SLE 15 Kernel module development container based on the SLE Base Container Image.
Last scanned on: May 04, 2025 13:46
| Package Name | Severity | Status | Description | Reference links | |
|---|---|---|---|---|---|
| kernel-default-devel | HIGH | fixed |
Security update for the Linux Kernel Vulnerability ID: SUSE-SU-2025:0833-2 Installed Version: 5.14.21-150500.55.68.1 Fixed Version: 5.14.21-150500.55.97.1 The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49080: mm/mempolicy: fix mpol_new leak in shared_policy_replace (bsc#1238033). - CVE-2024-53135: KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (bsc#1234154). - CVE-2024-53226: RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (bsc#1236576) - CVE-2024-57948: mac802154: check local interfaces before deleting sdata list (bsc#1236677). - CVE-2025-21647: sched: sch_cake: add bounds checks to host bulk flow fairness counts (bsc#1236133). - CVE-2025-21690: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service (bsc#1237025). - CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing (bsc#1237028). - CVE-2025-21699: gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (bsc#1237139). The following non-security bugs were fixed: - cpufreq/amd-pstate: Only print supported EPP values for performance governor (bsc#1236777). - iavf: fix the waiting time for initial reset (bsc#1235111). - ice: add ice_adapter for shared data across PFs on the same NIC (bsc#1235111). - ice: avoid the PTP hardware semaphore in gettimex64 path (bsc#1235111). - ice: fold ice_ptp_read_time into ice_ptp_gettimex64 (bsc#1235111). - idpf: call set_real_num_queues in idpf_open (bsc#1236661 bsc#1237316). - ipv4/tcp: do not use per netns ctl sockets (bsc#1237693). - kabi: hide adding RCU head into struct netdev_name_node (bsc#1233749). - net: Fix undefined behavior in netdev name allocation (bsc#1233749). - net: avoid UAF on deleted altname (bsc#1233749). - net: check for altname conflicts when changing netdev's netns (bsc#1233749). - net: core: Use the bitmap API to allocate bitmaps (bsc#1233749). - net: do not send a MOVE event when netdev changes netns (bsc#1233749). - net: do not use input buffer of __dev_alloc_name() as a scratch space (bsc#1233749). - net: fix ifname in netlink ntf during netns move (bsc#1233749). - net: fix removing a namespace with conflicting altnames (bsc#1233749). - net: free altname using an RCU callback (bsc#1233749). - net: introduce a function to check if a netdev name is in use (bsc#1233749). - net: make dev_alloc_name() call dev_prep_valid_name() (bsc#1233749). - net: mana: Add get_link and get_link_ksettings in ethtool (bsc#1236761). - net: mana: Cleanup 'mana' debugfs dir after cleanup of all children (bsc#1236760). - net: mana: Enable debugfs files for MANA device (bsc#1236758). - net: minor __dev_alloc_name() optimization (bsc#1233749). - net: move altnames together with the netdevice (bsc#1233749). - net: netvsc: Update default VMBus channels (bsc#1236757). - net: reduce indentation of __dev_alloc_name() (bsc#1233749). - net: remove dev_valid_name() check from __dev_alloc_name() (bsc#1233749). - net: remove else after return in dev_prep_valid_name() (bsc#1233749). - net: trust the bitmap in __dev_alloc_name() (bsc#1233749). - nfsd: use explicit lock/unlock for directory ops (bsc#1234650 bsc#1233701 bsc#1232472). - rcu: Remove rcu_is_idle_cpu() (bsc#1236289). - scsi: storvsc: Set correct data length for sending SCSI command without payload (git-fixes). - x86/aperfmperf: Dont wake idle CPUs in arch_freq_get_on_cpu() (bsc#1236289). - x86/aperfmperf: Integrate the fallback code from show_cpuinfo() (bsc#1236289). - x86/aperfmperf: Make parts of the frequency invariance code unconditional (bsc#1236289). - x86/aperfmperf: Put frequency invariance aperf/mperf data into a struct (bsc#1236289). - x86/aperfmperf: Replace aperfmperf_get_khz() (bsc#1236289). - x86/aperfmperf: Replace arch_freq_get_on_cpu() (bsc#1236289). - x86/aperfmperf: Restructure arch_scale_freq_tick() (bsc#1236289). - x86/aperfmperf: Separate AP/BP frequency invariance init (bsc#1236289). - x86/aperfmperf: Store aperf/mperf data for cpu frequency reads (bsc#1236289). - x86/aperfmperf: Untangle Intel and AMD frequency invariance init (bsc#1236289). - x86/aperfperf: Make it correct on 32bit and UP kernels (bsc#1236289). - x86/smp: Move APERF/MPERF code where it belongs (bsc#1236289). - x86/smp: Remove unnecessary assignment to local var freq_scale (bsc#1236289). - x86/xen: add FRAME_END to xen_hypercall_hvm() (git-fixes). - x86/xen: allow larger contiguous memory regions in PV guests (bsc#1236951). - x86/xen: fix xen_hypercall_hvm() to not clobber %rbx (git-fixes). - xen/swiotlb: relax alignment requirements (bsc#1236951). |
|
|
| kernel-default-devel | HIGH | fixed |
Security update for the Linux Kernel Vulnerability ID: SUSE-SU-2025:1241-1 Installed Version: 5.14.21-150500.55.68.1 Fixed Version: 5.14.21-150500.55.100.1 The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF (bsc#1237918). - CVE-2022-49465: blk-throttle: Set BIO_THROTTLED when bio has been throttled (bsc#1238919). - CVE-2022-49739: gfs2: Always check inode size of inline inodes (bsc#1240207). - CVE-2023-52935: mm/khugepaged: fix ->anon_vma race (bsc#1240276). - CVE-2024-53124: net: fix data-races around sk->sk_forward_alloc (bsc#1234074). - CVE-2024-53176: smb: During unmount, ensure all cached dir instances drop their dentry (bsc#1234894). - CVE-2024-53178: smb: Do not leak cfid when reconnect races with open_cached_dir (bsc#1234895). - CVE-2024-56651: can: hi311x: hi3110_can_ist(): fix potential use-after-free (bsc#1235528). - CVE-2024-57996: net_sched: sch_sfq: do not allow 1 packet limit (bsc#1239076). - CVE-2024-58013: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor_sync (bsc#1239095). - CVE-2024-58014: wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy() (bsc#1239109). - CVE-2025-21693: mm: zswap: properly synchronize freeing resources during CPU hotunplug (bsc#1237029). - CVE-2025-21718: net: rose: fix timer races against user threads (bsc#1239073). - CVE-2025-21772: partitions: mac: fix handling of bogus partition table (bsc#1238911). - CVE-2025-21780: drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() (bsc#1239115). The following non-security bugs were fixed: - ACPI: processor: idle: Return an error if both P_LVL{2,3} idle states are invalid (bsc#1237530). - btrfs: defrag: do not use merged extent map for their generation check (bsc#1239968). - btrfs: fix defrag not merging contiguous extents due to merged extent maps (bsc#1239968). - btrfs: fix extent map merging not happening for adjacent extents (bsc#1239968). - btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1239969). - btrfs: send: fix invalid clone operation for file that got its size decreased (bsc#1239969). - cifs: Add a laundromat thread for cached directories (git-fixes). - cifs: fix potential null pointer use in destroy_workqueue in init_cifs error path (git-fixes). - gfs2: Fix inode height consistency check (git-fixes). - mm: zswap: move allocations during CPU init outside the lock (git-fixes). - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (bsc#1239126). - net: mana: Add flex array to struct mana_cfg_rx_steer_req_v2 (bsc#1239016). - net: mana: Allow variable size indirection table (bsc#1239016). - net: mana: Avoid open coded arithmetic (bsc#1239016). - net: mana: Support holes in device list reply msg (bsc#1240133). - RDMA/mana_ib: Prefer struct_size over open coded arithmetic (bsc#1239016). - RDMA/mana_ib: Use v2 version of cfg_rx_steer_req to enable RX coalescing (bsc#1239016). - sched/membarrier: Fix redundant load of membarrier_state (bsc#1232743). - smb: client: destroy cfid_put_wq on module exit (git-fixes). - smb: client: disable directory caching when dir_cache_timeout is zero (git-fixes). - smb: client: do not start laundromat thread on nohandlecache (git-fixes). - smb: client: make laundromat a delayed worker (git-fixes). - smb: client: properly close cfids on umount (bsc#1231432, bsc#1232299, bsc#1235599, bsc#1234896). - smb3: allow controlling length of time directory entries are cached with dir leases (git-fixes). - smb3: do not start laundromat thread when dir leases disabled (git-fixes). - smb3: retrying on failed server close (git-fixes). - tpm: send_data: Wait longer for the TPM to become ready (bsc#1235870). |
|
|
| kernel-devel | CRITICAL | fixed |
Security update for the Linux Kernel Vulnerability ID: SUSE-SU-2024:4364-1 Installed Version: 5.14.21-150500.55.68.1 Fixed Version: 5.14.21-150500.55.88.1 The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47594: mptcp: never allow the PM to close a listener subflow (bsc#1226560). - CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556). - CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893). - CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() (bsc#1231973). - CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in greth_init_rings() (bsc#1231889). - CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions() (bsc#1231976). - CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979). - CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286). - CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191). - CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (bsc#1232233). - CVE-2022-48983: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() (bsc#1231959). - CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070). - CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938). - CVE-2022-49017: tipc: re-fetch skb cb after tipc_msg_validate (bsc#1232004). - CVE-2022-49020: net/9p: Fix a potential socket leak in p9_socket_open (bsc#1232175). - CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590). - CVE-2024-26906: Fixed invalid vsyscall page read for copy_from_kernel_nofault() (bsc#1223202). - CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656). - CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb->head (bsc#1224518). - CVE-2024-35937: wifi: cfg80211: check A-MSDU format more carefully (bsc#1224526). - CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797). - CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725). - CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730). - CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742). - CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764). - CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762). - CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748). - CVE-2024-38615: cpufreq: exit() callback is optional (bsc#1226592). - CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING (bsc#1227437). - CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885). - CVE-2024-40997: cpufreq: amd-pstate: fix memory leak on CPU EPP exit (bsc#1227853). - CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430). - CVE-2024-42226: Prevent potential failure in handle_tx_event() for Transfer events without TRB (bsc#1228709). - CVE-2024-42253: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (bsc#1229005). - CVE-2024-44931: gpio: prevent potential speculation leaks in gpio_device_get_desc() (bsc#1229837). - CVE-2024-44932: idpf: fix UAFs when destroying the queues (bsc#1229808). - CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179). - CVE-2024-44964: idpf: fix memory leaks and crashes while performing a soft reset (bsc#1230220). - CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231). - CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429). - CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456). - CVE-2024-46678: bonding: change ipsec_lock from spin lock to mutex (bsc#1230550). - CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558). - CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (bsc#1230715). - CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801). - CVE-2024-46770: ice: Add netif_device_attach/detach into PF reset flow (bsc#1230763). - CVE-2024-46775: drm/amd/display: Validate function returns (bsc#1230774). - CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773). - CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827). - CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148). - CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (bsc#1231179). - CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191). - CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193). - CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195). - CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197). - CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200). - CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203). - CVE-2024-46826: ELF: fix kernel.randomize_va_space double read (bsc#1231115). - CVE-2024-46828: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1231114). - CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096). - CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105). - CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094). - CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072). - CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073). - CVE-2024-46854: net: dpaa: Pad packets to ETH_ZLEN (bsc#1231084). - CVE-2024-46855: netfilter: nft_socket: fix sk refcount leaks (bsc#1231085). - CVE-2024-46857: net/mlx5: Fix bridge mode operations when there are no VFs (bsc#1231087). - CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439). - CVE-2024-47661: drm/amd/display: Avoid overflow from uint32_t to uint8_t (bsc#1231496). - CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442). - CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502). - CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540). - CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539). - CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673). - CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode()&iput() (bsc#1231930). - CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987). - CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998). - CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857). - CVE-2024-47701: ext4: explicitly exit when ext4_find_inline_entry returns an error (bsc#1231920). - CVE-2024-47704: drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944). - CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872). - CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942). - CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935). - CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049). - CVE-2024-47720: drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (bsc#1232043). - CVE-2024-47727: x86/tdx: Fix 'in-kernel MMIO' check (bsc#1232116). - CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075). - CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114). - CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124). - CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135). - CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145). - CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174). - CVE-2024-47757: nilfs2: fix potential oob read in nilfs_btree_check_delete() (bsc#1232187). - CVE-2024-49858: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (bsc#1232251). - CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861). - CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259). - CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272). - CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201). - CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200). - CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199). - CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196). - CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217). - CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element's default to 1 (bsc#1232220). - CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221). - CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355). - CVE-2024-49899: drm/amd/display: Initialize denominators' default to 1 (bsc#1232358). - CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305). - CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332). - CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337). - CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366). - CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx->plane_state in (bsc#1232369). - CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw (bsc#1231965). - CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967). - CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968). - CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313). - CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371). - CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374). - CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361). - CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224) - CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253). - CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260). - CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368). - CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387). - CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424). - CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381). - CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165). - CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164). - CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160). - CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159). - CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155). - CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154). - CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151). - CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149). - CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395). - CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140). - CVE-2024-49968: ext4: fix error message when rejecting the default hash (bsc#1232264). - CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519). - CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105). - CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383). - CVE-2024-49975: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1232104). - CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096). - CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483). - CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282). - CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316). - CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432). - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089). - CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085). - CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084). - CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083). - CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442). - CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value (bsc#1232318). - CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446). - CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990). - CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954). - CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950). - CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914). - CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392). - CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907). - CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903). - CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902). - CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418). - CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310). - CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329). - CVE-2024-50058: serial: protect uart_port_dtr_rts() in uart_shutdown() too (bsc#1232285). - CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345). - CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (bsc#1232263). - CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435). - CVE-2024-50073: tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (bsc#1232520). - CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501). - CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500). - CVE-2024-50089: unicode: Do not special case ignorable code points (bsc#1232860). - CVE-2024-50093: thermal: intel: int340x: processor: Fix warning during module unload (bsc#1232877). - CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881). - CVE-2024-50108: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (bsc#1232884). - CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885). - CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919). - CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928). - CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907). - CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905). - CVE-2024-50134: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape (bsc#1232890). - CVE-2024-50135: nvme-pci: fix race condition between reset and nvme_dev_disable() (bsc#1232888). - CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935). - CVE-2024-50146: net/mlx5e: Do not call cleanup on profile rollback failure (bsc#1233056). - CVE-2024-50147: net/mlx5: Fix command bitmask initialization (bsc#1233067). - CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061). - CVE-2024-50154: tcp: Fix use-after-free of nreq in reqsk_timer_handler() (bsc#1233070). - CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049). - CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057). - CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129). - CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135). - CVE-2024-50186: net: explicitly clear the sk pointer, when pf->create fails (bsc#1233110). - CVE-2024-50188: net: phy: dp83869: fix memory corruption when enabling fiber (bsc#1233107). - CVE-2024-50192: irqchip/gic-v4: Correctly deal with set_affinity on lazily-mapped VPEs (bsc#1233106). - CVE-2024-50195: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() (bsc#1233103). - CVE-2024-50196: pinctrl: ocelot: fix system hang on level based interrupts (bsc#1233113). - CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (bsc#1233293). - CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233117). - CVE-2024-50229: nilfs2: fix potential deadlock with newly created symlinks (bsc#1233205). - CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206). - CVE-2024-50259: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (bsc#1233214). - CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253). - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1233453). - CVE-2024-50267: usb: serial: io_edgeport: fix use after free in debug printk (bsc#1233456). - CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460). - CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462). - CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463). - CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468). - CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478). - CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484). - CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487). - CVE-2024-53052: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (bsc#1233548). - CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552). - CVE-2024-53061: media: s5p-jpeg: prevent buffer overflows (bsc#1233555). - CVE-2024-53063: media: dvbdev: prevent the risk of out of memory access (bsc#1233557). - CVE-2024-53068: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (bsc#1233561). - CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570). - CVE-2024-53088: i40e: fix race condition by adding filter's intermediate sync state (bsc#1233580). - CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025). - CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085). The following non-security bugs were fixed: - acpi: battery: Call power_supply_changed() when adding hooks (bsc#1232154) - acpi: battery: Simplify battery hook locking (bsc#1232154) - acpi: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes). - acpi: CPPC: Fix _CPC register setting issue (git-fixes). - acpi: CPPC: Make rmw_lock a raw_spin_lock (git-fixes). - acpi: EC: Do not release locks during operation region accesses (stable-fixes). - acpi: PAD: fix crash in exit_round_robin() (stable-fixes). - acpi: PRM: Clean up guid type in struct prm_handler_info (git-fixes). - acpi: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes). - acpi: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes). - acpi: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes). - acpi: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes). - acpi: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes). - acpica: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes). - acpica: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes). - acpica: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes). - acpica: iasl: handle empty connection_node (stable-fixes). - ad7780: fix division by zero in ad7780_write_raw() (git-fixes). - adapt same struct naming as similar kABI workaround in SLE15-SP6 (prefixed with 'suse_' to make it more obvious its a downstream thing. - add bug reference for a mana change (bsc#1229769). - add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036). - add bugreference to a hv_netvsc patch (bsc#1232413). - afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes). - alsa: 6fire: Release resources at card release (git-fixes). - alsa: ac97: bus: Fix the mistake in the comment (git-fixes). - alsa: asihpi: Fix potential OOB array access (stable-fixes). - alsa: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes). - alsa: core: add isascii() check to card ID generator (stable-fixes). - alsa: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes). - alsa: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes). - alsa: hda: cs35l41: fix module autoloading (git-fixes). - alsa: hda: Fix kctl->id initialization (git-fixes). - alsa: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes). - alsa: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes). - alsa: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes). - alsa: hda/cs8409: Fix possible NULL dereference (git-fixes). - alsa: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes). - alsa: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes). - alsa: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes). - alsa: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes). - alsa: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes). - alsa: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes). - alsa: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes). - alsa: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes). - alsa: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes). - alsa: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes). - alsa: hda/realtek: Fix the push button function for the ALC257 (git-fixes). - alsa: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes). - alsa: hda/realtek: Update ALC225 depop procedure (git-fixes). - alsa: hda/realtek: Update ALC256 depop procedure (git-fixes). - alsa: hda/realtek: Update default depop procedure (git-fixes). - alsa: hdsp: Break infinite MIDI input flush loop (stable-fixes). - alsa: line6: add hw monitor volume control to POD HD500X (stable-fixes). - alsa: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes). - alsa: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes). - alsa: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes). - alsa: usb-audio: Add input value sanity checks for standard types (stable-fixes). - alsa: usb-audio: Add logitech Audio profile quirk (stable-fixes). - alsa: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes). - alsa: usb-audio: Add quirk for HP 320 FHD Webcam (stable-fixes). - alsa: usb-audio: Add quirks for Dell WD19 dock (stable-fixes). - alsa: usb-audio: Define macros for quirk table entries (stable-fixes). - alsa: usb-audio: Replace complex quirk lines with macros (stable-fixes). - alsa: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes). - amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes). - arm64: cputype: Add Neoverse-N3 definitions (git-fixes) - arm64: dts: imx8mp: correct sdhc ipg clk (git-fixes). - arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes). - arm64: errata: Expand speculative SSBS workaround once more (git-fixes) - arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes) - arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes) - arm64: Force position-independent veneers (git-fixes). - arm64: probes: Fix simulate_ldr*_literal() (git-fixes) - arm64: probes: Fix uprobes for big-endian kernels (git-fixes) - arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes) - arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes) - arm64: smccc: replace custom COUNT_ARGS() & CONCATENATE() (git-fixes) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes) - arm64:uprobe fix the uprobe SWBP_INSN in big-endian (git-fixes) - arm64/sve: Discard stale CPU state when handling SVE traps (git-fixes) - asoc: allow module autoloading for table db1200_pids (stable-fixes). - asoc: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes). - asoc: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes). - asoc: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes). - asoc: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes). - asoc: fsl_sai: Enable 'FIFO continue on error' FCONT bit (stable-fixes). - asoc: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes). - asoc: intel: fix module autoloading (stable-fixes). - asoc: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). - asoc: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes). - asoc: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes). - asoc: soc-pcm: Do not zero TDM masks in __soc_pcm_open() (git-fixes). - asoc: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes). - asoc: tda7419: fix module autoloading (stable-fixes). - blk-throttle: Fix io statistics for cgroup v1 (bsc#1233528). - block: Avoid leaking hctx->nr_active counter on batched completion (bsc#1231923). - block: print symbolic error name instead of error code (bsc#1231872). - bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes). - bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes). - bluetooth: Call iso_exit() on module unload (git-fixes). - bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes). - bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes). - bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes). - bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes). - bluetooth: Remove debugfs directory on module init failure (git-fixes). - bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes). - bnxt_en: Fix the PCI-AER routines (git-fixes). - bnxt_en: refactor reset close code (git-fixes). - bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters() (git-fixes). - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (git-fixes). - bnxt_en: Reset PTP tx_avail after possible firmware reset (git-fixes). - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes). - bnxt_en: Wait for FLR to complete during probe (git-fixes). - bpf, lsm: Add disabled BPF LSM hook list (git-fixes). - bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes). - bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes). - bpf, x64: Remove tail call detection (git-fixes). - bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes). - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450). - bpf: Allow helpers to accept pointers with a fixed size (git-fixes). - bpf: Check for helper calls in check_subprogs() (git-fixes). - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes). - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes). - bpf: Fix helper writes to read-only maps (git-fixes). - bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375). - bpf: Fix tailcall cases in test_bpf (git-fixes). - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes). - bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes). - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes). - btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450). - bus: integrator-lm: fix OF node leak in probe() (git-fixes). - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes). - can: c_can: fix {rx,tx}_errors statistics (git-fixes). - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes). - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes). - can: j1939: j1939_session_new(): fix skb reference counting (git-fixes). - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes). - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes). - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes). - ceph: fix cap ref leak via netfs init_request (bsc#1231383). - cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108). - char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git-fixes). - chtls: fix tp->rcv_tstamp initialization (git-fixes). - clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885). - clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885). - comedi: Flush partial mappings in error case (git-fixes). - comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes). - cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes). - crypto: bcm - add error check in the ahash_hmac_init function (git-fixes). - crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes). - crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes). - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes). - crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes). - crypto: hisilicon - Remove pci_aer_clear_nonfatal_status() call (bsc#1232075) - crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075) - crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes). - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes). - cxgb4: add forgotten u64 ivlan cast before shift (git-fixes). - cxgb4: Properly lock TX queue for the selftest (git-fixes). - cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes). - debugfs: fix automount d_fsdata usage (git-fixes). - dn_route: set rt neigh to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813). - drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes). - drbd: Fix atomicity violation in drbd_uuid_set_bm() (git-fixes). - driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes). - drivers: net: prevent tun_build_skb() to exceed the packet size limit (git-fixes). - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes). - drm: komeda: Fix an issue related to normalized zpos (stable-fixes). - drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes). - drm/amd: Guard against bad data for ATIF ACPI method (git-fixes). - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes). - drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) (stable-fixes). - drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (stable-fixes). - drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes). - drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944) - drm/amd/display: Check null pointer before dereferencing se (stable-fixes). - drm/amd/display: Check null pointers before using dc->clk_mgr (stable-fixes). - drm/amd/display: Check stream before comparing them (stable-fixes). - drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes). - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes). - drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes). - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes). - drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes). - drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' (stable-fixes). - drm/amd/display: Initialize get_bytes_per_element's default to 1 (stable-fixes). - drm/amd/display: Round calculated vtotal (stable-fixes). - drm/amd/display: Validate backlight caps are sane (stable-fixes). - drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes). - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes). - drm/amdgpu: add raven1 gfxoff quirk (stable-fixes). - drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes). - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes). - drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes). - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes). - drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes). - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes). - drm/amdgpu: properly handle vbios fake edid sizing (git-fixes). - drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes). - drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes). - drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes). - drm/bridge: tc358767: Fix link properties discovery (git-fixes). - drm/bridge: tc358768: Fix DSI command tx (git-fixes). - drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes). - drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes). - drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes). - drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes). - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes). - drm/msm/dpu: do not always program merge_3d block (git-fixes). - drm/msm/dpu: make sure phys resources are properly initialized (git-fixes). - drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes). - drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes). - drm/omap: Fix possible NULL dereference (git-fixes). - drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes). - drm/printer: Allow NULL data in devcoredump printer (stable-fixes). - drm/radeon: Fix encoder->possible_clones (git-fixes). - drm/radeon: properly handle vbios fake edid sizing (git-fixes). - drm/radeon: Replace one-element array with flexible-array member (stable-fixes). - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes). - drm/rockchip: define gamma registers for RK3399 (stable-fixes). - drm/rockchip: support gamma control on RK3399 (stable-fixes). - drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes). - drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes). - drm/sti: avoid potential dereference of error pointers (git-fixes). - drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes). - drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes). - drm/v3d: Address race-condition in MMU flush (git-fixes). - drm/v3d: Stop the active perfmon before being destroyed (git-fixes). - drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes). - drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes). - drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes). - drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes). - drm/vc4: Stop the active perfmon before being destroyed (git-fixes). - drm/vmwgfx: Handle surface check failure correctly (git-fixes). - drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes). - drop HD-audio conexant patch that caused a regression on Thinkpad (bsc#1228269) - Drop OCFS2 patch causing a regression (bsc#1233255) - drop USB dwc2 patch that caused a regression on RPi3 (bsc#1232342) - e1000e: Fix S0ix residency on corporate systems (git-fixes). - efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465). - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes). - erofs: avoid consecutive detection for Highmem memory (git-fixes). - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (git-fixes). - erofs: fix pcluster use-after-free on UP platforms (git-fixes). - erofs: fix potential overflow calculating xattr_isize (git-fixes). - erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes). - eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes). - exportfs: use pr_debug for unreachable debug statements (git-fixes). - ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201) - fat: fix uninitialized variable (git-fixes). - fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes). - fbdev: sisfb: Fix strbuf array overflow (stable-fixes). - fgraph: Change the name of cpuhp state to 'fgraph:online' (git-fixes). - fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes). - fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes). - filelock: fix potential use-after-free in posix_lock_inode (git-fixes). - firmware: google: Unregister driver_info on failure (git-fixes). - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes). - Fix regression on AMDGPU driver (bsc#1233134) - fs: Fix file_set_fowner LSM hook inconsistencies (git-fixes). - fs/namespace: fnic: Switch to use %ptTd (git-fixes). - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes). - genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes). - goldfish: Fix unused const variable 'goldfish_pipe_acpi_match' (git-fixes). - gpio: aspeed: Add the flush write to ensure the write complete (git-fixes). - gpio: aspeed: Use devm_clk api to manage clock source (git-fixes). - gpio: davinci: fix lazy disable (git-fixes). - gve: Fix an edge case for TSO skb validity check (git-fixes). - gve: Fix skb truesize underestimation (git-fixes). - gve: Fix XDP TX completion handling when counters overflow (git-fixes). - gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes). - hid: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes). - hid: core: zero-initialize the report buffer (git-fixes). - hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma (git-fixes). - hid: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes). - hid: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes). - hid: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes). - hid: multitouch: Add support for B2402FVA track point (stable-fixes). - hid: multitouch: Add support for GT7868Q (stable-fixes). - hid: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes). - hid: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes). - hid: wacom: Defer calculation of resolution until resolution_code is known (git-fixes). - hid: wacom: fix when get product name maybe null pointer (git-fixes). - hid: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes). - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes). - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (git-fixes). - hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes). - i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes). - i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885). - i2c: imx-lpi2c: use bulk clk API (bsc#1227885). - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes). - i2c: xiic: Fix broken locking on tx_msg (stable-fixes). - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - i2c: xiic: Fix RX IRQ busy check (stable-fixes). - i2c: xiic: improve error message when transfer fails to start (stable-fixes). - i2c: xiic: Switch from waitqueue to completion (stable-fixes). - i2c: xiic: Try re-initialization on bus busy timeout (git-fixes). - i2c: xiic: Use devm_clk_get_enabled() (stable-fixes). - i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes). - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes). - i40e: avoid double calling i40e_pf_rxq_wait() (git-fixes). - i40e: disable NAPI right after disabling irqs when handling xsk_pool (git-fixes). - i40e: Fix filter input checks to prevent config with invalid values (git-fixes). - i40e: fix use-after-free in i40e_aqc_add_filters() (git-fixes). - i40e: Fix waiting for queues of all VSIs to be disabled (git-fixes). - i40e: Fix XDP program unloading while removing the driver (git-fixes). - i40e: Report MFS in decimal base instead of hex (git-fixes). - i40e: Restore VF MSI-X state during PCI reset (git-fixes). - i40e: take into account XDP Tx queues when stopping rings (git-fixes). - iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (git-fixes). - iavf: fix FDIR rule fields masks validation (git-fixes). - iavf: Fix promiscuous mode configuration flow messages (git-fixes). - iavf: Fix TC config comparison with existing adapter TC config (git-fixes). - iavf: in iavf_down, disable queues when removing the driver (git-fixes). - iavf: initialize waitqueues before starting watchdog_task (git-fixes). - iavf: Introduce new state machines for flow director (git-fixes). - iavf: send VLAN offloading caps once after VFR (git-fixes). - iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero (git-fixes). - ibmvnic: Do partial reset on login failure (bsc#1233150). - ibmvnic: Enforce stronger sanity checks on login response (bsc#1233150). - ibmvnic: Ensure login failure recovery is safe from other resets (bsc#1233150). - ibmvnic: Handle DMA unmapping of login buffs in release functions (bsc#1233150). - ibmvnic: Unmap DMA login rsp buffer on send login fail (bsc#1233150). - ice: avoid executing commands on other ports when driving sync (git-fixes). - ice: Block switchdev mode when ADQ is active and vice versa (git-fixes). - ice: change q_index variable type to s16 to store -1 value (git-fixes). - ice: fix accounting for filters shared by multiple VSIs (git-fixes). - ice: fix accounting if a VLAN already exists (git-fixes). - ice: fix ICE_LAST_OFFSET formula (git-fixes). - ice: Fix link_down_on_close message (git-fixes). - ice: Fix netif_is_ice() in Safe Mode (git-fixes). - ice: Fix NULL pointer deref during VF reset (git-fixes). - ice: fix over-shifted variable (git-fixes). - ice: fix receive buffer size miscalculation (git-fixes). - ice: fix VLAN replay after reset (git-fixes). - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes). - ice: ice_aq_check_events: fix off-by-one check when filling buffer (git-fixes). - ice: Interpret .set_channels() input differently (git-fixes). - ice: reset first in crash dump kernels (git-fixes). - ice: respect netif readiness in AF_XDP ZC related ndo's (git-fixes). - ice: Shut down VSI with 'link-down-on-close' enabled (git-fixes). - ice: tc: allow zero flags in parsing tc flower (git-fixes). - ice: Unbind the workqueue (bsc#1231344). - ice: virtchnl: stop pretending to support RSS over AQ or registers (git-fixes). - idpf: avoid compiler introduced padding in virtchnl2_rss_key struct (git-fixes). - idpf: avoid compiler padding in virtchnl2_ptype struct (git-fixes). - idpf: disable local BH when scheduling napi for marker packets (git-fixes). - idpf: distinguish vports by the dev_port attribute (git-fixes). - idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes). - idpf: fix corrupted frames and skb leaks in singleq mode (git-fixes). - idpf: fix memleak in vport interrupt configuration (git-fixes). - idpf: fix memory leaks and crashes while performing a soft reset (git-fixes). - idpf: fix UAFs when destroying the queues (git-fixes). - idpf: Interpret .set_channels() input differently (git-fixes). - igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes). - igb: extend PTP timestamp adjustments to i211 (git-fixes). - igb: Fix missing time sync events (git-fixes). - igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes). - igc: Check VLAN EtherType mask (git-fixes). - igc: Check VLAN TCI mask (git-fixes). - igc: Fix hicredit calculation (git-fixes). - igc: Fix missing time sync events (git-fixes). - igc: Remove temporary workaround (git-fixes). - igc: Report VLAN EtherType matching back to user (git-fixes). - igc: Unlock on error in igc_io_resume() (git-fixes). - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes). - iio: adc: ad7606: Fix typo in the driver name (git-fixes). - iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes). - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes). - iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes). - iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes). - iio: light: opt3001: add missing full-scale range value (git-fixes). - iio: light: veml6030: fix ALS sensor resolution (git-fixes). - iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes). - iio: light: veml6030: fix microlux value calculation (git-fixes). - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - initramfs: avoid filename buffer overrun (bsc#1232436). - input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes). - input: adp5589-keys - fix NULL pointer dereference (git-fixes). - input: ads7846 - ratelimit the spi_sync error message (stable-fixes). - input: goodix - use the new soc_intel_is_byt() helper (stable-fixes). - input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (git-fixes). - input: i8042 - add Ayaneo Kun to i8042 quirk table (git-fixes). - input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table (git-fixes). - input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (git-fixes). - input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (git-fixes). - input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes). - iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes). - ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813). - ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813). - irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes). - irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1 (git-fixes). - itco_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes). - ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able (git-fixes). - ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa() (git-fixes). - ixgbe: fix crash with empty VF macvlan list (git-fixes). - ixgbe: fix timestamp configuration code (git-fixes). - jfs: check if leafidx greater than num leaves per dmap tree (git-fixes). - jfs: Fix sanity check in dbMount (git-fixes). - jfs: Fix uaf in dbFreeBits (git-fixes). - jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes). - jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes). - kab: fix after net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes). - kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes). - kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes). - kABI: bpf: struct bpf_func_proto kABI workaround (git-fixes). - kabi: fix after kvm: add guest_state_{enter,exit}_irqoff() (git-fixes). - kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes). - kabi: Restore exported __arm_smccc_sve_check (git-fixes) - kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450). - kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450). - kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450). - kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450). - kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450). - kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450). - kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644). - kernel.h: split out COUNT_ARGS() and CONCATENATE() to args.h (git-fixes) - kexec: fix a memory leak in crash_shrink_memory() (git-fixes). - kvm: add guest_state_{enter,exit}_irqoff() (git-fixes). - kvm: Add support for arch compat vm ioctls (git-fixes). - kvm: arm64: Add missing memory barriers when switching to pKVM's hyp pgd (git-fixes). - kvm: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes). - kvm: arm64: Fix AArch32 register narrowing on userspace write (git-fixes). - kvm: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes). - kvm: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes). - kvm: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes). - kvm: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes). - kvm: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes). - kvm: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (git-fixes). - kvm: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes). - kvm: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes). - kvm: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes). - kvm: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes). - kvm: eventfd: Fix false positive RCU usage warning (git-fixes). - kvm: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes). - kvm: Fix lockdep false negative during host resume (git-fixes). - kvm: fix memoryleak in kvm_init() (git-fixes). - kvm: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes). - kvm: Optimize kvm_make_vcpus_request_mask() a bit (git-fixes). - kvm: PPC: Book3S HV: remove unused varible (bsc#1194869). - kvm: Pre-allocate cpumasks for kvm_make_all_cpus_request_except() (git-fixes). - kvm: Reject overly excessive IDs in KVM_CREATE_VCPU (git-fixes). - kvm: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631). - kvm: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query (git-fixes bsc#1231277). - kvm: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630). - kvm: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (git-fixes). - kvm: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes). - kvm: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes). - kvm: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes). - kvm: Write the per-page 'segment' when clearing (part of) a guest page (git-fixes). - kvm: x86: Use a stable condition around all VT-d PI paths (git-fixes). - kvm: x86/mmu: Fold rmap_recycle into rmap_add (git-fixes). - kvm: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (git-fixes). - kvm/arm64: rework guest entry logic (git-fixes). - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes). - Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450). - media: adv7604: prevent underflow condition when reporting colorspace (git-fixes). - media: cx24116: prevent overflows on SNR calculus (git-fixes). - media: dvb_frontend: do not play tricks with underflow values (git-fixes). - media: dvb-usb-v2: af9035: fix missing unlock (git-fixes). - media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (stable-fixes). - media: dvbdev: prevent the risk of out of memory access (git-fixes). - media: pci: cx23885: check cx23885_vdev_init() return (stable-fixes). - media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes). - media: stb0899_algo: initialize cfr before using it (git-fixes). - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes). - media: v4l2-tpg: prevent the risk of a division by zero (git-fixes). - media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes). - mei: use kvmalloc for read buffer (git-fixes). - misc: apds990x: Fix missing pm_runtime_disable() (git-fixes). - mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012). - mm/memory: add non-anonymous page check in the copy_present_page() (bsc#1231646). - modpost: remove incorrect code in do_eisa_entry() (git-fixes). - module: abort module loading when sysfs setup suffer errors (git-fixes). - nbd: fix race between timeout and normal completion (bsc#1230918). - net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes). - net: ena: Fix potential sign extension issue (git-fixes). - net: ena: Remove ena_select_queue (git-fixes). - net: ena: Wrong missing IO completions check order (git-fixes). - net: mana: Implement get_ringparam/set_ringparam for mana (bsc#1229891). - net: mana: Improve mana_set_channels() in low mem conditions (bsc#1230289). - net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes). - net: relax socket state check at accept time (git-fixes). - net: socket: suppress unused warning (git-fixes). - net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes). - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes). - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes). - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes). - net: usb: usbnet: fix name regression (git-fixes). - net: usb: usbnet: fix race in probe failure (git-fixes). - net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes). - net/mlx5: Added cond_resched() to crdump collection (git-fixes). - net/mlx5: Allow 0 for total host VFs (git-fixes). - net/mlx5: Correctly compare pkt reformat ids (git-fixes). - net/mlx5: DR, Can't go to uplink vport on RX rule (git-fixes). - net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx (git-fixes). - net/mlx5: DR, Use the right GVMI number for drop action (git-fixes). - net/mlx5: Drain health before unregistering devlink (git-fixes). - net/mlx5: E-switch, register event handler before arming the event (git-fixes). - net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes). - net/mlx5: Fix fw tracer first block check (git-fixes). - net/mlx5: fix potential memory leak in mlx5e_init_rep_rx (git-fixes). - net/mlx5: fs, lock FTE when checking if active (git-fixes). - net/mlx5: Handle fw tracer change ownership event based on MTRC (git-fixes). - net/mlx5: LAG, Check correct bucket when modifying LAG (git-fixes). - net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes). - net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes). - net/mlx5: Lag, restore buckets number to default after hash LAG deactivation (git-fixes). - net/mlx5: Skip clock update work when device is in error state (git-fixes). - net/mlx5: Unregister notifier on eswitch init failure (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (git-fixes). - net/mlx5: Use recovery timeout on sync reset flow (git-fixes). - net/mlx5: Use RMW accessors for changing LNKCTL (git-fixes). - net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes). - net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes). - net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes). - net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp (git-fixes). - net/mlx5e: Allow software parsing when IPsec crypto is enabled (git-fixes). - net/mlx5e: Change the warning when ignore_flow_level is not supported (git-fixes). - net/mlx5e: Check return value of snprintf writing to fw_version buffer (git-fixes). - net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors (git-fixes). - net/mlx5e: Correct snprintf truncation handling for fw_version buffer (git-fixes). - net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (git-fixes). - net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes). - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (git-fixes). - net/mlx5e: Do not offload internal port if filter device is out device (git-fixes). - net/mlx5e: fix a potential double-free in fs_udp_create_groups (git-fixes). - net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set (git-fixes). - net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups (git-fixes). - net/mlx5e: fix double free of encap_header (git-fixes). - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes). - net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes). - net/mlx5e: Fix pedit endianness (git-fixes). - net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work (git-fixes). - net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer() (git-fixes). - net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (git-fixes). - net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes). - net/mlx5e: HTB, Fix inconsistencies with QoS SQs number (git-fixes). - net/mlx5e: kTLS, Fix incorrect page refcounting (git-fixes). - net/mlx5e: Move representor neigh cleanup to profile cleanup_tx (git-fixes). - net/mlx5e: Reduce the size of icosq_str (git-fixes). - net/mlx5e: Take state lock during tx timeout reporter (git-fixes). - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes). - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX (bsc#1226797) - netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes). - nfs: Avoid unnecessary rescanning of the per-server delegation list (git-fixes). - nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes). - nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes). - nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes). - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes). - nfsd: Fix NFSv4's PUTPUBFH operation (git-fixes). - nfsd: fix refcount leak when file is unhashed after being found (git-fixes). - nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes). - nfsd: Mark filecache 'down' if init fails (git-fixes). - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes). - nfsd: return -EINVAL when namelen is 0 (git-fixes). - nfsv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016). - nfsv4: Fix clearing of layout segments in layoutreturn (git-fixes). - nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes). - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes). - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes). - ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (stable-fixes). - nvme-fabrics: fix kernel crash while shutting down controller (git-fixes). - nvme-multipath: system fails to create generic nvme device (git-fixes). - nvme-pci: fix freeing of the HMB descriptor table (git-fixes). - nvme-pci: qdepth 1 quirk (git-fixes). - nvme-pci: reverse request order in nvme_queue_rqs (git-fixes). - nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes). - ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes). - ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes). - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes). - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes). - parport: Proper fix for array out-of-bounds access (git-fixes). - pci: Add ACS quirk for Qualcomm SA8775P (stable-fixes). - pci: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes). - pci: Add T_PVPERL macro (git-fixes). - pci: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes). - pci: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019). - pci: Fix reset_method_store() memory leak (git-fixes). - pci: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes). - pci: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes). - pci: keystone: Set mode as Root Complex for 'ti,keystone-pcie' compatible (git-fixes). - pci: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes). - pci: rockchip-ep: Fix address translation unit programming (git-fixes). - phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes). - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes). - platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes). - platform/surface: aggregator: Fix warning when controller is destroyed in probe (git-fixes). - platform/x86: dell-sysman: add support for alienware products (stable-fixes). - platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes). - platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes). - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098). - power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes). - power: supply: bq27xxx: Fix registers of bq27426 (git-fixes). - power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes). - powerpc: Allow clearing and restoring registers independent of saved breakpoint state (bsc#1194869). - powerpc: remove GCC version check for UPD_CONSTR (bsc#1194869). - powerpc/64: Convert patch_instruction() to patch_u32() (bsc#1194869). - powerpc/asm: Remove UPD_CONSTR after GCC 4.9 removal (bsc#1194869). - powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869). - powerpc/boot: Handle allocation failure in simple_realloc() (bsc#1194869). - powerpc/boot: Only free if realloc() succeeds (bsc#1194869). - powerpc/code-patching: Add generic memory patching (bsc#1194869). - powerpc/code-patching: Consolidate and cache per-cpu patching context (bsc#1194869). - powerpc/code-patching: Do not call is_vmalloc_or_module_addr() without CONFIG_MODULES (bsc#1194869). - powerpc/code-patching: Fix error handling in do_patch_instruction() (bsc#1194869). - powerpc/code-patching: Fix oops with DEBUG_VM enabled (bsc#1194869). - powerpc/code-patching: Fix unmap_patch_area() error handling (bsc#1194869). - powerpc/code-patching: introduce patch_instructions() (bsc#1194869). - powerpc/code-patching: Perform hwsync in __patch_instruction() in case of failure (bsc#1194869). - powerpc/code-patching: Pre-map patch area (bsc#1194869). - powerpc/code-patching: Remove #ifdef CONFIG_STRICT_KERNEL_RWX (bsc#1194869). - powerpc/code-patching: Remove pr_debug()/pr_devel() messages and fix check() (bsc#1194869). - powerpc/code-patching: Reorganise do_patch_instruction() to ease error handling (bsc#1194869). - powerpc/code-patching: Speed up page mapping/unmapping (bsc#1194869). - powerpc/code-patching: Use jump_label to check if poking_init() is done (bsc#1194869). - powerpc/code-patching: Use temporary mm for Radix MMU (bsc#1194869). - powerpc/code-patching: Use WARN_ON and fix check in poking_init (bsc#1194869). - powerpc/ftrace: Use patch_instruction() return directly (bsc#1194869). - powerpc/imc-pmu: Fix use of mutex in IRQs disabled section (bsc#1054914 git-fixes). - powerpc/imc-pmu: Use the correct spinlock initializer (bsc#1054914 git-fixes). - powerpc/inst: Refactor ___get_user_instr() (bsc#1194869). - powerpc/kexec: Fix return of uninitialized variable (bsc#1194869). - powerpc/lib: Add __init attribute to eligible functions (bsc#1194869). - powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869). - powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869). - powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869). - powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869). - powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869). - powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869). - powerpc/tlb: Add local flush for page given mm_struct and psize (bsc#1194869). - powerpc/vdso: augment VDSO32 functions to support 64 bits build (bsc#1194869). - powerpc/vdso: Fix VDSO data access when running in a non-root time namespace (bsc#1194869). - powerpc/vdso: Merge vdso64 and vdso32 into a single directory (bsc#1194869). - powerpc/vdso: Rework VDSO32 makefile to add a prefix to object files (bsc#1194869). - powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (bsc#1194869). - powerpc/xmon: Fix disassembly CPU feature checks (bsc#1065729). - qed: avoid truncating work queue length (git-fixes). - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow (bsc#1226631). - rcu: Add rcutree.nohz_full_patience_delay to reduce nohz_full (bsc#1231327) - rdma/bnxt_re: Add a check for memory allocation (git-fixes) - rdma/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes) - rdma/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes) - rdma/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes) - rdma/bnxt_re: Fix the GID table length (git-fixes) - rdma/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes) - rdma/bnxt_re: Fix the usage of control path spin locks (git-fixes) - rdma/bnxt_re: Return more meaningful error (git-fixes) - rdma/bnxt_re: synchronize the qp-handle table array (git-fixes) - rdma/cxgb4: Dump vendor specific QP details (git-fixes) - rdma/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes) - rdma/hns: Add clear_hem return value to log (git-fixes) - rdma/hns: Add mutex_destroy() (git-fixes) - rdma/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes) - rdma/hns: Fix cpu stuck caused by printings during reset (git-fixes) - rdma/hns: Fix different dgids mapping to the same dip_idx (git-fixes) - rdma/hns: Fix flush cqe error when racing with destroy qp (git-fixes) - rdma/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes) - rdma/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes) - rdma/hns: Remove unnecessary QP type checks (git-fixes) - rdma/hns: Remove unused abnormal interrupt of type RAS (git-fixes) - rdma/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes) - rdma/hns: Use macro instead of magic number (git-fixes) - rdma/irdma: Fix misspelling of 'accept*' (git-fixes) - rdma/mad: Improve handling of timed out WRs of mad agent (git-fixes) - rdma/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes). - rdma/mana_ib: use the correct page table index based on hardware page size (git-fixes). - rdma/mlx5: Move events notifier registration to be after device registration (git-fixes) - rdma/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes) - rdma/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes). - rdma/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes) - rdma/rxe: Fix the qp flush warnings in req (git-fixes) - rdma/rxe: Set queue pair cur_qp_state when being queried (git-fixes) - rdma/srpt: Make slab cache names unique (git-fixes) - Removed the duplicated check of static_assert(sizeof(struct work_struct) >= sizeof(struct rcu_head)). - Removed unnecessary white-space change in kernel/bpf/syscall.c - Revert 'cgroup: Fix memory leak caused by missing cgroup_bpf_offline' (bsc#1234108). - Revert 'ixgbe: Manual AN-37 for troublesome link partners for X550 SFI' (git-fixes). - Revert 'KVM: Prevent module exit until all VMs are freed' (git-fixes). - Revert 'mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K' (git-fixes). - Revert 'usb: gadget: composite: fix OS descriptors w_value logic' (git-fixes). - Revert 'usb: yurex: Replace snprintf() with the safer scnprintf() variant' (stable-fixes). - Revert PM changes that caused a regression on S4 resume (bsc#1231578). - rpm/check-for-config-changes: add HAVE_RUST and RUSTC_SUPPORTS_ to IGNORED_CONFIGS_RE They depend on SHADOW_CALL_STACK. - rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc - rpm/release-projects: Add SLFO projects (bsc#1231293). - rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644) - rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes). - rtc: abx80x: Fix WDT bit position of the status register (git-fixes). - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes). - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - s390/mm: Add cond_resched() to cmm_alloc/free_pages() (bsc#1228747). - s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632). - sched/isolation: Prevent boot crash when the boot CPU is (bsc#1231327) - scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes). - scsi: core: alua: I/O errors for ALUA state transitions (git-fixes). - scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes). - scsi: core: Handle devices which return an unusually large VPD page count (git-fixes). - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (git-fixes). - scsi: fnic: Move flush_work initialization out of if block (bsc#1230055). - scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes). - scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes). - scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes). - scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241). - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757). - scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241). - scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241). - scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241). - scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241). - scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241). - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757). - scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757). - scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241). - scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241). - scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241). - scsi: lpfc: Remove trailing space after \n newline (bsc#1232757). - scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes). - scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757). - scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757). - scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757). - scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241). - scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241). - scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757). - scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes). - scsi: mac_scsi: Refactor polling loop (git-fixes). - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes). - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes). - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes). - scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes). - scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes). - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes). - scsi: smartpqi: correct stream detection (git-fixes). - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes). - scsi: spi: Fix sshdr use (git-fixes). - scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes). - security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes). - selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes). - selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes). - selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes). - selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes). - selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes). - serial: 8250: omap: Move pm_runtime_get_sync (git-fixes). - sfc: Check firmware supports Ethernet PTP filter (git-fixes). - sfc: do not unregister flow_indr if it was never registered (git-fixes). - sfc: fix a double-free bug in efx_probe_filters (git-fixes). - signal: Replace BUG_ON()s (bsc#1234093). - spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes). - spi: bcm63xx: Enable module autoloading (stable-fixes). - spi: bcm63xx: Fix module autoloading (git-fixes). - spi: Fix acpi deferred irq probe (git-fixes). - spi: lpspi: release requested DMA channels (stable-fixes). - spi: lpspi: Silence error message upon deferred probe (stable-fixes). - spi: lpspi: Simplify some error message (git-fixes). - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes). - spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes). - spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes). - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes). - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes). - staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes). - static_call: Do not make __static_call_return0 static (git-fixes). - sunrpc: clnt.c: Remove misleading comment (git-fixes). - sunrpc: Fix integer overflow in decode_rc_list() (git-fixes). - sunrpc: Fixup gss_status tracepoint error output (git-fixes). - thermal: core: Initialize thermal zones before registering them (git-fixes). - thermal: intel: int340x: processor: Fix warning during module unload (git-fixes). - tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes). - tracing: Consider the NULL character when validating the event length (git-fixes). - tracing/hwlat: Fix a race during cpuhp processing (git-fixes). - tracing/uprobes: Use trace_event_buffer_reserve() helper (git-fixes). - tun: Fix xdp_rxq_info's queue_index when detaching (git-fixes). - tun: prevent negative ifindex (git-fixes). - ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460). - Update config files (bsc#1218644). LIVEPATCH_IPA_CLONES=n => LIVEPATCH=n - Update config files. Enabled IDPF for ARM64 (bsc#1221309) - uprobe: avoid out-of-bounds memory access of fetching args (git-fixes). - uprobes: encapsulate preparation of uprobe args buffer (git-fixes). - usb: appledisplay: close race between probe and completion handler (stable-fixes). - usb: chaoskey: fail open after removal (git-fixes). - usb: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes). - usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes). - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes). - usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes). - usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes). - usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes). - usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes). - usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes). - usb: gadget: core: force synchronous registration (git-fixes). - usb: misc: cypress_cy7c63: check for short transfer (stable-fixes). - usb: misc: yurex: fix race between read and write (stable-fixes). - usb: musb: sunxi: Fix accessing an released usb phy (git-fixes). - usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes). - usb: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes). - usb: serial: io_edgeport: fix use after free in debug printk (git-fixes). - usb: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes). - usb: serial: option: add Quectel RG650V (stable-fixes). - usb: serial: option: add support for Quectel EG916Q-GL (stable-fixes). - usb: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes). - usb: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes). - usb: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes). - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes). - usb: typec: altmode should keep reference to parent (git-fixes). - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes). - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes). - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes). - usb: xhci: Fix problem with xhci resume from suspend (stable-fixes). - usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes). - usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes). - usb: yurex: make waiting on yurex_write interruptible (git-fixes). - usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes). - usbip: tools: Fix detach_port() invalid port error path (git-fixes). - usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes). - Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450). - vdpa/mlx5: preserve CVQ vringh index (git-fixes). - vhost_vdpa: assign irq bypass producer token correctly (git-fixes). - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes). - virtio_console: fix misc probe bugs (git-fixes). - virtio_net: fixing XDP for fully checksummed packets handling (git-fixes). - virtio-net: synchronize probe with ndo_set_features (git-fixes). - vmxnet3: add command to allow disabling of offloads (bsc#1226498). - vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498). - vmxnet3: prepare for version 9 changes (bsc#1226498). - vmxnet3: update to version 9 (bsc#1226498). - vsock/virtio: fix packet delivery to tap device (git-fixes). - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes). - watchdog: rti: of: honor timeout-sec property (git-fixes). - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes). - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes). - wifi: ath10k: Fix memory leak in management tx (git-fixes). - wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes). - wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes). - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes). - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes). - wifi: ath9k: fix parameter check in ath9k_init_debug() (stable-fixes). - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes). - wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes). - wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes). - wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes). - wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes). - wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes). - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed (stable-fixes). - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes). - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes). - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes). - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes). - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes). - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes). - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes). - workqueue: Avoid using isolated cpus' timers on (bsc#1231327) - workqueue: mark power efficient workqueue as unbounded if (bsc#1231327) - x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes). - x86/bugs: Skip RSB fill at VMEXIT (git-fixes). - x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes). - x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes). - x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes). - x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes). - x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405). - x86/kvm: fix is_stale_page_fault() (bsc#1221333). - xfrm: set dst dev to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813). - xhci: Fix incorrect stream context type macro (git-fixes). - xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes). - xhci: Mitigate failed set dequeue pointer commands (git-fixes). - xhci: Separate PORT and CAPs macros into dedicated file (stable-fixes). - xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes). |
|
|
| kernel-devel | HIGH | fixed |
Security update for the Linux Kernel Vulnerability ID: SUSE-SU-2024:2939-1 Installed Version: 5.14.21-150500.55.68.1 Fixed Version: 5.14.21-150500.55.73.1 The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe (bsc#1220952). - CVE-2021-47089: kfence: fix memory leak when cat kfence objects (bsc#1220958). - CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010). - CVE-2021-47186: tipc: check for null after calling kmemdup (bsc#1222702). - CVE-2021-47432: lib/generic-radix-tree.c: Do not overflow in peek() (bsc#1225391). - CVE-2021-47515: seg6: fix the iif in the IPv6 socket control block (bsc#1225426). - CVE-2021-47538: rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1225448). - CVE-2021-47539: rxrpc: Fix rxrpc_peer leak in rxrpc_look_up_bundle() (bsc#1225452). - CVE-2021-47546: ipv6: fix memory leak in fib6_rule_suppress (bsc#1225504). - CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp->phy' may be out of bound (bsc#1225505). - CVE-2021-47555: net: vlan: fix underflow for the real_dev refcnt (bsc#1225467). - CVE-2021-47566: Fix clearing user buffer by properly using clear_user() (bsc#1225514). - CVE-2021-47571: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1225518). - CVE-2021-47572: net: nexthop: fix null pointer dereference when IPv6 is not enabled (bsc#1225389). - CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568). - CVE-2021-47590: mptcp: fix deadlock in __mptcp_push_pending() (bsc#1226565). - CVE-2021-47591: mptcp: remove tcp ulp setsockopt support (bsc#1226570). - CVE-2021-47593: mptcp: clear 'kern' flag from fallback sockets (bsc#1226551). - CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574). - CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571). - CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len. (bsc#1226555). - CVE-2021-47623: powerpc/fixmap: Fix VM debug warning on unmap (bsc#1227919). - CVE-2022-48716: ASoC: codecs: wcd938x: fix incorrect used of portid (bsc#1226678). - CVE-2022-48785: ipv6: mcast: use rcu-safe version of ipv6_get_lladdr() (bsc#1227927) - CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936). - CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071). - CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003). - CVE-2023-24023: Bluetooth: Add more enc key size check (bsc#1218148). - CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138). - CVE-2023-52573: net: rds: Fix possible NULL-pointer dereference (bsc#1220869). - CVE-2023-52580: net/core: Fix ETH_P_1588 flow dissector (bsc#1220876). - CVE-2023-52622: ext4: avoid online resizing failures due to oversized flex bg (bsc#1222080). - CVE-2023-52658: Revert 'net/mlx5: Block entering switchdev mode with ns inconsistency' (bsc#1224719). - CVE-2023-52667: net/mlx5e: fix a potential double-free in fs_any_create_groups (bsc#1224603). - CVE-2023-52670: rpmsg: virtio: Free driver_override when rpmsg_remove() (bsc#1224696). - CVE-2023-52672: pipe: wakeup wr_wait after setting max_usage (bsc#1224614). - CVE-2023-52675: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() (bsc#1224504). - CVE-2023-52735: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself (bsc#1225475). - CVE-2023-52737: btrfs: lock the inode in shared mode before starting fiemap (bsc#1225484). - CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489). - CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487). - CVE-2023-52762: virtio-blk: fix implicit overflow on virtio_max_dma_size (bsc#1225573). - CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088). - CVE-2023-52784: bonding: stop the device in bond_setup_by_slave() (bsc#1224946). - CVE-2023-52787: blk-mq: make sure active queue usage is held for bio_integrity_prep() (bsc#1225105). - CVE-2023-52812: drm/amd: check num of link levels when update pcie param (bsc#1225564). - CVE-2023-52835: perf/core: Bail out early if the request AUX area is out of bound (bsc#1225602). - CVE-2023-52837: nbd: fix uaf in nbd_open (bsc#1224935). - CVE-2023-52843: llc: verify mac len before reading mac header (bsc#1224951). - CVE-2023-52845: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING (bsc#1225585). - CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225098). - CVE-2023-52857: drm/mediatek: Fix coverity issue with unintentional integer overflow (bsc#1225581). - CVE-2023-52863: hwmon: (axi-fan-control) Fix possible NULL pointer dereference (bsc#1225586). - CVE-2023-52869: pstore/platform: Add check for kstrdup (bsc#1225050). - CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611). - CVE-2023-52882: clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change (bsc#1225692). - CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942). - CVE-2024-26625: Call sock_orphan() at release time (bsc#1221086) - CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647). - CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656). - CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659). - CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654). - CVE-2024-26644: btrfs: do not abort filesystem when attempting to snapshot deleted subvolume (bsc#1221282, bsc#1222072). - CVE-2024-26661: drm/amd/display: Add NULL test for 'timing generator' in 'dcn21_set_pipe()' (bsc#1222323). - CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326). - CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328). - CVE-2024-26720: mm: Avoid overflows in dirty throttling logic (bsc#1222364). - CVE-2024-26802: stmmac: Clear variable when destroying workqueue (bsc#1222799). - CVE-2024-26813: vfio/platform: Create persistent IRQ handlers (bsc#1222809). - CVE-2024-26814: vfio/fsl-mc: Block calling interrupt handler without trigger (bsc#1222810). - CVE-2024-26842: scsi: target: core: Add TMF to tmr_list handling (bsc#1223013). - CVE-2024-26845: scsi: target: core: Add TMF to tmr_list handling (bsc#1223018). - CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021). - CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384). - CVE-2024-26961: mac802154: fix llsec key resources release in mac802154_llsec_key_del (bsc#1223652). - CVE-2024-26973: fat: fix uninitialized field in nostale filehandles (bsc#1223641). - CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806). - CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813) - CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815) - CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778) - CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836). - CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414). - CVE-2024-27432: net: ethernet: mtk_eth_soc: fix PPE hanging issue (bsc#1224716). - CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625). - CVE-2024-35247: fpga: region: add owner module and take its refcount (bsc#1226948). - CVE-2024-35789: Check fast rx for non-4addr sta VLAN changes (bsc#1224749). - CVE-2024-35790: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group (bsc#1224712). - CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743). - CVE-2024-35807: ext4: fix corruption during on-line resize (bsc#1224735). - CVE-2024-35819: soc: fsl: qbman: Use raw spinlock for cgr_lock (bsc#1224683). - CVE-2024-35835: net/mlx5e: fix a double-free in arfs_create_groups (bsc#1224605). - CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500). - CVE-2024-35848: eeprom: at24: fix memory corruption race condition (bsc#1224612). - CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604). - CVE-2024-35857: icmp: prevent possible NULL dereferences from icmp_build_probe() (bsc#1224619). - CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1224766). - CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764). - CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765). - CVE-2024-35869: smb: client: guarantee refcounted children from parent session (bsc#1224679). - CVE-2024-35884: udp: do not accept non-tunnel GSO skbs landing in a tunnel (bsc#1224520). - CVE-2024-35886: ipv6: Fix infinite recursion in fib6_dump_done() (bsc#1224670). - CVE-2024-35889: idpf: fix kernel panic on unknown packet types (bsc#1224517). - CVE-2024-35890: gro: fix ownership transfer (bsc#1224516). - CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512) - CVE-2024-35898: netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get() (bsc#1224498). - CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499) - CVE-2024-35900: netfilter: nf_tables: reject new basechain after table flag update (bsc#1224497). - CVE-2024-35925: block: prevent division by zero in blk_rq_stat_sum() (bsc#1224661). - CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641) - CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700). - CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1224703). - CVE-2024-35956: Fixed qgroup prealloc rsv leak in subvolume operations (bsc#1224674) - CVE-2024-35958: net: ena: Fix incorrect descriptor free behavior (bsc#1224677). - CVE-2024-35960: net/mlx5: Properly link new fs rules into the tree (bsc#1224588). - CVE-2024-35961: net/mlx5: Register devlink first under devlink lock (bsc#1224585). - CVE-2024-35979: raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1224572). - CVE-2024-35995: ACPI: CPPC: Use access_width over bit_width for system memory accesses (bsc#1224557). - CVE-2024-35997: Remove I2C_HID_READ_PENDING flag to prevent lock-up (bsc#1224552). - CVE-2024-36000: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (bsc#1224548). - CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545) - CVE-2024-36005: netfilter: nf_tables: honor table dormant flag from netdev release event path (bsc#1224539). - CVE-2024-36008: ipv4: check for NULL idev in ip_route_use_hint() (bsc#1224540). - CVE-2024-36017: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation (bsc#1225681). - CVE-2024-36020: i40e: fix vf may be used uninitialized in this function warning (bsc#1225698). - CVE-2024-36021: net: hns3: fix kernel crash when devlink reload during pf initialization (bsc#1225699). - CVE-2024-36478: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (bsc#1226841). - CVE-2024-36479: fpga: bridge: add owner module and take its refcount (bsc#1226949). - CVE-2024-36890: mm/slab: make __free(kfree) accept error pointers (bsc#1225714). - CVE-2024-36894: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (bsc#1225749). - CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225737). - CVE-2024-36900: net: hns3: fix kernel crash when devlink reload during initialization (bsc#1225726). - CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711) - CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719). - CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732). - CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744). - CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717). - CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745). - CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752). - CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753). - CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757). - CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies (bsc#1225758). - CVE-2024-36916: blk-iocost: avoid out of bounds shift (bsc#1225759). - CVE-2024-36917: block: fix overflow in blk_ioctl_discard() (bsc#1225770). - CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767). - CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815). - CVE-2024-36934: bna: ensure the copied buf is NUL terminated (bsc#1225760). - CVE-2024-36937: xdp: use flags field to disambiguate broadcast redirect (bsc#1225834). - CVE-2024-36939: nfs: Handle error of rpc_proc_register() in nfs_net_init() (bsc#1225838). - CVE-2024-36940: pinctrl: core: delete incorrect free in pinctrl_enable() (bsc#1225840). - CVE-2024-36945: net/smc: fix neighbour and rtable leak in smc_ib_find_route() (bsc#1225823). - CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851). - CVE-2024-36949: amd/amdkfd: sync all devices to wait all processes being evicted (bsc#1225872) - CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866). - CVE-2024-36971: net: fix __dst_negative_advice() race (bsc#1226145). - CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519). - CVE-2024-36978: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (bsc#1226514). - CVE-2024-37021: fpga: manager: add owner module and take its refcount (bsc#1226950). - CVE-2024-37078: nilfs2: fix potential kernel bug due to lack of writeback flag waiting (bsc#1227066). - CVE-2024-37354: btrfs: fix crash on racing fsync and size-extending write into prealloc (bsc#1227101). - CVE-2024-38545: RDMA/hns: Fix UAF for cq async event (bsc#1226595). - CVE-2024-38553: net: fec: remove .ndo_poll_controller to avoid deadlock (bsc#1226744). - CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607). - CVE-2024-38556: net/mlx5: Add a timeout to acquire the command queue semaphore (bsc#1226774). - CVE-2024-38557: net/mlx5: Reload only IB representors upon lag disable/enable (bsc#1226781). - CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783). - CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785). - CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786). - CVE-2024-38564: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (bsc#1226789). - CVE-2024-38568: drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group (bsc#1226771). - CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775). - CVE-2024-38578: ecryptfs: Fix buffer size for tag 66 packet (bsc#1226634). - CVE-2024-38580: epoll: be better about file lifetimes (bsc#1226610). - CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750). - CVE-2024-38594: net: stmmac: move the EST lock to struct stmmac_priv (bsc#1226734). - CVE-2024-38597: eth: sungem: remove .ndo_poll_controller to avoid deadlocks (bsc#1226749). - CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757). - CVE-2024-38603: drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset() (bsc#1226842). - CVE-2024-38608: net/mlx5e: Fix netif state handling (bsc#1226746). - CVE-2024-38627: stm class: Fix a double free in stm_register_device() (bsc#1226857). - CVE-2024-38628: usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (bsc#1226911). - CVE-2024-38659: enic: Validate length of nl attributes in enic_set_vf_port (bsc#1226883). - CVE-2024-38661: s390/ap: Fix crash in AP internal function modify_bitmap() (bsc#1226996). - CVE-2024-38780: dma-buf/sw-sync: do not enable IRQ from sync_print_obj() (bsc#1226886). - CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993). - CVE-2024-39301: net/9p: fix uninit-value in p9_client_rpc() (bsc#1226994). - CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990). - CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090). - CVE-2024-39468: smb: client: fix deadlock in smb2_find_smb_tcon() (bsc#1227103). - CVE-2024-39469: nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors (bsc#1226992). - CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432). - CVE-2024-39475: fbdev: savage: Handle err return when savagefb_check_var failed (bsc#1227435) - CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447). - CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573) - CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626). - CVE-2024-39493: crypto: qat - fix ADF_DEV_RESET_SYNC memory leak (bsc#1227620). - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716). - CVE-2024-39497: drm/shmem-helper: fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (bsc#1227722). - CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755). - CVE-2024-39506: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729). - CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730). - CVE-2024-39508: io_uring/io-wq: use set_bit() and test_bit() at worker->flags (bsc#1227732). - CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory (bsc#1227762). - CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763). - CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783). - CVE-2024-40909: bpf: Fix a potential use-after-free in bpf_link_free() (bsc#1227798). - CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779). - CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786). - CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780). - CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797). - CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836). - CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800). - CVE-2024-40943: ocfs2: fix races between hole punching and AIO+DIO (bsc#1227849). - CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806). - CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) - CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810). - CVE-2024-40958: netns: Make get_net_ns() handle zero refcount net (bsc#1227812). - CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884). - CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813). - CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814). - CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886). - CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891). - CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899). - CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910). - CVE-2024-40977: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (bsc#1227950). - CVE-2024-40982: ssb: fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865). - CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823). - CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829). - CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866). - CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913). - CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862). - CVE-2024-41009: bpf: Fix overrunning reservations in ringbuf (bsc#1228020). - CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114). - CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247). - CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405). - CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408). - CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409). - CVE-2024-41016: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). - CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403). - CVE-2024-41040: net/sched: Fix UAF when resolving a clash (bsc#1228518). - CVE-2024-41041: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port() (bsc#1228520). - CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530). - CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565). - CVE-2024-41057: cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() (bsc#1228462). - CVE-2024-41058: cachefiles: fix slab-use-after-free in fscache_withdraw_volume() (bsc#1228459). - CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561). - CVE-2024-41063: bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580). - CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599). - CVE-2024-41066: ibmvnic: add tx check to prevent skb leak (bsc#1228640). - CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644). - CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581). - CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625). - CVE-2024-41072: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (bsc#1228626). - CVE-2024-41076: NFSv4: Fix memory leak in nfs4_set_security_label (bsc#1228649). - CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655). - CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617). - CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328). - CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327). - CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470). - CVE-2024-42079: gfs2: Fix NULL pointer dereference in gfs2_log_flush (bsc#1228672). - CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680). - CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633). - CVE-2024-42122: drm/amd/display: Add NULL pointer check for kzalloc (bsc#1228591). - CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705). - CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743) - CVE-2024-42161: bpf: avoid uninitialized value in BPF_CORE_READ_BITFIELD (bsc#1228756). - CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723). - CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). The following non-security bugs were fixed: - acpi: EC: Abort address space access upon error (stable-fixes). - acpi: EC: Avoid returning AE_OK on errors in address space handler (stable-fixes). - acpi: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes). - acpi: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx (stable-fixes). - acpi: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (stable-fixes). - acpi: x86: Force StorageD3Enable on more products (stable-fixes). - acpi: x86: utils: Add Picasso to the list for forcing StorageD3Enable (stable-fixes). - acpica: Revert 'ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine.' (git-fixes). - alsa: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes). - alsa: dmaengine: Synchronize dma channel after drop() (stable-fixes). - alsa: emux: improve patch ioctl data validation (stable-fixes). - alsa: Fix deadlocks with kctl removals at disconnection (stable-fixes). - alsa: hda: conexant: Fix headset auto detect fail in the polling mode (git-fixes). - alsa: hda: intel-dsp-config: harden I2C/I2S codec detection (stable-fixes). - alsa: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes). - alsa: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes). - alsa: hda/realtek: Add quirks for Lenovo 13X (stable-fixes). - alsa: hda/realtek: Adjust G814JZR to use SPI init for amp (git-fixes). - alsa: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes). - alsa: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM (git-fixes). - alsa: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes). - alsa: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes). - alsa: hda/realtek: Fix conflicting quirk for PCI SSID 17aa:3820 (git-fixes). - alsa: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes). - alsa: hda/realtek: fix mute/micmute LEDs do not work for ProBook 440/460 G11 (stable-fixes). - alsa: hda/realtek: fix mute/micmute LEDs do not work for ProBook 445/465 G11 (stable-fixes). - alsa: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes). - alsa: hda/realtek: Limit mic boost on N14AP7 (stable-fixes). - alsa: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes). - alsa: hda/realtek: Remove Framework Laptop 16 from quirks (git-fixes). - alsa: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes). - alsa: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git-fixes). - alsa: timer: Set lower bound of start tick time (stable-fixes). - alsa: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes). - alsa: usb-audio: Correct surround channels in UAC1 channel map (git-fixes). - alsa: usb-audio: Fix microphone sound on HD webcam (stable-fixes). - alsa: usb-audio: Move HD Webcam quirk to the right place (git-fixes). - alsa/hda: intel-dsp-config: Document AVS as dsp_driver option (git-fixes). - arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY (git-fixes). - arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes) - arm64: dts: hi3798cv200: fix the size of GICR (git-fixes) - arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes) - arm64: dts: microchip: sparx5: fix mdio reg (git-fixes) - arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git-fixes) - arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes) - arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes) - arm64: mm: Batch dsb and isb when populating pgtables (jsc#PED-8690). - arm64: mm: do not acquire mutex when rewriting swapper (jsc#PED-8690). - arm64: mm: Do not remap pgtables for allocate vs populate (jsc#PED-8690). - arm64: mm: Do not remap pgtables per-cont(pte|pmd) block (jsc#PED-8690). - arm64: tegra: Correct Tegra132 I2C alias (git-fixes) - arm64/io: add constant-argument check (bsc#1226502 git-fixes) - arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502) - asoc: amd: acp: add a null check for chip_pdev structure (git-fixes). - asoc: amd: acp: remove i2s configuration check in acp_i2s_probe() (git-fixes). - asoc: amd: Adjust error handling in case of absent codec device (git-fixes). - asoc: da7219-aad: fix usage of device_get_named_child_node() (stable-fixes). - asoc: fsl-asoc-card: set priv->pdev before using it (git-fixes). - asoc: max98088: Check for clk_prepare_enable() error (git-fixes). - asoc: rt5645: Fix the electric noise due to the CBJ contacts floating (stable-fixes). - asoc: rt715-sdca: volume step modification (stable-fixes). - asoc: rt715: add vendor clear control register (stable-fixes). - asoc: ti: davinci-mcasp: Set min period size using FIFO config (stable-fixes). - asoc: ti: omap-hdmi: Fix too long driver name (stable-fixes). - ata: ahci: Clean up sysfs file on error (git-fixes). - ata: libata-core: Fix double free on error (git-fixes). - ata: libata-core: Fix null pointer dereference on error (git-fixes). - batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes). - batman-adv: Do not accept TT entries for out-of-spec VIDs (git-fixes). - blk-cgroup: dropping parent refcount after pd_free_fn() is done (bsc#1224573). - block, loop: support partitions without scanning (bsc#1227162). - block: do not add partitions if GD_SUPPRESS_PART_SCAN is set (bsc#1227162). - bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable-fixes). - bluetooth: btqca: use le32_to_cpu for ver.soc_id (stable-fixes). - bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable-fixes). - bluetooth: hci_qca: mark OF related data as maybe unused (stable-fixes). - bluetooth: hci_sync: Fix suspending with wrong filter policy (git-fixes). - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ (git-fixes). - bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes). - bnxt_re: Fix imm_data endianness (git-fixes) - bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener (git-fixes). - bpf: aggressively forget precise markings during state checkpointing (bsc#1225903). - bpf: allow precision tracking for programs with subprogs (bsc#1225903). - bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903). - bpf: clean up visit_insn()'s instruction processing (bsc#1225903). - bpf: correct loop detection for iterators convergence (bsc#1225903). - bpf: encapsulate precision backtracking bookkeeping (bsc#1225903). - bpf: ensure state checkpointing at iter_next() call sites (bsc#1225903). - bpf: exact states comparison for iterator convergence checks (bsc#1225903). - bpf: extract __check_reg_arg() utility function (bsc#1225903). - bpf: extract same_callsites() as utility function (bsc#1225903). - bpf: extract setup_func_entry() utility function (bsc#1225903). - bpf: fix calculation of subseq_idx during precision backtracking (bsc#1225903). - bpf: fix mark_all_scalars_precise use in mark_chain_precision (bsc#1225903). - bpf: Fix memory leaks in __check_func_call (bsc#1225903). - bpf: fix propagate_precision() logic for inner frames (bsc#1225903). - bpf: fix regs_exact() logic in regsafe() to remap IDs correctly (bsc#1225903). - bpf: Fix to preserve reg parent/live fields when copying range info (bsc#1225903). - bpf: generalize MAYBE_NULL vs non-MAYBE_NULL rule (bsc#1225903). - bpf: improve precision backtrack logging (bsc#1225903). - bpf: Improve verifier u32 scalar equality checking (bsc#1225903). - bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903). - bpf: maintain bitmasks across all active frames in __mark_chain_precision (bsc#1225903). - bpf: mark relevant stack slots scratched for register read instructions (bsc#1225903). - bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903). - bpf: perform byte-by-byte comparison only when necessary in regsafe() (bsc#1225903). - bpf: print full verifier states on infinite loop detection (bsc#1225903). - bpf: regsafe() must not skip check_ids() (bsc#1225903). - bpf: reject non-exact register type matches in regsafe() (bsc#1225903). - bpf: Remove unused insn_cnt argument from visit_[func_call_]insn() (bsc#1225903). - bpf: reorganize struct bpf_reg_state fields (bsc#1225903). - bpf: Skip invalid kfunc call in backtrack_insn (bsc#1225903). - bpf: states_equal() must build idmap for all function frames (bsc#1225903). - bpf: stop setting precise in current state (bsc#1225903). - bpf: support precision propagation in the presence of subprogs (bsc#1225903). - bpf: take into account liveness when propagating precision (bsc#1225903). - bpf: teach refsafe() to take into account ID remapping (bsc#1225903). - bpf: unconditionally reset backtrack_state masks on global func exit (bsc#1225903). - bpf: use check_ids() for active_lock comparison (bsc#1225903). - bpf: Use scalar ids in mark_chain_precision() (bsc#1225903). - bpf: verify callbacks as if they are called unknown number of times (bsc#1225903). - bpf: Verify scalar ids mapping in regsafe() using check_ids() (bsc#1225903). - bpf: widening for callback iterators (bsc#1225903). - btrfs: add device major-minor info in the struct btrfs_device (bsc#1227162). - btrfs: avoid copying BTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume being deleted (bsc#1221282). - btrfs: harden identification of a stale device (bsc#1227162). - btrfs: match stale devices by dev_t (bsc#1227162). - btrfs: remove the cross file system checks from remap (bsc#1227157). - btrfs: use dev_t to match device in device_matched (bsc#1227162). - btrfs: validate device maj:min during open (bsc#1227162). - bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes). - cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git-fixes). - cachefiles: remove requests from xarray during flushing requests (bsc#1226588). - can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes). - can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes). - ceph: add ceph_cap_unlink_work to fire check_caps() immediately (bsc#1226022). - ceph: always check dir caps asynchronously (bsc#1226022). - ceph: always queue a writeback when revoking the Fb caps (bsc#1226022). - ceph: break the check delayed cap loop every 5s (bsc#1226022). - ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228418). - ceph: switch to use cap_delay_lock for the unlink delay list (bsc#1226022). - cgroup: Add annotation for holding namespace_sem in current_cgns_cgroup_from_root() (bsc#1222254). - cgroup: Eliminate the need for cgroup_mutex in proc_cgroup_show() (bsc#1222254). - cgroup: Make operations on the cgroup root_list RCU safe (bsc#1222254). - cgroup: preserve KABI of cgroup_root (bsc#1222254). - cgroup: Remove unnecessary list_empty() (bsc#1222254). - cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801). - check-for-config-changes: ignore also GCC_ASM_GOTO_OUTPUT_BROKEN . - checkpatch: really skip LONG_LINE_* when LONG_LINE is ignored (git-fixes). - cifs: fix hang in wait_for_response() (bsc#1220812, bsc#1220368). - cpufreq: amd-pstate: Fix the inconsistency in max frequency units (git-fixes). - crypto: aead,cipher - zeroize key buffer after use (stable-fixes). - crypto: ecdh - explicitly zeroize private_key (stable-fixes). - crypto: ecdsa - Fix the public key format description (git-fixes). - crypto: ecrdsa - Fix module auto-load on add_key (stable-fixes). - crypto: hisilicon/sec - Fix memory leak for sec resource release (stable-fixes). - csky: ftrace: Drop duplicate implementation of arch_check_ftrace_location() (git-fixes). - decompress_bunzip2: fix rare decompression failure (git-fixes). - devres: Fix devm_krealloc() wasting memory (git-fixes). - devres: Fix memory leakage caused by driver API devm_free_percpu() (git-fixes). - dma: fix call order in dmam_free_coherent (git-fixes). - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (git-fixes). - dmaengine: ioatdma: Fix missing kmem_cache_destroy() (git-fixes). - docs: crypto: async-tx-api: fix broken code example (git-fixes). - docs: Fix formatting of literal sections in fanotify docs (stable-fixes). - drivers: core: synchronize really_probe() and dev_uevent() (git-fixes). - drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes). - drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms (git-fixes). - drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c (stable-fixes). - drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes). - drm/amd/display: Add dtbclk access to dcn315 (stable-fixes). - drm/amd/display: Add VCO speed parameter for DCN31 FPU (stable-fixes). - drm/amd/display: Check for NULL pointer (stable-fixes). - drm/amd/display: Check index msg_id before read or write (stable-fixes). - drm/amd/display: Check pipe offset before setting vblank (stable-fixes). - drm/amd/display: drop unnecessary NULL checks in debugfs (stable-fixes). - drm/amd/display: Exit idle optimizations before HDCP execution (stable-fixes). - drm/amd/display: revert Exit idle optimizations before HDCP execution (stable-fixes). - drm/amd/display: Set color_mgmt_changed to true on unsuspend (stable-fixes). - drm/amd/display: Skip finding free audio for unknown engine_id (stable-fixes). - drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes). - drm/amd/pm: remove logically dead code for renoir (git-fixes). - drm/amdgpu: add error handle to avoid out-of-bounds (stable-fixes). - drm/amdgpu: avoid using null object of framebuffer (stable-fixes). - drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git-fixes). - drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes). - drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes). - drm/amdgpu: Fix the ring buffer size for queue VM flush (stable-fixes). - drm/amdgpu: fix UBSAN warning in kv_dpm.c (stable-fixes). - drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes). - drm/amdgpu: Fix uninitialized variable warnings (stable-fixes). - drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes). - drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes). - drm/amdgpu: Update BO eviction priorities (stable-fixes). - drm/amdgpu/atomfirmware: add intergrated info v2.3 table (stable-fixes). - drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes). - drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes). - drm/amdgpu/mes: fix use-after-free issue (stable-fixes). - drm/amdgpu/sdma5.2: Update wptr registers as well as doorbell (stable-fixes). - drm/amdkfd: Flush the process wq before creating a kfd_process (stable-fixes). - drm/amdkfd: Rework kfd_locked handling (bsc#1225872) - drm/bridge/panel: Fix runtime warning on panel bridge release (git-fixes). - drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git-fixes). - drm/etnaviv: do not block scheduler when GPU is still active (stable-fixes). - drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes). - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found (git-fixes). - drm/exynos/vidi: fix memory leak in .get_modes() (stable-fixes). - drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git-fixes). - drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git-fixes). - drm/i915/dpt: Make DPT object unshrinkable (git-fixes). - drm/i915/gt: Disarm breadcrumbs if engines are already idle (git-fixes). - drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes). - drm/i915/gt: Fix potential UAF by revoke of fence registers (git-fixes). - drm/i915/guc: avoid FIELD_PREP warning (git-fixes). - drm/i915/mso: using joiner is not possible with eDP MSO (git-fixes). - drm/komeda: check for error-valued pointer (git-fixes). - drm/lima: add mask irq callback to gp and pp (stable-fixes). - drm/lima: fix shared irq handling on driver remove (stable-fixes). - drm/lima: Mark simple_ondemand governor as softdep (git-fixes). - drm/lima: mask irqs in timeout path before hard reset (stable-fixes). - drm/mediatek: Add OVL compatible name for MT8195 (git-fixes). - drm/meson: fix canvas release in bind function (git-fixes). - drm/mgag200: Bind I2C lifetime to DRM device (git-fixes). - drm/mgag200: Set DDC timeout in milliseconds (git-fixes). - drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format (stable-fixes). - drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git-fixes). - drm/msm: Enable clamp_to_idle for 7c3 (stable-fixes). - drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails (git-fixes). - drm/msm/dp: Avoid a long timeout for AUX transfer if nothing connected (git-fixes). - drm/msm/dp: Return IRQ_NONE for unhandled interrupts (stable-fixes). - drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git-fixes). - drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes). - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes). - drm/nouveau: prime: fix refcount underflow (git-fixes). - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes). - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes). - drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays (stable-fixes). - drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git-fixes). - drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes). - drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes). - drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA (git-fixes). - drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes). - drm/qxl: Add check for drm_cvt_mode (git-fixes). - drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes). - drm/radeon: fix UBSAN warning in kv_dpm.c (stable-fixes). - drm/radeon/radeon_display: Decrease the size of allocated memory (stable-fixes). - drm/vmwgfx: 3D disabled should not effect STDU memory limits (git-fixes). - drm/vmwgfx: Filter modes which exceed graphics memory (git-fixes). - drm/vmwgfx: Fix a deadlock in dma buf fence polling (git-fixes). - drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes). - drm/vmwgfx: Fix overlay when using Screen Targets (git-fixes). - eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes). - exfat: check if cluster num is valid (git-fixes). - exfat: simplify is_valid_cluster() (git-fixes). - filelock: add a new locks_inode_context accessor function (git-fixes). - firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes). - firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes). - firmware: cs_dsp: Return error if block header overflows file (git-fixes). - firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes). - firmware: cs_dsp: Validate payload length before processing block (git-fixes). - firmware: dmi: Stop decoding on broken entry (stable-fixes). - firmware: turris-mox-rwtm: Do not complete if there are no waiters (git-fixes). - firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes). - firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes). - fs: allow cross-vfsmount reflink/dedupe (bsc#1227157). - ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes). - fuse: verify {g,u}id mount options correctly (bsc#1228191). - gpio: davinci: Validate the obtained number of IRQs (git-fixes). - gpio: mc33880: Convert comma to semicolon (git-fixes). - gpio: tqmx86: fix typo in Kconfig label (git-fixes). - gpio: tqmx86: introduce shadow register for GPIO output value (git-fixes). - gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1) (git-fixes). - hfsplus: fix to avoid false alarm of circular locking (git-fixes). - hfsplus: fix uninit-value in copy_name (git-fixes). - hid: Add quirk for Logitech Casa touchpad (stable-fixes). - hid: core: remove unnecessary WARN_ON() in implement() (git-fixes). - hid: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode() (git-fixes). - hid: wacom: Modify pen IDs (git-fixes). - hpet: Support 32-bit userspace (git-fixes). - hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes). - hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes). - hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes). - hwmon: (shtc1) Fix property misspelling (git-fixes). - i2c: at91: Fix the functionality flags of the slave-only interface (git-fixes). - i2c: designware: Fix the functionality flags of the slave-only interface (git-fixes). - i2c: mark HostNotify target address as used (git-fixes). - i2c: ocores: set IACK bit after core is enabled (git-fixes). - i2c: rcar: bring hardware to known state when probing (git-fixes). - i2c: tegra: Fix failure during probe deferral cleanup (git-fixes) - i2c: tegra: Share same DMA channel for RX and TX (bsc#1227661) - i2c: testunit: avoid re-issued work after read message (git-fixes). - i2c: testunit: correct Kconfig description (git-fixes). - i2c: testunit: discard write requests while old command is running (git-fixes). - i2c: testunit: do not erase registers after STOP (git-fixes). - iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF (git-fixes). - iio: adc: ad7266: Fix variable checking bug (git-fixes). - iio: adc: ad9467: fix scan type sign (git-fixes). - iio: chemical: bme680: Fix calibration data variable (git-fixes). - iio: chemical: bme680: Fix overflows in compensate() functions (git-fixes). - iio: chemical: bme680: Fix pressure value output (git-fixes). - iio: chemical: bme680: Fix sensor data read operation (git-fixes). - iio: dac: ad5592r: fix temperature channel scaling value (git-fixes). - iio: imu: inv_icm42600: delete unneeded update watermark call (git-fixes). - input: elan_i2c - do not leave interrupt disabled on suspend failure (git-fixes). - input: elantech - fix touchpad state on resume for Lenovo N24 (stable-fixes). - input: ff-core - prefer struct_size over open coded arithmetic (stable-fixes). - Input: ili210x - fix ili251x_read_touch_data() return value (git-fixes). - input: qt1050 - handle CHIP_ID reading error (git-fixes). - input: silead - Always support 10 fingers (stable-fixes). - intel_th: pci: Add Granite Rapids SOC support (stable-fixes). - intel_th: pci: Add Granite Rapids support (stable-fixes). - intel_th: pci: Add Lunar Lake support (stable-fixes). - intel_th: pci: Add Meteor Lake-S CPU support (stable-fixes). - intel_th: pci: Add Meteor Lake-S support (stable-fixes). - intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes). - iommu: mtk: fix module autoloading (git-fixes). - iommu: Return right value in iommu_sva_bind_device() (git-fixes). - iommu/amd: Fix sysfs leak in iommu init (git-fixes). - iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes). - ionic: clean interrupt before enabling queue to avoid credit race (git-fixes). - ipvs: Fix checksumming on GSO of SCTP packets (bsc#1221958) - jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes). - jfs: Fix array-index-out-of-bounds in diFree (git-fixes). - jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383). - kabi: bpf: bpf_reg_state reorganization kABI workaround (bsc#1225903). - kabi: bpf: callback fixes kABI workaround (bsc#1225903). - kabi: bpf: struct bpf_{idmap,idset} kABI workaround (bsc#1225903). - kabi: bpf: tmp_str_buf kABI workaround (bsc#1225903). - kabi: rtas: Workaround false positive due to lost definition (bsc#1227487). - kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502) - kabi/severities: ignore kABI for FireWire sound local symbols (bsc#1208783) - kabi/severities: Ignore tpm_tis_core_init (bsc#1082555). - kabi/severity: add nvme common code The nvme common code is also allowed to change the data structures, there are only internal users. - kbuild: do not include include/config/auto.conf from shell scripts (bsc#1227274). - kbuild: Install dtb files as 0644 in Makefile.dtbinst (git-fixes). - kconfig: doc: fix a typo in the note about 'imply' (git-fixes). - kconfig: fix comparison to constant symbols, 'm', 'n' (git-fixes). - kernel-binary: vdso: Own module_dir - kernel-doc: fix struct_group_tagged() parsing (git-fixes). - kernel/sched: Remove dl_boosted flag comment (git fixes (sched)). - knfsd: LOOKUP can return an illegal error value (git-fixes). - kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes). - kprobes: Make arch_check_ftrace_location static (git-fixes). - kvm: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git-fixes). - kvm: PPC: Book3S HV Nested: L2 LPCR should inherit L1 LPES setting (bsc#1194869). - kvm: PPC: Book3S HV: Fix 'rm_exit' entry in debugfs timings (bsc#1194869). - kvm: PPC: Book3S HV: Fix the set_one_reg for MMCR3 (bsc#1194869). - kvm: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1194869). - kvm: PPC: Book3S: Suppress failed alloc warning in H_COPY_TOFROM_GUEST (bsc#1194869). - kvm: PPC: Book3S: Suppress warnings when allocating too big memory slots (bsc#1194869). - kvm: s390: fix LPSWEY handling (bsc#1227635 git-fixes). - kvm: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (git-fixes). - kvm: VMX: Report up-to-date exit qualification to userspace (git-fixes). - kvm: x86: Add IBPB_BRTYPE support (bsc#1228079). - kvm: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git-fixes). - kvm: x86: Bail from kvm_recalculate_phys_map() if x2APIC ID is out-of-bounds (git-fixes). - kvm: x86: Disable APIC logical map if logical ID covers multiple MDAs (git-fixes). - kvm: x86: Disable APIC logical map if vCPUs are aliased in logical mode (git-fixes). - kvm: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes). - kvm: x86: Explicitly skip optimized logical map setup if vCPU's LDR==0 (git-fixes). - kvm: x86: Explicitly track all possibilities for APIC map's logical modes (git-fixes). - kvm: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes). - kvm: x86: Fix KVM_GET_MSRS stack info leak (git-fixes). - kvm: x86: Honor architectural behavior for aliased 8-bit APIC IDs (git-fixes). - kvm: x86: Purge 'highest ISR' cache when updating APICv state (git-fixes). - kvm: x86: Save/restore all NMIs when multiple NMIs are pending (git-fixes). - kvm: x86: Skip redundant x2APIC logical mode optimized cluster setup (git-fixes). - leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes). - leds: trigger: Unregister sysfs attributes before calling deactivate() (git-fixes). - leds: triggers: Flush pending brightness before activating trigger (git-fixes). - lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg (git-fixes). - lib: objagg: Fix general protection fault (git-fixes). - lib: objagg: Fix spelling (git-fixes). - lib: test_objagg: Fix spelling (git-fixes). - libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228190). - lockd: set missing fl_flags field when retrieving args (git-fixes). - lockd: use locks_inode_context helper (git-fixes). - Make AMD_HSMP=m and mark it unsupported in supported.conf (jsc#PED-8582) - media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes). - media: dvb-frontends: tda18271c2dd: Remove casting during div (stable-fixes). - media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable-fixes). - media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes). - media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes). - media: dvbdev: Initialize sbuf (stable-fixes). - media: dw2102: Do not translate i2c read into write (stable-fixes). - media: dw2102: fix a potential buffer overflow (git-fixes). - media: flexcop-usb: clean up endpoint sanity checks (stable-fixes). - media: flexcop-usb: fix sanity check of bNumEndpoints (git-fixes). - media: imon: Fix race getting ictx->lock (git-fixes). - media: ipu3-cio2: Use temporary storage for struct device pointer (stable-fixes). - media: lgdt3306a: Add a check against null-pointer-def (stable-fixes). - media: mxl5xx: Move xpt structures off stack (stable-fixes). - media: radio-shark2: Avoid led_names truncations (git-fixes). - media: s2255: Use refcount_t instead of atomic_t for num_channels (stable-fixes). - media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes). - media: uvcvideo: Override default flags (git-fixes). - media: v4l2-core: hold videodev_lock until dev reg, finishes (stable-fixes). - media: venus: fix use after free in vdec_close (git-fixes). - media: venus: flush all buffers in output plane streamoff (git-fixes). - mei: demote client disconnect warning on suspend to debug (stable-fixes). - mei: me: release irq in mei_me_pci_resume error path (git-fixes). - mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes). - mkspec-dtb: add toplevel symlinks also on arm - mmc: core: Add mmc_gpiod_set_cd_config() function (stable-fixes). - mmc: core: Do not force a retune before RPMB switch (stable-fixes). - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock (git-fixes). - mmc: sdhci_am654: Add OTAP/ITAP delay enable (git-fixes). - mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel (stable-fixes). - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing (git-fixes). - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A (stable-fixes). - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working (stable-fixes). - mmc: sdhci-acpi: Sort DMI quirks alphabetically (stable-fixes). - mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (git-fixes). - mmc: sdhci: Do not invert write-protect twice (git-fixes). - mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (git-fixes). - mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes). - mtd: rawnand: Bypass a couple of sanity checks during NAND identification (git-fixes). - mtd: rawnand: Ensure ECC configuration is propagated to upper layers (git-fixes). - mtd: rawnand: rockchip: ensure NVDDR timings are rejected (git-fixes). - net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (git-fixes). - net: can: j1939: Initialize unused data in j1939_send_one() (git-fixes). - net: can: j1939: recover socket queue on CAN bus error during BAM transmission (git-fixes). - net: ena: Fix redundant device NUMA node override (jsc#PED-8690). - net: mana: Enable MANA driver on ARM64 with 4K page size (jsc#PED-8491). - net: mana: Fix possible double free in error handling path (git-fixes). - net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes). - net: phy: Micrel KSZ8061: fix errata solution not taking effect problem (git-fixes). - net: phy: micrel: add Microchip KSZ 9477 to the device table (git-fixes). - net: usb: ax88179_178a: improve link status logs (git-fixes). - net: usb: ax88179_178a: improve reset check (git-fixes). - net: usb: qmi_wwan: add Telit FN912 compositions (git-fixes). - net: usb: qmi_wwan: add Telit FN920C04 compositions (stable-fixes). - net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (git-fixes). - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM (git-fixes). - net: usb: sr9700: fix uninitialized variable use in sr_mdio_read (git-fixes). - net/dcb: check for detached device before executing callbacks (bsc#1215587). - net/mlx5e: Fix a race in command alloc flow (git-fixes). - netfilter: conntrack: ignore overly delayed tcp packets (bsc#1223180). - netfilter: conntrack: prepare tcp_in_window for ternary return value (bsc#1223180). - netfilter: conntrack: remove pr_debug callsites from tcp tracker (bsc#1223180). - netfilter: conntrack: work around exceeded receive window (bsc#1223180). - netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() (bsc#1228459 bsc#1228462). - nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes). - nfs: abort nfs_atomic_open_v23 if name is too long (bsc#1219847). - nfs: add atomic_open for NFSv3 to handle O_TRUNC correctly (bsc#1219847). - nfs: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226). - nfs: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes). - nfs: fix undefined behavior in nfs_block_bits() (git-fixes). - nfs: keep server info for remounts (git-fixes). - nfs: Leave pages in the pagecache if readpage failed (git-fixes). - nfsd enforce filehandle check for source file in COPY (git-fixes). - nfsd: Add an nfsd_file_fsync tracepoint (git-fixes). - nfsd: Add an NFSD_FILE_GC flag to enable nfsd_file garbage collection (git-fixes). - nfsd: Add errno mapping for EREMOTEIO (git-fixes). - nfsd: Add nfsd_file_lru_dispose_list() helper (git-fixes). - nfsd: add some comments to nfsd_file_do_acquire (git-fixes). - nfsd: allow nfsd_file_get to sanely handle a NULL pointer (git-fixes). - nfsd: allow reaping files still under writeback (git-fixes). - nfsd: Avoid calling fh_drop_write() twice in do_nfsd_create() (git-fixes). - nfsd: Clean up nfsd_file_put() (git-fixes). - nfsd: Clean up nfsd_open_verified() (git-fixes). - nfsd: Clean up nfsd3_proc_create() (git-fixes). - nfsd: Clean up unused code after rhashtable conversion (git-fixes). - nfsd: Convert filecache to rhltable (git-fixes). - nfsd: Convert the filecache to use rhashtable (git-fixes). - nfsd: De-duplicate hash bucket indexing (git-fixes). - nfsd: do not free files unconditionally in __nfsd_file_cache_purge (git-fixes). - nfsd: do not fsync nfsd_files on last close (git-fixes). - nfsd: do not hand out delegation on setuid files being opened for write (git-fixes). - nfsd: do not kill nfsd_files because of lease break error (git-fixes). - nfsd: Do not leave work of closing files to a work queue (bsc#1228140). - nfsd: do not take/put an extra reference when putting a file (git-fixes). - nfsd: Ensure nf_inode is never dereferenced (git-fixes). - nfsd: fix handling of cached open files in nfsd4_open codepath (git-fixes). - nfsd: Fix licensing header in filecache.c (git-fixes). - nfsd: fix net-namespace logic in __nfsd_file_cache_purge (git-fixes). - nfsd: fix nfsd_file_unhash_and_dispose (git-fixes). - nfsd: Fix potential use-after-free in nfsd_file_put() (git-fixes). - nfsd: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop (git-fixes). - nfsd: Fix the filecache LRU shrinker (git-fixes). - nfsd: fix up the filecache laundrette scheduling (git-fixes). - nfsd: fix use-after-free in nfsd_file_do_acquire tracepoint (git-fixes). - nfsd: Flesh out a documenting comment for filecache.c (git-fixes). - nfsd: handle errors better in write_ports_addfd() (git-fixes). - nfsd: Instantiate a struct file when creating a regular NFSv4 file (git-fixes). - nfsd: Leave open files out of the filecache LRU (git-fixes). - nfsd: map EBADF (git-fixes). - nfsd: Move nfsd_file_trace_alloc() tracepoint (git-fixes). - nfsd: nfsd_file_hash_remove can compute hashval (git-fixes). - nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries (git-fixes). - nfsd: nfsd_file_put() can sleep (git-fixes). - nfsd: nfsd_file_unhash can compute hashval from nf->nf_inode (git-fixes). - nfsd: No longer record nf_hashval in the trace log (git-fixes). - nfsd: optimise recalculate_deny_mode() for a common case (bsc#1217912). - nfsd: Pass the target nfsd_file to nfsd_commit() (git-fixes). - nfsd: put the export reference in nfsd4_verify_deleg_dentry (git-fixes). - nfsd: Record number of flush calls (git-fixes). - nfsd: Refactor __nfsd_file_close_inode() (git-fixes). - nfsd: Refactor nfsd_create_setattr() (git-fixes). - nfsd: Refactor nfsd_file_gc() (git-fixes). - nfsd: Refactor nfsd_file_lru_scan() (git-fixes). - nfsd: Refactor NFSv3 CREATE (git-fixes). - nfsd: Refactor NFSv4 OPEN(CREATE) (git-fixes). - nfsd: Remove do_nfsd_create() (git-fixes). - nfsd: Remove lockdep assertion from unhash_and_release_locked() (git-fixes). - nfsd: Remove nfsd_file::nf_hashval (git-fixes). - nfsd: remove the pages_flushed statistic from filecache (git-fixes). - nfsd: reorganize filecache.c (git-fixes). - nfsd: Replace the 'init once' mechanism (git-fixes). - nfsd: Report average age of filecache items (git-fixes). - nfsd: Report count of calls to nfsd_file_acquire() (git-fixes). - nfsd: Report count of freed filecache items (git-fixes). - nfsd: Report filecache LRU size (git-fixes). - nfsd: Report the number of items evicted by the LRU walk (git-fixes). - nfsd: Retry once in nfsd_open on an -EOPENSTALE return (git-fixes). - nfsd: rework hashtable handling in nfsd_do_file_acquire (git-fixes). - nfsd: rework refcounting in filecache (git-fixes). - nfsd: Separate tracepoints for acquire and create (git-fixes). - nfsd: Set up an rhashtable for the filecache (git-fixes). - nfsd: silence extraneous printk on nfsd.ko insertion (git-fixes). - nfsd: simplify per-net file cache management (git-fixes). - nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator (git-fixes). - nfsd: simplify the delayed disposal list code (git-fixes). - nfsd: Trace filecache LRU activity (git-fixes). - nfsd: Trace filecache opens (git-fixes). - nfsd: update comment over __nfsd_file_cache_purge (git-fixes). - nfsd: verify the opened dentry after setting a delegation (git-fixes). - nfsd: WARN when freeing an item still linked via nf_lru (git-fixes). - nfsd: Write verifier might go backwards (git-fixes). - nfsd: Zero counters when the filecache is re-initialized (git-fixes). - nfsv4: by default serialize open/close operations (bsc#1223863 bsc#1227362) - nfsv4: Fixup smatch warning for ambiguous return (git-fixes). - nilfs2: add missing check for inode numbers on directory entries (git-fixes). - nilfs2: add missing check for inode numbers on directory entries (stable-fixes). - nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes). - nilfs2: convert persistent object allocator to use kmap_local (git-fixes). - nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes). - nilfs2: fix inode number range checks (git-fixes). - nilfs2: fix inode number range checks (stable-fixes). - nilfs2: fix potential hang in nilfs_detach_log_writer() (stable-fixes). - nvme-auth: alloc nvme_dhchap_key as single buffer (git-fixes). - nvme-auth: allow mixing of secret and hash lengths (git-fixes). - nvme-auth: use transformed key size to create resp (git-fixes). - nvme-multipath: find NUMA path only for online numa-node (git-fixes). - nvme-pci: add missing condition check for existence of mapped data (git-fixes). - nvme-pci: Fix the instructions for disabling power management (git-fixes). - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset (git-fixes). - nvme: avoid double free special payload (git-fixes). - nvme: ensure reset state check ordering (bsc#1215492). - nvme: find numa distance only if controller has valid numa id (git-fixes). - nvme: fixup comment for nvme RDMA Provider Type (git-fixes). - nvme: use ctrl state accessor (bsc#1215492). - nvmet-auth: fix nvmet_auth hash error handling (git-fixes). - nvmet-passthru: propagate status from id override functions (git-fixes). - nvmet: always initialize cqe.result (git-fixes). - nvmet: fix a possible leak when destroy a ctrl during qp establishment (git-fixes). - ocfs2: adjust enabling place for la window (bsc#1219224). - ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834). - ocfs2: fix sparse warnings (bsc#1219224). - ocfs2: improve write IO performance when fragmentation is high (bsc#1219224). - ocfs2: remove redundant assignment to variable free_space (bsc#1228409). - ocfs2: speed up chain-list searching (bsc#1219224). - ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410). - orangefs: fix out-of-bounds fsid access (git-fixes). - pci: Add PCI_ERROR_RESPONSE and related definitions (stable-fixes). - pci: Clear Secondary Status errors after enumeration (bsc#1226928) - pci: Extend ACS configurability (bsc#1228090). - pci: Fix resource double counting on remove & rescan (git-fixes). - pci: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git-fixes). - pci: Introduce cleanup helpers for device reference counts and locks (git-fixes). - pci: Introduce cleanup helpers for device reference counts and locks (stable-fixes). - pci: keystone: Do not enable BAR 0 for AM654x (git-fixes). - pci: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes). - pci: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes). - pci: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes). - pci: tegra194: Set EP alignment restriction for inbound ATU (git-fixes). - pci/aspm: Update save_state when configuration changes (bsc#1226915) - pci/dpc: Fix use-after-free on concurrent DPC and hot-removal (git-fixes). - pci/pm: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (git-fixes). - pci/pm: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes). - pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git-fixes). - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (git-fixes). - pinctrl: freescale: mxs: Fix refcount of child (git-fixes). - pinctrl: qcom: spmi-gpio: drop broken pm8008 support (git-fixes). - pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (git-fixes). - pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (git-fixes). - pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (git-fixes). - pinctrl: rockchip: update rk3308 iomux routes (git-fixes). - pinctrl: rockchip: use dedicated pinctrl type for RK3328 (git-fixes). - pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git-fixes). - pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes). - platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes). - platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes). - platform/x86: dell-smbios-base: Use sysfs_emit() (stable-fixes). - platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes). - platform/x86: lg-laptop: Change ACPI device id (stable-fixes). - platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes). - platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6' tablet (stable-fixes). - platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes). - platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable-fixes). - power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes). - powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap() (bsc#1194869). - powerpc/cpuidle: Set CPUIDLE_FLAG_POLLING for snooze state (bsc#1227121 ltc#207129). - powerpc/kasan: Disable address sanitization in kexec paths (bsc#1194869). - powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869). - powerpc/rtas: clean up includes (bsc#1227487). - powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487). - pwm: stm32: Always do lazy disabling (git-fixes). - random: treat bootloader trust toggle the same way as cpu trust toggle (bsc#1226953). - ras/amd/atl: Fix MI300 bank hash (bsc#1225300). - ras/amd/atl: Use system settings for MI300 DRAM to normalized address translation (bsc#1225300). - rdma/cache: Release GID table even if leak is detected (git-fixes) - rdma/device: Return error earlier if port in not valid (git-fixes) - rdma/hns: Check atomic wr length (git-fixes) - rdma/hns: Fix incorrect sge nums calculation (git-fixes) - rdma/hns: Fix insufficient extend DB for VFs. (git-fixes) - rdma/hns: Fix mbx timing out before CMD execution is completed (git-fixes) - rdma/hns: Fix missing pagesize and alignment check in FRMR (git-fixes) - rdma/hns: Fix shift-out-bounds when max_inline_data is 0 (git-fixes) - rdma/hns: Fix soft lockup under heavy CEQE load (git-fixes) - rdma/hns: Fix undifined behavior caused by invalid max_sge (git-fixes) - rdma/hns: Fix unmatch exception handling when init eq table fails (git-fixes) - rdma/irdma: Drop unused kernel push code (git-fixes) - rdma/iwcm: Fix a use-after-free related to destroying CM IDs (git-fixes) - rdma/mana_ib: Ignore optional access flags for MRs (git-fixes). - rdma/mlx4: Fix truncated output warning in alias_GUID.c (git-fixes) - rdma/mlx4: Fix truncated output warning in mad.c (git-fixes) - rdma/mlx5: Add check for srq max_sge attribute (git-fixes) - rdma/mlx5: Set mkeys for dmabuf at PAGE_SIZE (git-fixes) - rdma/restrack: Fix potential invalid address access (git-fixes) - rdma/rxe: Do not set BTH_ACK_MASK for UC or UD QPs (git-fixes) - regmap-i2c: Subtract reg size from max_write (stable-fixes). - regulator: bd71815: fix ramp values (git-fixes). - regulator: core: Fix modpost error 'regulator_get_regmap' undefined (git-fixes). - regulator: irq_helpers: duplicate IRQ name (stable-fixes). - regulator: vqmmc-ipq4019: fix module autoloading (stable-fixes). - Revert 'Add remote for nfs maintainer' - Revert 'ALSA: firewire-lib: obsolete workqueue for period update' (bsc#1208783). - Revert 'ALSA: firewire-lib: operate for period elapse event in process context' (bsc#1208783). - Revert 'build initrd without systemd' (bsc#1195775)'. - Revert 'leds: led-core: Fix refcount leak in of_led_get()' (git-fixes). - Revert 'usb: musb: da8xx: Set phy in OTG mode by default' (stable-fixes). - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes). - rpm/guards: fix precedence issue with control flow operator - rpm/kernel-obs-build.spec.in: Add iso9660 (bsc#1226212) - rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211) - rpm/kernel-obs-build.spec.in: Include algif_hash, aegis128 and xts modules afgif_hash is needed by some packages (e.g. iwd) for tests, xts is used for LUKS2 volumes by default and aegis128 is useful as AEAD cipher for LUKS2. - rpm/mkspec-dtb: dtbs have moved to vendor sub-directories in 6.5 - rtc: cmos: Fix return value of nvmem callbacks (git-fixes). - rtc: interface: Add RTC offset to alarm after fix-up (git-fixes). - rtc: isl1208: Fix return value of nvmem callbacks (git-fixes). - rtlwifi: rtl8192de: Style clean-ups (stable-fixes). - s390: Implement __iowrite32_copy() (bsc#1226502) - s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502) - saa7134: Unchecked i2c_transfer function result fixed (git-fixes). - sched: Fix stop_one_cpu_nowait() vs hotplug (git fixes (sched)). - sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1226791). - sched/fair: Do not balance task to its current running CPU (git fixes (sched)). - scsi: lpfc: Allow DEVICE_RECOVERY mode after RSCN receipt if in PRLI_ISSUE state (bsc#1228857). - scsi: lpfc: Cancel ELS WQE instead of issuing abort when SLI port is inactive (bsc#1228857). - scsi: lpfc: Fix handling of fully recovered fabric node in dev_loss callbk (bsc#1228857). - scsi: lpfc: Fix incorrect request len mbox field when setting trunking via sysfs (bsc#1228857). - scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info (bsc#1228857). - scsi: lpfc: Relax PRLI issue conditions after GID_FT response (bsc#1228857). - scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro usages (bsc#1228857). - scsi: lpfc: Update lpfc version to 14.4.0.3 (bsc#1228857). - scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850). - scsi: qla2xxx: Complete command early within lock (bsc#1228850). - scsi: qla2xxx: Convert comma to semicolon (bsc#1228850). - scsi: qla2xxx: Drop driver owner assignment (bsc#1228850). - scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850). - scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850). - scsi: qla2xxx: Fix flash read failure (bsc#1228850). - scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850). - scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850). - scsi: qla2xxx: Indent help text (bsc#1228850). - scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850). - scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850). - scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850). - scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850). - scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850). - scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850). - scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850). - scsi: sd: Update DIX config every time sd_revalidate_disk() is called (bsc#1218570). - selftests/bpf: __imm_insn & __imm_const macro for bpf_misc.h (bsc#1225903). - selftests/bpf: Add a selftest for checking subreg equality (bsc#1225903). - selftests/bpf: add pre bpf_prog_test_run_opts() callback for test_loader (bsc#1225903). - selftests/bpf: add precision propagation tests in the presence of subprogs (bsc#1225903). - selftests/bpf: Add pruning test case for bpf_spin_lock (bsc#1225903). - selftests/bpf: Check if mark_chain_precision() follows scalar ids (bsc#1225903). - selftests/bpf: check if max number of bpf_loop iterations is tracked (bsc#1225903). - selftests/bpf: fix __retval() being always ignored (bsc#1225903). - selftests/bpf: fix unpriv_disabled check in test_verifier (bsc#1225903). - selftests/bpf: make test_align selftest more robust (bsc#1225903). - selftests/bpf: populate map_array_ro map for verifier_array_access test (bsc#1225903). - selftests/bpf: prog_tests entry point for migrated test_verifier tests (bsc#1225903). - selftests/bpf: Report program name on parse_test_spec error (bsc#1225903). - selftests/bpf: Support custom per-test flags and multiple expected messages (bsc#1225903). - selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903). - selftests/bpf: test case for relaxed prunning of active_lock.id (bsc#1225903). - selftests/bpf: test cases for regsafe() bug skipping check_id() (bsc#1225903). - selftests/bpf: test widening for iterating callbacks (bsc#1225903). - selftests/bpf: Tests execution support for test_loader.c (bsc#1225903). - selftests/bpf: tests for iterating callbacks (bsc#1225903). - selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903). - selftests/bpf: Unprivileged tests for test_loader.c (bsc#1225903). - selftests/bpf: Verify copy_register_state() preserves parent/live fields (bsc#1225903). - selftests/bpf: verify states_equal() maintains idmap across all frames (bsc#1225903). - selftests/bpf: Verify that check_ids() is used for scalars in regsafe() (bsc#1225903). - selftests/sigaltstack: Fix ppc64 GCC build (git-fixes). - smb: client: ensure to try all targets when finding nested links (bsc#1224020). - smb: client: guarantee refcounted children from parent session (bsc#1224679. - soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes). - soundwire: cadence: fix invalid PDI offset (stable-fixes). - spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable-fixes). - spi: mux: set ctlr->bits_per_word_mask (stable-fixes). - spi: stm32: Do not warn about spurious interrupts (git-fixes). - string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850). - sunrpc: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272). - sunrpc: Fix gss_free_in_token_pages() (git-fixes). - sunrpc: Fix loop termination condition in gss_free_in_token_pages() (git-fixes). - sunrpc: fix NFSACL RPC retry on soft mount (git-fixes). - sunrpc: return proper error from gss_wrap_req_priv (git-fixes). - supported.conf: Add APM X-Gene SoC hardware monitoring driver (bsc#1223265 jsc#PED-8570) - supported.conf: mark orangefs as optional We do not support orangefs at all (and it is already marked as such), but since there are no SLE consumers of it, mark it as optional. - supported.conf: mark ufs as unsupported UFS is an unsupported filesystem, mark it as such. We still keep it around (not marking as optional), to accommodate any potential migrations from BSD systems. - tpm_tis: Resend command to recover from data transfer errors (bsc#1082555). - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume (bsc#1082555). - tpm, tpm_tis: Avoid cache incoherency in test for interrupts (bsc#1082555). - tpm, tpm_tis: Claim locality before writing interrupt registers (bsc#1082555). - tpm, tpm_tis: Claim locality in interrupt handler (bsc#1082555). - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume (bsc#1082555). - tpm, tpm_tis: correct tpm_tis_flags enumeration values (bsc#1082555). - tpm, tpm_tis: Do not skip reset of original interrupt vector (bsc#1082555). - tpm, tpm_tis: Only handle supported interrupts (bsc#1082555). - tpm, tpm: Implement usage counter for locality (bsc#1082555). - tpm: Allow system suspend to continue when TPM suspend fails (bsc#1082555). - tpm: Prevent hwrng from activating during resume (bsc#1082555). - tracing: Build event generation tests only as modules (git-fixes). - tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes). - tracing/osnoise: Add OSNOISE_WORKLOAD option (bsc#1228330) - tracing/osnoise: Add osnoise/options file (bsc#1228330) - tracing/osnoise: Do not follow tracing_cpumask (bsc#1228330) - tracing/osnoise: Fix notify new tracing_max_latency (bsc#1228330) - tracing/osnoise: Make osnoise_instances static (bsc#1228330) - tracing/osnoise: Split workload start from the tracer start (bsc#1228330) - tracing/osnoise: Support a list of trace_array *tr (bsc#1228330) - tracing/osnoise: Use built-in RCU list checking (bsc#1228330) - tracing/timerlat: Notify new max thread latency (bsc#1228330) - tty: mcf: MCF54418 has 10 UARTS (git-fixes). - usb-storage: alauda: Check whether the media is initialized (git-fixes). - usb: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes). - usb: atm: cxacru: fix endpoint checking in cxacru_bind() (git-fixes). - usb: cdns3: allocate TX FIFO size according to composite EP number (git-fixes). - usb: cdns3: fix incorrect calculation of ep_buf_size when more than one config (git-fixes). - usb: cdns3: fix iso transfer error when mult is not zero (git-fixes). - usb: cdns3: improve handling of unaligned address case (git-fixes). - usb: cdns3: optimize OUT transfer by copying only actual received data (git-fixes). - usb: cdns3: skip set TRB_IOC when usb_request: no_interrupt is true (git-fixes). - usb: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (git-fixes). - usb: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes). - usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock (git-fixes). - usb: dwc3: gadget: Do not delay End Transfer on delayed_status (git-fixes). - usb: dwc3: gadget: Force sending delayed status during soft disconnect (git-fixes). - usb: dwc3: gadget: Synchronize IRQ between soft connect/disconnect (git-fixes). - usb: fotg210-hcd: delete an incorrect bounds test (git-fixes). - usb: gadget: call usb_gadget_check_config() to verify UDC capability (git-fixes). - usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable-fixes). - usb: gadget: printer: fix races against disable (git-fixes). - usb: gadget: printer: SS+ support (stable-fixes). - usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes). - usb: musb: da8xx: fix a resource leak in probe() (git-fixes). - usb: serial: mos7840: fix crash on resume (git-fixes). - usb: serial: option: add Fibocom FM350-GL (stable-fixes). - usb: serial: option: add Netprisma LCUK54 series modules (stable-fixes). - usb: serial: option: add Rolling RW350-GL variants (stable-fixes). - usb: serial: option: add support for Foxconn T99W651 (stable-fixes). - usb: serial: option: add Telit FN912 rmnet compositions (stable-fixes). - usb: serial: option: add Telit generic core-dump composition (stable-fixes). - usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes). - usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps (git-fixes). - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state (git-fixes). - usb: typec: ucsi: Ack also failed Get Error commands (git-fixes). - usb: typec: ucsi: Never send a lone connector change ack (git-fixes). - usb: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected (git-fixes). - usb: xhci-plat: Do not include xhci.h (git-fixes). - usb: xhci-plat: fix legacy PHY double init (git-fixes). - usb: xhci: address off-by-one in xhci_num_trbs_free() (git-fixes). - usb: xhci: Implement xhci_handshake_check_state() helper (git-fixes). - usb: xhci: improve debug message in xhci_ring_expansion_needed() (git-fixes). - watchdog: bd9576_wdt: switch to using devm_fwnode_gpiod_get() (stable-fixes). - watchdog: bd9576: Drop 'always-running' property (git-fixes). - wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes). - wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes). - wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (stable-fixes). - wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes). - wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes). - wifi: cfg80211: Lock wiphy in cfg80211_get_station (git-fixes). - wifi: cfg80211: pmsr: use correct nla_get_uX functions (git-fixes). - wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes). - wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes). - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef (git-fixes). - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids (git-fixes). - wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes). - wifi: iwlwifi: mvm: do not read past the mfuart notifcation (git-fixes). - wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes). - wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable-fixes). - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64 (git-fixes). - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element (git-fixes). - wifi: mac80211: disable softirqs for queued frame handling (git-fixes). - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() (git-fixes). - wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes). - wifi: mac80211: handle tasklet frames before stopping (stable-fixes). - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects (git-fixes). - wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes). - wifi: mt76: replace skb_put with skb_put_zero (stable-fixes). - wifi: mwifiex: Fix interface type change (git-fixes). - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU (stable-fixes). - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path (stable-fixes). - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE (stable-fixes). - wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git-fixes). - wifi: wilc1000: fix ies_len type in connect path (git-fixes). - workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454). - workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454). - x.509: Fix the parser of extended key usage for length (bsc#1218820). - x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502) - x86/amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs (git-fixes). - x86/apic: Force native_apic_mem_read() to use the MOV instruction (git-fixes). - x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes). - x86/bugs: Remove default case for fully switched enums (bsc#1227900). - x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes). - x86/ibt,ftrace: Search for __fentry__ location (git-fixes). - x86/Kconfig: Transmeta Crusoe is CPU family 5, not 6 (git-fixes). - x86/mce: Dynamically size space for machine check records (bsc#1222241). - x86/mm: Allow guest.enc_status_change_prepare() to fail (git-fixes). - x86/mm: Fix enc_status_change_finish_noop() (git-fixes). - x86/purgatory: Switch to the position-independent small code model (git-fixes). - x86/srso: Move retbleed IBPB check into existing 'has_microcode' code block (bsc#1227900). - x86/srso: Remove 'pred_cmd' label (bsc#1227900). - x86/tdx: Fix race between set_memory_encrypted() and load_unaligned_zeropad() (git-fixes). - x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962). - xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228226). - xfs: make sure sb_fdblocks is non-negative (bsc#1225419). - xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes). - xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes). - xhci: Fix failure to detect ring expansion need (git-fixes). - xhci: fix matching completion events with TDs (git-fixes). - xhci: Fix transfer ring expansion size calculation (git-fixes). - xhci: Handle TD clearing for multiple streams case (git-fixes). - xhci: remove unused stream_id parameter from xhci_handle_halted_endpoint() (git-fixes). - xhci: restre deleted trb fields for tracing (git-fixes). - xhci: retry Stop Endpoint on buggy NEC controllers (git-fixes). - xhci: Set correct transferred length for cancelled bulk transfers (stable-fixes). - xhci: Simplify event ring dequeue pointer update for port change events (git-fixes). - xhci: simplify event ring dequeue tracking for transfer events (git-fixes). - xhci: Stop unnecessary tracking of free trbs in a ring (git-fixes). - xhci: update event ring dequeue pointer position to controller correctly (git-fixes). |
|
|
| kernel-devel | HIGH | fixed |
Security update for the Linux Kernel Vulnerability ID: SUSE-SU-2024:3483-1 Installed Version: 5.14.21-150500.55.68.1 Fixed Version: 5.14.21-150500.55.80.2 The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-44947: Initialize beyond-EOF page contents before setting uptodate (bsc#1229454). - CVE-2024-36936: Touch soft lockup during memory accept (bsc#1225773). - CVE-2022-48706: Do proper cleanup if IFCVF init fails (bsc#1225524). - CVE-2024-43883: Do not drop references before new references are gained (bsc#1229707). - CVE-2024-41062: Sync sock recv cb and release (bsc#1228576). - CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229500). - CVE-2024-36270: Fix reference in patches.suse/netfilter-tproxy-bail-out-if-IP-has-been-disabled-on.patch (bsc#1226798) - CVE-2023-52489: Fix race in accessing memory_section->usage (bsc#1221326). - CVE-2024-43893: Check uartclk for zero to avoid divide by zero (bsc#1229759). - CVE-2024-43821: Fix a possible null pointer dereference (bsc#1229315). - CVE-2024-43900: Avoid use-after-free in load_firmware_cb() (bsc#1229756). - CVE-2024-44938: Fix shift-out-of-bounds in dbDiscardAG (bsc#1229792). - CVE-2024-44939: Fix null ptr deref in dtInsertEntry (bsc#1229820). - CVE-2024-41087: Fix double free on error (CVE-2024-41087,bsc#1228466). - CVE-2024-42277: Avoid NULL deref in sprd_iommu_hw_en (bsc#1229409). - CVE-2024-43902: Add null checker before passing variables (bsc#1229767). - CVE-2024-43904: Add null checks for 'stream' and 'plane' before dereferencing (bsc#1229768) - CVE-2024-43880: Put back removed metod in struct objagg_ops (bsc#1229481). - CVE-2024-43884: Add error handling to pair_device() (bsc#1229739) - CVE-2024-43899: Fix null pointer deref in dcn20_resource.c (bsc#1229754). - CVE-2022-48920: Get rid of warning on transaction commit when using flushoncommit (bsc#1229658). - CVE-2023-52906: Fix warning during failed attribute validation (bsc#1229527). - CVE-2024-43882: Fixed ToCToU between perm check and set-uid/gid usage. (bsc#1229503) - CVE-2024-43866: Always drain health in shutdown callback (bsc#1229495). - CVE-2024-26812: Struct virqfd kABI workaround (bsc#1222808). - CVE-2022-48912: Fix use-after-free in __nf_register_net_hook() (bsc#1229641) - CVE-2024-27010: Fix mirred deadlock on device recursion (bsc#1223720). - CVE-2022-48906: Correctly set DATA_FIN timeout when number of retransmits is large (bsc#1229605) - CVE-2024-42155: Wipe copies of protected- and secure-keys (bsc#1228733). - CVE-2024-42156: Wipe copies of clear-key structures on failure (bsc#1228722). - CVE-2023-52899: Add exception protection processing for vd in axi_chan_handle_err function (bsc#1229569). - CVE-2024-42158: Use kfree_sensitive() to fix Coccinelle warnings (bsc#1228720). - CVE-2024-26631: Fix data-race in ipv6_mc_down / mld_ifc_work (bsc#1221630). - CVE-2024-43873: Always initialize seqpacket_allow (bsc#1229488) - CVE-2024-40905: Fix possible race in __fib6_drop_pcpu_from() (bsc#1227761) - CVE-2024-39489: Fix memleak in seg6_hmac_init_algo (bsc#1227623) - CVE-2021-47106: Fix use-after-free in nft_set_catchall_destroy() (bsc#1220962) - CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool (bsc#1225428). - CVE-2024-36489: Fix missing memory barrier in tls_init (bsc#1226874) - CVE-2024-41020: Fix fcntl/close race recovery compat path (bsc#1228427). - CVE-2024-27079: Fix NULL domain on device release (bsc#1223742). - CVE-2024-35897: Discard table flag update with pending basechain deletion (bsc#1224510). - CVE-2024-27403: Restore const specifier in flow_offload_route_init() (bsc#1224415). - CVE-2024-27011: Fix memleak in map from abort path (bsc#1223803). - CVE-2024-43819: Reject memory region operations for ucontrol VMs (bsc#1229290 git-fixes). - CVE-2024-26668: Reject configurations that cause integer overflow (bsc#1222335). - CVE-2024-26835: Set dormant flag on hook register failure (bsc#1222967). - CVE-2024-26808: Handle NETDEV_UNREGISTER for inet/ingress basechain (bsc#1222634). - CVE-2024-27016: Validate pppoe header (bsc#1223807). - CVE-2024-35945: Prevent nullptr exceptions on ISR (bsc#1224639). - CVE-2023-52581: Fix memleak when more than 255 elements expired (bsc#1220877). - CVE-2024-36013: Fix slab-use-after-free in l2cap_connect() (bsc#1225578). - CVE-2024-43837: Fix updating attached freplace prog in prog_array map (bsc#1229297). - CVE-2024-42291: Add a per-VF limit on number of FDIR filters (bsc#1229374). - CVE-2024-42268: Fix missing lock on sync reset reload (bsc#1229391). - CVE-2024-43834: Fix invalid wait context of page_pool_destroy() (bsc#1229314) - CVE-2024-36286: Acquire rcu_read_lock() in instance_destroy_rcu() (bsc#1226801) - CVE-2024-26851: Add protection for bmp length out of range (bsc#1223074) - CVE-2024-42157: Wipe sensitive data on failure (bsc#1228727 CVE-2024-42157 git-fixes). - CVE-2024-26677: Blacklist e7870cf13d20 (' Fix delayed ACKs to not set the reference serial number') (bsc#1222387) - CVE-2024-36009: Blacklist 467324bcfe1a ('ax25: Fix netdev refcount issue') (bsc#1224542) - CVE-2023-52859: Fix use-after-free when register pmu fails (bsc#1225582). - CVE-2024-42280: Fix a use after free in hfcmulti_tx() (bsc#1229388) - CVE-2024-42284: Return non-zero value from tipc_udp_addr2str() on error (bsc#1229382) - CVE-2024-42283: Initialize all fields in dumped nexthops (bsc#1229383) - CVE-2024-42312: Always initialize i_uid/i_gid (bsc#1229357) - CVE-2024-43854: Initialize integrity buffer to zero before writing it to media (bsc#1229345) - CVE-2024-42322: Properly dereference pe in ip_vs_add_service (bsc#1229347) - CVE-2024-42308: Update DRM patch reference (bsc#1229411) - CVE-2024-42301: Fix the array out-of-bounds risk (bsc#1229407). - CVE-2024-42318: Do not lose track of restrictions on cred_transfer (bsc#1229351). - CVE-2024-26669: Fix chain template offload (bsc#1222350). - CVE-2023-52889: Fix null pointer deref when receiving skb during sock creation (bsc#1229287,). - CVE-2022-48645: Move enetc_set_psfp() out of the common enetc_set_features() (bsc#1223508). - CVE-2024-41007: Use signed arithmetic in tcp_rtx_probe0_timed_out() (bsc#1227863). - CVE-2024-36933: Use correct mac_offset to unwind gso skb in nsh_gso_segment() (bsc#1225832). - CVE-2024-42295: Handle inconsistent state in nilfs_btnode_create_block() (bsc#1229370). - CVE-2024-42319: Move devm_mbox_controller_register() after devm_pm_runtime_enable() (bsc#1229350). - CVE-2024-43860: Skip over memory region when node value is NULL (bsc#1229319). - CVE-2024-43831: Handle invalid decoder vsi (bsc#1229309). - CVE-2024-43849: Protect locator_addr with the main mutex (bsc#1229307). - CVE-2024-43841: Do not use strlen() in const context (bsc#1229304). - CVE-2024-43839: Adjust 'name' buf size of bna_tcb and bna_ccb structures (bsc#1229301). - CVE-2024-41088: Fix infinite loop when xmit fails (bsc#1228469). - CVE-2024-42281: Fix a segment issue when downgrading gso_size (bsc#1229386). - CVE-2024-42271: Fixed a use after free in iucv_sock_close(). (bsc#1229400) - CVE-2024-41080: Fix possible deadlock in io_register_iowq_max_workers() (bsc#1228616). - CVE-2024-42246: Remap EPERM in case of connection failure in xs_tcp_setup_socket (bsc#1228989). - CVE-2024-42232: Fixed a race between delayed_work() and ceph_monc_stop(). (bsc#1228959) - CVE-2024-26735: Fix possible use-after-free and null-ptr-deref (bsc#1222372). - CVE-2024-42106: Initialize pad field in struct inet_diag_req_v2 (bsc#1228493). - CVE-2024-38662: Cover verifier checks for mutating sockmap/sockhash (bsc#1226885). - CVE-2024-42110: Move ntb_netdev_rx_handler() to call netif_rx() from __netif_rx() (bsc#1228501). - CVE-2024-42247: Avoid unaligned 64-bit memory accesses (bsc#1228988). - CVE-2022-48865: Fix kernel panic when enabling bearer (bsc#1228065). - CVE-2023-52498: Fix possible deadlocks in core system-wide PM code (bsc#1221269). - CVE-2024-41068: Fix sclp_init() cleanup on failure (bsc#1228579). - CVE-2022-48808: Fix panic when DSA master device unbinds on shutdown (bsc#1227958). - CVE-2024-42095: Fix Errata i2310 with RX FIFO level check (bsc#1228446). - CVE-2024-40978: Fix crash while reading debugfs attribute (bsc#1227929). - CVE-2024-42107: Do not process extts if PTP is disabled (bsc#1228494). - CVE-2024-42139: Fix improper extts handling (bsc#1228503). - CVE-2024-42148: Fix multiple UBSAN array-index-out-of-bounds (bsc#1228487). - CVE-2024-42142: E-switch, Create ingress ACL when needed (bsc#1228491). - CVE-2024-42162: Account for stopped queues when reading NIC stats (bsc#1228706). - CVE-2024-42082: Remove WARN() from __xdp_reg_mem_model() (bsc#1228482). - CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526). - CVE-2023-3610: Fixed use-after-free vulnerability in nf_tables can be exploited to achieve local privilege escalation (bsc#1213580). - CVE-2024-42228: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (bsc#1228667). - CVE-2024-40995: Fix possible infinite loop in tcf_idr_check_alloc() (bsc#1227830). - CVE-2024-38602: Merge repeat codes in ax25_dev_device_down() (git-fixes CVE-2024-38602 bsc#1226613). - CVE-2024-38554: Fix reference count leak issue of net_device (bsc#1226742). - CVE-2024-36929: Reject skb_copy(_expand) for fraglist GSO skbs (bsc#1225814). - CVE-2024-41009: Fix overrunning reservations in ringbuf (bsc#1228020). - CVE-2024-27024: Fix WARNING in rds_conn_connect_if_down (bsc#1223777). The following non-security bugs were fixed: - Indicate support for IRQ ResourceSource thru _OSC (git-fixes). - Indicate support for the Generic Event Device thru _OSC (git-fixes). - Rework system-level device notification handling (git-fixes). - Drop nocrt parameter (git-fixes). - x86: s2 Post-increment variables when getting constraints (git-fixes). - Do not cross .backup mountpoint from backup volume (git-fixes). - Add HP MP9 G4 Retail System AMS to force connect list (stable-fixes). - Yet more pin fix for HP EliteDesk 800 G4 (stable-fixes). - Add Framework Laptop 13 (Intel Core Ultra) to quirks (stable-fixes). - Fix noise from speakers on Lenovo IdeaPad 3 15IAU7 (git-fixes). - line6: Fix racy access to midibuf (stable-fixes). - Relax start tick time check for slave timer elements (git-fixes). - Add delay quirk for VIVO USB-C-XE710 HEADSET (stable-fixes). - Re-add ScratchAmp quirk entries (git-fixes). - Support Yamaha P-125 quirk entry (stable-fixes). - Fix UBSAN warning in parse_audio_unit() (stable-fixes). - arm64: initialize all values of acpi_early_node_map to (git-fixes) - arm64: initialize all values of acpi_early_node_map to (git-fixes) - arm64: Add Neoverse-V2 part (git-fixes) - arm64: armv8_ Fix warning in isndep cpuhp starting process (git-fixes) - arm64: armv8_ Fix warning in isndep cpuhp starting process (git-fixes) - arm64: Restore spec_bar() macro (git-fixes) - arm64: Add missing .field_width for GIC system registers (git-fixes) - arm64: Fix the visibility of compat hwcaps (git-fixes) - arm64: Force HWCAP to be based on the sysreg visible to (git-fixes) - arm64: Add Cortex-A720 definitions (git-fixes) - arm64: Add Cortex-A725 definitions (git-fixes) - arm64: Add Cortex-X1C definitions (git-fixes) - arm64: Add Cortex-X3 definitions (git-fixes) - arm64: Add Cortex-X4 definitions (git-fixes) - arm64: Add Cortex-X925 definitions (git-fixes) - arm64: Add Neoverse-V3 definitions (git-fixes) - arm64: Increase VOP clk rate on RK3328 (git-fixes) - arm64: Increase VOP clk rate on RK3328 (git-fixes) - arm64: Expand speculative SSBS workaround (again) (git-fixes) - arm64: Expand speculative SSBS workaround (git-fixes) - arm64: Unify speculative SSBS errata logic (git-fixes) Also update default configuration. - arm64: Fix KASAN random tag seed initialization (git-fixes) - arm64: Fix KASAN random tag seed initialization (git-fixes) - wcd938 Correct Soundwire ports mask (git-fixes). - wsa881 Correct Soundwire ports mask (git-fixes). - fix irq scheduling issue with PREEMPT_RT (git-fixes). - Introduce async_schedule_dev_nocall() (bsc#1221269). - Split async_schedule_node_domain() (bsc#1221269). - Fix usage of __hci_cmd_sync_status (git-fixes). - hci_ Fix not handling hibernation actions (git-fixes). - l2 always unlock channel in l2cap_conless_channel() (git-fixes). - L2 Fix deadlock (git-fixes). - Fix a kernel verifier crash in stacksafe() (bsc#1225903). - remove unused declaring of bpf_kprobe_override (git-fixes). - fix leak of qgroup extent records after transaction abort (git-fixes). - make btrfs_destroy_delayed_refs() return void (git-fixes). - remove unnecessary prototype declarations at disk-io.c (git-fixes). - update fs features directory asynchronously (bsc#1226168). - propagate errors from vfs_getxattr() to avoid infinite loop (bsc#1229418). - issue a cap release immediately if no cap exists (bsc#1225162). - periodically flush the cap releases (bsc#1225162). - Enable SMT only if a core is online (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588 git-fixes). - cpuidle, Evaluate LPI arch_flags for broadcast timer (git-fixes). - Fix register ID of SPSR_FIQ (git-fixes). - add missing MODULE_DESCRIPTION() macros (stable-fixes). - Add labels for both Valve Steam Deck revisions (stable-fixes). - Add quirk for Aya Neo KUN (stable-fixes). - Add quirk for Lenovo Yoga Tab 3 X90F (stable-fixes). - Add quirk for Nanote UMPC-01 (stable-fixes). - Add quirk for OrangePi Neo (stable-fixes). - drm/amd/amdgpu/imu_v11_0: Increase buffer size to ensure all possible values can be stored (stable-fixes). - Add NULL check for 'afb' before dereferencing in amdgpu_dm_plane_handle_cursor_update (stable-fixes). - avoid using null object of framebuffer (git-fixes). - Fix && vs || typos (git-fixes). - Skip Recompute DSC Params if no Stream on Link (stable-fixes). - Validate hw_points_num before using it (stable-fixes). - Fix the null pointer dereference for vega10_hwmgr (stable-fixes). - Actually check flags for all context ops (stable-fixes). - Add lock around VF RLCG interface (stable-fixes). - fix dereference null return value for the function amdgpu_vm_pt_parent (stable-fixes). - Fix the null pointer dereference to ras_manager (stable-fixes). - Validate TA binary size (stable-fixes). - drm/amdgpu/jpeg2: properly set atomics vmid field (stable-fixes). - Fix the null pointer dereference for smu7 (stable-fixes). - Fix the null pointer dereference in apply_state_adjust_rules (stable-fixes). - Fix the param type of set_power_profile_mode (stable-fixes). - analogix_ properly handle zero sized AUX transactions (stable-fixes). - tc358768: Attempt to fix DSI horizontal timings (stable-fixes). - fix null pointer dereference in drm_client_modeset_probe (git-fixes). - drm/dp_ Skip CSN if topology probing is not done yet (stable-fixes). - set gp bus_stop bit before hard reset (stable-fixes). - reset the link phy params before link training (git-fixes). - cleanup FB if dpu_format_populate_layout fails (git-fixes). - do not play tricks with debug macros (git-fixes). - Zero-initialize iosys_map (stable-fixes). - fix inode->i_blocks for non-512 byte sector size device (git-fixes). - fix potential deadlock on __exfat_get_dentry_set (git-fixes). - redefine DIR_DELETED as the bad cluster number (git-fixes). - support dynamic allocate bh for exfat_entry_set_cache (git-fixes). - fs/netfs/fscache_ add missing 'n_accesses' check (bsc#1229453). - Initialize beyond-EOF page contents before setting uptodate (bsc#1229454). - Add might_sleep() to disable_irq() (git-fixes). - Always limit the affinity to online CPUs (git-fixes). - Do not return error on missing optional irq_request_resources() (git-fixes). - Take the proposed affinity at face value if force==true (git-fixes). - genirq/cpuhotplug, x86 Prevent vector leak during CPU offline (git-fixes). - genirq/generic_ Make irq_remove_generic_chip() irqdomain aware (git-fixes). - Fix NULL pointer deref in irq_data_get_affinity_mask() (git-fixes). - Do not try to remove non-existing sysfs files (git-fixes). - Exclude managed interrupts in irq_matrix_allocated() (git-fixes). - Shutdown managed interrupts with unsatifiable affinities (git-fixes). - gss_krb5: Fix the error handling path for crypto_sync_skcipher_setkey (git-fixes). - fix to initialize fields of hfs_inode_info after hfs_alloc_inode() (git-fixes). - i2 Improve handling of stuck alerts (git-fixes). - i2 Send alert notifications to all devices if source not found (git-fixes). - Convert comma to semicolon (git-fixes). - ip6_ Fix broken GRO (bsc#1229444). - ipv6: fix incorrect unregister order (git-fixes). - Drop bogus fwspec-mapping error handling (git-fixes). - Fix association race (git-fixes). - Fix disassociation race (git-fixes). - Fix domain registration race (git-fixes). - Fix mapping-creation race (git-fixes). - Fixed unbalanced fwnode get and put (git-fixes). - Look for existing mapping only once (git-fixes). - Refactor __irq_domain_alloc_irqs() (git-fixes). - Report irq number for NOMAP domains (git-fixes). - Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()' (bsc#1230413). - Revert 'mm, kmsan: fix infinite recursion due to RCU critical section' (bsc#1230413). - Revert 'mm/sparsemem: fix race in accessing memory_section->usage' (bsc#1230413). - kernel/irq/irqdomain. fix memory leak with using debugfs_lookup() (git-fixes). - Fix to check symbol prefixes correctly (git-fixes). - move from strlcpy with unused retval to strscpy (git-fixes). - protect concurrent access to mem_cgroup_idr (git-fixes). - mm, fix infinite recursion due to RCU critical section (git-fixes). - prevent derefencing NULL ptr in pfn_section_valid() (git-fixes). - dw_ allow biu and ciu clocks to defer (git-fixes). - mmc_ Fix NULL dereference on allocation failure (git-fixes). - ks8851: Fix another TX stall caused by wrong ISR flag handling (git-fixes). - ks8851: Fix deadlock with the SPI chip variant (git-fixes). - ks8851: Fix potential TX stall after interface reopen (git-fixes). - ks8851: Fix TX stall caused by TX buffer overrun (gix-fixes). - Add support for page sizes other than 4KB on ARM64 (jsc#PED-8491 bsc#1226530). - Fix doorbell out of order violation and avoid unnecessary doorbell rings (bsc#1229154). - Fix race of mana_hwc_post_rx_wqe and new hwc response (git-fixes). - Fix RX buf alloc_size alignment and atomic op panic (bsc#1229086). - remove two BUG() from skb_checksum_help() (bsc#1229312). - qmi_ fix memory leak for not ip packets (git-fixes). - fix possible cp null dereference (git-fixes). - initialize noop_qdisc owner (git-fixes). - pn533: Add poll mod list filling check (git-fixes). - expose /proc/net/sunrpc/nfs in net namespaces (git-fixes). - make the rpc_stat per net namespace (git-fixes). - add posix ACLs to struct nfsd_attrs (git-fixes). - add security label to struct nfsd_attrs (git-fixes). - fix regression with setting ACLs (git-fixes). - Fix strncpy() fortify warning (git-fixes). - Increase NFSD_MAX_OPS_PER_COMPOUND (git-fixes). - introduce struct nfsd_attrs (git-fixes). - move from strlcpy with unused retval to strscpy (git-fixes). - Optimize DRC bucket pruning (git-fixes). - return error if nfs4_setacl fails (git-fixes). - set attributes when creating symlinks (git-fixes). - use locks_inode_context helper (git-fixes). - nilfs2: Remove check for PageError (git-fixes). - nvme_ scan namespaces asynchronously (bsc#1224105). - ocfs2: use coarse time for new created files (git-fixes). - Fix possible divide-by-0 panic in padata_mt_helper() (git-fixes). - perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09 (git-fixes). - platform/x86 Add support for ACPI based probing (jsc#PED-8779). - platform/x86 Cache pci_dev in struct hsmp_socket (jsc#PED-8779). - platform/x86 Change devm_kzalloc() to devm_kcalloc() (jsc#PED-8779). - platform/x86 Check HSMP support on AMD family of processors (jsc#PED-8779). - platform/x86 Check num_sockets against MAX_AMD_SOCKETS (jsc#PED-8779). - platform/x86 Create static func to handle platdev (jsc#PED-8779). - platform/x86 Define a struct to hold mailbox regs (jsc#PED-8779). - platform/x86 Move dev from platdev to hsmp_socket (jsc#PED-8779). - platform/x86 Move hsmp_test to probe (jsc#PED-8779). - platform/x86 Non-ACPI support for AMD F1A_M00~0Fh (jsc#PED-8779). - platform/x86 Remove extra parenthesis and add a space (jsc#PED-8779). - platform/x86 Restructure sysfs group creation (jsc#PED-8779). - platform/x86 switch to use device_add_groups() (jsc#PED-8779). - axp288_ Fix constant_charge_voltage writes (git-fixes). - axp288_ Round constant_charge_voltage writes down (git-fixes). - Fail build if using recordmcount with binutils v2.37 (bsc#1194869). - Mark .opd section read-only (bsc#1194869). - use generic version of arch_is_kernel_initmem_freed() (bsc#1194869). - xor_ Add '-mhard-float' to CFLAGS (bsc#1194869). - powerpc/64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n (bsc#1194869). - Avoid clang null pointer arithmetic warnings (bsc#1194869). - powerpc/kexec_ fix cpus node update to FDT (bsc#1194869). - make the update_cpus_node() function public (bsc#1194869). - split CONFIG_KEXEC_FILE and CONFIG_CRASH_DUMP (bsc#1194869). - Add failure related checks for h_get_mpp and h_get_ppp (bsc#1194869). - Whitelist dtl slub object for copying to userspace (bsc#1194869). - Move some functions into #ifdef CONFIG_KVM_BOOK3S_HV_POSSIBLE (bsc#1194869). - Check if a core is online (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588 git-fixes). - Check cpu id in commands 'c#', 'dp#' and 'dx#' (bsc#1194869). - RDMA/mana_ Use virtual address in dma regions for MRs (git-fixes). - Fix incomplete state save in rxe_requester (git-fixes) - Fix rxe_modify_srq (git-fixes) - Handle zero length rdma (git-fixes) - Move work queue code to subroutines (git-fixes) - s390 get rid of register asm (git-fixes bsc#1227079 bsc#1229187). - s390 Make use of invalid opcode produce a link error (git-fixes bsc#1227079). - s390 Split and rework cpacf query functions (git-fixes bsc#1229187). - s390 fix error checks in dasd_copy_pair_store() (git-fixes bsc#1229190). - s390 fix error recovery leading to data corruption on ESE devices (git-fixes bsc#1229573). - s390 Prevent release of buffer in I/O (git-fixes bsc#1229572). - s390 Panic for set and remove shared access UVC errors (git-fixes bsc#1229188). - Fix scldiv calculation (git-fixes). - add a struct rpc_stats arg to rpc_create_args (git-fixes). - Fix a race to wake a sync task (git-fixes). - fix swiotlb_bounce() to do partial sync's correctly (git-fixes). - fix compat_sys_io_pgetevents_time64 usage (git-fixes). - Return from tracing_buffers_read() if the file has been closed (bsc#1229136 git-fixes). - add check for crypto_shash_tfm_digest (git-fixes). - dbg_orphan_ Fix missed key type checking (git-fixes). - Fix adding orphan entry twice for the same inode (git-fixes). - Fix unattached xattr inode if powercut happens after deleting (git-fixes). - fix potential memory leak in vfio_intx_enable() (git-fixes). - fix wgds rev 3 exact size (git-fixes). - duplicate static structs used in driver instances (git-fixes). - x86 drop the duplicate APM_MINOR_DEV macro (git-fixes). - x86 Fix PUSH instruction in x86 instruction decoder opcode map (git-fixes). - x86 Fix pti_clone_entry_text() for i386 (git-fixes). - x86 Check if fixed MTRRs exist before saving them (git-fixes). - x86 Work around false positive kmemleak report in msr_build_context() (git-fixes). - Fix missing interval for missing_owner in xfs fsmap (git-fixes). - Fix the owner setting issue for rmap query in xfs fsmap (git-fixes). - use XFS_BUF_DADDR_NULL for daddrs in getfsmap code (git-fixes). - Fix Panther point NULL pointer deref at full-speed re-enumeration (git-fixes). - Fix rpcrdma_reqs_reset() (git-fixes). |
|
|