/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.38 - (show annotations) (download)
Wed Sep 8 20:42:21 2004 UTC (9 years, 11 months ago) by scox
Branch: MAIN
Changes since 1.37: +7 -0 lines
Added h-s-2.4.27-r3 which uses the new 2.4-27.2 patchball (updates grsecurity to its current version, 2.0.1)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: $
4
5 *hardened-sources-2.4.27-r3 (08 Sep 2004)
6
7 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
8 +hardened-sources-2.4.27-r3.ebuild:
9 Applies the new 2.4-27.2 patchball which updates
10 GRSecurity to the 2.0.1 version.
11
12 *hardened-sources-2.4.27-r2 (31 Aug 2004)
13
14 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
15 +hardened-sources-2.4.27-r2.ebuild:
16 Version bump.
17 This version uses the new 2.4-27.1 patchball which updates
18 both the SELinux PaX hooks patch and the SELinux headers.
19
20 *hardened-sources-2.4.27-r1 (09 Aug 2004)
21
22 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
23 +hardened-sources-2.4.27-r1.ebuild,
24 -hardened-sources-2.4.27.ebuild,
25 +files/2.4.27-cmdline-race.patch:
26 Version bump, fix for cmdline race. See bug #59905.
27
28 *hardened-sources-2.4.26-r6 (09 Aug 2004)
29
30 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
31 +hardened-sources-2.4.26-r6.ebuild,
32 -hardened-sources-2.4.26-r5.ebuild,
33 -hardened-sources-2.4.26-r4.ebuild,
34 +files/2.4.26-cmdline-race.patch:
35 Version bump, fix for cmdline race. See bug #59905.
36
37 *hardened-sources-2.4.27 (08 Aug 2004)
38
39 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
40 +hardened-sources-2.4.27.ebuild,
41 +files/2.4.27-CAN-2004-0394.patch:
42 Ported the patchball to the 2.4.27 kernel version.
43
44 *hardened-sources-2.4.26-r5 (07 Aug 2004)
45
46 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
47 +hardened-sources-2.4.26-r5.ebuild:
48 Updated to use the new hardened-patches-2.4-26.1 patchball.
49 It adds the following features:
50 - Squashfs
51 - Ebtables
52 - Netdev random (core+drivers)
53 - Watchdog Timer (WDT) fix.
54
55 *hardened-sources-2.4.26-r4 (04 Aug 2004)
56
57 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
58 +hardened-sources-2.4.26-r4.ebuild,
59 +files/2.4.26-CAN-2004-0415.patch,
60 -hardened-sources-2.4.26-3:
61 Version bump, fix for CAN 0415, see bug #59378.
62
63 *hardened-sources-2.4.26-r3 (22 Jul 2004)
64
65 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
66 +hardened-sources-2.4.26-r3.ebuild,
67 +files/2.4.26-CAN-2004-0497.patch,
68 -hardened-sources-2.4.26-r2.ebuild:
69 Version bump, fixed CAN 0497, see bug #56171.
70
71 *hardened-sources-2.4.26-r2 (29 Jun 2004)
72
73 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
74 +hardened-sources-2.4.26-r2.ebuild,
75 +files/2.4.26-CAN-2004-0495.patch,
76 +files/2.4.26-CAN-2004-0535.patch,
77 -hardened-sources-2.4.26-r1.ebuild:
78 Fixes for both CAN 0495 and 0535, see bug #54976
79
80 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
81 hardened-sources-2.4.26-r1.ebuild:
82 QA - fix use invocation
83
84 *hardened-sources-2.4.26-r1 (22 June 2004)
85
86 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
87 +hardened-sources-2.4.26-r1.ebuild,
88 +files/2.4.26-CAN-2004-0394.patch,
89 +files/2.4.26-signal-race.patch,
90 -hardened-sources-2.4.26.ebuild,
91 -hardened-sources-2.4.24-r3.ebuild:
92 Version bump for the CAN-2004-0394 issue and bug #53804
93 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
94
95
96 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
97 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
98 Masked hardened-sources-2.4.26.ebuild broken for ppc
99
100 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
101 hardened-sources-2.4.24-r3.ebuild:
102 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
103
104 *hardened-sources-2.4.26 (29 May 2004)
105
106 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
107 +hardened-sources-2.4.26.ebuild:
108 Updated hardened-sources for the 2.4.26 kernel
109 Removed broken components, updated almost everything.
110
111 *hardened-sources-2.4.24-r3 (17 Apr 2004)
112
113 17 Apr 2004; <plasmaroo@gentoo.org>
114 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
115 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
116 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
117 +hardened-sources-2.4.24-r3.ebuild:
118 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
119 vulnerabilities. Old revisions removed.
120
121 *hardened-sources-2.4.24-r2 (15 Apr 2004)
122
123 15 Apr 2004; <plasmaroo@gentoo.org>
124 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
125 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
126 Version bump for the CAN-2004-0109 issue; bug #47881.
127
128 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
129 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
130 Add eutils to inherit.
131
132 *hardened-sources-2.4.24-r1 (19 Feb 2004)
133
134 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
135 files/hardened-sources-2.4.24.munmap.patch:
136 Added the patch for the mremap/munmap vulnerability. Bug #42024.
137
138 *hardened-sources-2.4.24 (06 Feb 2004)
139
140 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
141 hardened-sources-2.4.24.ebuild:
142 Version bump, updated most of the components.
143 This release includes the following:
144
145 - Hardened security
146 - Netfilter patch-o-matic 20031219
147 - FreeSWAN 2.04 & x509 1.4.8
148 - EVMS 2.2.2
149 - XFS 1.3.1
150 - cryptoloop jari
151 - grsecurity 2.0-rc4
152 - SELinux
153 - PaX 200402060000
154 - PaX Obscurity 200308302223
155 - Others...
156
157 Neither -ck nor systrace are included anymore.
158
159 *hardened-sources-2.4.22-r2 (05 Jan 2004)
160
161 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
162 hardened-sources-2.4.22-r2.ebuild:
163 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
164
165 *hardened-sources-2.4.22-r1 (02 Dec 2003)
166
167 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
168 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
169
170 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
171 hardened-sources-2.4.22-r1.ebuild:
172 Version bump for the 'do_brk' vulnerability.
173
174 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
175 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
176 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
177 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
178 Fix the 'do_brk' vulnerability.
179
180 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
181 hardened-sources-2.4.22.ebuild:
182 - Removed the src_install() portion for SELinux flask
183 components. These are no longer handled in the kernel
184 so this code was not necessary.
185
186 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
187 New 2.4.22 based hardened-sources thanks to
188 Phil West <p.west@computer.org>.
189
190 These sources include:
191 - New SELinux API
192 - Updated CK-base
193 - Updated GRSec
194 - Systrace
195 - SuperFreeS/WAN 1.99.8
196 - Propolice kernel build support
197 - EVMS
198 - Other various security related patches
199
200 *hardened-sources-2.4.21 (14 Sep 2003)
201
202 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
203 Updated hardened-sources based on the 2.4.21 Linux kernel.
204 This includes updates to most major components such as:
205 - ck-base-0306300059
206 - selinux-2.4-2003071106
207 - grsecurity-2.0-rc1
208 - Updated IPTables patch-o-matic
209 - Updated SuperFreeS/WAN
210
211 Thanks to Phil West <pwest@computer.org> for his work in getting this
212 updated patch set ready for the 2.4.21 based kernel.
213
214 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
215 Initial import of hardened-sources-2.4.20-r4. This revision
216 includes only a few changes, but one of these is an important
217 security fix. It is recommended all users of hardened-sources
218 upgrade to this release.
219
220 - ioperm bug fix
221 - fixed compilation failure when building without GRSec
222
223 SAL (Secure Auditing for Linux) is NOT included in this revision
224 due to time constraints, but is planned for inclusion in the near
225 future.
226
227 *hardened-sources-2.4.20-r2 (12 Jun 2003)
228
229 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
230 hardened-sources-2.4.20-r3.ebuild:
231 Add Header...
232
233 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
234 hardened-sources-2.4.20-r3.ebuild:
235 Removed warnings from ebuild. This kernel should be safe to
236 use at this point.
237
238 *hardened-sources-2.4.20-r3 (08 Jun 2003)
239
240 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
241 hardened-sources-2.4.20-r3.ebuild:
242 New revision. Includes the following changes over -r2:
243
244 - ck7-base (O(1), preempt, low latency)
245 - Super FreeS/WAN 1.99.7rc2
246 - PaX for the LSM/SELinux branch
247 - GRSecurity 2.0-pre4 (role based access control)
248 - Systrace 1.3
249 - EXT3 fixes
250 - EVMS 2.0.1
251 - GCC 3.1+ compile optimizations
252 - ProPolice kernel build support
253 - Hashing table security fixes
254
255 *hardened-sources-2.4.20-r1 (09 Apr 2003)
256
257 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
258 Initial import of hardened-sources-r2. This new
259 ebuild includes many new performance and security
260 related patches. As in -r1, it will patch in
261 LSM/SELinux if "selinux" is in USE, otherwise it
262 will patch in GRSecurity. The following patches
263 are included in this revision:
264
265 - O(1) Scheduler, Low Latency, and Preempt
266 (pulled from the base CK patch)
267 - ptrace exploit patch for the LSM kernel
268 (the GRSec patch already fixes this)
269 - LSM 2.4-2003040709
270 - SELinux 2.4-2003040709
271 - Systrace v1.2
272 - IPTables patch-o-matic base patches - 20030107
273 - CryptoAPI 2.4.20.1 w/ loop-jari patch
274 - Super FreeS/WAN 1.99.6.1
275 - GRSecurity 1.9.9g
276 - MPPE
277 - EXT3 data journal fix
278 - CIPE 1.5.4
279
280 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
281 hardened-sources-2.4.20-r1.ebuild, manifest:
282 Updated to install flask components correctly for selinux.
283
284 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
285 hardened-sources-2.4.20-r1.ebuild:
286 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
287 is patched in instead. Ptrace patches for selinux have also been added. In
288 either case, systrace support will be patched in as well.
289
290 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
291 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
292 Revision bump for new sources.
293
294 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
295 hardened-sources-2.4.20-r1.ebuild:
296 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
297
298 *hardened-sources-2.4.20 (30 Mar 2003)
299
300 30 Mar 2003; Joshua Brindle <method@gentoo.org>
301 hardened-sources-2.4.20.ebuild:
302 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20