linux_*, except testing, 4.14: apply patch for CVE-2023-32233

This applies the patch for CVE-2023-32233 from kernel 4.19 until 6.3, testing (6.4-rc1 at the moment) is excluded because it already have the fix and 4.14 doesn't have this fix queued for the next stable kernel.
author: Raito Bezarius <masterancpp@gmail.com> 2023-05-09 22:27:23 +0200
committer: Raito Bezarius <masterancpp@gmail.com> 2023-05-09 22:50:32 +0200
commit: 99e65bb00d18003476148d8c153e2b8721b8c335 (patch)
tree: 45967b2c419a163ed6c0d0111aa010fcbf9ef16f /pkgs/os-specific/linux/kernel/patches.nix
parent: c66d3f2affb01fd3390766089cfc63146d9a0998 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/pkgs/os-specific/linux/kernel/patches.nix b/pkgs/os-specific/linux/kernel/patches.nix
index 5912abf4181dd..f2225096dd5ca 100644
--- a/pkgs/os-specific/linux/kernel/patches.nix
+++ b/pkgs/os-specific/linux/kernel/patches.nix
@@ -62,4 +62,13 @@
     name = "fix-em-ice-bonding";
     patch = ./fix-em-ice-bonding.patch;
   };
+
+  CVE-2023-32233 = rec {
+    name = "CVE-2023-32233";
+    patch = fetchpatch {
+      name = name + ".patch";
+      url = "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/patch/?id=c1592a89942e9678f7d9c8030efa777c0d57edab";
+      hash = "sha256-DYPWgraXPNeFkjtuDYkFXHnCJ4yDewrukM2CCAqC2BE=";
+    };
+  };
 }
author	Raito Bezarius <masterancpp@gmail.com>	2023-05-09 22:27:23 +0200
committer	Raito Bezarius <masterancpp@gmail.com>	2023-05-09 22:50:32 +0200
commit	99e65bb00d18003476148d8c153e2b8721b8c335 (patch)
tree	45967b2c419a163ed6c0d0111aa010fcbf9ef16f /pkgs/os-specific/linux/kernel/patches.nix
parent	c66d3f2affb01fd3390766089cfc63146d9a0998 (diff)