/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.299 - (show annotations) (download)
Fri Mar 20 18:25:25 2009 UTC (5 years, 8 months ago) by gengor
Branch: MAIN
Changes since 1.298: +7 -1 lines
Add sys-kernel/hardened-sources-2.6.28-r5
(Portage version: 2.1.6.7/cvs/Linux i686)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2009 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.298 2009/03/20 00:29:12 gengor Exp $
4
5 *hardened-sources-2.6.28-r5 (20 Mar 2009)
6
7 20 Mar 2009; Gordon Malm <gengor@gentoo.org>
8 +hardened-sources-2.6.28-r5.ebuild:
9 Bump genpatches. Grsecurity patch bump, fixes bug #262752.
10
11 20 Mar 2009; Gordon Malm <gengor@gentoo.org>
12 hardened-sources-2.6.28-r4.ebuild:
13 Stable amd64/x86.
14
15 *hardened-sources-2.6.28-r4 (18 Mar 2009)
16
17 18 Mar 2009; Gordon Malm <gengor@gentoo.org>
18 +hardened-sources-2.6.28-r4.ebuild:
19 Bump to Linux 2.6.28.8. PaX update fixes oops in SANITIZE feature,
20 compilation with CPA_DEBUG and more.
21
22 17 Mar 2009; Gordon Malm <gengor@gentoo.org>
23 hardened-sources-2.6.28-r3.ebuild:
24 Quick stable amd64/x86.
25
26 *hardened-sources-2.6.28-r3 (15 Mar 2009)
27
28 15 Mar 2009; Gordon Malm <gengor@gentoo.org>
29 +hardened-sources-2.6.28-r3.ebuild:
30 Adds latest PaX changes fixing some boot issues, ext4 fixes for bug #262507.
31
32 14 Mar 2009; nixnut <nixnut@gentoo.org> hardened-sources-2.6.28-r2.ebuild:
33 ppc stable
34
35 13 Mar 2009; Gordon Malm <gengor@gentoo.org>
36 hardened-sources-2.6.28-r2.ebuild:
37 Stable amd64/x86.
38
39 *hardened-sources-2.6.28-r2 (11 Mar 2009)
40
41 11 Mar 2009; Gordon Malm <gengor@gentoo.org>
42 +hardened-sources-2.6.28-r2.ebuild:
43 Version bump bringing in latest grsecurity patch.
44
45 *hardened-sources-2.6.28-r1 (09 Mar 2009)
46
47 09 Mar 2009; Gordon Malm <gengor@gentoo.org>
48 -hardened-sources-2.6.28.ebuild, +hardened-sources-2.6.28-r1.ebuild:
49 Version bump and remove old.
50
51 07 Mar 2009; nixnut <nixnut@gentoo.org> hardened-sources-2.6.27-r8.ebuild:
52 ppc stable
53
54 01 Mar 2009; Gordon Malm <gengor@gentoo.org>
55 hardened-sources-2.6.27-r8.ebuild:
56 Remove amd64 testing keyword, bug 256226.
57
58 01 Mar 2009; Gordon Malm <gengor@gentoo.org>
59 hardened-sources-2.6.27-r8.ebuild:
60 Revert amd64 stable, bug #256226.
61
62 01 Mar 2009; Gordon Malm <gengor@gentoo.org>
63 hardened-sources-2.6.27-r8.ebuild:
64 Stable on amd64/x86.
65
66 24 Feb 2009; Gordon Malm <gengor@gentoo.org>
67 -hardened-sources-2.6.27-r6.ebuild:
68 Remove old 2.6.27 release.
69
70 *hardened-sources-2.6.27-r8 (24 Feb 2009)
71
72 24 Feb 2009; Gordon Malm <gengor@gentoo.org>
73 +hardened-sources-2.6.27-r8.ebuild:
74 Bump to latest genpatches, Linux 2.6.27.19, PaX updates. Fixes bug #256067
75 and probably more.
76
77 04 Feb 2009; nixnut <nixnut@gentoo.org> hardened-sources-2.6.26-r9.ebuild:
78 ppc stable
79
80 *hardened-sources-2.6.28 (25 Jan 2009)
81
82 25 Jan 2009; Gordon Malm <gengor@gentoo.org>
83 +hardened-sources-2.6.28.ebuild:
84 Initial 2.6.28 release.
85
86 *hardened-sources-2.6.27-r7 (25 Jan 2009)
87
88 25 Jan 2009; Gordon Malm <gengor@gentoo.org>
89 +hardened-sources-2.6.27-r7.ebuild:
90 Bump to Linux 2.6.27.13.
91
92 25 Jan 2009; Gordon Malm <gengor@gentoo.org>
93 hardened-sources-2.6.26-r9.ebuild:
94 Stable amd64/x86.
95
96 24 Jan 2009; Gordon Malm <gengor@gentoo.org>
97 -hardened-sources-2.6.27-r3.ebuild, -hardened-sources-2.6.27-r4.ebuild,
98 -hardened-sources-2.6.27-r5.ebuild:
99 Remove problem versions.
100
101 *hardened-sources-2.6.27-r6 (24 Jan 2009)
102
103 24 Jan 2009; Gordon Malm <gengor@gentoo.org>
104 +hardened-sources-2.6.27-r6.ebuild:
105 Revert PaX test29 to test30 changes. Fixes bug 256226.
106
107 *hardened-sources-2.6.27-r5 (24 Jan 2009)
108
109 24 Jan 2009; Gordon Malm <gengor@gentoo.org>
110 +hardened-sources-2.6.27-r5.ebuild:
111 Bump to genpatches-10 (includes Linux 2.6.27.{11,12}) and fix bugs 253733,
112 254843.
113
114 23 Jan 2009; Gordon Malm <gengor@gentoo.org>
115 -hardened-sources-2.6.25-r11.ebuild, -hardened-sources-2.6.25-r12.ebuild,
116 -hardened-sources-2.6.26-r7.ebuild, -hardened-sources-2.6.26-r8.ebuild:
117 Remove problem versions.
118
119 23 Jan 2009; nixnut <nixnut@gentoo.org>
120 hardened-sources-2.6.25-r13.ebuild:
121 ppc stable
122
123 21 Jan 2009; Gordon Malm <gengor@gentoo.org>
124 hardened-sources-2.6.25-r13.ebuild:
125 Fasttrack stable amd64/x86.
126
127 *hardened-sources-2.6.26-r9 (21 Jan 2009)
128
129 21 Jan 2009; Gordon Malm <gengor@gentoo.org>
130 +hardened-sources-2.6.26-r9.ebuild:
131 Revert RLIMIT_STACK false-positives-avoidance patch. Bugs 253733, 254843
132
133 *hardened-sources-2.6.25-r13 (20 Jan 2009)
134
135 20 Jan 2009; Gordon Malm <gengor@gentoo.org>
136 +hardened-sources-2.6.25-r13.ebuild:
137 Revert RLIMIT_STACK false-positives-avoidance patch. Bugs 253733, 254843
138
139 20 Jan 2009; nixnut <nixnut@gentoo.org>
140 hardened-sources-2.6.25-r12.ebuild:
141 ppc stable
142
143 17 Jan 2009; Gordon Malm <gengor@gentoo.org>
144 hardened-sources-2.6.25-r12.ebuild:
145 Stable amd64/x86.
146
147 14 Jan 2009; Gordon Malm <gengor@gentoo.org>
148 -hardened-sources-2.6.25-r10.ebuild, -hardened-sources-2.6.26-r6.ebuild,
149 -hardened-sources-2.6.27-r2.ebuild:
150 Clean out old versions.
151
152 *hardened-sources-2.6.27-r4 (14 Jan 2009)
153 *hardened-sources-2.6.26-r8 (14 Jan 2009)
154 *hardened-sources-2.6.25-r12 (14 Jan 2009)
155
156 14 Jan 2009; Gordon Malm <gengor@gentoo.org>
157 +hardened-sources-2.6.25-r12.ebuild, +hardened-sources-2.6.26-r8.ebuild,
158 +hardened-sources-2.6.27-r4.ebuild:
159 2.6.25-r12: Fixes bugs #249729, #250548, #252688, #254907
160 2.6.26-r8: Fixes bugs #249729, #250548, #252688, #254907
161 2.6.27-r4: Update to latest genpatches (includes Linux 2.6.27.10) and
162 grsecurity patch. Fixes bugs #249729, #250511, #250548, #252688, #254907
163
164 15 Dec 2008; nixnut <nixnut@gentoo.org>
165 hardened-sources-2.6.25-r11.ebuild:
166 Stable on ppc
167
168 09 Dec 2008; Gordon Malm <gengor@gentoo.org>
169 hardened-sources-2.6.25-r11.ebuild:
170 Stable amd64/x86.
171
172 *hardened-sources-2.6.27-r3 (07 Dec 2008)
173
174 07 Dec 2008; Gordon Malm <gengor@gentoo.org>
175 +hardened-sources-2.6.27-r3.ebuild:
176 Bump to latest genpatches, including Linux 2.6.27.8. Bump grsec/pax patches.
177 Fixes bug #248754, #249729 and #246607.
178
179 03 Dec 2008; Gordon Malm <gengor@gentoo.org>
180 -hardened-sources-2.6.25-r9.ebuild, -hardened-sources-2.6.26-r5.ebuild:
181 Remove old versions.
182
183 *hardened-sources-2.6.26-r7 (03 Dec 2008)
184 *hardened-sources-2.6.25-r11 (03 Dec 2008)
185
186 03 Dec 2008; Gordon Malm <gengor@gentoo.org>
187 +hardened-sources-2.6.25-r11.ebuild, +hardened-sources-2.6.26-r7.ebuild:
188 2.6.25-r11: Fixes bugs 246607, 246710, 247453 and 248754.
189 2.6.26-r7: Fixes bugs 246607, 246710, 246763, 247453 and 248754.
190 Both include many backports from 2.6.27.{6,7} -stable releases.
191
192 24 Nov 2008; Gordon Malm <gengor@gentoo.org>
193 -hardened-sources-2.6.27.ebuild, -hardened-sources-2.6.27-r1.ebuild:
194 Remove versions broken on ARCHes != x86/amd64.
195
196 *hardened-sources-2.6.27-r2 (24 Nov 2008)
197
198 24 Nov 2008; Gordon Malm <gengor@gentoo.org>
199 +hardened-sources-2.6.27-r2.ebuild:
200 Bump to Linux 2.6.27.7 and latest grsecurity patch.
201
202 19 Nov 2008; Gordon Malm <gengor@gentoo.org>
203 -hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r4.ebuild:
204 Remove old versions.
205
206 19 Nov 2008; Gordon Malm <gengor@gentoo.org>
207 hardened-sources-2.6.27.ebuild, hardened-sources-2.6.27-r1.ebuild:
208 Remove all but ~amd64 & ~x86 keywords (broken elsewhere).
209
210 16 Nov 2008; nixnut <nixnut@gentoo.org>
211 hardened-sources-2.6.25-r10.ebuild:
212 Stable on ppc
213
214 15 Nov 2008; Gordon Malm <gengor@gentoo.org>
215 hardened-sources-2.6.25-r10.ebuild:
216 Stable amd64/x86.
217
218 *hardened-sources-2.6.26-r6 (12 Nov 2008)
219
220 12 Nov 2008; Gordon Malm <gengor@gentoo.org>
221 +hardened-sources-2.6.26-r6.ebuild:
222 Bump to Linux 2.6.26.8 and fix security bug #245650.
223
224 *hardened-sources-2.6.25-r10 (12 Nov 2008)
225
226 12 Nov 2008; Gordon Malm <gengor@gentoo.org>
227 +hardened-sources-2.6.25-r10.ebuild:
228 Update to Linux 2.6.25.20 and fix bugs #245427, #245650.
229
230 *hardened-sources-2.6.27-r1 (09 Nov 2008)
231
232 09 Nov 2008; Gordon Malm <gengor@gentoo.org>
233 +hardened-sources-2.6.27-r1.ebuild:
234 Bump to stable kernel 2.6.27.5 and latest grsecurity patch.
235
236 *hardened-sources-2.6.27 (04 Nov 2008)
237
238 04 Nov 2008; Gordon Malm <gengor@gentoo.org>
239 +hardened-sources-2.6.27.ebuild:
240 Initial 2.6.27 release.
241
242 *hardened-sources-2.6.26-r5 (03 Nov 2008)
243
244 03 Nov 2008; Gordon Malm <gengor@gentoo.org>
245 -hardened-sources-2.6.25-r7.ebuild, -hardened-sources-2.6.26-r2.ebuild,
246 +hardened-sources-2.6.26-r5.ebuild:
247 2.6.26-r5: Bump to Linux 2.6.26.7, PaX updates.
248 Clean out some old versions.
249
250 02 Nov 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r9.ebuild:
251 Stable on ppc
252
253 30 Oct 2008; Gordon Malm <gengor@gentoo.org>
254 hardened-sources-2.6.25-r9.ebuild:
255 Stable on amd64/x86.
256
257 *hardened-sources-2.6.25-r9 (26 Oct 2008)
258
259 26 Oct 2008; Gordon Malm <gengor@gentoo.org>
260 +hardened-sources-2.6.25-r9.ebuild:
261 Update to Linux 2.6.25.19
262
263 15 Oct 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r8.ebuild:
264 Stable on ppc
265
266 *hardened-sources-2.6.26-r4 (14 Oct 2008)
267
268 14 Oct 2008; Gordon Malm <gengor@gentoo.org>
269 -hardened-sources-2.6.26-r3.ebuild, +hardened-sources-2.6.26-r4.ebuild:
270 Update to latest grsecurity patch, fixing building of non-modular kernels.
271
272 *hardened-sources-2.6.26-r3 (12 Oct 2008)
273
274 12 Oct 2008; Gordon Malm <gengor@gentoo.org>
275 hardened-sources-2.6.25-r8.ebuild, -hardened-sources-2.6.26-r1.ebuild,
276 +hardened-sources-2.6.26-r3.ebuild:
277 2.6.26-r3: Update to Linux 2.6.26.6 and latest grsecurity patch.
278 2.6.26-r1: Removed.
279 2.6.25-r8: Stable amd64/x86.
280
281 *hardened-sources-2.6.25-r8 (09 Oct 2008)
282
283 09 Oct 2008; Gordon Malm <gengor@gentoo.org>
284 -hardened-sources-2.6.25-r4.ebuild, -hardened-sources-2.6.25-r5.ebuild,
285 -hardened-sources-2.6.25-r6.ebuild, +hardened-sources-2.6.25-r8.ebuild:
286 Update to genpatches-11 and Linux 2.6.25.18. Remove old versions.
287
288 20 Sep 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r7.ebuild:
289 Stable on ppc
290
291 17 Sep 2008; Gordon Malm <gengor@gentoo.org>
292 hardened-sources-2.6.25-r7.ebuild:
293 Stable amd64/x86.
294
295 *hardened-sources-2.6.26-r2 (13 Sep 2008)
296
297 13 Sep 2008; Gordon Malm <gengor@gentoo.org>
298 -hardened-sources-2.6.26.ebuild, +hardened-sources-2.6.26-r2.ebuild:
299 2.6.26-r2: Update to Linux 2.6.26.5, new grsecurity patch adding
300 PAX_REFCOUNT feature, fix bug #237473 (CVE-2008-3525). 2.6.26: Removed.
301
302 *hardened-sources-2.6.25-r7 (13 Sep 2008)
303
304 13 Sep 2008; Gordon Malm <gengor@gentoo.org>
305 +hardened-sources-2.6.25-r7.ebuild:
306 Add 2.6.25-r7, fixing bug #237473 (CVE-2008-3525) and a PaX bug.
307
308 10 Sep 2008; Gordon Malm <gengor@gentoo.org>
309 hardened-sources-2.6.25-r4.ebuild, hardened-sources-2.6.25-r5.ebuild,
310 hardened-sources-2.6.25-r6.ebuild, hardened-sources-2.6.26.ebuild,
311 hardened-sources-2.6.26-r1.ebuild:
312 Update DESCRIPTION and HGPV_URI.
313
314 *hardened-sources-2.6.25-r6 (09 Sep 2008)
315
316 09 Sep 2008; Gordon Malm <gengor@gentoo.org>
317 -hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25-r6.ebuild:
318 2.6.25-r6: Update to Linux 2.6.25.17.
319 2.6.24-r3: Removed.
320
321 08 Sep 2008; Gordon Malm <gengor@gentoo.org>
322 hardened-sources-2.6.25-r5.ebuild:
323 Stable on amd64/x86
324
325 07 Sep 2008; Gordon Malm <gengor@gentoo.org> metadata.xml:
326 Update my email address.
327
328 31 Aug 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.25-r4.ebuild:
329 stable on ppc
330
331 *hardened-sources-2.6.26-r1 (23 Aug 2008)
332 *hardened-sources-2.6.25-r5 (23 Aug 2008)
333
334 23 Aug 2008; Bryan D. Stine <battousai@gentoo.org>
335 -hardened-sources-2.6.23-r13.ebuild, -hardened-sources-2.6.25-r3.ebuild,
336 hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.25-r5.ebuild,
337 +hardened-sources-2.6.26-r1.ebuild:
338 Bump to 2.6.25-r5 for updated patches and upstream .10 kernel, fixing
339 security bug #235221. Bump to 2.6.26-r1 for upstream .3 kernel, also
340 fixing security bug #235221. Marked 2.6.25-r4 stable on amd64 and x86.
341 Removed 2.6.23-r13 and 2.6.25-r3. Commit on behalf of Gordon Malm
342 (gengor).
343
344 *hardened-sources-2.6.26 (18 Aug 2008)
345 *hardened-sources-2.6.25-r4 (18 Aug 2008)
346
347 18 Aug 2008; <solar@gentoo.org> -hardened-sources-2.6.25-r2.ebuild,
348 +hardened-sources-2.6.25-r4.ebuild, +hardened-sources-2.6.26.ebuild:
349 - proxy commit for gengor 2.6.26: Initial 2.6.26 release. 2.6.25-r4: Update
350 to Linux 2.6.25.15. Fixes security bugs #234799, #234803 and #234812.
351 2.6.25-r2: Removed.
352
353 16 Aug 2008; Torsten Veller <tove@gentoo.org> metadata.xml:
354 Remove phreak from metadata.xml (#96398)
355
356 *hardened-sources-2.6.25-r3 (31 Jul 2008)
357
358 31 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.24-r2.ebuild,
359 -hardened-sources-2.6.25.ebuild, -hardened-sources-2.6.25-r1.ebuild,
360 +hardened-sources-2.6.25-r3.ebuild:
361 - 2.6.25-r3: Update to Linux 2.6.25.13 and new grsecurity patch. Multiple
362 fixes, including security bug #231750.
363
364 28 Jul 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.24-r3.ebuild:
365 Stable on ppc
366
367 *hardened-sources-2.6.25-r2 (05 Jul 2008)
368
369 05 Jul 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r11.ebuild,
370 -hardened-sources-2.6.23-r12.ebuild, hardened-sources-2.6.24-r3.ebuild,
371 +hardened-sources-2.6.25-r2.ebuild:
372 2.6.23-r4: Stable x86/amd64
373 2.6.25-r2: Update to Linux 2.6.25.10 and latest grsecurity release.
374 2.6.23-r{11,12}: Removed due to multiple vulns.
375 (gengor & kerframil)
376
377 04 Jul 2008; nixnut <nixnut@gentoo.org>
378 hardened-sources-2.6.23-r13.ebuild:
379 Stable on ppc
380
381 *hardened-sources-2.6.25-r1 (30 Jun 2008)
382
383 30 Jun 2008; <solar@gentoo.org> hardened-sources-2.6.23-r13.ebuild,
384 +hardened-sources-2.6.25-r1.ebuild:
385 2.6.25-r1: Brings in Linux -stable tree patches 2.6.25.{7,8,9} and newer
386 grsecurity release. 2.6.23-r13: x86/amd64 stable
387
388 *hardened-sources-2.6.25 (17 Jun 2008)
389 *hardened-sources-2.6.24-r3 (17 Jun 2008)
390 *hardened-sources-2.6.23-r13 (17 Jun 2008)
391
392 17 Jun 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r13.ebuild,
393 +hardened-sources-2.6.24-r3.ebuild, +hardened-sources-2.6.25.ebuild:
394 * 2.6.23-r13: Fixes security bugs #198997, #212136, #222331, #222635,
395 #224647, #225461, other fixes. * 2.6.24-r3: Fixes security bugs #212136,
396 #222331, #222635, #224647, #225461, grsec/PaX updates/fixes, other fixes. *
397 2.6.25: Initial 2.6.25 release.
398
399 15 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r12.ebuild:
400 - fasttrack to stable x86/amd64
401
402 11 May 2008; Sven Wegener <swegener@gentoo.org> Manifest:
403 Fix broken digest for linux-2.6.24.tar.bz2.
404
405 *hardened-sources-2.6.24-r2 (11 May 2008)
406 *hardened-sources-2.6.23-r12 (11 May 2008)
407
408 11 May 2008; <solar@gentoo.org> -hardened-sources-2.6.23-r7.ebuild,
409 -hardened-sources-2.6.23-r9.ebuild, -hardened-sources-2.6.23-r10.ebuild,
410 +hardened-sources-2.6.23-r12.ebuild, -hardened-sources-2.6.24.ebuild,
411 -hardened-sources-2.6.24-r1.ebuild, +hardened-sources-2.6.24-r2.ebuild:
412 proxy commit for gengor. 2.6.23-r11 shortlog: Fixes security bugs 220691,
413 220975, 220979, 221123. 2.6.24-r2 not-so-shortlog: Fixes bug 215442,
414 security bugs 219901, 220691, 220975, 220979, 221123. New
415 genpatches/grsecurity with numerous updates & fixes. 2.6.23-r7->2.6.23-r10
416 should be removed as far as I'm concerned, everything else remove due to
417 vulnerable to numerous security bugs or brokeness.
418
419 10 May 2008; nixnut <nixnut@gentoo.org>
420 hardened-sources-2.6.23-r11.ebuild:
421 Stable on ppc
422
423 05 May 2008; <solar@gentoo.org> hardened-sources-2.6.23-r11.ebuild:
424 - -r11 stable on x86/amd64
425
426 *hardened-sources-2.6.23-r11 (01 May 2008)
427
428 01 May 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r11.ebuild:
429 - version bump to fix ulgy linux bugs
430
431 *hardened-sources-2.6.24-r1 (30 Apr 2008)
432
433 30 Apr 2008; Christian Heim <phreak@gentoo.org>
434 +hardened-sources-2.6.24-r1.ebuild:
435 Revision bump (thanks to Kerin and Gordon, again), pulling
436 genpatches-2.6.24-7, solving #219089. Additionally contains further security
437 fixes plus some minor updates.
438
439 *hardened-sources-2.6.23-r10 (30 Apr 2008)
440
441 30 Apr 2008; Christian Heim <phreak@gentoo.org>
442 +hardened-sources-2.6.23-r10.ebuild:
443 Revision bump (thanks to Kerin and Gordon, again), solving #213811, #219089.
444 Additional contains "various other fixes".
445
446 09 Apr 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
447 Update the longdescription in metadata, thanks to Gordon Malm.
448
449 08 Apr 2008; nixnut <nixnut@gentoo.org> hardened-sources-2.6.23-r9.ebuild:
450 Stable on ppc wrt bug #213255
451
452 07 Apr 2008; <solar@gentoo.org> -hardened-sources-2.4.35-r2.ebuild,
453 -hardened-sources-2.6.23-r8.ebuild, hardened-sources-2.6.23-r9.ebuild:
454 - stable on x86/amd64 per request. Removed obsolete ebuilds
455
456 *hardened-sources-2.6.24 (07 Apr 2008)
457
458 07 Apr 2008; Christian Heim <phreak@gentoo.org>
459 +hardened-sources-2.6.24.ebuild:
460 Adding ebuild for hardened-sources-2.6.24 (many thanks to Kerin Millar
461 <kerframil at gmail.com> and Gordon Malm <bugs-gentoo-org-02 at bumpin.org>
462 for the many contributions and their continued effort in #216612) based on
463 2.6.24 and genpatches-2.6.24-5.
464
465 The current ebuild/patchset contains these things:
466 * Incoporates unmodified grsec-2.1.11-2.6.24.4-200803262003 patch
467 * Introduces bespoke server and workstation oriented security levels
468 * VDSO_COMPAT cannot be enabled during runtime if PaX is enabled
469
470 30 Mar 2008; Christian Heim <phreak@gentoo.org> metadata.xml:
471 Fix the metadata.xml (Kerin isn't a dev, though he and Gordon are
472 maintaining it).
473
474 24 Mar 2008; Christian Heim <phreak@gentoo.org>
475 hardened-sources-2.4.35-r2.ebuild:
476 Fixing SRC_URI for 2.4.35-r2.
477
478 *hardened-sources-2.6.23-r9 (22 Mar 2008)
479
480 22 Mar 2008; Christian Heim <phreak@gentoo.org>
481 +hardened-sources-2.6.23-r9.ebuild:
482 * Revision bump, rebasing the patchset against genpatches-2.6.23-10.
483 * Change the default GIDs for some grsecurity options
484 * Revamp the Hardened [Gentoo] security level and make it the default level
485 * Fixing compilation on ia64 with CONFIG_MODULES=y (loadable module support)
486 * Fix a recursive lock -- call to capable() within ptrace_attach()
487 * Fix bug that allows audit and iscsi operations to be controlled via netlink
488
489 *hardened-sources-2.6.23-r8 (27 Feb 2008)
490
491 27 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r8.ebuild:
492 - version bump from Kerin Millar bug 210026
493
494 17 Feb 2008; <solar@gentoo.org> metadata.xml,
495 -hardened-sources-2.4.33.4.ebuild, -hardened-sources-2.6.20-r6.ebuild,
496 -hardened-sources-2.6.20-r10.ebuild, -hardened-sources-2.6.23-r4.ebuild,
497 -hardened-sources-2.6.23-r6.ebuild, hardened-sources-2.6.23-r7.ebuild:
498 - stable on x86 and remove old ebuilds
499
500 15 Feb 2008; <solar@gentoo.org> hardened-sources-2.6.23-r7.ebuild:
501 - stable on amd64 per request of amd64 lead
502
503 *hardened-sources-2.6.23-r7 (11 Feb 2008)
504
505 11 Feb 2008; <solar@gentoo.org> +hardened-sources-2.6.23-r7.ebuild:
506 - version bump from kerin.millar
507 Changes:
508
509 * Bump to genpatches-base-2.6.23-9
510 * Ported grsecurity-2.1.11-2.6.23.14-200801231800 to 2.6.23.15
511 * Disables COMPAT_VDSO in x86/defconfig
512 * Removes bogus symbols ACPI_SLEEP_PROC_(FS|SLEEP) from x86_64/defconfig
513
514 25 Jan 2008; Christian Heim <phreak@gentoo.org>
515 -hardened-sources-2.6.22-r8.ebuild:
516 Cleaning up old versions.
517
518 *hardened-sources-2.6.23-r6 (25 Jan 2008)
519
520 25 Jan 2008; Christian Heim <phreak@gentoo.org>
521 -hardened-sources-2.6.23-r5.ebuild, +hardened-sources-2.6.23-r6.ebuild:
522 Revision bump, pulling in the latest genpatches.
523
524 *hardened-sources-2.6.23-r5 (24 Dec 2007)
525
526 24 Dec 2007; Christian Heim <phreak@gentoo.org>
527 hardened-sources-2.4.35-r2.ebuild, hardened-sources-2.6.20-r6.ebuild,
528 hardened-sources-2.6.20-r10.ebuild, hardened-sources-2.6.22-r8.ebuild,
529 hardened-sources-2.6.23-r4.ebuild, +hardened-sources-2.6.23-r5.ebuild:
530 Revision bump, for the promised updated grsec snapshot. Also changing SRC_URI.
531
532 24 Dec 2007; Christian Heim <phreak@gentoo.org>
533 -hardened-sources-2.6.22-r7.ebuild, -hardened-sources-2.6.23.ebuild,
534 -hardened-sources-2.6.23-r1.ebuild, -hardened-sources-2.6.23-r2.ebuild,
535 -hardened-sources-2.6.23-r3.ebuild:
536 Cleaning out some unused, old versions.
537
538 24 Dec 2007; Christian Heim <phreak@gentoo.org>
539 hardened-sources-2.6.23-r4.ebuild:
540 Marking hardened-sources-2.6.23-r4 stable on amd64 and x86. I know it ain't
541 in the tree for long, but there isn't much of a difference between this and
542 -r3. Only this revision pulls in 2.6.23.11 and 2.6.23.12 from genpatches.
543
544 *hardened-sources-2.6.23-r4 (23 Dec 2007)
545
546 23 Dec 2007; Christian Heim <phreak@gentoo.org>
547 +hardened-sources-2.6.23-r4.ebuild:
548 Revision bump, grabbing the lastest genpatches release (2.6.23.12 that is).
549
550 *hardened-sources-2.6.23-r3 (04 Dec 2007)
551
552 04 Dec 2007; Christian Heim <phreak@gentoo.org>
553 +hardened-sources-2.6.23-r3.ebuild:
554 Revision bump, pulling in 2.6.23.9.
555
556 *hardened-sources-2.6.23-r2 (25 Nov 2007)
557
558 25 Nov 2007; Christian Heim <phreak@gentoo.org>
559 +hardened-sources-2.6.23-r2.ebuild:
560 Updated patchset, thanks to solar.
561
562 *hardened-sources-2.6.23-r1 (31 Oct 2007)
563
564 31 Oct 2007; Christian Heim <phreak@gentoo.org>
565 +hardened-sources-2.6.23-r1.ebuild:
566 Revision bump, pulling in the snapshot from 30. October 2007 (18:50).
567
568 29 Oct 2007; <solar@gentoo.org> metadata.xml:
569 - update metadata.xml
570
571 25 Oct 2007; Christian Heim <phreak@gentoo.org>
572 hardened-sources-2.6.22-r8.ebuild:
573 Marking 2.6.22-r8 stable on amd64 and x86.
574
575 21 Oct 2007; Christian Heim <phreak@gentoo.org>
576 -hardened-sources-2.4.35.ebuild, -hardened-sources-2.4.35-r1.ebuild,
577 -hardened-sources-2.6.21-r4.ebuild:
578 Removing old ebuilds.
579
580 *hardened-sources-2.4.35-r2 (21 Oct 2007)
581
582 21 Oct 2007; Christian Heim <phreak@gentoo.org>
583 +hardened-sources-2.4.35-r2.ebuild:
584 Revision bump for 2.4.35. Includes new snapshot and the lastest Linux stable
585 patches.
586
587 *hardened-sources-2.6.22-r8 (21 Oct 2007)
588
589 21 Oct 2007; Christian Heim <phreak@gentoo.org>
590 +hardened-sources-2.6.22-r8.ebuild:
591 Yet another new patch, hopefully fixing the remaining issues we had w/
592 2.6.22. Candidate for stabling.
593
594 *hardened-sources-2.6.23 (13 Oct 2007)
595
596 13 Oct 2007; Christian Heim <phreak@gentoo.org>
597 +hardened-sources-2.6.23.ebuild:
598 Initial hardened-sources-2.6.23. If people still have problems w/ bug
599 194276, try setting CONFIG_PCI_GODIRECT=y instead of CONFIG_PCI_GOANY.
600
601 11 Oct 2007; Christian Heim <phreak@gentoo.org>
602 hardened-sources-2.6.20-r10.ebuild:
603 Pulling in yet another new genpatches version, fixing the PWC bug for real.
604
605 04 Oct 2007; Christian Heim <phreak@gentoo.org>
606 -hardened-sources-2.6.22-r5.ebuild, -hardened-sources-2.6.22-r6.ebuild:
607 Removing old versions.
608
609 *hardened-sources-2.6.22-r7 (01 Oct 2007)
610
611 01 Oct 2007; Christian Heim <phreak@gentoo.org>
612 +hardened-sources-2.6.22-r7.ebuild:
613 Revision bump, pulling in a newer patch. Should fix #194276.
614
615 30 Sep 2007; Christian Heim <phreak@gentoo.org>
616 hardened-sources-2.6.20-r10.ebuild:
617 Marking hardened-sources-2.6.20-r10 stable on x86 and amd64 (on courtesy of
618 Mike Doty).
619
620 *hardened-sources-2.6.22-r6 (26 Sep 2007)
621
622 26 Sep 2007; Christian Heim <phreak@gentoo.org>
623 +hardened-sources-2.6.22-r6.ebuild:
624 Revision bump, grabbing up till Linux 2.6.22.9.
625
626 24 Sep 2007; Christian Heim <phreak@gentoo.org>
627 -hardened-sources-2.6.22-r3.ebuild, -hardened-sources-2.6.22-r4.ebuild:
628 Cleaning up further.
629
630 *hardened-sources-2.6.20-r10 (24 Sep 2007)
631
632 24 Sep 2007; Christian Heim <phreak@gentoo.org>
633 -hardened-sources-2.6.20-r8.ebuild, -hardened-sources-2.6.20-r9.ebuild,
634 +hardened-sources-2.6.20-r10.ebuild:
635 Revision bump, pulling in Linux 2.6.20.20. Removing some of the older
636 revisions.
637
638 *hardened-sources-2.6.22-r5 (22 Sep 2007)
639
640 22 Sep 2007; Christian Heim <phreak@gentoo.org>
641 +hardened-sources-2.6.22-r5.ebuild:
642 Revision bump, pulling in genpatches-2.6.22-8 for CVE-2007-4573.
643
644 17 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
645 Removing johnm from metadata.xml (see #186467 for reference).
646
647 *hardened-sources-2.6.22-r4 (17 Sep 2007)
648
649 17 Sep 2007; Christian Heim <phreak@gentoo.org>
650 +hardened-sources-2.6.22-r4.ebuild:
651 Revision bump, hopefully fixing all those weird PAX failures.
652
653 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
654 Updating the metadata.xml.
655
656 01 Sep 2007; Christian Heim <phreak@gentoo.org> metadata.xml:
657 Removing tocharian from metadata due to his retirement (see #71718 for
658 reference).
659
660 *hardened-sources-2.6.20-r9 (30 Aug 2007)
661
662 30 Aug 2007; Christian Heim <phreak@gentoo.org>
663 +hardened-sources-2.6.20-r9.ebuild:
664 Revision bump for 2.6.20.18 (thanks to kerframil in #gentoo-hardened).
665
666 29 Aug 2007; Christian Heim <phreak@gentoo.org>
667 -hardened-sources-2.4.34.ebuild, -hardened-sources-2.4.34.5.ebuild,
668 -hardened-sources-2.6.20-r2.ebuild, -hardened-sources-2.6.20-r5.ebuild,
669 -hardened-sources-2.6.20-r7.ebuild, -hardened-sources-2.6.21-r3.ebuild,
670 -hardened-sources-2.6.22.ebuild, -hardened-sources-2.6.22-r1.ebuild,
671 -hardened-sources-2.6.22-r2.ebuild:
672 Removing some redundant versions.
673
674 *hardened-sources-2.4.35-r1 (29 Aug 2007)
675
676 29 Aug 2007; Christian Heim <phreak@gentoo.org>
677 +hardened-sources-2.4.35-r1.ebuild:
678 Revision bump, new grsecurity patch.
679
680 *hardened-sources-2.6.20-r8 (26 Aug 2007)
681
682 26 Aug 2007; Christian Heim <phreak@gentoo.org>
683 +hardened-sources-2.6.20-r8.ebuild:
684 Revision bump for Linux 2.6.20.17.
685
686 *hardened-sources-2.6.22-r3 (22 Aug 2007)
687
688 22 Aug 2007; Christian Heim <phreak@gentoo.org>
689 +hardened-sources-2.6.22-r3.ebuild:
690 Revision bump for Linux 2.6.22.4.
691
692 16 Aug 2007; Christian Heim <phreak@gentoo.org>
693 hardened-sources-2.6.22-r2.ebuild:
694 Updated patchset, to fix the alignment against 2.6.22.3.
695
696 *hardened-sources-2.6.22-r2 (16 Aug 2007)
697
698 16 Aug 2007; Christian Heim <phreak@gentoo.org>
699 +hardened-sources-2.6.22-r2.ebuild:
700 Revision bump for Linux 2.6.22.3.
701
702 *hardened-sources-2.4.35 (16 Aug 2007)
703
704 16 Aug 2007; Christian Heim <phreak@gentoo.org>
705 +hardened-sources-2.4.35.ebuild:
706 Version bump, initial version for Linux 2.4.35.
707
708 *hardened-sources-2.6.21-r4 (16 Aug 2007)
709
710 16 Aug 2007; Christian Heim <phreak@gentoo.org>
711 +hardened-sources-2.6.21-r4.ebuild:
712 Revision bump for Linux 2.6.21.6.
713
714 *hardened-sources-2.6.20-r7 (16 Aug 2007)
715
716 16 Aug 2007; Christian Heim <phreak@gentoo.org>
717 +hardened-sources-2.6.20-r7.ebuild:
718 Revision bump for Linux 2.6.20.16.
719
720 *hardened-sources-2.6.22-r1 (13 Aug 2007)
721
722 13 Aug 2007; Christian Heim <phreak@gentoo.org>
723 +hardened-sources-2.6.22-r1.ebuild:
724 Yet another revision bump.
725
726 *hardened-sources-2.6.22 (10 Aug 2007)
727
728 10 Aug 2007; Christian Heim <phreak@gentoo.org>
729 +hardened-sources-2.6.22.ebuild:
730 Initial release for 2.6.22. If you are using hardened-sources on a desktop
731 machine (P4 or newer), be aware you might need to disable
732 CONFIG_PAX_PAGEEXEC.
733
734 04 Aug 2007; Christian Heim <phreak@gentoo.org>
735 hardened-sources-2.6.20-r6.ebuild:
736 Stabling hardened-sources-2.6.20-r6 for amd64, ppc and x86 due to Linux
737 2.6.20.15.
738
739 10 Jul 2007; Christian Heim <phreak@gentoo.org>
740 hardened-sources-2.6.20-r5.ebuild:
741 Marking hardened-sources-2.6.20-r5 stable on ppc.
742
743 10 Jul 2007; Christian Heim <phreak@gentoo.org>
744 -hardened-sources-2.4.32-r6.ebuild, -hardened-sources-2.4.32-r7.ebuild:
745 Cleanup.
746
747 *hardened-sources-2.6.20-r6 (08 Jul 2007)
748
749 08 Jul 2007; Christian Heim <phreak@gentoo.org>
750 +hardened-sources-2.6.20-r6.ebuild:
751 Revision bump, grabbing yet another stable release.
752
753 17 Jun 2007; Christian Heim <phreak@gentoo.org>
754 -hardened-sources-2.6.18-r6.ebuild, -hardened-sources-2.6.20-r4.ebuild,
755 -hardened-sources-2.6.21-r2.ebuild:
756 Removing older ebuilds, hardened-sources-2.6.18-r6 seems to have gotten the
757 alpha stable KEYWORD by mistake.
758
759 17 Jun 2007; Christian Heim <phreak@gentoo.org>
760 hardened-sources-2.6.20-r5.ebuild:
761 Stabling hardened-sources-2.6.20-r5 due to security bug #181647 (as
762 genpatches-2.6.20-12.base contains up to Linux 2.6.20.14) on amd64 and x86.
763
764 *hardened-sources-2.6.21-r3 (12 Jun 2007)
765
766 12 Jun 2007; Christian Heim <phreak@gentoo.org>
767 +hardened-sources-2.6.21-r3.ebuild:
768 Revision bump for hardened-sources-2.6.21, incorporating various CVE (some
769 of them critical), two stable releases (2.6.21.4,2.6.21.5) and some other
770 love.
771
772 *hardened-sources-2.6.20-r5 (11 Jun 2007)
773
774 11 Jun 2007; Christian Heim <phreak@gentoo.org>
775 +hardened-sources-2.6.20-r5.ebuild:
776 Revision bump for hardened-sources-2.6.20, incorporating various CVE (some
777 of them critical), two stable releases (2.6.20.13,2.6.20.14) and some other
778 love.
779
780 *hardened-sources-2.4.34.5 (11 Jun 2007)
781
782 11 Jun 2007; Alexander Gabert <pappy@gentoo.org>
783 +hardened-sources-2.4.34.5.ebuild:
784 added new hardened-sources 2.4 version, thx to phreak, solar, pipacs
785
786 30 May 2007; Christian Heim <phreak@gentoo.org>
787 -hardened-sources-2.6.18.ebuild, hardened-sources-2.6.20-r2.ebuild:
788 Marking 2.6.20-r2 stable on ppc with permission of Gysbert. Removing more
789 stale ebuild(s).
790
791 30 May 2007; Christian Heim <phreak@gentoo.org>
792 -hardened-sources-2.6.14-r7.ebuild, -hardened-sources-2.6.16-r11.ebuild,
793 -hardened-sources-2.6.17-r1.ebuild, -hardened-sources-2.6.19-r6.ebuild,
794 -hardened-sources-2.6.20.ebuild, -hardened-sources-2.6.20-r1.ebuild:
795 Doing some cleanups, remove stale ebuilds.
796
797 26 May 2007; Christian Heim <phreak@gentoo.org>
798 hardened-sources-2.6.21-r2.ebuild:
799 Fixing the grsecurity patch, had one '};' too much.
800
801 *hardened-sources-2.6.21-r2 (26 May 2007)
802
803 26 May 2007; Christian Heim <phreak@gentoo.org>
804 -hardened-sources-2.6.21.ebuild, -hardened-sources-2.6.21-r1.ebuild,
805 +hardened-sources-2.6.21-r2.ebuild:
806 Revision bump, including Linux 2.6.21.3 (fixing CVE-2007-2451). Updating the
807 grsecurity patch to 2.1.10-2.6.21.1-200705221918.
808
809 *hardened-sources-2.6.20-r4 (26 May 2007)
810
811 26 May 2007; Christian Heim <phreak@gentoo.org>
812 -hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.20-r4.ebuild:
813 Revision bump, including Linux 2.6.20.12 (which in fact fixed some security
814 bugs, at the very least CVE-2007-2451). Possible candidate for stable marking.
815
816 15 May 2007; Christian Heim <phreak@gentoo.org>
817 hardened-sources-2.6.20-r3.ebuild:
818 Looks like hardened-sources-2.6.20-r3 needs a new patch, as 2.6.20.11
819 introduced a change in arch/sparc64/kernel/pci_iommu.c, which made the
820 grsecurity patch fail in that exact same hunk.
821
822 *hardened-sources-2.6.20-r3 (15 May 2007)
823
824 15 May 2007; Christian Heim <phreak@gentoo.org>
825 +hardened-sources-2.6.20-r3.ebuild, +hardened-sources-2.6.21-r1.ebuild:
826 Revision bump, incorporating Linux 2.6.20.11.
827
828 *hardened-sources-2.6.21-r1 (11 May 2007)
829
830 11 May 2007; Christian Heim <phreak@gentoo.org>
831 +hardened-sources-2.6.21-r1.ebuild:
832 Revision bump, hopefully fixing the GRSECURITY/GRKERNSEC mixup pipacs
833 mentioned in #177234.
834
835 07 May 2007; Kevin F. Quinn <kevquinn@gentoo.org>
836 files/digest-hardened-sources-2.6.21, Manifest:
837 Fix Manifest/digest for linux-2.6.21.tar.bz2
838
839 06 May 2007; Christian Heim <phreak@gentoo.org>
840 hardened-sources-2.6.21.ebuild:
841 Bumping the hardened-patches version, needed for the fix for #177234.
842
843 *hardened-sources-2.6.21 (02 May 2007)
844
845 02 May 2007; Christian Heim <phreak@gentoo.org>
846 +hardened-sources-2.6.21.ebuild:
847 Version bump, Linux 2.6.21-hardened.
848
849 29 Apr 2007; Christian Heim <phreak@gentoo.org>
850 hardened-sources-2.6.20-r2.ebuild:
851 Adding ~ia64 on Ned's request.
852
853 29 Apr 2007; Christian Heim <phreak@gentoo.org>
854 hardened-sources-2.6.20-r2.ebuild:
855 Fixing the included grsecurity patch, wasn't alligning due to the Index:
856 header line(s).
857
858 29 Apr 2007; Christian Heim <phreak@gentoo.org>
859 hardened-sources-2.6.20-r2.ebuild:
860 Stabilizing hardened-sources-2.6.20-r2 on amd64 and x86.
861
862 *hardened-sources-2.6.20-r2 (10 Apr 2007)
863
864 10 Apr 2007; Raúl Porcel <armin76@gentoo.org>
865 +hardened-sources-2.6.20-r2.ebuild:
866 Version bump, on behalf of phreak
867
868 *hardened-sources-2.6.20-r1 (04 Apr 2007)
869
870 04 Apr 2007; Christian Heim <phreak@gentoo.org>
871 +hardened-sources-2.6.20-r1.ebuild:
872 Revision bump, grabbing a newer grsecurity snapshot.
873
874 *hardened-sources-2.6.20 (25 Mar 2007)
875
876 25 Mar 2007; Christian Heim <phreak@gentoo.org>
877 +hardened-sources-2.6.20.ebuild:
878 Finally a hardened-sources version for 2.6.20; many people have been waiting
879 for this. Thanks to Steve for preliminary testing, thanks to Ned for the
880 testbox.
881
882 16 Mar 2007; Tony Vroon <chainsaw@gentoo.org>
883 hardened-sources-2.6.18-r6.ebuild:
884 Marked stable on amd64 and x86. AMD64 keyword ack'ed by welp.
885
886 *hardened-sources-2.6.18-r6 (16 Mar 2007)
887
888 16 Mar 2007; Christian Heim <phreak@gentoo.org>
889 -hardened-sources-2.6.18-r5.ebuild, +hardened-sources-2.6.18-r6.ebuild:
890 Fixing CVE-2007-1000 locally (hardened/), thanks to Tony for pushing. And
891 yes I screwed up, this is tagged as 2.6.18-5 and not 2.6.18-6 as it's
892 supposed to be.
893
894 06 Mar 2007; Christian Heim <phreak@gentoo.org> ChangeLog:
895 Fixing the Manifest, the previous one was broken (as in still had the
896 deleted ebuild in it).
897
898 06 Mar 2007; Christian Heim <phreak@gentoo.org>
899 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
900 +hardened-sources-2.6.18-r5.ebuild:
901 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
902 Linux 2.6.18.8. Also cleaning up the older version.
903
904 *hardened-sources-2.6.18-r5 (06 Mar 2007)
905
906 06 Mar 2007; Christian Heim <phreak@gentoo.org>
907 -hardened-sources-2.6.16-r10.ebuild, -hardened-sources-2.6.18-r4.ebuild,
908 +hardened-sources-2.6.18-r5.ebuild:
909 Bumping the ~arch'ed 2.6.18 version, pulling in genpatches-2.6.18-10 for
910 Linux 2.6.18.8. Also cleaning up the older version.
911
912 24 Feb 2007; Christian Heim <phreak@gentoo.org>
913 -hardened-sources-2.6.19-r3.ebuild, -hardened-sources-2.6.19-r4.ebuild,
914 -hardened-sources-2.6.19-r5.ebuild:
915 Removing some of the old version, that didn't work.
916
917 *hardened-sources-2.6.19-r6 (12 Feb 2007)
918
919 12 Feb 2007; Christian Heim <phreak@gentoo.org>
920 +hardened-sources-2.6.19-r6.ebuild:
921 Revision bump, including a new grsec version fixing #166235.
922
923 *hardened-sources-2.4.34 (24 Jan 2007)
924
925 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
926 Manifest:
927 updating Manifest with checksums of new tarball and ebuild
928
929 24 Jan 2007; Alexander Gabert <pappy@gentoo.org>
930 +hardened-sources-2.4.34.ebuild:
931 I added new hardened sources 2.4 update, this is a critical path
932 security bugfix - all users of h-s are strongly advised
933 to update their existing hardened sources to this version.
934 It contains a fix for a kernel vulnerability that is pertaining
935 to the PaX changes to virtual memory management, possibly leading
936 to a local kernel exploit ... see grsecurity.net forums and homepage
937
938 23 Jan 2007; Christian Heim <phreak@gentoo.org>
939 files/digest-hardened-sources-2.6.19-r5, Manifest:
940 Fixing the patch-tarball digest.
941
942 *hardened-sources-2.6.19-r5 (23 Jan 2007)
943
944 23 Jan 2007; Christian Heim <phreak@gentoo.org>
945 +hardened-sources-2.6.19-r5.ebuild:
946 Revision bump, closing the recently discovered PaX expand_stack()
947 vulnerability.
948
949 *hardened-sources-2.6.19-r4 (14 Jan 2007)
950
951 14 Jan 2007; Christian Heim <phreak@gentoo.org>
952 +hardened-sources-2.6.19-r4.ebuild:
953 Revision bump, pulling in linux-2.6.19.2 and grsecurity 2.1.10 - thus
954 dropping the randomized PID feature.
955
956 11 Jan 2007; Christian Faulhammer <opfer@gentoo.org>
957 hardened-sources-2.4.33.4.ebuild:
958 stable x86, bug #161171
959
960 *hardened-sources-2.6.19-r3 (27 Dec 2006)
961
962 27 Dec 2006; Christian Heim <phreak@gentoo.org>
963 -hardened-sources-2.6.19-r2.ebuild, +hardened-sources-2.6.19-r3.ebuild:
964 Revision bump for bug #157186 and #158786.
965
966 *hardened-sources-2.6.18-r4 (27 Dec 2006)
967
968 27 Dec 2006; Christian Heim <phreak@gentoo.org>
969 -hardened-sources-2.6.18-r3.ebuild, +hardened-sources-2.6.18-r4.ebuild:
970 Revision bump for bug #157186.
971
972 *hardened-sources-2.6.19-r2 (23 Dec 2006)
973
974 23 Dec 2006; Christian Heim <phreak@gentoo.org>
975 -hardened-sources-2.6.19-r1.ebuild, +hardened-sources-2.6.19-r2.ebuild:
976 Revision bump to pull in genpatches-2.6.19-3 for #157186.
977
978 17 Dec 2006; Christian Heim <phreak@gentoo.org>
979 hardened-sources-2.6.14-r7.ebuild, hardened-sources-2.6.16-r10.ebuild,
980 hardened-sources-2.6.16-r11.ebuild, hardened-sources-2.6.17-r1.ebuild,
981 hardened-sources-2.6.18.ebuild, hardened-sources-2.6.18-r3.ebuild,
982 hardened-sources-2.6.19-r1.ebuild:
983 Adding 4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch to UNIPATCH_EXLUDE,
984 adding correct HOMEPAGE and adjusting DESCRIPTION (thanks to Alexander).
985
986 *hardened-sources-2.4.33.4 (17 Dec 2006)
987
988 17 Dec 2006; Alexander Gabert <pappy@gentoo.org>
989 +hardened-sources-2.4.33.4.ebuild:
990 new 2.4.33.4 version including grsec and fixes, thanks to phreak for help
991 and quilting
992
993 *hardened-sources-2.6.19-r1 (14 Dec 2006)
994
995 14 Dec 2006; Christian Heim <phreak@gentoo.org>
996 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
997 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
998 for reporting).
999
1000 *hardened-sources-2.6.19 (13 Dec 2006)
1001
1002 13 Dec 2006; Christian Heim <phreak@gentoo.org>
1003 +hardened-sources-2.6.19.ebuild:
1004 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
1005 Brad for providing that prompt update.
1006
1007 *hardened-sources-2.6.18-r3 (13 Dec 2006)
1008
1009 13 Dec 2006; Christian Heim <phreak@gentoo.org>
1010 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
1011 +hardened-sources-2.6.18-r3.ebuild:
1012 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
1013 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
1014
1015 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
1016 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
1017
1018 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
1019 Stable on ppc wrt bug 157356
1020
1021 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
1022 hardened-sources-2.6.18.ebuild:
1023 stable x86, bug #157356
1024
1025 *hardened-sources-2.6.18-r2 (06 Dec 2006)
1026
1027 06 Dec 2006; Christian Heim <phreak@gentoo.org>
1028 +hardened-sources-2.6.18-r2.ebuild:
1029 Revision bump, including 2.6.18.5 (via genpatches) and
1030 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
1031 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
1032 redesign.
1033
1034 06 Dec 2006; Christian Heim <phreak@gentoo.org>
1035 hardened-sources-2.6.18.ebuild:
1036 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
1037 of Mike Doty).
1038
1039 *hardened-sources-2.6.18-r1 (23 Nov 2006)
1040
1041 23 Nov 2006; Christian Heim <phreak@gentoo.org>
1042 +hardened-sources-2.6.18-r1.ebuild:
1043 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
1044
1045 *hardened-sources-2.6.18 (11 Nov 2006)
1046
1047 11 Nov 2006; Christian Heim <phreak@gentoo.org>
1048 +hardened-sources-2.6.18.ebuild:
1049 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
1050
1051 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
1052 - mark amd64 stable also. bug #151877
1053
1054 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
1055 - mark 2.6.17-r1 stable
1056
1057 27 Aug 2006; Christian Heim <phreak@gentoo.org>
1058 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
1059 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
1060
1061 *hardened-sources-2.6.17-r1 (26 Aug 2006)
1062
1063 26 Aug 2006; Christian Heim <phreak@gentoo.org>
1064 +hardened-sources-2.6.17-r1.ebuild:
1065 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
1066 grsecurity patch.
1067
1068 *hardened-sources-2.6.17 (17 Aug 2006)
1069
1070 17 Aug 2006; Christian Heim <phreak@gentoo.org>
1071 +hardened-sources-2.6.17.ebuild:
1072 Bumping the hardened-sources-2.6 series to 2.6.17, using
1073 genpatches-2.6.17-6.base.
1074
1075 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
1076 - stable on x86 and amd64
1077
1078 *hardened-sources-2.6.16-r11 (15 Jul 2006)
1079
1080 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
1081 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
1082 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
1083 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
1084 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
1085 crusty ebuilds
1086
1087 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
1088 hardened-sources-2.6.16-r10.ebuild:
1089 marking stable on x86 and amd64
1090
1091 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
1092 - 2.4.32-r6 stable on x86. RSBAC state unknown
1093
1094 *hardened-sources-2.4.32-r7 (10 Jul 2006)
1095
1096 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
1097 +hardened-sources-2.4.32-r7.ebuild:
1098 Bump PaX for RSBAC to test-17
1099
1100 *hardened-sources-2.6.16-r9 (03 Jul 2006)
1101
1102 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
1103 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
1104 hardened-sources-2.6.16 bump to latest -base.
1105
1106 *hardened-sources-2.4.32-r6 (30 Jun 2006)
1107
1108 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
1109 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
1110 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
1111 sysctl controlable resource logging
1112
1113 *hardened-sources-2.6.16-r7 (05 Jun 2006)
1114
1115 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
1116 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
1117 push new 2.6.16 release in preparation for stable
1118
1119 22 May 2006; <solar@gentoo.org> :
1120 - redigest bug 134002
1121
1122 *hardened-sources-2.4.32-r5 (16 May 2006)
1123
1124 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
1125 +hardened-sources-2.4.32-r5.ebuild:
1126 Fixes rsbac common patching (new patch in new -r5 patchset)
1127
1128 *hardened-sources-2.4.32-r4 (13 May 2006)
1129
1130 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
1131 +hardened-sources-2.4.32-r4.ebuild:
1132 - security bumps
1133
1134 *hardened-sources-2.6.16-r6 (03 May 2006)
1135
1136 03 May 2006; John Mylchreest <johnm@gentoo.org>
1137 +hardened-sources-2.6.16-r6.ebuild:
1138 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
1139
1140 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1141 hardened-sources-2.6.14-r8.ebuild:
1142 fix x86_64 build problem, this will delay the digest issue again for a short
1143 while but it will sort itself out
1144
1145 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
1146 hardened-sources-2.6.14-r8.ebuild:
1147 bump hardened patchset
1148
1149 27 Apr 2006; Alec Warner <antarus@gentoo.org>
1150 files/digest-hardened-sources-2.4.32-r2,
1151 files/digest-hardened-sources-2.4.32-r3,
1152 files/digest-hardened-sources-2.6.14-r8, Manifest:
1153 Fixing duff SHA256 digests: Bug # 131293
1154
1155 *hardened-sources-2.6.16-r5 (27 Apr 2006)
1156
1157 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
1158 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
1159 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
1160 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
1161 cleanup of old uneccessary sources
1162
1163 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1164 fix digest
1165
1166 *hardened-sources-2.6.14-r8 (20 Apr 2006)
1167
1168 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1169 +hardened-sources-2.6.14-r8.ebuild:
1170 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
1171
1172 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
1173 Turning on gpg-signing again, and recomitting
1174
1175 *hardened-sources-2.6.16-r4 (20 Apr 2006)
1176
1177 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
1178 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
1179 +hardened-sources-2.6.16-r4.ebuild:
1180 Fix numerous security vulns
1181
1182 *hardened-sources-2.4.32-r3 (16 Apr 2006)
1183
1184 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
1185 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
1186 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
1187 - security bump for bug #112791. Removed old ebuilds
1188
1189 *hardened-sources-2.6.16-r3 (15 Apr 2006)
1190
1191 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
1192 +hardened-sources-2.6.16-r3.ebuild:
1193 Removing silly localversion which I missed
1194
1195 *hardened-sources-2.6.14-r7 (14 Apr 2006)
1196
1197 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
1198 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
1199 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
1200
1201 *hardened-sources-2.6.16-r2 (13 Apr 2006)
1202
1203 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
1204 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
1205 +hardened-sources-2.6.16-r2.ebuild:
1206 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
1207 labels, dropping USERGROUP define fixes, since these were merged mainstream.
1208
1209 *hardened-sources-2.6.16-r1 (11 Apr 2006)
1210
1211 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
1212 +hardened-sources-2.6.16-r1.ebuild:
1213 Bumping to include ppc build fix and 2.6.16.3
1214
1215 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
1216 hardened-sources-2.6.14-r6.ebuild:
1217 Stable on x86; bug #127718
1218
1219 *hardened-sources-2.6.16 (31 Mar 2006)
1220
1221 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
1222 +hardened-sources-2.6.16.ebuild:
1223 Bumping to new version of grsec, and kernel base. New squashfs. Based on
1224 2.6.16.1
1225
1226 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
1227 hardened-sources-2.6.14-r6.ebuild:
1228 Stable on amd64, bug 127718.
1229
1230 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
1231 Stable on ppc. Bug #127718
1232
1233 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1234 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
1235 -hardened-sources-2.6.14-r4.ebuild:
1236 Cleanup.
1237
1238 *hardened-sources-2.6.14-r6 (15 Mar 2006)
1239
1240 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
1241 +hardened-sources-2.6.14-r6.ebuild:
1242 Fixes grsec policy recreation bug and adds a
1243 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
1244
1245 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
1246 - stable on x86
1247
1248 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
1249 hardened-sources-2.6.14-r5.ebuild:
1250 Stable on ppc.
1251
1252 *hardened-sources-2.6.14-r5 (01 Feb 2006)
1253
1254 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
1255 +hardened-sources-2.6.14-r5.ebuild:
1256 fixing every known exploit
1257
1258 *hardened-sources-2.4.32-r2 (26 Jan 2006)
1259
1260 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
1261 +hardened-sources-2.4.32-r2.ebuild:
1262 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
1263
1264 *hardened-sources-2.6.14-r4 (12 Jan 2006)
1265
1266 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
1267 - version bump for new genpatches which fix up a few sec holes
1268
1269 *hardened-sources-2.4.32-r1 (05 Jan 2006)
1270
1271 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
1272 - revision bump to add misc vital linux kernel security patches.
1273
1274 *hardened-sources-2.6.14-r3 (30 Dec 2005)
1275
1276 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
1277 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
1278 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
1279
1280 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
1281 hardened-sources-2.6.14-r2.ebuild:
1282 making x86 & amd64 stable following testing.
1283
1284 *hardened-sources-2.6.14-r2 (27 Dec 2005)
1285
1286 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
1287 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
1288 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
1289 network hooks.
1290
1291 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
1292 hardened-sources-2.6.14-r1.ebuild:
1293 bumping to stable early for sec fix on x86 & amd64
1294
1295 *hardened-sources-2.6.14-r1 (05 Dec 2005)
1296
1297 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
1298 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
1299 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
1300
1301 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
1302 - stable on x86 security bug #114227 CAN-2005-3257
1303
1304 *hardened-sources-2.4.32 (19 Nov 2005)
1305
1306 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
1307 +hardened-sources-2.4.32.ebuild:
1308 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
1309 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
1310 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
1311 rsbac >> /etc/portage/package.use)
1312
1313 *hardened-sources-2.6.14 (14 Nov 2005)
1314
1315 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
1316 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
1317 Bumping 2.6 series to 2.6.14.2
1318
1319 *hardened-sources-2.6.13-r2 (20 Oct 2005)
1320
1321 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
1322 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
1323 +hardened-sources-2.6.13-r2.ebuild:
1324 Fixes minor build error in ppc.
1325
1326 *hardened-sources-2.6.13-r1 (17 Oct 2005)
1327
1328 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
1329 +hardened-sources-2.6.13-r1.ebuild:
1330 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
1331 2.6.13.4, fixes some major amd64 stability problems.
1332
1333 *hardened-sources-2.6.13 (16 Sep 2005)
1334
1335 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
1336 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
1337 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
1338 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
1339 users should test this thoroughly.
1340
1341 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
1342 - stable on x86
1343
1344 *hardened-sources-2.6.11-r15 (27 Jun 2005)
1345
1346 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
1347 +hardened-sources-2.6.11-r15.ebuild:
1348 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
1349 grsec redefining curr_ip struct.
1350
1351 *hardened-sources-2.4.31 (20 Jun 2005)
1352
1353 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
1354 initial import of 2.4.31 tree
1355
1356 *hardened-sources-2.6.11-r14 (14 Jun 2005)
1357
1358 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
1359 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
1360 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
1361 naming scheme to abide by genpatches
1362
1363 *hardened-sources-2.6.11-r13 (18 May 2005)
1364
1365 18 May 2005; John Mylchreest <johnm@gentoo.org>
1366 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
1367 Managed to mangle the Makefile patch from grsec, to miss out the grsec
1368 target. sorry about that. Fixes bug #93022
1369
1370 *hardened-sources-2.6.11-r12 (17 May 2005)
1371
1372 17 May 2005; John Mylchreest <johnm@gentoo.org>
1373 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1374 +hardened-sources-2.6.11-r12.ebuild:
1375 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1376 merges in genpatches-base
1377
1378 *hardened-sources-2.6.11-r12 (17 May 2005)
1379
1380 17 May 2005; John Mylchreest <johnm@gentoo.org>
1381 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
1382 +hardened-sources-2.6.11-r12.ebuild:
1383 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
1384 merges in genpatches-base
1385
1386 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
1387 -files/2.4.27-cmdline-race.patch,
1388 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
1389 -files/2.4.28-grsec-binfmt_a.out.patch,
1390 -files/2.4.28-grsec-cmdline-race.patch,
1391 -files/2.4.28-selinux-binfmt_a.out.patch,
1392 -files/2.4.28-selinux-cmdline-race.patch,
1393 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
1394 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
1395 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
1396 cleanup..
1397
1398 *hardened-sources-2.4.30-r1 (21 Apr 2005)
1399
1400 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
1401 - disable aout by default
1402
1403 *hardened-sources-2.4.30 (18 Apr 2005)
1404
1405 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
1406 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
1407 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
1408 use
1409
1410 *hardened-sources-2.4.29 (30 Mar 2005)
1411
1412 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1413 +hardened-sources-2.4.29.ebuild:
1414 New hardened-patches-2.4-29.0 patchball.
1415 Removed SELinux support, upgraded GRSecurity to 2.1.4.
1416
1417 *hardened-sources-2.4.28-r5 (06 Mar 2005)
1418
1419 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
1420 +hardened-sources-2.4.28-r5.ebuild:
1421 Added a fix for a PaX vulnerability.
1422
1423 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1424 hardened-sources-2.4.28-r4.ebuild:
1425 Stable on x86
1426
1427 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
1428 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
1429 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
1430 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
1431 - fixed/added RDEPEND= in all kernel-2 ebuilds
1432
1433 *hardened-sources-2.4.28-r4 (21 Jan 2005)
1434
1435 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1436 +hardened-sources-2.4.28-r4.ebuild:
1437 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
1438 backport of neighbour hash updates.
1439
1440 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1441 hardened-sources-2.4.28-r3.ebuild:
1442 Stable on x86
1443
1444 *hardened-sources-2.6.10-r3 (20 Jan 2005)
1445
1446 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
1447 +hardened-sources-2.6.10-r3.ebuild:
1448 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
1449 in 2005.0
1450
1451 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1452 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
1453 hardened-sources-2.4.28-r2.ebuild:
1454 Mark stable on x86
1455
1456 *hardened-sources-2.4.28-r3 (17 Jan 2005)
1457
1458 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1459 +hardened-sources-2.4.28-r3.ebuild:
1460 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
1461
1462 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1463 hardened-sources-2.4.28.ebuild:
1464 Mark stable on x86.
1465
1466 *hardened-sources-2.4.28-r2 (13 Jan 2005)
1467
1468 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
1469 +hardened-sources-2.4.28-r2.ebuild:
1470 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
1471 Mazinger for grsecurity patches as well.
1472
1473 *hardened-sources-2.4.28-r1 (23 Dec 2004)
1474
1475 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
1476 Security bump. Thank tocharian for rolling a new patchset...
1477
1478 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
1479 +files/2.4.28-grsec-cmdline-race.patch,
1480 +files/2.4.28-selinux-binfmt_a.out.patch,
1481 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
1482 - Round up remaining security patches that appear to be missing in 2.4.28. -
1483 PaX standalone updated to current. hgpv=28.1
1484
1485 *hardened-sources-2.4.28 (28 Nov 2004)
1486
1487 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
1488 security bump. Thank tocharian for rolling a new patchset
1489
1490 *hardened-sources-2.4.27-r3 (08 Sep 2004)
1491
1492 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
1493 +hardened-sources-2.4.27-r3.ebuild:
1494 Applies the new 2.4-27.2 patchball which updates
1495 GRSecurity to the 2.0.1 version.
1496
1497 *hardened-sources-2.4.27-r2 (31 Aug 2004)
1498
1499 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1500 +hardened-sources-2.4.27-r2.ebuild:
1501 Version bump.
1502 This version uses the new 2.4-27.1 patchball which updates
1503 both the SELinux PaX hooks patch and the SELinux headers.
1504
1505 *hardened-sources-2.4.27-r1 (09 Aug 2004)
1506
1507 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1508 +hardened-sources-2.4.27-r1.ebuild,
1509 -hardened-sources-2.4.27.ebuild,
1510 +files/2.4.27-cmdline-race.patch:
1511 Version bump, fix for cmdline race. See bug #59905.
1512
1513 *hardened-sources-2.4.26-r6 (09 Aug 2004)
1514
1515 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1516 +hardened-sources-2.4.26-r6.ebuild,
1517 -hardened-sources-2.4.26-r5.ebuild,
1518 -hardened-sources-2.4.26-r4.ebuild,
1519 +files/2.4.26-cmdline-race.patch:
1520 Version bump, fix for cmdline race. See bug #59905.
1521
1522 *hardened-sources-2.4.27 (08 Aug 2004)
1523
1524 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1525 +hardened-sources-2.4.27.ebuild,
1526 +files/2.4.27-CAN-2004-0394.patch:
1527 Ported the patchball to the 2.4.27 kernel version.
1528
1529 *hardened-sources-2.4.26-r5 (07 Aug 2004)
1530
1531 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1532 +hardened-sources-2.4.26-r5.ebuild:
1533 Updated to use the new hardened-patches-2.4-26.1 patchball.
1534 It adds the following features:
1535 - Squashfs
1536 - Ebtables
1537 - Netdev random (core+drivers)
1538 - Watchdog Timer (WDT) fix.
1539
1540 *hardened-sources-2.4.26-r4 (04 Aug 2004)
1541
1542 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
1543 +hardened-sources-2.4.26-r4.ebuild,
1544 +files/2.4.26-CAN-2004-0415.patch,
1545 -hardened-sources-2.4.26-3:
1546 Version bump, fix for CAN 0415, see bug #59378.
1547
1548 *hardened-sources-2.4.26-r3 (22 Jul 2004)
1549
1550 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
1551 +hardened-sources-2.4.26-r3.ebuild,
1552 +files/2.4.26-CAN-2004-0497.patch,
1553 -hardened-sources-2.4.26-r2.ebuild:
1554 Version bump, fixed CAN 0497, see bug #56171.
1555
1556 *hardened-sources-2.4.26-r2 (29 Jun 2004)
1557
1558 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
1559 +hardened-sources-2.4.26-r2.ebuild,
1560 +files/2.4.26-CAN-2004-0495.patch,
1561 +files/2.4.26-CAN-2004-0535.patch,
1562 -hardened-sources-2.4.26-r1.ebuild:
1563 Fixes for both CAN 0495 and 0535, see bug #54976
1564
1565 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
1566 hardened-sources-2.4.26-r1.ebuild:
1567 QA - fix use invocation
1568
1569 *hardened-sources-2.4.26-r1 (22 June 2004)
1570
1571 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
1572 +hardened-sources-2.4.26-r1.ebuild,
1573 +files/2.4.26-CAN-2004-0394.patch,
1574 +files/2.4.26-signal-race.patch,
1575 -hardened-sources-2.4.26.ebuild,
1576 -hardened-sources-2.4.24-r3.ebuild:
1577 Version bump for the CAN-2004-0394 issue and bug #53804
1578 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
1579
1580
1581 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1582 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
1583 Masked hardened-sources-2.4.26.ebuild broken for ppc
1584
1585 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
1586 hardened-sources-2.4.24-r3.ebuild:
1587 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
1588
1589 *hardened-sources-2.4.26 (29 May 2004)
1590
1591 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
1592 +hardened-sources-2.4.26.ebuild:
1593 Updated hardened-sources for the 2.4.26 kernel
1594 Removed broken components, updated almost everything.
1595
1596 *hardened-sources-2.4.24-r3 (17 Apr 2004)
1597
1598 17 Apr 2004; <plasmaroo@gentoo.org>
1599 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
1600 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
1601 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
1602 +hardened-sources-2.4.24-r3.ebuild:
1603 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
1604 vulnerabilities. Old revisions removed.
1605
1606 *hardened-sources-2.4.24-r2 (15 Apr 2004)
1607
1608 15 Apr 2004; <plasmaroo@gentoo.org>
1609 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
1610 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
1611 Version bump for the CAN-2004-0109 issue; bug #47881.
1612
1613 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
1614 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
1615 Add eutils to inherit.
1616
1617 *hardened-sources-2.4.24-r1 (19 Feb 2004)
1618
1619 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
1620 files/hardened-sources-2.4.24.munmap.patch:
1621 Added the patch for the mremap/munmap vulnerability. Bug #42024.
1622
1623 *hardened-sources-2.4.24 (06 Feb 2004)
1624
1625 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
1626 hardened-sources-2.4.24.ebuild:
1627 Version bump, updated most of the components.
1628 This release includes the following:
1629
1630 - Hardened security
1631 - Netfilter patch-o-matic 20031219
1632 - FreeSWAN 2.04 & x509 1.4.8
1633 - EVMS 2.2.2
1634 - XFS 1.3.1
1635 - cryptoloop jari
1636 - grsecurity 2.0-rc4
1637 - SELinux
1638 - PaX 200402060000
1639 - PaX Obscurity 200308302223
1640 - Others...
1641
1642 Neither -ck nor systrace are included anymore.
1643
1644 *hardened-sources-2.4.22-r2 (05 Jan 2004)
1645
1646 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
1647 hardened-sources-2.4.22-r2.ebuild:
1648 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
1649
1650 *hardened-sources-2.4.22-r1 (02 Dec 2003)
1651
1652 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1653 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
1654
1655 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
1656 hardened-sources-2.4.22-r1.ebuild:
1657 Version bump for the 'do_brk' vulnerability.
1658
1659 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
1660 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
1661 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
1662 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
1663 Fix the 'do_brk' vulnerability.
1664
1665 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
1666 hardened-sources-2.4.22.ebuild:
1667 - Removed the src_install() portion for SELinux flask
1668 components. These are no longer handled in the kernel
1669 so this code was not necessary.
1670
1671 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
1672 New 2.4.22 based hardened-sources thanks to
1673 Phil West <p.west@computer.org>.
1674
1675 These sources include:
1676 - New SELinux API
1677 - Updated CK-base
1678 - Updated GRSec
1679 - Systrace
1680 - SuperFreeS/WAN 1.99.8
1681 - Propolice kernel build support
1682 - EVMS
1683 - Other various security related patches
1684
1685 *hardened-sources-2.4.21 (14 Sep 2003)
1686
1687 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
1688 Updated hardened-sources based on the 2.4.21 Linux kernel.
1689 This includes updates to most major components such as:
1690 - ck-base-0306300059
1691 - selinux-2.4-2003071106
1692 - grsecurity-2.0-rc1
1693 - Updated IPTables patch-o-matic
1694 - Updated SuperFreeS/WAN
1695
1696 Thanks to Phil West <pwest@computer.org> for his work in getting this
1697 updated patch set ready for the 2.4.21 based kernel.
1698
1699 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
1700 Initial import of hardened-sources-2.4.20-r4. This revision
1701 includes only a few changes, but one of these is an important
1702 security fix. It is recommended all users of hardened-sources
1703 upgrade to this release.
1704
1705 - ioperm bug fix
1706 - fixed compilation failure when building without GRSec
1707
1708 SAL (Secure Auditing for Linux) is NOT included in this revision
1709 due to time constraints, but is planned for inclusion in the near
1710 future.
1711
1712 *hardened-sources-2.4.20-r2 (12 Jun 2003)
1713
1714 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
1715 hardened-sources-2.4.20-r3.ebuild:
1716 Add Header...
1717
1718 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1719 hardened-sources-2.4.20-r3.ebuild:
1720 Removed warnings from ebuild. This kernel should be safe to
1721 use at this point.
1722
1723 *hardened-sources-2.4.20-r3 (08 Jun 2003)
1724
1725 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
1726 hardened-sources-2.4.20-r3.ebuild:
1727 New revision. Includes the following changes over -r2:
1728
1729 - ck7-base (O(1), preempt, low latency)
1730 - Super FreeS/WAN 1.99.7rc2
1731 - PaX for the LSM/SELinux branch
1732 - GRSecurity 2.0-pre4 (role based access control)
1733 - Systrace 1.3
1734 - EXT3 fixes
1735 - EVMS 2.0.1
1736 - GCC 3.1+ compile optimizations
1737 - ProPolice kernel build support
1738 - Hashing table security fixes
1739
1740 *hardened-sources-2.4.20-r1 (09 Apr 2003)
1741
1742 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
1743 Initial import of hardened-sources-r2. This new
1744 ebuild includes many new performance and security
1745 related patches. As in -r1, it will patch in
1746 LSM/SELinux if "selinux" is in USE, otherwise it
1747 will patch in GRSecurity. The following patches
1748 are included in this revision:
1749
1750 - O(1) Scheduler, Low Latency, and Preempt
1751 (pulled from the base CK patch)
1752 - ptrace exploit patch for the LSM kernel
1753 (the GRSec patch already fixes this)
1754 - LSM 2.4-2003040709
1755 - SELinux 2.4-2003040709
1756 - Systrace v1.2
1757 - IPTables patch-o-matic base patches - 20030107
1758 - CryptoAPI 2.4.20.1 w/ loop-jari patch
1759 - Super FreeS/WAN 1.99.6.1
1760 - GRSecurity 1.9.9g
1761 - MPPE
1762 - EXT3 data journal fix
1763 - CIPE 1.5.4
1764
1765 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1766 hardened-sources-2.4.20-r1.ebuild, manifest:
1767 Updated to install flask components correctly for selinux.
1768
1769 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1770 hardened-sources-2.4.20-r1.ebuild:
1771 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
1772 is patched in instead. Ptrace patches for selinux have also been added. In
1773 either case, systrace support will be patched in as well.
1774
1775 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1776 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
1777 Revision bump for new sources.
1778
1779 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
1780 hardened-sources-2.4.20-r1.ebuild:
1781 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
1782
1783 *hardened-sources-2.4.20 (30 Mar 2003)
1784
1785 30 Mar 2003; Joshua Brindle <method@gentoo.org>
1786 hardened-sources-2.4.20.ebuild:
1787 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20