Home Home > GIT Browse > SLE12-SP4-AZURE
summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGary Lin <glin@suse.com>2019-02-20 12:23:33 +0800
committerGary Lin <glin@suse.com>2019-02-20 12:23:33 +0800
commite503a7e91989c9d7445ad987dbc5facc3a7b3bca (patch)
tree4f16f890d6b88f83391d7059e03310ef360900af
parent489cb8c591bac765a4f9b195367a097168a4bdfa (diff)
- Update
patches.fixes/bpf-fix-check_map_access-smin_value-test-when-pointe.patch (bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308). - Update patches.fixes/bpf-move-prev_-insn_idx-into-verifier-env.patch (bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308). - Update patches.fixes/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch (bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308). - Update patches.fixes/bpf-restrict-map-value-pointer-arithmetic-for-unpriv.patch (bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308). - Update patches.fixes/bpf-restrict-stack-pointer-arithmetic-for-unprivileg.patch (bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308). - Update patches.fixes/bpf-restrict-unknown-scalars-of-mixed-signed-bounds-.patch (bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308).
-rw-r--r--patches.fixes/bpf-fix-check_map_access-smin_value-test-when-pointe.patch2
-rw-r--r--patches.fixes/bpf-move-prev_-insn_idx-into-verifier-env.patch2
-rw-r--r--patches.fixes/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch2
-rw-r--r--patches.fixes/bpf-restrict-map-value-pointer-arithmetic-for-unpriv.patch2
-rw-r--r--patches.fixes/bpf-restrict-stack-pointer-arithmetic-for-unprivileg.patch2
-rw-r--r--patches.fixes/bpf-restrict-unknown-scalars-of-mixed-signed-bounds-.patch2
6 files changed, 6 insertions, 6 deletions
diff --git a/patches.fixes/bpf-fix-check_map_access-smin_value-test-when-pointe.patch b/patches.fixes/bpf-fix-check_map_access-smin_value-test-when-pointe.patch
index 8d11645171..f23eeb2658 100644
--- a/patches.fixes/bpf-fix-check_map_access-smin_value-test-when-pointe.patch
+++ b/patches.fixes/bpf-fix-check_map_access-smin_value-test-when-pointe.patch
@@ -4,7 +4,7 @@ Subject: bpf: fix check_map_access smin_value test when pointer contains
offset
Patch-mainline: v5.0-rc1
Git-commit: b7137c4eab85c1cf3d46acdde90ce1163b28c873
-References: bsc#1068032 CVE-2017-5753
+References: bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308
In check_map_access() we probe actual bounds through __check_map_access()
with offset of reg->smin_value + off for lower bound and offset of
diff --git a/patches.fixes/bpf-move-prev_-insn_idx-into-verifier-env.patch b/patches.fixes/bpf-move-prev_-insn_idx-into-verifier-env.patch
index cba26cdae2..e15ba62757 100644
--- a/patches.fixes/bpf-move-prev_-insn_idx-into-verifier-env.patch
+++ b/patches.fixes/bpf-move-prev_-insn_idx-into-verifier-env.patch
@@ -3,7 +3,7 @@ Date: Thu, 3 Jan 2019 00:58:27 +0100
Subject: bpf: move {prev_,}insn_idx into verifier env
Patch-mainline: v5.0-rc1
Git-commit: c08435ec7f2bc8f4109401f696fd55159b4b40cb
-References: bsc#1068032 CVE-2017-5753
+References: bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308
Move prev_insn_idx and insn_idx from the do_check() function into
the verifier environment, so they can be read inside the various
diff --git a/patches.fixes/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch b/patches.fixes/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch
index 41f10f4181..16ac5ed040 100644
--- a/patches.fixes/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch
+++ b/patches.fixes/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch
@@ -3,7 +3,7 @@ Date: Thu, 3 Jan 2019 00:58:34 +0100
Subject: bpf: prevent out of bounds speculation on pointer arithmetic
Patch-mainline: v5.0-rc1
Git-commit: 979d63d50c0c0f7bc537bf821e056cc9fe5abd38
-References: bsc#1068032 CVE-2017-5753
+References: bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308
Jann reported that the original commit back in b2157399cc98
("bpf: prevent out-of-bounds speculation") was not sufficient
diff --git a/patches.fixes/bpf-restrict-map-value-pointer-arithmetic-for-unpriv.patch b/patches.fixes/bpf-restrict-map-value-pointer-arithmetic-for-unpriv.patch
index ae75cd0be1..5abfbda004 100644
--- a/patches.fixes/bpf-restrict-map-value-pointer-arithmetic-for-unpriv.patch
+++ b/patches.fixes/bpf-restrict-map-value-pointer-arithmetic-for-unpriv.patch
@@ -3,7 +3,7 @@ Date: Thu, 3 Jan 2019 00:58:30 +0100
Subject: bpf: restrict map value pointer arithmetic for unprivileged
Patch-mainline: v5.0-rc1
Git-commit: 0d6303db7970e6f56ae700fa07e11eb510cda125
-References: bsc#1068032 CVE-2017-5753
+References: bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308
Restrict map value pointer arithmetic for unprivileged users in that
arithmetic itself must not go out of bounds as opposed to the actual
diff --git a/patches.fixes/bpf-restrict-stack-pointer-arithmetic-for-unprivileg.patch b/patches.fixes/bpf-restrict-stack-pointer-arithmetic-for-unprivileg.patch
index a7cec82f8d..64348a467e 100644
--- a/patches.fixes/bpf-restrict-stack-pointer-arithmetic-for-unprivileg.patch
+++ b/patches.fixes/bpf-restrict-stack-pointer-arithmetic-for-unprivileg.patch
@@ -3,7 +3,7 @@ Date: Thu, 3 Jan 2019 00:58:31 +0100
Subject: bpf: restrict stack pointer arithmetic for unprivileged
Patch-mainline: v5.0-rc1
Git-commit: e4298d25830a866cc0f427d4bccb858e76715859
-References: bsc#1068032 CVE-2017-5753
+References: bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308
Restrict stack pointer arithmetic for unprivileged users in that
arithmetic itself must not go out of bounds as opposed to the actual
diff --git a/patches.fixes/bpf-restrict-unknown-scalars-of-mixed-signed-bounds-.patch b/patches.fixes/bpf-restrict-unknown-scalars-of-mixed-signed-bounds-.patch
index 21985c592a..c5a462e273 100644
--- a/patches.fixes/bpf-restrict-unknown-scalars-of-mixed-signed-bounds-.patch
+++ b/patches.fixes/bpf-restrict-unknown-scalars-of-mixed-signed-bounds-.patch
@@ -3,7 +3,7 @@ Date: Thu, 3 Jan 2019 00:58:32 +0100
Subject: bpf: restrict unknown scalars of mixed signed bounds for unprivileged
Patch-mainline: v5.0-rc1
Git-commit: 9d7eceede769f90b66cfa06ad5b357140d5141ed
-References: bsc#1068032 CVE-2017-5753
+References: bsc#1068032 CVE-2017-5753 bsc#1124055 CVE-2019-7308
For unknown scalars of mixed signed bounds, meaning their smin_value is
negative and their smax_value is positive, we need to reject arithmetic