There are cves based on OpenHarmony-4.19 as follows: CVE-2021-33909 CVE-2021-3655 Eric Sandeen (1): seq_file: disallow extremely large seq buffer allocations Marcelo Ricardo Leitner (5): sctp: validate from_addr_param return sctp: add size validation when walking chunks sctp: fix return value check in __sctp_rcv_asconf_lookup sctp: add param size validation for SCTP_PARAM_SET_PRIMARY sctp: validate chunk size in __rcv_asconf_lookup fs/seq_file.c | 3 +++ include/net/sctp/structs.h | 2 +- net/sctp/bind_addr.c | 19 +++++++++-------- net/sctp/input.c | 11 +++++++--- net/sctp/ipv6.c | 7 ++++++- net/sctp/protocol.c | 7 ++++++- net/sctp/sm_make_chunk.c | 42 +++++++++++++++++++++++--------------- 7 files changed, 61 insertions(+), 30 deletions(-) -- 2.22.0