From a2f68a96c17df1e6065e590696258fa09bf0adaf Mon Sep 17 00:00:00 2001 From: Tavi Date: Thu, 10 Oct 2024 16:59:12 -0400 Subject: [PATCH] Update CVE patchers Signed-off-by: Tavi --- Patches/Linux | 2 +- .../CVE_Patchers/android_kernel_xiaomi_sm6150.sh | 5 +++-- .../CVE_Patchers/android_kernel_xiaomi_sm8150.sh | 5 +++-- .../CVE_Patchers/android_kernel_fairphone_sdm632.sh | 4 +++- .../CVE_Patchers/android_kernel_fairphone_sm7225.sh | 5 +++-- .../CVE_Patchers/android_kernel_fxtec_sm6115.sh | 5 +++-- .../CVE_Patchers/android_kernel_google_msm-4.14.sh | 7 +++++-- .../CVE_Patchers/android_kernel_google_msm-4.9.sh | 6 +++++- .../CVE_Patchers/android_kernel_google_redbull.sh | 6 ++++-- .../CVE_Patchers/android_kernel_oneplus_sdm845.sh | 5 ++++- .../CVE_Patchers/android_kernel_oneplus_sm7250.sh | 5 +++-- .../CVE_Patchers/android_kernel_oneplus_sm8150.sh | 5 +++-- .../CVE_Patchers/android_kernel_oneplus_sm8250.sh | 5 +++-- .../CVE_Patchers/android_kernel_oneplus_sm8350.sh | 6 ++++-- .../CVE_Patchers/android_kernel_razer_sdm845.sh | 5 ++++- .../CVE_Patchers/android_kernel_sony_sdm660.sh | 2 +- .../CVE_Patchers/android_kernel_sony_sdm845.sh | 6 +++++- .../CVE_Patchers/android_kernel_xiaomi_msm8937.sh | 6 +++++- .../CVE_Patchers/android_kernel_xiaomi_sdm845.sh | 6 +++++- .../CVE_Patchers/android_kernel_xiaomi_sm6150.sh | 7 +++++-- .../CVE_Patchers/android_kernel_xiaomi_sm8250.sh | 5 +++-- .../CVE_Patchers/android_kernel_xiaomi_vayu.sh | 7 +++++-- 22 files changed, 80 insertions(+), 35 deletions(-) diff --git a/Patches/Linux b/Patches/Linux index e5de1ecc..0cda6506 160000 --- a/Patches/Linux +++ b/Patches/Linux @@ -1 +1 @@ -Subproject commit e5de1eccf78a71f97ca6500b3755943482cff06e +Subproject commit 0cda65068bc6d50ebbe4b1526de4f89770ee532f diff --git a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh index bc10361f..4469abbb 100644 --- a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh +++ b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh @@ -211,6 +211,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30265/ANY/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30299/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30319/qcacld-3.0/0001.patch --directory=drivers/staging/qcacld-3.0 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30324/ANY/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30337/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-31829/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-31916/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-32399/4.14/0002.patch @@ -933,7 +934,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27427/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27428/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27429/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.14/0009.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35821/4.14/0009.patch @@ -1147,7 +1148,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p1147" +editKernelLocalversion "-dos.p1148" else echo "kernel_xiaomi_sm6150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh index 5b4b9a06..e1d02876 100644 --- a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh +++ b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh @@ -308,6 +308,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30316/ANY/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30319/qcacld-3.0/0001.patch --directory=drivers/staging/qcacld-3.0 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30324/ANY/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30334/ANY/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30337/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-31829/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-31916/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-32399/4.14/0002.patch @@ -1015,7 +1016,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27429/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.14/0002.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35821/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35822/4.14/0008.patch @@ -1230,7 +1231,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p1230" +editKernelLocalversion "-dos.p1231" else echo "kernel_xiaomi_sm8150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh index 67a2da73..e21021df 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh @@ -444,6 +444,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42305/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -488,11 +489,12 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p492" +editKernelLocalversion "-dos.p494" else echo "kernel_fairphone_sdm632 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh index 2cbf1c5e..f5497652 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh @@ -260,7 +260,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-31076/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.19/0003.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.19/0002.patch @@ -451,6 +451,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.19/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.19/0002.patch @@ -526,7 +527,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.19/0002.patch -editKernelLocalversion "-dos.p526" +editKernelLocalversion "-dos.p527" else echo "kernel_fairphone_sm7225 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh index a0f953a2..cd9a3738 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh @@ -260,7 +260,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-31076/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.19/0003.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.19/0002.patch @@ -451,6 +451,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.19/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.19/0002.patch @@ -526,7 +527,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.19/0002.patch -editKernelLocalversion "-dos.p526" +editKernelLocalversion "-dos.p527" else echo "kernel_fxtec_sm6115 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh index b4010fca..1229a85d 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh @@ -277,7 +277,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27428/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27429/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.14/0008.patch @@ -448,6 +448,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.14/0008.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43853/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43854/4.19/0005.patch @@ -502,11 +503,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-46844/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47659/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47670/^6.10/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.14/0006.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p506" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.14/0007.patch +editKernelLocalversion "-dos.p509" else echo "kernel_google_msm-4.14 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh index 37c9e184..a3db6a1c 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh @@ -449,6 +449,8 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42305/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -493,11 +495,13 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p497" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.9/0009.patch +editKernelLocalversion "-dos.p501" else echo "kernel_google_msm-4.9 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh index aef16e36..f7385629 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh @@ -221,6 +221,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32233/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33031/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33055/audio-kernel/0001.patch --directory=techpack/audio +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.19/0010.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33065/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33079/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33090/audio-kernel/0001.patch --directory=techpack/audio @@ -490,7 +491,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27436/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-31076/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.19/0002.patch @@ -677,6 +678,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.19/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.19/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.19/0002.patch @@ -752,7 +754,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.19/0002.patch -editKernelLocalversion "-dos.p752" +editKernelLocalversion "-dos.p754" else echo "kernel_google_redbull is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh index 00a77ccb..f24a8aef 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh @@ -456,6 +456,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -500,11 +501,13 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p504" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.9/0009.patch +editKernelLocalversion "-dos.p507" else echo "kernel_oneplus_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh index d5a14425..c31d8656 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh @@ -315,7 +315,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27436/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-31076/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.19/0003.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.19/0002.patch @@ -507,6 +507,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.19/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.19/0002.patch @@ -582,7 +583,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.19/0002.patch -editKernelLocalversion "-dos.p582" +editKernelLocalversion "-dos.p583" else echo "kernel_oneplus_sm7250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh index 1939cb6d..4c9b410c 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh @@ -282,6 +282,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30265/ANY/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30299/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30316/ANY/0001.patch #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30324/ANY/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30337/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-31829/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-31916/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-32399/4.14/0002.patch @@ -970,7 +971,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27428/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27429/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.14/0002.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35821/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35822/4.14/0008.patch @@ -1184,7 +1185,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p1184" +editKernelLocalversion "-dos.p1185" else echo "kernel_oneplus_sm8150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh index 2f4142b2..0906990c 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh @@ -261,7 +261,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-31076/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.19/0003.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.19/0002.patch @@ -452,6 +452,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.19/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.19/0002.patch @@ -527,7 +528,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.19/0002.patch -editKernelLocalversion "-dos.p527" +editKernelLocalversion "-dos.p528" else echo "kernel_oneplus_sm8250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh index e0ee15ce..0693d479 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh @@ -289,6 +289,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch -- git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/5.4/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33023/ANY/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33049/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/5.4/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35805/5.4/0004.patch @@ -375,7 +376,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-37078/5.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-37353/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-37356/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-38381/5.4/0005.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-38402/ANY/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-38402/5.4/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-38549/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-38552/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-38555/^6.9/0001.patch @@ -540,6 +541,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/5.4/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43829/5.4/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/5.4/0005.patch @@ -649,7 +651,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/5.4/0006.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/5.4/0006.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/5.4/0006.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/5.4/0005.patch -editKernelLocalversion "-dos.p649" +editKernelLocalversion "-dos.p651" else echo "kernel_oneplus_sm8350 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh index a32ce9cd..dd650838 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh @@ -452,6 +452,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -496,11 +497,13 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p500" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.9/0009.patch +editKernelLocalversion "-dos.p503" else echo "kernel_razer_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm660.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm660.sh index ff52a316..3a47356a 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm660.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm660.sh @@ -63,6 +63,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-4034/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-4149/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-20292/4.9/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30319/qcacld-3.0/0001.patch --directory=drivers/staging/qcacld-3.0 +git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-30337/4.4/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-33656/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-39792/ANY/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-44879/^5.16/0001.patch @@ -79,7 +80,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-47472/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-47472/4.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-47472/^5.15/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-47588/^5.16/0001.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-Misc/4.4/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0435/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0487/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0492/4.9/0007.patch diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh index 55042e65..19ea260b 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh @@ -668,6 +668,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31085/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33031/audio-kernel/0001.patch --directory=techpack/audio +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33065/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33110/4.9/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33120/4.9/0004.patch @@ -948,6 +949,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42305/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -995,11 +997,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.9/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.9/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21657/4.9/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p999" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.9/0009.patch +editKernelLocalversion "-dos.p1003" else echo "kernel_sony_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh index 5aba10e0..51eaf662 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh @@ -147,6 +147,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33019/prima/0001.patch --directory=drivers/staging/prima git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33031/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33059/audio-kernel/0001.patch --directory=techpack/audio +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33064/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33065/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33110/4.9/0003.patch @@ -445,6 +446,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42305/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -490,11 +492,13 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p494" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.9/0009.patch +editKernelLocalversion "-dos.p498" else echo "kernel_xiaomi_msm8937 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh index 92b3b0a4..2d81cf5e 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh @@ -157,6 +157,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31083/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31085/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33031/audio-kernel/0001.patch --directory=techpack/audio +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33065/audio-kernel/0001.patch --directory=techpack/audio git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33110/4.9/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33120/4.9/0004.patch @@ -460,6 +461,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42305/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42309/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43858/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43882/4.14/0009.patch @@ -504,11 +506,13 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p508" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.9/0009.patch +editKernelLocalversion "-dos.p512" else echo "kernel_xiaomi_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm6150.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm6150.sh index cdbbd259..43226968 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm6150.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm6150.sh @@ -312,7 +312,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33027/4.14/0002.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.14/0008.patch @@ -484,6 +484,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43853/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43854/4.19/0005.patch @@ -538,11 +539,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-46844/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47659/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47670/^6.10/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.14/0006.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p542" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.14/0007.patch +editKernelLocalversion "-dos.p545" else echo "kernel_xiaomi_sm6150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh index ac1e1216..341d6794 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh @@ -162,7 +162,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27399/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27401/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-31076/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.19/0003.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35812/^6.9/0002.patch @@ -335,6 +335,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.19/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43830/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43835/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.19/0002.patch @@ -408,7 +409,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47670/^6.10/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.19/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-26720/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.19/0002.patch -editKernelLocalversion "-dos.p408" +editKernelLocalversion "-dos.p409" else echo "kernel_xiaomi_sm8250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_vayu.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_vayu.sh index 2707876e..81799e1a 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_vayu.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_vayu.sh @@ -317,7 +317,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27430/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33014/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33015/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33027/4.14/0002.patch -git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-33060/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-34027/^6.9/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35789/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-35806/4.14/0008.patch @@ -488,6 +488,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42310/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42311/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42313/4.14/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42315/^6.10/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-prereq/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43839/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43853/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43854/4.19/0005.patch @@ -542,11 +543,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-46844/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47659/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-47670/^6.10/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-12819/4.14/0006.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-33063/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-52601/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27424/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-27425/4.14/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-42104/4.14/0009.patch -editKernelLocalversion "-dos.p546" +git apply $DOS_PATCHES_LINUX_CVES/CVE-2024-43047-upstream/4.14/0007.patch +editKernelLocalversion "-dos.p549" else echo "kernel_xiaomi_vayu is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE"