1 |
gengor 08/09/13 01:53:51 |
2 |
|
3 |
Modified: ChangeLog |
4 |
Added: hardened-sources-2.6.25-r7.ebuild |
5 |
Log: |
6 |
Add 2.6.25-r7, fixing bug #237473 (CVE-2008-3525) and a PaX bug. |
7 |
(Portage version: 2.1.4.4) |
8 |
|
9 |
Revision Changes Path |
10 |
1.240 sys-kernel/hardened-sources/ChangeLog |
11 |
|
12 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.240&view=markup |
13 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?rev=1.240&content-type=text/plain |
14 |
diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-kernel/hardened-sources/ChangeLog?r1=1.239&r2=1.240 |
15 |
|
16 |
Index: ChangeLog |
17 |
=================================================================== |
18 |
RCS file: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v |
19 |
retrieving revision 1.239 |
20 |
retrieving revision 1.240 |
21 |
diff -u -r1.239 -r1.240 |
22 |
--- ChangeLog 10 Sep 2008 21:25:24 -0000 1.239 |
23 |
+++ ChangeLog 13 Sep 2008 01:53:51 -0000 1.240 |
24 |
@@ -1,6 +1,12 @@ |
25 |
# ChangeLog for sys-kernel/hardened-sources |
26 |
# Copyright 2000-2008 Gentoo Foundation; Distributed under the GPL v2 |
27 |
-# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.239 2008/09/10 21:25:24 gengor Exp $ |
28 |
+# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.240 2008/09/13 01:53:51 gengor Exp $ |
29 |
+ |
30 |
+*hardened-sources-2.6.25-r7 (13 Sep 2008) |
31 |
+ |
32 |
+ 13 Sep 2008; Gordon Malm <gengor@g.o> |
33 |
+ +hardened-sources-2.6.25-r7.ebuild: |
34 |
+ Add 2.6.25-r7, fixing bug #237473 (CVE-2008-3525) and a PaX bug. |
35 |
|
36 |
10 Sep 2008; Gordon Malm <gengor@g.o> |
37 |
hardened-sources-2.6.25-r4.ebuild, hardened-sources-2.6.25-r5.ebuild, |
38 |
|
39 |
|
40 |
|
41 |
1.1 sys-kernel/hardened-sources/hardened-sources-2.6.25-r7.ebuild |
42 |
|
43 |
file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.25-r7.ebuild?rev=1.1&view=markup |
44 |
plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.25-r7.ebuild?rev=1.1&content-type=text/plain |
45 |
|
46 |
Index: hardened-sources-2.6.25-r7.ebuild |
47 |
=================================================================== |
48 |
# Copyright 1999-2008 Gentoo Foundation |
49 |
# Distributed under the terms of the GNU General Public License v2 |
50 |
# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.25-r7.ebuild,v 1.1 2008/09/13 01:53:51 gengor Exp $ |
51 |
|
52 |
ETYPE="sources" |
53 |
K_WANT_GENPATCHES="base extras" |
54 |
K_GENPATCHES_VER="10" |
55 |
|
56 |
inherit kernel-2 |
57 |
detect_version |
58 |
|
59 |
HGPV="${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-8" |
60 |
HGPV_URI="http://dev.gentoo.org/~gengor/distfiles/${CATEGORY}/${PN}/hardened-patches-${HGPV}.extras.tar.bz2 |
61 |
mirror://gentoo/hardened-patches-${HGPV}.extras.tar.bz2" |
62 |
SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" |
63 |
|
64 |
UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" |
65 |
UNIPATCH_EXCLUDE="4200_fbcondecor-0.9.4.patch" |
66 |
|
67 |
DESCRIPTION="Hardened kernel sources (kernel series ${KV_MAJOR}.${KV_MINOR})" |
68 |
HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" |
69 |
IUSE="" |
70 |
|
71 |
KEYWORDS="~alpha ~amd64 ~hppa ~ia64 ~ppc ~ppc64 ~sparc ~x86" |
72 |
|
73 |
pkg_postinst() { |
74 |
kernel-2_pkg_postinst |
75 |
|
76 |
local GRADM_COMPAT="sys-apps/gradm-2.1.12*" |
77 |
|
78 |
ewarn |
79 |
ewarn "As of ${CATEGORY}/${PN}-2.6.24 the predefined" |
80 |
ewarn "\"Hardened [Gentoo]\" grsecurity level has been removed." |
81 |
ewarn "Two improved predefined security levels replace it:" |
82 |
ewarn "\"Hardened Gentoo [server]\" and \"Hardened Gentoo [workstation]\"" |
83 |
ewarn |
84 |
ewarn "Those who intend to use one of these predefined grsecurity levels" |
85 |
ewarn "should read the help associated with the level. Users importing a" |
86 |
ewarn "kernel configuration from a kernel prior to ${PN}-2.6.24," |
87 |
ewarn "should review their selected grsecurity/PaX options carefully." |
88 |
ewarn |
89 |
ewarn |
90 |
ewarn "Users of grsecurity's RBAC system must ensure they are using" |
91 |
ewarn "${GRADM_COMPAT}, which is compatible with kernel series ${OKV}." |
92 |
ewarn "Therefore, it is strongly recommended that the following command is" |
93 |
ewarn "issued prior to booting a ${P} series kernel for" |
94 |
ewarn "the first time:" |
95 |
ewarn |
96 |
ewarn "emerge -na =${GRADM_COMPAT}" |
97 |
ewarn |
98 |
} |