/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.79 - (hide annotations) (download)
Wed Mar 15 21:49:07 2006 UTC (9 years, 4 months ago) by johnm
Branch: MAIN
Changes since 1.78: +8 -1 lines
Fixes grsec policy recreation bug, bumped to fix a lot of sec vulns.
(Portage version: 2.1_pre6-r3)

1 method 1.1 # ChangeLog for sys-kernel/hardened-sources
2 solar 1.73 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 johnm 1.79 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.78 2006/03/02 21:33:08 solar Exp $
4    
5     *hardened-sources-2.6.14-r6 (15 Mar 2006)
6    
7     15 Mar 2006; John Mylchreest <johnm@gentoo.org>
8     +hardened-sources-2.6.14-r6.ebuild:
9     Fixes grsec policy recreation bug and adds a
10     >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
11 solar 1.78
12     02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
13     - stable on x86
14 hansmi 1.77
15     19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
16     hardened-sources-2.6.14-r5.ebuild:
17     Stable on ppc.
18 johnm 1.76
19     *hardened-sources-2.6.14-r5 (01 Feb 2006)
20    
21     01 Feb 2006; John Mylchreest <johnm@gentoo.org>
22     +hardened-sources-2.6.14-r5.ebuild:
23     fixing every known exploit
24 solar 1.75
25     *hardened-sources-2.4.32-r2 (26 Jan 2006)
26    
27     26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
28     +hardened-sources-2.4.32-r2.ebuild:
29     - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
30 solar 1.74
31     *hardened-sources-2.6.14-r4 (12 Jan 2006)
32    
33     12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
34     - version bump for new genpatches which fix up a few sec holes
35 solar 1.73
36     *hardened-sources-2.4.32-r1 (05 Jan 2006)
37    
38     05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
39     - revision bump to add misc vital linux kernel security patches.
40 johnm 1.72
41     *hardened-sources-2.6.14-r3 (30 Dec 2005)
42    
43     30 Dec 2005; John Mylchreest <johnm@gentoo.org>
44     -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
45     Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
46 johnm 1.71
47     28 Dec 2005; John Mylchreest <johnm@gentoo.org>
48     hardened-sources-2.6.14-r2.ebuild:
49     making x86 & amd64 stable following testing.
50 johnm 1.70
51     *hardened-sources-2.6.14-r2 (27 Dec 2005)
52    
53     27 Dec 2005; John Mylchreest <johnm@gentoo.org>
54     -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
55     Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
56     network hooks.
57 johnm 1.69
58     06 Dec 2005; John Mylchreest <johnm@gentoo.org>
59     hardened-sources-2.6.14-r1.ebuild:
60     bumping to stable early for sec fix on x86 & amd64
61 johnm 1.68
62     *hardened-sources-2.6.14-r1 (05 Dec 2005)
63    
64     05 Dec 2005; John Mylchreest <johnm@gentoo.org>
65     -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
66     bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
67 solar 1.67
68     04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
69     - stable on x86 security bug #114227 CAN-2005-3257
70 kang 1.66
71     *hardened-sources-2.4.32 (19 Nov 2005)
72    
73     19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
74     +hardened-sources-2.4.32.ebuild:
75     Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
76     Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
77     have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
78     rsbac >> /etc/portage/package.use)
79 johnm 1.65
80     *hardened-sources-2.6.14 (14 Nov 2005)
81    
82     14 Nov 2005; John Mylchreest <johnm@gentoo.org>
83     -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
84     Bumping 2.6 series to 2.6.14.2
85 johnm 1.64
86     *hardened-sources-2.6.13-r2 (20 Oct 2005)
87    
88     20 Oct 2005; John Mylchreest <johnm@gentoo.org>
89     -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
90     +hardened-sources-2.6.13-r2.ebuild:
91     Fixes minor build error in ppc.
92 johnm 1.63
93     *hardened-sources-2.6.13-r1 (17 Oct 2005)
94    
95     17 Oct 2005; John Mylchreest <johnm@gentoo.org>
96     +hardened-sources-2.6.13-r1.ebuild:
97     Updating grsec to latest snapshot. Fixes some minor issues. Updating to
98     2.6.13.4, fixes some major amd64 stability problems.
99 johnm 1.62
100     *hardened-sources-2.6.13 (16 Sep 2005)
101    
102     16 Sep 2005; John Mylchreest <johnm@gentoo.org>
103     -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
104     2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
105     ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
106     users should test this thoroughly.
107 solar 1.61
108     01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
109     - stable on x86
110 johnm 1.60
111     *hardened-sources-2.6.11-r15 (27 Jun 2005)
112    
113     27 Jun 2005; John Mylchreest <johnm@gentoo.org>
114     +hardened-sources-2.6.11-r15.ebuild:
115     Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
116     grsec redefining curr_ip struct.
117 solar 1.59
118     *hardened-sources-2.4.31 (20 Jun 2005)
119    
120     20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
121     initial import of 2.4.31 tree
122 johnm 1.58
123     *hardened-sources-2.6.11-r14 (14 Jun 2005)
124    
125     14 Jun 2005; John Mylchreest <johnm@gentoo.org>
126     -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
127     Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
128     naming scheme to abide by genpatches
129 johnm 1.57
130     *hardened-sources-2.6.11-r13 (18 May 2005)
131    
132     18 May 2005; John Mylchreest <johnm@gentoo.org>
133     -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
134     Managed to mangle the Makefile patch from grsec, to miss out the grsec
135     target. sorry about that. Fixes bug #93022
136 johnm 1.56
137     *hardened-sources-2.6.11-r12 (17 May 2005)
138    
139     17 May 2005; John Mylchreest <johnm@gentoo.org>
140     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
141     +hardened-sources-2.6.11-r12.ebuild:
142     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
143     merges in genpatches-base
144 johnm 1.55
145     *hardened-sources-2.6.11-r12 (17 May 2005)
146    
147     17 May 2005; John Mylchreest <johnm@gentoo.org>
148     -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
149     +hardened-sources-2.6.11-r12.ebuild:
150     Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
151     merges in genpatches-base
152 solar 1.54
153     29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
154     -files/2.4.27-cmdline-race.patch,
155     -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
156     -files/2.4.28-grsec-binfmt_a.out.patch,
157     -files/2.4.28-grsec-cmdline-race.patch,
158     -files/2.4.28-selinux-binfmt_a.out.patch,
159     -files/2.4.28-selinux-cmdline-race.patch,
160     -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
161     hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
162     - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
163     cleanup..
164 solar 1.53
165     *hardened-sources-2.4.30-r1 (21 Apr 2005)
166    
167     21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
168     - disable aout by default
169 solar 1.52
170     *hardened-sources-2.4.30 (18 Apr 2005)
171    
172     18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
173     - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
174     and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
175     use
176 tocharian 1.50
177 scox 1.51 *hardened-sources-2.4.29 (30 Mar 2005)
178    
179     30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
180     +hardened-sources-2.4.29.ebuild:
181     New hardened-patches-2.4-29.0 patchball.
182     Removed SELinux support, upgraded GRSecurity to 2.1.4.
183    
184     *hardened-sources-2.4.28-r5 (06 Mar 2005)
185    
186     06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
187     +hardened-sources-2.4.28-r5.ebuild:
188     Added a fix for a PaX vulnerability.
189    
190     26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
191 tocharian 1.50 hardened-sources-2.4.28-r4.ebuild:
192     Stable on x86
193 solar 1.49
194     23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
195     hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
196     hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
197     hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
198     - fixed/added RDEPEND= in all kernel-2 ebuilds
199 tocharian 1.48
200     *hardened-sources-2.4.28-r4 (21 Jan 2005)
201    
202     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
203     +hardened-sources-2.4.28-r4.ebuild:
204     Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
205     backport of neighbour hash updates.
206 tocharian 1.47
207     21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
208     hardened-sources-2.4.28-r3.ebuild:
209     Stable on x86
210 tseng 1.46
211     *hardened-sources-2.6.10-r3 (20 Jan 2005)
212    
213     20 Jan 2005; Brandon Hale <tseng@gentoo.org>
214     +hardened-sources-2.6.10-r3.ebuild:
215     Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
216     in 2005.0
217 tocharian 1.45
218     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
219     -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
220     hardened-sources-2.4.28-r2.ebuild:
221     Mark stable on x86
222 tocharian 1.44
223     *hardened-sources-2.4.28-r3 (17 Jan 2005)
224    
225     17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
226     +hardened-sources-2.4.28-r3.ebuild:
227     Fix SMP page fault handler vuln, and update device-mapper and evms patches.
228 tocharian 1.43
229     14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
230     hardened-sources-2.4.28.ebuild:
231     Mark stable on x86.
232 tocharian 1.42
233     *hardened-sources-2.4.28-r2 (13 Jan 2005)
234    
235     13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
236     +hardened-sources-2.4.28-r2.ebuild:
237     Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
238     Mazinger for grsecurity patches as well.
239 plasmaroo 1.41
240     *hardened-sources-2.4.28-r1 (23 Dec 2004)
241    
242     23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
243     Security bump. Thank tocharian for rolling a new patchset...
244 solar 1.40
245     28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
246     +files/2.4.28-grsec-cmdline-race.patch,
247     +files/2.4.28-selinux-binfmt_a.out.patch,
248     +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
249     - Round up remaining security patches that appear to be missing in 2.4.28. -
250     PaX standalone updated to current. hgpv=28.1
251 solar 1.39
252     *hardened-sources-2.4.28 (28 Nov 2004)
253    
254     28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
255     security bump. Thank tocharian for rolling a new patchset
256 scox 1.31
257 scox 1.38 *hardened-sources-2.4.27-r3 (08 Sep 2004)
258    
259     08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
260     +hardened-sources-2.4.27-r3.ebuild:
261     Applies the new 2.4-27.2 patchball which updates
262     GRSecurity to the 2.0.1 version.
263    
264 scox 1.37 *hardened-sources-2.4.27-r2 (31 Aug 2004)
265    
266     31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
267     +hardened-sources-2.4.27-r2.ebuild:
268     Version bump.
269     This version uses the new 2.4-27.1 patchball which updates
270     both the SELinux PaX hooks patch and the SELinux headers.
271    
272 scox 1.36 *hardened-sources-2.4.27-r1 (09 Aug 2004)
273    
274     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
275     +hardened-sources-2.4.27-r1.ebuild,
276     -hardened-sources-2.4.27.ebuild,
277     +files/2.4.27-cmdline-race.patch:
278     Version bump, fix for cmdline race. See bug #59905.
279    
280     *hardened-sources-2.4.26-r6 (09 Aug 2004)
281    
282     09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
283     +hardened-sources-2.4.26-r6.ebuild,
284     -hardened-sources-2.4.26-r5.ebuild,
285     -hardened-sources-2.4.26-r4.ebuild,
286     +files/2.4.26-cmdline-race.patch:
287     Version bump, fix for cmdline race. See bug #59905.
288    
289 scox 1.35 *hardened-sources-2.4.27 (08 Aug 2004)
290    
291     08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
292     +hardened-sources-2.4.27.ebuild,
293     +files/2.4.27-CAN-2004-0394.patch:
294     Ported the patchball to the 2.4.27 kernel version.
295    
296 scox 1.34 *hardened-sources-2.4.26-r5 (07 Aug 2004)
297    
298     07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
299     +hardened-sources-2.4.26-r5.ebuild:
300 scox 1.35 Updated to use the new hardened-patches-2.4-26.1 patchball.
301 scox 1.34 It adds the following features:
302     - Squashfs
303     - Ebtables
304     - Netdev random (core+drivers)
305     - Watchdog Timer (WDT) fix.
306    
307 scox 1.33 *hardened-sources-2.4.26-r4 (04 Aug 2004)
308    
309     04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
310     +hardened-sources-2.4.26-r4.ebuild,
311     +files/2.4.26-CAN-2004-0415.patch,
312     -hardened-sources-2.4.26-3:
313     Version bump, fix for CAN 0415, see bug #59378.
314    
315 scox 1.32 *hardened-sources-2.4.26-r3 (22 Jul 2004)
316    
317     22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
318     +hardened-sources-2.4.26-r3.ebuild,
319     +files/2.4.26-CAN-2004-0497.patch,
320     -hardened-sources-2.4.26-r2.ebuild:
321     Version bump, fixed CAN 0497, see bug #56171.
322    
323 scox 1.31 *hardened-sources-2.4.26-r2 (29 Jun 2004)
324    
325     29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
326 scox 1.32 +hardened-sources-2.4.26-r2.ebuild,
327 scox 1.31 +files/2.4.26-CAN-2004-0495.patch,
328     +files/2.4.26-CAN-2004-0535.patch,
329     -hardened-sources-2.4.26-r1.ebuild:
330     Fixes for both CAN 0495 and 0535, see bug #54976
331 pvdabeel 1.27
332 agriffis 1.29 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
333     hardened-sources-2.4.26-r1.ebuild:
334     QA - fix use invocation
335 scox 1.28
336     *hardened-sources-2.4.26-r1 (22 June 2004)
337    
338     22 June 2004; Andrea Luzzardi <scox@gentoo.org>
339     +hardened-sources-2.4.26-r1.ebuild,
340     +files/2.4.26-CAN-2004-0394.patch,
341     +files/2.4.26-signal-race.patch,
342     -hardened-sources-2.4.26.ebuild,
343     -hardened-sources-2.4.24-r3.ebuild:
344     Version bump for the CAN-2004-0394 issue and bug #53804
345     Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
346    
347    
348 pvdabeel 1.27 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
349     hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
350     Masked hardened-sources-2.4.26.ebuild broken for ppc
351    
352     31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
353     hardened-sources-2.4.24-r3.ebuild:
354     Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
355 plasmaroo 1.25
356 scox 1.26 *hardened-sources-2.4.26 (29 May 2004)
357    
358     29 May 2004; Andrea Luzzardi <scox@gentoo.org>
359     +hardened-sources-2.4.26.ebuild:
360     Updated hardened-sources for the 2.4.26 kernel
361     Removed broken components, updated almost everything.
362    
363 plasmaroo 1.25 *hardened-sources-2.4.24-r3 (17 Apr 2004)
364    
365     17 Apr 2004; <plasmaroo@gentoo.org>
366     +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
367     +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
368     +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
369     +hardened-sources-2.4.24-r3.ebuild:
370     Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
371     vulnerabilities. Old revisions removed.
372 plasmaroo 1.24
373     *hardened-sources-2.4.24-r2 (15 Apr 2004)
374    
375     15 Apr 2004; <plasmaroo@gentoo.org>
376     +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
377     -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
378     Version bump for the CAN-2004-0109 issue; bug #47881.
379 aliz 1.23
380     12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
381     hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
382     Add eutils to inherit.
383 plasmaroo 1.22
384     *hardened-sources-2.4.24-r1 (19 Feb 2004)
385    
386     19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
387     files/hardened-sources-2.4.24.munmap.patch:
388     Added the patch for the mremap/munmap vulnerability. Bug #42024.
389 scox 1.19
390 scox 1.21 *hardened-sources-2.4.24 (06 Feb 2004)
391 scox 1.26
392 scox 1.21 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
393     hardened-sources-2.4.24.ebuild:
394     Version bump, updated most of the components.
395     This release includes the following:
396    
397     - Hardened security
398     - Netfilter patch-o-matic 20031219
399     - FreeSWAN 2.04 & x509 1.4.8
400     - EVMS 2.2.2
401     - XFS 1.3.1
402     - cryptoloop jari
403     - grsecurity 2.0-rc4
404     - SELinux
405     - PaX 200402060000
406     - PaX Obscurity 200308302223
407     - Others...
408    
409     Neither -ck nor systrace are included anymore.
410    
411 scox 1.19 *hardened-sources-2.4.22-r2 (05 Jan 2004)
412    
413     05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
414     hardened-sources-2.4.22-r2.ebuild:
415 scox 1.20 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
416 scox 1.19
417     *hardened-sources-2.4.22-r1 (02 Dec 2003)
418 iggy 1.17
419     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
420 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
421 iggy 1.16
422     02 Dec 2003; Brian Jackson <iggy@gentoo.org>
423 plasmaroo 1.18 hardened-sources-2.4.22-r1.ebuild:
424     Version bump for the 'do_brk' vulnerability.
425 iggy 1.15
426     01 Dec 2003; Brian Jackson <iggy@gentoo.org>
427     hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
428     hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
429     hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
430 plasmaroo 1.18 Fix the 'do_brk' vulnerability.
431 frogger 1.14
432     03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
433     hardened-sources-2.4.22.ebuild:
434 plasmaroo 1.18 - Removed the src_install() portion for SELinux flask
435     components. These are no longer handled in the kernel
436     so this code was not necessary.
437 frogger 1.13
438     29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
439     New 2.4.22 based hardened-sources thanks to
440     Phil West <p.west@computer.org>.
441    
442     These sources include:
443 plasmaroo 1.18 - New SELinux API
444     - Updated CK-base
445     - Updated GRSec
446     - Systrace
447     - SuperFreeS/WAN 1.99.8
448     - Propolice kernel build support
449     - EVMS
450     - Other various security related patches
451 frogger 1.11
452 frogger 1.12 *hardened-sources-2.4.21 (14 Sep 2003)
453    
454     14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
455     Updated hardened-sources based on the 2.4.21 Linux kernel.
456     This includes updates to most major components such as:
457 plasmaroo 1.18 - ck-base-0306300059
458     - selinux-2.4-2003071106
459     - grsecurity-2.0-rc1
460     - Updated IPTables patch-o-matic
461     - Updated SuperFreeS/WAN
462    
463 frogger 1.12 Thanks to Phil West <pwest@computer.org> for his work in getting this
464     updated patch set ready for the 2.4.21 based kernel.
465    
466 frogger 1.11 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
467     Initial import of hardened-sources-2.4.20-r4. This revision
468     includes only a few changes, but one of these is an important
469     security fix. It is recommended all users of hardened-sources
470     upgrade to this release.
471 plasmaroo 1.18
472 frogger 1.11 - ioperm bug fix
473     - fixed compilation failure when building without GRSec
474 plasmaroo 1.18
475 frogger 1.11 SAL (Secure Auditing for Linux) is NOT included in this revision
476     due to time constraints, but is planned for inclusion in the near
477     future.
478 msterret 1.10
479     *hardened-sources-2.4.20-r2 (12 Jun 2003)
480    
481     12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
482     hardened-sources-2.4.20-r3.ebuild:
483 plasmaroo 1.18 Add Header...
484 frogger 1.9
485     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
486     hardened-sources-2.4.20-r3.ebuild:
487     Removed warnings from ebuild. This kernel should be safe to
488     use at this point.
489 frogger 1.8
490     *hardened-sources-2.4.20-r3 (08 Jun 2003)
491    
492     08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
493     hardened-sources-2.4.20-r3.ebuild:
494     New revision. Includes the following changes over -r2:
495 plasmaroo 1.18
496 frogger 1.8 - ck7-base (O(1), preempt, low latency)
497     - Super FreeS/WAN 1.99.7rc2
498     - PaX for the LSM/SELinux branch
499     - GRSecurity 2.0-pre4 (role based access control)
500     - Systrace 1.3
501     - EXT3 fixes
502     - EVMS 2.0.1
503     - GCC 3.1+ compile optimizations
504     - ProPolice kernel build support
505     - Hashing table security fixes
506 frogger 1.3
507     *hardened-sources-2.4.20-r1 (09 Apr 2003)
508 frogger 1.7
509     23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
510     Initial import of hardened-sources-r2. This new
511     ebuild includes many new performance and security
512     related patches. As in -r1, it will patch in
513     LSM/SELinux if "selinux" is in USE, otherwise it
514     will patch in GRSecurity. The following patches
515     are included in this revision:
516 plasmaroo 1.18
517 frogger 1.7 - O(1) Scheduler, Low Latency, and Preempt
518     (pulled from the base CK patch)
519     - ptrace exploit patch for the LSM kernel
520     (the GRSec patch already fixes this)
521     - LSM 2.4-2003040709
522     - SELinux 2.4-2003040709
523     - Systrace v1.2
524     - IPTables patch-o-matic base patches - 20030107
525     - CryptoAPI 2.4.20.1 w/ loop-jari patch
526     - Super FreeS/WAN 1.99.6.1
527     - GRSecurity 1.9.9g
528     - MPPE
529     - EXT3 data journal fix
530     - CIPE 1.5.4
531 frogger 1.6
532     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
533     hardened-sources-2.4.20-r1.ebuild, manifest:
534 plasmaroo 1.18 Updated to install flask components correctly for selinux.
535 frogger 1.5
536     12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
537     hardened-sources-2.4.20-r1.ebuild:
538     LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
539     is patched in instead. Ptrace patches for selinux have also been added. In
540     either case, systrace support will be patched in as well.
541 frogger 1.3
542     09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
543     hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
544 plasmaroo 1.18 Revision bump for new sources.
545 frogger 1.4
546 frogger 1.2 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
547 frogger 1.4 hardened-sources-2.4.20-r1.ebuild:
548 plasmaroo 1.18 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
549 method 1.1
550 frogger 1.4 *hardened-sources-2.4.20 (30 Mar 2003)
551    
552 method 1.1 30 Mar 2003; Joshua Brindle <method@gentoo.org>
553     hardened-sources-2.4.20.ebuild:
554 plasmaroo 1.18 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20