This release switches the toolchain to Gentoo's hardened-dev overlay which includes all of the hardening features of the previous release in the compiler specs rather than in make.conf. The current toolchain is comprised of binutils-2.18-r3, glibc-2.9_p20081201-r4, and gcc-4.4.1-r2. The kernel was held at the same version as the previous release.
This release deepens the hardening of the binaries from the previous release with little changes to the kernel. The toolchain, composed of binutils-2-18, glibc-2.9 and gcc-4.3.3 was used to compile the system from scratch with the following features:
This release is a complete rebuild from scratch using glibc-2.8 and gcc-4.3.3 with stack-protection and other hardening from upstream. Important updated packages include:
- xorg-server-1.5.3-r5 and associated x11-drivers
- ffmpeg-0.5-r1, gstreamer-0.10.22 and associated libraries and plugins
This release addresses many important updates from upstream, particularly:
Password hashing was switched form MD5 to SHA512 with the new glibc.