Update CVE patchers

Signed-off-by: Tad <tad@spotco.us>
2025-11-24 17:43:10 -05:00 · 2023-03-13 17:39:24 -04:00 · 2023-03-13 17:39:24 -04:00 · 162b40a39d
commit 162b40a39d
parent 3d55a90d4e
84 changed files with 415 additions and 335 deletions
--- a/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_cyanogen_msm8916.sh
+++ b/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_cyanogen_msm8916.sh
@ -436,19 +436,20 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41858/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42895/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/1035495_0001-cnss-Add-NULL-check-for-PM-related-APIs.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/3.18/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/3.18/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20423/3.4/0010.patch
-editKernelLocalversion "-dos.p448"
+editKernelLocalversion "-dos.p449"
 else echo "kernel_cyanogen_msm8916 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_cyanogen_msm8974.sh
+++ b/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_cyanogen_msm8974.sh
@ -402,6 +402,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-36280/4.4/0008.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-40768/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41850/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41858/4.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0003.patch
@ -409,16 +410,16 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-6752/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20423/3.4/0010.patch
-editKernelLocalversion "-dos.p418"
+editKernelLocalversion "-dos.p419"
 else echo "kernel_cyanogen_msm8974 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_google_yellowstone.sh
+++ b/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_google_yellowstone.sh
@ -482,21 +482,22 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41858/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42895/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/797912_0001-usb-gadget-Fix-synchronization-issue-between-f_audio.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/3.18/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/3.18/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20423/3.4/0010.patch
-editKernelLocalversion "-dos.p496"
+editKernelLocalversion "-dos.p497"
 else echo "kernel_google_yellowstone is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_lge_hammerhead.sh
+++ b/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_lge_hammerhead.sh
@ -630,13 +630,14 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-36280/4.4/0008.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-40768/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41850/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41858/4.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/772877_0001-usb-core-Fix-use-after-free-for-hub-usb-device.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/797912_0001-usb-gadget-Fix-synchronization-issue-between-f_audio.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/870057_0001-wcnss-add-null-check-in-pm_ops-unregister.patch
@ -645,7 +646,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2015-4002/3.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20423/3.4/0010.patch
-editKernelLocalversion "-dos.p645"
+editKernelLocalversion "-dos.p646"
 else echo "kernel_lge_hammerhead is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_samsung_apq8084.sh
+++ b/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_samsung_apq8084.sh
@ -288,12 +288,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-41858/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42895/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-Misc2/3.4/0004.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/797912_0001-usb-gadget-Fix-synchronization-issue-between-f_audio.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/870057_0001-wcnss-add-null-check-in-pm_ops-unregister.patch
 git apply $DOS_PATCHES_LINUX_CVES/Untracked-02/ANY/1035495_0001-cnss-Add-NULL-check-for-PM-related-APIs.patch
@ -302,7 +303,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14053/3.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/3.18/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/3.18/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20423/3.4/0010.patch
-editKernelLocalversion "-dos.p302"
+editKernelLocalversion "-dos.p303"
 else echo "kernel_samsung_apq8084 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh
+++ b/Scripts/LineageOS-16.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh
@ -461,20 +461,21 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42895/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896-extra/4.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0610/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/3.18/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/3.18/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-26145/qcacld-2.0/0008.patch --directory=drivers/staging/qcacld-2.0
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/3.18/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.4/0006.patch
-editKernelLocalversion "-dos.p474"
+editKernelLocalversion "-dos.p475"
 else echo "kernel_xiaomi_msm8937 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"