From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1OwSEY-0008IL-Om for garchives@archives.gentoo.org; Fri, 17 Sep 2010 04:07:35 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 87E63E0941; Fri, 17 Sep 2010 04:06:05 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 633B1E0941 for ; Fri, 17 Sep 2010 04:06:05 +0000 (UTC) Received: from laptop1.localnet (ip1-67.bon.riksnet.se [77.110.8.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPSA id C73241B4034 for ; Fri, 17 Sep 2010 04:06:04 +0000 (UTC) From: Magnus Granberg Organization: Gentoo.org To: gentoo-hardened@lists.gentoo.org Subject: Re: [gentoo-hardened] Re: Security notice regarding hardened-sources Date: Fri, 17 Sep 2010 06:06:01 +0200 User-Agent: KMail/1.13.5 (Linux/2.6.34-gentoo-r1; KDE/4.4.5; x86_64; ; ) References: <4C9288E2.5010709@gentoo.org> <4C929E8E.2030309@gmail.com> In-Reply-To: <4C929E8E.2030309@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-15" Content-Transfer-Encoding: 7bit Message-Id: <201009170606.01701.zorry@gentoo.org> X-Archives-Salt: 5fdcc881-e026-46b3-ab67-858b22dcc72b X-Archives-Hash: 4dbb7bc9c702ecf484b8ab7fc3254c2b On Friday 17 September 2010 00.47.42 7v5w7go9ub0o wrote: > On 09/16/10 17:15, Anthony G. Basile wrote: > [] > > > As a result, certain configurations of hardened-sources are also > > vulnerable. As a work around until I get the fix into the tree and > > > fast track stabilization, keep the following in mind: > [] > > Thank you for this note, Anthony! > > 1. Will hardened-sources be distributed via the tree, or via an overlay? > (IIRC, I got 2.6.34-r5 via the overlay, then it disappeared) > > 2. Same question about gcc; will hardened gcc come to us via an overlay? > (I see an update to 4.4.4-r2; IIRC I got 4.4.4-r1 via overlay). > > TIA All the hardened overlay work is in the tree now /Magnus (Zorry)