diff options
author | Justin M. Forbes <jforbes@fedoraproject.org> | 2019-11-21 14:14:58 -0600 |
---|---|---|
committer | Justin M. Forbes <jforbes@fedoraproject.org> | 2019-11-21 14:14:58 -0600 |
commit | 45948240a7a67c34bb3227f458dc8ee14d7c37dd (patch) | |
tree | 14049a526b99106c924fbb55747e9ce787d8405f /kernel.spec | |
parent | e15ee2111479955c9ad79127341d013c1719332b (diff) | |
download | kernel-45948240a7a67c34bb3227f458dc8ee14d7c37dd.tar.gz kernel-45948240a7a67c34bb3227f458dc8ee14d7c37dd.tar.xz kernel-45948240a7a67c34bb3227f458dc8ee14d7c37dd.zip |
Fix a bunch of CVEs
Diffstat (limited to 'kernel.spec')
-rw-r--r-- | kernel.spec | 84 |
1 files changed, 82 insertions, 2 deletions
diff --git a/kernel.spec b/kernel.spec index 21e0fb490..a740c5d9f 100644 --- a/kernel.spec +++ b/kernel.spec @@ -586,13 +586,71 @@ Patch503: KEYS-Make-use-of-platform-keyring-for-module-signature.patch # rhbz 1753099 Patch504: dwc3-fix.patch -Patch509: PATCH-v2-selinux-allow-labeling-before-policy-is-loaded.patch +Patch500: PATCH-v2-selinux-allow-labeling-before-policy-is-loaded.patch # it seems CONFIG_OPTIMIZE_INLINING has been forced now and is causing issues on ARMv7 # https://lore.kernel.org/patchwork/patch/1132459/ # https://lkml.org/lkml/2019/8/29/1772 Patch505: ARM-fix-__get_user_check-in-case-uaccess_-calls-are-not-inlined.patch +# CVE-2019-19074 rhbz 1774933 1774934 +Patch506: 0001-ath9k-release-allocated-buffer-if-timed-out.patch + +# CVE-2019-19073 rhbz 1774937 1774939 +Patch507: 0001-ath9k_htc-release-allocated-buffer-if-timed-out.patch + +# CVE-2019-19072 rhbz 1774946 1774947 +Patch508: 0001-tracing-Have-error-path-in-predicate_parse-free-its-.patch + +# CVE-2019-19071 rhbz 1774949 1774950 +Patch509: rsi-release-skb-if-rsi_prepare_beacon-fails.patch + +# CVE-2019-19070 rhbz 1774957 1774958 +Patch510: spi-gpio-prevent-memory-leak-in-spi_gpio_probe.patch + +# CVE-2019-19068 rhbz 1774963 1774965 +Patch511: rtl8xxxu-prevent-leaking-urb.patch + +# CVE-2019-19043 rhbz 1774972 1774973 +Patch512: net-next-v2-9-9-i40e-prevent-memory-leak-in-i40e_setup_macvlans.patch + +# CVE-2019-19066 rhbz 1774976 1774978 +Patch513: scsi-bfa-release-allocated-memory-in-case-of-error.patch + +# CVE-2019-19046 rhbz 1774988 1774989 +Patch514: ipmi-Fix-memory-leak-in-__ipmi_bmc_register.patch + +# CVE-2019-19050 rhbz 1774998 1775002 +# CVE-2019-19062 rhbz 1775021 1775023 +Patch515: crypto-user-fix-memory-leak-in-crypto_reportstat.patch + +# CVE-2019-19064 rhbz 1775010 1775011 +Patch516: spi-lpspi-fix-memory-leak-in-fsl_lpspi_probe.patch + +# CVE-2019-19063 rhbz 1775015 1775016 +Patch517: rtlwifi-prevent-memory-leak-in-rtl_usb_probe.patch + +# CVE-2019-19059 rhbz 1775042 1775043 +Patch518: 0001-iwlwifi-pcie-fix-memory-leaks-in-iwl_pcie_ctxt_info_.patch + +# CVE-2019-19058 rhbz 1775047 1775048 +Patch519: 0001-iwlwifi-dbg_ini-fix-memory-leak-in-alloc_sgtable.patch + +# CVE-2019-19057 rhbz 1775050 1775051 +Patch520: mwifiex-pcie-Fix-memory-leak-in-mwifiex_pcie_init_evt_ring.patch + +# CVE-2019-19053 rhbz 1775956 1775110 +Patch521: rpmsg-char-release-allocated-memory.patch + +# CVE-2019-19056 rhbz 1775097 1775115 +Patch522: mwifiex-pcie-fix-memory-leak-in-mwifiex_pcie_alloc_cmdrsp_buf.patch + +# CVE-2019-19055 rhbz 1775074 1775116 +Patch523: 0001-nl80211-fix-memory-leak-in-nl80211_get_ftm_responder.patch + +# CVE-2019-19054 rhbz 1775063 1775117 +Patch524: media-rc-prevent-memory-leak-in-cx23888_ir_probe.patch + # END OF PATCH DEFINITIONS %endif @@ -1794,7 +1852,29 @@ fi # # %changelog -* Thu Nov 21 2019 Laura Abbott <labbott@redhat.com> - 5.3.12-300 +* Thu Nov 21 2019 Justin M. Forbes <jforbes@fedoraproject.org> - 5.3.12-300 +- Fix CVE-2019-19074 (rhbz 1774933 1774934) +- Fix CVE-2019-19073 (rhbz 1774937 1774939) +- Fix CVE-2019-19072 (rhbz 1774946 1774947) +- Fix CVE-2019-19071 (rhbz 1774949 1774950) +- Fix CVE-2019-19070 (rhbz 1774957 1774958) +- Fix CVE-2019-19068 (rhbz 1774963 1774965) +- Fix CVE-2019-19043 (rhbz 1774972 1774973) +- Fix CVE-2019-19066 (rhbz 1774976 1774978) +- Fix CVE-2019-19046 (rhbz 1774988 1774989) +- Fix CVE-2019-19050 (rhbz 1774998 1775002) +- Fix CVE-2019-19062 (rhbz 1775021 1775023) +- Fix CVE-2019-19064 (rhbz 1775010 1775011) +- Fix CVE-2019-19063 (rhbz 1775015 1775016) +- Fix CVE-2019-19059 (rhbz 1775042 1775043) +- Fix CVE-2019-19058 (rhbz 1775047 1775048) +- Fix CVE-2019-19057 (rhbz 1775050 1775051) +- Fix CVE-2019-19053 (rhbz 1775956 1775110) +- Fix CVE-2019-19056 (rhbz 1775097 1775115) +- Fix CVE-2019-19055 (rhbz 1775074 1775116) +- Fix CVE-2019-19054 (rhbz 1775063 1775117) + +* Thu Nov 21 2019 Laura Abbott <labbott@redhat.com> - Linux v5.3.12 * Tue Nov 12 2019 Justin M. Forbes <jforbes@fedoraproject.org> - 5.3.11-300 |