/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.124 - (show annotations) (download)
Thu Dec 14 16:45:42 2006 UTC (8 years, 4 months ago) by phreak
Branch: MAIN
Changes since 1.123: +8 -1 lines
Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org> for reporting).
(Portage version: 2.1.2_rc3-r3)

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.123 2006/12/13 23:54:10 phreak Exp $
4
5 *hardened-sources-2.6.19-r1 (14 Dec 2006)
6
7 14 Dec 2006; Christian Heim <phreak@gentoo.org>
8 -hardened-sources-2.6.19.ebuild, +hardened-sources-2.6.19-r1.ebuild:
9 Revision bump, fixing #158107 (thanks to Petre Rodan <kaiowas at gentoo.org>
10 for reporting).
11
12 *hardened-sources-2.6.19 (13 Dec 2006)
13
14 13 Dec 2006; Christian Heim <phreak@gentoo.org>
15 +hardened-sources-2.6.19.ebuild:
16 And finally 2.6.19, thanks to Ned (who prepared the inital patchset) and
17 Brad for providing that prompt update.
18
19 *hardened-sources-2.6.18-r3 (13 Dec 2006)
20
21 13 Dec 2006; Christian Heim <phreak@gentoo.org>
22 -hardened-sources-2.6.18-r1.ebuild, -hardened-sources-2.6.18-r2.ebuild,
23 +hardened-sources-2.6.18-r3.ebuild:
24 Revision bump, excluding the faulty patch. Thanks to Anakim Border and Peter
25 S. Mazinger. Closes #157409 for now. Also removing the previous revisions.
26
27 09 Dec 2006; Christian Heim <phreak@gentoo.org> Manifest:
28 Fixing the metadata.xml Manifest entry (thanks to xaid and ml8128 in #gentoo-hardened).
29
30 08 Dec 2006; nixnut <nixnut@gentoo.org> hardened-sources-2.6.18.ebuild:
31 Stable on ppc wrt bug 157356
32
33 07 Dec 2006; Christian Faulhammer <opfer@gentoo.org>
34 hardened-sources-2.6.18.ebuild:
35 stable x86, bug #157356
36
37 *hardened-sources-2.6.18-r2 (06 Dec 2006)
38
39 06 Dec 2006; Christian Heim <phreak@gentoo.org>
40 +hardened-sources-2.6.18-r2.ebuild:
41 Revision bump, including 2.6.18.5 (via genpatches) and
42 4454_grsec-2.1.9-2.6.18.2-io-kmem-sysctl.patch based on Peter Mazinger and
43 Ned Ludd's original patch. Thanks to Alexander Gabert (pappy) for the
44 redesign.
45
46 06 Dec 2006; Christian Heim <phreak@gentoo.org>
47 hardened-sources-2.6.18.ebuild:
48 Marking hardened-sources-2.6.18 stable on amd64 (see bug #157356, on behalf
49 of Mike Doty).
50
51 *hardened-sources-2.6.18-r1 (23 Nov 2006)
52
53 23 Nov 2006; Christian Heim <phreak@gentoo.org>
54 +hardened-sources-2.6.18-r1.ebuild:
55 Revision bump to genpatches-2.6.18-4 (including 2.6.18.3).
56
57 *hardened-sources-2.6.18 (11 Nov 2006)
58
59 11 Nov 2006; Christian Heim <phreak@gentoo.org>
60 +hardened-sources-2.6.18.ebuild:
61 Version bump, thanks to Alexander Gabert we're finally at 2.6.18.
62
63 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
64 - mark amd64 stable also. bug #151877
65
66 18 Oct 2006; <solar@gentoo.org> hardened-sources-2.6.17-r1.ebuild:
67 - mark 2.6.17-r1 stable
68
69 27 Aug 2006; Christian Heim <phreak@gentoo.org>
70 -hardened-sources-2.6.17.ebuild, hardened-sources-2.6.17-r1.ebuild:
71 Removing old ebuild, removing unipatch from newer ebuild (need to fix it!).
72
73 *hardened-sources-2.6.17-r1 (26 Aug 2006)
74
75 26 Aug 2006; Christian Heim <phreak@gentoo.org>
76 +hardened-sources-2.6.17-r1.ebuild:
77 Revision bump to genpatches-2.6.17-8 (including .9 and .10) and updating the
78 grsecurity patch.
79
80 *hardened-sources-2.6.17 (17 Aug 2006)
81
82 17 Aug 2006; Christian Heim <phreak@gentoo.org>
83 +hardened-sources-2.6.17.ebuild:
84 Bumping the hardened-sources-2.6 series to 2.6.17, using
85 genpatches-2.6.17-6.base.
86
87 07 Aug 2006; <solar@gentoo.org> hardened-sources-2.6.16-r11.ebuild:
88 - stable on x86 and amd64
89
90 *hardened-sources-2.6.16-r11 (15 Jul 2006)
91
92 15 Jul 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r3.ebuild,
93 -hardened-sources-2.4.32-r4.ebuild, -hardened-sources-2.4.32-r5.ebuild,
94 -hardened-sources-2.6.14-r8.ebuild, -hardened-sources-2.6.16-r7.ebuild,
95 -hardened-sources-2.6.16-r9.ebuild, +hardened-sources-2.6.16-r11.ebuild:
96 - 2.6.16 bumped for CVE-2006-3626 ; digest fix for 2.4.32-r6 ; removed old
97 crusty ebuilds
98
99 14 Jul 2006; John Mylchreest <johnm@gentoo.org>
100 hardened-sources-2.6.16-r10.ebuild:
101 marking stable on x86 and amd64
102
103 13 Jul 2006; <solar@gentoo.org> hardened-sources-2.4.32-r6.ebuild:
104 - 2.4.32-r6 stable on x86. RSBAC state unknown
105
106 *hardened-sources-2.4.32-r7 (10 Jul 2006)
107
108 10 Jul 2006; Guillaume Destuynder <kang@gentoo.org>
109 +hardened-sources-2.4.32-r7.ebuild:
110 Bump PaX for RSBAC to test-17
111
112 *hardened-sources-2.6.16-r9 (03 Jul 2006)
113
114 03 Jul 2006; John Mylchreest <johnm@gentoo.org>
115 -hardened-sources-2.6.16-r6.ebuild, +hardened-sources-2.6.16-r9.ebuild:
116 hardened-sources-2.6.16 bump to latest -base.
117
118 *hardened-sources-2.4.32-r6 (30 Jun 2006)
119
120 30 Jun 2006; <solar@gentoo.org> -hardened-sources-2.4.32-r2.ebuild,
121 hardened-sources-2.4.32-r4.ebuild, +hardened-sources-2.4.32-r6.ebuild:
122 - backport CVE-2006-0039, CVE-2006-1857 and CVE-2006-1858 and new grsecurity
123 sysctl controlable resource logging
124
125 *hardened-sources-2.6.16-r7 (05 Jun 2006)
126
127 05 Jun 2006; John Mylchreest <johnm@gentoo.org>
128 -hardened-sources-2.6.16-r5.ebuild, +hardened-sources-2.6.16-r7.ebuild:
129 push new 2.6.16 release in preparation for stable
130
131 22 May 2006; <solar@gentoo.org> :
132 - redigest bug 134002
133
134 *hardened-sources-2.4.32-r5 (16 May 2006)
135
136 16 May 2006; Guillaume Destuynder <kang@gentoo.org>
137 +hardened-sources-2.4.32-r5.ebuild:
138 Fixes rsbac common patching (new patch in new -r5 patchset)
139
140 *hardened-sources-2.4.32-r4 (13 May 2006)
141
142 13 May 2006; <solar@gentoo.org> hardened-sources-2.4.32-r3.ebuild,
143 +hardened-sources-2.4.32-r4.ebuild:
144 - security bumps
145
146 *hardened-sources-2.6.16-r6 (03 May 2006)
147
148 03 May 2006; John Mylchreest <johnm@gentoo.org>
149 +hardened-sources-2.6.16-r6.ebuild:
150 bump hardened-2.6.16 to 2.6.16.12 and latest grsec snapshot
151
152 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
153 hardened-sources-2.6.14-r8.ebuild:
154 fix x86_64 build problem, this will delay the digest issue again for a short
155 while but it will sort itself out
156
157 28 Apr 2006; John Mylchreest <johnm@gentoo.org>
158 hardened-sources-2.6.14-r8.ebuild:
159 bump hardened patchset
160
161 27 Apr 2006; Alec Warner <antarus@gentoo.org>
162 files/digest-hardened-sources-2.4.32-r2,
163 files/digest-hardened-sources-2.4.32-r3,
164 files/digest-hardened-sources-2.6.14-r8, Manifest:
165 Fixing duff SHA256 digests: Bug # 131293
166
167 *hardened-sources-2.6.16-r5 (27 Apr 2006)
168
169 27 Apr 2006; John Mylchreest <johnm@gentoo.org>
170 -hardened-sources-2.6.14-r6.ebuild, hardened-sources-2.6.14-r8.ebuild,
171 -hardened-sources-2.6.16-r4.ebuild, +hardened-sources-2.6.16-r5.ebuild:
172 stablise 2.6.14-r8 on x86 & amd64, bump 2.6.16 to fix CVE-2006-1863 &
173 cleanup of old uneccessary sources
174
175 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
176 fix digest
177
178 *hardened-sources-2.6.14-r8 (20 Apr 2006)
179
180 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
181 +hardened-sources-2.6.14-r8.ebuild:
182 fix CVE-2006-1056, CVE-2006-1525, CVE-2006-1524
183
184 20 Apr 2006; John Mylchreest <johnm@gentoo.org> ChangeLog:
185 Turning on gpg-signing again, and recomitting
186
187 *hardened-sources-2.6.16-r4 (20 Apr 2006)
188
189 20 Apr 2006; John Mylchreest <johnm@gentoo.org>
190 -hardened-sources-2.6.16-r2.ebuild, -hardened-sources-2.6.16-r3.ebuild,
191 +hardened-sources-2.6.16-r4.ebuild:
192 Fix numerous security vulns
193
194 *hardened-sources-2.4.32-r3 (16 Apr 2006)
195
196 16 Apr 2006; <solar@gentoo.org> -hardened-sources-2.4.30-r1.ebuild,
197 -hardened-sources-2.4.31.ebuild, -hardened-sources-2.4.32-r1.ebuild,
198 +hardened-sources-2.4.32-r3.ebuild, -hardened-sources-2.4.32.ebuild:
199 - security bump for bug #112791. Removed old ebuilds
200
201 *hardened-sources-2.6.16-r3 (15 Apr 2006)
202
203 15 Apr 2006; John Mylchreest <johnm@gentoo.org>
204 +hardened-sources-2.6.16-r3.ebuild:
205 Removing silly localversion which I missed
206
207 *hardened-sources-2.6.14-r7 (14 Apr 2006)
208
209 14 Apr 2006; John Mylchreest <johnm@gentoo.org>
210 -hardened-sources-2.6.14-r5.ebuild, +hardened-sources-2.6.14-r7.ebuild:
211 Fixes CVE-2006-0744, CVE-2006-0744, CVE-2006-1522, CVE-2006-1242
212
213 *hardened-sources-2.6.16-r2 (13 Apr 2006)
214
215 13 Apr 2006; John Mylchreest <johnm@gentoo.org>
216 -hardened-sources-2.6.16.ebuild, -hardened-sources-2.6.16-r1.ebuild,
217 +hardened-sources-2.6.16-r2.ebuild:
218 Removing vulnerable 2.6.16 kernels. Bumping grsec, re-enabling reiserfs sec
219 labels, dropping USERGROUP define fixes, since these were merged mainstream.
220
221 *hardened-sources-2.6.16-r1 (11 Apr 2006)
222
223 11 Apr 2006; John Mylchreest <johnm@gentoo.org>
224 +hardened-sources-2.6.16-r1.ebuild:
225 Bumping to include ppc build fix and 2.6.16.3
226
227 06 Apr 2006; Joshua Jackson <tsunam@gentoo.org>
228 hardened-sources-2.6.14-r6.ebuild:
229 Stable on x86; bug #127718
230
231 *hardened-sources-2.6.16 (31 Mar 2006)
232
233 31 Mar 2006; John Mylchreest <johnm@gentoo.org>
234 +hardened-sources-2.6.16.ebuild:
235 Bumping to new version of grsec, and kernel base. New squashfs. Based on
236 2.6.16.1
237
238 30 Mar 2006; Marcus D. Hanwell <cryos@gentoo.org>
239 hardened-sources-2.6.14-r6.ebuild:
240 Stable on amd64, bug 127718.
241
242 28 Mar 2006; <nixnut@gentoo.org> hardened-sources-2.6.14-r6.ebuild:
243 Stable on ppc. Bug #127718
244
245 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
246 -hardened-sources-2.6.11-r15.ebuild, -hardened-sources-2.6.14-r3.ebuild,
247 -hardened-sources-2.6.14-r4.ebuild:
248 Cleanup.
249
250 *hardened-sources-2.6.14-r6 (15 Mar 2006)
251
252 15 Mar 2006; John Mylchreest <johnm@gentoo.org>
253 +hardened-sources-2.6.14-r6.ebuild:
254 Fixes grsec policy recreation bug and adds a
255 >=sys-apps/gradm-2.1.8.200601212342-r1 depend.
256
257 02 Mar 2006; <solar@gentoo.org> hardened-sources-2.4.32-r2.ebuild:
258 - stable on x86
259
260 19 Feb 2006; Michael Hanselmann <hansmi@gentoo.org>
261 hardened-sources-2.6.14-r5.ebuild:
262 Stable on ppc.
263
264 *hardened-sources-2.6.14-r5 (01 Feb 2006)
265
266 01 Feb 2006; John Mylchreest <johnm@gentoo.org>
267 +hardened-sources-2.6.14-r5.ebuild:
268 fixing every known exploit
269
270 *hardened-sources-2.4.32-r2 (26 Jan 2006)
271
272 26 Jan 2006; <solar@gentoo.org> hardened-sources-2.4.32-r1.ebuild,
273 +hardened-sources-2.4.32-r2.ebuild:
274 - mark 2.4.32-r1 stable. added 2.4.32-r2 with 2.1.8-grsec patch
275
276 *hardened-sources-2.6.14-r4 (12 Jan 2006)
277
278 12 Jan 2006; <solar@gentoo.org> +hardened-sources-2.6.14-r4.ebuild:
279 - version bump for new genpatches which fix up a few sec holes
280
281 *hardened-sources-2.4.32-r1 (05 Jan 2006)
282
283 05 Jan 2006; <solar@gentoo.org> +hardened-sources-2.4.32-r1.ebuild:
284 - revision bump to add misc vital linux kernel security patches.
285
286 *hardened-sources-2.6.14-r3 (30 Dec 2005)
287
288 30 Dec 2005; John Mylchreest <johnm@gentoo.org>
289 -hardened-sources-2.6.14-r2.ebuild, +hardened-sources-2.6.14-r3.ebuild:
290 Marking stable, and bumping for sec vuln. Fixes bugs #117171, #117040
291
292 28 Dec 2005; John Mylchreest <johnm@gentoo.org>
293 hardened-sources-2.6.14-r2.ebuild:
294 making x86 & amd64 stable following testing.
295
296 *hardened-sources-2.6.14-r2 (27 Dec 2005)
297
298 27 Dec 2005; John Mylchreest <johnm@gentoo.org>
299 -hardened-sources-2.6.14-r1.ebuild, +hardened-sources-2.6.14-r2.ebuild:
300 Fixing bugs 116832 115771 114635, updating grsec, removing selinux/pax
301 network hooks.
302
303 06 Dec 2005; John Mylchreest <johnm@gentoo.org>
304 hardened-sources-2.6.14-r1.ebuild:
305 bumping to stable early for sec fix on x86 & amd64
306
307 *hardened-sources-2.6.14-r1 (05 Dec 2005)
308
309 05 Dec 2005; John Mylchreest <johnm@gentoo.org>
310 -hardened-sources-2.6.14.ebuild, +hardened-sources-2.6.14-r1.ebuild:
311 bumping to genpatches 2.6.14-5, security fixup. Also bumping grsec patchset.
312
313 04 Dec 2005; <solar@gentoo.org> hardened-sources-2.4.32.ebuild:
314 - stable on x86 security bug #114227 CAN-2005-3257
315
316 *hardened-sources-2.4.32 (19 Nov 2005)
317
318 19 Nov 2005; Guillaume Destuynder <kang@gentoo.org>
319 +hardened-sources-2.4.32.ebuild:
320 Bump to 2.4.32, includes RSBAC+PaX patchset with a local 'rsbac' keyword.
321 Add the 'rsbac' USE flag in /etc/portage/package.use for hardened-sources to
322 have RSBAC instead of GrSecurity patchset. (echo sys-kernel/hardened-sources
323 rsbac >> /etc/portage/package.use)
324
325 *hardened-sources-2.6.14 (14 Nov 2005)
326
327 14 Nov 2005; John Mylchreest <johnm@gentoo.org>
328 -hardened-sources-2.6.13-r2.ebuild, +hardened-sources-2.6.14.ebuild:
329 Bumping 2.6 series to 2.6.14.2
330
331 *hardened-sources-2.6.13-r2 (20 Oct 2005)
332
333 20 Oct 2005; John Mylchreest <johnm@gentoo.org>
334 -hardened-sources-2.6.13.ebuild, -hardened-sources-2.6.13-r1.ebuild,
335 +hardened-sources-2.6.13-r2.ebuild:
336 Fixes minor build error in ppc.
337
338 *hardened-sources-2.6.13-r1 (17 Oct 2005)
339
340 17 Oct 2005; John Mylchreest <johnm@gentoo.org>
341 +hardened-sources-2.6.13-r1.ebuild:
342 Updating grsec to latest snapshot. Fixes some minor issues. Updating to
343 2.6.13.4, fixes some major amd64 stability problems.
344
345 *hardened-sources-2.6.13 (16 Sep 2005)
346
347 16 Sep 2005; John Mylchreest <johnm@gentoo.org>
348 -hardened-sources-2.6.11-r14.ebuild, +hardened-sources-2.6.13.ebuild:
349 2.6.13.1 with grsec testing patches. Lots of changes, to name a few big
350 ones: inotify now in kernel, RBAC has moved to chained-hash tables so RBAC
351 users should test this thoroughly.
352
353 01 Jul 2005; <solar@gentoo.org> hardened-sources-2.4.31.ebuild:
354 - stable on x86
355
356 *hardened-sources-2.6.11-r15 (27 Jun 2005)
357
358 27 Jun 2005; John Mylchreest <johnm@gentoo.org>
359 +hardened-sources-2.6.11-r15.ebuild:
360 Fixes CAN-2005-1763, CAN-2005-1265 & CAN-2005-176. Also fixes problem with
361 grsec redefining curr_ip struct.
362
363 *hardened-sources-2.4.31 (20 Jun 2005)
364
365 20 Jun 2005; <solar@gentoo.org> +hardened-sources-2.4.31.ebuild:
366 initial import of 2.4.31 tree
367
368 *hardened-sources-2.6.11-r14 (14 Jun 2005)
369
370 14 Jun 2005; John Mylchreest <johnm@gentoo.org>
371 -hardened-sources-2.6.11-r13.ebuild, +hardened-sources-2.6.11-r14.ebuild:
372 Updating inotify, grsec, updating to 11-14 genpatches.base, restructuring
373 naming scheme to abide by genpatches
374
375 *hardened-sources-2.6.11-r13 (18 May 2005)
376
377 18 May 2005; John Mylchreest <johnm@gentoo.org>
378 -hardened-sources-2.6.11-r12.ebuild, +hardened-sources-2.6.11-r13.ebuild:
379 Managed to mangle the Makefile patch from grsec, to miss out the grsec
380 target. sorry about that. Fixes bug #93022
381
382 *hardened-sources-2.6.11-r12 (17 May 2005)
383
384 17 May 2005; John Mylchreest <johnm@gentoo.org>
385 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
386 +hardened-sources-2.6.11-r12.ebuild:
387 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
388 merges in genpatches-base
389
390 *hardened-sources-2.6.11-r12 (17 May 2005)
391
392 17 May 2005; John Mylchreest <johnm@gentoo.org>
393 -hardened-sources-2.6.10-r3.ebuild, -hardened-sources-2.6.11-r1.ebuild,
394 +hardened-sources-2.6.11-r12.ebuild:
395 Cleanup older sources. Update to 2.6.11.10 - fixes several sec vulns. Also
396 merges in genpatches-base
397
398 29 Apr 2005; <solar@gentoo.org> -files/2.4.27-CAN-2004-0394.patch,
399 -files/2.4.27-cmdline-race.patch,
400 -files/2.4.28-grsec-2.1.0-pax-mmap-pgtables.patch,
401 -files/2.4.28-grsec-binfmt_a.out.patch,
402 -files/2.4.28-grsec-cmdline-race.patch,
403 -files/2.4.28-selinux-binfmt_a.out.patch,
404 -files/2.4.28-selinux-cmdline-race.patch,
405 -hardened-sources-2.4.28-r5.ebuild, -hardened-sources-2.4.29.ebuild,
406 hardened-sources-2.4.30-r1.ebuild, -hardened-sources-2.4.30.ebuild:
407 - mark .30-r1 stable and remove older vuln ebuilds from the tree. filesdir
408 cleanup..
409
410 *hardened-sources-2.4.30-r1 (21 Apr 2005)
411
412 21 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30-r1.ebuild:
413 - disable aout by default
414
415 *hardened-sources-2.4.30 (18 Apr 2005)
416
417 18 Apr 2005; <solar@gentoo.org> +hardened-sources-2.4.30.ebuild:
418 - 2.4.30 version bump. Adds 4008_CAN-2004-1056 back which was lost in 2.4.29
419 and an optional optimize for size -Os patch with a gcc-3.4 fix for embedded
420 use
421
422 *hardened-sources-2.4.29 (30 Mar 2005)
423
424 30 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
425 +hardened-sources-2.4.29.ebuild:
426 New hardened-patches-2.4-29.0 patchball.
427 Removed SELinux support, upgraded GRSecurity to 2.1.4.
428
429 *hardened-sources-2.4.28-r5 (06 Mar 2005)
430
431 06 Mar 2005; Andrea Luzzardi <scox@gentoo.org>
432 +hardened-sources-2.4.28-r5.ebuild:
433 Added a fix for a PaX vulnerability.
434
435 26 Jan 2005; Adam Mondl <tocharian@gentoo.org>
436 hardened-sources-2.4.28-r4.ebuild:
437 Stable on x86
438
439 23 Jan 2005; <solar@gentoo.org> hardened-sources-2.4.27-r3.ebuild,
440 hardened-sources-2.4.28-r1.ebuild, hardened-sources-2.4.28-r2.ebuild,
441 hardened-sources-2.4.28-r3.ebuild, hardened-sources-2.4.28-r4.ebuild,
442 hardened-sources-2.4.28.ebuild, hardened-sources-2.6.10-r3.ebuild:
443 - fixed/added RDEPEND= in all kernel-2 ebuilds
444
445 *hardened-sources-2.4.28-r4 (21 Jan 2005)
446
447 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
448 +hardened-sources-2.4.28-r4.ebuild:
449 Fix vc_resize local DoS, ip_options_get memory leak, and ARP bug in 2.4
450 backport of neighbour hash updates.
451
452 21 Jan 2005; Adam Mondl <tocharian@gentoo.org>
453 hardened-sources-2.4.28-r3.ebuild:
454 Stable on x86
455
456 *hardened-sources-2.6.10-r3 (20 Jan 2005)
457
458 20 Jan 2005; Brandon Hale <tseng@gentoo.org>
459 +hardened-sources-2.6.10-r3.ebuild:
460 Dual commit hardened-(dev-)sources-2.6.10 to here for the upcoming merge
461 in 2005.0
462
463 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
464 -hardened-sources-2.4.27-r2.ebuild, hardened-sources-2.4.28-r1.ebuild,
465 hardened-sources-2.4.28-r2.ebuild:
466 Mark stable on x86
467
468 *hardened-sources-2.4.28-r3 (17 Jan 2005)
469
470 17 Jan 2005; Adam Mondl <tocharian@gentoo.org>
471 +hardened-sources-2.4.28-r3.ebuild:
472 Fix SMP page fault handler vuln, and update device-mapper and evms patches.
473
474 14 Jan 2005; Adam Mondl <tocharian@gentoo.org>
475 hardened-sources-2.4.28.ebuild:
476 Mark stable on x86.
477
478 *hardened-sources-2.4.28-r2 (13 Jan 2005)
479
480 13 Jan 2005; Adam Mondl <tocharian@gentoo.org>
481 +hardened-sources-2.4.28-r2.ebuild:
482 Updates security fixes and adds squashfs 2.1 support. Thanks to Peter S.
483 Mazinger for grsecurity patches as well.
484
485 *hardened-sources-2.4.28-r1 (23 Dec 2004)
486
487 23 Dec 2004; <plasmaroo@gentoo.org> +hardened-sources-2.4.28-r1.ebuild:
488 Security bump. Thank tocharian for rolling a new patchset...
489
490 28 Nov 2004; <solar@gentoo.org> +files/2.4.28-grsec-binfmt_a.out.patch,
491 +files/2.4.28-grsec-cmdline-race.patch,
492 +files/2.4.28-selinux-binfmt_a.out.patch,
493 +files/2.4.28-selinux-cmdline-race.patch, hardened-sources-2.4.28.ebuild:
494 - Round up remaining security patches that appear to be missing in 2.4.28. -
495 PaX standalone updated to current. hgpv=28.1
496
497 *hardened-sources-2.4.28 (28 Nov 2004)
498
499 28 Nov 2004; <solar@gentoo.org> +hardened-sources-2.4.28.ebuild:
500 security bump. Thank tocharian for rolling a new patchset
501
502 *hardened-sources-2.4.27-r3 (08 Sep 2004)
503
504 08 Sep 2004; Andrea Luzzardi <scox@gentoo.org>
505 +hardened-sources-2.4.27-r3.ebuild:
506 Applies the new 2.4-27.2 patchball which updates
507 GRSecurity to the 2.0.1 version.
508
509 *hardened-sources-2.4.27-r2 (31 Aug 2004)
510
511 31 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
512 +hardened-sources-2.4.27-r2.ebuild:
513 Version bump.
514 This version uses the new 2.4-27.1 patchball which updates
515 both the SELinux PaX hooks patch and the SELinux headers.
516
517 *hardened-sources-2.4.27-r1 (09 Aug 2004)
518
519 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
520 +hardened-sources-2.4.27-r1.ebuild,
521 -hardened-sources-2.4.27.ebuild,
522 +files/2.4.27-cmdline-race.patch:
523 Version bump, fix for cmdline race. See bug #59905.
524
525 *hardened-sources-2.4.26-r6 (09 Aug 2004)
526
527 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
528 +hardened-sources-2.4.26-r6.ebuild,
529 -hardened-sources-2.4.26-r5.ebuild,
530 -hardened-sources-2.4.26-r4.ebuild,
531 +files/2.4.26-cmdline-race.patch:
532 Version bump, fix for cmdline race. See bug #59905.
533
534 *hardened-sources-2.4.27 (08 Aug 2004)
535
536 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
537 +hardened-sources-2.4.27.ebuild,
538 +files/2.4.27-CAN-2004-0394.patch:
539 Ported the patchball to the 2.4.27 kernel version.
540
541 *hardened-sources-2.4.26-r5 (07 Aug 2004)
542
543 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
544 +hardened-sources-2.4.26-r5.ebuild:
545 Updated to use the new hardened-patches-2.4-26.1 patchball.
546 It adds the following features:
547 - Squashfs
548 - Ebtables
549 - Netdev random (core+drivers)
550 - Watchdog Timer (WDT) fix.
551
552 *hardened-sources-2.4.26-r4 (04 Aug 2004)
553
554 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
555 +hardened-sources-2.4.26-r4.ebuild,
556 +files/2.4.26-CAN-2004-0415.patch,
557 -hardened-sources-2.4.26-3:
558 Version bump, fix for CAN 0415, see bug #59378.
559
560 *hardened-sources-2.4.26-r3 (22 Jul 2004)
561
562 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
563 +hardened-sources-2.4.26-r3.ebuild,
564 +files/2.4.26-CAN-2004-0497.patch,
565 -hardened-sources-2.4.26-r2.ebuild:
566 Version bump, fixed CAN 0497, see bug #56171.
567
568 *hardened-sources-2.4.26-r2 (29 Jun 2004)
569
570 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
571 +hardened-sources-2.4.26-r2.ebuild,
572 +files/2.4.26-CAN-2004-0495.patch,
573 +files/2.4.26-CAN-2004-0535.patch,
574 -hardened-sources-2.4.26-r1.ebuild:
575 Fixes for both CAN 0495 and 0535, see bug #54976
576
577 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
578 hardened-sources-2.4.26-r1.ebuild:
579 QA - fix use invocation
580
581 *hardened-sources-2.4.26-r1 (22 June 2004)
582
583 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
584 +hardened-sources-2.4.26-r1.ebuild,
585 +files/2.4.26-CAN-2004-0394.patch,
586 +files/2.4.26-signal-race.patch,
587 -hardened-sources-2.4.26.ebuild,
588 -hardened-sources-2.4.24-r3.ebuild:
589 Version bump for the CAN-2004-0394 issue and bug #53804
590 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
591
592
593 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
594 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
595 Masked hardened-sources-2.4.26.ebuild broken for ppc
596
597 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
598 hardened-sources-2.4.24-r3.ebuild:
599 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
600
601 *hardened-sources-2.4.26 (29 May 2004)
602
603 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
604 +hardened-sources-2.4.26.ebuild:
605 Updated hardened-sources for the 2.4.26 kernel
606 Removed broken components, updated almost everything.
607
608 *hardened-sources-2.4.24-r3 (17 Apr 2004)
609
610 17 Apr 2004; <plasmaroo@gentoo.org>
611 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
612 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
613 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
614 +hardened-sources-2.4.24-r3.ebuild:
615 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
616 vulnerabilities. Old revisions removed.
617
618 *hardened-sources-2.4.24-r2 (15 Apr 2004)
619
620 15 Apr 2004; <plasmaroo@gentoo.org>
621 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
622 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
623 Version bump for the CAN-2004-0109 issue; bug #47881.
624
625 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
626 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
627 Add eutils to inherit.
628
629 *hardened-sources-2.4.24-r1 (19 Feb 2004)
630
631 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
632 files/hardened-sources-2.4.24.munmap.patch:
633 Added the patch for the mremap/munmap vulnerability. Bug #42024.
634
635 *hardened-sources-2.4.24 (06 Feb 2004)
636
637 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
638 hardened-sources-2.4.24.ebuild:
639 Version bump, updated most of the components.
640 This release includes the following:
641
642 - Hardened security
643 - Netfilter patch-o-matic 20031219
644 - FreeSWAN 2.04 & x509 1.4.8
645 - EVMS 2.2.2
646 - XFS 1.3.1
647 - cryptoloop jari
648 - grsecurity 2.0-rc4
649 - SELinux
650 - PaX 200402060000
651 - PaX Obscurity 200308302223
652 - Others...
653
654 Neither -ck nor systrace are included anymore.
655
656 *hardened-sources-2.4.22-r2 (05 Jan 2004)
657
658 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
659 hardened-sources-2.4.22-r2.ebuild:
660 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
661
662 *hardened-sources-2.4.22-r1 (02 Dec 2003)
663
664 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
665 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
666
667 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
668 hardened-sources-2.4.22-r1.ebuild:
669 Version bump for the 'do_brk' vulnerability.
670
671 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
672 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
673 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
674 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
675 Fix the 'do_brk' vulnerability.
676
677 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
678 hardened-sources-2.4.22.ebuild:
679 - Removed the src_install() portion for SELinux flask
680 components. These are no longer handled in the kernel
681 so this code was not necessary.
682
683 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
684 New 2.4.22 based hardened-sources thanks to
685 Phil West <p.west@computer.org>.
686
687 These sources include:
688 - New SELinux API
689 - Updated CK-base
690 - Updated GRSec
691 - Systrace
692 - SuperFreeS/WAN 1.99.8
693 - Propolice kernel build support
694 - EVMS
695 - Other various security related patches
696
697 *hardened-sources-2.4.21 (14 Sep 2003)
698
699 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
700 Updated hardened-sources based on the 2.4.21 Linux kernel.
701 This includes updates to most major components such as:
702 - ck-base-0306300059
703 - selinux-2.4-2003071106
704 - grsecurity-2.0-rc1
705 - Updated IPTables patch-o-matic
706 - Updated SuperFreeS/WAN
707
708 Thanks to Phil West <pwest@computer.org> for his work in getting this
709 updated patch set ready for the 2.4.21 based kernel.
710
711 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
712 Initial import of hardened-sources-2.4.20-r4. This revision
713 includes only a few changes, but one of these is an important
714 security fix. It is recommended all users of hardened-sources
715 upgrade to this release.
716
717 - ioperm bug fix
718 - fixed compilation failure when building without GRSec
719
720 SAL (Secure Auditing for Linux) is NOT included in this revision
721 due to time constraints, but is planned for inclusion in the near
722 future.
723
724 *hardened-sources-2.4.20-r2 (12 Jun 2003)
725
726 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
727 hardened-sources-2.4.20-r3.ebuild:
728 Add Header...
729
730 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
731 hardened-sources-2.4.20-r3.ebuild:
732 Removed warnings from ebuild. This kernel should be safe to
733 use at this point.
734
735 *hardened-sources-2.4.20-r3 (08 Jun 2003)
736
737 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
738 hardened-sources-2.4.20-r3.ebuild:
739 New revision. Includes the following changes over -r2:
740
741 - ck7-base (O(1), preempt, low latency)
742 - Super FreeS/WAN 1.99.7rc2
743 - PaX for the LSM/SELinux branch
744 - GRSecurity 2.0-pre4 (role based access control)
745 - Systrace 1.3
746 - EXT3 fixes
747 - EVMS 2.0.1
748 - GCC 3.1+ compile optimizations
749 - ProPolice kernel build support
750 - Hashing table security fixes
751
752 *hardened-sources-2.4.20-r1 (09 Apr 2003)
753
754 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
755 Initial import of hardened-sources-r2. This new
756 ebuild includes many new performance and security
757 related patches. As in -r1, it will patch in
758 LSM/SELinux if "selinux" is in USE, otherwise it
759 will patch in GRSecurity. The following patches
760 are included in this revision:
761
762 - O(1) Scheduler, Low Latency, and Preempt
763 (pulled from the base CK patch)
764 - ptrace exploit patch for the LSM kernel
765 (the GRSec patch already fixes this)
766 - LSM 2.4-2003040709
767 - SELinux 2.4-2003040709
768 - Systrace v1.2
769 - IPTables patch-o-matic base patches - 20030107
770 - CryptoAPI 2.4.20.1 w/ loop-jari patch
771 - Super FreeS/WAN 1.99.6.1
772 - GRSecurity 1.9.9g
773 - MPPE
774 - EXT3 data journal fix
775 - CIPE 1.5.4
776
777 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
778 hardened-sources-2.4.20-r1.ebuild, manifest:
779 Updated to install flask components correctly for selinux.
780
781 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
782 hardened-sources-2.4.20-r1.ebuild:
783 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
784 is patched in instead. Ptrace patches for selinux have also been added. In
785 either case, systrace support will be patched in as well.
786
787 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
788 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
789 Revision bump for new sources.
790
791 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
792 hardened-sources-2.4.20-r1.ebuild:
793 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
794
795 *hardened-sources-2.4.20 (30 Mar 2003)
796
797 30 Mar 2003; Joshua Brindle <method@gentoo.org>
798 hardened-sources-2.4.20.ebuild:
799 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20