/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.35 - (show annotations) (download)
Sun Aug 8 20:45:05 2004 UTC (10 years, 2 months ago) by scox
Branch: MAIN
Changes since 1.34: +8 -1 lines
Added hardened-sources-2.4.27 which is a port of the 2.4.26-r5 version.

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: $
4
5 *hardened-sources-2.4.27 (08 Aug 2004)
6
7 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
8 +hardened-sources-2.4.27.ebuild,
9 +files/2.4.27-CAN-2004-0394.patch:
10 Ported the patchball to the 2.4.27 kernel version.
11
12 *hardened-sources-2.4.26-r5 (07 Aug 2004)
13
14 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
15 +hardened-sources-2.4.26-r5.ebuild:
16 Updated to use the new hardened-patches-2.4-26.1 patchball.
17 It adds the following features:
18 - Squashfs
19 - Ebtables
20 - Netdev random (core+drivers)
21 - Watchdog Timer (WDT) fix.
22
23 *hardened-sources-2.4.26-r4 (04 Aug 2004)
24
25 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
26 +hardened-sources-2.4.26-r4.ebuild,
27 +files/2.4.26-CAN-2004-0415.patch,
28 -hardened-sources-2.4.26-3:
29 Version bump, fix for CAN 0415, see bug #59378.
30
31 *hardened-sources-2.4.26-r3 (22 Jul 2004)
32
33 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
34 +hardened-sources-2.4.26-r3.ebuild,
35 +files/2.4.26-CAN-2004-0497.patch,
36 -hardened-sources-2.4.26-r2.ebuild:
37 Version bump, fixed CAN 0497, see bug #56171.
38
39 *hardened-sources-2.4.26-r2 (29 Jun 2004)
40
41 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
42 +hardened-sources-2.4.26-r2.ebuild,
43 +files/2.4.26-CAN-2004-0495.patch,
44 +files/2.4.26-CAN-2004-0535.patch,
45 -hardened-sources-2.4.26-r1.ebuild:
46 Fixes for both CAN 0495 and 0535, see bug #54976
47
48 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
49 hardened-sources-2.4.26-r1.ebuild:
50 QA - fix use invocation
51
52 *hardened-sources-2.4.26-r1 (22 June 2004)
53
54 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
55 +hardened-sources-2.4.26-r1.ebuild,
56 +files/2.4.26-CAN-2004-0394.patch,
57 +files/2.4.26-signal-race.patch,
58 -hardened-sources-2.4.26.ebuild,
59 -hardened-sources-2.4.24-r3.ebuild:
60 Version bump for the CAN-2004-0394 issue and bug #53804
61 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
62
63
64 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
65 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
66 Masked hardened-sources-2.4.26.ebuild broken for ppc
67
68 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
69 hardened-sources-2.4.24-r3.ebuild:
70 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
71
72 *hardened-sources-2.4.26 (29 May 2004)
73
74 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
75 +hardened-sources-2.4.26.ebuild:
76 Updated hardened-sources for the 2.4.26 kernel
77 Removed broken components, updated almost everything.
78
79 *hardened-sources-2.4.24-r3 (17 Apr 2004)
80
81 17 Apr 2004; <plasmaroo@gentoo.org>
82 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
83 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
84 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
85 +hardened-sources-2.4.24-r3.ebuild:
86 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
87 vulnerabilities. Old revisions removed.
88
89 *hardened-sources-2.4.24-r2 (15 Apr 2004)
90
91 15 Apr 2004; <plasmaroo@gentoo.org>
92 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
93 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
94 Version bump for the CAN-2004-0109 issue; bug #47881.
95
96 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
97 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
98 Add eutils to inherit.
99
100 *hardened-sources-2.4.24-r1 (19 Feb 2004)
101
102 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
103 files/hardened-sources-2.4.24.munmap.patch:
104 Added the patch for the mremap/munmap vulnerability. Bug #42024.
105
106 *hardened-sources-2.4.24 (06 Feb 2004)
107
108 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
109 hardened-sources-2.4.24.ebuild:
110 Version bump, updated most of the components.
111 This release includes the following:
112
113 - Hardened security
114 - Netfilter patch-o-matic 20031219
115 - FreeSWAN 2.04 & x509 1.4.8
116 - EVMS 2.2.2
117 - XFS 1.3.1
118 - cryptoloop jari
119 - grsecurity 2.0-rc4
120 - SELinux
121 - PaX 200402060000
122 - PaX Obscurity 200308302223
123 - Others...
124
125 Neither -ck nor systrace are included anymore.
126
127 *hardened-sources-2.4.22-r2 (05 Jan 2004)
128
129 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
130 hardened-sources-2.4.22-r2.ebuild:
131 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
132
133 *hardened-sources-2.4.22-r1 (02 Dec 2003)
134
135 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
136 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
137
138 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
139 hardened-sources-2.4.22-r1.ebuild:
140 Version bump for the 'do_brk' vulnerability.
141
142 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
143 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
144 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
145 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
146 Fix the 'do_brk' vulnerability.
147
148 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
149 hardened-sources-2.4.22.ebuild:
150 - Removed the src_install() portion for SELinux flask
151 components. These are no longer handled in the kernel
152 so this code was not necessary.
153
154 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
155 New 2.4.22 based hardened-sources thanks to
156 Phil West <p.west@computer.org>.
157
158 These sources include:
159 - New SELinux API
160 - Updated CK-base
161 - Updated GRSec
162 - Systrace
163 - SuperFreeS/WAN 1.99.8
164 - Propolice kernel build support
165 - EVMS
166 - Other various security related patches
167
168 *hardened-sources-2.4.21 (14 Sep 2003)
169
170 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
171 Updated hardened-sources based on the 2.4.21 Linux kernel.
172 This includes updates to most major components such as:
173 - ck-base-0306300059
174 - selinux-2.4-2003071106
175 - grsecurity-2.0-rc1
176 - Updated IPTables patch-o-matic
177 - Updated SuperFreeS/WAN
178
179 Thanks to Phil West <pwest@computer.org> for his work in getting this
180 updated patch set ready for the 2.4.21 based kernel.
181
182 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
183 Initial import of hardened-sources-2.4.20-r4. This revision
184 includes only a few changes, but one of these is an important
185 security fix. It is recommended all users of hardened-sources
186 upgrade to this release.
187
188 - ioperm bug fix
189 - fixed compilation failure when building without GRSec
190
191 SAL (Secure Auditing for Linux) is NOT included in this revision
192 due to time constraints, but is planned for inclusion in the near
193 future.
194
195 *hardened-sources-2.4.20-r2 (12 Jun 2003)
196
197 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
198 hardened-sources-2.4.20-r3.ebuild:
199 Add Header...
200
201 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
202 hardened-sources-2.4.20-r3.ebuild:
203 Removed warnings from ebuild. This kernel should be safe to
204 use at this point.
205
206 *hardened-sources-2.4.20-r3 (08 Jun 2003)
207
208 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
209 hardened-sources-2.4.20-r3.ebuild:
210 New revision. Includes the following changes over -r2:
211
212 - ck7-base (O(1), preempt, low latency)
213 - Super FreeS/WAN 1.99.7rc2
214 - PaX for the LSM/SELinux branch
215 - GRSecurity 2.0-pre4 (role based access control)
216 - Systrace 1.3
217 - EXT3 fixes
218 - EVMS 2.0.1
219 - GCC 3.1+ compile optimizations
220 - ProPolice kernel build support
221 - Hashing table security fixes
222
223 *hardened-sources-2.4.20-r1 (09 Apr 2003)
224
225 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
226 Initial import of hardened-sources-r2. This new
227 ebuild includes many new performance and security
228 related patches. As in -r1, it will patch in
229 LSM/SELinux if "selinux" is in USE, otherwise it
230 will patch in GRSecurity. The following patches
231 are included in this revision:
232
233 - O(1) Scheduler, Low Latency, and Preempt
234 (pulled from the base CK patch)
235 - ptrace exploit patch for the LSM kernel
236 (the GRSec patch already fixes this)
237 - LSM 2.4-2003040709
238 - SELinux 2.4-2003040709
239 - Systrace v1.2
240 - IPTables patch-o-matic base patches - 20030107
241 - CryptoAPI 2.4.20.1 w/ loop-jari patch
242 - Super FreeS/WAN 1.99.6.1
243 - GRSecurity 1.9.9g
244 - MPPE
245 - EXT3 data journal fix
246 - CIPE 1.5.4
247
248 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
249 hardened-sources-2.4.20-r1.ebuild, manifest:
250 Updated to install flask components correctly for selinux.
251
252 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
253 hardened-sources-2.4.20-r1.ebuild:
254 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
255 is patched in instead. Ptrace patches for selinux have also been added. In
256 either case, systrace support will be patched in as well.
257
258 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
259 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
260 Revision bump for new sources.
261
262 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
263 hardened-sources-2.4.20-r1.ebuild:
264 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
265
266 *hardened-sources-2.4.20 (30 Mar 2003)
267
268 30 Mar 2003; Joshua Brindle <method@gentoo.org>
269 hardened-sources-2.4.20.ebuild:
270 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20