/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.74 - (show annotations) (download)
Thu Jan 12 18:35:58 2006 UTC (8 years, 10 months ago) by solar
Branch: MAIN
Changes since 1.73: +6 -1 lines
- version bump for new genpatches which fix up a few sec holes
(Portage version: 2.1_pre1)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.73 2006/01/05 16:56:16 solar Exp $
4
5 *hardened-sources-2.6.14-r4 (12 Jan 2006)
6
7 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
8 - version bump for new genpatches which fix up a few sec holes
9
10 *hardened-sources-2.4.32-r1 (05 Jan 2006)
11
12 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
13 - revision bump to add misc vital linux kernel security patches.
14
15 *hardened-sources-2.6.14-r3 (30 Dec 2005)
16
17 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
18 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
19 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
20
21 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
22 hardened-sources-2.6.14-r2.ebuild:
23 making x86 & amd64 stable following testing.
24
25 *hardened-sources-2.6.14-r2 (27 Dec 2005)
26
27 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
28 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
29 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
30 network hooks.
31
32 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
33 hardened-sources-2.6.14-r1.ebuild:
34 bumping to stable early for sec fix on x86 & amd64
35
36 *hardened-sources-2.6.14-r1 (05 Dec 2005)
37
38 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
39 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
40 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
41
42 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
43 - stable on x86 security bug #114227 CAN-2005-3257
44
45 *hardened-sources-2.4.32 (19 Nov 2005)
46
47 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
48 +hardened-sources-2.4.32.ebuild:
49 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
50 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
51 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
52 rsbac >> /etc/portage/package.use)
53
54 *hardened-sources-2.6.14 (14 Nov 2005)
55
56 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
57 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
58 Bumping 2.6 series to 2.6.14.2
59
60 *hardened-sources-2.6.13-r2 (20 Oct 2005)
61
62 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
63 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
64 +hardened-sources-2.6.13-r2.ebuild:
65 Fixes minor build error in ppc.
66
67 *hardened-sources-2.6.13-r1 (17 Oct 2005)
68
69 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
70 +hardened-sources-2.6.13-r1.ebuild:
71 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
72 2.6.13.4, fixes some major amd64 stability problems.
73
74 *hardened-sources-2.6.13 (16 Sep 2005)
75
76 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
77 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
78 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
79 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
80 users should test this thoroughly.
81
82 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
83 - stable on x86
84
85 *hardened-sources-2.6.11-r15 (27 Jun 2005)
86
87 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
88 +hardened-sources-2.6.11-r15.ebuild:
89 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
90 grsec redefining curr_ip struct.
91
92 *hardened-sources-2.4.31 (20 Jun 2005)
93
94 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
95 initial import of 2.4.31 tree
96
97 *hardened-sources-2.6.11-r14 (14 Jun 2005)
98
99 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
100 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
101 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
102 naming scheme to abide by genpatches
103
104 *hardened-sources-2.6.11-r13 (18 May 2005)
105
106 18 May 2005; John Mylchreest <johnm@gentoo.org>
107 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
108 Managed to mangle the Makefile patch from grsec, to miss out the grsec
109 target. sorry about that. Fixes bug #93022
110
111 *hardened-sources-2.6.11-r12 (17 May 2005)
112
113 17 May 2005; John Mylchreest <johnm@gentoo.org>
114 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
115 +hardened-sources-2.6.11-r12.ebuild:
116 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
117 merges in genpatches-base
118
119 *hardened-sources-2.6.11-r12 (17 May 2005)
120
121 17 May 2005; John Mylchreest <johnm@gentoo.org>
122 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
123 +hardened-sources-2.6.11-r12.ebuild:
124 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
125 merges in genpatches-base
126
127 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
128 -files/2.4.27-cmdline-race.patch,
129 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
130 -files/2.4.28-grsec-binfmt_a.out.patch,
131 -files/2.4.28-grsec-cmdline-race.patch,
132 -files/2.4.28-selinux-binfmt_a.out.patch,
133 -files/2.4.28-selinux-cmdline-race.patch,
134 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
135 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
136 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
137 cleanup..
138
139 *hardened-sources-2.4.30-r1 (21 Apr 2005)
140
141 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
142 - disable aout by default
143
144 *hardened-sources-2.4.30 (18 Apr 2005)
145
146 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
147 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
148 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
149 use
150
151 *hardened-sources-2.4.29 (30 Mar 2005)
152
153 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
154 +hardened-sources-2.4.29.ebuild:
155 New hardened-patches-2.4-29.0 patchball.
156 Removed SELinux support, upgraded GRSecurity to 2.1.4.
157
158 *hardened-sources-2.4.28-r5 (06 Mar 2005)
159
160 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
161 +hardened-sources-2.4.28-r5.ebuild:
162 Added a fix for a PaX vulnerability.
163
164 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
165 hardened-sources-2.4.28-r4.ebuild:
166 Stable on x86
167
168 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
169 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
170 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
171 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
172 - fixed/added RDEPEND= in all kernel-2 ebuilds
173
174 *hardened-sources-2.4.28-r4 (21 Jan 2005)
175
176 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
177 +hardened-sources-2.4.28-r4.ebuild:
178 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
179 backport of neighbour hash updates.
180
181 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
182 hardened-sources-2.4.28-r3.ebuild:
183 Stable on x86
184
185 *hardened-sources-2.6.10-r3 (20 Jan 2005)
186
187 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
188 +hardened-sources-2.6.10-r3.ebuild:
189 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
190 in 2005.0
191
192 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
193 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
194 hardened-sources-2.4.28-r2.ebuild:
195 Mark stable on x86
196
197 *hardened-sources-2.4.28-r3 (17 Jan 2005)
198
199 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
200 +hardened-sources-2.4.28-r3.ebuild:
201 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
202
203 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
204 hardened-sources-2.4.28.ebuild:
205 Mark stable on x86.
206
207 *hardened-sources-2.4.28-r2 (13 Jan 2005)
208
209 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
210 +hardened-sources-2.4.28-r2.ebuild:
211 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
212 Mazinger for grsecurity patches as well.
213
214 *hardened-sources-2.4.28-r1 (23 Dec 2004)
215
216 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
217 Security bump. Thank tocharian for rolling a new patchset...
218
219 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
220 +files/2.4.28-grsec-cmdline-race.patch,
221 +files/2.4.28-selinux-binfmt_a.out.patch,
222 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
223 - Round up remaining security patches that appear to be missing in 2.4.28. -
224 PaX standalone updated to current. hgpv=28.1
225
226 *hardened-sources-2.4.28 (28 Nov 2004)
227
228 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
229 security bump. Thank tocharian for rolling a new patchset
230
231 *hardened-sources-2.4.27-r3 (08 Sep 2004)
232
233 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
234 +hardened-sources-2.4.27-r3.ebuild:
235 Applies the new 2.4-27.2 patchball which updates
236 GRSecurity to the 2.0.1 version.
237
238 *hardened-sources-2.4.27-r2 (31 Aug 2004)
239
240 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
241 +hardened-sources-2.4.27-r2.ebuild:
242 Version bump.
243 This version uses the new 2.4-27.1 patchball which updates
244 both the SELinux PaX hooks patch and the SELinux headers.
245
246 *hardened-sources-2.4.27-r1 (09 Aug 2004)
247
248 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
249 +hardened-sources-2.4.27-r1.ebuild,
250 -hardened-sources-2.4.27.ebuild,
251 +files/2.4.27-cmdline-race.patch:
252 Version bump, fix for cmdline race. See bug #59905.
253
254 *hardened-sources-2.4.26-r6 (09 Aug 2004)
255
256 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
257 +hardened-sources-2.4.26-r6.ebuild,
258 -hardened-sources-2.4.26-r5.ebuild,
259 -hardened-sources-2.4.26-r4.ebuild,
260 +files/2.4.26-cmdline-race.patch:
261 Version bump, fix for cmdline race. See bug #59905.
262
263 *hardened-sources-2.4.27 (08 Aug 2004)
264
265 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
266 +hardened-sources-2.4.27.ebuild,
267 +files/2.4.27-CAN-2004-0394.patch:
268 Ported the patchball to the 2.4.27 kernel version.
269
270 *hardened-sources-2.4.26-r5 (07 Aug 2004)
271
272 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
273 +hardened-sources-2.4.26-r5.ebuild:
274 Updated to use the new hardened-patches-2.4-26.1 patchball.
275 It adds the following features:
276 - Squashfs
277 - Ebtables
278 - Netdev random (core+drivers)
279 - Watchdog Timer (WDT) fix.
280
281 *hardened-sources-2.4.26-r4 (04 Aug 2004)
282
283 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
284 +hardened-sources-2.4.26-r4.ebuild,
285 +files/2.4.26-CAN-2004-0415.patch,
286 -hardened-sources-2.4.26-3:
287 Version bump, fix for CAN 0415, see bug #59378.
288
289 *hardened-sources-2.4.26-r3 (22 Jul 2004)
290
291 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
292 +hardened-sources-2.4.26-r3.ebuild,
293 +files/2.4.26-CAN-2004-0497.patch,
294 -hardened-sources-2.4.26-r2.ebuild:
295 Version bump, fixed CAN 0497, see bug #56171.
296
297 *hardened-sources-2.4.26-r2 (29 Jun 2004)
298
299 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
300 +hardened-sources-2.4.26-r2.ebuild,
301 +files/2.4.26-CAN-2004-0495.patch,
302 +files/2.4.26-CAN-2004-0535.patch,
303 -hardened-sources-2.4.26-r1.ebuild:
304 Fixes for both CAN 0495 and 0535, see bug #54976
305
306 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
307 hardened-sources-2.4.26-r1.ebuild:
308 QA - fix use invocation
309
310 *hardened-sources-2.4.26-r1 (22 June 2004)
311
312 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
313 +hardened-sources-2.4.26-r1.ebuild,
314 +files/2.4.26-CAN-2004-0394.patch,
315 +files/2.4.26-signal-race.patch,
316 -hardened-sources-2.4.26.ebuild,
317 -hardened-sources-2.4.24-r3.ebuild:
318 Version bump for the CAN-2004-0394 issue and bug #53804
319 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
320
321
322 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
323 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
324 Masked hardened-sources-2.4.26.ebuild broken for ppc
325
326 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
327 hardened-sources-2.4.24-r3.ebuild:
328 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
329
330 *hardened-sources-2.4.26 (29 May 2004)
331
332 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
333 +hardened-sources-2.4.26.ebuild:
334 Updated hardened-sources for the 2.4.26 kernel
335 Removed broken components, updated almost everything.
336
337 *hardened-sources-2.4.24-r3 (17 Apr 2004)
338
339 17 Apr 2004; <plasmaroo@gentoo.org>
340 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
341 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
342 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
343 +hardened-sources-2.4.24-r3.ebuild:
344 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
345 vulnerabilities. Old revisions removed.
346
347 *hardened-sources-2.4.24-r2 (15 Apr 2004)
348
349 15 Apr 2004; <plasmaroo@gentoo.org>
350 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
351 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
352 Version bump for the CAN-2004-0109 issue; bug #47881.
353
354 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
355 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
356 Add eutils to inherit.
357
358 *hardened-sources-2.4.24-r1 (19 Feb 2004)
359
360 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
361 files/hardened-sources-2.4.24.munmap.patch:
362 Added the patch for the mremap/munmap vulnerability. Bug #42024.
363
364 *hardened-sources-2.4.24 (06 Feb 2004)
365
366 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
367 hardened-sources-2.4.24.ebuild:
368 Version bump, updated most of the components.
369 This release includes the following:
370
371 - Hardened security
372 - Netfilter patch-o-matic 20031219
373 - FreeSWAN 2.04 & x509 1.4.8
374 - EVMS 2.2.2
375 - XFS 1.3.1
376 - cryptoloop jari
377 - grsecurity 2.0-rc4
378 - SELinux
379 - PaX 200402060000
380 - PaX Obscurity 200308302223
381 - Others...
382
383 Neither -ck nor systrace are included anymore.
384
385 *hardened-sources-2.4.22-r2 (05 Jan 2004)
386
387 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
388 hardened-sources-2.4.22-r2.ebuild:
389 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
390
391 *hardened-sources-2.4.22-r1 (02 Dec 2003)
392
393 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
394 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
395
396 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
397 hardened-sources-2.4.22-r1.ebuild:
398 Version bump for the 'do_brk' vulnerability.
399
400 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
401 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
402 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
403 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
404 Fix the 'do_brk' vulnerability.
405
406 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
407 hardened-sources-2.4.22.ebuild:
408 - Removed the src_install() portion for SELinux flask
409 components. These are no longer handled in the kernel
410 so this code was not necessary.
411
412 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
413 New 2.4.22 based hardened-sources thanks to
414 Phil West <p.west@computer.org>.
415
416 These sources include:
417 - New SELinux API
418 - Updated CK-base
419 - Updated GRSec
420 - Systrace
421 - SuperFreeS/WAN 1.99.8
422 - Propolice kernel build support
423 - EVMS
424 - Other various security related patches
425
426 *hardened-sources-2.4.21 (14 Sep 2003)
427
428 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
429 Updated hardened-sources based on the 2.4.21 Linux kernel.
430 This includes updates to most major components such as:
431 - ck-base-0306300059
432 - selinux-2.4-2003071106
433 - grsecurity-2.0-rc1
434 - Updated IPTables patch-o-matic
435 - Updated SuperFreeS/WAN
436
437 Thanks to Phil West <pwest@computer.org> for his work in getting this
438 updated patch set ready for the 2.4.21 based kernel.
439
440 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
441 Initial import of hardened-sources-2.4.20-r4. This revision
442 includes only a few changes, but one of these is an important
443 security fix. It is recommended all users of hardened-sources
444 upgrade to this release.
445
446 - ioperm bug fix
447 - fixed compilation failure when building without GRSec
448
449 SAL (Secure Auditing for Linux) is NOT included in this revision
450 due to time constraints, but is planned for inclusion in the near
451 future.
452
453 *hardened-sources-2.4.20-r2 (12 Jun 2003)
454
455 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
456 hardened-sources-2.4.20-r3.ebuild:
457 Add Header...
458
459 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
460 hardened-sources-2.4.20-r3.ebuild:
461 Removed warnings from ebuild. This kernel should be safe to
462 use at this point.
463
464 *hardened-sources-2.4.20-r3 (08 Jun 2003)
465
466 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
467 hardened-sources-2.4.20-r3.ebuild:
468 New revision. Includes the following changes over -r2:
469
470 - ck7-base (O(1), preempt, low latency)
471 - Super FreeS/WAN 1.99.7rc2
472 - PaX for the LSM/SELinux branch
473 - GRSecurity 2.0-pre4 (role based access control)
474 - Systrace 1.3
475 - EXT3 fixes
476 - EVMS 2.0.1
477 - GCC 3.1+ compile optimizations
478 - ProPolice kernel build support
479 - Hashing table security fixes
480
481 *hardened-sources-2.4.20-r1 (09 Apr 2003)
482
483 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
484 Initial import of hardened-sources-r2. This new
485 ebuild includes many new performance and security
486 related patches. As in -r1, it will patch in
487 LSM/SELinux if "selinux" is in USE, otherwise it
488 will patch in GRSecurity. The following patches
489 are included in this revision:
490
491 - O(1) Scheduler, Low Latency, and Preempt
492 (pulled from the base CK patch)
493 - ptrace exploit patch for the LSM kernel
494 (the GRSec patch already fixes this)
495 - LSM 2.4-2003040709
496 - SELinux 2.4-2003040709
497 - Systrace v1.2
498 - IPTables patch-o-matic base patches - 20030107
499 - CryptoAPI 2.4.20.1 w/ loop-jari patch
500 - Super FreeS/WAN 1.99.6.1
501 - GRSecurity 1.9.9g
502 - MPPE
503 - EXT3 data journal fix
504 - CIPE 1.5.4
505
506 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
507 hardened-sources-2.4.20-r1.ebuild, manifest:
508 Updated to install flask components correctly for selinux.
509
510 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
511 hardened-sources-2.4.20-r1.ebuild:
512 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
513 is patched in instead. Ptrace patches for selinux have also been added. In
514 either case, systrace support will be patched in as well.
515
516 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
517 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
518 Revision bump for new sources.
519
520 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
521 hardened-sources-2.4.20-r1.ebuild:
522 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
523
524 *hardened-sources-2.4.20 (30 Mar 2003)
525
526 30 Mar 2003; Joshua Brindle <method@gentoo.org>
527 hardened-sources-2.4.20.ebuild:
528 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20