OpenWrt v18.06.8 Changelog
This changelog lists all commits done in OpenWrt since the v18.06.7 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 18.06.8 release.
See also the release notes that provide a more accessible overview of the main changes in 18.06.8.
Kernel (5 changes)
c236071
kernel: bump 4.9 to 4.9.212 (+54,-54)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
6b10354
kernel: add support for GD25D05 SPI NOR (+29)
bfee12c
kernel: bump 4.9 to 4.9.214 (+20,-20)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
Packages / Common (4 changes)
0506246
hostapd: remove erroneous $(space) redefinition (-3)
cc78f93
ppp: backport security fixes (+129,-1)
cd262f5
Revert "ppp: backport security fixes" (+1,-129)
4c1779a
ppp: backport security fixes (+129,-1)
Packages / OpenWrt system userland (2 changes)
ed3c304
uhttpd: update to latest Git HEAD (+3,-3)
⇒ 2ee323c
file: poke ustream after starting deferred program (+1)
82fbd85
libubox: backport blobmsg_check_array() fix (+34,-1)
Target / apm821xx (1 change)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
Target / ar71xx (1 change)
bfee12c
kernel: bump 4.9 to 4.9.214 (+20,-20)
Target / ath25 (1 change)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
Target / bcm53xx (1 change)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
Target / brcm2708 (1 change)
bfee12c
kernel: bump 4.9 to 4.9.214 (+20,-20)
Target / brcm47xx (2 changes)
Target / brcm63xx (1 change)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
Target / ipq806x (1 change)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
Target / lantiq (1 change)
c236071
kernel: bump 4.9 to 4.9.212 (+54,-54)
Target / layerscape (2 changes)
Target / mediatek (1 change)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
Target / mpc85xx (1 change)
bfee12c
kernel: bump 4.9 to 4.9.214 (+20,-20)
Target / pistachio (1 change)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
Target / ramips (1 change)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
Target / sunxi (1 change)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
Addressed bugs
#2833
Description: libubox: bug in blobmsg_check_array()
Link: https://bugs.openwrt.org/index.php?do=details&task_id=2833
Commits:
82fbd85
libubox: backport blobmsg_check_array() fix (+34,-1)
Security fixes
CVE-2013-1798
Description: The ioapic_read_indirect function in virt/kvm/ioapic.c in the Linux kernel through 3.8.4 does not properly handle a certain combination of invalid IOAPIC_REG_SELECT and IOAPIC_REG_WINDOW operations, which allows guest OS users to obtain sensitive information from host OS memory or cause a denial of service (host OS OOPS) via a crafted application.
Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1798
Commits:
bfee12c
kernel: bump 4.9 to 4.9.214 (+20,-20)
fafe99b
kernel: bump 4.14 to 4.14.171 (+27,-32)
CVE-2019-14896
Description: A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.
Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14896
Commits:
c236071
kernel: bump 4.9 to 4.9.212 (+54,-54)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
CVE-2019-14897
Description: A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA.
Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14897
Commits:
c236071
kernel: bump 4.9 to 4.9.212 (+54,-54)
4eba868
kernel: bump 4.14 to 4.14.169 (+330,-369)
CVE-2020-8597
Description: eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
Commits:
4c1779a
ppp: backport security fixes (+129,-1)