/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.21 - (show annotations) (download)
Sat Feb 7 02:43:20 2004 UTC (11 years, 2 months ago) by scox
Branch: MAIN
Changes since 1.20: +20 -0 lines
Added hardened-sources-2.4.24

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Technologies, Inc.; Distributed under the GPL v2
3 # $Header: $
4
5 *hardened-sources-2.4.24 (06 Feb 2004)
6 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
7 hardened-sources-2.4.24.ebuild:
8 Version bump, updated most of the components.
9 This release includes the following:
10
11 - Hardened security
12 - Netfilter patch-o-matic 20031219
13 - FreeSWAN 2.04 & x509 1.4.8
14 - EVMS 2.2.2
15 - XFS 1.3.1
16 - cryptoloop jari
17 - grsecurity 2.0-rc4
18 - SELinux
19 - PaX 200402060000
20 - PaX Obscurity 200308302223
21 - Others...
22
23 Neither -ck nor systrace are included anymore.
24
25 *hardened-sources-2.4.22-r2 (05 Jan 2004)
26
27 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
28 hardened-sources-2.4.22-r2.ebuild:
29 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
30
31 *hardened-sources-2.4.22-r1 (02 Dec 2003)
32
33 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
34 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
35
36 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
37 hardened-sources-2.4.22-r1.ebuild:
38 Version bump for the 'do_brk' vulnerability.
39
40 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
41 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
42 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
43 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
44 Fix the 'do_brk' vulnerability.
45
46 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
47 hardened-sources-2.4.22.ebuild:
48 - Removed the src_install() portion for SELinux flask
49 components. These are no longer handled in the kernel
50 so this code was not necessary.
51
52 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
53 New 2.4.22 based hardened-sources thanks to
54 Phil West <p.west@computer.org>.
55
56 These sources include:
57 - New SELinux API
58 - Updated CK-base
59 - Updated GRSec
60 - Systrace
61 - SuperFreeS/WAN 1.99.8
62 - Propolice kernel build support
63 - EVMS
64 - Other various security related patches
65
66 *hardened-sources-2.4.21 (14 Sep 2003)
67
68 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
69 Updated hardened-sources based on the 2.4.21 Linux kernel.
70 This includes updates to most major components such as:
71 - ck-base-0306300059
72 - selinux-2.4-2003071106
73 - grsecurity-2.0-rc1
74 - Updated IPTables patch-o-matic
75 - Updated SuperFreeS/WAN
76
77 Thanks to Phil West <pwest@computer.org> for his work in getting this
78 updated patch set ready for the 2.4.21 based kernel.
79
80 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
81 Initial import of hardened-sources-2.4.20-r4. This revision
82 includes only a few changes, but one of these is an important
83 security fix. It is recommended all users of hardened-sources
84 upgrade to this release.
85
86 - ioperm bug fix
87 - fixed compilation failure when building without GRSec
88
89 SAL (Secure Auditing for Linux) is NOT included in this revision
90 due to time constraints, but is planned for inclusion in the near
91 future.
92
93 *hardened-sources-2.4.20-r2 (12 Jun 2003)
94
95 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
96 hardened-sources-2.4.20-r3.ebuild:
97 Add Header...
98
99 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
100 hardened-sources-2.4.20-r3.ebuild:
101 Removed warnings from ebuild. This kernel should be safe to
102 use at this point.
103
104 *hardened-sources-2.4.20-r3 (08 Jun 2003)
105
106 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
107 hardened-sources-2.4.20-r3.ebuild:
108 New revision. Includes the following changes over -r2:
109
110 - ck7-base (O(1), preempt, low latency)
111 - Super FreeS/WAN 1.99.7rc2
112 - PaX for the LSM/SELinux branch
113 - GRSecurity 2.0-pre4 (role based access control)
114 - Systrace 1.3
115 - EXT3 fixes
116 - EVMS 2.0.1
117 - GCC 3.1+ compile optimizations
118 - ProPolice kernel build support
119 - Hashing table security fixes
120
121 *hardened-sources-2.4.20-r1 (09 Apr 2003)
122
123 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
124 Initial import of hardened-sources-r2. This new
125 ebuild includes many new performance and security
126 related patches. As in -r1, it will patch in
127 LSM/SELinux if "selinux" is in USE, otherwise it
128 will patch in GRSecurity. The following patches
129 are included in this revision:
130
131 - O(1) Scheduler, Low Latency, and Preempt
132 (pulled from the base CK patch)
133 - ptrace exploit patch for the LSM kernel
134 (the GRSec patch already fixes this)
135 - LSM 2.4-2003040709
136 - SELinux 2.4-2003040709
137 - Systrace v1.2
138 - IPTables patch-o-matic base patches - 20030107
139 - CryptoAPI 2.4.20.1 w/ loop-jari patch
140 - Super FreeS/WAN 1.99.6.1
141 - GRSecurity 1.9.9g
142 - MPPE
143 - EXT3 data journal fix
144 - CIPE 1.5.4
145
146 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
147 hardened-sources-2.4.20-r1.ebuild, manifest:
148 Updated to install flask components correctly for selinux.
149
150 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
151 hardened-sources-2.4.20-r1.ebuild:
152 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
153 is patched in instead. Ptrace patches for selinux have also been added. In
154 either case, systrace support will be patched in as well.
155
156 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
157 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
158 Revision bump for new sources.
159
160 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
161 hardened-sources-2.4.20-r1.ebuild:
162 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
163
164 *hardened-sources-2.4.20 (30 Mar 2003)
165
166 30 Mar 2003; Joshua Brindle <method@gentoo.org>
167 hardened-sources-2.4.20.ebuild:
168 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20