linux/enea-kernel-cache.git/patches/cve, branch intel-4.19

Correct comments in file referencing kernel CVE patches

2019-02-05T14:00:59+00:00

Change-Id: I8719d287ed5b8cb712dba9a061ef4e46ac8024d0 Signed-off-by: Andreas Wellving

mremap: CVE-2018-18281

2019-02-04T13:41:23+00:00

mremap: properly flush TLB before releasing the page References: https://nvd.nist.gov/vuln/detail/CVE-2018-18281 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=541500abfe9eb30a89ff0a6eb42a21521996d68d Change-Id: I084b67b7f5a6e099ddf8de78f377e343606b92a2 Signed-off-by: Andreas Wellving

sunrpc: CVE-2018-16884

2019-02-04T13:35:01+00:00

sunrpc: use-after-free in svc_process_common() References: https://nvd.nist.gov/vuln/detail/CVE-2018-16884 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=65dba32522065b79a16393efc75f8006c2c3dbb8 Change-Id: I440846fe5b7e8a67209bf02857ee2e7691bd4f06 Signed-off-by: Andreas Wellving

USB: CVE-2018-19985

2019-02-04T13:27:31+00:00

USB: hso: Fix OOB memory access in hso_probe/hso_get_config_data References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=49be8dc589aee04c64d61e362c5029ab20fd6fd7 Change-Id: I26c1c763c075d8719ac4bff276d8b1785ae46ad8 Signed-off-by: Andreas Wellving

USB: CVE-2018-20169

2019-02-04T13:22:44+00:00

USB: check usb_get_extra_descriptor for proper size References: https://nvd.nist.gov/vuln/detail/CVE-2018-20169 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7b6e85da8d94948201abb8d576d485892a6a878f Change-Id: I4676564b2b6d596406e0d3730a43e331a108f7d7 Signed-off-by: Andreas Wellving

ALSA: CVE-2018-19824

2019-02-04T13:12:51+00:00

ALSA: usb-audio: Fix UAF decrement if card has no live interfaces in card.c References: https://nvd.nist.gov/vuln/detail/CVE-2018-19824 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=19f74e45746253cafb8cb1e773041e7cadbac622 Change-Id: Iee9eb9ca550408dde865a8ff08385e7c337ed763 Signed-off-by: Andreas Wellving

vhost/vsock: CVE-2018-14625

2019-02-04T13:05:29+00:00

vhost/vsock: fix use-after-free in network stack callers References: https://nvd.nist.gov/vuln/detail/CVE-2018-14625 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=f15c072d6576c5e2b693c22e39ccc9103c952078 Change-Id: Ica09a6a909b9276f3d8ba1d0980e2e6473d461d7 Signed-off-by: Andreas Wellving

userfaultfd: CVE-2018-18397

2019-02-04T12:40:19+00:00

userfaultfd: use ENOENT instead of EFAULT if the atomic copy user fails References: https://nvd.nist.gov/vuln/detail/CVE-2018-18397 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=82c5a8c0debac552750a00b4fc7551c89c7b34b8 Change-Id: I8b35a87096278dee376107808022c95c2350c80e Signed-off-by: Andreas Wellving

KVM: CVE-2018-19407

2019-02-04T12:23:53+00:00

KVM: X86: Fix scan ioapic use-before-initialization References: https://nvd.nist.gov/vuln/detail/CVE-2018-19407 https://lkml.org/lkml/2018/11/20/580 Change-Id: I25db67cd123956dbcf240a99f316e914c283d0e2 Signed-off-by: Andreas Wellving

xfs: CVE-2018-18690

2019-02-04T12:19:35+00:00

xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE References: https://nvd.nist.gov/vuln/detail/CVE-2018-18690 https://github.com/torvalds/linux/commit/7b38460dc8e4eafba06c78f8e37099d3b34d473c Change-Id: Ib6d7cd2510bef1a68cfcdf77d631c5edc1e52477 Signed-off-by: Andreas Wellving