summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add SCC description file for kernel patchesxilinx-4.14Andreas Wellving2019-05-231-0/+97
| | | | | Change-Id: Ib09b81bcc07ce5bba45f0d93470c5c27ea118664 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tty: CVE-2019-11486Andreas Wellving2019-05-221-0/+51
| | | | | | | | | | | tty: mark Siemens R3964 line discipline as BROKEN Reference: https://nvd.nist.gov/vuln/detail/CVE-2019-11486 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=429977fd9f7153607230a6040ee12510a525e930 Change-Id: Iba01aad6b191590574396a6e06a4e6c554db6274 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* exec: CVE-2019-8980Andreas Wellving2019-05-221-0/+57
| | | | | | | | | | | exec: Fix mem leak in kernel_read_file Reference: https://nvd.nist.gov/vuln/detail/CVE-2019-8980 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=069fb92ea221c72bd75f4863b3540420082f32ba Change-Id: Ic081cd5983de721ccf1b3e982edb1d6f819b8cbb Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mm: CVE-2019-9213Andreas Wellving2019-05-221-0/+50
| | | | | | | | | | | mm: enforce min addr even if capable() in expand_downwards() Reference: https://nvd.nist.gov/vuln/detail/CVE-2019-9213 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=f5817069248630b3b7b17ebfcdee0b679c52be33 Change-Id: I13dc9fc12825a3c83dc695b7dc4bb7724048d562 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* sunrpc: CVE-2018-16884Andreas Wellving2019-05-221-0/+167
| | | | | | | | | | | sunrpc: use-after-free in svc_process_common() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-16884 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=65dba32522065b79a16393efc75f8006c2c3dbb8 Change-Id: I9eb462eca72341300cb832473099b55ad94867f7 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* USB: CVE-2018-20169Andreas Wellving2019-05-221-0/+107
| | | | | | | | | | | USB: check usb_get_extra_descriptor for proper size Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-20169 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7b6e85da8d94948201abb8d576d485892a6a878f Change-Id: Ic9ef365153c260d29d7e96d487222c80da578d9e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* mremap: CVE-2018-18281Andreas Wellving2019-05-221-0/+179
| | | | | | | | | | | mremap: properly flush TLB before releasing the page Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-18281 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=541500abfe9eb30a89ff0a6eb42a21521996d68d Change-Id: I7d4ff174e795e3336ff3940b83b7018d0170d365 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* proc: CVE-2018-17972Andreas Wellving2019-05-221-0/+79
| | | | | | | | | | | proc: restrict kernel stack dumps to root Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-17972 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=f8566a92ab75d442a823453414c6158b0b3c5ce7 Change-Id: I3cb00847d9952ee0eb5d76ba0bc96fd27fb64da9 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* f2fs: CVE-2018-13099Andreas Wellving2019-05-221-0/+159
| | | | | | | | | | | | f2fs: fix to do sanity check with reserved blkaddr of inline inode Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-13099 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7fb2b50ee59689578d5a712633d1e6755fc98933 Change-Id: I748a08fac0122e396f6f7126d9ad6fd331994efd Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hfsplus: CVE-2018-14617Andreas Wellving2019-05-221-0/+64
| | | | | | | | | | | hfsplus: fix NULL dereference in hfsplus_lookup() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-14617 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=68e787c3c80059c776d1d7afb20f5eb9f20237a5 Change-Id: I2ab75ad510122bc96604f50c10b8daf9ba007f13 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* btrfs: CVE-2018-14609Andreas Wellving2019-05-221-0/+71
| | | | | | | | | | | | btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-14609 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=0cdbc3faf960de16ebe8a427feb3b0544ad983cc Change-Id: Idca656bc56b18fc36ec9275e232cfd058c5c7ba9 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* jfs: CVE-2018-12233Andreas Wellving2019-05-221-0/+52
| | | | | | | | | | | jfs: Fix inconsistency between memory allocation and ea_buf->max_size Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-12233 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7d29fb53439c8c91874550cc078eda6db8feafe7 Change-Id: I04e74887dc9a21408035615d93c6cfe6d26b3feb Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* tcp: CVE-2018-5390Andreas Wellving2019-05-221-0/+98
| | | | | | | | | | | tcp: free batches of packets in tcp_prune_ofo_queue() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-5390 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=f3a5ba6310e11df370f6888ed716d1486896d983 Change-Id: Ia58e99e96a8d07e081c92b3e6d206ffb44dd4a7d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* USB: CVE-2018-16276Andreas Wellving2019-05-221-0/+75
| | | | | | | | | | | USB: yurex: fix out-of-bounds uaccess in read handler Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-16276 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=90f2a76ccd37cce2530df49335bcea6cd0e23797 Change-Id: Ie5e54d7049bd414a22d458364f2965ccc6ca8e3d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* CVE-2018-13405Andreas Wellving2019-05-221-0/+53
| | | | | | | | | | | Fix up non-directory creation in SGID directories Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-13405 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=298243a5fb640f018e2fae22c0c895f1b27f0963 Change-Id: Ia5bb134fc9fecf9b9647197073f1a6bba7ae27eb Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* jbd2: CVE-2018-10883Andreas Wellving2019-05-221-0/+65
| | | | | | | | | | | jbd2: don't mark block as modified if the handle is out of credits Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10883 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=0321e68838d7ba2528b367b879b2fcf9d96a2099 Change-Id: I1394677ceb7501c797bff5af521b4f92e1e27053 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10882Andreas Wellving2019-05-221-0/+79
| | | | | | | | | | | ext4: add more inode number paranoia checks Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10882 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=c24aab6d86640ccf321b87be6096319f55b16274 Change-Id: Id9549c0bd816773613635d5762e9336a7485ab9e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10881Andreas Wellving2019-05-221-0/+55
| | | | | | | | | | | ext4: clear i_data in ext4_inode_info when removing inline data Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10881 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=deb465ec750b80776cc4ac5b92b72c0a71fd4f0b Change-Id: I45dcf13bbc72e3ae398117481cc7899d4f58c960 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10880Andreas Wellving2019-05-221-0/+46
| | | | | | | | | | | ext4: never move the system.data xattr out of the inode body Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10880 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=8a9ef17c0dc93def47e17b227ada95c682592a1d Change-Id: I70fa59d28260fafb61216f9acd8285dfcda18280 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10879Andreas Wellving2019-05-221-0/+86
| | | | | | | | | | | | ext4: make sure bitmaps and the inode table don't overlap with bg descriptors Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10879 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=ac93c718365ac6ea9d7631641c8dec867d623491 Change-Id: I6435a39f93026ee8089ce206b4abff9c9344017f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10878Andreas Wellving2019-05-221-0/+66
| | | | | | | | | | | ext4: always check block group bounds in ext4_init_block_bitmap() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10878 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=ac48bb9bc0a32f5a4432be1645b57607f8c46aa7 Change-Id: Iaba1a12544aef19de1bbbc7640fdf4a5b263a917 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10877Andreas Wellving2019-05-221-0/+59
| | | | | | | | | | | ext4: verify the depth of extent tree in ext4_find_extent() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10877 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=d69a9df614fc68741efcb0fcc020f05caa99d668 Change-Id: Ib5d6b1a6167e46d985e01733eae2699696703b67 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* socket: CVE-2018-12232Andreas Wellving2019-05-221-0/+98
| | | | | | | | | | | socket: close race condition between sock_close() and sockfs_setattr() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-12232 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=91717ffc9057f38a0203a40ef36ae2e482fd7cbe Change-Id: If7db46c2af9d629c5311f5d901943289084566a9 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-11412Andreas Wellving2019-05-221-0/+54
| | | | | | | | | | | ext4: do not allow external inodes for inline data Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-11412 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=e81d371dac30019816a1c5a3a2c4c44bb3c68558 Change-Id: I99836f3a9cf50408d2644a7935a510e3adcce619 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-10840Andreas Wellving2019-05-221-0/+76
| | | | | | | | | | | ext4: correctly handle a zero-length xattr with a non-zero e_value_offs Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-10840 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=21542545990c5aba4b919ac0f8c8ae6a408b49d4 Change-Id: I674565e08afe9331e553847a3d22ad2dda86be57 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-1093Andreas Wellving2019-05-221-0/+109
| | | | | | | | | | | ext4: add validity checks for bitmap block numbers Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1093 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=b39430ea068797bb45b72429db3743064280b1be Change-Id: I5eecba74fe2a98d888e4603ea20c78567d227065 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* random: CVE-2018-1108Andreas Wellving2019-05-221-0/+84
| | | | | | | | | | | random: fix crng_ready() test Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1108 https://lkml.org/lkml/2018/4/12/711 Change-Id: I41a55b940d4edd6a46641173de23f39c00cbf6d6 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-1095Andreas Wellving2019-05-221-0/+59
| | | | | | | | | | | ext4: limit xattr size to INT_MAX Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1095 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=a57eb14b740e6175aff8b8941bec628403992dfa Change-Id: I90e88ed42d43abb205c025cc3739a6030adfcb3f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-1094Andreas Wellving2019-05-221-0/+57
| | | | | | | | | | | ext4: always initialize the crc32c checksum driver Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1094 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=26dbb30c58ffb85bc015bd5e58831483d50f7d18 Change-Id: I0acd7b471992aaecfa43c1d94d62aa2a6ad8a3b6 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* ext4: CVE-2018-1092Andreas Wellving2019-05-221-0/+51
| | | | | | | | | | | ext4: fail ext4_iget for root directory if unallocated Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1092 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=8e0e94683f8449f4e83b4b563b80eb9c76b9e18f Change-Id: Ic8cac84f6c824aa3dee0930fafad649d9113c2cd Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* hugetlbfs: CVE-2018-7740Andreas Wellving2019-05-221-0/+127
| | | | | | | | | | | hugetlbfs: check for pgoff value overflow Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-7740 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=1e8628443ede418464b0ab101b24fbb7030949b2 Change-Id: Id8f71d5528d3c68edc2934794263cfdd1b6d078d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2018-1068Andreas Wellving2019-05-221-0/+65
| | | | | | | | | | | netfilter: ebtables: CONFIG_COMPAT: don't trust userland Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1068 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=eaa06bfba8eabd44ce952758046492eebc973bbe Change-Id: I3773b4d4b302614d928989b6ca6df2423e3c41db Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2018-1065Andreas Wellving2019-05-211-0/+91
| | | | | | | | | | | netfilter: add back stackpointer size checks Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-1065 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=638c2e4eff89aae86593e80ac2be01eee195fccb Change-Id: Id89654b8f9d92a644bd60410953a79e69341db7e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* sctp: CVE-2018-5803Andreas Wellving2019-05-211-0/+92
| | | | | | | | | | | sctp: verify size of a new chunk in _sctp_make_chunk() Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-5803 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=1fc74a57a8ae863c95afedef2510e7e42b194e56 Change-Id: I469015a9a986c396e9d483303ec5f02cc12648a8 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* dccp: CVE-2017-8824Andreas Wellving2019-05-211-0/+49
| | | | | | | | | | | dccp: CVE-2017-8824: use-after-free in DCCP code Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-8824 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=e5e1e153ecd40c2b09c23d2b2c161a6c8ddbba07 Change-Id: Ic8d564518bde1ca36f0b9c54f1fa603e8778c92b Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* media: CVE-2017-16644Andreas Wellving2019-05-211-0/+110
| | | | | | | | | | | media: hdpvr: Fix an error handling path in hdpvr_probe() Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-16644 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=dd24d173b50af3aadb1ea2e04edaa8d68ca59b23 Change-Id: I621c6fe518e5e41618c235cdacf8d9bceb3e3947 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* media: CVE-2017-16538Andreas Wellving2019-05-211-0/+95
| | | | | | | | | | | media: dvb-usb-v2: lmedm04: Improve logic checking of warm Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-16538 [https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=fd31a38d268f50afe9c5cd3d4beafa020ad39e90 Change-Id: I6d58abb0b13bd5b760f8c5b61e2bff42acf45a0e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* loop: CVE-2018-5344Andreas Wellving2019-05-211-0/+63
| | | | | | | | | | | loop: fix concurrent lo_open/lo_release Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-5344 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=d5e06a1867210049bbfe27864ee0a40cfd9b1e9b Change-Id: Ic46cc23eaa20fafd3ff2b0275b989cb46f716774 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* netfilter: CVE-2017-17448Andreas Wellving2019-05-211-0/+86
| | | | | | | | | | | netfilter: nfnetlink_cthelper: Add missing permission checks Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17448 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=671624872144abc37bc5e8f3b27987890f6e87f3 Change-Id: I0c5a268e8eebe939c25c22930afb2e98279bdbab Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* futex: CVE-2018-6927Andreas Wellving2019-05-211-0/+46
| | | | | | | | | | | futex: Prevent overflow by strengthen input validation Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-6927 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=17ae6ccfe5dd85605dc44534348b506f95d16a61 Change-Id: Iba6e207aec67070f34a7df6dbc95b841b0cf2d55 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* RDS: CVE-2018-5333Andreas Wellving2019-05-211-0/+38
| | | | | | | | | | | RDS: null pointer dereference in rds_atomic_free_op Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-5333 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=5edbe3c0249f54578636b71377861d579b1781cf Change-Id: I88192001b38e93fae85c48ca6c7ca7146b26597b Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* crypto: CVE-2017-18075Andreas Wellving2019-05-211-0/+84
| | | | | | | | | | | crypto: pcrypt - fix freeing pcrypt instances Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-18075 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=7156c794b8ab462705e6ac80c5fa69565eb44c62 Change-Id: I677805222830347c537d4400c6c78f4ff7783c0d Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2017-17712Andreas Wellving2019-05-211-0/+81
| | | | | | | | | | | net: ipv4: fix for a race condition in raw_sendmsg Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17712 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=3bc400bad0e003d40a0a2412411aed7cbae16f96 Change-Id: I1b0ffb5f7b61597bf9f86b833404e105477da943 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* net: CVE-2017-15129Andreas Wellving2019-05-211-0/+107
| | | | | | | | | | | net: Fix double free and memory corruption in get_net_ns_by_id() Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-15129 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=dd9a2648b3e35c2369f580215d916baf7e23253a Change-Id: Ic5752e6a96995fae732eef5d51dc64e2988c8103 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* bpf: CVE-2017-17862Andreas Wellving2019-05-211-0/+128
| | | | | | | | | | | bpf: fix branch pruning logic Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17862 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=2b3ea8ceb2bb71e9e58527661261dba127137d9b Change-Id: I3a8415361491da3c92688a715291c5026999776f Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* bpf: CVE-2017-17857Andreas Wellving2019-05-211-0/+38
| | | | | | | | | | | bpf: fix missing error return in check_stack_boundary() Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17857 [https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=2120fca0ecfb4552d27608d409ebd3403ce02ce4 Change-Id: I3b916fbdd44fa97039b3d648a230c2fd42b53848 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* bpf: CVE-2017-17856Andreas Wellving2019-05-211-0/+45
| | | | | | | | | | | bpf: force strict alignment checks for stack pointers Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17856 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=c90268f7cbee0781331b96d1423d0f28a6183889 Change-Id: Ie064962ab3e3bd59e79a919f530355e713e908f1 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* bpf: CVE-2017-17855Andreas Wellving2019-05-211-0/+58
| | | | | | | | | | | bpf: don't prune branches when a scalar is replaced with a pointer Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17855 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=cb56cc1b292b8b3f787fad89f1208f8e98d12c7d Change-Id: Ib24bb6a11584593ddc49bb8fcb39e733bd29a7cf Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* bpf: CVE-2017-17854Andreas Wellving2019-05-211-0/+137
| | | | | | | | | | | bpf: fix integer overflows Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17854 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=de31796c052e47c99b1bb342bc70aa826733e862 Change-Id: I00c2d0e05420994cd67f689f0ad63f0a0fbde2e9 Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
* bpf/verifier: CVE-2017-17853Andreas Wellving2019-05-211-0/+75
| | | | | | | | | | | bpf/verifier: fix bounds calculation on BPF_RSH Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-17853 https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-4.14.y&id=4d54f7df5131d67f653f674003ec5f52c9818b53 Change-Id: I05c37ee9076a249d1a58ec631b22518e3558759e Signed-off-by: Andreas Wellving <andreas.wellving@enea.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-05-13 01:38:12 +0000