Address kernel CVE-2022-38096, CVE-2023-47233, CVE-2023-52827, CVE-2024-25739, CVE-2024-26900, CVE-2024-26902, CVE-2024-26929, CVE-2024-26934, CVE-2024-26949, CVE-2024-26952, CVE-2024-26979, CVE-2024-27013, CVE-2024-27015, CVE-2024-27016, CVE-2024-27018, CVE-2024-27019, CVE-2024-27020, CVE-2024-35978, CVE-2024-35982, CVE-2024-35984, CVE-2024-35990, CVE-2024-35997, CVE-2024-36008 (#9270)

rlmenge · web-flow · commit db8f0137f628 · 2024-05-31T10:21:15.000-07:00
Address CVE-2022-38096, CVE-2023-47233, CVE-2023-52827, CVE-2024-25739, CVE-2024-26900, CVE-2024-26902, CVE-2024-26929, CVE-2024-26934, CVE-2024-26949, CVE-2024-26952, CVE-2024-26979, CVE-2024-27013, CVE-2024-27015, CVE-2024-27016, CVE-2024-27018, CVE-2024-27019, CVE-2024-27020, CVE-2024-35978, CVE-2024-35982, CVE-2024-35984, CVE-2024-35990, CVE-2024-35997, CVE-2024-36008
diff --git a/SPECS/kernel/CVE-2022-38096.nopatch b/SPECS/kernel/CVE-2022-38096.nopatch
@@ -0,0 +1,3 @@
+CVE-2022-38096 - in version 5.15.154.1
+upstream: 517621b7060096e48e42f545fa6646fc00252eac
+stable: 899e154f9546fcae18065d74064889d08fff62c2
diff --git a/SPECS/kernel/CVE-2023-47233.nopatch b/SPECS/kernel/CVE-2023-47233.nopatch
@@ -0,0 +1,3 @@
+CVE-2023-47233 - in version 5.15.158.1
+upstream: 0f7352557a35ab7888bc7831411ec8a3cbe20d78
+stable: 8c36205123dc57349b59b4f1a2301eb278cbc731
diff --git a/SPECS/kernel/CVE-2023-52827.nopatch b/SPECS/kernel/CVE-2023-52827.nopatch
@@ -0,0 +1,3 @@
+CVE-2023-52827 - ath12k driver support is not in 5.15.X
+upstream introducing commit: d889913205cf7ebda905b1e62c5867ed4e39f6c2
+upstream fix commit: 1bc44a505a229bb1dd4957e11aa594edeea3690e
diff --git a/SPECS/kernel/CVE-2024-25739.nopatch b/SPECS/kernel/CVE-2024-25739.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-25739 - in version 5.15.158.1
+upstream: 68a24aba7c593eafa8fd00f2f76407b9b32b47a9
+stable: 8ce982285414b741e2dd6ebb5a62e79dede44f7f
diff --git a/SPECS/kernel/CVE-2024-26900.nopatch b/SPECS/kernel/CVE-2024-26900.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-26900 - in version 5.15.159.1
+upstream: 6cf350658736681b9d6b0b6e58c5c76b235bb4c4
+stable: f3a1787dc48213f6caea5ba7d47e0222e7fa34a9
diff --git a/SPECS/kernel/CVE-2024-26902.nopatch b/SPECS/kernel/CVE-2024-26902.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-26902 - 5.15.X does not support RISCV_PMU_SBI
+upstream introducing commit: e9991434596f5373dfd75857b445eb92a9253c56
+upstream fix commit: 34b567868777e9fd39ec5333969728a7f0cf179c
diff --git a/SPECS/kernel/CVE-2024-26929.nopatch b/SPECS/kernel/CVE-2024-26929.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-26929 - in version 5.15.158.1
+upstream: 82f522ae0d97119a43da53e0f729275691b9c525
+stable: b03e626bd6d3f0684f56ee1890d70fc9ca991c04
diff --git a/SPECS/kernel/CVE-2024-26934.nopatch b/SPECS/kernel/CVE-2024-26934.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-26934 - in version 5.15.158.1
+upstream: 80ba43e9f799cbdd83842fc27db667289b3150f5
+stable: 1b175bc579f46520b11ecda443bcd2ee4904f66a
diff --git a/SPECS/kernel/CVE-2024-26949.nopatch b/SPECS/kernel/CVE-2024-26949.nopatch
@@ -0,0 +1,4 @@
+CVE-2024-26949 - introducing commit not present in 5.15.159.1
+(5.15.X does not support for getting power1_cap_min value for drm/amd/pm)
+upstream introducing commit: 7968e9748fbbd7ae49770d9f8a8231d8bce2aebb
+upstream fix commit: 08ae9ef829b8055c2fdc8cfee37510c1f4721a07
diff --git a/SPECS/kernel/CVE-2024-26952.nopatch b/SPECS/kernel/CVE-2024-26952.nopatch
@@ -0,0 +1,2 @@
+CVE-2024-26952 - Mariner does not enable ksmbd at this time (5.15.159.1-1)
+Upstream commit: c6cd2e8d2d9aa7ee35b1fa6a668e32a22a9753da
diff --git a/SPECS/kernel/CVE-2024-26979.nopatch b/SPECS/kernel/CVE-2024-26979.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-26979 - in version 5.15.158.1
+upstream: 517621b7060096e48e42f545fa6646fc00252eac
+stable: 899e154f9546fcae18065d74064889d08fff62c2
diff --git a/SPECS/kernel/CVE-2024-27013.nopatch b/SPECS/kernel/CVE-2024-27013.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-27013 - in version 5.15.158.1
+upstream: f8bbc07ac535593139c875ffa19af924b1084540
+stable: a50dbeca28acf7051dfa92786b85f704c75db6eb
diff --git a/SPECS/kernel/CVE-2024-27015.nopatch b/SPECS/kernel/CVE-2024-27015.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-27015 - in version 5.15.158.1
+upstream: 6db5dc7b351b9569940cd1cf445e237c42cd6d27
+stable: e719b52d0c56989b0f3475a03a6d64f182c85b56
diff --git a/SPECS/kernel/CVE-2024-27016.nopatch b/SPECS/kernel/CVE-2024-27016.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-27016 - in version 5.15.158.1
+upstream: 87b3593bed1868b2d9fe096c01bcdf0ea86cbebf
+stable: d06977b9a4109f8738bb276125eb6a0b772bc433
diff --git a/SPECS/kernel/CVE-2024-27018.nopatch b/SPECS/kernel/CVE-2024-27018.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-27018 - in version 5.15.157.1
+upstream: 751de2012eafa4d46d8081056761fa0e9cc8a178
+stable: dceb683ab87ca3666a9bb5c0158528b646faedc4
diff --git a/SPECS/kernel/CVE-2024-27019.nopatch b/SPECS/kernel/CVE-2024-27019.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-27019 - in version 5.15.158.1
+upstream: d78d867dcea69c328db30df665be5be7d0148484
+stable: 379bf7257bc5f2a1b1ca8514e08a871b7bf6d920
diff --git a/SPECS/kernel/CVE-2024-27020.nopatch b/SPECS/kernel/CVE-2024-27020.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-27020 - in version 5.15.158.1
+upstream: f969eb84ce482331a991079ab7a5c4dc3b7f89bf
+stable: 0b6de00206adbbfc6373b3ae38d2a6f197987907
diff --git a/SPECS/kernel/CVE-2024-35978.nopatch b/SPECS/kernel/CVE-2024-35978.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-35978 - in version 5.15.158.1
+upstream: 45d355a926ab40f3ae7bc0b0a00cb0e3e8a5a810
+stable: 75193678cce993aa959e7764b6df2f599886dd06
diff --git a/SPECS/kernel/CVE-2024-35982.nopatch b/SPECS/kernel/CVE-2024-35982.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-35982 - in version 5.15.158.1
+upstream: b1f532a3b1e6d2e5559c7ace49322922637a28aa
+stable: 87b6af1a7683e021710c08fc0551fc078346032f
diff --git a/SPECS/kernel/CVE-2024-35984.nopatch b/SPECS/kernel/CVE-2024-35984.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-35984 - in version 5.15.158.1
+upstream: 91811a31b68d3765b3065f4bb6d7d6d84a7cfc9f
+stable: 5a09eae9a7db597fe0c1fc91636205b4a25d2620
diff --git a/SPECS/kernel/CVE-2024-35990.nopatch b/SPECS/kernel/CVE-2024-35990.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-35990 - in version 5.15.158.1
+upstream: 244296cc3a155199a8b080d19e645d7d49081a38
+stable: 0ccac964520a6f19e355652c8ca38af2a7f27076
diff --git a/SPECS/kernel/CVE-2024-35997.nopatch b/SPECS/kernel/CVE-2024-35997.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-35997 - in version 5.15.158.1
+upstream: 9c0f59e47a90c54d0153f8ddc0f80d7a36207d0e
+stable: b65fb50e04a95eec34a9d1bc138454a98a5578d8
diff --git a/SPECS/kernel/CVE-2024-36008.nopatch b/SPECS/kernel/CVE-2024-36008.nopatch
@@ -0,0 +1,3 @@
+CVE-2024-36008 - in version 5.15.158.1
+upstream: 58a4c9b1e5a3e53c9148e80b90e1e43897ce77d1
+stable: 03b5a9b2b526862b21bcc31976e393a6e63785d1

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2022-38096 - in version 5.15.154.1`
	`2`	`+upstream: 517621b7060096e48e42f545fa6646fc00252eac`
	`3`	`+stable: 899e154f9546fcae18065d74064889d08fff62c2`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2023-47233 - in version 5.15.158.1`
	`2`	`+upstream: 0f7352557a35ab7888bc7831411ec8a3cbe20d78`
	`3`	`+stable: 8c36205123dc57349b59b4f1a2301eb278cbc731`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2023-52827 - ath12k driver support is not in 5.15.X`
	`2`	`+upstream introducing commit: d889913205cf7ebda905b1e62c5867ed4e39f6c2`
	`3`	`+upstream fix commit: 1bc44a505a229bb1dd4957e11aa594edeea3690e`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2024-25739 - in version 5.15.158.1`
	`2`	`+upstream: 68a24aba7c593eafa8fd00f2f76407b9b32b47a9`
	`3`	`+stable: 8ce982285414b741e2dd6ebb5a62e79dede44f7f`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2024-26900 - in version 5.15.159.1`
	`2`	`+upstream: 6cf350658736681b9d6b0b6e58c5c76b235bb4c4`
	`3`	`+stable: f3a1787dc48213f6caea5ba7d47e0222e7fa34a9`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2024-26902 - 5.15.X does not support RISCV_PMU_SBI`
	`2`	`+upstream introducing commit: e9991434596f5373dfd75857b445eb92a9253c56`
	`3`	`+upstream fix commit: 34b567868777e9fd39ec5333969728a7f0cf179c`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2024-26929 - in version 5.15.158.1`
	`2`	`+upstream: 82f522ae0d97119a43da53e0f729275691b9c525`
	`3`	`+stable: b03e626bd6d3f0684f56ee1890d70fc9ca991c04`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+CVE-2024-26934 - in version 5.15.158.1`
	`2`	`+upstream: 80ba43e9f799cbdd83842fc27db667289b3150f5`
	`3`	`+stable: 1b175bc579f46520b11ecda443bcd2ee4904f66a`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+CVE-2024-26952 - Mariner does not enable ksmbd at this time (5.15.159.1-1)`
	`2`	`+Upstream commit: c6cd2e8d2d9aa7ee35b1fa6a668e32a22a9753da`