From 58bded8de5818f06416c53a881efa3a8ac2b0485 Mon Sep 17 00:00:00 2001 From: Christian Heim Date: Tue, 23 Jan 2007 20:51:19 +0000 Subject: [PATCH] Revision bump, closing the recently discovered PaX expand_stack() vulnerability. Package-Manager: portage-2.1.2-r2 --- sys-kernel/hardened-sources/ChangeLog | 9 +++++++- sys-kernel/hardened-sources/Manifest | 22 +++++++++++++------ .../files/digest-hardened-sources-2.6.19-r5 | 9 ++++++++ .../hardened-sources-2.6.19-r5.ebuild | 20 +++++++++++++++++ 4 files changed, 52 insertions(+), 8 deletions(-) create mode 100644 sys-kernel/hardened-sources/files/digest-hardened-sources-2.6.19-r5 create mode 100644 sys-kernel/hardened-sources/hardened-sources-2.6.19-r5.ebuild diff --git a/sys-kernel/hardened-sources/ChangeLog b/sys-kernel/hardened-sources/ChangeLog index 6b842da8c161..f6c4bc89c8af 100644 --- a/sys-kernel/hardened-sources/ChangeLog +++ b/sys-kernel/hardened-sources/ChangeLog @@ -1,6 +1,13 @@ # ChangeLog for sys-kernel/hardened-sources # Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.131 2007/01/14 05:35:01 phreak Exp $ +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/ChangeLog,v 1.132 2007/01/23 20:51:19 phreak Exp $ + +*hardened-sources-2.6.19-r5 (23 Jan 2007) + + 23 Jan 2007; Christian Heim + +hardened-sources-2.6.19-r5.ebuild: + Revision bump, closing the recently discovered PaX expand_stack() + vulnerability. *hardened-sources-2.6.19-r4 (14 Jan 2007) diff --git a/sys-kernel/hardened-sources/Manifest b/sys-kernel/hardened-sources/Manifest index f6b2b9a6767e..94b36d2d954a 100644 --- a/sys-kernel/hardened-sources/Manifest +++ b/sys-kernel/hardened-sources/Manifest @@ -18,6 +18,7 @@ DIST hardened-patches-2.6.18-1.extras.tar.bz2 213695 RMD160 41c243634c7a7a911339 DIST hardened-patches-2.6.18-4.extras.tar.bz2 212173 RMD160 25ba7152fea3f204fdfad06a969c8478b11c8a3c SHA1 85c04898e4397142ee7bfe4c0656663d28ea881f SHA256 8c4f9fc9d95958f5d35fc659d247088d92c4d58101b5e1578990b4ba7814725f DIST hardened-patches-2.6.19-3.extras.tar.bz2 190414 RMD160 ea9a1a16284fcd596f19c8ebd7731afc6ea6f394 SHA1 18d51987da7bad95c6e584ce467fd09113cef718 SHA256 5886221691ef6a92e6f0dfaa6394095f60458b9eb8789b5a85e4562071863768 DIST hardened-patches-2.6.19-5.extras.tar.bz2 189708 RMD160 076c4e48f9ad37bef4c1d38e68e6e13f3c144e70 SHA1 f464d5905e60e5b231443d75266a859310c27ac2 SHA256 c38eb69e5c2b9ff1a3c9a1c0fbe3a9af876491a59dded09a6539db39fd41a48e +DIST hardened-patches-2.6.19-6.extras.tar.bz2 189901 RMD160 161329bf7334e447551d4bd57bac94ae82e9ca3b SHA1 5f3f841462100dcfba7251e68754daa92feadf2d SHA256 00147f1ac8903afb436362d6b34942bccceaf56871373709995dcf242f66b531 DIST hardened-sources-2.4.33.4-patches.tar.bz2 255049 RMD160 3e38e6fee8199662ce97fbd278aaa7e17a26f691 SHA1 9d52ae42a9e60541935c9e86455ce96396567eff SHA256 0c6f6c672e051b2ab30eedac2e3f89e3e2701e474dbdbad0dca301186060743c DIST linux-2.4.32.tar.bz2 31132159 RMD160 63ab1a0b18e690170f60de9da7392416311dc609 SHA1 0a99d7ab1d2799168d11689b4a2410b045592cf4 SHA256 7dace89c3f0850c3d5c32c38c20b600259c314e8cbec29fe3ee59c2fbbee1759 DIST linux-2.4.33.tar.bz2 31161078 RMD160 6acdabafecfdc69f3f5b0203eac154ac1c39c44b SHA1 ea444013d54ead1ed366180e9d18d52fbbbe5c6b SHA256 a1d8403a72dbe7a4d63986e71e22e6eeb32fe2e2e949f40c3f9f3bb6496ee47a @@ -71,10 +72,14 @@ EBUILD hardened-sources-2.6.19-r4.ebuild 793 RMD160 3ef9a30f1d9867ecd966d9354e95 MD5 b1a12b8744ddc3a928809007367d5610 hardened-sources-2.6.19-r4.ebuild 793 RMD160 3ef9a30f1d9867ecd966d9354e95b52a8f045dc1 hardened-sources-2.6.19-r4.ebuild 793 SHA256 e0545dc0c162d8deab5d27d001ebd6ae8c7e5729d91bc67578e2a9758e11aae5 hardened-sources-2.6.19-r4.ebuild 793 -MISC ChangeLog 29992 RMD160 a64c7b977178427522a04ff662aec5fde7e7f5ec SHA1 75500e90cbfcd4a182d566ef2a872d96f4d2e937 SHA256 a4544683f23894813cf66c8b48c061e0eec92c84af4fee18cc090711343965a0 -MD5 8864103b1a06dafd605ce52348ed254f ChangeLog 29992 -RMD160 a64c7b977178427522a04ff662aec5fde7e7f5ec ChangeLog 29992 -SHA256 a4544683f23894813cf66c8b48c061e0eec92c84af4fee18cc090711343965a0 ChangeLog 29992 +EBUILD hardened-sources-2.6.19-r5.ebuild 817 RMD160 753be731d249106857b81d030ef41afab4691dd5 SHA1 c1e75eaaf93fb85f6d1b908078220a15bfdd4f18 SHA256 594a24496c81e7420c5e429d3bf8868330217f98d40bbc5d2e9b1acbffb114dd +MD5 7fd8ff13a5b97e436f8507cb7e4ac76d hardened-sources-2.6.19-r5.ebuild 817 +RMD160 753be731d249106857b81d030ef41afab4691dd5 hardened-sources-2.6.19-r5.ebuild 817 +SHA256 594a24496c81e7420c5e429d3bf8868330217f98d40bbc5d2e9b1acbffb114dd hardened-sources-2.6.19-r5.ebuild 817 +MISC ChangeLog 30209 RMD160 c51d207f30abfa6c8869b6be30176a46c63bda78 SHA1 0c0e8bfb3532828fab252ba181a9da36cb87347d SHA256 03db73cead94531a7617531b2abaafdf661b2093019cb36e299236ebf4420e43 +MD5 2de0e9436ab9e8d23ce64ea6b57b17b9 ChangeLog 30209 +RMD160 c51d207f30abfa6c8869b6be30176a46c63bda78 ChangeLog 30209 +SHA256 03db73cead94531a7617531b2abaafdf661b2093019cb36e299236ebf4420e43 ChangeLog 30209 MISC metadata.xml 1051 RMD160 87063da38d351009757ee17e32bd7c44c7834ac7 SHA1 77bf9f392887db23935c77542703c70f151645e8 SHA256 37bdb62d3d2bc86816194eff6c13d8b99a8e24c9f420c2a28c454ec82f239509 MD5 34b75fa2c02328599d2046eac10fbaa9 metadata.xml 1051 RMD160 87063da38d351009757ee17e32bd7c44c7834ac7 metadata.xml 1051 @@ -112,10 +117,13 @@ SHA256 ca6cf7d6c91987ab8d7b5ca37e17e1bbe3f4890faf2e8dcfdc8677796eb68064 files/di MD5 a963fd34d85e55d523160ae86eb58ae1 files/digest-hardened-sources-2.6.19-r4 822 RMD160 73e7d9ec141ad4dbdad95beefae9feddca630fb4 files/digest-hardened-sources-2.6.19-r4 822 SHA256 72d5334acd07299ff78f0549f6cdee5e3e9819ece1fe8fec16e24b20c097b9ca files/digest-hardened-sources-2.6.19-r4 822 +MD5 7476d8091bf882da22ee37204f30bac8 files/digest-hardened-sources-2.6.19-r5 822 +RMD160 4ce67d6e64936d9ce237a117cf39d7b31e803094 files/digest-hardened-sources-2.6.19-r5 822 +SHA256 32e46990a03d26724567b7f3c2006804526252399527396ba689064dab9be5fd files/digest-hardened-sources-2.6.19-r5 822 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.1 (GNU/Linux) -iD8DBQFFqcCHyuNVb5qfaOYRAn9SAKDP2kSvPZc6CD5NKSjgNunexGydlQCfYBES -rbxwlqsRdTSmYeJYfCM8I3Y= -=VvHq +iD8DBQFFtnVbyuNVb5qfaOYRAoZHAKDOPtGZGTlkmUc/nRx0JACq32d3nQCcDiw2 +skZaJ5rJJ6GECW6ZSjSzdsc= +=9v0o -----END PGP SIGNATURE----- diff --git a/sys-kernel/hardened-sources/files/digest-hardened-sources-2.6.19-r5 b/sys-kernel/hardened-sources/files/digest-hardened-sources-2.6.19-r5 new file mode 100644 index 000000000000..f45f55373b4e --- /dev/null +++ b/sys-kernel/hardened-sources/files/digest-hardened-sources-2.6.19-r5 @@ -0,0 +1,9 @@ +MD5 7a43ba2db3af0c9267f34200709213fc genpatches-2.6.19-5.base.tar.bz2 35772 +RMD160 b3367fb6ecd1b977bbc1b27aa3c288c004ff7307 genpatches-2.6.19-5.base.tar.bz2 35772 +SHA256 2d0f1a46aaa2b6730cb23677dac589220394ebeb343f9d70ddbd60ce7b9a6fd4 genpatches-2.6.19-5.base.tar.bz2 35772 +MD5 632b0900b7b9fcc7b1508956c2cf7953 hardened-patches-2.6.19-6.extras.tar.bz2 189901 +RMD160 161329bf7334e447551d4bd57bac94ae82e9ca3b hardened-patches-2.6.19-6.extras.tar.bz2 189901 +SHA256 00147f1ac8903afb436362d6b34942bccceaf56871373709995dcf242f66b531 hardened-patches-2.6.19-6.extras.tar.bz2 189901 +MD5 443c265b57e87eadc0c677c3acc37e20 linux-2.6.19.tar.bz2 42733268 +RMD160 75dc65b15cf9cdb359b1abe7084907982c19088b linux-2.6.19.tar.bz2 42733268 +SHA256 c2fd6bcd2b7c1b3d37d64e4d1825703792a75474830a3db7d2dc603a8d392d58 linux-2.6.19.tar.bz2 42733268 diff --git a/sys-kernel/hardened-sources/hardened-sources-2.6.19-r5.ebuild b/sys-kernel/hardened-sources/hardened-sources-2.6.19-r5.ebuild new file mode 100644 index 000000000000..a5222562f7fd --- /dev/null +++ b/sys-kernel/hardened-sources/hardened-sources-2.6.19-r5.ebuild @@ -0,0 +1,20 @@ +# Copyright 1999-2007 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-kernel/hardened-sources/hardened-sources-2.6.19-r5.ebuild,v 1.1 2007/01/23 20:51:19 phreak Exp $ + +ETYPE="sources" +K_WANT_GENPATCHES="base" +K_GENPATCHES_VER="5" + +inherit kernel-2 +detect_version + +HGPV=${KV_MAJOR}.${KV_MINOR}.${KV_PATCH}-6 +HGPV_URI="http://dev.gentoo.org/~phreak/distfiles/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_LIST="${DISTDIR}/hardened-patches-${HGPV}.extras.tar.bz2" +UNIPATCH_EXCLUDE="4453_grsec-2.1.9-2.6.19-io-kmem-sysctl.patch" +DESCRIPTION="Hardened kernel sources ${OKV}" +HOMEPAGE="http://www.gentoo.org/proj/en/hardened/" + +SRC_URI="${KERNEL_URI} ${HGPV_URI} ${GENPATCHES_URI} ${ARCH_URI}" +KEYWORDS="~alpha ~amd64 ~ppc ~ppc64 ~sparc ~x86" -- 2.26.2