StarlingX

  1. Bug #1847817
  2. Comment #20

Comment 20 for bug 1847817

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to integ (r/stx.3.0)

Reviewed: https://review.opendev.org/701144
Committed: https://git.openstack.org/cgit/starlingx/integ/commit/?id=80abda46801215a5db6107717fac1ed1abdc7474
Submitter: Zuul
Branch: r/stx.3.0

commit 80abda46801215a5db6107717fac1ed1abdc7474
Author: Robin Lu <email address hidden>
Date: Thu Nov 21 15:04:40 2019 +0800

    Update kernel-std patches for kernel upgrade to version 1062.1.2

    This upgrade fixes the CVEs listed below. We refresh the patches
    against the new kernel source.
    The patch 15 is now included in new version, so I drop it
    in the new patch.

    CVE bug: CVE-2019-11810:kernel: a NULL pointer dereference in
    drivers/scsi/megaraid/megaraid_sas_base.c leading to DoS
    CVE bug: CVE-2019-11811: kernel: use-after-free in IPMI Edit
    CVE bug: CVE-2019-14835: kernel: vhost-net: guest to host kernel
    escape during migration

    Closes-Bug: 1849206
    Closes-Bug: 1849209
    Closes-Bug: 1847817

    Change-Id: I217cf8684e31dacea627c33462e5e4b6e089c38f
    Depends-On: https://review.opendev.org/#/c/701141/
    Signed-off-by: Robin Lu <email address hidden>
    (cherry picked from commit 38c184f1b415dbe2eca4a062f9f464a2dca01aa9)