yova
cf1b1c41e3
top locale DE
...
Change-Id: I8cfe6be8c6c07407fea7000c45769ff8027997f7
3 months ago
Kevin F. Haggerty
a99837136a
Bump Security String to 2024-02-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-40122 A-286235483 ID High 11, 12, 12L, 13, 14
CVE-2024-0030 A-276898739 ID High 11, 12, 12L, 13, 14
CVE-2024-0031 A-297524203 RCE Critical 11, 12, 12L, 13, 14
CVE-2024-0032 A-283962634 EoP High 11, 12, 12L, 13, 14
CVE-2024-0033 A-294609150 EoP High 11, 12, 12L, 13, 14
CVE-2024-0034 A-298094386 EoP High 11, 12, 12L, 13
CVE-2024-0035 A-300903792 EoP High 11, 12, 12L, 13, 14
CVE-2024-0036 A-230492947 EoP High 11, 12, 12L, 13, 14
CVE-2024-0037 A-292104015 ID High 11, 12, 12L, 13, 14
CVE-2024-0040 A-300007708 ID High 11, 12, 12L, 13, 14
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2023-40093 A-279055389 ID High 11, 12, 12L, 13, 14 c554ab00526
1ed3da3f0
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2024-0014 A-304082474 EoP High 11, 12, 12L, 13, 14
(Prebuilt GMS Component)
CVE-2024-0029 A-305664128 EoP High 13
CVE-2024-0038 A-309426390 EoP High 14
CVE-2024-0041 A-300741186 EoP High 14
Change-Id: I86ece97ccf345e089886af02ca2a8db318a70e3d
3 months ago
Kevin F. Haggerty
f9a9f5c5e2
Bump Security String to 2024-01-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21245 A-222446076 EoP High 11, 12, 12L, 13, 14
CVE-2024-0015 A-300090204 EoP High 11, 12, 12L, 13
CVE-2024-0016 A-279169188 ID High 11, 12, 12L, 13, 14
CVE-2024-0017 A-285142084 ID High 11, 12, 12L, 13, 14
CVE-2024-0018 A-300476626 EoP High 11, 12, 12L, 13, 14
CVE-2024-0020 A-299614635 ID High 11, 12, 12L, 13, 14
CVE-2024-0023 A-283099444 EoP High 11, 12, 12L, 13, 14
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-40085 A-269271098 ID High 12, 12L, 13
CVE-2024-0019 A-294104969 ID High 12, 12L, 13, 14
CVE-2024-0021 A-282934003 EoP High 13, 14
Change-Id: I5efd6ef163ccbf70ecc3db9c9e87d174ea50a89f
4 months ago
Kevin F. Haggerty
f5a12fe518
Bump Security String to 2023-12-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21267 A-218495634 ID High 11, 12, 12L, 13, 14
CVE-2023-21394 A-296915211 ID High 11, 12, 12L, 13
CVE-2023-35668 A-283962802 ID High 11, 12, 12L, 13
CVE-2023-40073 A-287640400 ID High 11, 12, 12L, 13, 14
CVE-2023-40074 A-247513680 DoS High 11, 12, 12L, 13
CVE-2023-40075 A-281061287 DoS High 11, 12, 12L, 13, 14
CVE-2023-40077 A-298057702 EoP Critical 11, 12, 12L, 13, 14
CVE-2023-40081 A-284297452 ID High 11, 12, 12L, 13, 14
CVE-2023-40084 A-272382770 EoP High 11, 12, 12L, 13, 14
CVE-2023-40087 A-275895309 EoP High 11, 12, 12L, 13, 14
CVE-2023-40088 A-291500341 RCE Critical 11, 12, 12L, 13, 14
CVE-2023-40090 A-274478807 EoP High 11, 12, 12L, 13, 14
CVE-2023-40091 A-283699145 EoP High 11, 12, 12L, 13, 14
CVE-2023-40092 A-288110451 ID High 11, 12, 12L, 13, 14
CVE-2023-40094 A-288896339 EoP High 11, 12, 12L, 13, 14
CVE-2023-40095 A-273729172 EoP High 11, 12, 12L, 13, 14
CVE-2023-40096 A-268724205 EoP High 11, 12, 12L, 13, 14
CVE-2023-40097 A-295334906 EoP High 11, 12, 12L, 13
CVE-2023-45774 A-288113797 EoP High 11, 12, 12L, 13, 14
CVE-2023-45866 A-294854926 EoP Critical 11, 12, 12L, 13, 14
Implemented (Qualcomm components):
==================================
CVE: References: Severity: Subcomponent:
CVE-2023-28588 A-285902729 High Bluetooth
QC-CR#3417458
CVE-2023-33092 A-299146537 High Bluetooth
QC-CR#3507292
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-40076 A-303835719 ID Critical 14
CVE-2023-40078 A-275626001 EoP High 14
CVE-2023-40079 A-278722815 EoP High 14
CVE-2023-40080 A-275057843 EoP High 13, 14
CVE-2023-40082 A-290909089 EoP High 14
CVE-2023-40083 A-277590580 ID High 12, 12L, 13, 14
CVE-2023-40089 A-294228721 EoP High 14
CVE-2023-40098 A-288896269 ID High 12, 12L, 13, 14
CVE-2023-40103 A-197260547 EoP High 14
CVE-2023-45773 A-275057847 EoP High 13, 14
CVE-2023-45775 A-275340684 EoP High 14
CVE-2023-45776 A-282234870 EoP High 14
CVE-2023-45777 A-299930871 EoP High 13, 14
CVE-2023-45781 A-275553827 ID High 12, 12L, 13, 14
Change-Id: I4699f12b73b9696a6415fba9958482d52e6be6f7
5 months ago
Kevin F. Haggerty
4f18b156ef
Bump Security String to 2023-11-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-40104 A-284262845 ID High 11, 12, 12L, 13
CVE-2023-40105 A-289549315 ID High 11, 12, 12L, 13, 14
CVE-2023-40106 A-278558814 EoP High 11, 12, 12L, 13, 14
CVE-2023-40109 A-291299076 EoP High 11, 12, 12L, 13, 14
CVE-2023-40100 A-278303745 EoP High 11, 12, 12L, 13, 14
CVE-2023-40110 A-243463593 EoP High 11, 12, 12L, 13, 14
CVE-2023-40112 A-168903843 ID High 11
CVE-2023-40113 A-289242655 ID Critical 11, 12, 12L, 13
CVE-2023-40114 A-243381410 EoP High 11, 12, 12L, 13, 14
CVE-2023-40115 A-285645039 EoP High 11, 12, 12L, 13, 14
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2023-21103 A-259064622 DoS High 11, 12, 12L, 13 e14e61d2040c
a14b56609
CVE-2023-21111 A-256819769 DoS High 11, 12, 12L, 13 e14e61d2040c
a14b56609
CVE-2023-40124 A-272025416 ID High 11, 12, 12L, 13 0888a4551769
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-40107 A-287298721 EoP High 12, 12L, 13, 14
CVE-2023-40111 A-272024837 EoP High 14
Change-Id: Ied58d58ed7d81c4b1b7a4319506702ba0773a0d8
6 months ago
LuK1337
217e075f20
fixup! releasetools: support reading release keys out of some sort of command
...
subprocess no longer outputs strings thus we got to use decode('utf-8')
Change-Id: Ia8ead82cf6b2beded4c53a078126512f44e50cf2
7 months ago
Kevin F. Haggerty
24da9be8f3
Bump Security String to 2023-10-06
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21244 A-276729064 EoP High 11, 12, 12L, 13
CVE-2023-21252 A-275339978 DoS High 11, 12, 12L, 13
CVE-2023-40116 A-270368476 EoP High 11, 12, 12L
CVE-2023-40117 A-253043065 EoP High 11, 12, 12L, 13
CVE-2023-40120 A-274775190 EoP High 11, 12, 12L, 13
CVE-2023-40121 A-224771621 ID High 11, 12, 12L, 13
CVE-2023-40123 A-278246904 ID High 11, 12, 12L, 13
CVE-2023-40125 A-279902472 EoP High 11, 12, 12L, 13
CVE-2023-40127 A-262244882 ID High 11, 12, 12L, 13
CVE-2023-40128 A-274231102 EoP High 11, 12, 12L, 13
CVE-2023-40130 A-289809991 EoP High 11, 12, 12L, 13
CVE-2023-40133 A-283264674 ID High 11, 12, 12L, 13
CVE-2023-40135 A-281848557 ID High 11, 12, 12L, 13
CVE-2023-40136 A-281666022 ID High 11, 12, 12L, 13
CVE-2023-40137 A-281665050 ID High 11, 12, 12L, 13
CVE-2023-40138 A-281534749 ID High 11, 12, 12L, 13
CVE-2023-40139 A-281533566 ID High 11, 12, 12L, 13
CVE-2023-40140 A-274058082 EoP High 11, 12, 12L, 13
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2023-4863 A-299477569 RCE Critical 11, 12, 12L, 13 eee262a
CVE-2023-21253 A-266580022 DoS High 11, 12, 12L, 13 c6e04b0
CVE-2023-21266 A-223376078 EoP High 11, 12, 12L, 13 0e52101dbc3e
CVE-2023-21291 A-277593270 ID High 11, 12, 12L, 13 6d75d088a674
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-40129 A-273874525 RCE Critical 12, 12L, 13
CVE-2023-40131 A-282919145 EoP High 12, 12L, 13
CVE-2023-40134 A-283101289 ID High 12, 12L, 13
Change-Id: Id4164bb314eca243bea55d7c46628d1841521ff0
7 months ago
Kevin F. Haggerty
3d8c07cd9e
Bump Security String to 2023-09-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-35658 A-274617156 RCE Critical 11, 12, 12L, 13
CVE-2023-35665 A-256819787 EoP High 11, 12, 12L, 13
CVE-2023-35666 A-269253349 EoP High 11, 12, 12L, 13
CVE-2023-35667 A-282932362 EoP High 11, 12, 12L, 13
CVE-2023-35669 A-265798288 EoP High 11, 12, 12L, 13
CVE-2023-35670 A-276898626 EoP High 11, 12, 12L, 13
CVE-2023-35671 A-268038643 ID High 11, 12, 12L, 13
CVE-2023-35673 A-273966636 RCE Critical 11, 12, 12L, 13
CVE-2023-35674 A-264029851 EoP High 11, 12, 12L, 13
CVE-2023-35675 A-284297711 ID High 11, 12, 12L, 13
CVE-2023-35677 A-280793427 DoS High 11, 12, 12L, 13
CVE-2023-35679 A-245137718 ID High 11, 12, 12L, 13
CVE-2023-35680 A-256591023 ID High 11, 12, 12L, 13
CVE-2023-35682 A-270152142 EoP High 11, 12, 12L, 13
CVE-2023-35683 A-223793631 ID High 11, 12, 12L, 13
CVE-2023-35684 A-280633699 EoP High 11, 12, 12L, 13
CVE-2023-35687 A-245135112 EoP High 11, 12, 12L, 13
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-35664 A-269270167 ID High 12, 12L, 13
CVE-2023-35676 A-278720336 EoP High 12, 12L, 13
CVE-2023-35681 A-271335899 RCE Critical 13
Change-Id: I73e555113d8be34d38cf17ce387bb7195d34bf0b
8 months ago
Kevin F. Haggerty
47e2c7dd9f
Bump Security String to 2023-08-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21265 A-262521447 ID High 11, 12, 12L, 13
CVE-2023-21267 A-218495634 ID High 11, 12, 12L, 13
CVE-2023-21268 A-264880895 DoS High 11, 12, 12L, 13
CVE-2023-21281 A-265431505 EoP High 11, 12, 12L, 13
CVE-2023-21282 A-279766766 RCE Critical 11, 12, 12L, 13
CVE-2023-21283 A-280797684 ID High 11, 12, 12L, 13
CVE-2023-21284 A-260729089 DoS High 11, 12, 12L, 13
CVE-2023-21285 A-271851153 ID High 11, 12, 12L, 13
CVE-2023-21286 A-277740082 EoP High 11, 12, 12L, 13
CVE-2023-21287 A-278221085 RCE High 11, 12, 12L, 13
CVE-2023-21288 A-276294099 ID High 11, 12, 12L, 13
CVE-2023-21289 A-272020068 ID High 11, 12, 12L, 13
CVE-2023-21290 A-264880689 DoS High 11, 12, 12L, 13
CVE-2023-21292 A-236688380 ID High 11, 12, 12L, 13
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2023-21272 A-227471459 EoP High 11, 12, 12L 2f24979c13a3
CVE-2023-21273 A-272783039 RCE Critical 11, 12, 12L, 13 433f913eb4
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-20965 A-250574778 EoP High 13
CVE-2023-21132 A-253043218 EoP High 12, 12L, 13
CVE-2023-21133 A-253043502 EoP High 12, 12L, 13
CVE-2023-21134 A-253043495 EoP High 12, 12L, 13
CVE-2023-21140 A-253043490 EoP High 12, 12L, 13
CVE-2023-21242 A-277824547 EoP High 13
CVE-2023-21269 A-271576718 EoP High 13
CVE-2023-21270 A-283006437 EoP High 12, 12L, 13
CVE-2023-21271 A-269455813 ID High 12, 12L, 13
CVE-2023-21274 A-269456018 ID High 12, 12L, 13
CVE-2023-21275 A-278691965 EoP High 12, 12L, 13
CVE-2023-21276 A-213170822 ID High 12, 12L, 13
CVE-2023-21277 A-281018094 ID High 12, 12L, 13
CVE-2023-21278 A-281807669 EoP High 12, 12L, 13
CVE-2023-21279 A-277741109 ID High 12, 12L, 13
CVE-2023-21280 A-270049379 DoS High 12, 12L, 13
Change-Id: I77a82e2673238f726352eb562f6deca2f4cb78b2
9 months ago
Nolen Johnson
57bf2b4459
build: handheld_product: Allow devices to not have cameras
...
Change-Id: I6feb538153b13cd1825f37ee7a45ebb046b12ec0
10 months ago
Kevin F. Haggerty
0036faa048
Bump Security String to 2023-07-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-20910 A-245299920 DoS High 11, 12, 12L, 13
CVE-2023-20918 A-243794108 EoP High 11, 12, 12L, 13
CVE-2023-21087 A-261723753 DoS High 11, 12, 12L, 13
CVE-2023-21238 A-277740848 ID High 11, 12, 12L, 13
CVE-2023-21240 A-275340417 DoS High 11, 12, 12L, 13
CVE-2023-21241 A-271849189 EoP High 11, 12, 12L, 13
CVE-2023-21243 A-274445194 DoS High 11, 12, 12L, 13
CVE-2023-21245 A-222446076 EoP High 11, 12, 12L, 13
CVE-2023-21246 A-273729476 EoP High 11, 12, 12L, 13
CVE-2023-21250 A-261068592 RCE Critical 11, 12, 12L, 13
CVE-2023-21251 A-204554636 EoP High 11, 12, 12L, 13
CVE-2023-21261 A-271680254 ID High 11, 12, 12L, 13
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2023-21145 A-265293293 EoP High 11, 12, 12L, 13 c57431f607fd
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-2136 A-278113033 RCE High 13
CVE-2023-20942 A-258021433 EoP High 12, 12L, 13
CVE-2023-21239 A-274592467 ID High 12, 12L, 13
CVE-2023-21247 A-277333781 EoP High 12, 12L, 13
CVE-2023-21248 A-277333746 EoP High 12, 12L, 13
CVE-2023-21249 A-217981062 ID High 13
CVE-2023-21254 A-254736794 EoP High 13
CVE-2023-21256 A-268193384 EoP High 13
CVE-2023-21257 A-257443065 EoP High 13
CVE-2023-21262 A-279905816 EoP High 12, 12L, 13
Change-Id: I70063f7ffbe701377a397a56d943a02798b123a6
10 months ago
Kevin F. Haggerty
c4d158d0af
Bump Security String to 2023-06-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21105 A-261036568 ID High 11, 12, 12L, 13
CVE-2023-21108 A-239414876 RCE Critical 11, 12, 12L, 13
CVE-2023-21115 A-258834033 EoP High 11, 12, 12L
CVE-2023-21121 A-205460459 EoP High 11, 12
CVE-2023-21122 A-270050191 EoP High 11, 12, 12L, 13
CVE-2023-21123 A-270050064 EoP High 11, 12, 12L, 13
CVE-2023-21124 A-265798353 EoP High 11, 12, 12L, 13
CVE-2023-21127 A-275418191 RCE Critical 11, 12, 12L, 13
CVE-2023-21128 A-272042183 EoP High 11, 12, 12L, 13
CVE-2023-21129 A-274759612 EoP High 11, 12, 12L, 13
CVE-2023-21131 A-265015796 EoP High 11, 12, 12L, 13
CVE-2023-21135 A-260570119 EoP High 11, 12, 12L, 13
CVE-2023-21136 A-246542285 DoS High 11, 12, 12L, 13
CVE-2023-21137 A-246541702 DoS High 11, 12, 12L, 13
CVE-2023-21138 A-273260090 EoP High 11, 12, 12L, 13
CVE-2023-21141 A-262244249 ID High 11, 12, 12L, 13
CVE-2023-21142 A-262243665 ID High 11, 12, 12L, 13
CVE-2023-21143 A-268193777 DoS High 11, 12, 12L, 13
CVE-2023-21144 A-252766417 DoS High 11, 12, 12L, 13
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21095 A-242704576 ID High 12L, 13
CVE-2023-21126 A-271846393 EoP High 13
CVE-2023-21130 A-273502002 RCE Critical 13
CVE-2023-21139 A-271845008 EoP High 13
Change-Id: I5a94f78c371d4a0cafae817cb50cd603247d615b
11 months ago
Kevin F. Haggerty
1bf2c4ec67
Bump Security String to 2023-05-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20338 A-171966843 EoP High 11, 12, 12L
CVE-2023-20930 A-250576066 DoS High 11, 12, 12L, 13
CVE-2023-20993 A-261588851 EoP High 11, 12, 12L, 13
CVE-2023-21103 A-259064622 DoS High 11, 12, 12L, 13
CVE-2023-21107 A-259385017 EoP High 11, 12, 12L, 13
CVE-2023-21109 A-261589597 EoP High 11, 12, 12L, 13
CVE-2023-21110 A-258422365 EoP High 11, 12, 12L, 13
CVE-2023-21111 A-256819769 DoS High 11, 12, 12L, 13
CVE-2023-21112 A-252763983 ID High 11, 12, 12L, 13
CVE-2023-21116 A-256202273 EoP Moderate 11, 12, 12L, 13
CVE-2023-21118 A-269014004 ID High 11, 12, 12L, 13
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-39617 A-175190844 EoP High 11, 12, 12L e08d5420f4
CVE-2022-20444 A-197296414 EoP High 11, 12 d50b2c375351
b272d38e3725
5be28bb5a7
b8c1281e7f
f947be7fa0
CVE-2023-20914 A-189942529 ID High 11 0b486e312fd0
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21104 A-259938771 ID High 12L, 13
CVE-2023-21117 A-263358101 EoP High 13
Change-Id: Ic7dbab467fe58acbc56e6b987c660e7377c71555
1 year ago
Kevin F. Haggerty
0f63697fe9
Bump Security String to 2023-04-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20463 A-231985227 EoP High 11, 12, 12L, 13
CVE-2022-20471 A-238177877 ID High 11, 12, 12L, 13
CVE-2023-20909 A-243130512 ID High 11, 12, 12L, 13
CVE-2023-20950 A-195756028 EoP Moderate 11, 12, 12L
CVE-2023-20967 A-225879503 EoP High 11, 12, 12L, 13
CVE-2023-21080 A-245916076 ID High 11, 12, 12L, 13
CVE-2023-21081 A-230492955 EoP High 11, 12, 12L, 13
CVE-2023-21082 A-257030107 ID High 11, 12, 12L, 13
CVE-2023-21083 A-252762941 ID High 11, 12, 12L, 13
CVE-2023-21085 A-264879662 RCE Critical 11, 12, 12L, 13
CVE-2023-21086 A-238298970 EoP High 11, 12, 12L, 13
CVE-2023-21087 A-261723753 DoS High 11, 12, 12L, 13
CVE-2023-21089 A-237766679 EoP High 11, 12, 12L, 13
CVE-2023-21092 A-242040055 EoP High 11, 12, 12L, 13
CVE-2023-21093 A-228450832 EoP High 11, 12, 12L, 13
CVE-2023-21094 A-248031255 EoP High 11, 12, 12L, 13
CVE-2023-21097 A-261858325 EoP High 11, 12, 12L, 13
CVE-2023-21098 A-260567867 EoP High 11, 12, 12L, 13
CVE-2023-21099 A-243377226 EoP High 11, 12, 12L, 13
Implemented (Qualcomm components):
==================================
CVE: References: Severity: Subcomponent:
CVE-2022-40503 A-258057241 High Bluetooth
QC-CR#3237187
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2023-20935 A-256589724 ID High 11, 12, 12L, 13 44ed9cf4f
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-21084 A-262892300 EoP High 13
CVE-2023-21088 A-235823542 EoP High 12, 12L, 13
CVE-2023-21090 A-259942609 DoS High 13
CVE-2023-21091 A-257954050 DoS High 13
CVE-2023-21096 A-254774758 RCE Critical 12, 12L, 13
CVE-2023-21100 A-242544249 EoP High 12, 12L, 13
Change-Id: I6cd89024a5c0ebb997b7adf6edbeeb67cadb08c2
1 year ago
Kevin F. Haggerty
d572c7081e
Bump Security String to 2023-03-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-20931 A-242535997 EoP High 11, 12, 12L, 13
CVE-2023-20951 A-258652631 RCE Critical 11, 12, 12L, 13
CVE-2023-20952 A-186803518 ID High 11, 12, 12L, 13
CVE-2023-20954 A-261867748 RCE Critical 11, 12, 12L, 13
CVE-2023-20955 A-258653813 EoP High 11, 12, 12L, 13
CVE-2023-20957 A-258422561 EoP High 11, 12, 12L
CVE-2023-20963 A-220302519 EoP High 11, 12, 12L, 13
CVE-2023-20966 A-242299736 EoP High 11, 12, 12L, 13
Implemented (Qualcomm components):
==================================
CVE: References: Severity: Subcomponent:
CVE-2022-40537A-261468700 High Bluetooth
QC-CR#3278869
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2022-20467 A-225880741 ID High 11, 12, 12L, 13 4be790424
CVE-2023-20906 A-221040577 EoP High 11, 12, 12L, 13 fa2f239962f4
CVE-2023-20910 A-245299920 DoS High 11, 12, 12L, 13 e0a036b3ff
CVE-2023-20911 A-242537498 EoP High 11, 12, 12L, 13 84d5d81a3ae7
CVE-2023-20917 A-242605257 EoP High 11, 12, 12L, 13 0b4cfaca78df
CVE-2023-20936 A-226927612 EoP High 11, 12, 12L, 13 88c90a2b26
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-4452 A-251802307 ID High 13
CVE-2022-20499 A-246539931 DoS High 12, 12L, 13
CVE-2023-20926 A-253043058 EoP High 12, 12L, 13
CVE-2023-20929 A-234442700 ID High 13
CVE-2023-20947 A-237405974 EoP High 12, 12L, 13
CVE-2023-20953 A-251778420 EoP High 13
CVE-2023-20956 A-240140929 ID High 12, 12L, 13
CVE-2023-20958 A-254803162 ID High 13
CVE-2023-20959 A-249057848 EoP High 13
CVE-2023-20960 A-250589026 EoP High 12L, 13
CVE-2023-20962 A-256590210 ID High 13
CVE-2023-20964 A-238177121 DoS High 12, 12L, 13
Change-Id: Ida3f06b778762faafb1e4a3ce09aed665017f513
1 year ago
Kevin F. Haggerty
e56ac1b70c
Bump Security String to 2023-02-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20443 A-194480991 EoP High 11, 12, 12L
CVE-2022-20455 A-242537431 DoS High 10, 11, 12, 12L, 13
CVE-2022-20481 A-241927115 ID High 10, 11, 12, 12L, 13
CVE-2022-43680 A-255449293 EoP High 10, 11, 12, 12L, 13
CVE-2023-20932 A-248251018 ID High 10, 11, 12, 12L, 13
CVE-2023-20933 A-245860753 EoP High 10, 11, 12, 12L, 13
CVE-2023-20943 A-240267890 EoP High 10, 11, 12, 12L, 13
CVE-2023-20944 A-244154558 EoP High 10, 11, 12, 12L, 13
CVE-2023-20946 A-244423101 EoP High 11, 12, 12L, 13
Implemented (Qualcomm components):
==================================
CVE: References: Severity: Subcomponent:
CVE-2022-33280 A-250627584 Critical Bluetooth
QC-CR#3040964
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2020-27059 A-159249069 EoP High 12, 12L
CVE-2022-20551 A-243376549 EoP High 12, 12L, 13
CVE-2023-20934 A-258672042 EoP High 12, 12L, 13
CVE-2023-20939 A-243362981 EoP High 12, 12L, 13
CVE-2023-20940 A-256237041 EoP High 13
CVE-2023-20942 A-258021433 EoP High 12, 12L, 13
CVE-2023-20945 A-246932269 EoP High 10
CVE-2023-20948 A-230630526 ID High 12, 12L, 13
Change-Id: I71290c940efd2f0cd9e6bda41e10226d687e02fb
1 year ago
Kevin F. Haggerty
6a82c080b4
Bump Security String to 2023-01-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20456 A-242703780 EoP High 10, 11, 12, 12L, 13
CVE-2022-20489 A-242703460 EoP High 10, 11, 12, 12L, 13
CVE-2022-20490 A-242703505 EoP High 10, 11, 12, 12L, 13
CVE-2022-20492 A-242704043 EoP High 10, 11, 12, 12L, 13
CVE-2022-20493 A-242846316 EoP High 10, 11, 12, 12L, 13
CVE-2022-20494 A-243794204 DoS High 10, 11, 12, 12L, 13
CVE-2023-20908 A-239415861 DoS High 10, 11, 12, 12L, 13
CVE-2023-20913 A-246933785 EoP High 10, 11, 12, 12L, 13
CVE-2023-20915 A-246930197 EoP High 10, 11, 12, 12L, 13
CVE-2023-20918 A-243794108 EoP High 10, 11, 12, 12L, 13
CVE-2023-20920 A-204584366 EoP High 10, 11, 12, 12L, 13
CVE-2023-20921 A-243378132 EoP High 10, 11, 12, 12L, 13
CVE-2023-20922 A-237291548 DoS High 11, 12, 12L, 13
Implemented (Qualcomm components):
==================================
CVE: References: Severity: Subcomponent:
CVE-2022-22088 A-231156521 Critical Bluetooth
QC-CR#3052411
CVE-2022-33255 A-250627529 High Bluetooth
QC-CR#3212699
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2022-20461 A-228602963 EoP High 10, 11, 12, 12L, 13 552225fc27
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2023-20904 A-246300272 EoP High 12L, 13
CVE-2023-20905 A-241387741 EoP High 10
CVE-2023-20912 A-246301995 EoP High 13
CVE-2023-20916 A-229256049 EoP High 12, 12L
CVE-2023-20919 A-252663068 EoP High 13
Change-Id: I6abd8797dc8bd64c50dab92574df85485e6ee9f4
1 year ago
Kevin F. Haggerty
2fc66564fd
Bump Security String to 2022-12-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39617 A-175190844 EoP High 11, 12, 12L
CVE-2022-20124 A-170646036 EoP High 10, 11, 12, 12L, 13
CVE-2022-20144 A-187702830 EoP High 10, 11, 12, 12L, 13
CVE-2022-20411 A-232023771 RCE Critical 10, 11, 12, 12L, 13
CVE-2022-20442 A-176094367 EoP High 10, 11, 12, 12L
CVE-2022-20444 A-197296414 EoP High 11, 12
CVE-2022-20449 A-239701237 DoS High 10, 11, 12, 12L, 13
CVE-2022-20466 A-179725730 ID Moderate 13
ID High 10, 11, 12, 12L
CVE-2022-20468 A-228450451 ID Moderate 10, 11, 12, 12L, 13
CVE-2022-20469 A-230867224 RCE High 10, 11, 12, 12L, 13
CVE-2022-20470 A-234013191 EoP High 10, 11, 12, 12L, 13
CVE-2022-20471 A-238177877 ID High 11, 12, 12L, 13
CVE-2022-20472 A-239210579 RCE Critical 10, 11, 12, 12L, 13
CVE-2022-20473 A-239267173 RCE Critical 10, 11, 12, 12L, 13
CVE-2022-20474 A-240138294 EoP High 10, 11, 12, 12L, 13
CVE-2022-20475 A-240663194 EoP High 11, 12, 12L, 13
CVE-2022-20476 A-240936919 DoS High 10, 11, 12, 12L
CVE-2022-20478 A-241764135 EoP High 10, 11, 12, 12L, 13
CVE-2022-20479 A-241764340 EoP High 10, 11, 12, 12L, 13
CVE-2022-20480 A-241764350 EoP High 10, 11, 12, 12L, 13
CVE-2022-20483 A-242459126 ID High 10, 11, 12, 12L, 13
CVE-2022-20484 A-242702851 EoP High 10, 11, 12, 12L, 13
CVE-2022-20485 A-242702935 EoP High 10, 11, 12, 12L, 13
CVE-2022-20486 A-242703118 EoP High 10, 11, 12, 12L, 13
CVE-2022-20487 A-242703202 EoP High 10, 11, 12, 12L, 13
CVE-2022-20488 A-242703217 EoP High 10, 11, 12, 12L, 13
CVE-2022-20491 A-242703556 EoP High 10, 11, 12, 12L, 13
CVE-2022-20495 A-243849844 EoP High 10, 11, 12, 12L, 13
CVE-2022-20498 A-246465319 ID Critical 10, 11, 12, 12L, 13
CVE-2022-20500 A-246540168 DoS High 10, 11, 12, 12L, 13
CVE-2022-20501 A-246933359 EoP High 10, 11, 12, 12L, 13
CVE-2022-20611 A-242996180 EoP High 10, 11, 12, 12L, 13
Implemented (Qualcomm components):
==================================
CVE: References: Severity: Subcomponent:
CVE-2022-33268 A-245992426 High Bluetooth
QC-CR#3182085
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-0934 A-169762606 DoS High 10, 11, 12, 12L, 13 912b946c8384
CVE-2021-39795 A-201667614 EoP High 11, 12, 12L, 13 435643fc9
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20240 A-231496105 EoP High 12, 12L
CVE-2022-20477 A-241611867 EoP High 13
CVE-2022-20482 A-240422263 DoS High 12, 12L, 13
CVE-2022-20496 A-245242273 ID High 12, 12L, 13
CVE-2022-20497 A-246301979 ID High 12, 12L, 13
CVE-2022-20502 A-222166527 ID High 13
Change-Id: I48e68ebc8777fc639980dfadd0788dad315bd4e9
1 year ago
Aaron Kling
1277bdd5c0
fixup! Compute the needed shared libs for otatools.
...
The futility target for host is futility-host. This is required for
ryu out of tree signing.
Change-Id: I6c06ec69f991abc23597e19dd4478774cc4d56c4
2 years ago
Kevin F. Haggerty
5e6812fbd0
Bump Security String to 2022-11-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-2209 A-235601882 EoP High 10, 11, 12, 12L, 13
CVE-2022-20426 A-236263294 DoS High 10, 11, 12, 12L, 13
CVE-2022-20441 A-238605611 EoP High 10, 11, 12, 12L, 13
CVE-2022-20445 A-225876506 ID High 10, 11, 12, 12L, 13
CVE-2022-20446 A-229793943 EoP High 10, 11
CVE-2022-20448 A-237540408 EoP High 10, 11, 12, 12L, 13
CVE-2022-20450 A-210065877 EoP High 10, 11, 12, 12L, 13
CVE-2022-20451 A-235098883 EoP High 10, 11, 12, 12L, 13
CVE-2022-20453 A-240685104 DoS High 10, 11, 12, 12L, 13
CVE-2022-20454 A-242096164 EoP High 10, 11, 12, 12L, 13
CVE-2022-20462 A-230356196 EoP High 10, 11, 12, 12L, 13
CVE-2022-20463 A-231985227 EoP High 10, 11, 12, 12L, 13
CVE-2022-20465 A-218500036 EoP High 10, 11, 12, 12L, 13
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2022-20414 A-234441463 DoS High 10, 11, 12, 12L, 13 b710f4590eb7
44beaf40e6ab
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20447 A-233604485 ID High 13
CVE-2022-20452 A-240138318 EoP High 13
CVE-2022-20457 A-243924784 EoP High 13
Change-Id: I12e5d9979019cf217a74c02415953a81944b9afe
2 years ago
Kevin F. Haggerty
4fc20afe7d
Bump Security String to 2022-10-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39758 A-205130886 EoP Moderate 10, 11, 12
CVE-2022-20394 A-204906124 ID High 10, 11, 12, 12L
CVE-2022-20410 A-205570663 ID High 10, 11, 12, 12L, 13
CVE-2022-20412 A-230794395 EoP High 10, 11, 12, 12L, 13
CVE-2022-20413 A-235850634 ID High 10, 11, 12, 12L, 13
CVE-2022-20415 A-231322873 EoP Moderate 10, 11, 12, 12L, 13
CVE-2022-20425 A-235823407 DoS High 10, 11, 12, 12L, 13
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-39624 A-67862680 DoS High 11, 12, 12L 6c65bf119c8f8
CVE-2022-20351 A-224771921 ID High 10, 11, 12, 12L a54f2f6b
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39673 A-195410559 ID High 13
CVE-2022-20416 A-237717857 EoP High 12, 12L, 13
CVE-2022-20417 A-237288416 EoP High 12, 12L, 13
CVE-2022-20418 A-231986464 ID High 12, 12L, 13
CVE-2022-20419 A-237290578 ID Critical 12L, 13
CVE-2022-20420 A-238377411 EoP High 13
Change-Id: I764f97fccc008066ca87f48438121ea4777f6fac
2 years ago
Kevin F. Haggerty
d3b2985ce3
Bump Security String to 2022-09-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20197 A-208279300 EoP Moderate 10, 11, 12, 12L
CVE-2022-20392 A-213323615 EoP High 10, 11, 12, 12L
CVE-2022-20393 A-233735886 ID High 11, 12, 12L
CVE-2022-20395 A-221855295 EoP High 11, 12, 12L, 13
CVE-2022-22822 A-219942275 EoP High 10, 11, 12, 12L
CVE-2022-23852 A-221255869 EoP High 10, 11, 12, 12L
CVE-2022-23990 A-221256678 EoP High 10, 11, 12, 12L
CVE-2022-25314 A-221384482 EoP High 10, 11, 12, 12L
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20218 A-223907044 EoP High 12, 12L
CVE-2022-20396 A-234440688 ID High 12L, 13
CVE-2022-20398 A-221859734 EoP High 13
Change-Id: I250086e4f06ca05f35f5610f4fc219cdf3742e24
2 years ago
Kevin F. Haggerty
43140214c0
Bump Security String to 2022-08-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39696 A-185810717 EoP High 10, 11, 12
CVE-2022-20344 A-232541124 EoP High 10, 11, 12, 12L
CVE-2022-20346 A-230493653 ID High 10, 11, 12, 12L
CVE-2022-20347 A-228450811 EoP High 10, 11, 12, 12L
CVE-2022-20348 A-228315529 EoP High 10, 11, 12, 12L
CVE-2022-20349 A-228315522 EoP High 10, 11, 12, 12L
CVE-2022-20350 A-228178437 ID High 10, 11, 12, 12L
CVE-2022-20353 A-221041256 ID High 10, 11, 12, 12L
CVE-2022-20354 A-219546241 EoP High 11, 12, 12L
CVE-2022-20355 A-219498290 DoS High 10, 11, 12, 12L
CVE-2022-20356 A-215003903 EoP High 11, 12, 12L
CVE-2022-20358 A-203229608 ID High 10, 11, 12, 12L
CVE-2022-20360 A-228314987 EoP High 10, 11, 12, 12L
CVE-2022-20361 A-231161832 EoP High 10, 11, 12, 12L
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20345 A-230494481 RCE Critical 12, 12L
CVE-2022-20352 A-222473855 ID High 12, 12L
CVE-2022-20357 A-214999987 ID High 12, 12L
Change-Id: Ia322a9146e9a06694d912d226c001430b87fe8a6
2 years ago
Kevin F. Haggerty
31aeb4d736
Bump Security String to 2022-07-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0981 A-191981182 EoP High 10, 11
CVE-2022-20219 A-224585613 ID High 10, 11, 12, 12L
CVE-2022-20221 A-205571133 ID High 10, 11, 12, 12L
CVE-2022-20223 A-223578534 EoP High 10, 11, 12, 12L
CVE-2022-20224 A-220732646 ID High 10, 11, 12, 12L
CVE-2022-20225 A-213457638 ID High 10, 11, 12, 12L
CVE-2022-20229 A-224536184 RCE Critical 10, 11, 12, 12L
CVE-2022-20230 A-221859869 ID High 10, 11, 12, 12L
Not Implemented:
=======================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20220 A-219015884 EoP High 12, 12L
CVE-2022-20222 A-228078096 RCE Critical 12, 12L
CVE-2022-20226 A-213644870 EoP High 12, 12L
CVE-2022-20228 A-213850092 ID High 12, 12L
Change-Id: I3c3cad7730c3db86896b33f878ff81df9c32275d
2 years ago
Kevin F. Haggerty
75c0077056
Bump Security String to 2022-06-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39624 A-67862680 DoS High 10, 11, 12, 12L
CVE-2022-20123 A-221852424 ID High 10, 11, 12, 12L
CVE-2022-20124 A-170646036 EoP High 10, 11, 12, 12L
CVE-2022-20126 A-203431023 EoP High 10, 11, 12, 12L
CVE-2022-20127 A-221862119 RCE Critical 10, 11, 12, 12L
CVE-2022-20129 A-217934478 DoS High 10, 11, 12, 12L
CVE-2022-20130 A-224314979 RCE Critical 10, 11, 12, 12L
CVE-2022-20131 A-221856662 ID High 10, 11, 12, 12L
CVE-2022-20133 A-206807679 EoP High 10, 11, 12, 12L
CVE-2022-20134 A-218341397 EoP High 10, 11, 12, 12L
CVE-2022-20135 A-220303465 EoP High 10, 11, 12, 12L
CVE-2022-20138 A-210469972 EoP High 10, 11, 12, 12L
CVE-2022-20142 A-216631962 EoP High 10, 11, 12, 12L
CVE-2022-20143 A-220735360 DoS High 10, 11, 12, 12L
CVE-2022-20144 A-187702830 EoP High 10, 11, 12, 12L
CVE-2022-20145 A-201660636 EoP Critical 11
CVE-2022-20147 A-221216105 EoP High 10, 11, 12, 12L
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-39691 A-157929241 EoP High 10, 11, 12 1542cbaeca6f
ec8026367327
53414caeb6
1845e6f98a
CVE-2022-20006 A-151095871 EoP High 10, 11, 12, 12L cccb7d5d5a75
Unknown:
================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20125 A-194402515 EoP High 10, 11, 12, 12L (not linked, bugid not referenced)
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20137 A-206986392 EoP High 12, 12L
CVE-2022-20140 A-227618988 EoP Critical 12, 12L
Change-Id: I6bab6e6521d3ddf5384b7e0d74aeadc168693fc3
2 years ago
Kevin F. Haggerty
2f98aeef02
Bump Security String to 2022-05-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2022-20004 A-179699767 EoP High 10, 11, 12, 12L
CVE-2022-20005 A-219044664 EoP High 10, 11, 12, 12L
CVE-2022-20007 A-211481342 EoP High 10, 11, 12, 12L
CVE-2022-20011 A-214999128 ID High 10, 11, 12, 12L
CVE-2022-20112 A-206987762 DoS High 10, 11, 12, 12L
CVE-2022-20114 A-211114016 EoP High 10, 11, 12, 12L
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-39662 A-197302116 EoP High 11, 12 ee937df1
CVE-2021-39700 A-201645790 ID Moderate 10, 11, 12 5d4e4deb4
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39670 A-204087139 DoS High 12, 12L
CVE-2022-20010 A-213519176 ID High 12, 12L
CVE-2022-20113 A-205996517 EoP High 12, 12L
CVE-2022-20115 A-210118427 ID High 12, 12L
CVE-2022-20116 A-212467440 EoP High 12, 12L
Change-Id: Ia1badcad252019a44e1697a80194b8cbcdac0e0a
2 years ago
Kevin F. Haggerty
3c861ee59e
Bump Security String to 2022-04-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0694 A-183147114 EoP High 11
CVE-2021-39794 A-205836329 EoP High 11, 12, 12L
CVE-2021-39795 A-201667614 EoP High 11, 12, 12L
CVE-2021-39796 A-205595291 EoP High 10, 11, 12, 12L
CVE-2021-39803 A-193790350 ID High 10, 11, 12, 12L
CVE-2021-39804 A-215002587 DoS High 11, 12, 12L
CVE-2021-39807 A-209446496 EoP High 10, 11, 12, 12L
CVE-2021-39808 A-209966086 EoP High 10, 11, 12
CVE-2021-39809 A-205837191 ID High 10, 11, 12, 12L
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39797 A-209607104 EoP High 12, 12L
CVE-2021-39798 A-213169612 EoP High 12, 12L
CVE-2021-39799 A-200288596 EoP High 12, 12L
CVE-2021-39805 A-212694559 ID High 12, 12L
Change-Id: I1ced2eaeaa39cc65de434555db850e3bfce603b6
2 years ago
Kevin F. Haggerty
6645834d08
Bump Security String to 2022-03-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39624 A-67862680 DoS High 10, 11, 12
CVE-2021-39692 A-209611539 EoP High 10, 11, 12
CVE-2021-39695 A-209607944 EoP High 11
CVE-2021-39697 A-200813547 EoP High 11, 12
CVE-2021-39701 A-212286849 EoP High 11, 12
CVE-2021-39704 A-209965481 EoP High 10, 11, 12
CVE-2021-39705 A-186026746 ID High 10, 11, 12
CVE-2021-39706 A-200164168 EoP High 10, 11, 12
CVE-2021-39707 A-200688991 EoP High 10, 11, 12
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-0957 A-193149550 EoP High 10, 11, 12 dfc99fc242a4
CVE-2021-39667 A-205702093 ID High 10, 11, 12 6a155ff
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39689 A-206090748 EoP Moderate 12
CVE-2021-39690 A-204316511 DoS High 12
CVE-2021-39693 A-208662370 EoP High 12
CVE-2021-39702 A-205150380 EoP High 12
CVE-2021-39703 A-207057578 EoP High 12
CVE-2021-39708 A-206128341 EoP Critical 12
CVE-2021-39709 A-208817618 EoP High 12
Change-Id: Ie3746d7337284d2197b8a42ba90c137778e3bdc6
2 years ago
Ricky Cheung
318e19e4af
check_boot_jars: Add Nvidia services to whitelist
...
Signed-off-by: Ricky Cheung <rcheung844@gmail.com>
Change-Id: Ic0fb58aa9b1d63a864d15e81da127c86c80e70a0
2 years ago
Aaron Kling
574c397550
releasetools: Fallback to calculated fp if partition fp is missing
...
This happens when the fingerprint property is blacklisted for the
purposes of unified device builds.
Change-Id: I9f8a5041248c3f73fce7a16da73cb8f68c06c8e2
2 years ago
Michael Bestas
44c8889369
Bump Security String to 2022-02-05
...
Implemented:
============
None
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2020-13112 A-194342672 EoP High 10, 11 5122fd5
CVE-2020-13113 A-196085005 EoP High 10, 11 d0c470b, 2cb0c0b
CVE-2021-0706 A-193444889 DoS High 10, 11 3d2b22cd4c0b
CVE-2021-39619 A-197399948 EoP High 11, 12 ba7e4213040f, dc06656820b1
CVE-2021-39631 A-193890833 ID High 10, 11, 12 3fb89e3728, 86e355fba3
CVE-2021-39662 A-197302116 EoP High 11, 12 ee937df1
CVE-2021-39666 A-204445255 ID High 11, 12 78390aadaf, 8c5a4e5c46
CVE-2021-39668 A-193445603 EoP High 11, 12 95205d4a112a
CVE-2021-39669 A-196969991 EoP High 11, 12 3daf3bec2d
CVE-2021-39674 A-201083442 EoP High 10, 11, 12 de6e37829 (aosp), 701d743d20 (caf)
CVE-2021-39676 A-197228210 EoP High 11 b7957a6b56bd
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39663 A-200682135 EoP High 10
CVE-2021-39664 A-203938029 ID High 12
CVE-2021-39665 A-204077881 ID High 12
CVE-2021-39671 A-206718630 EoP High 12
CVE-2021-39675 A-205729183 EoP Critical 12
Change-Id: I8acaebd9df31015b691649ecb3837ec03ec37d78
2 years ago
Jarl-Penguin
39b2b321cf
fixup! build: Add support for device tree in boot.img
...
Signed-off-by: Jarl-Penguin <jarlpenguin@outlook.com>
Change-Id: I45aab68b373d71235ca64a438941c16622a9e113
2 years ago
Kevin F. Haggerty
5139815a40
Bump Security String to 2022-01-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0643 A-183612370 ID High 10, 11, 12
CVE-2021-30353 A-202025599 RA High
CVE-2021-39620 A-203847542 EoP High 11, 12
CVE-2021-39621 A-185126319 EoP High 9, 10, 11, 12
CVE-2021-39623 A-194105348 EoP High 9, 10, 11, 12
CVE-2021-39626 A-194695497 EoP High 9, 10, 11, 12
CVE-2021-39627 A-185126549 EoP High 9, 10, 11, 12
CVE-2021-39628 A-189575031 ID High 10, 11
CVE-2021-39629 A-197353344 EoP High 9, 10, 11, 12
CVE-2021-39632 A-202159709 EoP High 11, 12
CVE-2021-39659 A-208267659 DoS High 10, 11, 12
Previously Implemented:
=======================
None
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2020-0338 A-123700107 ID High 9, 10
CVE-2021-39618 A-196855999 EoP High 9, 10, 11, 12 (Pixel blobs)
CVE-2021-39622 A-192663648 EoP High 10, 11, 12 (Pixel blobs)
CVE-2021-39625 A-194695347 EoP High 9, 10, 11, 12 (Pixel blobs)
CVE-2021-39630 A-202768292 EoP High 12
Change-Id: I9c1d84541a92e102dee926954a90710f1beb09b1
2 years ago
Kevin F. Haggerty
4650832d7c
Bump Security String to 2021-12-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0952 A-195748381 ID High 9, 10, 11, 12
CVE-2021-0954 A-143559931 EoP High 10, 11
CVE-2021-0955 A-192085766 EoP High 11
CVE-2021-0956 A-189942532 EoP Critical 11, 12
CVE-2021-0958 A-200041882 DoS Moderate 11, 12
CVE-2021-0963 A-199754277 EoP High 9, 10, 11, 12
CVE-2021-0964 A-193363621 ID High 9, 10, 11, 12
CVE-2021-0965 A-194300867 EoP High 9, 10, 11, 12
CVE-2021-0966 A-198346478 ID High 11, 12
CVE-2021-0967 A-199065614 ID High 10, 11, 12
RCE Critical 9
CVE-2021-0968 A-197868577 RCE Critical 9, 10, 11, 12
CVE-2021-0969 A-199922685 DoS Moderate 10, 11
CVE-2021-0971 A-188893559 ID High 9, 10, 11, 12
CVE-2021-0704 A-179338675 ID High 9, 10, 11
CVE-2021-0970 A-196970023 EoP High 9, 10, 11, 12
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions:
Prior Change:
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0953 A-184046278 EoP High 9, 10, 11, 12 (we don't sync quicksearchbox)
Change-Id: Ia42c0565696cae3dbf80a7152e0e61b61a1fa6cb
2 years ago
lambdadroid
3325db7ebb
build: Respect fs_config when generating recovery ramdisk
...
Without the -d $(TARGET_OUT) option for mkbootfs, only the
compiled-in fs_config (from AOSP) is used for the generated
ramdisk image. Device-specific additions are ignored.
This is why AOSP sets this option for both the boot- and recovery
ramdisk [1]. However, the option was removed for the recovery ramdisk
in review.lineageos.org/c/LineageOS/android_build/+/222722
This causes device-specific fs_config additions to be ignored when
generating the recovery ramdisk, potentially setting the wrong
permissions.
[1]: android.googlesource.com/platform/build/+/refs/tags/android-9.0.0_r37/core/Makefile#1388
Change-Id: I0f77a49d8b2f08791e60b34ddbb6f3b32bc2f0bc
3 years ago
Kevin F. Haggerty
41c7f43344
Bump Security String to 2021-11-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0919 A-197336441 DoS Moderate 9, 10, 11
CVE-2021-0921 A-195962697 EoP High 11
CVE-2021-0922 A-195630721 EoP Moderate 11
CVE-2021-0926 A-191053931 EoP High 9, 10, 11, 12
CVE-2021-0927 A-189824175 EoP High
CVE-2021-0928 A-188675581 EoP High 9, 10, 11
CVE-2021-0930 A-181660091 RCE Critical 9, 10, 11, 12
CVE-2021-0931 A-180747689 ID High 9, 10, 11, 12
CVE-2021-0933 A-172251622 EoP High 9, 10, 11, 12
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2020-13871 A-192606047 ID High 11 1935111
CVE-2021-0434 A-167403112 EoP High 9, 10, 11 18c83959b1
CVE-2021-0649 A-191382886 EoP High 11 0974700666a2
CVE-2021-0650 A-190286685 ID High 9, 10, 11 be8ae5a
CVE-2021-0653 A-177931370 ID High 9, 10, 11 bfad9c3e8e1e
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0799 A-197647956 EoP High 12
CVE-2021-0918 A-197536150 RCE Critical 12
CVE-2021-0923 A-195338390 EoP High 12
CVE-2021-0925 A-191444150 ID High 12
CVE-2021-0932 A-173025705 EoP High 10
Change-Id: I592893069ab0a25f30b734bb6c922a8af7dd86d2
3 years ago
Kevin F. Haggerty
fafe0ef22c
Android 11.0.0 Release 46 (RQ3A.211001.001)
...
-----BEGIN PGP SIGNATURE-----
iF0EABECAB0WIQRDQNE1cO+UXoOBCWTorT+BmrEOeAUCYVurPgAKCRDorT+BmrEO
eJnSAJ9tznWzQheQUbIbbVZDuv09FUSLwQCfWLRFE+xzlOvEBbBuOSg1h1Fub0U=
=TF0y
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----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=2e8V
-----END PGP SIGNATURE-----
Merge tag 'android-11.0.0_r46' into staging/lineage-18.1_merge-android-11.0.0_r46
Android 11.0.0 Release 46 (RQ3A.211001.001)
* tag 'android-11.0.0_r46':
Update Security String to 2021-10-01
Change-Id: I319ce916b9a472a3f0acef4b1bc98e9de5b214ba
3 years ago
Kevin F. Haggerty
a1a18d4de7
Android 11.0.0 release 43
...
-----BEGIN PGP SIGNATURE-----
iF0EABECAB0WIQRDQNE1cO+UXoOBCWTorT+BmrEOeAUCYTe/xQAKCRDorT+BmrEO
eIpuAJ4g6GuduPnaQPwBV4rPctR8Jtz1pACfZRoi4j9l8WTe54DPkI9AczhOqQw=
=m5hd
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----
iQIzBAABCAAdFiEEA2skEMxbPHNb/U7LbZVRKTMRJykFAmE+FxoACgkQbZVRKTMR
JylRrw//T+Fk1n9Q3JO+/iS6wSJLjF5KxUhCe0aVkaP6w2TFWhAE6wV+AzCv/Vaw
PvTHsII83bSEEIcTpkxFTMt2EtkQcV3l17AJAfmrnjzb9fXwsRub9tIsmMTdm/G3
xIhOlzy6MLKbZXyX8s0E5BI3GT8blhmFy3f4LAsptwU61bcDet59qARytj7XLtJQ
4Rdmcrg1Sz2gmAo/aGQupsz5VBJg9jvtHmBT+N0zmP+qnoO7rLXSrKkHdtbcBy5M
hnuanp2SCYBaosVKzk14MGMKVmFyPTOlpMDKt20w1/+7UqAiMQeWP8+ow00idZuY
G9/YsXpwLrsl9IrP23cKsn6Nu4rKR0ED5n007CuKx16ewnyG5zSVDTKvt1fpI4JQ
5IrpyKBk6kdhLWEW29xkbQOtkOJLjrZUL2Xu46yrdnRKLF0gCMDzvhVcMGObY0Ug
CiSsbLU5N1oKdGLoWTTmZyX48SjY/cZDxar1KgwQnpRNjBD068UpLokfrcqW9+Ki
VNXe7BJM3fNoOrNDfHDkc3WmydAYIpbE7WhGbyobnBrzSouXbF3VCBVCblIJwMR+
HcsqBC4C7oGi9V46ZsdclbrtfpTqDTP7cwRpCiQyByR5+710XjKHePiYeBlzIXQP
hiHe1zVOXWAl0rHYOqqF9aiYIIuoGVzyMV0B0o8Lyg+GgZuqsno=
=qXZI
-----END PGP SIGNATURE-----
Merge tag 'android-11.0.0_r43' into staging/lineage-18.1_merge-android-11.0.0_r43
Android 11.0.0 release 43
* tag 'android-11.0.0_r43':
Update Security String to 2021-09-05
Conflicts:
core/build_id.mk
Change-Id: I19dd976b5432c727a81578c98a20b66377de8aa2
3 years ago
marcost2
564b4987e7
Add support for separate kernels for boot and recovery [2/2]
...
* Either as prebuilts, or with separate defconfigs
Change-Id: Iae31e3634178e66b4119c718994fe1c660414529
3 years ago
Kelvin Zhang
a33a4a7289
Check for vintf compatiblity early in generation process
...
Currently CheckVintfIfTrebleEnabled is called after generating payload.
Users have to wait for ~1 hour before vintf is checked. Do the check
early and fail early.
Test: th
Change-Id: I2e4a8c7eaa62c94c92973c127b1d825a26e63b35
3 years ago
Android Build Coastguard Worker
a744cb600e
Make change and version bump to RQ3A.211001.001
...
Change-Id: I7e26199d3ddabbbb72c39bb16782bbe728f1fbb4
3 years ago
Paul Scovanner
d0314d24f7
Update Security String to 2021-10-01
...
Bug: 193547118
Change-Id: I36d8511d8ab1556af5c278c8d65d7c3ee6f1878d
Merged-In: I4a0cd58b18214b77302ae7ed81c189f4549dc41d
(cherry picked from commit 6ccb50dd3a5f24a7a07144fa2923a8899d06434b)
3 years ago
Kevin F. Haggerty
2425273086
Android 11.0.0 Release 40 (RQ3A.210805.001.A1)
...
-----BEGIN PGP SIGNATURE-----
iF0EABECAB0WIQRDQNE1cO+UXoOBCWTorT+BmrEOeAUCYQhrJQAKCRDorT+BmrEO
eNIuAJ4ybYM66aBIqZ9R+ZFQiy9pcC7UEQCeKsjHl1pM/3Rj2XW4HfLa2ifUraA=
=3004
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----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=TNvN
-----END PGP SIGNATURE-----
Merge tag 'android-11.0.0_r40' into staging/lineage-18.1_merge-android-11.0.0_r40
Android 11.0.0 Release 40 (RQ3A.210805.001.A1)
* tag 'android-11.0.0_r40':
Version bump to RQ3A.210805.001.A1 [core/build_id.mk]
Update Security String to 2021-08-05
Change-Id: If47ca9e8b94545205471d358bd83daafc88b66e4
3 years ago
Han Wang
10de37b09d
Fix PRODUCT_PROPERTY_OVERRIDES usage in full_base_telephony.mk
...
Change-Id: Iac20b297ecefb6b3761c422bbe55c11fe9bc481a
3 years ago
Kevin F. Haggerty
b81a97c9a2
Android 11.0.0 release 39
...
-----BEGIN PGP SIGNATURE-----
iF0EABECAB0WIQRDQNE1cO+UXoOBCWTorT+BmrEOeAUCYOXmpgAKCRDorT+BmrEO
eGGoAKCOmuX6cYSsKvBHiZnhwReZ40fLmQCfVIc8yBPbq1S7oENYdPWAra2R0PI=
=tJX/
-----END PGP SIGNATURE-----
gpgsig -----BEGIN PGP SIGNATURE-----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=c2GQ
-----END PGP SIGNATURE-----
Merge tag 'android-11.0.0_r39' into staging/lineage-18.1_merge-android-11.0.0_r39
Android 11.0.0 release 39
* tag 'android-11.0.0_r39':
Update Security String to 2021-07-05
Change-Id: I8dd2db2e2f68dcfe8f0bdc930962e0fbb1cf9835
3 years ago
Android Build Coastguard Worker
90705dd0fd
Make change and version bump to RQ3A.210905.001
...
Change-Id: I93827e5752f28f08b818ac9fee1ed02311328b01
3 years ago
Paul Scovanner
81696e7974
Update Security String to 2021-09-05
...
Bug: 192405736
Change-Id: Icea699ec7f82744ff0a6dca90068b2737129778a
(cherry picked from commit cfd4896dc2da5f40c9e2eb33424d9917f8455edc)
3 years ago
razorloves
e903369c31
build: Exclude generic libnfc-nci.conf
...
This is overwriting the device specific config.
Change-Id: I0f07c17951b9b186349a9a96bf2fad1208d86ab1
3 years ago
android-build-team Robot
7ef04b2f41
Version bump to RQ3A.210805.001.A1 [core/build_id.mk]
...
Change-Id: I8d44f5933d58c0d564983c15cb4aa2ec57575c8f
3 years ago
android-build-team Robot
9253f10393
Make change and version bump to RQ3A.210805.001
...
Change-Id: I0c80d56c5ec688926dd3d6b386463fa07e872572
3 years ago