summaryrefslogtreecommitdiffstats
path: root/patches/cve
Commit message (Collapse)AuthorAgeFilesLines
* mremap: CVE-2018-18281intel-4.9Andreas Wellving2019-07-122-0/+183
| | | | | | | | | | | mremap: properly flush TLB before releasing the page References: https://nvd.nist.gov/vuln/detail/CVE-2018-18281 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=e34bd9a96704f7089ccad61b6e01ea985fa54dd6 Change-Id: Iae36afb200b136808d0e1a81fd1f1ded24fe9c71 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10880Andreas Wellving2019-07-122-0/+51
| | | | | | | | | | | ext4: never move the system.data xattr out of the inode body References: https://nvd.nist.gov/vuln/detail/CVE-2018-10880 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=3a282476161c54df1a2ef1ba664c8a3514ef49f4 Change-Id: I2245006d33be0a1474dadd5a676266717776c294 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11479Andreas Wellving2019-07-123-0/+190
| | | | | | | | | | | | | tcp: add tcp_min_snd_mss sysctl tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() References: https://nvd.nist.gov/vuln/detail/CVE-2019-11479 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=8e39cbc03dafa3731d22533f869bf326c0e6e6f8 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7e9096287352d0416f3caa0919c90bd9ed2f68d3 Change-Id: I75cade9036c762b5a2cc4512b87fcf96a66f11a0 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11478Andreas Wellving2019-07-123-0/+133
| | | | | | | | | | | | | tcp: tcp_fragment() should apply sane memory limits tcp: refine memory limit test in tcp_fragment() References: https://nvd.nist.gov/vuln/detail/CVE-2019-11478 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=e358f4af19db46ca25cc9a8a78412b09ba98859d https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=caa51edc7e9606418611e68de624efbd0042adf5 Change-Id: Ie16affeda488857ce013ce3be578c05619aee446 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11477Andreas Wellving2019-07-122-0/+190
| | | | | | | | | | | tcp: limit payload size of sacked skbs References: https://nvd.nist.gov/vuln/detail/CVE-2019-11477 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=cc1b58ccb78e0de51bcec1f2914d9296260668bd Change-Id: Ic95aaf292571c662f0772467277450c59dc8f8b3 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* scsi: CVE-2018-20836Andreas Wellving2019-07-122-0/+74
| | | | | | | | | | | scsi: libsas: fix a race condition when smp task timeout References: https://nvd.nist.gov/vuln/detail/CVE-2018-20836 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=41b5d3eee4af6a4ea488a1735ed82e4e593eec0d Change-Id: Ia6fdf5358291e2e803c8795607759ad553ac9271 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2019-11815Andreas Wellving2019-07-122-0/+155
| | | | | | | | | | | | net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock(). References: https://nvd.nist.gov/vuln/detail/CVE-2019-11815 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=a1aa69beac4d88dfb892a95ee04fe6f932803952 Change-Id: I066682d42aa9bcdc4019befae14c9930e8a34280 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* exec: CVE-2019-8980Andreas Wellving2019-07-122-0/+60
| | | | | | | | | | | exec: Fix mem leak in kernel_read_file References: https://nvd.nist.gov/vuln/detail/CVE-2019-8980 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=dd6734e17903f16a47c78d0418f02e06df080c54 Change-Id: I13a751280f4ffe8391871a8ba25f0f266eb36b13 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mm: CVE-2019-9213Andreas Wellving2019-07-122-0/+53
| | | | | | | | | | | mm: enforce min addr even if capable() in expand_downwards() References: https://nvd.nist.gov/vuln/detail/CVE-2019-9213 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=331fc4df776be3e5a88a1a9f08ef2f7e063ef1a9 Change-Id: I63e9ecc3091d8c0ff8bc9de49680fe4e7632eb81 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* sunrpc: CVE-2018-16884Andreas Wellving2019-07-122-0/+162
| | | | | | | | | | | sunrpc: use-after-free in svc_process_common() References: https://nvd.nist.gov/vuln/detail/CVE-2018-16884 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=37c791a031ece3afeb9c8b023397473a5349f171 Change-Id: I40304b9e065ae1e47114886ab7225209a6e54dfe Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* USB: CVE-2018-20169Andreas Wellving2019-07-122-0/+110
| | | | | | | | | | | USB: check usb_get_extra_descriptor for proper size Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-20169 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=fe26b8d06e965239795bee0a71c9073bed931716 Change-Id: I5a596534b24fe2dd83fb2e3779d723eb7b6a4674 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* xfs: CVE-2018-18690Andreas Wellving2019-07-122-0/+58
| | | | | | | | | | | | xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE References: https://nvd.nist.gov/vuln/detail/CVE-2018-18690 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=4ec44e98ab08c704d0ff1a35a21a0682a5562a27 Change-Id: Ic72b133f21375aa3b80fde7d16ab401b28e399aa Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* nfsd: CVE-2018-16871Andreas Wellving2019-07-122-0/+43
| | | | | | | | | | nfsd: COPY and CLONE operations require the saved filehandle to be set References: https://seclists.org/oss-sec/2019/q2/137 Change-Id: Ibf2f000bb8249ad9e18587bef131cc8e1daa2b4a Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* CVE-2018-9363 update hunk from size that was incorrectAndreas Wellving2018-10-161-1/+1
| | | | Change-Id: I82c9ae0ebc9e8d77ef0e54827e7052212bef2935
* f2fs: CVE-2018-13099Andreas Wellving2018-10-122-0/+162
| | | | | | | | | | | f2fs: fix to do sanity check with reserved blkaddr of inline inode References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7e0782ceebaaed70b0c4b775c27b81e8f8cf6ddb https://bugzilla.kernel.org/show_bug.cgi?id=200179 Change-Id: I1e7caee5dadaa8b93a2b2195bc4714b3b2e33bba Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hfsplus: CVE-2018-14617Andreas Wellving2018-10-122-1/+62
| | | | | | | | | | | hfsplus: fix NULL dereference in hfsplus_lookup() References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=1cedd72d0f688b9c169836649ac9ec07a3c601d6 https://bugzilla.kernel.org/show_bug.cgi?id=200297 Change-Id: I03bfdffcb6e4fe3f525a2dbfe2177f131ac95ff2 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* btrfs: CVE-2018-14609Andreas Wellving2018-10-122-0/+70
| | | | | | | | | | btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized References: https://patchwork.kernel.org/patch/10500521/ Change-Id: Ia40f64a8248f2062c6feeae5238b43f537bd23b5 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* Cipso: CVE-2018-10938Andreas Wellving2018-10-122-0/+50
| | | | | | | | | Cipso: cipso_v4_optptr enter infinite loop References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149 Change-Id: I2ddd252e706cc611c1b62175c1bd6ea1874a7974 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hidp: CVE-2018-9363Andreas Wellving2018-10-122-0/+56
| | | | | | | | | | hidp: buffer overflow in hidp_process_report References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7c7940ffbaefdbb189f78a48b4e64b6f268b1dbf Change-Id: Id90e6aa6ede9e6ad212e1490ae7a882a5f7fa52b Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* x86: CVE-2018-15572Andreas Wellving2018-10-122-0/+98
| | | | | | | | | x86/speculation: Protect against userspace-userspace spectreRSB References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=6455f41db5206cf46b623be071a0aa308c183642 Change-Id: I431a85f8cf64c89107fbc537c8a94fc9dddee1da Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* jfs: CVE-2018-12233Andreas Wellving2018-10-122-0/+51
| | | | | | | | | | jfs: Fix inconsistency between memory allocation and ea_buf->max_size References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=240d46556d5961c7100febbee0e058185b3c8d4f Change-Id: Ie129f598ccf05e085624c80fe7d451b46af485d2 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* infiniband: CVE-2018-14734Andreas Wellving2018-10-122-0/+60
infiniband: fix a possible use-after-free bug References: http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cb2595c1393b4a5211534e6f0a0fbad369e21ad8 Change-Id: I7a0963bbef9aa85f2e4b040c5e4ef2735cae1be7 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-06-23 15:30:11 +0000