/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.39 - (show annotations) (download)
Sun Nov 28 18:10:26 2004 UTC (9 years, 9 months ago) by solar
Branch: MAIN
Changes since 1.38: +6 -1 lines
security bump. Thank tocharian for rolling a new patchset

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.38 2004/09/08 20:42:21 scox Exp $
4
5 *hardened-sources-2.4.28 (28 Nov 2004)
6
7 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
8 security bump. Thank tocharian for rolling a new patchset
9
10 *hardened-sources-2.4.27-r3 (08 Sep 2004)
11
12 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
13 +hardened-sources-2.4.27-r3.ebuild:
14 Applies the new 2.4-27.2 patchball which updates
15 GRSecurity to the 2.0.1 version.
16
17 *hardened-sources-2.4.27-r2 (31 Aug 2004)
18
19 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
20 +hardened-sources-2.4.27-r2.ebuild:
21 Version bump.
22 This version uses the new 2.4-27.1 patchball which updates
23 both the SELinux PaX hooks patch and the SELinux headers.
24
25 *hardened-sources-2.4.27-r1 (09 Aug 2004)
26
27 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
28 +hardened-sources-2.4.27-r1.ebuild,
29 -hardened-sources-2.4.27.ebuild,
30 +files/2.4.27-cmdline-race.patch:
31 Version bump, fix for cmdline race. See bug #59905.
32
33 *hardened-sources-2.4.26-r6 (09 Aug 2004)
34
35 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
36 +hardened-sources-2.4.26-r6.ebuild,
37 -hardened-sources-2.4.26-r5.ebuild,
38 -hardened-sources-2.4.26-r4.ebuild,
39 +files/2.4.26-cmdline-race.patch:
40 Version bump, fix for cmdline race. See bug #59905.
41
42 *hardened-sources-2.4.27 (08 Aug 2004)
43
44 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
45 +hardened-sources-2.4.27.ebuild,
46 +files/2.4.27-CAN-2004-0394.patch:
47 Ported the patchball to the 2.4.27 kernel version.
48
49 *hardened-sources-2.4.26-r5 (07 Aug 2004)
50
51 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
52 +hardened-sources-2.4.26-r5.ebuild:
53 Updated to use the new hardened-patches-2.4-26.1 patchball.
54 It adds the following features:
55 - Squashfs
56 - Ebtables
57 - Netdev random (core+drivers)
58 - Watchdog Timer (WDT) fix.
59
60 *hardened-sources-2.4.26-r4 (04 Aug 2004)
61
62 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
63 +hardened-sources-2.4.26-r4.ebuild,
64 +files/2.4.26-CAN-2004-0415.patch,
65 -hardened-sources-2.4.26-3:
66 Version bump, fix for CAN 0415, see bug #59378.
67
68 *hardened-sources-2.4.26-r3 (22 Jul 2004)
69
70 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
71 +hardened-sources-2.4.26-r3.ebuild,
72 +files/2.4.26-CAN-2004-0497.patch,
73 -hardened-sources-2.4.26-r2.ebuild:
74 Version bump, fixed CAN 0497, see bug #56171.
75
76 *hardened-sources-2.4.26-r2 (29 Jun 2004)
77
78 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
79 +hardened-sources-2.4.26-r2.ebuild,
80 +files/2.4.26-CAN-2004-0495.patch,
81 +files/2.4.26-CAN-2004-0535.patch,
82 -hardened-sources-2.4.26-r1.ebuild:
83 Fixes for both CAN 0495 and 0535, see bug #54976
84
85 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
86 hardened-sources-2.4.26-r1.ebuild:
87 QA - fix use invocation
88
89 *hardened-sources-2.4.26-r1 (22 June 2004)
90
91 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
92 +hardened-sources-2.4.26-r1.ebuild,
93 +files/2.4.26-CAN-2004-0394.patch,
94 +files/2.4.26-signal-race.patch,
95 -hardened-sources-2.4.26.ebuild,
96 -hardened-sources-2.4.24-r3.ebuild:
97 Version bump for the CAN-2004-0394 issue and bug #53804
98 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
99
100
101 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
102 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
103 Masked hardened-sources-2.4.26.ebuild broken for ppc
104
105 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
106 hardened-sources-2.4.24-r3.ebuild:
107 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
108
109 *hardened-sources-2.4.26 (29 May 2004)
110
111 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
112 +hardened-sources-2.4.26.ebuild:
113 Updated hardened-sources for the 2.4.26 kernel
114 Removed broken components, updated almost everything.
115
116 *hardened-sources-2.4.24-r3 (17 Apr 2004)
117
118 17 Apr 2004; <plasmaroo@gentoo.org>
119 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
120 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
121 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
122 +hardened-sources-2.4.24-r3.ebuild:
123 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
124 vulnerabilities. Old revisions removed.
125
126 *hardened-sources-2.4.24-r2 (15 Apr 2004)
127
128 15 Apr 2004; <plasmaroo@gentoo.org>
129 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
130 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
131 Version bump for the CAN-2004-0109 issue; bug #47881.
132
133 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
134 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
135 Add eutils to inherit.
136
137 *hardened-sources-2.4.24-r1 (19 Feb 2004)
138
139 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
140 files/hardened-sources-2.4.24.munmap.patch:
141 Added the patch for the mremap/munmap vulnerability. Bug #42024.
142
143 *hardened-sources-2.4.24 (06 Feb 2004)
144
145 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
146 hardened-sources-2.4.24.ebuild:
147 Version bump, updated most of the components.
148 This release includes the following:
149
150 - Hardened security
151 - Netfilter patch-o-matic 20031219
152 - FreeSWAN 2.04 & x509 1.4.8
153 - EVMS 2.2.2
154 - XFS 1.3.1
155 - cryptoloop jari
156 - grsecurity 2.0-rc4
157 - SELinux
158 - PaX 200402060000
159 - PaX Obscurity 200308302223
160 - Others...
161
162 Neither -ck nor systrace are included anymore.
163
164 *hardened-sources-2.4.22-r2 (05 Jan 2004)
165
166 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
167 hardened-sources-2.4.22-r2.ebuild:
168 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
169
170 *hardened-sources-2.4.22-r1 (02 Dec 2003)
171
172 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
173 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
174
175 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
176 hardened-sources-2.4.22-r1.ebuild:
177 Version bump for the 'do_brk' vulnerability.
178
179 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
180 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
181 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
182 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
183 Fix the 'do_brk' vulnerability.
184
185 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
186 hardened-sources-2.4.22.ebuild:
187 - Removed the src_install() portion for SELinux flask
188 components. These are no longer handled in the kernel
189 so this code was not necessary.
190
191 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
192 New 2.4.22 based hardened-sources thanks to
193 Phil West <p.west@computer.org>.
194
195 These sources include:
196 - New SELinux API
197 - Updated CK-base
198 - Updated GRSec
199 - Systrace
200 - SuperFreeS/WAN 1.99.8
201 - Propolice kernel build support
202 - EVMS
203 - Other various security related patches
204
205 *hardened-sources-2.4.21 (14 Sep 2003)
206
207 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
208 Updated hardened-sources based on the 2.4.21 Linux kernel.
209 This includes updates to most major components such as:
210 - ck-base-0306300059
211 - selinux-2.4-2003071106
212 - grsecurity-2.0-rc1
213 - Updated IPTables patch-o-matic
214 - Updated SuperFreeS/WAN
215
216 Thanks to Phil West <pwest@computer.org> for his work in getting this
217 updated patch set ready for the 2.4.21 based kernel.
218
219 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
220 Initial import of hardened-sources-2.4.20-r4. This revision
221 includes only a few changes, but one of these is an important
222 security fix. It is recommended all users of hardened-sources
223 upgrade to this release.
224
225 - ioperm bug fix
226 - fixed compilation failure when building without GRSec
227
228 SAL (Secure Auditing for Linux) is NOT included in this revision
229 due to time constraints, but is planned for inclusion in the near
230 future.
231
232 *hardened-sources-2.4.20-r2 (12 Jun 2003)
233
234 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
235 hardened-sources-2.4.20-r3.ebuild:
236 Add Header...
237
238 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
239 hardened-sources-2.4.20-r3.ebuild:
240 Removed warnings from ebuild. This kernel should be safe to
241 use at this point.
242
243 *hardened-sources-2.4.20-r3 (08 Jun 2003)
244
245 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
246 hardened-sources-2.4.20-r3.ebuild:
247 New revision. Includes the following changes over -r2:
248
249 - ck7-base (O(1), preempt, low latency)
250 - Super FreeS/WAN 1.99.7rc2
251 - PaX for the LSM/SELinux branch
252 - GRSecurity 2.0-pre4 (role based access control)
253 - Systrace 1.3
254 - EXT3 fixes
255 - EVMS 2.0.1
256 - GCC 3.1+ compile optimizations
257 - ProPolice kernel build support
258 - Hashing table security fixes
259
260 *hardened-sources-2.4.20-r1 (09 Apr 2003)
261
262 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
263 Initial import of hardened-sources-r2. This new
264 ebuild includes many new performance and security
265 related patches. As in -r1, it will patch in
266 LSM/SELinux if "selinux" is in USE, otherwise it
267 will patch in GRSecurity. The following patches
268 are included in this revision:
269
270 - O(1) Scheduler, Low Latency, and Preempt
271 (pulled from the base CK patch)
272 - ptrace exploit patch for the LSM kernel
273 (the GRSec patch already fixes this)
274 - LSM 2.4-2003040709
275 - SELinux 2.4-2003040709
276 - Systrace v1.2
277 - IPTables patch-o-matic base patches - 20030107
278 - CryptoAPI 2.4.20.1 w/ loop-jari patch
279 - Super FreeS/WAN 1.99.6.1
280 - GRSecurity 1.9.9g
281 - MPPE
282 - EXT3 data journal fix
283 - CIPE 1.5.4
284
285 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
286 hardened-sources-2.4.20-r1.ebuild, manifest:
287 Updated to install flask components correctly for selinux.
288
289 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
290 hardened-sources-2.4.20-r1.ebuild:
291 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
292 is patched in instead. Ptrace patches for selinux have also been added. In
293 either case, systrace support will be patched in as well.
294
295 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
296 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
297 Revision bump for new sources.
298
299 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
300 hardened-sources-2.4.20-r1.ebuild:
301 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
302
303 *hardened-sources-2.4.20 (30 Mar 2003)
304
305 30 Mar 2003; Joshua Brindle <method@gentoo.org>
306 hardened-sources-2.4.20.ebuild:
307 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20