StarlingX

Bug #1847817
Comment #16

Comment 16 for bug 1847817

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2020-01-13: Fix merged to integ (r/stx.2.0)

#16

Reviewed: https://review.opendev.org/701653
Committed: https://git.openstack.org/cgit/starlingx/integ/commit/?id=1d68fd32fd570b6e9c2fd49ddd5058b91f60ea06
Submitter: Zuul
Branch: r/stx.2.0

commit 1d68fd32fd570b6e9c2fd49ddd5058b91f60ea06
Author: Robin Lu <email address hidden>
Date: Thu Nov 21 15:04:40 2019 +0800

Update kernel-std patches for kernel upgrade to version 1062.1.2

    This upgrade fixes the CVEs listed below. We refresh the patches
    against the new kernel source.
    The patch 15 is now included in new version, so I drop it
    in the new patch.

    CVE bug: CVE-2019-11810:kernel: a NULL pointer dereference in
    drivers/scsi/megaraid/megaraid_sas_base.c leading to DoS
    CVE bug: CVE-2019-11811: kernel: use-after-free in IPMI Edit
    CVE bug: CVE-2019-14835: kernel: vhost-net: guest to host kernel
    escape during migration

    Closes-Bug: 1849206
    Closes-Bug: 1849209
    Closes-Bug: 1847817

    Change-Id: I217cf8684e31dacea627c33462e5e4b6e089c38f
    Depends-On: https://review.opendev.org/#/c/701650/
    Signed-off-by: Robin Lu <email address hidden>