/[gentoo-x86]/sys-kernel/hardened-sources/ChangeLog
Gentoo

Contents of /sys-kernel/hardened-sources/ChangeLog

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.36 - (show annotations) (download)
Tue Aug 10 00:11:08 2004 UTC (10 years, 10 months ago) by scox
Branch: MAIN
Changes since 1.35: +17 -0 lines
Bumped to 2.4.26-r6 and to 2.4.27-r1 in order to fix bug #59905

1 # ChangeLog for sys-kernel/hardened-sources
2 # Copyright 2000-2004 Gentoo Foundation; Distributed under the GPL v2
3 # $Header: $
4
5 *hardened-sources-2.4.27-r1 (09 Aug 2004)
6
7 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
8 +hardened-sources-2.4.27-r1.ebuild,
9 -hardened-sources-2.4.27.ebuild,
10 +files/2.4.27-cmdline-race.patch:
11 Version bump, fix for cmdline race. See bug #59905.
12
13 *hardened-sources-2.4.26-r6 (09 Aug 2004)
14
15 09 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
16 +hardened-sources-2.4.26-r6.ebuild,
17 -hardened-sources-2.4.26-r5.ebuild,
18 -hardened-sources-2.4.26-r4.ebuild,
19 +files/2.4.26-cmdline-race.patch:
20 Version bump, fix for cmdline race. See bug #59905.
21
22 *hardened-sources-2.4.27 (08 Aug 2004)
23
24 08 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
25 +hardened-sources-2.4.27.ebuild,
26 +files/2.4.27-CAN-2004-0394.patch:
27 Ported the patchball to the 2.4.27 kernel version.
28
29 *hardened-sources-2.4.26-r5 (07 Aug 2004)
30
31 07 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
32 +hardened-sources-2.4.26-r5.ebuild:
33 Updated to use the new hardened-patches-2.4-26.1 patchball.
34 It adds the following features:
35 - Squashfs
36 - Ebtables
37 - Netdev random (core+drivers)
38 - Watchdog Timer (WDT) fix.
39
40 *hardened-sources-2.4.26-r4 (04 Aug 2004)
41
42 04 Aug 2004; Andrea Luzzardi <scox@gentoo.org>
43 +hardened-sources-2.4.26-r4.ebuild,
44 +files/2.4.26-CAN-2004-0415.patch,
45 -hardened-sources-2.4.26-3:
46 Version bump, fix for CAN 0415, see bug #59378.
47
48 *hardened-sources-2.4.26-r3 (22 Jul 2004)
49
50 22 Jul 2004; Andrea Luzzardi <scox@gentoo.org>
51 +hardened-sources-2.4.26-r3.ebuild,
52 +files/2.4.26-CAN-2004-0497.patch,
53 -hardened-sources-2.4.26-r2.ebuild:
54 Version bump, fixed CAN 0497, see bug #56171.
55
56 *hardened-sources-2.4.26-r2 (29 Jun 2004)
57
58 29 Jun 2004; Andrea Luzzardi <scox@gentoo.org>
59 +hardened-sources-2.4.26-r2.ebuild,
60 +files/2.4.26-CAN-2004-0495.patch,
61 +files/2.4.26-CAN-2004-0535.patch,
62 -hardened-sources-2.4.26-r1.ebuild:
63 Fixes for both CAN 0495 and 0535, see bug #54976
64
65 23 Jun 2004; Aron Griffis <agriffis@gentoo.org>
66 hardened-sources-2.4.26-r1.ebuild:
67 QA - fix use invocation
68
69 *hardened-sources-2.4.26-r1 (22 June 2004)
70
71 22 June 2004; Andrea Luzzardi <scox@gentoo.org>
72 +hardened-sources-2.4.26-r1.ebuild,
73 +files/2.4.26-CAN-2004-0394.patch,
74 +files/2.4.26-signal-race.patch,
75 -hardened-sources-2.4.26.ebuild,
76 -hardened-sources-2.4.24-r3.ebuild:
77 Version bump for the CAN-2004-0394 issue and bug #53804
78 Marked 2.4.26-r1 as stable, removed 2.4.26 and 2.4.24-r3
79
80
81 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
82 hardened-sources-2.4.24-r3.ebuild, hardened-sources-2.4.26.ebuild:
83 Masked hardened-sources-2.4.26.ebuild broken for ppc
84
85 31 May 2004; Pieter Van den Abeele <pvdabeel@gentoo.org>
86 hardened-sources-2.4.24-r3.ebuild:
87 Masked hardened-sources-2.4.24-r3.ebuild broken for ppc
88
89 *hardened-sources-2.4.26 (29 May 2004)
90
91 29 May 2004; Andrea Luzzardi <scox@gentoo.org>
92 +hardened-sources-2.4.26.ebuild:
93 Updated hardened-sources for the 2.4.26 kernel
94 Removed broken components, updated almost everything.
95
96 *hardened-sources-2.4.24-r3 (17 Apr 2004)
97
98 17 Apr 2004; <plasmaroo@gentoo.org>
99 +files/hardened-sources-2.4.24.CAN-2004-0010.patch,
100 +files/hardened-sources-2.4.24.CAN-2004-0177.patch,
101 +files/hardened-sources-2.4.24.CAN-2004-0178.patch,
102 +hardened-sources-2.4.24-r3.ebuild:
103 Added patches for the CAN-2004-0010, CAN-2004-0177 and CAN-2004-0178
104 vulnerabilities. Old revisions removed.
105
106 *hardened-sources-2.4.24-r2 (15 Apr 2004)
107
108 15 Apr 2004; <plasmaroo@gentoo.org>
109 +files/hardened-sources-2.4.24.CAN-2004-0109.patch,
110 -hardened-sources-2.4.24-r1.ebuild, +hardened-sources-2.4.24-r2.ebuild:
111 Version bump for the CAN-2004-0109 issue; bug #47881.
112
113 12 Apr 2004; Daniel Ahlberg <aliz@gentoo.org>
114 hardened-sources-2.4.22-r2.ebuild, hardened-sources-2.4.24-r1.ebuild:
115 Add eutils to inherit.
116
117 *hardened-sources-2.4.24-r1 (19 Feb 2004)
118
119 19 Feb 2004; <plasmaroo@gentoo.org> hardened-sources-2.4.24-r1.ebuild,
120 files/hardened-sources-2.4.24.munmap.patch:
121 Added the patch for the mremap/munmap vulnerability. Bug #42024.
122
123 *hardened-sources-2.4.24 (06 Feb 2004)
124
125 06 Feb 2004; Andrea Luzzardi <scox@gentoo.org>
126 hardened-sources-2.4.24.ebuild:
127 Version bump, updated most of the components.
128 This release includes the following:
129
130 - Hardened security
131 - Netfilter patch-o-matic 20031219
132 - FreeSWAN 2.04 & x509 1.4.8
133 - EVMS 2.2.2
134 - XFS 1.3.1
135 - cryptoloop jari
136 - grsecurity 2.0-rc4
137 - SELinux
138 - PaX 200402060000
139 - PaX Obscurity 200308302223
140 - Others...
141
142 Neither -ck nor systrace are included anymore.
143
144 *hardened-sources-2.4.22-r2 (05 Jan 2004)
145
146 05 Jan 2004; Andrea Luzzardi <scox@gentoo.org>
147 hardened-sources-2.4.22-r2.ebuild:
148 Version bump for the 'mremap' and the 'rtc' vulnerabilities.
149
150 *hardened-sources-2.4.22-r1 (02 Dec 2003)
151
152 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
153 hardened-sources-2.4.22-r1.ebuild: Fix up a little booboo from earlier.
154
155 02 Dec 2003; Brian Jackson <iggy@gentoo.org>
156 hardened-sources-2.4.22-r1.ebuild:
157 Version bump for the 'do_brk' vulnerability.
158
159 01 Dec 2003; Brian Jackson <iggy@gentoo.org>
160 hardened-sources-2.4.20-r2.ebuild, hardened-sources-2.4.20-r3.ebuild,
161 hardened-sources-2.4.20-r4.ebuild, hardened-sources-2.4.21.ebuild,
162 hardened-sources-2.4.22.ebuild, files/do_brk_fix.patch:
163 Fix the 'do_brk' vulnerability.
164
165 03 Nov 2003; Matthew Rickard <frogger@gentoo.org>
166 hardened-sources-2.4.22.ebuild:
167 - Removed the src_install() portion for SELinux flask
168 components. These are no longer handled in the kernel
169 so this code was not necessary.
170
171 29 Oct 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.22.ebuild:
172 New 2.4.22 based hardened-sources thanks to
173 Phil West <p.west@computer.org>.
174
175 These sources include:
176 - New SELinux API
177 - Updated CK-base
178 - Updated GRSec
179 - Systrace
180 - SuperFreeS/WAN 1.99.8
181 - Propolice kernel build support
182 - EVMS
183 - Other various security related patches
184
185 *hardened-sources-2.4.21 (14 Sep 2003)
186
187 14 Sep 2003; Matthew Rickard <frogger@gentoo.org> hardened-sources-2.4.21.ebuild:
188 Updated hardened-sources based on the 2.4.21 Linux kernel.
189 This includes updates to most major components such as:
190 - ck-base-0306300059
191 - selinux-2.4-2003071106
192 - grsecurity-2.0-rc1
193 - Updated IPTables patch-o-matic
194 - Updated SuperFreeS/WAN
195
196 Thanks to Phil West <pwest@computer.org> for his work in getting this
197 updated patch set ready for the 2.4.21 based kernel.
198
199 16 Jun 2003; Matthew Rickard <frogger@gentoo.org> :
200 Initial import of hardened-sources-2.4.20-r4. This revision
201 includes only a few changes, but one of these is an important
202 security fix. It is recommended all users of hardened-sources
203 upgrade to this release.
204
205 - ioperm bug fix
206 - fixed compilation failure when building without GRSec
207
208 SAL (Secure Auditing for Linux) is NOT included in this revision
209 due to time constraints, but is planned for inclusion in the near
210 future.
211
212 *hardened-sources-2.4.20-r2 (12 Jun 2003)
213
214 12 Jun 2003; <msterret@gentoo.org> hardened-sources-2.4.20-r2.ebuild,
215 hardened-sources-2.4.20-r3.ebuild:
216 Add Header...
217
218 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
219 hardened-sources-2.4.20-r3.ebuild:
220 Removed warnings from ebuild. This kernel should be safe to
221 use at this point.
222
223 *hardened-sources-2.4.20-r3 (08 Jun 2003)
224
225 08 Jun 2003; Matthew Rickard <frogger@gentoo.org>
226 hardened-sources-2.4.20-r3.ebuild:
227 New revision. Includes the following changes over -r2:
228
229 - ck7-base (O(1), preempt, low latency)
230 - Super FreeS/WAN 1.99.7rc2
231 - PaX for the LSM/SELinux branch
232 - GRSecurity 2.0-pre4 (role based access control)
233 - Systrace 1.3
234 - EXT3 fixes
235 - EVMS 2.0.1
236 - GCC 3.1+ compile optimizations
237 - ProPolice kernel build support
238 - Hashing table security fixes
239
240 *hardened-sources-2.4.20-r1 (09 Apr 2003)
241
242 23 Apr 2003; Matthew Rickard <frogger@gentoo.org> Manifest:
243 Initial import of hardened-sources-r2. This new
244 ebuild includes many new performance and security
245 related patches. As in -r1, it will patch in
246 LSM/SELinux if "selinux" is in USE, otherwise it
247 will patch in GRSecurity. The following patches
248 are included in this revision:
249
250 - O(1) Scheduler, Low Latency, and Preempt
251 (pulled from the base CK patch)
252 - ptrace exploit patch for the LSM kernel
253 (the GRSec patch already fixes this)
254 - LSM 2.4-2003040709
255 - SELinux 2.4-2003040709
256 - Systrace v1.2
257 - IPTables patch-o-matic base patches - 20030107
258 - CryptoAPI 2.4.20.1 w/ loop-jari patch
259 - Super FreeS/WAN 1.99.6.1
260 - GRSecurity 1.9.9g
261 - MPPE
262 - EXT3 data journal fix
263 - CIPE 1.5.4
264
265 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
266 hardened-sources-2.4.20-r1.ebuild, manifest:
267 Updated to install flask components correctly for selinux.
268
269 12 Apr 2003; Matthew Rickard <frogger@gentoo.org>
270 hardened-sources-2.4.20-r1.ebuild:
271 LSM/SELinux is now patched in when "selinux" is in USE. Otherwise, GRSecurity
272 is patched in instead. Ptrace patches for selinux have also been added. In
273 either case, systrace support will be patched in as well.
274
275 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
276 hardened-sources-2.4.20-r1.ebuild, hardened-sources-2.4.20.ebuild, manifest:
277 Revision bump for new sources.
278
279 09 Apr 2003; Matthew Rickard <frogger@gentoo.org>
280 hardened-sources-2.4.20-r1.ebuild:
281 Now includes LSM1, GRSec-2.0-pre1, and systrace-v1.2.
282
283 *hardened-sources-2.4.20 (30 Mar 2003)
284
285 30 Mar 2003; Joshua Brindle <method@gentoo.org>
286 hardened-sources-2.4.20.ebuild:
287 Initial import, only has systrace support.

  ViewVC Help
Powered by ViewVC 1.1.20