linux-cavium: CVE-2016-10154

smbencrypt() points a scatterlist to the stack causing DoS

Reference:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-10154

Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Adrian Dudau <adrian.dudau@enea.com>

1 files changed, 4 insertions, 3 deletions

diff --git a/recipes-kernel/linux/linux-cavium_4.9.inc b/recipes-kernel/linux/linux-cavium_4.9.inc
index a3eab1a..da39406 100644
--- a/recipes-kernel/linux/linux-cavium_4.9.inc
+++ b/recipes-kernel/linux/linux-cavium_4.9.inc
@@ -15,16 +15,17 @@ KENEABRANCH = "cavium-4.9"
 SRC_URI = "git://git@git.enea.com/linux/linux-cavium.git;protocol=ssh;name=machine;branch=${KBRANCH} \
            git://git@git.enea.com/linux/enea-kernel-cache.git;protocol=ssh;type=kmeta;name=metaenea;branch=${KENEABRANCH};destsuffix=enea-kernel-cache \
            file://dts \
+           file://CVE-2016-10154.patch \
            file://CVE-2017-7487.patch \
-           file://CVE-2017-1000364.patch \
+           file://CVE-2017-7618.patch \
+           file://CVE-2017-7645.patch \
            file://CVE-2017-8063.patch \
            file://CVE-2017-8064.patch \
            file://CVE-2017-8066.patch \
            file://CVE-2017-8067.patch \
            file://CVE-2017-8068.patch \
            file://CVE-2017-8069.patch \
-           file://CVE-2017-7618.patch \
-           file://CVE-2017-7645.patch \
+           file://CVE-2017-1000364.patch \
            "
 
 LINUX_KERNEL_TYPE = "tiny"