| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
| |
Change-Id: I8719d287ed5b8cb712dba9a061ef4e46ac8024d0
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
mremap: properly flush TLB before releasing the page
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18281
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=541500abfe9eb30a89ff0a6eb42a21521996d68d
Change-Id: I084b67b7f5a6e099ddf8de78f377e343606b92a2
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
sunrpc: use-after-free in svc_process_common()
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-16884
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=65dba32522065b79a16393efc75f8006c2c3dbb8
Change-Id: I440846fe5b7e8a67209bf02857ee2e7691bd4f06
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
| |
USB: hso: Fix OOB memory access in hso_probe/hso_get_config_data
References:
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=49be8dc589aee04c64d61e362c5029ab20fd6fd7
Change-Id: I26c1c763c075d8719ac4bff276d8b1785ae46ad8
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
USB: check usb_get_extra_descriptor for proper size
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-20169
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7b6e85da8d94948201abb8d576d485892a6a878f
Change-Id: I4676564b2b6d596406e0d3730a43e331a108f7d7
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
ALSA: usb-audio: Fix UAF decrement if card has no live interfaces in card.c
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-19824
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=19f74e45746253cafb8cb1e773041e7cadbac622
Change-Id: Iee9eb9ca550408dde865a8ff08385e7c337ed763
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
vhost/vsock: fix use-after-free in network stack callers
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-14625
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=f15c072d6576c5e2b693c22e39ccc9103c952078
Change-Id: Ica09a6a909b9276f3d8ba1d0980e2e6473d461d7
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
userfaultfd: use ENOENT instead of EFAULT if the atomic copy user fails
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18397
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=82c5a8c0debac552750a00b4fc7551c89c7b34b8
Change-Id: I8b35a87096278dee376107808022c95c2350c80e
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
KVM: X86: Fix scan ioapic use-before-initialization
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-19407
https://lkml.org/lkml/2018/11/20/580
Change-Id: I25db67cd123956dbcf240a99f316e914c283d0e2
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18690
https://github.com/torvalds/linux/commit/7b38460dc8e4eafba06c78f8e37099d3b34d473c
Change-Id: Ib6d7cd2510bef1a68cfcdf77d631c5edc1e52477
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
f2fs: fix to do sanity check with cp_pack_start_sum
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-14614
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e494c2f995d6181d6e29c4927d68e0f295ecf75b
Change-Id: Ia3a0030915377b9a286b0b875e6a0a85bd03db2c
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
btrfs: validate type when reading a chunk
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-14611
https://patchwork.kernel.org/patch/10503099/
Change-Id: I892a65be63996fa779c948eff3d6583ceb02013d
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
btrfs: Check that each block group has corresponding chunk at mount time
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-14610
https://patchwork.kernel.org/patch/10503415/
Change-Id: Iba74233aaa43870b1621ef2ab6a59f70e8a6667e
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
f2fs: fix to do sanity check with user_block_count
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-13097
https://git.kernel.org/pub/scm/linux/kernel/git/chao/linux.git/commit/?h=f2fs-dev&
Change-Id: I0021299f122ef0aeaec2acd79c5b2c41710b8a41
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
proc: restrict kernel stack dumps to root
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-17972
https://marc.info/?l=linux-fsdevel&m=153806242024956&w=2
Change-Id: I20b7879d32e4485e92e4952be90cbb71bd7acfdb
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
scsi: target: iscsi: Use hex2bin instead of a re-implementation
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-14633
https://git.kernel.org/pub/scm/linux/kernel/git/mkp/scsi.git/commit/?h=4.19/scsi-fixes&id=1816494330a83f2a064499d8ed2797045641f92c
Change-Id: I16bfd3eec69e4aef5a238a4d65e2790ba2c88b67
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
|
|
f2fs: fix to do sanity check with reserved blkaddr of inline inode
References:
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7fb2b50ee59689578d5a712633d1e6755fc98933
Change-Id: I98429a8a2f47bed9486b5ab8e8419bfc0cbb5a5a
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
|
