/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.37 - (show annotations) (download)
Tue Aug 31 18:03:06 2004 UTC (10 years, 3 months ago) by scox
Branch: MAIN
Changes since 1.36: +8 -0 lines
Added hardened-sources-2.4.27-r2

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: $
4
5 *hardened-sources-2.4.27-r2 (31 Aug 2004)
6
7 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
8 +hardened-sources-2.4.27-r2.ebuild:
9 Version bump.
10 This version uses the new 2.4-27.1 patchball which updates
11 both the SELinux PaX hooks patch and the SELinux headers.
12
13 *hardened-sources-2.4.27-r1 (09 Aug 2004)
14
15 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
16 +hardened-sources-2.4.27-r1.ebuild,
17 -hardened-sources-2.4.27.ebuild,
18 +files/2.4.27-cmdline-race.patch:
19 Version bump, fix for cmdline race. See bug #59905.
20
21 *hardened-sources-2.4.26-r6 (09 Aug 2004)
22
23 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
24 +hardened-sources-2.4.26-r6.ebuild,
25 -hardened-sources-2.4.26-r5.ebuild,
26 -hardened-sources-2.4.26-r4.ebuild,
27 +files/2.4.26-cmdline-race.patch:
28 Version bump, fix for cmdline race. See bug #59905.
29
30 *hardened-sources-2.4.27 (08 Aug 2004)
31
32 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
33 +hardened-sources-2.4.27.ebuild,
34 +files/2.4.27-CAN-2004-0394.patch:
35 Ported the patchball to the 2.4.27 kernel version.
36
37 *hardened-sources-2.4.26-r5 (07 Aug 2004)
38
39 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
40 +hardened-sources-2.4.26-r5.ebuild:
41 Updated to use the new hardened-patches-2.4-26.1 patchball.
42 It adds the following features:
43 - Squashfs
44 - Ebtables
45 - Netdev random (core+drivers)
46 - Watchdog Timer (WDT) fix.
47
48 *hardened-sources-2.4.26-r4 (04 Aug 2004)
49
50 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
51 +hardened-sources-2.4.26-r4.ebuild,
52 +files/2.4.26-CAN-2004-0415.patch,
53 -hardened-sources-2.4.26-3:
54 Version bump, fix for CAN 0415, see bug #59378.
55
56 *hardened-sources-2.4.26-r3 (22 Jul 2004)
57
58 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
59 +hardened-sources-2.4.26-r3.ebuild,
60 +files/2.4.26-CAN-2004-0497.patch,
61 -hardened-sources-2.4.26-r2.ebuild:
62 Version bump, fixed CAN 0497, see bug #56171.
63
64 *hardened-sources-2.4.26-r2 (29 Jun 2004)
65
66 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
67 +hardened-sources-2.4.26-r2.ebuild,
68 +files/2.4.26-CAN-2004-0495.patch,
69 +files/2.4.26-CAN-2004-0535.patch,
70 -hardened-sources-2.4.26-r1.ebuild:
71 Fixes for both CAN 0495 and 0535, see bug #54976
72
73 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
74 hardened-sources-2.4.26-r1.ebuild:
75 QA - fix use invocation
76
77 *hardened-sources-2.4.26-r1 (22 June 2004)
78
79 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
80 +hardened-sources-2.4.26-r1.ebuild,
81 +files/2.4.26-CAN-2004-0394.patch,
82 +files/2.4.26-signal-race.patch,
83 -hardened-sources-2.4.26.ebuild,
84 -hardened-sources-2.4.24-r3.ebuild:
85 Version bump for the CAN-2004-0394 issue and bug #53804
86 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
87
88
89 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
90 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
91 Masked hardened-sources-2.4.26.ebuild broken for ppc
92
93 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
94 hardened-sources-2.4.24-r3.ebuild:
95 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
96
97 *hardened-sources-2.4.26 (29 May 2004)
98
99 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
100 +hardened-sources-2.4.26.ebuild:
101 Updated hardened-sources for the 2.4.26 kernel
102 Removed broken components, updated almost everything.
103
104 *hardened-sources-2.4.24-r3 (17 Apr 2004)
105
106 17 Apr 2004; <plasmaroo@gentoo.org>
107 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
108 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
109 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
110 +hardened-sources-2.4.24-r3.ebuild:
111 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
112 vulnerabilities. Old revisions removed.
113
114 *hardened-sources-2.4.24-r2 (15 Apr 2004)
115
116 15 Apr 2004; <plasmaroo@gentoo.org>
117 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
118 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
119 Version bump for the CAN-2004-0109 issue; bug #47881.
120
121 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
122 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
123 Add eutils to inherit.
124
125 *hardened-sources-2.4.24-r1 (19 Feb 2004)
126
127 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
128 files/hardened-sources-2.4.24.munmap.patch:
129 Added the patch for the mremap/munmap vulnerability. Bug #42024.
130
131 *hardened-sources-2.4.24 (06 Feb 2004)
132
133 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
134 hardened-sources-2.4.24.ebuild:
135 Version bump, updated most of the components.
136 This release includes the following:
137
138 - Hardened security
139 - Netfilter patch-o-matic 20031219
140 - FreeSWAN 2.04 & x509 1.4.8
141 - EVMS 2.2.2
142 - XFS 1.3.1
143 - cryptoloop jari
144 - grsecurity 2.0-rc4
145 - SELinux
146 - PaX 200402060000
147 - PaX Obscurity 200308302223
148 - Others...
149
150 Neither -ck nor systrace are included anymore.
151
152 *hardened-sources-2.4.22-r2 (05 Jan 2004)
153
154 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
155 hardened-sources-2.4.22-r2.ebuild:
156 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
157
158 *hardened-sources-2.4.22-r1 (02 Dec 2003)
159
160 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
161 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
162
163 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
164 hardened-sources-2.4.22-r1.ebuild:
165 Version bump for the 'do_brk' vulnerability.
166
167 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
168 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
169 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
170 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
171 Fix the 'do_brk' vulnerability.
172
173 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
174 hardened-sources-2.4.22.ebuild:
175 - Removed the src_install() portion for SELinux flask
176 components. These are no longer handled in the kernel
177 so this code was not necessary.
178
179 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
180 New 2.4.22 based hardened-sources thanks to
181 Phil West <p.west@computer.org>.
182
183 These sources include:
184 - New SELinux API
185 - Updated CK-base
186 - Updated GRSec
187 - Systrace
188 - SuperFreeS/WAN 1.99.8
189 - Propolice kernel build support
190 - EVMS
191 - Other various security related patches
192
193 *hardened-sources-2.4.21 (14 Sep 2003)
194
195 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
196 Updated hardened-sources based on the 2.4.21 Linux kernel.
197 This includes updates to most major components such as:
198 - ck-base-0306300059
199 - selinux-2.4-2003071106
200 - grsecurity-2.0-rc1
201 - Updated IPTables patch-o-matic
202 - Updated SuperFreeS/WAN
203
204 Thanks to Phil West <pwest@computer.org> for his work in getting this
205 updated patch set ready for the 2.4.21 based kernel.
206
207 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
208 Initial import of hardened-sources-2.4.20-r4. This revision
209 includes only a few changes, but one of these is an important
210 security fix. It is recommended all users of hardened-sources
211 upgrade to this release.
212
213 - ioperm bug fix
214 - fixed compilation failure when building without GRSec
215
216 SAL (Secure Auditing for Linux) is NOT included in this revision
217 due to time constraints, but is planned for inclusion in the near
218 future.
219
220 *hardened-sources-2.4.20-r2 (12 Jun 2003)
221
222 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
223 hardened-sources-2.4.20-r3.ebuild:
224 Add Header...
225
226 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
227 hardened-sources-2.4.20-r3.ebuild:
228 Removed warnings from ebuild. This kernel should be safe to
229 use at this point.
230
231 *hardened-sources-2.4.20-r3 (08 Jun 2003)
232
233 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
234 hardened-sources-2.4.20-r3.ebuild:
235 New revision. Includes the following changes over -r2:
236
237 - ck7-base (O(1), preempt, low latency)
238 - Super FreeS/WAN 1.99.7rc2
239 - PaX for the LSM/SELinux branch
240 - GRSecurity 2.0-pre4 (role based access control)
241 - Systrace 1.3
242 - EXT3 fixes
243 - EVMS 2.0.1
244 - GCC 3.1+ compile optimizations
245 - ProPolice kernel build support
246 - Hashing table security fixes
247
248 *hardened-sources-2.4.20-r1 (09 Apr 2003)
249
250 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
251 Initial import of hardened-sources-r2. This new
252 ebuild includes many new performance and security
253 related patches. As in -r1, it will patch in
254 LSM/SELinux if "selinux" is in USE, otherwise it
255 will patch in GRSecurity. The following patches
256 are included in this revision:
257
258 - O(1) Scheduler, Low Latency, and Preempt
259 (pulled from the base CK patch)
260 - ptrace exploit patch for the LSM kernel
261 (the GRSec patch already fixes this)
262 - LSM 2.4-2003040709
263 - SELinux 2.4-2003040709
264 - Systrace v1.2
265 - IPTables patch-o-matic base patches - 20030107
266 - CryptoAPI 2.4.20.1 w/ loop-jari patch
267 - Super FreeS/WAN 1.99.6.1
268 - GRSecurity 1.9.9g
269 - MPPE
270 - EXT3 data journal fix
271 - CIPE 1.5.4
272
273 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
274 hardened-sources-2.4.20-r1.ebuild, manifest:
275 Updated to install flask components correctly for selinux.
276
277 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
278 hardened-sources-2.4.20-r1.ebuild:
279 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
280 is patched in instead. Ptrace patches for selinux have also been added. In
281 either case, systrace support will be patched in as well.
282
283 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
284 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
285 Revision bump for new sources.
286
287 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
288 hardened-sources-2.4.20-r1.ebuild:
289 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
290
291 *hardened-sources-2.4.20 (30 Mar 2003)
292
293 30 Mar 2003; Joshua Brindle <method@gentoo.org>
294 hardened-sources-2.4.20.ebuild:
295 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20