在 2021/9/29 10:42, Yu Changchun 写道:
There are cves based on OpenHarmony-4.19 as follows:
CVE-2021-3640 CVE-2021-3653 CVE-2021-3656 CVE-2021-3743 CVE-2021-3753 CVE-2021-37576 CVE-2021-3759 CVE-2021-40490
----------------------------------------------------------------------
Desmond Cheong Zhi Xi (3): Bluetooth: schedule SCO timeouts with delayed_work Bluetooth: avoid circular locks in sco_sock_connect Bluetooth: switch to lock_sock in SCO
Linus Torvalds (1): vt_kdsetmode: extend console locking
Maxim Levitsky (2): KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (CVE-2021-3656)
Nicholas Piggin (1): KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow
Pavel Skripkin (1): net: qrtr: fix OOB Read in qrtr_endpoint_post
Tetsuo Handa (1): Bluetooth: defer cleanup of resources in hci_unregister_dev()
Theodore Ts'o (1): ext4: fix race writing to an inline_data file while its xattrs are changing
Vasily Averin (1): memcg: enable accounting of ipc resources
Xiaolong Huang (1): net: qrtr: fix another OOB Read in qrtr_endpoint_post
arch/powerpc/kvm/book3s_rtas.c | 25 +++++++-- arch/x86/include/asm/svm.h | 2 + arch/x86/kvm/svm.c | 18 ++++--- drivers/tty/vt/vt_ioctl.c | 11 ++-- fs/ext4/inline.c | 6 +++ include/net/bluetooth/hci_core.h | 1 + ipc/msg.c | 2 +- ipc/sem.c | 9 ++-- ipc/shm.c | 2 +- net/bluetooth/hci_core.c | 16 +++--- net/bluetooth/hci_sock.c | 49 +++++++++++------ net/bluetooth/hci_sysfs.c | 3 ++ net/bluetooth/sco.c | 92 +++++++++++++++++++------------- net/qrtr/qrtr.c | 4 +- 14 files changed, 156 insertions(+), 84 deletions(-)
Looks good to me