/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.79 - (show annotations) (download)
Wed Mar 15 21:49:07 2006 UTC (8 years, 6 months ago) by johnm
Branch: MAIN
Changes since 1.78: +8 -1 lines
Fixes grsec policy recreation bug, bumped to fix a lot of sec vulns.
(Portage version: 2.1_pre6-r3)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.78 2006/03/02 21:33:08 solar Exp $
4
5 *hardened-sources-2.6.14-r6 (15 Mar 2006)
6
7 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
8 +hardened-sources-2.6.14-r6.ebuild:
9 Fixes grsec policy recreation bug and adds a
10 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
11
12 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
13 - stable on x86
14
15 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
16 hardened-sources-2.6.14-r5.ebuild:
17 Stable on ppc.
18
19 *hardened-sources-2.6.14-r5 (01 Feb 2006)
20
21 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
22 +hardened-sources-2.6.14-r5.ebuild:
23 fixing every known exploit
24
25 *hardened-sources-2.4.32-r2 (26 Jan 2006)
26
27 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
28 +hardened-sources-2.4.32-r2.ebuild:
29 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
30
31 *hardened-sources-2.6.14-r4 (12 Jan 2006)
32
33 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
34 - version bump for new genpatches which fix up a few sec holes
35
36 *hardened-sources-2.4.32-r1 (05 Jan 2006)
37
38 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
39 - revision bump to add misc vital linux kernel security patches.
40
41 *hardened-sources-2.6.14-r3 (30 Dec 2005)
42
43 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
44 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
45 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
46
47 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
48 hardened-sources-2.6.14-r2.ebuild:
49 making x86 & amd64 stable following testing.
50
51 *hardened-sources-2.6.14-r2 (27 Dec 2005)
52
53 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
54 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
55 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
56 network hooks.
57
58 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
59 hardened-sources-2.6.14-r1.ebuild:
60 bumping to stable early for sec fix on x86 & amd64
61
62 *hardened-sources-2.6.14-r1 (05 Dec 2005)
63
64 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
65 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
66 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
67
68 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
69 - stable on x86 security bug #114227 CAN-2005-3257
70
71 *hardened-sources-2.4.32 (19 Nov 2005)
72
73 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
74 +hardened-sources-2.4.32.ebuild:
75 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
76 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
77 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
78 rsbac >> /etc/portage/package.use)
79
80 *hardened-sources-2.6.14 (14 Nov 2005)
81
82 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
83 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
84 Bumping 2.6 series to 2.6.14.2
85
86 *hardened-sources-2.6.13-r2 (20 Oct 2005)
87
88 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
89 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
90 +hardened-sources-2.6.13-r2.ebuild:
91 Fixes minor build error in ppc.
92
93 *hardened-sources-2.6.13-r1 (17 Oct 2005)
94
95 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
96 +hardened-sources-2.6.13-r1.ebuild:
97 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
98 2.6.13.4, fixes some major amd64 stability problems.
99
100 *hardened-sources-2.6.13 (16 Sep 2005)
101
102 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
103 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
104 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
105 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
106 users should test this thoroughly.
107
108 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
109 - stable on x86
110
111 *hardened-sources-2.6.11-r15 (27 Jun 2005)
112
113 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
114 +hardened-sources-2.6.11-r15.ebuild:
115 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
116 grsec redefining curr_ip struct.
117
118 *hardened-sources-2.4.31 (20 Jun 2005)
119
120 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
121 initial import of 2.4.31 tree
122
123 *hardened-sources-2.6.11-r14 (14 Jun 2005)
124
125 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
126 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
127 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
128 naming scheme to abide by genpatches
129
130 *hardened-sources-2.6.11-r13 (18 May 2005)
131
132 18 May 2005; John Mylchreest <johnm@gentoo.org>
133 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
134 Managed to mangle the Makefile patch from grsec, to miss out the grsec
135 target. sorry about that. Fixes bug #93022
136
137 *hardened-sources-2.6.11-r12 (17 May 2005)
138
139 17 May 2005; John Mylchreest <johnm@gentoo.org>
140 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
141 +hardened-sources-2.6.11-r12.ebuild:
142 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
143 merges in genpatches-base
144
145 *hardened-sources-2.6.11-r12 (17 May 2005)
146
147 17 May 2005; John Mylchreest <johnm@gentoo.org>
148 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
149 +hardened-sources-2.6.11-r12.ebuild:
150 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
151 merges in genpatches-base
152
153 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
154 -files/2.4.27-cmdline-race.patch,
155 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
156 -files/2.4.28-grsec-binfmt_a.out.patch,
157 -files/2.4.28-grsec-cmdline-race.patch,
158 -files/2.4.28-selinux-binfmt_a.out.patch,
159 -files/2.4.28-selinux-cmdline-race.patch,
160 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
161 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
162 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
163 cleanup..
164
165 *hardened-sources-2.4.30-r1 (21 Apr 2005)
166
167 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
168 - disable aout by default
169
170 *hardened-sources-2.4.30 (18 Apr 2005)
171
172 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
173 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
174 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
175 use
176
177 *hardened-sources-2.4.29 (30 Mar 2005)
178
179 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
180 +hardened-sources-2.4.29.ebuild:
181 New hardened-patches-2.4-29.0 patchball.
182 Removed SELinux support, upgraded GRSecurity to 2.1.4.
183
184 *hardened-sources-2.4.28-r5 (06 Mar 2005)
185
186 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
187 +hardened-sources-2.4.28-r5.ebuild:
188 Added a fix for a PaX vulnerability.
189
190 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
191 hardened-sources-2.4.28-r4.ebuild:
192 Stable on x86
193
194 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
195 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
196 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
197 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
198 - fixed/added RDEPEND= in all kernel-2 ebuilds
199
200 *hardened-sources-2.4.28-r4 (21 Jan 2005)
201
202 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
203 +hardened-sources-2.4.28-r4.ebuild:
204 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
205 backport of neighbour hash updates.
206
207 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
208 hardened-sources-2.4.28-r3.ebuild:
209 Stable on x86
210
211 *hardened-sources-2.6.10-r3 (20 Jan 2005)
212
213 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
214 +hardened-sources-2.6.10-r3.ebuild:
215 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
216 in 2005.0
217
218 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
219 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
220 hardened-sources-2.4.28-r2.ebuild:
221 Mark stable on x86
222
223 *hardened-sources-2.4.28-r3 (17 Jan 2005)
224
225 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
226 +hardened-sources-2.4.28-r3.ebuild:
227 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
228
229 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
230 hardened-sources-2.4.28.ebuild:
231 Mark stable on x86.
232
233 *hardened-sources-2.4.28-r2 (13 Jan 2005)
234
235 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
236 +hardened-sources-2.4.28-r2.ebuild:
237 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
238 Mazinger for grsecurity patches as well.
239
240 *hardened-sources-2.4.28-r1 (23 Dec 2004)
241
242 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
243 Security bump. Thank tocharian for rolling a new patchset...
244
245 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
246 +files/2.4.28-grsec-cmdline-race.patch,
247 +files/2.4.28-selinux-binfmt_a.out.patch,
248 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
249 - Round up remaining security patches that appear to be missing in 2.4.28. -
250 PaX standalone updated to current. hgpv=28.1
251
252 *hardened-sources-2.4.28 (28 Nov 2004)
253
254 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
255 security bump. Thank tocharian for rolling a new patchset
256
257 *hardened-sources-2.4.27-r3 (08 Sep 2004)
258
259 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
260 +hardened-sources-2.4.27-r3.ebuild:
261 Applies the new 2.4-27.2 patchball which updates
262 GRSecurity to the 2.0.1 version.
263
264 *hardened-sources-2.4.27-r2 (31 Aug 2004)
265
266 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
267 +hardened-sources-2.4.27-r2.ebuild:
268 Version bump.
269 This version uses the new 2.4-27.1 patchball which updates
270 both the SELinux PaX hooks patch and the SELinux headers.
271
272 *hardened-sources-2.4.27-r1 (09 Aug 2004)
273
274 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
275 +hardened-sources-2.4.27-r1.ebuild,
276 -hardened-sources-2.4.27.ebuild,
277 +files/2.4.27-cmdline-race.patch:
278 Version bump, fix for cmdline race. See bug #59905.
279
280 *hardened-sources-2.4.26-r6 (09 Aug 2004)
281
282 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
283 +hardened-sources-2.4.26-r6.ebuild,
284 -hardened-sources-2.4.26-r5.ebuild,
285 -hardened-sources-2.4.26-r4.ebuild,
286 +files/2.4.26-cmdline-race.patch:
287 Version bump, fix for cmdline race. See bug #59905.
288
289 *hardened-sources-2.4.27 (08 Aug 2004)
290
291 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
292 +hardened-sources-2.4.27.ebuild,
293 +files/2.4.27-CAN-2004-0394.patch:
294 Ported the patchball to the 2.4.27 kernel version.
295
296 *hardened-sources-2.4.26-r5 (07 Aug 2004)
297
298 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
299 +hardened-sources-2.4.26-r5.ebuild:
300 Updated to use the new hardened-patches-2.4-26.1 patchball.
301 It adds the following features:
302 - Squashfs
303 - Ebtables
304 - Netdev random (core+drivers)
305 - Watchdog Timer (WDT) fix.
306
307 *hardened-sources-2.4.26-r4 (04 Aug 2004)
308
309 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
310 +hardened-sources-2.4.26-r4.ebuild,
311 +files/2.4.26-CAN-2004-0415.patch,
312 -hardened-sources-2.4.26-3:
313 Version bump, fix for CAN 0415, see bug #59378.
314
315 *hardened-sources-2.4.26-r3 (22 Jul 2004)
316
317 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
318 +hardened-sources-2.4.26-r3.ebuild,
319 +files/2.4.26-CAN-2004-0497.patch,
320 -hardened-sources-2.4.26-r2.ebuild:
321 Version bump, fixed CAN 0497, see bug #56171.
322
323 *hardened-sources-2.4.26-r2 (29 Jun 2004)
324
325 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
326 +hardened-sources-2.4.26-r2.ebuild,
327 +files/2.4.26-CAN-2004-0495.patch,
328 +files/2.4.26-CAN-2004-0535.patch,
329 -hardened-sources-2.4.26-r1.ebuild:
330 Fixes for both CAN 0495 and 0535, see bug #54976
331
332 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
333 hardened-sources-2.4.26-r1.ebuild:
334 QA - fix use invocation
335
336 *hardened-sources-2.4.26-r1 (22 June 2004)
337
338 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
339 +hardened-sources-2.4.26-r1.ebuild,
340 +files/2.4.26-CAN-2004-0394.patch,
341 +files/2.4.26-signal-race.patch,
342 -hardened-sources-2.4.26.ebuild,
343 -hardened-sources-2.4.24-r3.ebuild:
344 Version bump for the CAN-2004-0394 issue and bug #53804
345 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
346
347
348 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
349 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
350 Masked hardened-sources-2.4.26.ebuild broken for ppc
351
352 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
353 hardened-sources-2.4.24-r3.ebuild:
354 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
355
356 *hardened-sources-2.4.26 (29 May 2004)
357
358 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
359 +hardened-sources-2.4.26.ebuild:
360 Updated hardened-sources for the 2.4.26 kernel
361 Removed broken components, updated almost everything.
362
363 *hardened-sources-2.4.24-r3 (17 Apr 2004)
364
365 17 Apr 2004; <plasmaroo@gentoo.org>
366 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
367 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
368 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
369 +hardened-sources-2.4.24-r3.ebuild:
370 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
371 vulnerabilities. Old revisions removed.
372
373 *hardened-sources-2.4.24-r2 (15 Apr 2004)
374
375 15 Apr 2004; <plasmaroo@gentoo.org>
376 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
377 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
378 Version bump for the CAN-2004-0109 issue; bug #47881.
379
380 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
381 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
382 Add eutils to inherit.
383
384 *hardened-sources-2.4.24-r1 (19 Feb 2004)
385
386 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
387 files/hardened-sources-2.4.24.munmap.patch:
388 Added the patch for the mremap/munmap vulnerability. Bug #42024.
389
390 *hardened-sources-2.4.24 (06 Feb 2004)
391
392 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
393 hardened-sources-2.4.24.ebuild:
394 Version bump, updated most of the components.
395 This release includes the following:
396
397 - Hardened security
398 - Netfilter patch-o-matic 20031219
399 - FreeSWAN 2.04 & x509 1.4.8
400 - EVMS 2.2.2
401 - XFS 1.3.1
402 - cryptoloop jari
403 - grsecurity 2.0-rc4
404 - SELinux
405 - PaX 200402060000
406 - PaX Obscurity 200308302223
407 - Others...
408
409 Neither -ck nor systrace are included anymore.
410
411 *hardened-sources-2.4.22-r2 (05 Jan 2004)
412
413 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
414 hardened-sources-2.4.22-r2.ebuild:
415 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
416
417 *hardened-sources-2.4.22-r1 (02 Dec 2003)
418
419 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
420 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
421
422 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
423 hardened-sources-2.4.22-r1.ebuild:
424 Version bump for the 'do_brk' vulnerability.
425
426 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
427 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
428 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
429 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
430 Fix the 'do_brk' vulnerability.
431
432 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
433 hardened-sources-2.4.22.ebuild:
434 - Removed the src_install() portion for SELinux flask
435 components. These are no longer handled in the kernel
436 so this code was not necessary.
437
438 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
439 New 2.4.22 based hardened-sources thanks to
440 Phil West <p.west@computer.org>.
441
442 These sources include:
443 - New SELinux API
444 - Updated CK-base
445 - Updated GRSec
446 - Systrace
447 - SuperFreeS/WAN 1.99.8
448 - Propolice kernel build support
449 - EVMS
450 - Other various security related patches
451
452 *hardened-sources-2.4.21 (14 Sep 2003)
453
454 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
455 Updated hardened-sources based on the 2.4.21 Linux kernel.
456 This includes updates to most major components such as:
457 - ck-base-0306300059
458 - selinux-2.4-2003071106
459 - grsecurity-2.0-rc1
460 - Updated IPTables patch-o-matic
461 - Updated SuperFreeS/WAN
462
463 Thanks to Phil West <pwest@computer.org> for his work in getting this
464 updated patch set ready for the 2.4.21 based kernel.
465
466 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
467 Initial import of hardened-sources-2.4.20-r4. This revision
468 includes only a few changes, but one of these is an important
469 security fix. It is recommended all users of hardened-sources
470 upgrade to this release.
471
472 - ioperm bug fix
473 - fixed compilation failure when building without GRSec
474
475 SAL (Secure Auditing for Linux) is NOT included in this revision
476 due to time constraints, but is planned for inclusion in the near
477 future.
478
479 *hardened-sources-2.4.20-r2 (12 Jun 2003)
480
481 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
482 hardened-sources-2.4.20-r3.ebuild:
483 Add Header...
484
485 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
486 hardened-sources-2.4.20-r3.ebuild:
487 Removed warnings from ebuild. This kernel should be safe to
488 use at this point.
489
490 *hardened-sources-2.4.20-r3 (08 Jun 2003)
491
492 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
493 hardened-sources-2.4.20-r3.ebuild:
494 New revision. Includes the following changes over -r2:
495
496 - ck7-base (O(1), preempt, low latency)
497 - Super FreeS/WAN 1.99.7rc2
498 - PaX for the LSM/SELinux branch
499 - GRSecurity 2.0-pre4 (role based access control)
500 - Systrace 1.3
501 - EXT3 fixes
502 - EVMS 2.0.1
503 - GCC 3.1+ compile optimizations
504 - ProPolice kernel build support
505 - Hashing table security fixes
506
507 *hardened-sources-2.4.20-r1 (09 Apr 2003)
508
509 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
510 Initial import of hardened-sources-r2. This new
511 ebuild includes many new performance and security
512 related patches. As in -r1, it will patch in
513 LSM/SELinux if "selinux" is in USE, otherwise it
514 will patch in GRSecurity. The following patches
515 are included in this revision:
516
517 - O(1) Scheduler, Low Latency, and Preempt
518 (pulled from the base CK patch)
519 - ptrace exploit patch for the LSM kernel
520 (the GRSec patch already fixes this)
521 - LSM 2.4-2003040709
522 - SELinux 2.4-2003040709
523 - Systrace v1.2
524 - IPTables patch-o-matic base patches - 20030107
525 - CryptoAPI 2.4.20.1 w/ loop-jari patch
526 - Super FreeS/WAN 1.99.6.1
527 - GRSecurity 1.9.9g
528 - MPPE
529 - EXT3 data journal fix
530 - CIPE 1.5.4
531
532 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
533 hardened-sources-2.4.20-r1.ebuild, manifest:
534 Updated to install flask components correctly for selinux.
535
536 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
537 hardened-sources-2.4.20-r1.ebuild:
538 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
539 is patched in instead. Ptrace patches for selinux have also been added. In
540 either case, systrace support will be patched in as well.
541
542 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
543 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
544 Revision bump for new sources.
545
546 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
547 hardened-sources-2.4.20-r1.ebuild:
548 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
549
550 *hardened-sources-2.4.20 (30 Mar 2003)
551
552 30 Mar 2003; Joshua Brindle <method@gentoo.org>
553 hardened-sources-2.4.20.ebuild:
554 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20