Update Linux packages for recently reported WLAN security issues
Some WLAN security issues have been reported recently that could potentially allow remote code execution (RCE) over the air while the device is scanning for WiFi networks. We should try to update all Linux kernels in main/community to 6.0.2+/5.19.16+ as soon as possible, and (IMO) ensure that all devices have the fixes until v22.12 is released.
See also:
- https://seclists.org/oss-sec/2022/q4/20
- https://www.phoronix.com/news/Linux-WiFi-Malicious-Packets
- https://www.phoronix.com/news/Linux-6.0.2-Point-Releases-WiFi
Backports for LTS kernels are still WIP as far as I can tell from the Linux stable mailing list, so it's hard to link any specific patches that should be applied. It's probably best anyway to update to a new stable Linux version that also includes lots of other related (and unrelated) fixes.
main kernels
-
linux-postmarketos-allwinner @PureTryOut @craftyguy @MartijnBraam @z3ntu @ollieparanoid (@BobbyTheBuilder @PsychoGame) -
linux-purism-librem5 @craftyguy @bshah
community kernels
-
linux-nokia-n900 @sicelo -
linux-pine64-pinephonepro @MartijnBraam - fixes partially backported in !3552 (merged) (there are additional patches in the stable upgrades, but it is not clear if they are security-relevant)
- see #1758 (closed) for a proper kernel upgrade
- Upgraded to 6.0.8 in !3599 (merged)
-
linux-postmarketos-exynos4 @Newbyte (@martin.juecker) -
linux-postmarketos-omap @MightyM17 @sicelo -
linux-postmarketos-qcom-msm8916 -
linux-postmarketos-qcom-msm8996 @Tooniis -
linux-postmarketos-qcom-sdm845 @joelselvaraj @calebccff -
linux-postmarketos-qcom-sm6350 @z3ntu -
linux-postmarketos-rockchip @MartijnBraam (@jenneron) -
linux-samsung-espresso3g @MightyM17 @antoni.aloytorrens - dropped in favor of linux-postmarketos-omap in !3563 (merged)
Edited by Administrator