/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log

Revision 1.34 - (show annotations) (download)
Sun Aug 8 06:31:28 2004 UTC (8 years, 9 months ago) by scox
Branch: MAIN
Changes since 1.33: +11 -0 lines 
Added hardened-sources-2.4.26-r5 which uses the new 2.4-26.1 patchball.
1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: $
4
5 *hardened-sources-2.4.26-r5 (07 Aug 2004)
6
7 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
8 +hardened-sources-2.4.26-r5.ebuild:
9 Updated to use the new hardened-patches-2.4.26.1 patchball.
10 It adds the following features:
11 - Squashfs
12 - Ebtables
13 - Netdev random (core+drivers)
14 - Watchdog Timer (WDT) fix.
15
16 *hardened-sources-2.4.26-r4 (04 Aug 2004)
17
18 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
19 +hardened-sources-2.4.26-r4.ebuild,
20 +files/2.4.26-CAN-2004-0415.patch,
21 -hardened-sources-2.4.26-3:
22 Version bump, fix for CAN 0415, see bug #59378.
23
24 *hardened-sources-2.4.26-r3 (22 Jul 2004)
25
26 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
27 +hardened-sources-2.4.26-r3.ebuild,
28 +files/2.4.26-CAN-2004-0497.patch,
29 -hardened-sources-2.4.26-r2.ebuild:
30 Version bump, fixed CAN 0497, see bug #56171.
31
32 *hardened-sources-2.4.26-r2 (29 Jun 2004)
33
34 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
35 +hardened-sources-2.4.26-r2.ebuild,
36 +files/2.4.26-CAN-2004-0495.patch,
37 +files/2.4.26-CAN-2004-0535.patch,
38 -hardened-sources-2.4.26-r1.ebuild:
39 Fixes for both CAN 0495 and 0535, see bug #54976
40
41 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
42 hardened-sources-2.4.26-r1.ebuild:
43 QA - fix use invocation
44
45 *hardened-sources-2.4.26-r1 (22 June 2004)
46
47 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
48 +hardened-sources-2.4.26-r1.ebuild,
49 +files/2.4.26-CAN-2004-0394.patch,
50 +files/2.4.26-signal-race.patch,
51 -hardened-sources-2.4.26.ebuild,
52 -hardened-sources-2.4.24-r3.ebuild:
53 Version bump for the CAN-2004-0394 issue and bug #53804
54 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
55
56
57 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
58 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
59 Masked hardened-sources-2.4.26.ebuild broken for ppc
60
61 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
62 hardened-sources-2.4.24-r3.ebuild:
63 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
64
65 *hardened-sources-2.4.26 (29 May 2004)
66
67 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
68 +hardened-sources-2.4.26.ebuild:
69 Updated hardened-sources for the 2.4.26 kernel
70 Removed broken components, updated almost everything.
71
72 *hardened-sources-2.4.24-r3 (17 Apr 2004)
73
74 17 Apr 2004; <plasmaroo@gentoo.org>
75 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
76 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
77 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
78 +hardened-sources-2.4.24-r3.ebuild:
79 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
80 vulnerabilities. Old revisions removed.
81
82 *hardened-sources-2.4.24-r2 (15 Apr 2004)
83
84 15 Apr 2004; <plasmaroo@gentoo.org>
85 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
86 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
87 Version bump for the CAN-2004-0109 issue; bug #47881.
88
89 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
90 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
91 Add eutils to inherit.
92
93 *hardened-sources-2.4.24-r1 (19 Feb 2004)
94
95 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
96 files/hardened-sources-2.4.24.munmap.patch:
97 Added the patch for the mremap/munmap vulnerability. Bug #42024.
98
99 *hardened-sources-2.4.24 (06 Feb 2004)
100
101 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
102 hardened-sources-2.4.24.ebuild:
103 Version bump, updated most of the components.
104 This release includes the following:
105
106 - Hardened security
107 - Netfilter patch-o-matic 20031219
108 - FreeSWAN 2.04 & x509 1.4.8
109 - EVMS 2.2.2
110 - XFS 1.3.1
111 - cryptoloop jari
112 - grsecurity 2.0-rc4
113 - SELinux
114 - PaX 200402060000
115 - PaX Obscurity 200308302223
116 - Others...
117
118 Neither -ck nor systrace are included anymore.
119
120 *hardened-sources-2.4.22-r2 (05 Jan 2004)
121
122 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
123 hardened-sources-2.4.22-r2.ebuild:
124 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
125
126 *hardened-sources-2.4.22-r1 (02 Dec 2003)
127
128 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
129 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
130
131 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
132 hardened-sources-2.4.22-r1.ebuild:
133 Version bump for the 'do_brk' vulnerability.
134
135 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
136 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
137 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
138 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
139 Fix the 'do_brk' vulnerability.
140
141 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
142 hardened-sources-2.4.22.ebuild:
143 - Removed the src_install() portion for SELinux flask
144 components. These are no longer handled in the kernel
145 so this code was not necessary.
146
147 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
148 New 2.4.22 based hardened-sources thanks to
149 Phil West <p.west@computer.org>.
150
151 These sources include:
152 - New SELinux API
153 - Updated CK-base
154 - Updated GRSec
155 - Systrace
156 - SuperFreeS/WAN 1.99.8
157 - Propolice kernel build support
158 - EVMS
159 - Other various security related patches
160
161 *hardened-sources-2.4.21 (14 Sep 2003)
162
163 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
164 Updated hardened-sources based on the 2.4.21 Linux kernel.
165 This includes updates to most major components such as:
166 - ck-base-0306300059
167 - selinux-2.4-2003071106
168 - grsecurity-2.0-rc1
169 - Updated IPTables patch-o-matic
170 - Updated SuperFreeS/WAN
171
172 Thanks to Phil West <pwest@computer.org> for his work in getting this
173 updated patch set ready for the 2.4.21 based kernel.
174
175 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
176 Initial import of hardened-sources-2.4.20-r4. This revision
177 includes only a few changes, but one of these is an important
178 security fix. It is recommended all users of hardened-sources
179 upgrade to this release.
180
181 - ioperm bug fix
182 - fixed compilation failure when building without GRSec
183
184 SAL (Secure Auditing for Linux) is NOT included in this revision
185 due to time constraints, but is planned for inclusion in the near
186 future.
187
188 *hardened-sources-2.4.20-r2 (12 Jun 2003)
189
190 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
191 hardened-sources-2.4.20-r3.ebuild:
192 Add Header...
193
194 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
195 hardened-sources-2.4.20-r3.ebuild:
196 Removed warnings from ebuild. This kernel should be safe to
197 use at this point.
198
199 *hardened-sources-2.4.20-r3 (08 Jun 2003)
200
201 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
202 hardened-sources-2.4.20-r3.ebuild:
203 New revision. Includes the following changes over -r2:
204
205 - ck7-base (O(1), preempt, low latency)
206 - Super FreeS/WAN 1.99.7rc2
207 - PaX for the LSM/SELinux branch
208 - GRSecurity 2.0-pre4 (role based access control)
209 - Systrace 1.3
210 - EXT3 fixes
211 - EVMS 2.0.1
212 - GCC 3.1+ compile optimizations
213 - ProPolice kernel build support
214 - Hashing table security fixes
215
216 *hardened-sources-2.4.20-r1 (09 Apr 2003)
217
218 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
219 Initial import of hardened-sources-r2. This new
220 ebuild includes many new performance and security
221 related patches. As in -r1, it will patch in
222 LSM/SELinux if "selinux" is in USE, otherwise it
223 will patch in GRSecurity. The following patches
224 are included in this revision:
225
226 - O(1) Scheduler, Low Latency, and Preempt
227 (pulled from the base CK patch)
228 - ptrace exploit patch for the LSM kernel
229 (the GRSec patch already fixes this)
230 - LSM 2.4-2003040709
231 - SELinux 2.4-2003040709
232 - Systrace v1.2
233 - IPTables patch-o-matic base patches - 20030107
234 - CryptoAPI 2.4.20.1 w/ loop-jari patch
235 - Super FreeS/WAN 1.99.6.1
236 - GRSecurity 1.9.9g
237 - MPPE
238 - EXT3 data journal fix
239 - CIPE 1.5.4
240
241 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
242 hardened-sources-2.4.20-r1.ebuild, manifest:
243 Updated to install flask components correctly for selinux.
244
245 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
246 hardened-sources-2.4.20-r1.ebuild:
247 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
248 is patched in instead. Ptrace patches for selinux have also been added. In
249 either case, systrace support will be patched in as well.
250
251 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
252 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
253 Revision bump for new sources.
254
255 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
256 hardened-sources-2.4.20-r1.ebuild:
257 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
258
259 *hardened-sources-2.4.20 (30 Mar 2003)
260
261 30 Mar 2003; Joshua Brindle <method@gentoo.org>
262 hardened-sources-2.4.20.ebuild:
263 Initial import, only has systrace support.
264
  ViewVC Help
Powered by ViewVC 1.1.13