yova
3255600fac
Merge branch 'gugelfrei' into gugelfrei-debug
2 years ago
yova
b5478c1cbe
Merge branch 'lineage-18.1' of https://github.com/LineageOS/android_build into gugelfrei
2 years ago
Kevin F. Haggerty
3c861ee59e
Bump Security String to 2022-04-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0694 A-183147114 EoP High 11
CVE-2021-39794 A-205836329 EoP High 11, 12, 12L
CVE-2021-39795 A-201667614 EoP High 11, 12, 12L
CVE-2021-39796 A-205595291 EoP High 10, 11, 12, 12L
CVE-2021-39803 A-193790350 ID High 10, 11, 12, 12L
CVE-2021-39804 A-215002587 DoS High 11, 12, 12L
CVE-2021-39807 A-209446496 EoP High 10, 11, 12, 12L
CVE-2021-39808 A-209966086 EoP High 10, 11, 12
CVE-2021-39809 A-205837191 ID High 10, 11, 12, 12L
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39797 A-209607104 EoP High 12, 12L
CVE-2021-39798 A-213169612 EoP High 12, 12L
CVE-2021-39799 A-200288596 EoP High 12, 12L
CVE-2021-39805 A-212694559 ID High 12, 12L
Change-Id: I1ced2eaeaa39cc65de434555db850e3bfce603b6
2 years ago
Kevin F. Haggerty
6645834d08
Bump Security String to 2022-03-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39624 A-67862680 DoS High 10, 11, 12
CVE-2021-39692 A-209611539 EoP High 10, 11, 12
CVE-2021-39695 A-209607944 EoP High 11
CVE-2021-39697 A-200813547 EoP High 11, 12
CVE-2021-39701 A-212286849 EoP High 11, 12
CVE-2021-39704 A-209965481 EoP High 10, 11, 12
CVE-2021-39705 A-186026746 ID High 10, 11, 12
CVE-2021-39706 A-200164168 EoP High 10, 11, 12
CVE-2021-39707 A-200688991 EoP High 10, 11, 12
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2021-0957 A-193149550 EoP High 10, 11, 12 dfc99fc242a4
CVE-2021-39667 A-205702093 ID High 10, 11, 12 6a155ff
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39689 A-206090748 EoP Moderate 12
CVE-2021-39690 A-204316511 DoS High 12
CVE-2021-39693 A-208662370 EoP High 12
CVE-2021-39702 A-205150380 EoP High 12
CVE-2021-39703 A-207057578 EoP High 12
CVE-2021-39708 A-206128341 EoP Critical 12
CVE-2021-39709 A-208817618 EoP High 12
Change-Id: Ie3746d7337284d2197b8a42ba90c137778e3bdc6
2 years ago
Ricky Cheung
318e19e4af
check_boot_jars: Add Nvidia services to whitelist
...
Signed-off-by: Ricky Cheung <rcheung844@gmail.com>
Change-Id: Ic0fb58aa9b1d63a864d15e81da127c86c80e70a0
2 years ago
Aaron Kling
574c397550
releasetools: Fallback to calculated fp if partition fp is missing
...
This happens when the fingerprint property is blacklisted for the
purposes of unified device builds.
Change-Id: I9f8a5041248c3f73fce7a16da73cb8f68c06c8e2
2 years ago
Michael Bestas
44c8889369
Bump Security String to 2022-02-05
...
Implemented:
============
None
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2020-13112 A-194342672 EoP High 10, 11 5122fd5
CVE-2020-13113 A-196085005 EoP High 10, 11 d0c470b, 2cb0c0b
CVE-2021-0706 A-193444889 DoS High 10, 11 3d2b22cd4c0b
CVE-2021-39619 A-197399948 EoP High 11, 12 ba7e4213040f, dc06656820b1
CVE-2021-39631 A-193890833 ID High 10, 11, 12 3fb89e3728, 86e355fba3
CVE-2021-39662 A-197302116 EoP High 11, 12 ee937df1
CVE-2021-39666 A-204445255 ID High 11, 12 78390aadaf, 8c5a4e5c46
CVE-2021-39668 A-193445603 EoP High 11, 12 95205d4a112a
CVE-2021-39669 A-196969991 EoP High 11, 12 3daf3bec2d
CVE-2021-39674 A-201083442 EoP High 10, 11, 12 de6e37829 (aosp), 701d743d20 (caf)
CVE-2021-39676 A-197228210 EoP High 11 b7957a6b56bd
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-39663 A-200682135 EoP High 10
CVE-2021-39664 A-203938029 ID High 12
CVE-2021-39665 A-204077881 ID High 12
CVE-2021-39671 A-206718630 EoP High 12
CVE-2021-39675 A-205729183 EoP Critical 12
Change-Id: I8acaebd9df31015b691649ecb3837ec03ec37d78
2 years ago
Jarl-Penguin
39b2b321cf
fixup! build: Add support for device tree in boot.img
...
Signed-off-by: Jarl-Penguin <jarlpenguin@outlook.com>
Change-Id: I45aab68b373d71235ca64a438941c16622a9e113
2 years ago
Kevin F. Haggerty
5139815a40
Bump Security String to 2022-01-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0643 A-183612370 ID High 10, 11, 12
CVE-2021-30353 A-202025599 RA High
CVE-2021-39620 A-203847542 EoP High 11, 12
CVE-2021-39621 A-185126319 EoP High 9, 10, 11, 12
CVE-2021-39623 A-194105348 EoP High 9, 10, 11, 12
CVE-2021-39626 A-194695497 EoP High 9, 10, 11, 12
CVE-2021-39627 A-185126549 EoP High 9, 10, 11, 12
CVE-2021-39628 A-189575031 ID High 10, 11
CVE-2021-39629 A-197353344 EoP High 9, 10, 11, 12
CVE-2021-39632 A-202159709 EoP High 11, 12
CVE-2021-39659 A-208267659 DoS High 10, 11, 12
Previously Implemented:
=======================
None
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2020-0338 A-123700107 ID High 9, 10
CVE-2021-39618 A-196855999 EoP High 9, 10, 11, 12 (Pixel blobs)
CVE-2021-39622 A-192663648 EoP High 10, 11, 12 (Pixel blobs)
CVE-2021-39625 A-194695347 EoP High 9, 10, 11, 12 (Pixel blobs)
CVE-2021-39630 A-202768292 EoP High 12
Change-Id: I9c1d84541a92e102dee926954a90710f1beb09b1
2 years ago
Kevin F. Haggerty
4650832d7c
Bump Security String to 2021-12-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0952 A-195748381 ID High 9, 10, 11, 12
CVE-2021-0954 A-143559931 EoP High 10, 11
CVE-2021-0955 A-192085766 EoP High 11
CVE-2021-0956 A-189942532 EoP Critical 11, 12
CVE-2021-0958 A-200041882 DoS Moderate 11, 12
CVE-2021-0963 A-199754277 EoP High 9, 10, 11, 12
CVE-2021-0964 A-193363621 ID High 9, 10, 11, 12
CVE-2021-0965 A-194300867 EoP High 9, 10, 11, 12
CVE-2021-0966 A-198346478 ID High 11, 12
CVE-2021-0967 A-199065614 ID High 10, 11, 12
RCE Critical 9
CVE-2021-0968 A-197868577 RCE Critical 9, 10, 11, 12
CVE-2021-0969 A-199922685 DoS Moderate 10, 11
CVE-2021-0971 A-188893559 ID High 9, 10, 11, 12
CVE-2021-0704 A-179338675 ID High 9, 10, 11
CVE-2021-0970 A-196970023 EoP High 9, 10, 11, 12
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions:
Prior Change:
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0953 A-184046278 EoP High 9, 10, 11, 12 (we don't sync quicksearchbox)
Change-Id: Ia42c0565696cae3dbf80a7152e0e61b61a1fa6cb
2 years ago
lambdadroid
3325db7ebb
build: Respect fs_config when generating recovery ramdisk
...
Without the -d $(TARGET_OUT) option for mkbootfs, only the
compiled-in fs_config (from AOSP) is used for the generated
ramdisk image. Device-specific additions are ignored.
This is why AOSP sets this option for both the boot- and recovery
ramdisk [1]. However, the option was removed for the recovery ramdisk
in review.lineageos.org/c/LineageOS/android_build/+/222722
This causes device-specific fs_config additions to be ignored when
generating the recovery ramdisk, potentially setting the wrong
permissions.
[1]: android.googlesource.com/platform/build/+/refs/tags/android-9.0.0_r37/core/Makefile#1388
Change-Id: I0f77a49d8b2f08791e60b34ddbb6f3b32bc2f0bc
3 years ago
Kevin F. Haggerty
41c7f43344
Bump Security String to 2021-11-05
...
Implemented:
============
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0919 A-197336441 DoS Moderate 9, 10, 11
CVE-2021-0921 A-195962697 EoP High 11
CVE-2021-0922 A-195630721 EoP Moderate 11
CVE-2021-0926 A-191053931 EoP High 9, 10, 11, 12
CVE-2021-0927 A-189824175 EoP High
CVE-2021-0928 A-188675581 EoP High 9, 10, 11
CVE-2021-0930 A-181660091 RCE Critical 9, 10, 11, 12
CVE-2021-0931 A-180747689 ID High 9, 10, 11, 12
CVE-2021-0933 A-172251622 EoP High 9, 10, 11, 12
Previously Implemented:
=======================
CVE: References: Type: Severity: Updated AOSP versions: Prior Change:
CVE-2020-13871 A-192606047 ID High 11 1935111
CVE-2021-0434 A-167403112 EoP High 9, 10, 11 18c83959b1
CVE-2021-0649 A-191382886 EoP High 11 0974700666a2
CVE-2021-0650 A-190286685 ID High 9, 10, 11 be8ae5a
CVE-2021-0653 A-177931370 ID High 9, 10, 11 bfad9c3e8e1e
Not Implemented:
================
None
Not Applicable (platform source):
=================================
CVE: References: Type: Severity: Updated AOSP versions:
CVE-2021-0799 A-197647956 EoP High 12
CVE-2021-0918 A-197536150 RCE Critical 12
CVE-2021-0923 A-195338390 EoP High 12
CVE-2021-0925 A-191444150 ID High 12
CVE-2021-0932 A-173025705 EoP High 10
Change-Id: I592893069ab0a25f30b734bb6c922a8af7dd86d2
3 years ago