 2008)
397
398 01 May 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r11.ebuild:
399 - version bump to fix ulgy linux bugs
400
401 *hardened-sources-2.6.24-r1 (30 Apr 2008)
402
403 30 Apr 2008; Christian Heim <phreak@gentoo.org>
404 +hardened-sources-2.6.24-r1.ebuild:
405 Revision bump (thanks to Kerin and Gordon, again), pulling
406 genpatches-2.6.24-7, solving #219089. Additionally contains further security
407 fixes plus some minor updates.
408
409 *hardened-sources-2.6.23-r10 (30 Apr 2008)
410
411 30 Apr 2008; Christian Heim <phreak@gentoo.org>
412 +hardened-sources-2.6.23-r10.ebuild:
413 Revision bump (thanks to Kerin and Gordon, again), solving #213811, #219089.
414 Additional contains "various other fixes".
415
416 09 Apr 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
417 Update the longdescription in metadata, thanks to Gordon Malm.
418
419 08 Apr 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.23-r9.ebuild:
420 Stable on ppc wrt bug #213255
421
422 07 Apr 2008; <solar@gentoo.org> -hardened-sources-2.4.35-r2.ebuild,
423 -hardened-sources-2.6.23-r8.ebuild, hardened-sources-2.6.23-r9.ebuild:
424 - stable on x86/amd64 per request. Removed obsolete ebuilds
425
426 *hardened-sources-2.6.24 (07 Apr 2008)
427
428 07 Apr 2008; Christian Heim <phreak@gentoo.org>
429 +hardened-sources-2.6.24.ebuild:
430 Adding ebuild for hardened-sources-2.6.24 (many thanks to Kerin Millar
431 <kerframil at gmail.com> and Gordon Malm <bugs-gentoo-org-02 at bumpin.org>
432 for the many contributions and their continued effort in #216612) based on
433 2.6.24 and genpatches-2.6.24-5.
434
435 The current ebuild/patchset contains these things:
436 * Incoporates unmodified grsec-2.1.11-2.6.24.4-200803262003 patch
437 * Introduces bespoke server and workstation oriented security levels
438 * VDSO_COMPAT cannot be enabled during runtime if PaX is enabled
439
440 30 Mar 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
441 Fix the metadata.xml (Kerin isn't a dev, though he and Gordon are
442 maintaining it).
443
444 24 Mar 2008; Christian Heim <phreak@gentoo.org>
445 hardened-sources-2.4.35-r2.ebuild:
446 Fixing SRC_URI for 2.4.35-r2.
447
448 *hardened-sources-2.6.23-r9 (22 Mar 2008)
449
450 22 Mar 2008; Christian Heim <phreak@gentoo.org>
451 +hardened-sources-2.6.23-r9.ebuild:
452 * Revision bump, rebasing the patchset against genpatches-2.6.23-10.
453 * Change the default GIDs for some grsecurity options
454 * Revamp the Hardened [Gentoo] security level and make it the default level
455 * Fixing compilation on ia64 with CONFIG_MODULES=y (loadable module support)
456 * Fix a recursive lock -- call to capable() within ptrace_attach()
457 * Fix bug that allows audit and iscsi operations to be controlled via netlink
458
459 *hardened-sources-2.6.23-r8 (27 Feb 2008)
460
461 27 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r8.ebuild:
462 - version bump from Kerin Millar bug 210026
463
464 17 Feb 2008; <solar@gentoo.org> metadata.xml,
465 -hardened-sources-2.4.33.4.ebuild, -hardened-sources-2.6.20-r6.ebuild,
466 -hardened-sources-2.6.20-r10.ebuild, -hardened-sources-2.6.23-r4.ebuild,
467 -hardened-sources-2.6.23-r6.ebuild, hardened-sources-2.6.23-r7.ebuild:
468 - stable on x86 and remove old ebuilds
469
470 15 Feb 2008; <solar@gentoo.org> hardened-sources-2.6.23-r7.ebuild:
471 - stable on amd64 per request of amd64 lead
472
473 *hardened-sources-2.6.23-r7 (11 Feb 2008)
474
475 11 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r7.ebuild:
476 - version bump from kerin.millar
477 Changes:
478
479 * Bump to genpatches-base-2.6.23-9
480 * Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
481 * Disables COMPAT_VDSO in x86/defconfig
482 * Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig
483
484 25 Jan 2008; Christian Heim <phreak@gentoo.org>
485 -hardened-sources-2.6.22-r8.ebuild:
486 Cleaning up old versions.
487
488 *hardened-sources-2.6.23-r6 (25 Jan 2008)
489
490 25 Jan 2008; Christian Heim <phreak@gentoo.org>
491 -hardened-sources-2.6.23-r5.ebuild, +hardened-sources-2.6.23-r6.ebuild:
492 Revision bump, pulling in the latest genpatches.
493
494 *hardened-sources-2.6.23-r5 (24 Dec 2007)
495
496 24 Dec 2007; Christian Heim <phreak@gentoo.org>
497 hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
498 hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
499 hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
500 Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
501
502 24 Dec 2007; Christian Heim <phreak@gentoo.org>
503 -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
504 -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
505 -hardened-sources-2.6.23-r3.ebuild:
506 Cleaning out some unused, old versions.
507
508 24 Dec 2007; Christian Heim <phreak@gentoo.org>
509 hardened-sources-2.6.23-r4.ebuild:
510 Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
511 in the tree for long, but there isn't much of a difference between this and
512 -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
513
514 *hardened-sources-2.6.23-r4 (23 Dec 2007)
515
516 23 Dec 2007; Christian Heim <phreak@gentoo.org>
517 +hardened-sources-2.6.23-r4.ebuild:
518 Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
519
520 *hardened-sources-2.6.23-r3 (04 Dec 2007)
521
522 04 Dec 2007; Christian Heim <phreak@gentoo.org>
523 +hardened-sources-2.6.23-r3.ebuild:
524 Revision bump, pulling in 2.6.23.9.
525
526 *hardened-sources-2.6.23-r2 (25 Nov 2007)
527
528 25 Nov 2007; Christian Heim <phreak@gentoo.org>
529 +hardened-sources-2.6.23-r2.ebuild:
530 Updated patchset, thanks to solar.
531
532 *hardened-sources-2.6.23-r1 (31 Oct 2007)
533
534 31 Oct 2007; Christian Heim <phreak@gentoo.org>
535 +hardened-sources-2.6.23-r1.ebuild:
536 Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
537
538 29 Oct 2007; <solar@gentoo.org> metadata.xml:
539 - update metadata.xml
540
541 25 Oct 2007; Christian Heim <phreak@gentoo.org>
542 hardened-sources-2.6.22-r8.ebuild:
543 Marking 2.6.22-r8 stable on amd64 and x86.
544
545 21 Oct 2007; Christian Heim <phreak@gentoo.org>
546 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
547 -hardened-sources-2.6.21-r4.ebuild:
548 Removing old ebuilds.
549
550 *hardened-sources-2.4.35-r2 (21 Oct 2007)
551
552 21 Oct 2007; Christian Heim <phreak@gentoo.org>
553 +hardened-sources-2.4.35-r2.ebuild:
554 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
555 patches.
556
557 *hardened-sources-2.6.22-r8 (21 Oct 2007)
558
559 21 Oct 2007; Christian Heim <phreak@gentoo.org>
560 +hardened-sources-2.6.22-r8.ebuild:
561 Yet another new patch, hopefully fixing the remaining issues we had w/
562 2.6.22. Candidate for stabling.
563
564 *hardened-sources-2.6.23 (13 Oct 2007)
565
566 13 Oct 2007; Christian Heim <phreak@gentoo.org>
567 +hardened-sources-2.6.23.ebuild:
568 Initial hardened-sources-2.6.23. If people still have problems w/ bug
569 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
570
571 11 Oct 2007; Christian Heim <phreak@gentoo.org>
572 hardened-sources-2.6.20-r10.ebuild:
573 Pulling in yet another new genpatches version, fixing the PWC bug for real.
574
575 04 Oct 2007; Christian Heim <phreak@gentoo.org>
576 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
577 Removing old versions.
578
579 *hardened-sources-2.6.22-r7 (01 Oct 2007)
580
581 01 Oct 2007; Christian Heim <phreak@gentoo.org>
582 +hardened-sources-2.6.22-r7.ebuild:
583 Revision bump, pulling in a newer patch. Should fix #194276.
584
585 30 Sep 2007; Christian Heim <phreak@gentoo.org>
586 hardened-sources-2.6.20-r10.ebuild:
587 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
588 Mike Doty).
589
590 *hardened-sources-2.6.22-r6 (26 Sep 2007)
591
592 26 Sep 2007; Christian Heim <phreak@gentoo.org>
593 +hardened-sources-2.6.22-r6.ebuild:
594 Revision bump, grabbing up till Linux 2.6.22.9.
595
596 24 Sep 2007; Christian Heim <phreak@gentoo.org>
597 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
598 Cleaning up further.
599
600 *hardened-sources-2.6.20-r10 (24 Sep 2007)
601
602 24 Sep 2007; Christian Heim <phreak@gentoo.org>
603 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
604 +hardened-sources-2.6.20-r10.ebuild:
605 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
606 revisions.
607
608 *hardened-sources-2.6.22-r5 (22 Sep 2007)
609
610 22 Sep 2007; Christian Heim <phreak@gentoo.org>
611 +hardened-sources-2.6.22-r5.ebuild:
612 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
613
614 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
615 Removing johnm from metadata.xml (see #186467 for reference).
616
617 *hardened-sources-2.6.22-r4 (17 Sep 2007)
618
619 17 Sep 2007; Christian Heim <phreak@gentoo.org>
620 +hardened-sources-2.6.22-r4.ebuild:
621 Revision bump, hopefully fixing all those weird PAX failures.
622
623 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
624 Updating the metadata.xml.
625
626 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
627 Removing tocharian from metadata due to his retirement (see #71718 for
628 reference).
629
630 *hardened-sources-2.6.20-r9 (30 Aug 2007)
631
632 30 Aug 2007; Christian Heim <phreak@gentoo.org>
633 +hardened-sources-2.6.20-r9.ebuild:
634 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
635
636 29 Aug 2007; Christian Heim <phreak@gentoo.org>
637 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
638 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
639 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
640 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
641 -hardened-sources-2.6.22-r2.ebuild:
642 Removing some redundant versions.
643
644 *hardened-sources-2.4.35-r1 (29 Aug 2007)
645
646 29 Aug 2007; Christian Heim <phreak@gentoo.org>
647 +hardened-sources-2.4.35-r1.ebuild:
648 Revision bump, new grsecurity patch.
649
650 *hardened-sources-2.6.20-r8 (26 Aug 2007)
651
652 26 Aug 2007; Christian Heim <phreak@gentoo.org>
653 +hardened-sources-2.6.20-r8.ebuild:
654 Revision bump for Linux 2.6.20.17.
655
656 *hardened-sources-2.6.22-r3 (22 Aug 2007)
657
658 22 Aug 2007; Christian Heim <phreak@gentoo.org>
659 +hardened-sources-2.6.22-r3.ebuild:
660 Revision bump for Linux 2.6.22.4.
661
662 16 Aug 2007; Christian Heim <phreak@gentoo.org>
663 hardened-sources-2.6.22-r2.ebuild:
664 Updated patchset, to fix the alignment against 2.6.22.3.
665
666 *hardened-sources-2.6.22-r2 (16 Aug 2007)
667
668 16 Aug 2007; Christian Heim <phreak@gentoo.org>
669 +hardened-sources-2.6.22-r2.ebuild:
670 Revision bump for Linux 2.6.22.3.
671
672 *hardened-sources-2.4.35 (16 Aug 2007)
673
674 16 Aug 2007; Christian Heim <phreak@gentoo.org>
675 +hardened-sources-2.4.35.ebuild:
676 Version bump, initial version for Linux 2.4.35.
677
678 *hardened-sources-2.6.21-r4 (16 Aug 2007)
679
680 16 Aug 2007; Christian Heim <phreak@gentoo.org>
681 +hardened-sources-2.6.21-r4.ebuild:
682 Revision bump for Linux 2.6.21.6.
683
684 *hardened-sources-2.6.20-r7 (16 Aug 2007)
685
686 16 Aug 2007; Christian Heim <phreak@gentoo.org>
687 +hardened-sources-2.6.20-r7.ebuild:
688 Revision bump for Linux 2.6.20.16.
689
690 *hardened-sources-2.6.22-r1 (13 Aug 2007)
691
692 13 Aug 2007; Christian Heim <phreak@gentoo.org>
693 +hardened-sources-2.6.22-r1.ebuild:
694 Yet another revision bump.
695
696 *hardened-sources-2.6.22 (10 Aug 2007)
697
698 10 Aug 2007; Christian Heim <phreak@gentoo.org>
699 +hardened-sources-2.6.22.ebuild:
700 Initial release for 2.6.22. If you are using hardened-sources on a desktop
701 machine (P4 or newer), be aware you might need to disable
702 CONFIG_PAX_PAGEEXEC.
703
704 04 Aug 2007; Christian Heim <phreak@gentoo.org>
705 hardened-sources-2.6.20-r6.ebuild:
706 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
707 2.6.20.15.
708
709 10 Jul 2007; Christian Heim <phreak@gentoo.org>
710 hardened-sources-2.6.20-r5.ebuild:
711 Marking hardened-sources-2.6.20-r5 stable on ppc.
712
713 10 Jul 2007; Christian Heim <phreak@gentoo.org>
714 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
715 Cleanup.
716
717 *hardened-sources-2.6.20-r6 (08 Jul 2007)
718
719 08 Jul 2007; Christian Heim <phreak@gentoo.org>
720 +hardened-sources-2.6.20-r6.ebuild:
721 Revision bump, grabbing yet another stable release.
722
723 17 Jun 2007; Christian Heim <phreak@gentoo.org>
724 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
725 -hardened-sources-2.6.21-r2.ebuild:
726 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
727 alpha stable KEYWORD by mistake.
728
729 17 Jun 2007; Christian Heim <phreak@gentoo.org>
730 hardened-sources-2.6.20-r5.ebuild:
731 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
732 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
733
734 *hardened-sources-2.6.21-r3 (12 Jun 2007)
735
736 12 Jun 2007; Christian Heim <phreak@gentoo.org>
737 +hardened-sources-2.6.21-r3.ebuild:
738 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
739 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
740 love.
741
742 *hardened-sources-2.6.20-r5 (11 Jun 2007)
743
744 11 Jun 2007; Christian Heim <phreak@gentoo.org>
745 +hardened-sources-2.6.20-r5.ebuild:
746 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
747 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
748 love.
749
750 *hardened-sources-2.4.34.5 (11 Jun 2007)
751
752 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
753 +hardened-sources-2.4.34.5.ebuild:
754 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
755
756 30 May 2007; Christian Heim <phreak@gentoo.org>
757 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
758 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
759 stale ebuild(s).
760
761 30 May 2007; Christian Heim <phreak@gentoo.org>
762 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
763 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
764 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
765 Doing some cleanups, remove stale ebuilds.
766
767 26 May 2007; Christian Heim <phreak@gentoo.org>
768 hardened-sources-2.6.21-r2.ebuild:
769 Fixing the grsecurity patch, had one '};' too much.
770
771 *hardened-sources-2.6.21-r2 (26 May 2007)
772
773 26 May 2007; Christian Heim <phreak@gentoo.org>
774 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
775 +hardened-sources-2.6.21-r2.ebuild:
776 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
777 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
778
779 *hardened-sources-2.6.20-r4 (26 May 2007)
780
781 26 May 2007; Christian Heim <phreak@gentoo.org>
782 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
783 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
784 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
785
786 15 May 2007; Christian Heim <phreak@gentoo.org>
787 hardened-sources-2.6.20-r3.ebuild:
788 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
789 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
790 grsecurity patch fail in that exact same hunk.
791
792 *hardened-sources-2.6.20-r3 (15 May 2007)
793
794 15 May 2007; Christian Heim <phreak@gentoo.org>
795 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
796 Revision bump, incorporating Linux 2.6.20.11.
797
798 *hardened-sources-2.6.21-r1 (11 May 2007)
799
800 11 May 2007; Christian Heim <phreak@gentoo.org>
801 +hardened-sources-2.6.21-r1.ebuild:
802 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
803 mentioned in #177234.
804
805 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
806 files/digest-hardened-sources-2.6.21, Manifest:
807 Fix Manifest/digest for linux-2.6.21.tar.bz2
808
809 06 May 2007; Christian Heim <phreak@gentoo.org>
810 hardened-sources-2.6.21.ebuild:
811 Bumping the hardened-patches version, needed for the fix for #177234.
812
813 *hardened-sources-2.6.21 (02 May 2007)
814
815 02 May 2007; Christian Heim <phreak@gentoo.org>
816 +hardened-sources-2.6.21.ebuild:
817 Version bump, Linux 2.6.21-hardened.
818
819 29 Apr 2007; Christian Heim <phreak@gentoo.org>
820 hardened-sources-2.6.20-r2.ebuild:
821 Adding ~ia64 on Ned's request.
822
823 29 Apr 2007; Christian Heim <phreak@gentoo.org>
824 hardened-sources-2.6.20-r2.ebuild:
825 Fixing the included grsecurity patch, wasn't alligning due to the Index:
826 header line(s).
827
828 29 Apr 2007; Christian Heim <phreak@gentoo.org>
829 hardened-sources-2.6.20-r2.ebuild:
830 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
831
832 *hardened-sources-2.6.20-r2 (10 Apr 2007)
833
834 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
835 +hardened-sources-2.6.20-r2.ebuild:
836 Version bump, on behalf of phreak
837
838 *hardened-sources-2.6.20-r1 (04 Apr 2007)
839
840 04 Apr 2007; Christian Heim <phreak@gentoo.org>
841 +hardened-sources-2.6.20-r1.ebuild:
842 Revision bump, grabbing a newer grsecurity snapshot.
843
844 *hardened-sources-2.6.20 (25 Mar 2007)
845
846 25 Mar 2007; Christian Heim <phreak@gentoo.org>
847 +hardened-sources-2.6.20.ebuild:
848 Finally a hardened-sources version for 2.6.20; many people have been waiting
849 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
850 testbox.
851
852 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
853 hardened-sources-2.6.18-r6.ebuild:
854 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
855
856 *hardened-sources-2.6.18-r6 (16 Mar 2007)
857
858 16 Mar 2007; Christian Heim <phreak@gentoo.org>
859 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
860 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
861 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
862 supposed to be.
863
864 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
865 Fixing the Manifest, the previous one was broken (as in still had the
866 deleted ebuild in it).
867
868 06 Mar 2007; Christian Heim <phreak@gentoo.org>
869 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
870 +hardened-sources-2.6.18-r5.ebuild:
871 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
872 Linux 2.6.18.8. Also cleaning up the older version.
873
874 *hardened-sources-2.6.18-r5 (06 Mar 2007)
875
876 06 Mar 2007; Christian Heim <phreak@gentoo.org>
877 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
878 +hardened-sources-2.6.18-r5.ebuild:
879 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
880 Linux 2.6.18.8. Also cleaning up the older version.
881
882 24 Feb 2007; Christian Heim <phreak@gentoo.org>
883 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
884 -hardened-sources-2.6.19-r5.ebuild:
885 Removing some of the old version, that didn't work.
886
887 *hardened-sources-2.6.19-r6 (12 Feb 2007)
888
889 12 Feb 2007; Christian Heim <phreak@gentoo.org>
890 +hardened-sources-2.6.19-r6.ebuild:
891 Revision bump, including a new grsec version fixing #166235.
892
893 *hardened-sources-2.4.34 (24 Jan 2007)
894
895 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
896 Manifest:
897 updating Manifest with checksums of new tarball and ebuild
898
899 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
900 +hardened-sources-2.4.34.ebuild:
901 I added new hardened sources 2.4 update, this is a critical path
902 security bugfix - all users of h-s are strongly advised
903 to update their existing hardened sources to this version.
904 It contains a fix for a kernel vulnerability that is pertaining
905 to the PaX changes to virtual memory management, possibly leading
906 to a local kernel exploit ... see grsecurity.net forums and homepage
907
908 23 Jan 2007; Christian Heim <phreak@gentoo.org>
909 files/digest-hardened-sources-2.6.19-r5, Manifest:
910 Fixing the patch-tarball digest.
911
912 *hardened-sources-2.6.19-r5 (23 Jan 2007)
913
914 23 Jan 2007; Christian Heim <phreak@gentoo.org>
915 +hardened-sources-2.6.19-r5.ebuild:
916 Revision bump, closing the recently discovered PaX expand_stack()
917 vulnerability.
918
919 *hardened-sources-2.6.19-r4 (14 Jan 2007)
920
921 14 Jan 2007; Christian Heim <phreak@gentoo.org>
922 +hardened-sources-2.6.19-r4.ebuild:
923 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
924 dropping the randomized PID feature.
925
926 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
927 hardened-sources-2.4.33.4.ebuild:
928 stable x86, bug #161171
929
930 *hardened-sources-2.6.19-r3 (27 Dec 2006)
931
932 27 Dec 2006; Christian Heim <phreak@gentoo.org>
933 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
934 Revision bump for bug #157186 and #158786.
935
936 *hardened-sources-2.6.18-r4 (27 Dec 2006)
937
938 27 Dec 2006; Christian Heim <phreak@gentoo.org>
939 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
940 Revision bump for bug #157186.
941
942 *hardened-sources-2.6.19-r2 (23 Dec 2006)
943
944 23 Dec 2006; Christian Heim <phreak@gentoo.org>
945 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
946 Revision bump to pull in genpatches-2.6.19-3 for #157186.
947
948 17 Dec 2006; Christian Heim <phreak@gentoo.org>
949 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
950 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
951 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
952 hardened-sources-2.6.19-r1.ebuild:
953 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
954 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
955
956 *hardened-sources-2.4.33.4 (17 Dec 2006)
957
958 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
959 +hardened-sources-2.4.33.4.ebuild:
960 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
961 and quilting
962
963 *hardened-sources-2.6.19-r1 (14 Dec 2006)
964
965 14 Dec 2006; Christian Heim <phreak@gentoo.org>
966 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
967 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
968 for reporting).
969
970 *hardened-sources-2.6.19 (13 Dec 2006)
971
972 13 Dec 2006; Christian Heim <phreak@gentoo.org>
973 +hardened-sources-2.6.19.ebuild:
974 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
975 Brad for providing that prompt update.
976
977 *hardened-sources-2.6.18-r3 (13 Dec 2006)
978
979 13 Dec 2006; Christian Heim <phreak@gentoo.org>
980 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
981 +hardened-sources-2.6.18-r3.ebuild:
982 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
983 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
984
985 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
986 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
987
988 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
989 Stable on ppc wrt bug 157356
990
991 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
992 hardened-sources-2.6.18.ebuild:
993 stable x86, bug #157356
994
995 *hardened-sources-2.6.18-r2 (06 Dec 2006)
996
997 06 Dec 2006; Christian Heim <phreak@gentoo.org>
998 +hardened-sources-2.6.18-r2.ebuild:
999 Revision bump, including 2.6.18.5 (via genpatches) and
1000 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
1001 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
1002 redesign.
1003
1004 06 Dec 2006; Christian Heim <phreak@gentoo.org>
1005 hardened-sources-2.6.18.ebuild:
1006 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
1007 of Mike Doty).
1008
1009 *hardened-sources-2.6.18-r1 (23 Nov 2006)
1010
1011 23 Nov 2006; Christian Heim <phreak@gentoo.org>
1012 +hardened-sources-2.6.18-r1.ebuild:
1013 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
1014
1015 *hardened-sources-2.6.18 (11 Nov 2006)
1016
1017 11 Nov 2006; Christian Heim <phreak@gentoo.org>
1018 +hardened-sources-2.6.18.ebuild:
1019 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
1020
1021 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
1022 - mark amd64 stable also. bug #151877
1023
1024 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
1025 - mark 2.6.17-r1 stable
1026
1027 27 Aug 2006; Christian Heim <phreak@gentoo.org>
1028 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
1029 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
1030
1031 *hardened-sources-2.6.17-r1 (26 Aug 2006)
1032
1033 26 Aug 2006; Christian Heim <phreak@gentoo.org>
1034 +hardened-sources-2.6.17-r1.ebuild:
1035 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
1036 grsecurity patch.
1037
1038 *hardened-sources-2.6.17 (17 Aug 2006)
1039
1040 17 Aug 2006; Christian Heim <phreak@gentoo.org>
1041 +hardened-sources-2.6.17.ebuild:
1042 Bumping the hardened-sources-2.6 series to 2.6.17, using
1043 genpatches-2.6.17-6.base.
1044
1045 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
1046 - stable on x86 and amd64
1047
1048 *hardened-sources-2.6.16-r11 (15 Jul 2006)
1049
1050 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
1051 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
1052 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
1053 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
1054 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
1055 crusty ebuilds
1056
1057 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
1058 hardened-sources-2.6.16-r10.ebuild:
1059 marking stable on x86 and amd64
1060
1061 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
1062 - 2.4.32-r6 stable on x86. RSBAC state unknown
1063
1064 *hardened-sources-2.4.32-r7 (10 Jul 2006)
1065
1066 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
1067 +hardened-sources-2.4.32-r7.ebuild:
1068 Bump PaX for RSBAC to test-17
1069
1070 *hardened-sources-2.6.16-r9 (03 Jul 2006)
1071
1072 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
1073 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
1074 hardened-sources-2.6.16 bump to latest -base.
1075
1076 *hardened-sources-2.4.32-r6 (30 Jun 2006)
1077
1078 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
1079 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
1080 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
1081 sysctl controlable resource logging
1082
1083 *hardened-sources-2.6.16-r7 (05 Jun 2006)
1084
1085 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
1086 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
1087 push new 2.6.16 release in preparation for stable
1088
1089 22 May 2006; <solar@gentoo.org> :
1090 - redigest bug 134002
1091
1092 *hardened-sources-2.4.32-r5 (16 May 2006)
1093
1094 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
1095 +hardened-sources-2.4.32-r5.ebuild:
1096 Fixes rsbac common patching (new patch in new -r5 patchset)
1097
1098 *hardened-sources-2.4.32-r4 (13 May 2006)
1099
1100 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
1101 +hardened-sources-2.4.32-r4.ebuild:
1102 - security bumps
1103
1104 *hardened-sources-2.6.16-r6 (03 May 2006)
1105
1106 03 May 2006; John Mylchreest <johnm@gentoo.org>
1107 +hardened-sources-2.6.16-r6.ebuild:
1108 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
1109
1110 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1111 hardened-sources-2.6.14-r8.ebuild:
1112 fix x86_64 build problem, this will delay the digest issue again for a short
1113 while but it will sort itself out
1114
1115 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1116 hardened-sources-2.6.14-r8.ebuild:
1117 bump hardened patchset
1118
1119 27 Apr 2006; Alec Warner <antarus@gentoo.org>
1120 files/digest-hardened-sources-2.4.32-r2,
1121 files/digest-hardened-sources-2.4.32-r3,
1122 files/digest-hardened-sources-2.6.14-r8, Manifest:
1123 Fixing duff SHA256 digests: Bug # 131293
1124
1125 *hardened-sources-2.6.16-r5 (27 Apr 2006)
1126
1127 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
1128 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
1129 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
1130 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
1131 cleanup of old uneccessary sources
1132
1133 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1134 fix digest
1135
1136 *hardened-sources-2.6.14-r8 (20 Apr 2006)
1137
1138 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1139 +hardened-sources-2.6.14-r8.ebuild:
1140 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
1141
1142 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1143 Turning on gpg-signing again, and recomitting
1144
1145 *hardened-sources-2.6.16-r4 (20 Apr 2006)
1146
1147 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1148 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
1149 +hardened-sources-2.6.16-r4.ebuild:
1150 Fix numerous security vulns
1151
1152 *hardened-sources-2.4.32-r3 (16 Apr 2006)
1153
1154 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
1155 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
1156 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
1157 - security bump for bug #112791. Removed old ebuilds
1158
1159 *hardened-sources-2.6.16-r3 (15 Apr 2006)
1160
1161 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
1162 +hardened-sources-2.6.16-r3.ebuild:
1163 Removing silly localversion which I missed
1164
1165 *hardened-sources-2.6.14-r7 (14 Apr 2006)
1166
1167 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
1168 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
1169 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
1170
1171 *hardened-sources-2.6.16-r2 (13 Apr 2006)
1172
1173 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
1174 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
1175 +hardened-sources-2.6.16-r2.ebuild:
1176 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
1177 labels, dropping USERGROUP define fixes, since these were merged mainstream.
1178
1179 *hardened-sources-2.6.16-r1 (11 Apr 2006)
1180
1181 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
1182 +hardened-sources-2.6.16-r1.ebuild:
1183 Bumping to include ppc build fix and 2.6.16.3
1184
1185 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
1186 hardened-sources-2.6.14-r6.ebuild:
1187 Stable on x86; bug #127718
1188
1189 *hardened-sources-2.6.16 (31 Mar 2006)
1190
1191 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
1192 +hardened-sources-2.6.16.ebuild:
1193 Bumping to new version of grsec, and kernel base. New squashfs. Based on
1194 2.6.16.1
1195
1196 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
1197 hardened-sources-2.6.14-r6.ebuild:
1198 Stable on amd64, bug 127718.
1199
1200 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
1201 Stable on ppc. Bug #127718
1202
1203 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1204 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
1205 -hardened-sources-2.6.14-r4.ebuild:
1206 Cleanup.
1207
1208 *hardened-sources-2.6.14-r6 (15 Mar 2006)
1209
1210 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1211 +hardened-sources-2.6.14-r6.ebuild:
1212 Fixes grsec policy recreation bug and adds a
1213 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
1214
1215 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
1216 - stable on x86
1217
1218 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
1219 hardened-sources-2.6.14-r5.ebuild:
1220 Stable on ppc.
1221
1222 *hardened-sources-2.6.14-r5 (01 Feb 2006)
1223
1224 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
1225 +hardened-sources-2.6.14-r5.ebuild:
1226 fixing every known exploit
1227
1228 *hardened-sources-2.4.32-r2 (26 Jan 2006)
1229
1230 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
1231 +hardened-sources-2.4.32-r2.ebuild:
1232 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
1233
1234 *hardened-sources-2.6.14-r4 (12 Jan 2006)
1235
1236 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
1237 - version bump for new genpatches which fix up a few sec holes
1238
1239 *hardened-sources-2.4.32-r1 (05 Jan 2006)
1240
1241 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
1242 - revision bump to add misc vital linux kernel security patches.
1243
1244 *hardened-sources-2.6.14-r3 (30 Dec 2005)
1245
1246 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
1247 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
1248 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
1249
1250 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
1251 hardened-sources-2.6.14-r2.ebuild:
1252 making x86 & amd64 stable following testing.
1253
1254 *hardened-sources-2.6.14-r2 (27 Dec 2005)
1255
1256 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
1257 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
1258 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
1259 network hooks.
1260
1261 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
1262 hardened-sources-2.6.14-r1.ebuild:
1263 bumping to stable early for sec fix on x86 & amd64
1264
1265 *hardened-sources-2.6.14-r1 (05 Dec 2005)
1266
1267 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
1268 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
1269 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
1270
1271 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
1272 - stable on x86 security bug #114227 CAN-2005-3257
1273
1274 *hardened-sources-2.4.32 (19 Nov 2005)
1275
1276 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
1277 +hardened-sources-2.4.32.ebuild:
1278 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
1279 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
1280 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
1281 rsbac >> /etc/portage/package.use)
1282
1283 *hardened-sources-2.6.14 (14 Nov 2005)
1284
1285 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
1286 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
1287 Bumping 2.6 series to 2.6.14.2
1288
1289 *hardened-sources-2.6.13-r2 (20 Oct 2005)
1290
1291 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
1292 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
1293 +hardened-sources-2.6.13-r2.ebuild:
1294 Fixes minor build error in ppc.
1295
1296 *hardened-sources-2.6.13-r1 (17 Oct 2005)
1297
1298 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
1299 +hardened-sources-2.6.13-r1.ebuild:
1300 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
1301 2.6.13.4, fixes some major amd64 stability problems.
1302
1303 *hardened-sources-2.6.13 (16 Sep 2005)
1304
1305 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
1306 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
1307 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
1308 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
1309 users should test this thoroughly.
1310
1311 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
1312 - stable on x86
1313
1314 *hardened-sources-2.6.11-r15 (27 Jun 2005)
1315
1316 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
1317 +hardened-sources-2.6.11-r15.ebuild:
1318 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
1319 grsec redefining curr_ip struct.
1320
1321 *hardened-sources-2.4.31 (20 Jun 2005)
1322
1323 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
1324 initial import of 2.4.31 tree
1325
1326 *hardened-sources-2.6.11-r14 (14 Jun 2005)
1327
1328 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
1329 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
1330 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
1331 naming scheme to abide by genpatches
1332
1333 *hardened-sources-2.6.11-r13 (18 May 2005)
1334
1335 18 May 2005; John Mylchreest <johnm@gentoo.org>
1336 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
1337 Managed to mangle the Makefile patch from grsec, to miss out the grsec
1338 target. sorry about that. Fixes bug #93022
1339
1340 *hardened-sources-2.6.11-r12 (17 May 2005)
1341
1342 17 May 2005; John Mylchreest <johnm@gentoo.org>
1343 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1344 +hardened-sources-2.6.11-r12.ebuild:
1345 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1346 merges in genpatches-base
1347
1348 *hardened-sources-2.6.11-r12 (17 May 2005)
1349
1350 17 May 2005; John Mylchreest <johnm@gentoo.org>
1351 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1352 +hardened-sources-2.6.11-r12.ebuild:
1353 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1354 merges in genpatches-base
1355
1356 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
1357 -files/2.4.27-cmdline-race.patch,
1358 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
1359 -files/2.4.28-grsec-binfmt_a.out.patch,
1360 -files/2.4.28-grsec-cmdline-race.patch,
1361 -files/2.4.28-selinux-binfmt_a.out.patch,
1362 -files/2.4.28-selinux-cmdline-race.patch,
1363 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
1364 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
1365 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
1366 cleanup..
1367
1368 *hardened-sources-2.4.30-r1 (21 Apr 2005)
1369
1370 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
1371 - disable aout by default
1372
1373 *hardened-sources-2.4.30 (18 Apr 2005)
1374
1375 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
1376 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
1377 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
1378 use
1379
1380 *hardened-sources-2.4.29 (30 Mar 2005)
1381
1382 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1383 +hardened-sources-2.4.29.ebuild:
1384 New hardened-patches-2.4-29.0 patchball.
1385 Removed SELinux support, upgraded GRSecurity to 2.1.4.
1386
1387 *hardened-sources-2.4.28-r5 (06 Mar 2005)
1388
1389 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1390 +hardened-sources-2.4.28-r5.ebuild:
1391 Added a fix for a PaX vulnerability.
1392
1393 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1394 hardened-sources-2.4.28-r4.ebuild:
1395 Stable on x86
1396
1397 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
1398 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
1399 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
1400 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
1401 - fixed/added RDEPEND= in all kernel-2 ebuilds
1402
1403 *hardened-sources-2.4.28-r4 (21 Jan 2005)
1404
1405 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1406 +hardened-sources-2.4.28-r4.ebuild:
1407 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
1408 backport of neighbour hash updates.
1409
1410 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1411 hardened-sources-2.4.28-r3.ebuild:
1412 Stable on x86
1413
1414 *hardened-sources-2.6.10-r3 (20 Jan 2005)
1415
1416 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
1417 +hardened-sources-2.6.10-r3.ebuild:
1418 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
1419 in 2005.0
1420
1421 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1422 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
1423 hardened-sources-2.4.28-r2.ebuild:
1424 Mark stable on x86
1425
1426 *hardened-sources-2.4.28-r3 (17 Jan 2005)
1427
1428 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1429 +hardened-sources-2.4.28-r3.ebuild:
1430 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
1431
1432 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1433 hardened-sources-2.4.28.ebuild:
1434 Mark stable on x86.
1435
1436 *hardened-sources-2.4.28-r2 (13 Jan 2005)
1437
1438 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1439 +hardened-sources-2.4.28-r2.ebuild:
1440 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
1441 Mazinger for grsecurity patches as well.
1442
1443 *hardened-sources-2.4.28-r1 (23 Dec 2004)
1444
1445 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
1446 Security bump. Thank tocharian for rolling a new patchset...
1447
1448 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
1449 +files/2.4.28-grsec-cmdline-race.patch,
1450 +files/2.4.28-selinux-binfmt_a.out.patch,
1451 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
1452 - Round up remaining security patches that appear to be missing in 2.4.28. -
1453 PaX standalone updated to current. hgpv=28.1
1454
1455 *hardened-sources-2.4.28 (28 Nov 2004)
1456
1457 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
1458 security bump. Thank tocharian for rolling a new patchset
1459
1460 *hardened-sources-2.4.27-r3 (08 Sep 2004)
1461
1462 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
1463 +hardened-sources-2.4.27-r3.ebuild:
1464 Applies the new 2.4-27.2 patchball which updates
1465 GRSecurity to the 2.0.1 version.
1466
1467 *hardened-sources-2.4.27-r2 (31 Aug 2004)
1468
1469 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1470 +hardened-sources-2.4.27-r2.ebuild:
1471 Version bump.
1472 This version uses the new 2.4-27.1 patchball which updates
1473 both the SELinux PaX hooks patch and the SELinux headers.
1474
1475 *hardened-sources-2.4.27-r1 (09 Aug 2004)
1476
1477 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1478 +hardened-sources-2.4.27-r1.ebuild,
1479 -hardened-sources-2.4.27.ebuild,
1480 +files/2.4.27-cmdline-race.patch:
1481 Version bump, fix for cmdline race. See bug #59905.
1482
1483 *hardened-sources-2.4.26-r6 (09 Aug 2004)
1484
1485 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1486 +hardened-sources-2.4.26-r6.ebuild,
1487 -hardened-sources-2.4.26-r5.ebuild,
1488 -hardened-sources-2.4.26-r4.ebuild,
1489 +files/2.4.26-cmdline-race.patch:
1490 Version bump, fix for cmdline race. See bug #59905.
1491
1492 *hardened-sources-2.4.27 (08 Aug 2004)
1493
1494 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1495 +hardened-sources-2.4.27.ebuild,
1496 +files/2.4.27-CAN-2004-0394.patch:
1497 Ported the patchball to the 2.4.27 kernel version.
1498
1499 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1500
1501 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1502 +hardened-sources-2.4.26-r5.ebuild:
1503 Updated to use the new hardened-patches-2.4-26.1 patchball.
1504 It adds the following features:
1505 - Squashfs
1506 - Ebtables
1507 - Netdev random (core+drivers)
1508 - Watchdog Timer (WDT) fix.
1509
1510 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1511
1512 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1513 +hardened-sources-2.4.26-r4.ebuild,
1514 +files/2.4.26-CAN-2004-0415.patch,
1515 -hardened-sources-2.4.26-3:
1516 Version bump, fix for CAN 0415, see bug #59378.
1517
1518 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1519
1520 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1521 +hardened-sources-2.4.26-r3.ebuild,
1522 +files/2.4.26-CAN-2004-0497.patch,
1523 -hardened-sources-2.4.26-r2.ebuild:
1524 Version bump, fixed CAN 0497, see bug #56171.
1525
1526 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1527
1528 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1529 +hardened-sources-2.4.26-r2.ebuild,
1530 +files/2.4.26-CAN-2004-0495.patch,
1531 +files/2.4.26-CAN-2004-0535.patch,
1532 -hardened-sources-2.4.26-r1.ebuild:
1533 Fixes for both CAN 0495 and 0535, see bug #54976
1534
1535 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1536 hardened-sources-2.4.26-r1.ebuild:
1537 QA - fix use invocation
1538
1539 *hardened-sources-2.4.26-r1 (22 June 2004)
1540
1541 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1542 +hardened-sources-2.4.26-r1.ebuild,
1543 +files/2.4.26-CAN-2004-0394.patch,
1544 +files/2.4.26-signal-race.patch,
1545 -hardened-sources-2.4.26.ebuild,
1546 -hardened-sources-2.4.24-r3.ebuild:
1547 Version bump for the CAN-2004-0394 issue and bug #53804
1548 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1549
1550
1551 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1552 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1553 Masked hardened-sources-2.4.26.ebuild broken for ppc
1554
1555 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1556 hardened-sources-2.4.24-r3.ebuild:
1557 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1558
1559 *hardened-sources-2.4.26 (29 May 2004)
1560
1561 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1562 +hardened-sources-2.4.26.ebuild:
1563 Updated hardened-sources for the 2.4.26 kernel
1564 Removed broken components, updated almost everything.
1565
1566 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1567
1568 17 Apr 2004; <plasmaroo@gentoo.org>
1569 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1570 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1571 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1572 +hardened-sources-2.4.24-r3.ebuild:
1573 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1574 vulnerabilities. Old revisions removed.
1575
1576 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1577
1578 15 Apr 2004; <plasmaroo@gentoo.org>
1579 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1580 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1581 Version bump for the CAN-2004-0109 issue; bug #47881.
1582
1583 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1584 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1585 Add eutils to inherit.
1586
1587 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1588
1589 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1590 files/hardened-sources-2.4.24.munmap.patch:
1591 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1592
1593 *hardened-sources-2.4.24 (06 Feb 2004)
1594
1595 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1596 hardened-sources-2.4.24.ebuild:
1597 Version bump, updated most of the components.
1598 This release includes the following:
1599
1600 - Hardened security
1601 - Netfilter patch-o-matic 20031219
1602 - FreeSWAN 2.04 & x509 1.4.8
1603 - EVMS 2.2.2
1604 - XFS 1.3.1
1605 - cryptoloop jari
1606 - grsecurity 2.0-rc4
1607 - SELinux
1608 - PaX 200402060000
1609 - PaX Obscurity 200308302223
1610 - Others...
1611
1612 Neither -ck nor systrace are included anymore.
1613
1614 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1615
1616 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1617 hardened-sources-2.4.22-r2.ebuild:
1618 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1619
1620 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1621
1622 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1623 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1624
1625 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1626 hardened-sources-2.4.22-r1.ebuild:
1627 Version bump for the 'do_brk' vulnerability.
1628
1629 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1630 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1631 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1632 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1633 Fix the 'do_brk' vulnerability.
1634
1635 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1636 hardened-sources-2.4.22.ebuild:
1637 - Removed the src_install() portion for SELinux flask
1638 components. These are no longer handled in the kernel
1639 so this code was not necessary.
1640
1641 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1642 New 2.4.22 based hardened-sources thanks to
1643 Phil West <p.west@computer.org>.
1644
1645 These sources include:
1646 - New SELinux API
1647 - Updated CK-base
1648 - Updated GRSec
1649 - Systrace
1650 - SuperFreeS/WAN 1.99.8
1651 - Propolice kernel build support
1652 - EVMS
1653 - Other various security related patches
1654
1655 *hardened-sources-2.4.21 (14 Sep 2003)
1656
1657 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1658 Updated hardened-sources based on the 2.4.21 Linux kernel.
1659 This includes updates to most major components such as:
1660 - ck-base-0306300059
1661 - selinux-2.4-2003071106
1662 - grsecurity-2.0-rc1
1663 - Updated IPTables patch-o-matic
1664 - Updated SuperFreeS/WAN
1665
1666 Thanks to Phil West <pwest@computer.org> for his work in getting this
1667 updated patch set ready for the 2.4.21 based kernel.
1668
1669 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1670 Initial import of hardened-sources-2.4.20-r4. This revision
1671 includes only a few changes, but one of these is an important
1672 security fix. It is recommended all users of hardened-sources
1673 upgrade to this release.
1674
1675 - ioperm bug fix
1676 - fixed compilation failure when building without GRSec
1677
1678 SAL (Secure Auditing for Linux) is NOT included in this revision
1679 due to time constraints, but is planned for inclusion in the near
1680 future.
1681
1682 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1683
1684 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1685 hardened-sources-2.4.20-r3.ebuild:
1686 Add Header...
1687
1688 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1689 hardened-sources-2.4.20-r3.ebuild:
1690 Removed warnings from ebuild. This kernel should be safe to
1691 use at this point.
1692
1693 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1694
1695 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1696 hardened-sources-2.4.20-r3.ebuild:
1697 New revision. Includes the following changes over -r2:
1698
1699 - ck7-base (O(1), preempt, low latency)
1700 - Super FreeS/WAN 1.99.7rc2
1701 - PaX for the LSM/SELinux branch
1702 - GRSecurity 2.0-pre4 (role based access control)
1703 - Systrace 1.3
1704 - EXT3 fixes
1705 - EVMS 2.0.1
1706 - GCC 3.1+ compile optimizations
1707 - ProPolice kernel build support
1708 - Hashing table security fixes
1709
1710 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1711
1712 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1713 Initial import of hardened-sources-r2. This new
1714 ebuild includes many new performance and security
1715 related patches. As in -r1, it will patch in
1716 LSM/SELinux if "selinux" is in USE, otherwise it
1717 will patch in GRSecurity. The following patches
1718 are included in this revision:
1719
1720 - O(1) Scheduler, Low Latency, and Preempt
1721 (pulled from the base CK patch)
1722 - ptrace exploit patch for the LSM kernel
1723 (the GRSec patch already fixes this)
1724 - LSM 2.4-2003040709
1725 - SELinux 2.4-2003040709
1726 - Systrace v1.2
1727 - IPTables patch-o-matic base patches - 20030107
1728 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1729 - Super FreeS/WAN 1.99.6.1
1730 - GRSecurity 1.9.9g
1731 - MPPE
1732 - EXT3 data journal fix
1733 - CIPE 1.5.4
1734
1735 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1736 hardened-sources-2.4.20-r1.ebuild, manifest:
1737 Updated to install flask components correctly for selinux.
1738
1739 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1740 hardened-sources-2.4.20-r1.ebuild:
1741 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1742 is patched in instead. Ptrace patches for selinux have also been added. In
1743 either case, systrace support will be patched in as well.
1744
1745 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1746 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1747 Revision bump for new sources.
1748
1749 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1750 hardened-sources-2.4.20-r1.ebuild:
1751 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1752
1753 *hardened-sources-2.4.20 (30 Mar 2003)
1754
1755 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1756 hardened-sources-2.4.20.ebuild:
1757 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20