summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* mremap: CVE-2018-18281altera-4.9Andreas Wellving2019-07-122-0/+183
| | | | | | | | | | | mremap: properly flush TLB before releasing the page References: https://nvd.nist.gov/vuln/detail/CVE-2018-18281 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=e34bd9a96704f7089ccad61b6e01ea985fa54dd6 Change-Id: I16200712d4c85eceef94c4711ffef7a67349691a Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10880Andreas Wellving2019-07-122-0/+51
| | | | | | | | | | | ext4: never move the system.data xattr out of the inode body References: https://nvd.nist.gov/vuln/detail/CVE-2018-10880 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=3a282476161c54df1a2ef1ba664c8a3514ef49f4 Change-Id: I5a9cc26679b67e63059e9a4a3728f3ee1e68d57e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11479Andreas Wellving2019-07-123-0/+190
| | | | | | | | | | | | | tcp: add tcp_min_snd_mss sysctl tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() References: https://nvd.nist.gov/vuln/detail/CVE-2019-11479 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=8e39cbc03dafa3731d22533f869bf326c0e6e6f8 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7e9096287352d0416f3caa0919c90bd9ed2f68d3 Change-Id: Ib325dc56d98573762e4fe490efd4cb7dfcd6ffd8 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11478Andreas Wellving2019-07-123-0/+133
| | | | | | | | | | | | | tcp: tcp_fragment() should apply sane memory limits tcp: refine memory limit test in tcp_fragment() References: https://nvd.nist.gov/vuln/detail/CVE-2019-11478 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=e358f4af19db46ca25cc9a8a78412b09ba98859d https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=caa51edc7e9606418611e68de624efbd0042adf5 Change-Id: I9630c20a11d9a92095d475f2a6d27e627fd7bbff Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2019-11477Andreas Wellving2019-07-122-0/+190
| | | | | | | | | | | tcp: limit payload size of sacked skbs References: https://nvd.nist.gov/vuln/detail/CVE-2019-11477 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=cc1b58ccb78e0de51bcec1f2914d9296260668bd Change-Id: I893f33563680157c4b706fd3a8e5bbaa13566cc3 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* scsi: CVE-2018-20836Andreas Wellving2019-07-122-0/+74
| | | | | | | | | | | scsi: libsas: fix a race condition when smp task timeout References: https://nvd.nist.gov/vuln/detail/CVE-2018-20836 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=41b5d3eee4af6a4ea488a1735ed82e4e593eec0d Change-Id: I6bd1bfbad5358379ead43314c780859b1d11e658 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2019-11815Andreas Wellving2019-07-122-0/+155
| | | | | | | | | | | net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock(). References: https://nvd.nist.gov/vuln/detail/CVE-2019-11815 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=a1aa69beac4d88dfb892a95ee04fe6f932803952 Change-Id: Idd83d9a8e84f1560a660dc028d6fc191efad8927 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* exec: CVE-2019-8980Andreas Wellving2019-07-122-0/+60
| | | | | | | | | | | exec: Fix mem leak in kernel_read_file References: https://nvd.nist.gov/vuln/detail/CVE-2019-8980 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=dd6734e17903f16a47c78d0418f02e06df080c54 Change-Id: I5245aaf6bf45b9dc10d348f02fda5dfef1cca8e2 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mm: CVE-2019-9213Andreas Wellving2019-07-122-0/+53
| | | | | | | | | | | mm: enforce min addr even if capable() in expand_downwards() References: https://nvd.nist.gov/vuln/detail/CVE-2019-9213 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=331fc4df776be3e5a88a1a9f08ef2f7e063ef1a9 Change-Id: I64e229fd9f213e34cdf0154dc932b11c8651c696 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* sunrpc: CVE-2018-16884Andreas Wellving2019-07-122-0/+162
| | | | | | | | | | | sunrpc: use-after-free in svc_process_common() References: https://nvd.nist.gov/vuln/detail/CVE-2018-16884 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=37c791a031ece3afeb9c8b023397473a5349f171 Change-Id: I14973f204941ead7362a993f9cb84ed708cb8ac1 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* USB: CVE-2018-20169Andreas Wellving2019-07-122-0/+110
| | | | | | | | | | | USB: check usb_get_extra_descriptor for proper size References: https://nvd.nist.gov/vuln/detail/CVE-2018-20169 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=fe26b8d06e965239795bee0a71c9073bed931716 Change-Id: I56a237c0e8c4ac8bd823f4b9f92f2bdb3d16a272 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* xfs: CVE-2018-18690Andreas Wellving2019-07-122-0/+58
| | | | | | | | | | | | xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE References: https://nvd.nist.gov/vuln/detail/CVE-2018-18690 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=4ec44e98ab08c704d0ff1a35a21a0682a5562a27 Change-Id: Ic58d7bf2b31d45dcfa68a0d092b22d02d8065fdc Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* nfsd: CVE-2018-16871Andreas Wellving2019-07-122-0/+43
| | | | | | | | | | nfsd: COPY and CLONE operations require the saved filehandle to be set References: https://seclists.org/oss-sec/2019/q2/137 Change-Id: Ia65eba91876624a2b0eb002ebfc5311e8d2f2425 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* Modify CVE-2018-5390, CVE-2018-10876 and CVE-2018-10879Andreas Wellving2018-10-234-344/+39
| | | | | | | | | | | Correct CVE-2018-5390 according to kernel version, remove CVE-2018-10876 and CVE-2018-10879. CVE-2018-5390 References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=2d08921c8da26bdce3d8848ef6f32068f594d7d4 Change-Id: I83d497af94f3e521cece3ab7d19a20e5d0157421 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* f2fs: CVE-2018-13099Andreas Wellving2018-10-162-0/+162
| | | | | | | | | | | f2fs: fix to do sanity check with reserved blkaddr of inline inode References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7e0782ceebaaed70b0c4b775c27b81e8f8cf6ddb https://bugzilla.kernel.org/show_bug.cgi?id=200179 Change-Id: Ifc5673e538f3f44bb4a3f2e884f4e8ec2e30961e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hfsplus: CVE-2018-14617Andreas Wellving2018-10-162-0/+61
| | | | | | | | | | | hfsplus: fix NULL dereference in hfsplus_lookup() References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=1cedd72d0f688b9c169836649ac9ec07a3c601d6 https://bugzilla.kernel.org/show_bug.cgi?id=200297 Change-Id: Ifc245db8a6f5a5d41674ea3861dbbe096d61ed24 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* btrfs: CVE-2018-14609Andreas Wellving2018-10-162-0/+70
| | | | | | | | | | | | btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized References: https://patchwork.kernel.org/patch/10500521/ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=93d960de56cef4582088dfc0ba9494143351772f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: Ic1390aed45c16ad0f770c1bef36e8508b66230d2
* Cipso: CVE-2018-10938Andreas Wellving2018-10-162-0/+50
| | | | | | | | | | | Cipso: cipso_v4_optptr enter infinite loop References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: I8928fad715f3d323194c3e2021338087ad48042c
* hidp: CVE-2018-9363:Andreas Wellving2018-10-162-0/+54
| | | | | | | | | | hidp: buffer overflow in hidp_process_report References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=7c7940ffbaefdbb189f78a48b4e64b6f268b1dbf Change-Id: If99e8c0371ad692696a19c97f11cac0b7f630919 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* jfs: CVE-2018-12233Andreas Wellving2018-10-162-0/+51
| | | | | | | | | | | jfs: Fix inconsistency between memory allocation and ea_buf->max_size References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=240d46556d5961c7100febbee0e058185b3c8d4f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: I5aa9f19c9e63cf4ea1f312f9ae6438f0f512977b
* tcp: CVE-2018-5390Andreas Wellving2018-10-162-0/+185
| | | | | | | | | | | tcp: free batches of packets in tcp_prune_ofo_queue() References: https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=1a4f14bab1868b443f0dd3c55b689a478f82e72e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: If6328c8ba200ef1a8d47687bf670178bb0011e31
* CVE-2018-13405Andreas Wellving2018-10-162-0/+52
| | | | | | | | | | | Fix up non-directory creation in SGID directories References: https://github.com/torvalds/linux/commit/0fa3ecd87848c9c93c2c828ef4c3a8ca36ce46c7 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: Ia7dac6a7721e48900f93ff492f4d3c54114a0d08
* HID: CVE-2018-9516Andreas Wellving2018-10-162-0/+57
| | | | | | | | | | HID: debug: check length before copy_to_user() References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=4a30c12542290f1def08b9ef0d677c024c500589 Change-Id: Id70114f96d06b7d085e4fa3f5f8b09a84ae24528 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10882Andreas Wellving2018-10-162-0/+75
| | | | | | | | | | | ext4: add more inode number paranoia checks References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c37e9e013469521d9adb932d17a1795c139b36db Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: I78b25043dae4ca69499ad5c2ed71076dcb52aaec
* ext4: CVE-2018-10881Andreas Wellving2018-10-162-0/+51
| | | | | | | | | | | ext4: clear i_data in ext4_inode_info when removing inline data References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6e8ab72a812396996035a37e5ca4b3b99b5d214b Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: I1070aa3fee30f445dfad0b86fc12787f7f50235d
* ext4: CVE-2018-10879Andreas Wellving2018-10-162-0/+84
| | | | | | | | | | | ext4: make sure bitmaps and the inode table don't overlap with bg descriptors References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5369a762c882c0b6e9599e4ebbb3a9ba9eee7e2d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: I6b3e2539d53ec7021ecd4ff4055cf66e42a5248a
* ext4: CVE-2018-10878Andreas Wellving2018-10-162-0/+61
| | | | | | | | | | ext4: always check block group bounds in ext4_init_block_bitmap() References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=819b23f1c501b17b9694325471789e6b5cc2d0d2 Change-Id: I1cb5fc73d9a23d4b3a1d414e09eaee21df441efe Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10877Andreas Wellving2018-10-162-0/+55
| | | | | | | | | | | ext4: verify the depth of extent tree in ext4_find_extent() References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bc890a60247171294acc0bd67d211fa4b88d40ba Signed-off-by: Andreas Wellving <andreas.wellving@enea.com> Change-Id: I688e9ce0a02f48c45f3cfa3259fa62a4b93532e6
* ext4: CVE-2018-10876Andreas Wellving2018-10-162-0/+138
| | | | | | | | | | ext4: only look at the bg_flags field if it is valid References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8844618d8aa7a9973e7b527d038a2a589665002c Change-Id: If6d5ecfd74acafe75c6e6f4919f44127cfc7baa7 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* NFC: llcp: CVE-2018-9518Andreas Wellving2018-10-162-0/+56
| | | | | | | | | | NFC: llcp: Limit size of SDP URI References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=69b28c18f7c8b3bbdc037f1cc029acc21723b997 Change-Id: I438598dcb48aaec7b4d770a3d042a202ba3dd60e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* perf/core: CVE-2017-18255Andreas Wellving2018-10-162-0/+53
| | | | | | | | | | perf/core: Fix the perf_cpu_time_max_percent check References: https://github.com/torvalds/linux/commit/1572e45a924f254d9570093abde46430c3172e3d Change-Id: Ic12a79ed3b786b997114dcaf61f6d91e0e7af1b1 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ARM: amba: CVE-2018-9415Andreas Wellving2018-10-162-0/+78
| | | | | | | | | | ARM: amba: Fix race condition with driver_override References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=272c99cf85a371401b78f3c56a18745bf07817a3 Change-Id: I9367a1d020bc4641f136a91d2ff29442221ee9e8 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-1093Andreas Wellving2018-10-162-0/+109
| | | | | | | | | | ext4: add validity checks for bitmap block numbers References: https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=7dac4a1726a9c64a517d595c40e95e2d0d135f6f Change-Id: I0a523dd7ba303042c8c8ccb336c6816c8a2ef2bd Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* random: CVE-2018-1108Andreas Wellving2018-10-162-0/+82
| | | | | | | | | | | random: fix crng_ready() test References: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.9.y&id=4dfb3442bb7e1fb80515df4a199ca5a7a8edf900 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1108 Change-Id: I85eb1123d6a4c5ef2b8f113551ac02df667e839d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-1092Andreas Wellving2018-10-162-0/+51
| | | | | | | | | | ext4: fail ext4_iget for root directory if unallocated References: https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=8e4b5eae5decd9dfe5a4ee369c22028f90ab4c44 Change-Id: If2dd6fd5735e5e0e3282342dec93342f6b2c0943 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* dccp: CVE-2018-1130Andreas Wellving2018-10-162-0/+47
| | | | | | | | | | dccp: check sk for closed state in dccp_sendmsg() References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=67f93df79aeefc3add4e4b31a752600f834236e2 Change-Id: I6e24e1a00265f2fa6fea3f50dd1c4cef92d5b27a Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* blkcg: CVE-2018-7480Andreas Wellving2018-10-162-0/+40
| | | | | | | | | | blkcg: fix double free of new_blkg in blkcg_init_queue References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=9b54d816e00425c3a517514e0d677bb3cec49258 Change-Id: I19ba7f9869de3b81cfccd3c68d57f088d31c3ada Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2018-1068Andreas Wellving2018-10-162-0/+63
| | | | | | | | | | netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets References: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b71812168571fa55e44cdd0254471331b9c4c4c6 Change-Id: I4b658659993380dc9a3aeee4620061ac0e9d5a63 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2018-1065Andreas Wellving2018-10-162-0/+91
| | | | | | | | | | netfilter: add back stackpointer size checks References: https://github.com/torvalds/linux/commit/57ebd808a97d7c5b1e1afb937c2db22beba3c1f8 Change-Id: I5ee1c9b8036563602332c41163740dbc90a294fd Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* dccp: CVE-2017-8824Andreas Wellving2018-10-152-0/+47
| | | | | | | | | | dccp: use-after-free in DCCP code References: https://lists.openwall.net/netdev/2017/12/04/224 Change-Id: I5653c05e22956df9ef614147e79af4f749e4294a Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* posix-timer: CVE-2017-18344Andreas Wellving2018-10-122-0/+115
| | | | | | | | | | posix-timer: Properly check sigevent->sigev_notify References: https://github.com/torvalds/linux/commit/cef31d9af908243421258f1df35a4a644604efbe Change-Id: I1cea661130c10f10cc2b3ffc480fff9d8ed3ee0e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* add README fileAdrian Calianu2016-12-151-0/+0
Signed-off-by: Adrian Calianu <adrian.calianu@enea.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-05-13 02:09:51 +0000