From 3bc03d111ec0532d42b491f337b70fe58ba26f08 Mon Sep 17 00:00:00 2001
From: "Kevin F. Haggerty" <haggertk@lineageos.org>
Date: Sat, 7 Jun 2025 07:39:53 -0600
Subject: [PATCH 1/2] Bump Security String to 2025-05-05

Implemented:
============
CVE:            References:    Type:  Severity:  Updated AOSP versions:
CVE-2023-21342  A-232799171    EoP    High       13
CVE-2023-35657  A-260230151    ID     High       13, 14, 15
CVE-2025-22425  A-364604008    EoP    High       13, 14
CVE-2025-26420  A-313909156    EoP    High       13, 14
CVE-2025-26421  A-344865740    EoP    High       13, 14, 15
CVE-2025-26423  A-349550024    EoP    High       13, 14, 15
CVE-2025-26426  A-310632322    EoP    High       13, 14, 15
CVE-2025-26428  A-378514614    EoP    High       13, 14, 15
CVE-2025-26429  A-372678095    DoS    High       13, 14, 15
CVE-2025-26436  A-322159724    EoP    High       13, 14, 15
CVE-2025-26438  A-251514171    EoP    High       13, 14, 15
CVE-2025-26442  A-386216637    ID     High       13, 14, 15
CVE-2025-26444  A-191743558    EoP    High       13, 14
CVE-2025-27363  A-399065987    RCE    High       13, 14

Previously Implemented:
=======================
CVE:            References:    Type:  Severity:  Updated AOSP versions:  Prior Change:
CVE-2024-34739  A-294105066    EoP    High       13, 14                  455b552f2aeb
CVE-2025-0087   A-333681693    EoP    High       13, 14, 15              33fb7e48e4ea
CVE-2025-26427  A-200034476    EoP    High       13, 14                  c4fa7aeb5626
                                                                         a16ad15f

Not Implemented:
================
None

Not Applicable (platform source):
=================================
CVE:            References:    Type:  Severity:  Updated AOSP versions:
CVE-2025-0077   A-360838273    EoP    High       15
CVE-2025-26422  A-383328827    EoP    High       15
CVE-2025-26424  A-341253275    ID     High       15
CVE-2025-26425  A-379362792    EoP    High       14, 15
CVE-2025-26430  A-372895305    EoP    High       15
CVE-2025-26435  A-337774836    EoP    High       15
CVE-2025-26440  A-290086710    EoP    High       14

Change-Id: I6e476caa6280ea7b240ed583cfaa1fe2348e1c51
---
 core/version_defaults.mk | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/version_defaults.mk b/core/version_defaults.mk
index 47d82f3da0..8fade30141 100644
--- a/core/version_defaults.mk
+++ b/core/version_defaults.mk
@@ -103,7 +103,7 @@ ifndef PLATFORM_SECURITY_PATCH
     #  It must be of the form "YYYY-MM-DD" on production devices.
     #  It must match one of the Android Security Patch Level strings of the Public Security Bulletins.
     #  If there is no $PLATFORM_SECURITY_PATCH set, keep it empty.
-    PLATFORM_SECURITY_PATCH := 2025-04-05
+    PLATFORM_SECURITY_PATCH := 2025-05-05
 endif
 
 include $(BUILD_SYSTEM)/version_util.mk
-- 
GitLab


From 2a777ecff6e7e5daefac8c1ecb27cca5e27b1b67 Mon Sep 17 00:00:00 2001
From: "Kevin F. Haggerty" <haggertk@lineageos.org>
Date: Sun, 8 Jun 2025 07:10:41 -0600
Subject: [PATCH 2/2] Bump Security String to 2025-06-05

Implemented:
============
CVE:            References:    Type:  Severity:  Updated AOSP versions:
CVE-2025-26443  A-368319929    EoP    High       13, 14, 15
CVE-2025-26445  A-388828859    ID     High       13, 14, 15
CVE-2025-26448  A-309407957    ID     High       13, 14, 15
CVE-2025-26449  A-387498139    DoS    High       13, 14, 15
CVE-2025-26450  A-331730488    EoP    High       13, 14, 15
CVE-2025-26453  A-395643490    ID     High       13, 14, 15
CVE-2025-26455  A-301470262    EoP    High       13, 14, 15
CVE-2025-26458  A-388828203    EoP    High       13, 14, 15
CVE-2025-26462  A-386950836    EoP    High       13, 14, 15
CVE-2025-26463  A-303227969    DoS    High       13, 14, 15
CVE-2025-32312  A-373467684    EoP    High       13, 14, 15

Previously Implemented:
=======================
CVE:            References:    Type:  Severity:  Updated AOSP versions:  Prior Change:
CVE-2025-26441  A-367274727    ID     High       13, 14, 15              4b81907ce94

Not Implemented:
================
None

Not Applicable (platform source):
=================================
CVE:            References:    Type:  Severity:  Updated AOSP versions:
CVE-2025-26432  A-386802855    DoS    High       15
CVE-2025-26437  A-370477460    ID     High       15
CVE-2025-26452  A-383080440    EoP    High       14, 15
CVE-2025-26456  A-391895923    DoS    High       14, 15

Change-Id: I23ba348967475fcde8166c637d9eb77977bade64
---
 core/version_defaults.mk | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/version_defaults.mk b/core/version_defaults.mk
index 8fade30141..924f81be55 100644
--- a/core/version_defaults.mk
+++ b/core/version_defaults.mk
@@ -103,7 +103,7 @@ ifndef PLATFORM_SECURITY_PATCH
     #  It must be of the form "YYYY-MM-DD" on production devices.
     #  It must match one of the Android Security Patch Level strings of the Public Security Bulletins.
     #  If there is no $PLATFORM_SECURITY_PATCH set, keep it empty.
-    PLATFORM_SECURITY_PATCH := 2025-05-05
+    PLATFORM_SECURITY_PATCH := 2025-06-05
 endif
 
 include $(BUILD_SYSTEM)/version_util.mk
-- 
GitLab