summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* mremap: CVE-2018-18281intel-4.9Andreas Wellving2019-07-122-0/+183
| | | | | | | | | | | mremap: properly flush TLB before releasing the page References: https://nvd.nist.gov/vuln/detail/CVE-2018-18281 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=e34bd9a96704f7089ccad61b6e01ea985fa54dd6 Change-Id: Iae36afb200b136808d0e1a81fd1f1ded24fe9c71 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10880Andreas Wellving2019-07-122-0/+51
| | | | | | | | | | | ext4: never move the system.data xattr out of the inode body References: https://nvd.nist.gov/vuln/detail/CVE-2018-10880 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=3a282476161c54df1a2ef1ba664c8a3514ef49f4 Change-Id: I2245006d33be0a1474dadd5a676266717776c294 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11479Andreas Wellving2019-07-123-0/+190
| | | | | | | | | | | | | tcp: add tcp_min_snd_mss sysctl tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() References: https://nvd.nist.gov/vuln/detail/CVE-2019-11479 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=8e39cbc03dafa3731d22533f869bf326c0e6e6f8 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7e9096287352d0416f3caa0919c90bd9ed2f68d3 Change-Id: I75cade9036c762b5a2cc4512b87fcf96a66f11a0 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11478Andreas Wellving2019-07-123-0/+133
| | | | | | | | | | | | | tcp: tcp_fragment() should apply sane memory limits tcp: refine memory limit test in tcp_fragment() References: https://nvd.nist.gov/vuln/detail/CVE-2019-11478 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=e358f4af19db46ca25cc9a8a78412b09ba98859d https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=caa51edc7e9606418611e68de624efbd0042adf5 Change-Id: Ie16affeda488857ce013ce3be578c05619aee446 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11477Andreas Wellving2019-07-122-0/+190
| | | | | | | | | | | tcp: limit payload size of sacked skbs References: https://nvd.nist.gov/vuln/detail/CVE-2019-11477 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=cc1b58ccb78e0de51bcec1f2914d9296260668bd Change-Id: Ic95aaf292571c662f0772467277450c59dc8f8b3 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* scsi: CVE-2018-20836Andreas Wellving2019-07-122-0/+74
| | | | | | | | | | | scsi: libsas: fix a race condition when smp task timeout References: https://nvd.nist.gov/vuln/detail/CVE-2018-20836 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=41b5d3eee4af6a4ea488a1735ed82e4e593eec0d Change-Id: Ia6fdf5358291e2e803c8795607759ad553ac9271 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2019-11815Andreas Wellving2019-07-122-0/+155
| | | | | | | | | | | | net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock(). References: https://nvd.nist.gov/vuln/detail/CVE-2019-11815 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=a1aa69beac4d88dfb892a95ee04fe6f932803952 Change-Id: I066682d42aa9bcdc4019befae14c9930e8a34280 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* exec: CVE-2019-8980Andreas Wellving2019-07-122-0/+60
| | | | | | | | | | | exec: Fix mem leak in kernel_read_file References: https://nvd.nist.gov/vuln/detail/CVE-2019-8980 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=dd6734e17903f16a47c78d0418f02e06df080c54 Change-Id: I13a751280f4ffe8391871a8ba25f0f266eb36b13 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mm: CVE-2019-9213Andreas Wellving2019-07-122-0/+53
| | | | | | | | | | | mm: enforce min addr even if capable() in expand_downwards() References: https://nvd.nist.gov/vuln/detail/CVE-2019-9213 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=331fc4df776be3e5a88a1a9f08ef2f7e063ef1a9 Change-Id: I63e9ecc3091d8c0ff8bc9de49680fe4e7632eb81 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* sunrpc: CVE-2018-16884Andreas Wellving2019-07-122-0/+162
| | | | | | | | | | | sunrpc: use-after-free in svc_process_common() References: https://nvd.nist.gov/vuln/detail/CVE-2018-16884 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=37c791a031ece3afeb9c8b023397473a5349f171 Change-Id: I40304b9e065ae1e47114886ab7225209a6e54dfe Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* USB: CVE-2018-20169Andreas Wellving2019-07-122-0/+110
| | | | | | | | | | | USB: check usb_get_extra_descriptor for proper size Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-20169 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=fe26b8d06e965239795bee0a71c9073bed931716 Change-Id: I5a596534b24fe2dd83fb2e3779d723eb7b6a4674 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* xfs: CVE-2018-18690Andreas Wellving2019-07-122-0/+58
| | | | | | | | | | | | xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE References: https://nvd.nist.gov/vuln/detail/CVE-2018-18690 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=4ec44e98ab08c704d0ff1a35a21a0682a5562a27 Change-Id: Ic72b133f21375aa3b80fde7d16ab401b28e399aa Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* nfsd: CVE-2018-16871Andreas Wellving2019-07-122-0/+43
| | | | | | | | | | nfsd: COPY and CLONE operations require the saved filehandle to be set References: https://seclists.org/oss-sec/2019/q2/137 Change-Id: Ibf2f000bb8249ad9e18587bef131cc8e1daa2b4a Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* CVE-2018-9363 update hunk from size that was incorrectAndreas Wellving2018-10-161-1/+1
| | | | Change-Id: I82c9ae0ebc9e8d77ef0e54827e7052212bef2935
* f2fs: CVE-2018-13099Andreas Wellving2018-10-122-0/+162
| | | | | | | | | | | f2fs: fix to do sanity check with reserved blkaddr of inline inode References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7e0782ceebaaed70b0c4b775c27b81e8f8cf6ddb https://bugzilla.kernel.org/show_bug.cgi?id=200179 Change-Id: I1e7caee5dadaa8b93a2b2195bc4714b3b2e33bba Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hfsplus: CVE-2018-14617Andreas Wellving2018-10-122-1/+62
| | | | | | | | | | | hfsplus: fix NULL dereference in hfsplus_lookup() References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=1cedd72d0f688b9c169836649ac9ec07a3c601d6 https://bugzilla.kernel.org/show_bug.cgi?id=200297 Change-Id: I03bfdffcb6e4fe3f525a2dbfe2177f131ac95ff2 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* btrfs: CVE-2018-14609Andreas Wellving2018-10-122-0/+70
| | | | | | | | | | btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized References: https://patchwork.kernel.org/patch/10500521/ Change-Id: Ia40f64a8248f2062c6feeae5238b43f537bd23b5 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* Cipso: CVE-2018-10938Andreas Wellving2018-10-122-0/+50
| | | | | | | | | Cipso: cipso_v4_optptr enter infinite loop References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149 Change-Id: I2ddd252e706cc611c1b62175c1bd6ea1874a7974 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hidp: CVE-2018-9363Andreas Wellving2018-10-122-0/+56
| | | | | | | | | | hidp: buffer overflow in hidp_process_report References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7c7940ffbaefdbb189f78a48b4e64b6f268b1dbf Change-Id: Id90e6aa6ede9e6ad212e1490ae7a882a5f7fa52b Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* Merge "x86: CVE-2018-15572" into intel-4.9Adrian Dudau2018-10-122-0/+98
|\
| * x86: CVE-2018-15572Andreas Wellving2018-10-122-0/+98
| | | | | | | | | | | | | | | | | | x86/speculation: Protect against userspace-userspace spectreRSB References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=6455f41db5206cf46b623be071a0aa308c183642 Change-Id: I431a85f8cf64c89107fbc537c8a94fc9dddee1da Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* | Merge "jfs: CVE-2018-12233" into intel-4.9Adrian Dudau2018-10-122-0/+51
|\|
| * jfs: CVE-2018-12233Andreas Wellving2018-10-122-0/+51
| | | | | | | | | | | | | | | | | | | | jfs: Fix inconsistency between memory allocation and ea_buf->max_size References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=240d46556d5961c7100febbee0e058185b3c8d4f Change-Id: Ie129f598ccf05e085624c80fe7d451b46af485d2 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* | Merge "infiniband: CVE-2018-14734" into intel-4.9Adrian Dudau2018-10-122-0/+60
|\|
| * infiniband: CVE-2018-14734Andreas Wellving2018-10-122-0/+60
| | | | | | | | | | | | | | | | | | | | infiniband: fix a possible use-after-free bug References: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cb2595c1393b4a5211534e6f0a0fbad369e21ad8 Change-Id: I7a0963bbef9aa85f2e4b040c5e4ef2735cae1be7 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* | Merge "Revert "hidp: CVE-2018-9363"" into intel-4.9Martin Borg2018-10-112-64/+0
|\ \
| * | Revert "hidp: CVE-2018-9363"Adrian Dudau2018-10-112-64/+0
| | | | | | | | | | | | | | | | | | | | | | | | This reverts commit d241ce35c9e2820922b9c85382db096723dcb13d. Patch was applied against the wrong baseline, needs to be reworked. Change-Id: Ic282acf6aa440b07e6e4420be17956ac96cc586e
* | | Merge "hidp: CVE-2018-9363" into intel-4.9Adrian Dudau2018-10-112-0/+64
|\| |
| * | hidp: CVE-2018-9363Andreas Wellving2018-10-112-0/+64
| |/ | | | | | | | | | | | | | | | | | | hidp: buffer overflow in hidp_process_report References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7c7940ffbaefdbb189f78a48b4e64b6f268b1dbf Change-Id: Ie1462ea05b2998a8b8e0ec1af60a8c1da77e33ff Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* | kernel features used as installer supportAdrian Calianu2018-04-2021-40/+943
| | | | | | | | | | | | | | | | | | Also enable as modules devices that can be connected to a target: - usb - hsi - firewire Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* | Explicitly set SCSI support as built inGabriel Ionescu2018-03-294-0/+15
| | | | | | | | Signed-off-by: Gabriel Ionescu <gabriel.ionescu@enea.com>
* | Kernel: Add fragments to support booting from an USB and CDROMGabriel Ionescu2018-03-2210-0/+80
| | | | | | | | | | | | | | | | The patch adds support for booting the live image and installer off of various storage types, including USB sticks and CDROMs. Signed-off-by: Gabriel Ionescu <gabriel.ionescu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* | Move netfilter related configs under the same folderAdrian Dudau2018-03-2010-5/+5
| | | | | | | | | | | | | | Rename them to reflect the type of config (_y,_n,_m) they execute. Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | features/ip_Vs: Add IP VIrtual Serverl support as moduleAdrian Dudau2018-03-122-0/+8
| | | | | | | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | features/physdev: Move as standalone feature and add full dependenciesAdrian Dudau2018-03-123-2/+9
| | | | | | | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | features/raw: Add support for raw iptables tableAdrian Dudau2018-03-122-0/+7
| | | | | | | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | features/ipset: Add full dependencies and clean the configsAdrian Dudau2018-03-122-17/+7
| | | | | | | | | | | | | | Build as a module Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | features/ct: Add support for CT target in iptablesAdrian Dudau2018-03-122-0/+15
| | | | | | | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | Add support for ISO FSAdrian Calianu2018-02-052-0/+14
| | | | | | | | | | | | required to mound CD-ROM images like the ones used for cloud-init Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* | add denverton specific bsp supportAdrian Calianu2018-01-102-0/+27
| | | | | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* | Enable physdev match supportAdrian Dudau2017-11-142-0/+5
| | | | | | | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | Add ipset supportAdrian Dudau2017-11-142-0/+23
| | | | | | | | | | Signed-off-by: Adrian Dudau <adrian.dudau@enea.com> Signed-off-by: Martin Borg <martin.borg@enea.com>
* | fix boot_time_opt patch for guestAdrian Calianu2017-09-271-9/+9
| | | | | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* | fix path of new guest featuresAdrian Calianu2017-09-27100-228/+0
| | | | | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* | add guest features from yocto branchAdrian Calianu2017-09-27120-0/+2373
| | | | | | | | Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
* | Enable USB network drivers in usbnet_m.cfgMartin Borg2017-08-241-2/+2
| | | | | | | | Signed-off-by: Martin Borg <martin.borg@enea.com>
* | Remove Cavium related configs from netdevices_n.cfgMartin Borg2017-08-231-5/+0
| | | | | | | | Signed-off-by: Martin Borg <martin.borg@enea.com>
* | linux-intel: Remove disabling early printk from debug_kernel_n fragmentGabriel Ionescu2017-06-271-1/+0
| | | | | | | | | | | | | | | | | | Since there already is a fragment that enables or disables earlyprintk, remove the config symbol from debug_kernel_n to avoid conflicts when both are applied in alternative orders. Signed-off-by: Gabriel Ionescu <gabriel.ionescu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* | Kernel: Remove XZ compression in order to increase boot speedGabriel Ionescu2017-06-201-1/+0
| | | | | | | | | | | | | | | | Removing XZ compression increases the kernel size, but reduces boot time. Signed-off-by: Gabriel Ionescu <gabriel.ionescu@enea.com> Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>
* | net: add sit_n.scc in kernel footprint featureGabriel Sandu2017-06-191-0/+1
| | | | | | | | Signed-off-by: Gabriel Sandu <gabriel.sandu@enea.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-04-25 14:09:43 +0000