proxmox-mirrors/pve-kernel
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-kernel synced 2025-05-01 02:21:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
ade017397c
pve-kernel/patches/kernel
History
Fiona Ebner ade017397c backport fixes for missing verification for short frames in network tap/tun devices 
A malicious guest with virtio-net device could apparently crash the
host [0]. Fixes CVE-2024-41090 and CVE-2024-41091. Reported in the
community forum [1].

[0]: https://seclists.org/oss-sec/2024/q3/110
[1]: https://forum.proxmox.com/threads/151813/

Signed-off-by: Fiona Ebner <f.ebner@proxmox.com>
(cherry picked from commit a791b86e0a)
FG: renumbered patches
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
2024-07-26 15:10:36 +02:00
..
0001-Make-mkcompile_h-accept-an-alternate-timestamp-strin.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0002-wireless-Add-Debian-wireless-regdb-certificates.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0003-bridge-keep-MAC-of-first-assigned-port.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0004-pci-Enable-overrides-for-missing-ACS-capabilities-4..patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0005-kvm-disable-default-dynamic-halt-polling-growth.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0006-net-core-downgrade-unregister_netdevice-refcount-lea.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0007-Revert-PCI-Coalesce-host-bridge-contiguous-apertures.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0008-PCI-Reinstate-PCI-Coalesce-host-bridge-contiguous-ap.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0009-do-not-generate-split-BTF-type-info-per-default.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0010-blk-cgroup-always-terminate-io.stat-lines.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0011-drivers-firmware-Don-t-mark-as-busy-the-simple-frame.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0012-drm-simpledrm-Request-memory-region-in-driver.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0013-fbdev-simplefb-Request-memory-region-in-driver.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0014-NFSv4.1-provide-mount-option-to-toggle-trunking-disc.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0015-EDAC-amd64-Add-PCI-device-IDs-for-family-19h-model-5.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0016-bug-introduce-ASSERT_STRUCT_OFFSET.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0017-KVM-x86-emulator-update-the-emulation-mode-after-rsm.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0018-KVM-x86-emulator-smm-add-structs-for-KVM-s-smram-lay.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0019-KVM-x86-emulator-smm-use-smram-structs-in-the-common.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0020-KVM-x86-emulator-smm-use-smram-struct-for-32-bit-smr.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0021-KVM-x86-emulator-smm-use-smram-struct-for-64-bit-smr.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0022-KVM-x86-SVM-use-smram-structs.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0023-KVM-x86-SVM-don-t-save-SVM-state-to-SMRAM-when-VM-is.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0024-KVM-x86-emulator-smm-preserve-interrupt-shadow-in-SM.patch rebase patches on top of Ubuntu-5.15.0-115.125 2024-06-10 16:55:23 +02:00
0025-tap-add-missing-verification-for-short-frame.patch backport fixes for missing verification for short frames in network tap/tun devices 2024-07-26 15:10:36 +02:00
0026-tun-add-missing-verification-for-short-frame.patch backport fixes for missing verification for short frames in network tap/tun devices 2024-07-26 15:10:36 +02:00