Update CVE patchers

Potential breakage Signed-off-by: Tavi <tavi@divested.dev>
2025-08-23 21:25:24 -04:00 · 2024-02-27 02:32:37 -05:00 · 2024-02-27 02:32:37 -05:00 · 45e87b4a1c
commit 45e87b4a1c
parent 20c8abcbc1
78 changed files with 508 additions and 106 deletions
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh
@ -259,13 +259,15 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.4/0004.patch
-editKernelLocalversion "-dos.p265"
+editKernelLocalversion "-dos.p267"
 else echo "kernel_essential_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh
@ -134,6 +134,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
@ -142,7 +147,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p142"
+editKernelLocalversion "-dos.p147"
 else echo "kernel_fairphone_sdm632 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh
@ -61,7 +61,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-BleedingToothExtras/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-1963/ANY/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3493/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/^5.3/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-35085/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39633/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
@ -86,10 +86,18 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-4623/4.12-^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28553/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/4.19/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1086/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p89"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/4.19/0002.patch
+editKernelLocalversion "-dos.p97"
 else echo "kernel_fairphone_sm7225 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh
@ -203,11 +203,14 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p207"
+editKernelLocalversion "-dos.p210"
 else echo "kernel_fxtec_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh
@ -61,7 +61,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-BleedingToothExtras/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-1963/ANY/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3493/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/^5.3/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-35085/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39633/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
@ -86,10 +86,18 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-4623/4.12-^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28553/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/4.19/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1086/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p89"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/4.19/0002.patch
+editKernelLocalversion "-dos.p97"
 else echo "kernel_fxtec_sm6115 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh
@ -198,16 +198,42 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51779/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/5.10/0004.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52429/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52438/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52439/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52448/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52449/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52454/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52456/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52463/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52467/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52469/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/5.10/0004.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/5.10/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/5.10/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0641/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0646/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/5.10/0005.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1151/^6.8/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23850/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1151/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23850/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p207"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26595/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26597/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26598/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/5.10/0003.patch
+editKernelLocalversion "-dos.p233"
 else echo "kernel_google_gs101_private_gs-google is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh
@ -196,16 +196,42 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51779/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/5.10/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/5.10/0004.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52429/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52438/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52439/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52448/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52449/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52454/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52456/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52463/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52467/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52469/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/5.10/0004.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/5.10/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/5.10/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0641/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0646/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/5.10/0005.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1151/^6.8/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23850/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1151/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23850/5.10/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p205"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26595/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26597/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26598/5.10/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/5.10/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/5.10/0003.patch
+editKernelLocalversion "-dos.p231"
 else echo "kernel_google_gs201_private_gs-google is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh
@ -76,10 +76,19 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28554/ANY/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33070/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46838/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p79"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/^6.8/0001.patch
+editKernelLocalversion "-dos.p88"
 else echo "kernel_google_msm-4.14 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh
@ -140,6 +140,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
@ -147,7 +152,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p147"
+editKernelLocalversion "-dos.p152"
 else echo "kernel_google_msm-4.9 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh
@ -63,7 +63,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-BleedingToothExtras/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-1963/ANY/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3493/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/^5.3/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-2873/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3104/^5.18/0001.patch
@ -212,12 +212,28 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51043/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.19/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52439/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52449/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52469/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/4.19/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.19/0004.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p217"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/4.19/0002.patch
+editKernelLocalversion "-dos.p233"
 else echo "kernel_google_redbull is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh
@ -223,13 +223,16 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.4/0004.patch
-editKernelLocalversion "-dos.p229"
+editKernelLocalversion "-dos.p232"
 else echo "kernel_google_wahoo is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_lge_msm8996.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_lge_msm8996.sh
@ -203,11 +203,14 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p207"
+editKernelLocalversion "-dos.p210"
 else echo "kernel_lge_msm8996 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh
@ -206,11 +206,14 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p210"
+editKernelLocalversion "-dos.p213"
 else echo "kernel_oneplus_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh
@ -135,6 +135,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
@ -143,7 +148,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p143"
+editKernelLocalversion "-dos.p148"
 else echo "kernel_oneplus_sdm845 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh
@ -59,7 +59,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-BleedingToothExtras/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-1963/ANY/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3493/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/^5.3/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-35085/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39633/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
@ -91,10 +91,27 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46838/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.19/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52439/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52449/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52469/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/4.19/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1086/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p94"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/4.19/0002.patch
+editKernelLocalversion "-dos.p111"
 else echo "kernel_oneplus_sm7250 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh
@ -79,6 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19816/4.14/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-19947/4.14/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20810/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.2/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-25162/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0423/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0433/4.14/0010.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0465/4.14/0005.patch
@ -313,6 +314,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-44733/4.14/0004.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45469/4.9-^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45485/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45868/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-46906/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0494/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0617/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0617/4.14/0004.patch
@ -514,15 +516,23 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51042/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/^6.8/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/4.14/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.14/0002.patch
-editKernelLocalversion "-dos.p522"
+editKernelLocalversion "-dos.p532"
 else echo "kernel_oneplus_sm8150 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh
@ -59,7 +59,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-BleedingToothExtras/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-1963/ANY/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3493/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/^5.3/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-35085/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39633/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
@ -84,10 +84,18 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-4623/4.12-^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28553/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/4.19/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1086/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p87"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/4.19/0002.patch
+editKernelLocalversion "-dos.p95"
 else echo "kernel_oneplus_sm8250 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh
@ -40,10 +40,21 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35826/^6.3/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-47233/^6.7/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/5.4/0004.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/5.4/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/5.4/0006.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/5.4/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-1086/5.4/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/5.4/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p43"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26581/5.4/0004.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26595/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26598/5.4/0004.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/5.4/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/5.4/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/5.4/0005.patch
+editKernelLocalversion "-dos.p54"
 else echo "kernel_oneplus_sm8350 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_msm8998.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_msm8998.sh
@ -203,11 +203,14 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p207"
+editKernelLocalversion "-dos.p210"
 else echo "kernel_razer_msm8998 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh
@ -135,6 +135,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
@ -143,7 +148,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p143"
+editKernelLocalversion "-dos.p148"
 else echo "kernel_razer_sdm845 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_samsung_exynos9810.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_samsung_exynos9810.sh
@ -240,6 +240,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20812/4.9/0007.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20908/^5.2/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-20934/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-25045/4.9/0006.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-25160/4.9/0006.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-ctnl-addr-leak/4.9/0006.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0067/4.14/0002.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0305/4.9/0006.patch
@ -464,6 +465,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-43976/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45095/4.9/0005.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45469/4.9-^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45868/4.9/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-46906/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0330/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0494/4.9/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0617/4.9/0009.patch
@ -619,6 +621,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
@ -627,7 +634,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/4.9/0008.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.9/0007.patch
-editKernelLocalversion "-dos.p627"
+editKernelLocalversion "-dos.p634"
 else echo "kernel_samsung_exynos9810 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm660.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm660.sh
@ -222,11 +222,14 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p226"
+editKernelLocalversion "-dos.p229"
 else echo "kernel_sony_sdm660 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh
@ -287,6 +287,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45469/4.9-^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45485/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45486/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-45868/4.9/0005.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-46906/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0330/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0494/4.9/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0617/4.9/0009.patch
@ -460,6 +461,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
@ -470,7 +476,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.pat
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.9/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.9/0007.patch
-editKernelLocalversion "-dos.p470"
+editKernelLocalversion "-dos.p476"
 else echo "kernel_sony_sdm845 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh
@ -134,15 +134,21 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/^6.8/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p142"
+editKernelLocalversion "-dos.p148"
 else echo "kernel_xiaomi_msm8937 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh
@ -138,6 +138,11 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.14/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.14/0003.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.14/0003.patch
@ -146,7 +151,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch
-editKernelLocalversion "-dos.p146"
+editKernelLocalversion "-dos.p151"
 else echo "kernel_xiaomi_sdm845 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm6150.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm6150.sh
@ -85,10 +85,19 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28553/qca-wifi-host-cmn/0001.patch --
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-45863/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46838/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p88"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/^6.8/0001.patch
+editKernelLocalversion "-dos.p97"
 else echo "kernel_xiaomi_sm6150 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh
@ -64,7 +64,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-BleedingToothExtras/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-1963/ANY/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3493/^5.10/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-28039/^5.11/0001.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/^5.3/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33630/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-35085/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39633/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-3061/^5.18/0001.patch
@ -144,12 +144,28 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51043/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.19/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52439/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52449/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52462/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52469/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/4.19/0003.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0607/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.19/0004.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p149"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26602/4.19/0002.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26606/4.19/0002.patch
+editKernelLocalversion "-dos.p165"
 else echo "kernel_xiaomi_sm8250 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_vayu.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_vayu.sh
@ -84,10 +84,19 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/^6.5/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-45863/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46838/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52435/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52437/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52443/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52464/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52470/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-23849/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
-editKernelLocalversion "-dos.p87"
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26600/^6.8/0001.patch
+editKernelLocalversion "-dos.p96"
 else echo "kernel_xiaomi_vayu is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_zuk_msm8996.sh
+++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_zuk_msm8996.sh
@ -217,12 +217,15 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-46343/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51780/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51781/4.4/0009.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-51782/4.4/0009.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52436/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52444/^6.7/0001.patch
+git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52445/^6.7/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0340/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0639/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-0775/4.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-24855/^6.4/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-26145/qcacld-2.0/0008.patch --directory=drivers/staging/qcacld-2.0
-editKernelLocalversion "-dos.p222"
+editKernelLocalversion "-dos.p225"
 else echo "kernel_zuk_msm8996 is unavailable, not patching.";
 fi;
 cd "$DOS_BUILD_BASE"