User Tools

Site Tools


releases:18.06:changelog-18.06.8

OpenWrt v18.06.8 Changelog

This changelog lists all commits done in OpenWrt since the v18.06.7 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 18.06.8 release.

See also the release notes that provide a more accessible overview of the main changes in 18.06.8.

Kernel (5 changes)

c236071 kernel: bump 4.9 to 4.9.212 (+54,-54)
4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)
6b10354 kernel: add support for GD25D05 SPI NOR (+29)
bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)
fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Packages / Common (4 changes)

0506246 hostapd: remove erroneous $(space) redefinition (-3)
cc78f93 ppp: backport security fixes (+129,-1)
cd262f5 Revert "ppp: backport security fixes" (+1,-129)
4c1779a ppp: backport security fixes (+129,-1)

Packages / OpenWrt system userland (2 changes)

ed3c304 uhttpd: update to latest Git HEAD (+3,-3)
2ee323c file: poke ustream after starting deferred program (+1)
82fbd85 libubox: backport blobmsg_check_array() fix (+34,-1)

Target / apm821xx (1 change)

4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)

Target / ar71xx (1 change)

bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)

Target / ath25 (1 change)

fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Target / bcm53xx (1 change)

fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Target / brcm2708 (1 change)

bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)

Target / brcm47xx (2 changes)

bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)
fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Target / brcm63xx (1 change)

4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)

Target / ipq806x (1 change)

fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Target / lantiq (1 change)

c236071 kernel: bump 4.9 to 4.9.212 (+54,-54)

Target / layerscape (2 changes)

c236071 kernel: bump 4.9 to 4.9.212 (+54,-54)
bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)

Target / mediatek (1 change)

4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)

Target / mpc85xx (1 change)

bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)

Target / pistachio (1 change)

fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Target / ramips (1 change)

fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

Target / sunxi (1 change)

4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)

Addressed bugs

#2833

Description: libubox: bug in blobmsg_check_array()
Link: https://bugs.openwrt.org/index.php?do=details&task_id=2833
Commits:
82fbd85 libubox: backport blobmsg_check_array() fix (+34,-1)

Security fixes

CVE-2013-1798

Description: The ioapic_read_indirect function in virt/kvm/ioapic.c in the Linux kernel through 3.8.4 does not properly handle a certain combination of invalid IOAPIC_REG_SELECT and IOAPIC_REG_WINDOW operations, which allows guest OS users to obtain sensitive information from host OS memory or cause a denial of service (host OS OOPS) via a crafted application.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1798
Commits:
bfee12c kernel: bump 4.9 to 4.9.214 (+20,-20)
fafe99b kernel: bump 4.14 to 4.14.171 (+27,-32)

CVE-2019-14896

Description: A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14896
Commits:
c236071 kernel: bump 4.9 to 4.9.212 (+54,-54)
4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)

CVE-2019-14897

Description: A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14897
Commits:
c236071 kernel: bump 4.9 to 4.9.212 (+54,-54)
4eba868 kernel: bump 4.14 to 4.14.169 (+330,-369)

CVE-2020-8597

Description: eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8597
Commits:
4c1779a ppp: backport security fixes (+129,-1)

This website uses cookies. By using the website, you agree with storing cookies on your computer. Also you acknowledge that you have read and understand our Privacy Policy. If you do not agree leave the website.More information about cookies
releases/18.06/changelog-18.06.8.txt · Last modified: 2020/03/09 21:53 by zorun