mirror of
https://github.com/Divested-Mobile/DivestOS-Build.git
synced 2024-10-01 01:35:54 -04:00
Update CVE patchers
This commit is contained in:
parent
c47dee71d8
commit
8e8c1d5834
@ -84,5 +84,5 @@ git apply $cvePatchesLinux/CVE-2017-9242/^4.11/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-9684/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-9684/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-9706/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-9706/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p84"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -57,5 +57,5 @@ git apply $cvePatchesLinux/LVT-2017-0003/3.10/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p57"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -29,5 +29,5 @@ git apply $cvePatchesLinux/CVE-2017-6348/^4.9/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-7533/3.4/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-7533/3.4/0001.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p29"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -188,5 +188,5 @@ git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-0610/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0610/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p188"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -42,5 +42,5 @@ git apply $cvePatchesLinux/CVE-2017-8254/3.4/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-8254/3.4/0002.patch
|
git apply $cvePatchesLinux/CVE-2017-8254/3.4/0002.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p42"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -71,5 +71,5 @@ git apply $cvePatchesLinux/LVT-2017-0003/3.10/0001.patch
|
|||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p71"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -25,5 +25,5 @@ git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0005.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0006.patch
|
git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0006.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p25"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -102,5 +102,5 @@ git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p102"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -143,5 +143,5 @@ git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p143"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -134,5 +134,5 @@ git apply $cvePatchesLinux/LVT-2017-0003/3.10/0001.patch
|
|||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p134"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -27,5 +27,5 @@ git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0006.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-8246/3.4/0002.patch
|
git apply $cvePatchesLinux/CVE-2017-8246/3.4/0002.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p27"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -40,5 +40,5 @@ git apply $cvePatchesLinux/CVE-2017-9242/^4.11/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-9684/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-9684/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p40"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -15,5 +15,5 @@ git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0005.patch
|
git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0005.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0006.patch
|
git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0006.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p15"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -24,5 +24,5 @@ git apply $cvePatchesLinux/CVE-2017-16USB/ANY/0006.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-7487/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-7487/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p24"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -158,5 +158,5 @@ git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-8281/3.10/0003.patch
|
git apply $cvePatchesLinux/CVE-2017-8281/3.10/0003.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p158"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -110,5 +110,5 @@ git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0610/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0610/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p110"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -101,5 +101,5 @@ git apply $cvePatchesLinux/CVE-2017-9242/^4.11/0001.patch
|
|||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p101"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -80,5 +80,5 @@ git apply $cvePatchesLinux/CVE-2016-5853/3.10/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p80"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -181,5 +181,5 @@ git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-15845/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-8281/3.10/0003.patch
|
git apply $cvePatchesLinux/CVE-2017-8281/3.10/0003.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p181"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -57,5 +57,5 @@ git apply $cvePatchesLinux/LVT-2017-0003/3.10/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6693/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-6696/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p57"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -45,5 +45,5 @@ git apply $cvePatchesLinux/CVE-2017-9684/ANY/0001.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-9706/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-9706/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p45"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -51,5 +51,5 @@ git apply $cvePatchesLinux/CVE-2017-8254/3.4/0002.patch
|
|||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p51"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -23,5 +23,5 @@ git apply $cvePatchesLinux/CVE-2017-8254/3.4/0002.patch
|
|||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2016-2475/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p23"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -44,5 +44,5 @@ git apply $cvePatchesLinux/CVE-2017-7184/ANY/0002.patch
|
|||||||
git apply $cvePatchesLinux/CVE-2017-7308/ANY/0003.patch
|
git apply $cvePatchesLinux/CVE-2017-7308/ANY/0003.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-7487/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-7487/ANY/0001.patch
|
||||||
git apply $cvePatchesLinux/CVE-2014-9781/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2014-9781/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p44"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -133,5 +133,5 @@ git apply $cvePatchesLinux/Untracked/ANY/0007-USB-usbip-fix-potential-out-of-bou
|
|||||||
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
git apply $cvePatchesLinux/Untracked/ANY/0008-nfsd-check-for-oversized-NFSv2-v3-arguments.patch
|
||||||
#git apply $cvePatchesLinux/0002-Copperhead-Kernel_Hardening/3.18/0039.patch
|
#git apply $cvePatchesLinux/0002-Copperhead-Kernel_Hardening/3.18/0039.patch
|
||||||
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
git apply $cvePatchesLinux/CVE-2017-0750/ANY/0001.patch
|
||||||
editKernelLocalversion "-dos.hp"
|
editKernelLocalversion "-dos.p133"
|
||||||
cd $base
|
cd $base
|
||||||
|
@ -156,7 +156,7 @@ hardenDefconfig() {
|
|||||||
sed -i 's/CONFIG_DEFAULT_MMAP_MIN_ADDR=4096/CONFIG_DEFAULT_MMAP_MIN_ADDR=32768/' $defconfigPath &>/dev/null || true;
|
sed -i 's/CONFIG_DEFAULT_MMAP_MIN_ADDR=4096/CONFIG_DEFAULT_MMAP_MIN_ADDR=32768/' $defconfigPath &>/dev/null || true;
|
||||||
sed -i 's/CONFIG_LSM_MMAP_MIN_ADDR=4096/CONFIG_DEFAULT_MMAP_MIN_ADDR=32768/' $defconfigPath &>/dev/null || true;
|
sed -i 's/CONFIG_LSM_MMAP_MIN_ADDR=4096/CONFIG_DEFAULT_MMAP_MIN_ADDR=32768/' $defconfigPath &>/dev/null || true;
|
||||||
|
|
||||||
editKernelLocalversion "-dos.h";
|
editKernelLocalversion "-dos";
|
||||||
|
|
||||||
echo "Hardened defconfig for $1";
|
echo "Hardened defconfig for $1";
|
||||||
cd $base;
|
cd $base;
|
||||||
|
Loading…
Reference in New Issue
Block a user