summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* input: CVE-2017-16645qoriq-4.1Adrian Stratulat2019-10-301-0/+59
| | | | | | | | | | | | Input: ims-psu - check if CDC union descriptor is sane References: https://nvd.nist.gov/vuln/detail/CVE-2017-16645 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ea04efee7635c9120d015dcdeeeb6988130cb67a https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=84513107dc8602c675ec871b616128b49c6e259e Change-Id: Iab16548726e55b3621e5c8ae6be0ea487bb3064f Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* input: CVE-2017-16643Adrian Stratulat2019-10-301-0/+63
| | | | | | | | | | | | Input: gtco - fix potential out-of-bound access References: https://nvd.nist.gov/vuln/detail/CVE-2017-16643 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a50829479f58416a013a4ccca791336af3c584c7 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=52f65e35c2b85908fa66cfc265be4e3fd88744a3 Change-Id: I24cfded743d99eade9048ef89b6e9bbd3db0510e Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* USB: core: CVE-2017-16535Adrian Stratulat2019-10-301-0/+50
| | | | | | | | | | | | USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor() References: https://nvd.nist.gov/vuln/detail/CVE-2017-16535 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1c0edc3633b56000e18d82fc241e3995ca18a69e https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=9d13d3e05be29056eeab610d9ad26b04c9231a04 Change-Id: Ib86863293579750ddfb84bf62839d33bb5a75626 Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* USB: usbtest: CVE-2017-16532Adrian Stratulat2019-10-301-0/+49
| | | | | | | | | | | | usb: usbtest: fix NULL pointer dereference References: https://nvd.nist.gov/vuln/detail/CVE-2017-16532 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7c80f9e4a588f1925b07134bb2e3689335f6c6d8 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=8cf061d919e2102d0de0379bafea6cce1405d786 Change-Id: I988e0689224b6b5c0105fecf4e753516b8a9fe92 Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* USB: CVE-2017-16531Adrian Stratulat2019-10-301-0/+77
| | | | | | | | | | | | USB: fix out-of-bounds in usb_set_configuration References: https://nvd.nist.gov/vuln/detail/CVE-2017-16531 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bd7a3fe770ebd8391d1c7d072ff88e9e76d063eb https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=de5ffcc63dbdaffffd93934003fd527673f4da0a Change-Id: I04f538f1ee61459772eb21f85764ed76a82fb342 Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* USB: uas: CVE-2017-16530Adrian Stratulat2019-10-301-0/+112
| | | | | | | | | | | | USB: uas: fix bug in handling of alternate settings References: https://nvd.nist.gov/vuln/detail/CVE-2017-16530 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=786de92b3cb26012d3d0f00ee37adf14527f35c4 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=0078c8c1a6819a8badf212df782e090559055241 Change-Id: Id5cc402241d763ddf08cfba8bcbde97977df114c Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* USB: serial: CVE-2017-16525Adrian Stratulat2019-10-301-0/+40
| | | | | | | | | | | | USB: serial: console: fix use-after-free after failed setup References: https://nvd.nist.gov/vuln/detail/CVE-2017-16525 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=299d7572e46f98534033a9e65973f13ad1ce9047 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=42651349f0207b8ba3b80b5bd868d9872fbcc6c1 Change-Id: Ie26418adae89e3f900606661aabd55d21e516a08 Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* keys: CVE-2017-15299Adrian Stratulat2019-10-301-0/+126
| | | | | | | | | | | | KEYS: don't let add_key() update an uninstantiated key References: https://nvd.nist.gov/vuln/detail/CVE-2017-15299 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=60ff5b2f547af3828aebafd54daded44cfb0807a https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=da0c7503c0b886784bf8bcb279c7d71c1e50c438 Change-Id: Ia6933016fae4fa49769ef37c340978ccb9caa422 Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* tunnels: CVE-2016-8666Adrian Stratulat2019-10-301-0/+166
| | | | | | | | | | | | tunnels: Don't apply GRO to multiple layers of encapsulation References: https://nvd.nist.gov/vuln/detail/CVE-2016-8666 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fac8e0f579695a3ecbc4d3cac369139d7f819971 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=066b300e5be43cb61697539e2a3a9aac5afb422f Change-Id: I55c79f32e2ce1c06c59f40ab087015e461388795 Signed-off-by: Adrian Stratulat <adrian.stratulat@enea.com>
* net: CVE-2017-17712Andreas Wellving2018-10-252-0/+82
| | | | | | | | | | net: ipv4: fix for a race condition in raw_sendmsg References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=d61b40939ebdc84dad77dbc78c3e26ad9d2da68b Change-Id: I19651e5496e4eca18e96b6bd7a9d2b542e30ac91 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2018-1068Andreas Wellving2018-10-252-2/+67
| | | | | | | | | | netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=1829a59ba6e8fa6467ea4607cf086b5e2d8d6426 Change-Id: If0e3aa0ed5800fcb02573200fba95d8a9c438914 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2016-9793Andreas Wellving2018-10-252-0/+60
| | | | | | | | | | net: avoid signed overflows for SO_{SND|RCV}BUFFORCE References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=f99fb439e6aff4e9f8b91a80d48b2a2d97aa2248 Change-Id: Idb0b4aa03389ed4bc6385a32bef14211bca809f9 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* fscrypto: CVE-2016-10318Andreas Wellving2018-10-252-0/+53
| | | | | | | | | | fscrypto: add authorization check for setting encryption policy References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=e68557814c7e9e4943caca924ff5537952bb3b4e Change-Id: I83ba398899b937d26ebd7955c390981b779b6e16 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* xfrm_user: CVE-2017-7184Andreas Wellving2018-10-252-0/+44
| | | | | | | | | | xfrm_user: validate XFRM_MSG_NEWAE incoming ESN size harder References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=171a957989c4f398adb41078dbfff73b0821e383 Change-Id: Ia97c243997ed679d6f6619a165064c6a2ebab932 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* packet: CVE-2017-6346Andreas Wellving2018-10-252-0/+81
| | | | | | | | | | packet: fix races in fanout_add() References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=7babaac5d49ee7a88a5a324668dd13b575635d09 Change-Id: I67fda10f52f8224b4516be4293f738599121201d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* crypto: CVE-2017-17806Andreas Wellving2018-10-252-0/+159
| | | | | | | | | | crypto: hmac - require that the underlying hash algorithm is unkeyed References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=bd7f57da8fff9b75204d6dd2b3ac6a30a6430a5c Change-Id: I26546d4145e6190cada911545ad939c9aed8d891 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* crypto: CVE-2017-17805Andreas Wellving2018-10-252-0/+100
| | | | | | | | | | crypto: salsa20 - fix blkcipher_walk API usage References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=bbda4c57b91619642a94b193531312fe01bc2398 Change-Id: Ib25a70e786140a500ed7bb8360903e10f27d830f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mm/mempolicy: CVE-2018-10675Andreas Wellving2018-10-252-0/+94
| | | | | | | | | | mm/mempolicy: fix use after free when calling get_mempolicy References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=fd30faeaf0f5163356ec053ba9eb1d3b7923062c Change-Id: I7eca8926a82fe573447c8742be055b3f2c5df6e5 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* packet: CVE-2017-1000111Andreas Wellving2018-10-252-0/+56
| | | | | | | | | | packet: fix tp_reserve race in packet_set_ring References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=b7761b0cd80d832e40a46ec0078ab02596dbc350 Change-Id: Ie32504e8ed6d2aefe350f9e501dca7236c3085ed Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2017-18017Andreas Wellving2018-10-252-0/+57
| | | | | | | | | | netfilter: xt_TCPMSS: add more sanity tests on tcph->doff References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=a7776b8815a90da464f045f7c24d9565ae9f1963 Change-Id: Idc3d6b7706a6c06a4e62c5ebeed762d7879ba1bc Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ipv6: CVE-2017-9074Andreas Wellving2018-10-242-0/+239
| | | | | | | | | | ipv6: Prevent overrun when parsing v6 header options References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=e7f05ff30b0cd72b00c8ca7be3cd48fedf96550f Change-Id: I68b0cc05c982bfe649ac3dfafb876e39ffa0e64f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net/packet: CVE-2017-7308Andreas Wellving2018-10-242-0/+45
| | | | | | | | | | net/packet: fix overflow in check for priv area size References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=dd07486ceba48b5d2157b212bb9bd5ce9a46b593 Change-Id: I21713abf14677f885f66c627fa0e83dbde286237 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mlock: CVE-2017-18221Andreas Wellving2018-10-242-0/+122
| | | | | | | | | | mlock: fix mlock count can not decrease in race condition References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=00fc586ea7410ee8664bfd4f4ea246c60ea0482c Change-Id: I10ada2a00c1b3cf2b0d455d47ecdb9cbeaae62e0 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* timerfd: CVE-2017-10661Andreas Wellving2018-10-242-0/+103
| | | | | | | | | | timerfd: Protect the might cancel mechanism proper References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=db14464180fa453a8ba82bce8107884571d7db6d Change-Id: I7fb7967e6740ed96d7d7351e2e204d5d4f8816a2 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* nfsd: CVE-2017-7895Andreas Wellving2018-10-172-0/+66
| | | | | | | | | | nfsd: stricter decoding of write-like NFSv2/v3 ops References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=5afff19d82af4e4ed66ce0320cd2f17053b78b25 Change-Id: Ibb3edd844b678bcb4c3dd115af77e77b0aa4eda9 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* crypto: CVE-2017-7618Andreas Wellving2018-10-172-0/+240
| | | | | | | | | | crypto: ahash - Fix EINPROGRESS notification callback References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=ce0e21e44f9766aeef6a8c18a750ef9d94c1ca8c Change-Id: Ifdaf7c4025023947250ee94443d555ad3b0852bc Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* udp: CVE-2016-10229Andreas Wellving2018-10-172-0/+104
| | | | | | | | | | udp: properly support MSG_PEEK with truncated buffers References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=5c564705d3f0436ddc70d833b975b870ba560528 Change-Id: Ib677b5853b2ce51ed3a976ddbfb7cf1806badd2e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* packet: CVE-2016-8665Andreas Wellving2018-10-172-0/+100
| | | | | | | | | | packet: fix race condition in packet_set_ring References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=e29fdf045048addaea61c837b60e3c4d2ec43614 Change-Id: I3a9abfa653c6a2d3fede70c8c7f4f7f8df7b3063 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2016-8399Andreas Wellving2018-10-172-0/+78
| | | | | | | | | | net: ping: check minimum size on ICMP header length References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=efcf38bd40200212ef3de3d38e11c42958f8afaa Change-Id: Ib7b313065ab829ae90eef2635ad923224e525245 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2016-7039Andreas Wellving2018-10-172-0/+211
| | | | | | | | | | net: add recursion limit to GRO References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.1.y&id=fabaaaa96d54077b4a9f2c811e55dc09ff2874db Change-Id: Ice78062187e95abdffb700d3f247e98173886a22 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* add README fileAdrian Calianu2016-12-151-0/+0
Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-05-06 07:21:48 +0000