Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-06-26 14:42:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

Many updates

Browse Source 
- Add OnePlus 6, 6T, 7, 7 Pro
- Ensure verity/avb keys are *always* copied
- Update cherry picks
This commit is contained in:
Tad 2020-08-29 16:03:11 -04:00
parent ec17d20f58
commit 0808ac1fd0
26 changed files with 1436 additions and 105 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
Manifests/Manifest_LAOS-15.1.xml
View File

@ -228,6 +228,11 @@
<!-- OnePlus 5T (dumpling) -->
<project path="device/oneplus/dumpling" name="LineageOS/android_device_oneplus_dumpling" remote="github" />
<!-- OnePlus 6 (enchilada) -->
<project path="device/oneplus/sdm845-common" name="LineageOS/android_device_oneplus_sdm845-common" remote="github" />
<project path="device/oneplus/enchilada" name="LineageOS/android_device_oneplus_enchilada" remote="github" />
<project path="kernel/oneplus/sdm845" name="LineageOS/android_kernel_oneplus_sdm845" remote="github" />
<!-- Samsung Common -->
<project path="device/samsung/qcom-common" name="LineageOS/android_device_samsung_qcom-common" remote="github" />
<project path="hardware/samsung" name="LineageOS/android_hardware_samsung" remote="github" />

14
Manifests/Manifest_LAOS-16.0.xml
View File

@ -209,6 +209,20 @@
<!-- OnePlus 5T (dumpling) -->
<project path="device/oneplus/dumpling" name="LineageOS/android_device_oneplus_dumpling" remote="github" />
<!-- OnePlus 6 (enchilada) -->
<project path="device/oneplus/common" name="LineageOS/android_device_oneplus_common" remote="github" />
<project path="device/oneplus/sdm845-common" name="LineageOS/android_device_oneplus_sdm845-common" remote="github" />
<project path="device/oneplus/enchilada" name="LineageOS/android_device_oneplus_enchilada" remote="github" />
<project path="kernel/oneplus/sdm845" name="LineageOS/android_kernel_oneplus_sdm845" remote="github" />
<!-- OnePlus 6T (fajita) -->
<project path="device/oneplus/fajita" name="LineageOS/android_device_oneplus_fajita" remote="github" />
<!-- OnePlus 7 Pro (guacamole) -->
<project path="device/oneplus/sm8150-common" name="LineageOS/android_device_oneplus_sm8150-common" remote="github" />
<project path="device/oneplus/guacamole" name="LineageOS/android_device_oneplus_guacamole" remote="github" />
<project path="kernel/oneplus/sm8150" name="LineageOS/android_kernel_oneplus_sm8150" remote="github" />
<!-- Razer Phone (cheryl) -->
<project path="device/razer/cheryl" name="LineageOS/android_device_razer_cheryl" remote="github" />
<project path="kernel/razer/msm8998" name="LineageOS/android_kernel_razer_msm8998" remote="github" />

17
Manifests/Manifest_LAOS-17.1.xml
View File

@ -203,6 +203,23 @@
<!-- OnePlus 5T (dumpling) -->
<project path="device/oneplus/dumpling" name="LineageOS/android_device_oneplus_dumpling" remote="github" />
<!-- OnePlus 6 (enchilada) -->
<project path="device/oneplus/common" name="LineageOS/android_device_oneplus_common" remote="github" />
<project path="device/oneplus/sdm845-common" name="LineageOS/android_device_oneplus_sdm845-common" remote="github" />
<project path="device/oneplus/enchilada" name="LineageOS/android_device_oneplus_enchilada" remote="github" />
<project path="kernel/oneplus/sdm845" name="LineageOS/android_kernel_oneplus_sdm845" remote="github" />
<!-- OnePlus 6T (fajita) -->
<project path="device/oneplus/fajita" name="LineageOS/android_device_oneplus_fajita" remote="github" />
<!-- OnePlus 7 (guacamoleb) -->
<project path="device/oneplus/guacamoleb" name="LineageOS/android_device_oneplus_guacamoleb" remote="github" />
<!-- OnePlus 7 Pro (guacamole) -->
<project path="device/oneplus/sm8150-common" name="LineageOS/android_device_oneplus_sm8150-common" remote="github" />
<project path="device/oneplus/guacamole" name="LineageOS/android_device_oneplus_guacamole" remote="github" />
<project path="kernel/oneplus/sm8150" name="LineageOS/android_kernel_oneplus_sm8150" remote="github" />
<!-- Razer Phone (cheryl) -->
<project path="device/razer/cheryl" name="LineageOS/android_device_razer_cheryl" remote="github" />
<project path="kernel/razer/msm8998" name="LineageOS/android_kernel_razer_msm8998" remote="github" />

53
Scripts/Common/Copy_Keys.sh Normal file
View File

@ -0,0 +1,53 @@
echo "Copying verity/avb public keys to kernels...";
cat "$DOS_SIGNING_KEYS/Amber/verity.x509.pem" >> "kernel/yandex/sdm660/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/beryllium/verity.x509.pem" >> "kernel/xiaomi/sdm845/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/blueline/verity.x509.pem" >> "kernel/google/crosshatch/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/blueline/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/bonito/verity.x509.pem" >> "kernel/google/bonito/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/bonito/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/cheeseburger/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/cheryl/verity.x509.pem" >> "kernel/razer/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/crosshatch/verity.x509.pem" >> "kernel/google/crosshatch/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/crosshatch/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/dumpling/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/enchilada/verity.x509.pem" >> "kernel/oneplus/sdm845/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/fajita/verity.x509.pem" >> "kernel/oneplus/sdm845/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/guacamoleb/verity.x509.pem" >> "kernel/oneplus/sm8150/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/guacamole/verity.x509.pem" >> "kernel/oneplus/sm8150/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/mata/verity.x509.pem" >> "kernel/essential/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/pro1/verity.x509.pem" >> "kernel/fxtec/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/sargo/verity.x509.pem" >> "kernel/google/bonito/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/sargo/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/starlte/verity.x509.pem" >> "kernel/samsung/universal9810/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/taimen/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/walleye/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/z2_plus/verity.x509.pem" >> "kernel/zuk/msm8996/certs/verity.x509.pem";
cp -v "$DOS_SIGNING_KEYS/Amber/verifiedboot_relkeys.der.x509" "kernel/yandex/sdm660/verifiedboot_Amber_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/beryllium/verifiedboot_relkeys.der.x509" "kernel/xiaomi/sdm845/verifiedboot_beryllium_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/blueline/verifiedboot_relkeys.der.x509" "kernel/google/crosshatch/verifiedboot_blueline_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/blueline/verifiedboot_relkeys.der.x509" "kernel/google/msm-4.9/verifiedboot_blueline_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/bonito/verifiedboot_relkeys.der.x509" "kernel/google/bonito/verifiedboot_bonito_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/bonito/verifiedboot_relkeys.der.x509" "kernel/google/msm-4.9/verifiedboot_bonito_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/cheeseburger/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8998/verifiedboot_cheeseburger_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/cheryl/verifiedboot_relkeys.der.x509" "kernel/razer/msm8998/verifiedboot_cheryl_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/crosshatch/verifiedboot_relkeys.der.x509" "kernel/google/crosshatch/verifiedboot_crosshatch_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/crosshatch/verifiedboot_relkeys.der.x509" "kernel/google/msm-4.9/verifiedboot_crosshatch_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/dumpling/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8998/verifiedboot_dumpling_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/enchilada/verifiedboot_relkeys.der.x509" "kernel/oneplus/sdm845/verifiedboot_enchilada_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/fajita/verifiedboot_relkeys.der.x509" "kernel/oneplus/sdm845/verifiedboot_fajita_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/griffin/verifiedboot_relkeys.der.x509" "kernel/motorola/msm8996/verifiedboot_griffin_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/guacamoleb/verifiedboot_relkeys.der.x509" "kernel/oneplus/sm8150/verifiedboot_guacamoleb_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/guacamole/verifiedboot_relkeys.der.x509" "kernel/oneplus/sm8150/verifiedboot_guacamole_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/marlin/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_marlin_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/mata/verifiedboot_relkeys.der.x509" "kernel/essential/msm8998/verifiedboot_mata_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/oneplus3/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8996/verifiedboot_oneplus3_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/pro1/verifiedboot_relkeys.der.x509" "kernel/fxtec/msm8998/verifiedboot_pro1_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/sailfish/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_sailfish_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/sargo/verifiedboot_relkeys.der.x509" "kernel/google/bonito/verifiedboot_sargo_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/sargo/verifiedboot_relkeys.der.x509" "kernel/google/msm-4.9/verifiedboot_sargo_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/starlte/verifiedboot_relkeys.der.x509" "kernel/samsung/universal9810/verifiedboot_starlte_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/taimen/verifiedboot_relkeys.der.x509" "kernel/google/wahoo/verifiedboot_taimen_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/walleye/verifiedboot_relkeys.der.x509" "kernel/google/wahoo/verifiedboot_walleye_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/z2_plus/verifiedboot_relkeys.der.x509" "kernel/zuk/msm8996/verifiedboot_z2_plus_dos_relkeys.der.x509";
cp -v "$DOS_SIGNING_KEYS/zenfone3/verifiedboot_relkeys.der.x509" "kernel/asus/msm8953/verifiedboot_zenfone3_dos_relkeys.der.x509";
echo "Copied keys to kernels!";

4
Scripts/Common/Deblob.sh
View File

@ -19,7 +19,7 @@
#Outcome: Increased battery/performance/privacy/security, Decreased ROM size
#TODO: Clean init*.rc files, Modularize, Remove more variants
echo "Deblobbing..."
echo "Deblobbing...";
#
#START OF BLOBS ARRAY
@ -703,4 +703,4 @@ rm -rf vendor/samsung/nodevice;
cd "$DOS_BUILD_BASE";
echo "Deblobbing complete!"
echo "Deblobbing complete!";

5
Scripts/Common/Fix_CVE_Patchers.sh
View File

@ -33,7 +33,7 @@ commentPatches android_kernel_asus_grouper.sh "CVE-2017-15868";
commentPatches android_kernel_asus_msm8916.sh "CVE-2018-13913/ANY/0001.patch";
commentPatches android_kernel_asus_msm8953.sh "CVE-2017-13162/3.18/0001.patch";
commentPatches android_kernel_cyanogen_msm8916.sh "CVE-2018-13913/ANY/0001.patch";
commentPatches android_kernel_essential_msm8998.sh "CVE-2017-13218/4.4/0026.patch" "CVE-2019-14047/ANY/0002.patch";
commentPatches android_kernel_essential_msm8998.sh "0008-Graphene-Kernel_Hardening/4.4/0018.patch" "CVE-2017-13218/4.4/0026.patch" "CVE-2019-14047/ANY/0002.patch";
commentPatches android_kernel_fxtec_msm8998.sh "CVE-2019-11599" "CVE-2019-16746" "CVE-2019-18282" "CVE-2019-19319" "CVE-2019-ctnl-addr-leak" "CVE-2020-1749" "CVE-2020-8992";
commentPatches android_kernel_google_bonito.sh "CVE-2020-0067";
commentPatches android_kernel_google_dragon.sh "CVE-2015-4167/^3.19.1/0001.patch";
@ -52,7 +52,8 @@ commentPatches android_kernel_motorola_msm8996.sh "0001-LinuxIncrementals/3.18/3
commentPatches android_kernel_nextbit_msm8992.sh "CVE-2018-3585/3.10/0001.patch";
commentPatches android_kernel_oneplus_msm8994.sh "CVE-2018-3585/3.10/0001.patch";
commentPatches android_kernel_oneplus_msm8996.sh "CVE-2017-13162/3.18/0001.patch" "CVE-2019-14070/ANY/0006.patch";
commentPatches android_kernel_oneplus_msm8998.sh "0008-Graphene-Kernel_Hardening/4.4/0010.patch" "0008-Graphene-Kernel_Hardening/4.4/0011.patch" "0008-Graphene-Kernel_Hardening/4.4/0013.patch" "CVE-2019-11599";
commentPatches android_kernel_oneplus_msm8998.sh "0008-Graphene-Kernel_Hardening/4.4/0010.patch" "0008-Graphene-Kernel_Hardening/4.4/0011.patch" "0008-Graphene-Kernel_Hardening/4.4/0013.patch" "0008-Graphene-Kernel_Hardening/4.4/0018.patch" "CVE-2019-11599";
commentPatches android_kernel_oneplus_sm8150.sh "CVE-2019-16746" "CVE-2019-19319" "CVE-2020-0067" "CVE-2020-8992";
commentPatches android_kernel_razer_msm8998.sh "0008-Graphene-Kernel_Hardening/4.4/0010.patch" "0008-Graphene-Kernel_Hardening/4.4/0011.patch" "0008-Graphene-Kernel_Hardening/4.4/0013.patch" "CVE-2019-14070/ANY/0005.patch";
commentPatches android_kernel_samsung_smdk4412.sh "CVE-2016-8463/ANY/0001.patch";
commentPatches android_kernel_samsung_universal8890.sh "CVE-2016-7917" "CVE-2018-1092" "CVE-2018-17972";

4
Scripts/LineageOS-14.1/Functions.sh
View File

@ -117,12 +117,12 @@ patchWorkspace() {
source build/envsetup.sh;
repopick -it n_asb_09-2018-qcom;
repopick -it ibss-mode-nougat;
repopick -i 282389; #update webview
repopick -it n-asb-2020-08;
repopick -i 285265; #update webview
export DOS_GRAPHENE_MALLOC=false; #patches apply, compile fails
source "$DOS_SCRIPTS/Patch.sh";
source "$DOS_SCRIPTS_COMMON/Copy_Keys.sh";
source "$DOS_SCRIPTS/Defaults.sh";
source "$DOS_SCRIPTS/Rebrand.sh";
source "$DOS_SCRIPTS/Theme.sh";

5
Scripts/LineageOS-14.1/Patch.sh
View File

@ -299,11 +299,6 @@ find "kernel" -maxdepth 2 -mindepth 2 -type d -print0 | xargs -0 -n 1 -P 4 -I {}
cd "$DOS_BUILD_BASE";
deblobAudio;
#Verity
cp "$DOS_SIGNING_KEYS/griffin/verifiedboot_relkeys.der.x509" "kernel/motorola/msm8996/verifiedboot_griffin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/marlin/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_marlin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/sailfish/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_sailfish_dos_relkeys.der.x509";
#Fixes
#Fix broken options enabled by hardenDefconfig()
sed -i "s/# CONFIG_KPROBES is not set/CONFIG_KPROBES=y/" kernel/amazon/hdx-common/arch/arm/configs/*hdx*_defconfig; #Breaks on compile

2
Scripts/LineageOS-15.1/CVE_Patchers/android_kernel_essential_msm8998.sh
View File

@ -22,7 +22,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0015.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2014-9900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch

2
Scripts/LineageOS-15.1/CVE_Patchers/android_kernel_oneplus_msm8998.sh
View File

@ -11,7 +11,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0012.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2014-9900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch

398
Scripts/LineageOS-15.1/CVE_Patchers/android_kernel_oneplus_sdm845.sh Normal file
View File

@ -0,0 +1,398 @@
#!/bin/bash
cd "$DOS_BUILD_BASE""kernel/oneplus/sdm845"
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.9/4.9.0181-0182.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.9/4.9.0183-0184.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0003-syzkaller-Misc/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/0007-Accelerated_AES/3.10+/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/0007-Accelerated_AES/3.10+/0020.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0024.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0025.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0026.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0027.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0028.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0029.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0030.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0031.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0032.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0033.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0034.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0035.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0036.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0037.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0038.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2014-9900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-8553/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-3695/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0605/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0750/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0861/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-7477/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-8824/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-11472/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13168/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13693/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13694/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13695/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16536/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16538/4.9/0015.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16538/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16644/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16911/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16912/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16913/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16914/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16995/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-17450/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-17558/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-17741/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-17805/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-17864/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-17975/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18203/^4.14.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18208/^4.14.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18216/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18222/^4.12/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18224/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18255/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18509/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18595/^4.14.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000252/^4.13.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000405/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000407/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000410/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1066/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1068/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1068/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1087/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1092/4.4-^4.15.15/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1093/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1093/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1108/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1118/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1120/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.9/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1129/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1130/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5332/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5333/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5750/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5803/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5953/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5995/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-6412/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-7492/^4.14.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-7566/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-7755/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-7757/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-7995/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8087/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8781/^4.15/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8897/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9516/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9518/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10021/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10087/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10124/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10323/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10853/4.9/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10853/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10877/4.4+/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10878/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10879/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10879/4.9/0015.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10880/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10881/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10882/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10883/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10938/4.0-^4.13/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10940/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11232/^4.10.2/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11506/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11988/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12014/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12232/^4.17.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12233/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13053/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13094/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13405/3.16-^4.17.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13406/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13899/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13905/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13917/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14609/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14610/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14611/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14612/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14617/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14633/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14734/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-15471/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-15594/^4.18.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16276/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16658/^4.18.6/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16862/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16871/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16884/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-17972/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18021/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18021/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18281/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18386/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18559/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18690/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18710/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19407/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19824/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19985/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20169/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20511/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20836/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20855/^4.18.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20856/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20961/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20976/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-21008/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000004/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000026/4.8+/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000026/4.8+/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000204/3.18-^4.16/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0136/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2024/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2101/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2279/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2283/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2284/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2301/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2330/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2333/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3459/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3460/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3701/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3819/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3882/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3900/4.9/0021.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-5489/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-6133/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-6974/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-7221/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-7222/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8912/^4.20.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8980/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9213/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9245/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9453/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9455/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9456/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9500/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9503/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.9/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.9/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10124/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10126/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10142/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10207/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10220/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10220/4.9/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10502/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10515/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10527/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10529/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10530/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10538/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10544/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10556/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10571/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10572/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10585/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10638/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11486/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.9/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11599/^4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11810/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11833/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11884/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12378/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12455/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12456/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12614/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12818/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13272/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13631/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13648/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14034/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14040/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14041/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14047/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14049/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14055/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14079/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14104/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14615/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14814/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14821/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14835/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14895/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14896/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14901/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15030/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15098/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15211/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15212/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15213/^5.2.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15214/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15215/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15216/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15217/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15218/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15219/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15220/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15221/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15239/^4.14.139/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15292/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15505/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15538/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15666/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15807/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15916/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15917/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15924/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15926/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15927/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16232/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16233/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16413/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16746/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16921/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17052/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17053/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17054/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17055/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17056/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17075/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17133/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17351/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17666/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18282/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18675/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18683/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18806/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18809/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19049/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/^5.3.11/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19052/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19056/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19057/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19062/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19063/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19066/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19068/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19227/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19318/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0021.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0022.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0023.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0024.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19332/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19447/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19462/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19524/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19525/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19530/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19531/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19532/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19533/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19534/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19535/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19536/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19537/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19947/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19965/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19966/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20054/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20054/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20095/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20096/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20636/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20806/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20810/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20812/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-ctnl-addr-leak/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0009/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0255/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-2732/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3610/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8647/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8992/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-9383/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10711/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10720/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10757/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10769/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10773/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10942/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11494/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11565/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11609/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11668/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12464/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12653/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12654/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12769/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12770/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12771/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12826/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13143/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13974/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14356/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14416/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15393/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24394/^5.7.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10853/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/4.9/0006.patch
editKernelLocalversion "-dos.p394"
cd "$DOS_BUILD_BASE"

7
Scripts/LineageOS-15.1/Functions.sh
View File

@ -18,7 +18,7 @@
#Last verified: 2018-04-27
patchAllKernels() {
startPatcher "kernel_asus_fugu kernel_asus_msm8916 kernel_cyanogen_msm8916 kernel_cyanogen_msm8974 kernel_essential_msm8998 kernel_fairphone_msm8974 kernel_google_dragon kernel_google_marlin kernel_google_msm kernel_google_wahoo kernel_htc_flounder kernel_htc_msm8974 kernel_htc_msm8994 kernel_huawei_angler kernel_lge_bullhead kernel_lge_g3 kernel_lge_hammerhead kernel_lge_mako kernel_lge_msm8974 kernel_lge_msm8996 kernel_moto_shamu kernel_motorola_msm8974 kernel_motorola_msm8996 kernel_nextbit_msm8992 kernel_oneplus_msm8994 kernel_oneplus_msm8996 kernel_oneplus_msm8998 kernel_oppo_msm8974 kernel_samsung_msm8974 kernel_samsung_smdk4412 kernel_samsung_universal9810 kernel_xiaomi_sdm845 kernel_zte_msm8996";
startPatcher "kernel_asus_fugu kernel_asus_msm8916 kernel_cyanogen_msm8916 kernel_cyanogen_msm8974 kernel_essential_msm8998 kernel_fairphone_msm8974 kernel_google_dragon kernel_google_marlin kernel_google_msm kernel_google_wahoo kernel_htc_flounder kernel_htc_msm8974 kernel_htc_msm8994 kernel_huawei_angler kernel_lge_bullhead kernel_lge_g3 kernel_lge_hammerhead kernel_lge_mako kernel_lge_msm8974 kernel_lge_msm8996 kernel_moto_shamu kernel_motorola_msm8974 kernel_motorola_msm8996 kernel_nextbit_msm8992 kernel_oneplus_msm8994 kernel_oneplus_msm8996 kernel_oneplus_msm8998 kernel_oneplus_sdm845 kernel_oppo_msm8974 kernel_samsung_msm8974 kernel_samsung_smdk4412 kernel_samsung_universal9810 kernel_xiaomi_sdm845 kernel_zte_msm8996";
}
export -f patchAllKernels;
@ -95,6 +95,8 @@ buildAll() {
buildDevice mata verity;
buildDevice taimen avb;
buildDevice walleye avb;
buildDevice beryllium;
buildDevice enchilada avb;
buildDeviceUserDebug i9100;
buildDevice starlte; #broken - device/samsung/universal9810-common/audio: MODULE.TARGET.SHARED_LIBRARIES.libshim_audio_32 already defined by device/samsung/star-common/audio
fi;
@ -105,11 +107,12 @@ patchWorkspace() {
if [ "$DOS_MALWARE_SCAN_ENABLED" = true ]; then scanForMalware false "$DOS_PREBUILT_APPS $DOS_BUILD_BASE/build $DOS_BUILD_BASE/device $DOS_BUILD_BASE/vendor/lineage"; fi;
source build/envsetup.sh;
repopick -i 282389; #update webview
repopick -i 285265; #update webview
export DOS_GRAPHENE_MALLOC=false; #patches apply, compile fails
source "$DOS_SCRIPTS/Patch.sh";
source "$DOS_SCRIPTS_COMMON/Copy_Keys.sh";
source "$DOS_SCRIPTS/Defaults.sh";
source "$DOS_SCRIPTS/Rebrand.sh";
if [ "$DOS_OVERCLOCKS_ENABLED" = true ]; then source "$DOS_SCRIPTS_COMMON/Overclock.sh"; fi;

11
Scripts/LineageOS-15.1/Patch.sh
View File

@ -253,17 +253,6 @@ find "kernel" -maxdepth 2 -mindepth 2 -type d -print0 | xargs -0 -n 1 -P 4 -I {}
cd "$DOS_BUILD_BASE";
deblobAudio;
#Verity
cat "$DOS_SIGNING_KEYS/cheeseburger/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/dumpling/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/mata/verity.x509.pem" >> "kernel/essential/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/starlte/verity.x509.pem" >> "kernel/samsung/universal9810/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/taimen/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/walleye/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cp "$DOS_SIGNING_KEYS/griffin/verifiedboot_relkeys.der.x509" "kernel/motorola/msm8996/verifiedboot_griffin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/marlin/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_marlin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/sailfish/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_sailfish_dos_relkeys.der.x509";
#Fix broken options enabled by hardenDefconfig()
sed -i "s/CONFIG_DEBUG_RODATA=y/# CONFIG_DEBUG_RODATA is not set/" kernel/google/msm/arch/arm/configs/lineageos_*_defconfig; #Breaks on compile
sed -i "s/CONFIG_STRICT_MEMORY_RWX=y/# CONFIG_STRICT_MEMORY_RWX is not set/" kernel/lge/msm8996/arch/arm64/configs/lineageos_*_defconfig; #Breaks on compile

2
Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_essential_msm8998.sh
View File

@ -16,7 +16,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-1583/^4.6.3/0003.patch

2
Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh
View File

@ -9,7 +9,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0012.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-1583/^4.6.3/0003.patch

298
Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh Normal file
View File

@ -0,0 +1,298 @@
#!/bin/bash
cd "$DOS_BUILD_BASE""kernel/oneplus/sdm845"
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.9/4.9.0112-0113.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.9/4.9.0150-0151.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.9/4.9.0181-0182.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.9/4.9.0183-0184.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0007-Accelerated_AES/3.10+/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/0007-Accelerated_AES/3.10+/0020.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0024.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0025.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0026.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0027.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0028.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0029.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0030.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0031.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0032.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0033.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0034.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0035.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0036.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0037.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0038.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2014-9900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-8553/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-3695/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0605/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0750/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-7477/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13693/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13694/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-14875/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18216/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18224/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18509/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000252/^4.13.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.9/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1129/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5953/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5995/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-7755/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10323/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10879/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10879/4.9/0015.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10880/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10938/4.0-^4.13/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11506/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12232/^4.17.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12233/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12896/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13053/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13094/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14609/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14610/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14611/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14612/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14617/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14633/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14678/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14734/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-15471/4.9/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-15572/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-15594/^4.18.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16658/^4.18.6/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16862/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16871/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-17972/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18021/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18021/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18281/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18690/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18710/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19407/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19824/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19985/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20169/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20511/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20836/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20855/^4.18.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20856/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20976/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-21008/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000026/4.8+/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000026/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0136/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2024/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2101/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3459/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3460/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3701/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3819/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3882/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3900/4.9/0021.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-5489/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-6133/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-6974/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-7221/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-7222/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8912/^4.20.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8980/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9213/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9245/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9453/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9455/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9500/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9503/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.9/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.9/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10124/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10126/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10142/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10207/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10638/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11486/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.9/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.9/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11599/^4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11810/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11815/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11833/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11884/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12378/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12455/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12456/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12614/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12818/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13272/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13631/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13648/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14029/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14040/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14041/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14088/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14104/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/4.9/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14615/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14814/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14821/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14835/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14895/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14896/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14901/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15030/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15098/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15211/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15212/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15213/^5.2.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15214/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15215/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15216/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15217/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15218/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15219/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15220/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15221/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15292/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15505/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15538/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15666/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15807/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15916/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15917/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15924/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15926/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15927/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16232/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16233/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16413/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16746/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16921/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16995/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17052/4.9/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17053/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17054/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17055/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17056/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17075/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17133/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17351/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17666/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18282/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18683/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18806/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18809/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19049/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/^5.3.11/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19052/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19056/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19057/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19062/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19063/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19066/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19068/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19227/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19318/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0021.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0022.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0023.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.9/0024.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19332/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19447/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19462/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19524/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19525/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19530/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19531/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19532/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19533/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19534/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19535/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19536/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19537/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19947/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19965/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19966/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20054/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20054/4.9/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20095/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20096/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20636/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20806/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20810/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20812/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-ctnl-addr-leak/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0009/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0255/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-2732/4.9/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3630/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3680/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8647/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8992/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-9383/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10711/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10720/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10757/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10769/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10773/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10942/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11494/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11565/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11609/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11668/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12464/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12652/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12653/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12654/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12769/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12770/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12771/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12826/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13143/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13974/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14356/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14416/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15393/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24394/^5.7.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14088/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/4.9/0006.patch
editKernelLocalversion "-dos.p294"
cd "$DOS_BUILD_BASE"

311
Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh Normal file
View File

@ -0,0 +1,311 @@
#!/bin/bash
cd "$DOS_BUILD_BASE""kernel/oneplus/sm8150"
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.14/4.14.0126-0127.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.14/4.14.0130-0131.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0003-syzkaller-Misc/ANY/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2014-9900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-8553/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-3695/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0750/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18232/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.14/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.14/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1128/4.14/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1129/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5953/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10323/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13097/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14610/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14611/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14612/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14614/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-14625/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16862/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16882/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-16884/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18397/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18397/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18397/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18397/4.14/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18397/4.14/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-18690/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19407/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-19985/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20169/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20669/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20836/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20855/^4.18.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20976/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-21008/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000026/4.8+/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-1000026/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0136/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0136/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-1999/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2101/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2213/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2279/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2284/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2333/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3459/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3460/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3701/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3819/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3874/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3882/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3900/4.14/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3900/4.14/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-5489/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-6133/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-6974/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-7221/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-7222/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8912/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8980/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9213/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9245/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9444/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9453/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9455/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9466/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9503/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.14/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.14/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10124/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10126/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10142/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10207/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10220/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10220/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10515/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10520/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10529/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10530/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10544/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10555/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10556/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10558/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10572/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10585/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10621/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10638/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10639/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11085/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11191/^5.0.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11486/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11487/4.14/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11810/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11815/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11833/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11884/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12378/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12455/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12456/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12614/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12615/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12818/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13272/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13631/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13648/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14029/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14034/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14034/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14041/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14091/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14099/ANY/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14100/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14104/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14122/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/^5.2.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/^5.2.3/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14615/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14763/^4.16.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14814/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14821/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14835/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14895/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14896/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14901/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15030/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15090/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15098/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15099/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15211/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15212/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15213/^5.2.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15214/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15214/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15215/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15216/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15217/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15218/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15219/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15220/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15221/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15292/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15505/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15538/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15666/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15807/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15916/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15918/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15921/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15924/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15925/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15926/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15927/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16232/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16233/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16234/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16413/4.14/0003.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16746/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16921/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16995/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17052/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17053/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17054/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17055/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17056/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17075/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17133/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17351/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17666/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18282/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18683/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18786/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18806/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18808/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18809/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19045/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19049/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/^5.3.11/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19052/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19056/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19057/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19058/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19061/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19062/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19063/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19065/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19066/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19068/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19071/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19075/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19078/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19227/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19318/^5.3.11/0001.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0009.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0010.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0011.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19332/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19447/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19462/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19524/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19525/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19526/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19529/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19530/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19531/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19532/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19533/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19534/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19535/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19536/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19537/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19543/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19602/^5.4.2/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19947/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19965/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19966/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20054/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20054/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20095/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20096/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20636/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20806/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20810/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20811/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20812/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-ctnl-addr-leak/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0009/4.14/0003.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0255/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-2732/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3630/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3646/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3647/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-7053/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8647/4.14/0003.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8992/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-9383/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10711/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10720/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10732/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10757/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10769/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10773/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10781/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10942/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11494/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11565/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11609/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11668/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12464/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12652/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12653/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12654/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12657/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12769/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12770/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12771/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12826/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13143/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13974/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14331/^5.7.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14416/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15393/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15780/^5.7.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24394/^5.7.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/4.14/0003.patch
editKernelLocalversion "-dos.p307"
cd "$DOS_BUILD_BASE"

10
Scripts/LineageOS-16.0/Functions.sh
View File

@ -18,7 +18,7 @@
#Last verified: 2018-04-27
patchAllKernels() {
startPatcher "kernel_asus_fugu kernel_asus_msm8953 kernel_cyanogen_msm8916 kernel_cyanogen_msm8974 kernel_essential_msm8998 kernel_fairphone_msm8974 kernel_fxtec_msm8998 kernel_google_bonito kernel_google_crosshatch kernel_google_marlin kernel_google_msm kernel_google_wahoo kernel_htc_msm8974 kernel_lge_g3 kernel_lge_hammerhead kernel_lge_mako kernel_lge_msm8974 kernel_moto_shamu kernel_motorola_msm8974 kernel_motorola_msm8996 kernel_nextbit_msm8992 kernel_oneplus_msm8994 kernel_oneplus_msm8996 kernel_oneplus_msm8998 kernel_oppo_msm8974 kernel_razer_msm8998 kernel_samsung_jf kernel_samsung_msm8974 kernel_samsung_smdk4412 kernel_xiaomi_sdm845 kernel_yandex_sdm660 kernel_zuk_msm8996";
startPatcher "kernel_asus_fugu kernel_asus_msm8953 kernel_cyanogen_msm8916 kernel_cyanogen_msm8974 kernel_essential_msm8998 kernel_fairphone_msm8974 kernel_fxtec_msm8998 kernel_google_bonito kernel_google_crosshatch kernel_google_marlin kernel_google_msm kernel_google_wahoo kernel_htc_msm8974 kernel_lge_g3 kernel_lge_hammerhead kernel_lge_mako kernel_lge_msm8974 kernel_moto_shamu kernel_motorola_msm8974 kernel_motorola_msm8996 kernel_nextbit_msm8992 kernel_oneplus_msm8994 kernel_oneplus_msm8996 kernel_oneplus_msm8998 kernel_oneplus_sdm845 kernel_oneplus_sm8150 kernel_oppo_msm8974 kernel_razer_msm8998 kernel_samsung_jf kernel_samsung_msm8974 kernel_samsung_smdk4412 kernel_xiaomi_sdm845 kernel_yandex_sdm660 kernel_zuk_msm8996";
}
export -f patchAllKernels;
@ -110,8 +110,13 @@ buildAll() {
buildDevice taimen avb;
buildDevice walleye avb;
#SD845
buildDevice beryllium;
buildDevice crosshatch avb;
buildDevice blueline avb;
buildDevice enchilada avb;
buildDevice fajita avb;
#SD855
buildDevice guacamole avb;
#SD660
buildDevice Amber verity;
#SD670
@ -127,9 +132,10 @@ patchWorkspace() {
source build/envsetup.sh;
repopick -it hh-p-sepolicy;
repopick -i 232948; #wahoo: liblight: close fd
repopick -i 282389; #update webview
repopick -i 285265; #update webview
source "$DOS_SCRIPTS/Patch.sh";
source "$DOS_SCRIPTS_COMMON/Copy_Keys.sh";
source "$DOS_SCRIPTS/Defaults.sh";
source "$DOS_SCRIPTS/Rebrand.sh";
if [ "$DOS_OVERCLOCKS_ENABLED" = true ]; then source "$DOS_SCRIPTS_COMMON/Overclock.sh"; fi;

24
Scripts/LineageOS-16.0/Patch.sh
View File

@ -282,30 +282,6 @@ find "kernel" -maxdepth 2 -mindepth 2 -type d -print0 | xargs -0 -n 1 -P 4 -I {}
cd "$DOS_BUILD_BASE";
deblobAudio;
#Verity
cat "$DOS_SIGNING_KEYS/Amber/verity.x509.pem" >> "kernel/yandex/sdm660/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/blueline/verity.x509.pem" >> "kernel/google/crosshatch/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/bonito/verity.x509.pem" >> "kernel/google/bonito/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/cheeseburger/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/cheryl/verity.x509.pem" >> "kernel/razer/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/crosshatch/verity.x509.pem" >> "kernel/google/crosshatch/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/dumpling/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/mata/verity.x509.pem" >> "kernel/essential/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/sargo/verity.x509.pem" >> "kernel/google/bonito/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/taimen/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/walleye/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/z2_plus/verity.x509.pem" >> "kernel/zuk/msm8996/certs/verity.x509.pem";
cp "$DOS_SIGNING_KEYS/Amber/verifiedboot_relkeys.der.x509" "kernel/yandex/sdm660/verifiedboot_Amber_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/cheeseburger/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8998/verifiedboot_cheeseburger_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/cheryl/verifiedboot_relkeys.der.x509" "kernel/razer/msm8998/verifiedboot_cheryl_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/dumpling/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8998/verifiedboot_dumpling_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/griffin/verifiedboot_relkeys.der.x509" "kernel/motorola/msm8996/verifiedboot_griffin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/marlin/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_marlin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/oneplus3/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8996/verifiedboot_oneplus3_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/sailfish/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_sailfish_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/z2_plus/verifiedboot_relkeys.der.x509" "kernel/zuk/msm8996/verifiedboot_z2_plus_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/zenfone3/verifiedboot_relkeys.der.x509" "kernel/asus/msm8953/verifiedboot_zenfone3_dos_relkeys.der.x509";
#Fix broken options enabled by hardenDefconfig()
sed -i "s/CONFIG_STRICT_MEMORY_RWX=y/# CONFIG_STRICT_MEMORY_RWX is not set/" kernel/asus/msm8953/arch/arm64/configs/*_defconfig; #Breaks on compile
sed -i "s/CONFIG_DEBUG_RODATA=y/# CONFIG_DEBUG_RODATA is not set/" kernel/google/msm/arch/arm/configs/lineageos_*_defconfig; #Breaks on compile

11
Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_essential_msm8998.sh
View File

@ -15,8 +15,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-1583/^4.6.3/0003.patch
@ -49,7 +48,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5906/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5908/4.4/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5909/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5910/4.4/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11273/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11818/ANY/0002.patch
@ -60,7 +58,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11987/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11988/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11988/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-12010/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13094/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13912/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13913/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13914/ANY/0001.patch
@ -91,11 +88,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14041/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.4/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/^5.0/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.4/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.4/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
editKernelLocalversion "-dos.p97"
editKernelLocalversion "-dos.p90"
cd "$DOS_BUILD_BASE"

11
Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_msm8998.sh
View File

@ -8,8 +8,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0012.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0013.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0014.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0017.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
#git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.4/0018.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-1583/^4.6.3/0003.patch
@ -33,10 +32,8 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18204/^4.14.2/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18306/4.4/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000252/^4.13.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-11986/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13094/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13098/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13099/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13100/4.4/0004.patch
@ -57,12 +54,8 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14072/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.4/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/^5.0/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.4/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.4/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13096/^4.17.3/0001.patch
editKernelLocalversion "-dos.p64"
editKernelLocalversion "-dos.p57"
cd "$DOS_BUILD_BASE"

68
Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_sdm845.sh Normal file
View File

@ -0,0 +1,68 @@
#!/bin/bash
cd "$DOS_BUILD_BASE""kernel/oneplus/sdm845"
git apply $DOS_PATCHES_LINUX_CVES/0007-Accelerated_AES/3.10+/0016.patch
git apply $DOS_PATCHES_LINUX_CVES/0007-Accelerated_AES/3.10+/0020.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0024.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0025.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0026.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0027.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0028.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0029.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0030.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0031.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0032.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0033.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0034.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0035.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0036.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0037.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/4.9/0038.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-3695/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-16USB/ANY/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0605/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/4.9/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-7477/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13693/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13694/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-14875/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000252/^4.13.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10323/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13094/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20855/^4.18.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8912/^4.20.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12378/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12455/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12456/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14104/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16921/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19318/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19947/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20810/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10766/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.9/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12771/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14356/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15393/4.9/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24394/^5.7.8/0001.patch
editKernelLocalversion "-dos.p64"
cd "$DOS_BUILD_BASE"

233
Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_sm8150.sh Normal file
View File

@ -0,0 +1,233 @@
#!/bin/bash
cd "$DOS_BUILD_BASE""kernel/oneplus/sm8150"
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.14/4.14.0126-0127.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.14/4.14.0130-0131.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0001-LinuxIncrementals/4.14/4.14.0137-0138.patch --exclude=Makefile
git apply $DOS_PATCHES_LINUX_CVES/0003-syzkaller-Misc/ANY/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2014-9900/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-7837/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-8553/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-3695/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0750/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-14875/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-18232/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-10323/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20669/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20836/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20855/^4.18.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20976/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-21008/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0136/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0136/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-0154/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2181/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-2213/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3846/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3874/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3900/4.14/0010.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-3900/4.14/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-5489/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9444/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9453/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9466/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9503/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.14/0008.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9506/4.14/0009.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10126/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10142/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10207/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10220/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10220/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10567/ANY/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-10638/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11191/^5.0.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-11884/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12378/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12455/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12456/^5.1.5/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12614/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12615/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13272/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13631/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-13648/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14023/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14034/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14034/ANY/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14041/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14091/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14099/ANY/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14100/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14104/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14122/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/^5.2.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14284/^5.2.3/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14615/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14814/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14821/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14835/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14895/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14896/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14901/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15030/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15090/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15098/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15099/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15211/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15212/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15213/^5.2.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15215/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15217/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15218/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15219/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15221/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15505/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15538/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15666/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15807/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15918/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15925/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15926/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16232/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16233/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16234/4.14/0002.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16746/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16921/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17052/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17053/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17054/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17055/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17056/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17075/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17133/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17351/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-17666/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18282/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18683/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18786/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18806/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18808/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-18809/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19045/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19049/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/^5.3.11/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19052/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19056/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19057/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19058/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19061/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19062/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19063/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19065/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19066/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19068/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19071/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19075/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19078/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19227/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19318/^5.3.11/0001.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0009.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0010.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0011.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19319/4.14/0012.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19332/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19447/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19462/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19524/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19525/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19526/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19527/4.14/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19528/^5.3.7/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19529/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19530/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19531/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19532/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19533/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19534/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19535/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19536/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19537/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19543/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19602/^5.4.2/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19922/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19947/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19965/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19966/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20095/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20096/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20636/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20806/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20810/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20812/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-ctnl-addr-leak/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0009/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0041/ANY/0001.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0255/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-2732/4.14/0007.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3630/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3646/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-3647/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-7053/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8428/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8647/4.14/0003.patch
#git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-8992/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-9383/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10690/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10711/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10720/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10732/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10757/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10766/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10773/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10781/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-10942/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11494/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11565/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11609/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11668/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12464/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12652/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12653/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12654/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.14/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12656/4.14/0005.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12657/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12769/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12770/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12771/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-12826/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13143/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-13974/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14331/^5.7.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14416/4.14/0003.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15393/4.14/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-15780/^5.7.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24394/^5.7.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-UNKNOWN/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/4.14/0003.patch
editKernelLocalversion "-dos.p229"
cd "$DOS_BUILD_BASE"

8
Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sdm845.sh
View File

@ -32,9 +32,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-13694/^4.12.9/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-14875/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-1000252/^4.13.3/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5897/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-8043/^4.15.8/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0002.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-13094/^4.17.3/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-20855/^4.18.7/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-8912/^4.20.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12378/^5.1.5/0001.patch
@ -45,15 +43,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16921/^4.17/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-16994/4.9/0004.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19051/4.9/0011.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19054/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19073/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19074/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19318/^5.3.11/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.4/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/4.9/0006.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-11608/^5.6.1/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-14314/ANY/0001.patch
git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24394/^5.7.8/0001.patch
editKernelLocalversion "-dos.p55"
editKernelLocalversion "-dos.p49"
cd "$DOS_BUILD_BASE"

12
Scripts/LineageOS-17.1/Functions.sh
View File

@ -18,7 +18,7 @@
#Last verified: 2020-04-14
patchAllKernels() {
startPatcher "kernel_cyanogen_msm8916 kernel_essential_msm8998 kernel_fairphone_msm8974 kernel_google_marlin kernel_google_msm kernel_google_msm-4.9 kernel_google_wahoo kernel_htc_msm8974 kernel_lge_g3 kernel_lge_mako kernel_lge_msm8974 kernel_lge_msm8996 kernel_moto_shamu kernel_motorola_msm8916 kernel_motorola_msm8974 kernel_motorola_msm8996 kernel_nextbit_msm8992 kernel_oneplus_msm8994 kernel_oneplus_msm8996 kernel_oneplus_msm8998 kernel_oppo_msm8974 kernel_razer_msm8998 kernel_samsung_jf kernel_samsung_universal9810 kernel_xiaomi_sdm845 kernel_yandex_sdm660 kernel_zuk_msm8996";
startPatcher "kernel_cyanogen_msm8916 kernel_essential_msm8998 kernel_fairphone_msm8974 kernel_google_marlin kernel_google_msm kernel_google_msm-4.9 kernel_google_wahoo kernel_htc_msm8974 kernel_lge_g3 kernel_lge_mako kernel_lge_msm8974 kernel_lge_msm8996 kernel_moto_shamu kernel_motorola_msm8916 kernel_motorola_msm8974 kernel_motorola_msm8996 kernel_nextbit_msm8992 kernel_oneplus_msm8994 kernel_oneplus_msm8996 kernel_oneplus_msm8998 kernel_oneplus_sdm845 kernel_oneplus_sm8150 kernel_oppo_msm8974 kernel_razer_msm8998 kernel_samsung_jf kernel_samsung_universal9810 kernel_xiaomi_sdm845 kernel_yandex_sdm660 kernel_zuk_msm8996";
}
export -f patchAllKernels;
@ -94,8 +94,14 @@ buildAll() {
buildDevice taimen avb;
buildDevice walleye avb;
#SD845
buildDevice beryllium; #needs manual patching in vendor
buildDevice crosshatch avb;
buildDevice blueline avb;
buildDevice enchilada avb;
buildDevice fajita avb;
#SD855
buildDevice guacamole avb;
buildDevice guacamoleb avb;
#SD660
buildDevice Amber verity;
#SD670
@ -110,9 +116,11 @@ patchWorkspace() {
if [ "$DOS_MALWARE_SCAN_ENABLED" = true ]; then scanForMalware false "$DOS_PREBUILT_APPS $DOS_BUILD_BASE/build $DOS_BUILD_BASE/device $DOS_BUILD_BASE/vendor/lineage"; fi;
source build/envsetup.sh;
repopick -i 282389; #update webview
repopick -i 285265; #update webview
#repopick -i 285125; #HOSTS cache
source "$DOS_SCRIPTS/Patch.sh";
source "$DOS_SCRIPTS_COMMON/Copy_Keys.sh";
source "$DOS_SCRIPTS/Defaults.sh";
source "$DOS_SCRIPTS/Rebrand.sh";
if [ "$DOS_OVERCLOCKS_ENABLED" = true ]; then source "$DOS_SCRIPTS_COMMON/Overclock.sh"; fi;

24
Scripts/LineageOS-17.1/Patch.sh
View File

@ -280,30 +280,6 @@ find "kernel" -maxdepth 2 -mindepth 2 -type d -print0 | xargs -0 -n 1 -P 4 -I {}
cd "$DOS_BUILD_BASE";
deblobAudio;
#Verity
cat "$DOS_SIGNING_KEYS/Amber/verity.x509.pem" >> "kernel/yandex/sdm660/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/blueline/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/bonito/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/cheeseburger/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/cheryl/verity.x509.pem" >> "kernel/razer/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/crosshatch/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/dumpling/verity.x509.pem" >> "kernel/oneplus/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/mata/verity.x509.pem" >> "kernel/essential/msm8998/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/sargo/verity.x509.pem" >> "kernel/google/msm-4.9/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/starlte/verity.x509.pem" >> "kernel/samsung/universal9810/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/taimen/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/walleye/verity.x509.pem" >> "kernel/google/wahoo/certs/verity.x509.pem";
cat "$DOS_SIGNING_KEYS/z2_plus/verity.x509.pem" >> "kernel/zuk/msm8996/certs/verity.x509.pem";
cp "$DOS_SIGNING_KEYS/Amber/verifiedboot_relkeys.der.x509" "kernel/yandex/sdm660/verifiedboot_Amber_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/cheeseburger/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8998/verifiedboot_cheeseburger_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/cheryl/verifiedboot_relkeys.der.x509" "kernel/razer/msm8998/verifiedboot_cheryl_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/dumpling/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8998/verifiedboot_dumpling_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/griffin/verifiedboot_relkeys.der.x509" "kernel/motorola/msm8996/verifiedboot_griffin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/marlin/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_marlin_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/oneplus3/verifiedboot_relkeys.der.x509" "kernel/oneplus/msm8996/verifiedboot_oneplus3_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/sailfish/verifiedboot_relkeys.der.x509" "kernel/google/marlin/verifiedboot_sailfish_dos_relkeys.der.x509";
cp "$DOS_SIGNING_KEYS/z2_plus/verifiedboot_relkeys.der.x509" "kernel/zuk/msm8996/verifiedboot_z2_plus_dos_relkeys.der.x509";
#Fix broken options enabled by hardenDefconfig()
sed -i "s/CONFIG_DEBUG_RODATA=y/# CONFIG_DEBUG_RODATA is not set/" kernel/google/msm/arch/arm/configs/lineageos_*_defconfig; #Breaks on compile
sed -i "s/CONFIG_DEBUG_RODATA=y/# CONFIG_DEBUG_RODATA is not set/" kernel/lge/mako/arch/arm/configs/lineageos_*_defconfig; #Breaks on compile