diff --git a/Misc/Missing_CVEs.txt b/Misc/Missing_CVEs.txt index 97f9c9c9..c64b658a 100644 --- a/Misc/Missing_CVEs.txt +++ b/Misc/Missing_CVEs.txt @@ -1,4 +1,4 @@ -Last checked 2021-12-02 +Last checked 2023-07-05 https://nvd.nist.gov/vuln/detail/CVE-2017-6247 - no links https://nvd.nist.gov/vuln/detail/CVE-2017-6248 - no links https://nvd.nist.gov/vuln/detail/CVE-2019-15126 - vendor shenanigans @@ -22,11 +22,11 @@ https://nvd.nist.gov/vuln/detail/CVE-2020-11211 - not found https://nvd.nist.gov/vuln/detail/CVE-2020-11223 - no links https://nvd.nist.gov/vuln/detail/CVE-2020-11277 - no links https://nvd.nist.gov/vuln/detail/CVE-2020-11305 - no links -https://nvd.nist.gov/vuln/detail/CVE-2020-27066 - no links https://nvd.nist.gov/vuln/detail/CVE-2020-3623 - no links https://nvd.nist.gov/vuln/detail/CVE-2020-3648 - vendor shenanigans -https://nvd.nist.gov/vuln/detail/CVE-2021-39712 -https://nvd.nist.gov/vuln/detail/CVE-2022-20118 +https://nvd.nist.gov/vuln/detail/CVE-2021-39712 - no links +https://nvd.nist.gov/vuln/detail/CVE-2022-20118 - no links +https://nvd.nist.gov/vuln/detail/CVE-2023-21400 - not found https://github.com/bobfuzzer/CVE diff --git a/Patches/Linux b/Patches/Linux index 0e4f7b55..71f7327b 160000 --- a/Patches/Linux +++ b/Patches/Linux @@ -1 +1 @@ -Subproject commit 0e4f7b55ade70a2b3a510a3033d114065f526976 +Subproject commit 71f7327b0d4d85a31ef3e959d63b1e52df6516f6 diff --git a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh index 5da3a798..37d0e7cd 100644 --- a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh +++ b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh @@ -379,18 +379,22 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.14/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2860/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21657/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.14/0002.patch @@ -398,7 +402,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch -editKernelLocalversion "-dos.p398" +editKernelLocalversion "-dos.p402" else echo "kernel_xiaomi_sm6150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_yandex_sdm660.sh b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_yandex_sdm660.sh index ad3ad938..05253135 100644 --- a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_yandex_sdm660.sh +++ b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_yandex_sdm660.sh @@ -431,6 +431,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -451,7 +452,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0429/4.4/0012.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.4/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.4/0006.patch -editKernelLocalversion "-dos.p451" +editKernelLocalversion "-dos.p452" else echo "kernel_yandex_sdm660 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sdm660.sh b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sdm660.sh index b74393f1..cac743df 100644 --- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sdm660.sh +++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sdm660.sh @@ -168,6 +168,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -184,7 +185,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch -editKernelLocalversion "-dos.p184" +editKernelLocalversion "-dos.p185" else echo "kernel_xiaomi_sdm660 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_zuk_msm8996.sh b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_zuk_msm8996.sh index 4964765c..09408e7b 100644 --- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_zuk_msm8996.sh +++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_zuk_msm8996.sh @@ -427,6 +427,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -448,7 +449,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-26145/qcacld-2.0/0008.patch --directory=drivers/staging/qcacld-2.0 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.4/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.4/0006.patch -editKernelLocalversion "-dos.p448" +editKernelLocalversion "-dos.p449" else echo "kernel_zuk_msm8996 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_lge_msm8996.sh b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_lge_msm8996.sh index 82c1cfbf..f70336bf 100644 --- a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_lge_msm8996.sh +++ b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_lge_msm8996.sh @@ -155,6 +155,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -168,7 +169,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch -editKernelLocalversion "-dos.p168" +editKernelLocalversion "-dos.p169" else echo "kernel_lge_msm8996 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_sony_sdm660.sh b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_sony_sdm660.sh index 34df2c07..2cbd1d2e 100644 --- a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_sony_sdm660.sh +++ b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_sony_sdm660.sh @@ -174,6 +174,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -190,7 +191,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch -editKernelLocalversion "-dos.p190" +editKernelLocalversion "-dos.p191" else echo "kernel_sony_sdm660 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh index 16049f2e..3e66e108 100644 --- a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh +++ b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh @@ -476,19 +476,23 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.14/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2860/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21656/4.14/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21657/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.14/0002.patch @@ -499,7 +503,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.14/0002.patch -editKernelLocalversion "-dos.p499" +editKernelLocalversion "-dos.p503" else echo "kernel_xiaomi_sm8150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8250.sh b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8250.sh index d1c898c4..b8a7954b 100644 --- a/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8250.sh +++ b/Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_xiaomi_sm8250.sh @@ -540,19 +540,24 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.19/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2860/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.19/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3220/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21656/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22386/ANY/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.19/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28772/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.19/0003.patch @@ -570,7 +575,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3428/4.19/0011.patch #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3444/^5.11/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-22095/ANY/0001.patch -editKernelLocalversion "-dos.p570" +editKernelLocalversion "-dos.p575" else echo "kernel_xiaomi_sm8250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh index 3b4f2ae0..2072af13 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_essential_msm8998.sh @@ -204,6 +204,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -221,7 +222,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.4/0004.patch -editKernelLocalversion "-dos.p221" +editKernelLocalversion "-dos.p222" else echo "kernel_essential_msm8998 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh index 58739ad0..fbec1715 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sdm632.sh @@ -95,6 +95,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch @@ -107,7 +108,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch -editKernelLocalversion "-dos.p107" +editKernelLocalversion "-dos.p108" else echo "kernel_fairphone_sdm632 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh index 5142fde8..364799e1 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fairphone_sm7225.sh @@ -79,6 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1380/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2002/3.10-^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2007/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.19/0003.patch @@ -87,7 +88,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35788/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/4.19/0002.patch -editKernelLocalversion "-dos.p87" +editKernelLocalversion "-dos.p88" else echo "kernel_fairphone_sm7225 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh index 2960d623..aef18e00 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_msm8998.sh @@ -159,6 +159,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -172,7 +173,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch -editKernelLocalversion "-dos.p172" +editKernelLocalversion "-dos.p173" else echo "kernel_fxtec_msm8998 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh index 4ed9f528..6268c290 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_fxtec_sm6115.sh @@ -79,6 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1380/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2002/3.10-^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2007/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.19/0003.patch @@ -87,7 +88,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35788/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/4.19/0002.patch -editKernelLocalversion "-dos.p87" +editKernelLocalversion "-dos.p88" else echo "kernel_fxtec_sm6115 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh index c5b88c94..f5587bfe 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs101_private_gs-google.sh @@ -92,6 +92,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2007/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2124/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2156/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2162/5.10/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2163/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2166/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2235/^6.3/0001.patch @@ -99,12 +100,15 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/5.10/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3212/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3220/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3268/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/5.10/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3389/5.10/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21255/ANY/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch @@ -128,7 +132,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35826/^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35829/5.10/0002.patch -editKernelLocalversion "-dos.p128" +editKernelLocalversion "-dos.p132" else echo "kernel_google_gs101_private_gs-google is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh index 8e85bdbd..b8b7e3ca 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_gs201_private_gs-google.sh @@ -92,6 +92,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2007/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2124/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2156/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2162/5.10/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2163/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2166/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2235/^6.3/0001.patch @@ -99,12 +100,15 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/5.10/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3212/5.10/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3220/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3268/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/5.10/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3389/5.10/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21255/ANY/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22998/5.10/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch @@ -128,7 +132,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/5.10/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35826/^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/5.10/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35829/5.10/0002.patch -editKernelLocalversion "-dos.p128" +editKernelLocalversion "-dos.p132" else echo "kernel_google_gs201_private_gs-google is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh index 2233baad..27f6fbad 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.14.sh @@ -101,22 +101,25 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21657/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.14/0003.patch -editKernelLocalversion "-dos.p116" +editKernelLocalversion "-dos.p119" else echo "kernel_google_msm-4.14 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh index fd3dbd53..47fb2617 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_msm-4.9.sh @@ -101,6 +101,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch @@ -113,7 +114,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch -editKernelLocalversion "-dos.p113" +editKernelLocalversion "-dos.p114" else echo "kernel_google_msm-4.9 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh index 1c70d3f1..beeaee7c 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_redbull.sh @@ -111,17 +111,22 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.19/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3220/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21656/4.19/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22386/ANY/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.19/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-24851/ANY/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.19/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32233/4.19/0002.patch @@ -131,7 +136,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35788/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/4.19/0002.patch -editKernelLocalversion "-dos.p131" +editKernelLocalversion "-dos.p136" else echo "kernel_google_redbull is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh index 5aed7ad6..4ec2071a 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_google_wahoo.sh @@ -168,6 +168,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -185,7 +186,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.4/0004.patch -editKernelLocalversion "-dos.p185" +editKernelLocalversion "-dos.p186" else echo "kernel_google_wahoo is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh index daec7a40..50ca34dd 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_msm8998.sh @@ -160,6 +160,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -170,12 +171,13 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.4/0008.patch #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/^6.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch -editKernelLocalversion "-dos.p175" +editKernelLocalversion "-dos.p177" else echo "kernel_oneplus_msm8998 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh index 66031780..dcdb28d8 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sdm845.sh @@ -95,6 +95,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch @@ -107,7 +108,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch -editKernelLocalversion "-dos.p107" +editKernelLocalversion "-dos.p108" else echo "kernel_oneplus_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh index 36e038b9..52d56f10 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm7250.sh @@ -92,6 +92,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.19/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3220/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21656/4.19/0005.patch @@ -108,7 +109,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35788/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/4.19/0002.patch -editKernelLocalversion "-dos.p108" +editKernelLocalversion "-dos.p109" else echo "kernel_oneplus_sm7250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh index f15f8813..2bed0968 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8150.sh @@ -444,19 +444,23 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2483/4.14/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2860/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21656/4.14/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21657/4.14/0004.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23454/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23455/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-26545/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.14/0002.patch @@ -466,7 +470,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/4.14/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.14/0002.patch -editKernelLocalversion "-dos.p466" +editKernelLocalversion "-dos.p470" else echo "kernel_oneplus_sm8150 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh index 0a6ef98c..f6e73128 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8250.sh @@ -77,6 +77,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1380/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2002/3.10-^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2007/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.19/0003.patch @@ -85,7 +86,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35788/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/4.19/0002.patch -editKernelLocalversion "-dos.p85" +editKernelLocalversion "-dos.p86" else echo "kernel_oneplus_sm8250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh index 207f1a0d..ee6ce371 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_oneplus_sm8350.sh @@ -31,8 +31,10 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-OctWirelessASB/ANY/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-0386/^6.2/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1380/5.4/0006.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2002/3.10-^6.3/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2124/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2166/5.4/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/5.4/0006.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/5.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/5.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/5.4/0006.patch @@ -42,7 +44,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/5.4/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/5.4/0007.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35826/^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/5.4/0005.patch -editKernelLocalversion "-dos.p42" +editKernelLocalversion "-dos.p44" else echo "kernel_oneplus_sm8350 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_msm8998.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_msm8998.sh index 40fcaeaa..14047ec1 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_msm8998.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_msm8998.sh @@ -159,6 +159,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.4/0001.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3161/4.4/0001.patch @@ -172,7 +173,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-32269/4.4/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-34256/4.4/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.4/0001.patch -editKernelLocalversion "-dos.p172" +editKernelLocalversion "-dos.p173" else echo "kernel_razer_msm8998 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh index 814e9ec4..cffffa8a 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_razer_sdm845.sh @@ -95,6 +95,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch @@ -107,7 +108,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch -editKernelLocalversion "-dos.p107" +editKernelLocalversion "-dos.p108" else echo "kernel_razer_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_samsung_exynos9810.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_samsung_exynos9810.sh index d528e70e..fc6ce4c2 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_samsung_exynos9810.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_samsung_exynos9810.sh @@ -574,6 +574,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch @@ -589,7 +590,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-14283/4.9/0008.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.9/0007.patch -editKernelLocalversion "-dos.p589" +editKernelLocalversion "-dos.p590" else echo "kernel_samsung_exynos9810 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh index 8764a182..ba5796c0 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_sony_sdm845.sh @@ -408,13 +408,16 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3159/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21656/4.9/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-21657/4.9/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28328/4.9/0005.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28541/qca-wifi-host-cmn/0001.patch --directory=drivers/staging/qca-wifi-host-cmn git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-28772/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.14/0002.patch #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.14/0002.patch @@ -427,7 +430,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.pat git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.9/0009.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-37159/4.9/0007.patch -editKernelLocalversion "-dos.p427" +editKernelLocalversion "-dos.p430" else echo "kernel_sony_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh index d78b2a71..03503753 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_msm8937.sh @@ -93,8 +93,10 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-22387/ANY/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-30772/4.14/0002.patch #git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.14/0002.patch @@ -105,7 +107,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch -editKernelLocalversion "-dos.p105" +editKernelLocalversion "-dos.p107" else echo "kernel_xiaomi_msm8937 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh index 16af5b95..dadd6f01 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sdm845.sh @@ -97,6 +97,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2194/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2248/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2985/4.14/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.14/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3358/4.14/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23559/4.14/0002.patch @@ -109,7 +110,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-fortify/4.9/000 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0016.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-ro/4.9/0029.patch git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening-slab/4.9/0005.patch -editKernelLocalversion "-dos.p109" +editKernelLocalversion "-dos.p110" else echo "kernel_xiaomi_sdm845 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh index a07c9aed..56db0843 100644 --- a/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh +++ b/Scripts/LineageOS-20.0/CVE_Patchers/android_kernel_xiaomi_sm8250.sh @@ -79,6 +79,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-1380/4.19/0003.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2002/3.10-^6.3/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2007/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-2269/4.19/0003.patch +git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3090/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-3141/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-23000/^5.16/0001.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-31084/4.19/0003.patch @@ -87,7 +88,7 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35788/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35823/4.19/0002.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35824/4.19/0004.patch git apply $DOS_PATCHES_LINUX_CVES/CVE-2023-35828/4.19/0002.patch -editKernelLocalversion "-dos.p87" +editKernelLocalversion "-dos.p88" else echo "kernel_xiaomi_sm8250 is unavailable, not patching."; fi; cd "$DOS_BUILD_BASE" diff --git a/TODO-device_additions b/TODO-device_additions index 22b4807a..d77031ed 100644 --- a/TODO-device_additions +++ b/TODO-device_additions @@ -1,4 +1,4 @@ -Last updated: 2023-05-19 +Last updated: 2023-07-05 20.0 android_kernel_bq_msm8953 @@ -36,6 +36,9 @@ Last updated: 2023-05-19 android_kernel_samsung_sdm670 gts4lv gts4lvwifi + android_kernel_sony_sm8250 + pdx203 + pdx206 android_kernel_xiaomi_msm8937 - already supported mi8917 android_kernel_xiaomi_sdm439