Cip-kernel-sec Updates for Week of 2021-01-07


Chen-Yu Tsai (Moxa) <wens@...>
 

Hi everyone,

Three new issues this week:

- CVE-2020-35499 [bluetooth/sco] - fixed in all relevant kernels
- CVE-2020-36158 [mwifiex] - fixed in mainline; needs backport
- CVE-2021-0342 [net/tun] - fixed in all relevant kernels


Regards
ChenYu


Pavel Machek
 

Hi!

Three new issues this week:

- CVE-2020-36158 [mwifiex] - fixed in mainline; needs backport
This afternoon backports of this one were queued to all branches
relevant to us:

v |2ee7362d6 5c455c o: 5.10| mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start
v |69c37921f 5c455c o: 4.19| mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start
a |3a1e2e3e4 5c455c .: 4.4| mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start

...so it seems this is going to be handled without our intervention.

Best regards,
Pavel
--
DENX Software Engineering GmbH, Managing Director: Wolfgang Denk
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany