/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.41 - (show annotations) (download)
Fri Dec 24 19:45:08 2004 UTC (9 years, 10 months ago) by plasmaroo
Branch: MAIN
Changes since 1.40: +6 -1 lines
Security bump. Thank tocharian for rolling a new patchset...

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.40 2004/11/29 02:45:14 solar Exp $
4
5 *hardened-sources-2.4.28-r1 (23 Dec 2004)
6
7 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
8 Security bump. Thank tocharian for rolling a new patchset...
9
10 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
11 +files/2.4.28-grsec-cmdline-race.patch,
12 +files/2.4.28-selinux-binfmt_a.out.patch,
13 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
14 - Round up remaining security patches that appear to be missing in 2.4.28. -
15 PaX standalone updated to current. hgpv=28.1
16
17 *hardened-sources-2.4.28 (28 Nov 2004)
18
19 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
20 security bump. Thank tocharian for rolling a new patchset
21
22 *hardened-sources-2.4.27-r3 (08 Sep 2004)
23
24 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
25 +hardened-sources-2.4.27-r3.ebuild:
26 Applies the new 2.4-27.2 patchball which updates
27 GRSecurity to the 2.0.1 version.
28
29 *hardened-sources-2.4.27-r2 (31 Aug 2004)
30
31 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
32 +hardened-sources-2.4.27-r2.ebuild:
33 Version bump.
34 This version uses the new 2.4-27.1 patchball which updates
35 both the SELinux PaX hooks patch and the SELinux headers.
36
37 *hardened-sources-2.4.27-r1 (09 Aug 2004)
38
39 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
40 +hardened-sources-2.4.27-r1.ebuild,
41 -hardened-sources-2.4.27.ebuild,
42 +files/2.4.27-cmdline-race.patch:
43 Version bump, fix for cmdline race. See bug #59905.
44
45 *hardened-sources-2.4.26-r6 (09 Aug 2004)
46
47 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
48 +hardened-sources-2.4.26-r6.ebuild,
49 -hardened-sources-2.4.26-r5.ebuild,
50 -hardened-sources-2.4.26-r4.ebuild,
51 +files/2.4.26-cmdline-race.patch:
52 Version bump, fix for cmdline race. See bug #59905.
53
54 *hardened-sources-2.4.27 (08 Aug 2004)
55
56 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
57 +hardened-sources-2.4.27.ebuild,
58 +files/2.4.27-CAN-2004-0394.patch:
59 Ported the patchball to the 2.4.27 kernel version.
60
61 *hardened-sources-2.4.26-r5 (07 Aug 2004)
62
63 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
64 +hardened-sources-2.4.26-r5.ebuild:
65 Updated to use the new hardened-patches-2.4-26.1 patchball.
66 It adds the following features:
67 - Squashfs
68 - Ebtables
69 - Netdev random (core+drivers)
70 - Watchdog Timer (WDT) fix.
71
72 *hardened-sources-2.4.26-r4 (04 Aug 2004)
73
74 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
75 +hardened-sources-2.4.26-r4.ebuild,
76 +files/2.4.26-CAN-2004-0415.patch,
77 -hardened-sources-2.4.26-3:
78 Version bump, fix for CAN 0415, see bug #59378.
79
80 *hardened-sources-2.4.26-r3 (22 Jul 2004)
81
82 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
83 +hardened-sources-2.4.26-r3.ebuild,
84 +files/2.4.26-CAN-2004-0497.patch,
85 -hardened-sources-2.4.26-r2.ebuild:
86 Version bump, fixed CAN 0497, see bug #56171.
87
88 *hardened-sources-2.4.26-r2 (29 Jun 2004)
89
90 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
91 +hardened-sources-2.4.26-r2.ebuild,
92 +files/2.4.26-CAN-2004-0495.patch,
93 +files/2.4.26-CAN-2004-0535.patch,
94 -hardened-sources-2.4.26-r1.ebuild:
95 Fixes for both CAN 0495 and 0535, see bug #54976
96
97 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
98 hardened-sources-2.4.26-r1.ebuild:
99 QA - fix use invocation
100
101 *hardened-sources-2.4.26-r1 (22 June 2004)
102
103 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
104 +hardened-sources-2.4.26-r1.ebuild,
105 +files/2.4.26-CAN-2004-0394.patch,
106 +files/2.4.26-signal-race.patch,
107 -hardened-sources-2.4.26.ebuild,
108 -hardened-sources-2.4.24-r3.ebuild:
109 Version bump for the CAN-2004-0394 issue and bug #53804
110 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
111
112
113 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
114 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
115 Masked hardened-sources-2.4.26.ebuild broken for ppc
116
117 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
118 hardened-sources-2.4.24-r3.ebuild:
119 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
120
121 *hardened-sources-2.4.26 (29 May 2004)
122
123 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
124 +hardened-sources-2.4.26.ebuild:
125 Updated hardened-sources for the 2.4.26 kernel
126 Removed broken components, updated almost everything.
127
128 *hardened-sources-2.4.24-r3 (17 Apr 2004)
129
130 17 Apr 2004; <plasmaroo@gentoo.org>
131 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
132 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
133 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
134 +hardened-sources-2.4.24-r3.ebuild:
135 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
136 vulnerabilities. Old revisions removed.
137
138 *hardened-sources-2.4.24-r2 (15 Apr 2004)
139
140 15 Apr 2004; <plasmaroo@gentoo.org>
141 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
142 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
143 Version bump for the CAN-2004-0109 issue; bug #47881.
144
145 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
146 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
147 Add eutils to inherit.
148
149 *hardened-sources-2.4.24-r1 (19 Feb 2004)
150
151 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
152 files/hardened-sources-2.4.24.munmap.patch:
153 Added the patch for the mremap/munmap vulnerability. Bug #42024.
154
155 *hardened-sources-2.4.24 (06 Feb 2004)
156
157 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
158 hardened-sources-2.4.24.ebuild:
159 Version bump, updated most of the components.
160 This release includes the following:
161
162 - Hardened security
163 - Netfilter patch-o-matic 20031219
164 - FreeSWAN 2.04 & x509 1.4.8
165 - EVMS 2.2.2
166 - XFS 1.3.1
167 - cryptoloop jari
168 - grsecurity 2.0-rc4
169 - SELinux
170 - PaX 200402060000
171 - PaX Obscurity 200308302223
172 - Others...
173
174 Neither -ck nor systrace are included anymore.
175
176 *hardened-sources-2.4.22-r2 (05 Jan 2004)
177
178 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
179 hardened-sources-2.4.22-r2.ebuild:
180 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
181
182 *hardened-sources-2.4.22-r1 (02 Dec 2003)
183
184 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
185 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
186
187 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
188 hardened-sources-2.4.22-r1.ebuild:
189 Version bump for the 'do_brk' vulnerability.
190
191 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
192 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
193 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
194 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
195 Fix the 'do_brk' vulnerability.
196
197 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
198 hardened-sources-2.4.22.ebuild:
199 - Removed the src_install() portion for SELinux flask
200 components. These are no longer handled in the kernel
201 so this code was not necessary.
202
203 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
204 New 2.4.22 based hardened-sources thanks to
205 Phil West <p.west@computer.org>.
206
207 These sources include:
208 - New SELinux API
209 - Updated CK-base
210 - Updated GRSec
211 - Systrace
212 - SuperFreeS/WAN 1.99.8
213 - Propolice kernel build support
214 - EVMS
215 - Other various security related patches
216
217 *hardened-sources-2.4.21 (14 Sep 2003)
218
219 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
220 Updated hardened-sources based on the 2.4.21 Linux kernel.
221 This includes updates to most major components such as:
222 - ck-base-0306300059
223 - selinux-2.4-2003071106
224 - grsecurity-2.0-rc1
225 - Updated IPTables patch-o-matic
226 - Updated SuperFreeS/WAN
227
228 Thanks to Phil West <pwest@computer.org> for his work in getting this
229 updated patch set ready for the 2.4.21 based kernel.
230
231 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
232 Initial import of hardened-sources-2.4.20-r4. This revision
233 includes only a few changes, but one of these is an important
234 security fix. It is recommended all users of hardened-sources
235 upgrade to this release.
236
237 - ioperm bug fix
238 - fixed compilation failure when building without GRSec
239
240 SAL (Secure Auditing for Linux) is NOT included in this revision
241 due to time constraints, but is planned for inclusion in the near
242 future.
243
244 *hardened-sources-2.4.20-r2 (12 Jun 2003)
245
246 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
247 hardened-sources-2.4.20-r3.ebuild:
248 Add Header...
249
250 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
251 hardened-sources-2.4.20-r3.ebuild:
252 Removed warnings from ebuild. This kernel should be safe to
253 use at this point.
254
255 *hardened-sources-2.4.20-r3 (08 Jun 2003)
256
257 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
258 hardened-sources-2.4.20-r3.ebuild:
259 New revision. Includes the following changes over -r2:
260
261 - ck7-base (O(1), preempt, low latency)
262 - Super FreeS/WAN 1.99.7rc2
263 - PaX for the LSM/SELinux branch
264 - GRSecurity 2.0-pre4 (role based access control)
265 - Systrace 1.3
266 - EXT3 fixes
267 - EVMS 2.0.1
268 - GCC 3.1+ compile optimizations
269 - ProPolice kernel build support
270 - Hashing table security fixes
271
272 *hardened-sources-2.4.20-r1 (09 Apr 2003)
273
274 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
275 Initial import of hardened-sources-r2. This new
276 ebuild includes many new performance and security
277 related patches. As in -r1, it will patch in
278 LSM/SELinux if "selinux" is in USE, otherwise it
279 will patch in GRSecurity. The following patches
280 are included in this revision:
281
282 - O(1) Scheduler, Low Latency, and Preempt
283 (pulled from the base CK patch)
284 - ptrace exploit patch for the LSM kernel
285 (the GRSec patch already fixes this)
286 - LSM 2.4-2003040709
287 - SELinux 2.4-2003040709
288 - Systrace v1.2
289 - IPTables patch-o-matic base patches - 20030107
290 - CryptoAPI 2.4.20.1 w/ loop-jari patch
291 - Super FreeS/WAN 1.99.6.1
292 - GRSecurity 1.9.9g
293 - MPPE
294 - EXT3 data journal fix
295 - CIPE 1.5.4
296
297 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
298 hardened-sources-2.4.20-r1.ebuild, manifest:
299 Updated to install flask components correctly for selinux.
300
301 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
302 hardened-sources-2.4.20-r1.ebuild:
303 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
304 is patched in instead. Ptrace patches for selinux have also been added. In
305 either case, systrace support will be patched in as well.
306
307 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
308 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
309 Revision bump for new sources.
310
311 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
312 hardened-sources-2.4.20-r1.ebuild:
313 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
314
315 *hardened-sources-2.4.20 (30 Mar 2003)
316
317 30 Mar 2003; Joshua Brindle <method@gentoo.org>
318 hardened-sources-2.4.20.ebuild:
319 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20