Update CVE patchers

Signed-off-by: Tad <tad@spotco.us>
2025-05-02 22:45:11 -04:00 · 2023-03-13 17:39:24 -04:00 · 2023-03-13 17:39:24 -04:00 · 162b40a39d
commit 162b40a39d
parent 3d55a90d4e
84 changed files with 415 additions and 335 deletions
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh
@ -183,19 +183,22 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896-extra/4.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0047/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.4/0004.patch
-editKernelLocalversion "-dos.p195"
+editKernelLocalversion "-dos.p198"
 else echo "kernel_essential_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh
@ -77,17 +77,16 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20371/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-28388/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.14/0002.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0461/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p87"
+editKernelLocalversion "-dos.p86"
 else echo "kernel_fairphone_sdm632 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh
@ -79,7 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20571/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42703/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0030/^4.20/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 editKernelLocalversion "-dos.p81"
 else echo "kernel_fairphone_sm7225 is unavailable, not patching.";
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh
@ -143,16 +143,19 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896-extra/4.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0047/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
-editKernelLocalversion "-dos.p152"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.4/0007.patch
+editKernelLocalversion "-dos.p155"
 else echo "kernel_fxtec_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh
@ -193,11 +193,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1078/5.10/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/5.10/0006.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23004/^5.18/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23004/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/5.10/0004.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh
@ -193,11 +193,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1078/5.10/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/5.10/0006.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23004/^5.18/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23004/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/5.10/0004.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh
@ -125,7 +125,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.14/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh
@ -94,7 +94,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh
@ -137,7 +137,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1078/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.19/0004.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.19/0003.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh
@ -146,19 +146,22 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896-extra/4.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0047/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.4/0004.patch
-editKernelLocalversion "-dos.p158"
+editKernelLocalversion "-dos.p161"
 else echo "kernel_google_wahoo is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh
@ -138,16 +138,19 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42896-extra/4.4/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-43750/4.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-45934/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-47929/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0047/4.4/0008.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/^6.1/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.4/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/^6.2/0001.patch
-editKernelLocalversion "-dos.p147"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.4/0007.patch
+editKernelLocalversion "-dos.p150"
 else echo "kernel_oneplus_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh
@ -79,7 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.14/0002.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0461/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh
@ -77,7 +77,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20571/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42703/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0030/^4.20/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 editKernelLocalversion "-dos.p79"
 else echo "kernel_oneplus_sm7250 is unavailable, not patching.";
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh
@ -424,7 +424,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.14/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh
@ -77,7 +77,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-20571/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-42703/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0030/^4.20/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 editKernelLocalversion "-dos.p79"
 else echo "kernel_oneplus_sm8250 is unavailable, not patching.";
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh
@ -21,7 +21,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3669/^5.14/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39633/5.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0480/4.9-^5.14/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-2196/5.4/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3108/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3424/5.4/0007.patch
@ -44,13 +43,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/5.4/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/5.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/5.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1078/5.4/0005.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/5.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/5.4/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/5.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/5.4/0006.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/5.4/0006.patch
-editKernelLocalversion "-dos.p50"
+editKernelLocalversion "-dos.p49"
 else echo "kernel_oneplus_sm8350 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh
@ -79,7 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0045/4.14/0002.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0461/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh
@ -391,7 +391,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0615/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1095/4.9/0005.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh
@ -82,7 +82,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0394/4.14/0002.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0461/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1073/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1074/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/^6.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1118/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
--- a/Scripts/LineageOS-20.0/Patch.sh
+++ b/Scripts/LineageOS-20.0/Patch.sh
@ -128,6 +128,7 @@ sed -i '11iLOCAL_OVERRIDES_PACKAGES := Aperture Camera Camera2 LegacyCamera Snap
 fi;

 if enterAndClear "frameworks/base"; then
+git revert --no-edit 90d6826548189ca850d91692e71fcc1be426f453; #Reverts "Remove sensitive info from SUPL requests" in favor of below patch
 applyPatch "$DOS_PATCHES/android_frameworks_base/0007-Always_Restict_Serial.patch"; #Always restrict access to Build.SERIAL (GrapheneOS)
 applyPatch "$DOS_PATCHES/android_frameworks_base/0008-Browser_No_Location.patch"; #Don't grant location permission to system browsers (GrapheneOS)
 applyPatch "$DOS_PATCHES/android_frameworks_base/0003-SUPL_No_IMSI.patch"; #Don't send IMSI to SUPL (MSe1969)