From 0cfa86bc13729a11d1ab643b8b35f93299b19537 Mon Sep 17 00:00:00 2001
From: Andreas Wellving <andreas.wellving@enea.com>
Date: Mon, 4 Feb 2019 14:35:01 +0100
Subject: sunrpc: CVE-2018-16884

sunrpc: use-after-free in svc_process_common()

References:
https://nvd.nist.gov/vuln/detail/CVE-2018-16884
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=65dba32522065b79a16393efc75f8006c2c3dbb8

Change-Id: I440846fe5b7e8a67209bf02857ee2e7691bd4f06
Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
---
 patches/cve/4.14.x.scc | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'patches/cve/4.14.x.scc')

diff --git a/patches/cve/4.14.x.scc b/patches/cve/4.14.x.scc
index 36143b1..41bfe7a 100644
--- a/patches/cve/4.14.x.scc
+++ b/patches/cve/4.14.x.scc
@@ -19,3 +19,5 @@ patch CVE-2018-19824-ALSA-usb-audio-Fix-UAF-decrement-if-card-has-no-live.patch
 patch CVE-2018-20169-USB-check-usb_get_extra_descriptor-for-proper-size.patch
 CVEs fixed in 4.14.91:
 patch CVE-2018-19985-USB-hso-Fix-OOB-memory-access-in-hso_probe-hso_get_c.patch
+CVEs fixed in 4.14.94:
+patch CVE-2018-16884-sunrpc-use-after-free-in-svc_process_common.patch
-- 
cgit v1.2.3-54-g00ecf