/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.78 - (show annotations) (download)
Thu Mar 2 21:33:08 2006 UTC (8 years, 6 months ago) by solar
Branch: MAIN
Changes since 1.77: +4 -1 lines
- stable on x86
(Portage version: 2.1_pre4-r1)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.77 2006/02/19 21:55:42 hansmi Exp $
4
5 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
6 - stable on x86
7
8 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
9 hardened-sources-2.6.14-r5.ebuild:
10 Stable on ppc.
11
12 *hardened-sources-2.6.14-r5 (01 Feb 2006)
13
14 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
15 +hardened-sources-2.6.14-r5.ebuild:
16 fixing every known exploit
17
18 *hardened-sources-2.4.32-r2 (26 Jan 2006)
19
20 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
21 +hardened-sources-2.4.32-r2.ebuild:
22 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
23
24 *hardened-sources-2.6.14-r4 (12 Jan 2006)
25
26 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
27 - version bump for new genpatches which fix up a few sec holes
28
29 *hardened-sources-2.4.32-r1 (05 Jan 2006)
30
31 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
32 - revision bump to add misc vital linux kernel security patches.
33
34 *hardened-sources-2.6.14-r3 (30 Dec 2005)
35
36 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
37 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
38 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
39
40 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
41 hardened-sources-2.6.14-r2.ebuild:
42 making x86 & amd64 stable following testing.
43
44 *hardened-sources-2.6.14-r2 (27 Dec 2005)
45
46 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
47 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
48 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
49 network hooks.
50
51 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
52 hardened-sources-2.6.14-r1.ebuild:
53 bumping to stable early for sec fix on x86 & amd64
54
55 *hardened-sources-2.6.14-r1 (05 Dec 2005)
56
57 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
58 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
59 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
60
61 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
62 - stable on x86 security bug #114227 CAN-2005-3257
63
64 *hardened-sources-2.4.32 (19 Nov 2005)
65
66 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
67 +hardened-sources-2.4.32.ebuild:
68 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
69 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
70 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
71 rsbac >> /etc/portage/package.use)
72
73 *hardened-sources-2.6.14 (14 Nov 2005)
74
75 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
76 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
77 Bumping 2.6 series to 2.6.14.2
78
79 *hardened-sources-2.6.13-r2 (20 Oct 2005)
80
81 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
82 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
83 +hardened-sources-2.6.13-r2.ebuild:
84 Fixes minor build error in ppc.
85
86 *hardened-sources-2.6.13-r1 (17 Oct 2005)
87
88 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
89 +hardened-sources-2.6.13-r1.ebuild:
90 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
91 2.6.13.4, fixes some major amd64 stability problems.
92
93 *hardened-sources-2.6.13 (16 Sep 2005)
94
95 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
96 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
97 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
98 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
99 users should test this thoroughly.
100
101 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
102 - stable on x86
103
104 *hardened-sources-2.6.11-r15 (27 Jun 2005)
105
106 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
107 +hardened-sources-2.6.11-r15.ebuild:
108 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
109 grsec redefining curr_ip struct.
110
111 *hardened-sources-2.4.31 (20 Jun 2005)
112
113 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
114 initial import of 2.4.31 tree
115
116 *hardened-sources-2.6.11-r14 (14 Jun 2005)
117
118 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
119 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
120 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
121 naming scheme to abide by genpatches
122
123 *hardened-sources-2.6.11-r13 (18 May 2005)
124
125 18 May 2005; John Mylchreest <johnm@gentoo.org>
126 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
127 Managed to mangle the Makefile patch from grsec, to miss out the grsec
128 target. sorry about that. Fixes bug #93022
129
130 *hardened-sources-2.6.11-r12 (17 May 2005)
131
132 17 May 2005; John Mylchreest <johnm@gentoo.org>
133 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
134 +hardened-sources-2.6.11-r12.ebuild:
135 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
136 merges in genpatches-base
137
138 *hardened-sources-2.6.11-r12 (17 May 2005)
139
140 17 May 2005; John Mylchreest <johnm@gentoo.org>
141 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
142 +hardened-sources-2.6.11-r12.ebuild:
143 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
144 merges in genpatches-base
145
146 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
147 -files/2.4.27-cmdline-race.patch,
148 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
149 -files/2.4.28-grsec-binfmt_a.out.patch,
150 -files/2.4.28-grsec-cmdline-race.patch,
151 -files/2.4.28-selinux-binfmt_a.out.patch,
152 -files/2.4.28-selinux-cmdline-race.patch,
153 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
154 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
155 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
156 cleanup..
157
158 *hardened-sources-2.4.30-r1 (21 Apr 2005)
159
160 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
161 - disable aout by default
162
163 *hardened-sources-2.4.30 (18 Apr 2005)
164
165 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
166 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
167 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
168 use
169
170 *hardened-sources-2.4.29 (30 Mar 2005)
171
172 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
173 +hardened-sources-2.4.29.ebuild:
174 New hardened-patches-2.4-29.0 patchball.
175 Removed SELinux support, upgraded GRSecurity to 2.1.4.
176
177 *hardened-sources-2.4.28-r5 (06 Mar 2005)
178
179 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
180 +hardened-sources-2.4.28-r5.ebuild:
181 Added a fix for a PaX vulnerability.
182
183 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
184 hardened-sources-2.4.28-r4.ebuild:
185 Stable on x86
186
187 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
188 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
189 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
190 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
191 - fixed/added RDEPEND= in all kernel-2 ebuilds
192
193 *hardened-sources-2.4.28-r4 (21 Jan 2005)
194
195 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
196 +hardened-sources-2.4.28-r4.ebuild:
197 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
198 backport of neighbour hash updates.
199
200 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
201 hardened-sources-2.4.28-r3.ebuild:
202 Stable on x86
203
204 *hardened-sources-2.6.10-r3 (20 Jan 2005)
205
206 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
207 +hardened-sources-2.6.10-r3.ebuild:
208 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
209 in 2005.0
210
211 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
212 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
213 hardened-sources-2.4.28-r2.ebuild:
214 Mark stable on x86
215
216 *hardened-sources-2.4.28-r3 (17 Jan 2005)
217
218 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
219 +hardened-sources-2.4.28-r3.ebuild:
220 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
221
222 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
223 hardened-sources-2.4.28.ebuild:
224 Mark stable on x86.
225
226 *hardened-sources-2.4.28-r2 (13 Jan 2005)
227
228 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
229 +hardened-sources-2.4.28-r2.ebuild:
230 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
231 Mazinger for grsecurity patches as well.
232
233 *hardened-sources-2.4.28-r1 (23 Dec 2004)
234
235 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
236 Security bump. Thank tocharian for rolling a new patchset...
237
238 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
239 +files/2.4.28-grsec-cmdline-race.patch,
240 +files/2.4.28-selinux-binfmt_a.out.patch,
241 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
242 - Round up remaining security patches that appear to be missing in 2.4.28. -
243 PaX standalone updated to current. hgpv=28.1
244
245 *hardened-sources-2.4.28 (28 Nov 2004)
246
247 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
248 security bump. Thank tocharian for rolling a new patchset
249
250 *hardened-sources-2.4.27-r3 (08 Sep 2004)
251
252 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
253 +hardened-sources-2.4.27-r3.ebuild:
254 Applies the new 2.4-27.2 patchball which updates
255 GRSecurity to the 2.0.1 version.
256
257 *hardened-sources-2.4.27-r2 (31 Aug 2004)
258
259 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
260 +hardened-sources-2.4.27-r2.ebuild:
261 Version bump.
262 This version uses the new 2.4-27.1 patchball which updates
263 both the SELinux PaX hooks patch and the SELinux headers.
264
265 *hardened-sources-2.4.27-r1 (09 Aug 2004)
266
267 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
268 +hardened-sources-2.4.27-r1.ebuild,
269 -hardened-sources-2.4.27.ebuild,
270 +files/2.4.27-cmdline-race.patch:
271 Version bump, fix for cmdline race. See bug #59905.
272
273 *hardened-sources-2.4.26-r6 (09 Aug 2004)
274
275 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
276 +hardened-sources-2.4.26-r6.ebuild,
277 -hardened-sources-2.4.26-r5.ebuild,
278 -hardened-sources-2.4.26-r4.ebuild,
279 +files/2.4.26-cmdline-race.patch:
280 Version bump, fix for cmdline race. See bug #59905.
281
282 *hardened-sources-2.4.27 (08 Aug 2004)
283
284 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
285 +hardened-sources-2.4.27.ebuild,
286 +files/2.4.27-CAN-2004-0394.patch:
287 Ported the patchball to the 2.4.27 kernel version.
288
289 *hardened-sources-2.4.26-r5 (07 Aug 2004)
290
291 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
292 +hardened-sources-2.4.26-r5.ebuild:
293 Updated to use the new hardened-patches-2.4-26.1 patchball.
294 It adds the following features:
295 - Squashfs
296 - Ebtables
297 - Netdev random (core+drivers)
298 - Watchdog Timer (WDT) fix.
299
300 *hardened-sources-2.4.26-r4 (04 Aug 2004)
301
302 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
303 +hardened-sources-2.4.26-r4.ebuild,
304 +files/2.4.26-CAN-2004-0415.patch,
305 -hardened-sources-2.4.26-3:
306 Version bump, fix for CAN 0415, see bug #59378.
307
308 *hardened-sources-2.4.26-r3 (22 Jul 2004)
309
310 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
311 +hardened-sources-2.4.26-r3.ebuild,
312 +files/2.4.26-CAN-2004-0497.patch,
313 -hardened-sources-2.4.26-r2.ebuild:
314 Version bump, fixed CAN 0497, see bug #56171.
315
316 *hardened-sources-2.4.26-r2 (29 Jun 2004)
317
318 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
319 +hardened-sources-2.4.26-r2.ebuild,
320 +files/2.4.26-CAN-2004-0495.patch,
321 +files/2.4.26-CAN-2004-0535.patch,
322 -hardened-sources-2.4.26-r1.ebuild:
323 Fixes for both CAN 0495 and 0535, see bug #54976
324
325 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
326 hardened-sources-2.4.26-r1.ebuild:
327 QA - fix use invocation
328
329 *hardened-sources-2.4.26-r1 (22 June 2004)
330
331 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
332 +hardened-sources-2.4.26-r1.ebuild,
333 +files/2.4.26-CAN-2004-0394.patch,
334 +files/2.4.26-signal-race.patch,
335 -hardened-sources-2.4.26.ebuild,
336 -hardened-sources-2.4.24-r3.ebuild:
337 Version bump for the CAN-2004-0394 issue and bug #53804
338 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
339
340
341 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
342 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
343 Masked hardened-sources-2.4.26.ebuild broken for ppc
344
345 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
346 hardened-sources-2.4.24-r3.ebuild:
347 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
348
349 *hardened-sources-2.4.26 (29 May 2004)
350
351 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
352 +hardened-sources-2.4.26.ebuild:
353 Updated hardened-sources for the 2.4.26 kernel
354 Removed broken components, updated almost everything.
355
356 *hardened-sources-2.4.24-r3 (17 Apr 2004)
357
358 17 Apr 2004; <plasmaroo@gentoo.org>
359 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
360 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
361 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
362 +hardened-sources-2.4.24-r3.ebuild:
363 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
364 vulnerabilities. Old revisions removed.
365
366 *hardened-sources-2.4.24-r2 (15 Apr 2004)
367
368 15 Apr 2004; <plasmaroo@gentoo.org>
369 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
370 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
371 Version bump for the CAN-2004-0109 issue; bug #47881.
372
373 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
374 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
375 Add eutils to inherit.
376
377 *hardened-sources-2.4.24-r1 (19 Feb 2004)
378
379 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
380 files/hardened-sources-2.4.24.munmap.patch:
381 Added the patch for the mremap/munmap vulnerability. Bug #42024.
382
383 *hardened-sources-2.4.24 (06 Feb 2004)
384
385 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
386 hardened-sources-2.4.24.ebuild:
387 Version bump, updated most of the components.
388 This release includes the following:
389
390 - Hardened security
391 - Netfilter patch-o-matic 20031219
392 - FreeSWAN 2.04 & x509 1.4.8
393 - EVMS 2.2.2
394 - XFS 1.3.1
395 - cryptoloop jari
396 - grsecurity 2.0-rc4
397 - SELinux
398 - PaX 200402060000
399 - PaX Obscurity 200308302223
400 - Others...
401
402 Neither -ck nor systrace are included anymore.
403
404 *hardened-sources-2.4.22-r2 (05 Jan 2004)
405
406 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
407 hardened-sources-2.4.22-r2.ebuild:
408 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
409
410 *hardened-sources-2.4.22-r1 (02 Dec 2003)
411
412 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
413 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
414
415 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
416 hardened-sources-2.4.22-r1.ebuild:
417 Version bump for the 'do_brk' vulnerability.
418
419 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
420 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
421 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
422 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
423 Fix the 'do_brk' vulnerability.
424
425 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
426 hardened-sources-2.4.22.ebuild:
427 - Removed the src_install() portion for SELinux flask
428 components. These are no longer handled in the kernel
429 so this code was not necessary.
430
431 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
432 New 2.4.22 based hardened-sources thanks to
433 Phil West <p.west@computer.org>.
434
435 These sources include:
436 - New SELinux API
437 - Updated CK-base
438 - Updated GRSec
439 - Systrace
440 - SuperFreeS/WAN 1.99.8
441 - Propolice kernel build support
442 - EVMS
443 - Other various security related patches
444
445 *hardened-sources-2.4.21 (14 Sep 2003)
446
447 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
448 Updated hardened-sources based on the 2.4.21 Linux kernel.
449 This includes updates to most major components such as:
450 - ck-base-0306300059
451 - selinux-2.4-2003071106
452 - grsecurity-2.0-rc1
453 - Updated IPTables patch-o-matic
454 - Updated SuperFreeS/WAN
455
456 Thanks to Phil West <pwest@computer.org> for his work in getting this
457 updated patch set ready for the 2.4.21 based kernel.
458
459 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
460 Initial import of hardened-sources-2.4.20-r4. This revision
461 includes only a few changes, but one of these is an important
462 security fix. It is recommended all users of hardened-sources
463 upgrade to this release.
464
465 - ioperm bug fix
466 - fixed compilation failure when building without GRSec
467
468 SAL (Secure Auditing for Linux) is NOT included in this revision
469 due to time constraints, but is planned for inclusion in the near
470 future.
471
472 *hardened-sources-2.4.20-r2 (12 Jun 2003)
473
474 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
475 hardened-sources-2.4.20-r3.ebuild:
476 Add Header...
477
478 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
479 hardened-sources-2.4.20-r3.ebuild:
480 Removed warnings from ebuild. This kernel should be safe to
481 use at this point.
482
483 *hardened-sources-2.4.20-r3 (08 Jun 2003)
484
485 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
486 hardened-sources-2.4.20-r3.ebuild:
487 New revision. Includes the following changes over -r2:
488
489 - ck7-base (O(1), preempt, low latency)
490 - Super FreeS/WAN 1.99.7rc2
491 - PaX for the LSM/SELinux branch
492 - GRSecurity 2.0-pre4 (role based access control)
493 - Systrace 1.3
494 - EXT3 fixes
495 - EVMS 2.0.1
496 - GCC 3.1+ compile optimizations
497 - ProPolice kernel build support
498 - Hashing table security fixes
499
500 *hardened-sources-2.4.20-r1 (09 Apr 2003)
501
502 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
503 Initial import of hardened-sources-r2. This new
504 ebuild includes many new performance and security
505 related patches. As in -r1, it will patch in
506 LSM/SELinux if "selinux" is in USE, otherwise it
507 will patch in GRSecurity. The following patches
508 are included in this revision:
509
510 - O(1) Scheduler, Low Latency, and Preempt
511 (pulled from the base CK patch)
512 - ptrace exploit patch for the LSM kernel
513 (the GRSec patch already fixes this)
514 - LSM 2.4-2003040709
515 - SELinux 2.4-2003040709
516 - Systrace v1.2
517 - IPTables patch-o-matic base patches - 20030107
518 - CryptoAPI 2.4.20.1 w/ loop-jari patch
519 - Super FreeS/WAN 1.99.6.1
520 - GRSecurity 1.9.9g
521 - MPPE
522 - EXT3 data journal fix
523 - CIPE 1.5.4
524
525 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
526 hardened-sources-2.4.20-r1.ebuild, manifest:
527 Updated to install flask components correctly for selinux.
528
529 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
530 hardened-sources-2.4.20-r1.ebuild:
531 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
532 is patched in instead. Ptrace patches for selinux have also been added. In
533 either case, systrace support will be patched in as well.
534
535 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
536 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
537 Revision bump for new sources.
538
539 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
540 hardened-sources-2.4.20-r1.ebuild:
541 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
542
543 *hardened-sources-2.4.20 (30 Mar 2003)
544
545 30 Mar 2003; Joshua Brindle <method@gentoo.org>
546 hardened-sources-2.4.20.ebuild:
547 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20