From 81a4e168330ee5cd853e449af6469bdccc4877db Mon Sep 17 00:00:00 2001 From: Andrew Chant Date: Fri, 19 May 2017 16:53:52 -0700 Subject: angler: update kernel prebuilt[ DO NOT MERGE ] 5547b005 Merge additional July 2017 security update. c0afb15f UPSTREAM: net/packet: fix overflow in check for tp_reserve 014b0670 UPSTREAM: net/packet: fix overflow in check for tp_frame_nr bd52f078 Merge July 2017 security updates. 3c9dc78e UPSTREAM: char: Drop bogus dependency of DEVPORT on !M68K 6953317b msm: kgsl: Fix kgsl memory allocation and free race condition 565b6aeb msm: camera: Add regulator enable and disable independent of CSID ff4b7cd2 msm: vidc: Allocate bus vote data during initialization 6592286d ashmem: remove cache maintenance support 725bad1e BACKPORT: udf: Check path length when reading symlink 59cc3207 ipv4: keep skb->dst around in presence of IP options bb3e9cb6 BACKPORT: UPSTREAM: dccp: fix freeing skb too early for IPV6_RECVPKTINFO 3731ac3b Revert "proc: smaps: Allow smaps access for CAP_SYS_RESOURCE" 0026addb net: wireless: bcmdhd: adding boundary check in wl_cfg80211_mgmt_tx 08fc3c18 BACKPORT: UPSTREAM: sg_start_req(): make sure that there's not too many elements in iovec b89051e6 msm: mdss: fix race condition during mdp debugfs release 6d26507a msm: mdss: fix race condition in mdp debugfs e58dd312 net: wireless: bcmdhd: adding boundary check in SWC gscan config 4ad6b90a arm64: angler_defconfig: Unsetting DEVPORT from angler configurations. 244c98fb Fixing an issue that caused DEVPORT to always be set. 04a04612 UPSTREAM: net/packet: fix overflow in check for priv area size fc4472ff net: wireless: bcmdhd: arpoe/ndoe IOVAR bug patch 8a9ae704 BACKPORT: UPSTREAM: HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands 61da6ad5 msm: camera2: cpp: Fix out-of-bounds frame or command buffer access 2bef9d1f soc: qcom: pil: Avoid possible buffer overflow during Modem boot 839c8789 Revert "soc: qcom: pil: Avoid possible buffer overflow during Modem boot" 52a31837 soc: qcom: pil: Avoid possible buffer overflow during Modem boot 7235a048 msm: camera: don't cut to 8bits for validating enum variable f15804ea msm: camera: sensor: Add boundary check for cci master 9a1fda30 FROMLIST: msm: qdsp6v2: set pointer to NULL after free Linux version 3.10.73-g5547b00553a (android- build@vped9.mtv.corp.google.com) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Fri May 19 23:01:51 UTC 2017 July 2017 Angler prebuilt Bug: 38138153 Bug: 32341313 Bug: 32938443 Bug: 33299365 Bug: 33301618 Bug: 33863407 Bug: 34112490 Bug: 34126808 Bug: 34173755 Bug: 34203176 Bug: 34620535 Bug: 34624155 Bug: 34951864 Bug: 34973477 Bug: 35195787 Bug: 35400552 Bug: 35784697 Bug: 35805460 Bug: 35841292 Bug: 35841297 Bug: 36000515 Bug: 36251182 Bug: 36468447 Bug: 36604779 Bug: 36725304 Bug: 37210310 Bug: 37275839 Bug: 38138153 Bug: 38177011 Bug: 38309523 Change-Id: Id4e84520bf3ae4ab82fec9d78ea7e37424aa46aa Source-Branch: android-msm-angler-3.10-nyc-mr2 Signed-off-by: Andrew Chant --- Image.gz-dtb | Bin 11160087 -> 11162895 bytes 1 file changed, 0 insertions(+), 0 deletions(-) diff --git a/Image.gz-dtb b/Image.gz-dtb index de27a09..96ffdcb 100644 Binary files a/Image.gz-dtb and b/Image.gz-dtb differ -- cgit v1.2.3 From eeff12d858af5a7064ea9f3ef46f0a8de010d4eb Mon Sep 17 00:00:00 2001 From: Daniel Rosenberg Date: Tue, 23 May 2017 18:26:47 -0700 Subject: angler: update kernel prebuilt b314a269 ANDROID: sdcardfs: Check for NULL in revalidate c2c22850 Merge July 2017 security patches. bd52f078 Merge July 2017 security updates. 3c9dc78e UPSTREAM: char: Drop bogus dependency of DEVPORT on !M68K 6953317b msm: kgsl: Fix kgsl memory allocation and free race condition 565b6aeb msm: camera: Add regulator enable and disable independent of CSID ff4b7cd2 msm: vidc: Allocate bus vote data during initialization 6592286d ashmem: remove cache maintenance support 725bad1e BACKPORT: udf: Check path length when reading symlink 59cc3207 ipv4: keep skb->dst around in presence of IP options bb3e9cb6 BACKPORT: UPSTREAM: dccp: fix freeing skb too early for IPV6_RECVPKTINFO 3731ac3b Revert "proc: smaps: Allow smaps access for CAP_SYS_RESOURCE" 0026addb net: wireless: bcmdhd: adding boundary check in wl_cfg80211_mgmt_tx 68edcc4b ANDROID: sdcardfs: Move top to its own struct 7e65de28 ANDROID: sdcardfs: fix sdcardfs_destroy_inode for the inode RCU approach 08fc3c18 BACKPORT: UPSTREAM: sg_start_req(): make sure that there's not too many elements in iovec b89051e6 msm: mdss: fix race condition during mdp debugfs release 6d26507a msm: mdss: fix race condition in mdp debugfs e58dd312 net: wireless: bcmdhd: adding boundary check in SWC gscan config 4ad6b90a arm64: angler_defconfig: Unsetting DEVPORT from angler configurations. 244c98fb Fixing an issue that caused DEVPORT to always be set. 04a04612 UPSTREAM: net/packet: fix overflow in check for priv area size fc4472ff net: wireless: bcmdhd: arpoe/ndoe IOVAR bug patch 8a9ae704 BACKPORT: UPSTREAM: HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands 61da6ad5 msm: camera2: cpp: Fix out-of-bounds frame or command buffer access 2bef9d1f soc: qcom: pil: Avoid possible buffer overflow during Modem boot 839c8789 Revert "soc: qcom: pil: Avoid possible buffer overflow during Modem boot" 52a31837 soc: qcom: pil: Avoid possible buffer overflow during Modem boot 7235a048 msm: camera: don't cut to 8bits for validating enum variable f15804ea msm: camera: sensor: Add boundary check for cci master cd21ac0e ANDROID: make PF_KEY SHA256 use RFC-compliant truncation. 668c9df9 ANDROID: Add untag hacks to inet_release function 9a1fda30 FROMLIST: msm: qdsp6v2: set pointer to NULL after free Linux version 3.10.73-gb314a269311 (android- build@wphl10.hot.corp.google.com) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Tue May 23 21:59:08 UTC 2017 Bug: 32341313 Bug: 32938443 Bug: 33299365 Bug: 33301618 Bug: 33863407 Bug: 34112490 Bug: 34114242 Bug: 34126808 Bug: 34173755 Bug: 34203176 Bug: 34620535 Bug: 34624155 Bug: 34951864 Bug: 34973477 Bug: 35195787 Bug: 35400552 Bug: 35784697 Bug: 35805460 Bug: 35841292 Bug: 35841297 Bug: 36000515 Bug: 36251182 Bug: 36374484 Bug: 36468447 Bug: 36604779 Bug: 36725304 Bug: 37210310 Bug: 37275839 Bug: 38045152 Bug: 38138153 Bug: 38177011 Bug: 38309523 Bug: 38502532 Change-Id: I8162fe214bae79cfd7928f1da3e8003602c0a16c Source-Branch: android-msm-angler-3.10 Signed-off-by: Daniel Rosenberg --- Image.gz-dtb | Bin 11186408 -> 11190739 bytes 1 file changed, 0 insertions(+), 0 deletions(-) diff --git a/Image.gz-dtb b/Image.gz-dtb index 60d9de4..af4760d 100644 Binary files a/Image.gz-dtb and b/Image.gz-dtb differ -- cgit v1.2.3 From ee9e215e5df08d3a46994ba8d3cf7871fd0d07c5 Mon Sep 17 00:00:00 2001 From: Ecco Park Date: Fri, 26 May 2017 14:37:01 -0700 Subject: angler: update kernel prebuilt 8da9b6c7 net: wireless: bcmdhd: fix RTT report of providing wrong information Linux version 3.10.73-g8da9b6c7f0d (android- build@wpdt2.hot.corp.google.com) (gcc version 4.9.x-google 20140827 (prerelease) (GCC) ) #1 SMP PREEMPT Thu May 25 17:05:36 UTC 2017 Bug: 37505450 Change-Id: Ib328b5d6216f2a85be6cf100c4f95694d1b66bf2 Source-Branch: android-msm-angler-3.10 Signed-off-by: Ecco Park --- Image.gz-dtb | Bin 11190739 -> 11191715 bytes 1 file changed, 0 insertions(+), 0 deletions(-) diff --git a/Image.gz-dtb b/Image.gz-dtb index af4760d..1fbd042 100644 Binary files a/Image.gz-dtb and b/Image.gz-dtb differ -- cgit v1.2.3