Continuous stable update tracker for Tumbleweed [trackerbug] 4.12 powerpc base kernel fixes SLE15 TPM base kernel fixes [TRACKERBUG] 5.14 powerpc base kernel fixes [trackerbug] 6.4 powerpc base kernel fixes VUL-0: kernel: SLAM - Spectre based on Linear Address Masking VUL-0: CVE-2023-6270: kernel: use-after-free vulnerability in ATA over Ethernet (AoE) driver kernel/livepatching: Add klp-convert dm-raid/md/raid: regression related to dm-raid456 IO concurrent with reshape Lenovo Yoga 14APH8 headphones jack requires bass speaker to be full volume VUL-0: CVE-2024-26596: kernel: net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events L3-Question: x86/mm/ident_map: Use gbpages only where full GB page should be mapped. Enable IDPF driver for arm64 VUL-0: CVE-2024-26703: kernel: tracing/timerlat: Move hrtimer_init to timerlat_fd open() VUL-0: CVE-2024-26741: kernel: dccp/tcp: Unhash sk from ehash for tb2 alloc failure after check_estalblished(). VUL-0: CVE-2024-26782: kernel: mptcp: fix double-free on socket dismantle VUL-0: CVE-2024-26864: kernel: tcp: refcnt handling bug in __inet_hash_connect(). VUL-0: CVE-2024-26923: kernel: af_unix: fix garbage collector racing against connect() VUL-0: CVE-2024-26953: kernel: net: esp: fix bad handling of pages from page_pool VUL-0: CVE-2024-27026: kernel: vmxnet3: Fix missing reserved tailroom VUL-0: CVE-2024-27017: kernel: netfilter: nft_set_pipapo: walk over current view on netlink dump VUL-0: CVE-2024-27043: kernel: media: media: dvbdev: use-after-free in different places KVM passthrough disks are detected as 0 byte disks on guest [HPS Bug] SLES15SP6 - multiple occurrences of watchdog: BUG: soft lockup during iterated reboot test VUL-0: CVE-2024-27407: kernel: fs/ntfs3: Fixed overflow check in mi_enum_attr() VUL-0: CVE-2024-35888: kernel: erspan: make sure erspan_base_hdr is present in skb->head VUL-0: CVE-2024-36000: kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge VUL-0: CVE-2024-35980: kernel: arm64: tlb: Fix TLBI RANGE operand VUL-0: CVE-2023-52778: kernel: mptcp: deal with large GSO size VUL-0: CVE-2023-52881: kernel: tcp: do not accept ACK of bytes we never sent VUL-0: CVE-2024-36031: kernel: keys: Fix overwrite of key expiration on instantiation VUL-0: CVE-2024-36883: kernel: net: fix out-of-bounds access in ops_init VUL-0: CVE-2024-36886: kernel: tipc: fix UAF in error path VUL-0: CVE-2024-36905: kernel: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets VUL-0: CVE-2024-36954: kernel: tipc: fix a possible memleak in tipc_buf_append VUL-0: CVE-2024-36920: kernel: scsi: mpi3mr: avoid memcpy field-spanning write WARNING VUL-0: CVE-2024-36927: kernel: ipv4: Fix uninit-value access in __ip_make_skb() bpf: backport of iterator and callback handling fixes Xen refuses to boot in AMD Ryzen Pro system - ref:_00D1igLOd._500Tr64Tw1:ref VUL-0: CVE-2024-36968: kernel: Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init() vmxnet3: update to latest ToT VUL-0: CVE-2024-38576: kernel: rcu: fix buffer overflow in print_cpu_stall_info() VUL-0: CVE-2024-38577: kernel: rcu-tasks: fix show_rcu_tasks_trace_gp_kthread buffer overflow VUL-0: CVE-2024-38589: kernel: netrom: fix possible dead-lock in nr_rt_ioctl() VUL-0: CVE-2024-36244: kernel: net/sched: taprio: extend minimum interval restriction to entire cycle too VUL-0: CVE-2024-38599: kernel: jffs2: prevent xattr node from overflowing the eraseblock VUL-0: CVE-2024-36484: kernel: net: relax socket state check at accept time. NFS 4.0 Server generating NFS4ERR_BAD_SEQID on lock attempts VUL-0: CVE-2024-40914: kernel: mm/huge_memory: don't unpoison huge_zero_folio lpfc - Boot failed after installation of kernel-default-5.14.21-150500.55.68.1 [NetApp SLES15 SP6 Bug]: NVMe device inconsistency seen during repeated old NS unmap & new NS map using reused NSID Internal microphone not working on Lenovo Thinkpad E16 Gen 2 (Model 21M5) VUL-0: CVE-2024-41016: kernel: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() VUL-0: CVE-2024-41023: kernel: sched/deadline: fix task_struct reference leak VUL-0: CVE-2024-41031: kernel: mm/filemap: skip to create PMD-sized page cache if needed VUL-0: CVE-2024-41047: kernel: i40e: Fix XDP program unloading while removing the driver VUL-0: CVE-2024-41082: kernel: nvme-fabrics: use reserved tag for reg read/write command VUL-0: CVE-2024-42145: kernel: IB/core: implement a limit on UMAD receive List Server loses primary network and leaves core dump qla2xxx: update driver to 10.02.09.300-k Update Broadcom Emulex lpfc driver to 14.4.0.3 KVM:Starting KVM error "ensure all devices within the iommu_group are bound to their vfio bus driver" after kernel update SLES15 SP6 showed CXL related complaining messages when CXL capable root port did not attach CXL device Update Broadcom Emulex lpfc driver for SLES15 SP7 to 14.4.0.4 libbpf: failed to find '.BTF' ELF section in vmlinux Crash due to invalid per cpu cache freelist SLES15SP6: Authentication fails for nvme splitter drive while performing "nvme sed revert" operation with changed password on SLES15SP6 (nvme/splitter/SED/SLES15SP6/P10) mana: Fix race of mana_hwc_post_rx_wqe and new hwc response VUL-0: CVE-2024-44932: kernel: idpf: fix UAFs when destroying the queues mana: Implement get_ringparam/set_ringparam for mana UCS fw upgrade - half of 15sp5 servers lost all paths (fnic 1.6.0.55) while servers with older fnic driver are ok Intermittent sound Lenovo Legion Pro 7 16IRX8H (Intel CPU) VUL-0: CVE-2024-44958: kernel: sched/smt: Fix unbalance sched_smt_present dec/inc VUL-0: CVE-2024-44964: kernel: idpf: fix memory leaks and crashes while performing a soft reset VUL-0: CVE-2024-44995: kernel: net: hns3: fix a deadlock problem when config TC during resetting mana: Improve mana_set_channels() in low mem conditions SLES15 SP6 - [P10][DD2.0][SHARED] - Hard lockups and Soft lockups are seen and LPAR hangs while running stress-ng (queued_spin_lock) VUL-0: CVE-2024-26767: kernel: drm/amd/display: fixed integer types and null check locations VUL-0: CVE-2024-26758: kernel: md: Don't ignore suspended array in md_check_recovery() VUL-0: CVE-2024-26761: kernel: cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window kernel: reproducible builds issue with BTF VUL-0: CVE-2024-45016: kernel: netem: fix return value if duplicate enqueue fails VUL-0: CVE-2024-45025: kernel: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE SLES 15 SP6: On P10, IPSec crypto using rfc4106(aes_gcm_p10) caused file moved to dst side checksum mis-match with the original file on src side. VUL-0: CVE-2024-26943: kernel: nouveau/dmem: handle kcalloc() allocation failure VUL-0: CVE-2024-46678: kernel: bonding: change ipsec_lock from spin lock to mutex VUL-0: CVE-2024-46680: kernel: Bluetooth: btnxpuart: Fix random crash seen while removing driver VUL-0: CVE-2024-46681: kernel: pktgen: use cpus_read_lock() in pg_net_init() VUL-0: CVE-2023-52800: kernel: wifi: ath11k: fix htt pktlog locking VUL-0: CVE-2023-52766: kernel: i3c: mipi-i3c-hci: Fix out of bounds access in hci_dma_irq_handler VUL-0: CVE-2024-46721: kernel: apparmor: fix possible NULL pointer dereference SLE-15SP5 KOTD: NFS v4.0 lock test fails with EIO and EACCES on aarch64 VUL-0: CVE-2024-46766: kernel: ice: move netif_queue_set_napi to rtnl-protected sections VUL-0: CVE-2024-46770: kernel: ice: Add netif_device_attach/detach into PF reset flow VUL-0: CVE-2024-46777: kernel: udf: Avoid excessive partition lengths VUL-0: CVE-2024-46775: kernel: drm/amd/display: Validate function returns VUL-0: CVE-2024-46754: kernel: bpf: Remove tst_run from lwt_seg6local_prog_ops. VUL-0: CVE-2024-46765: kernel: ice: protect XDP configuration with a mutex VUL-0: CVE-2024-46788: kernel: tracing/osnoise: Use a cpumask to know what threads are kthreads VUL-0: CVE-2024-46800: kernel: sch/netem: fix use after free in netem_dequeue VUL-0: CVE-2024-46797: kernel: powerpc/qspinlock: Fix deadlock in MCS queue NFSv2 support silently dropped Network Failure when Transferring Data leads to Kernel Oops live migration frequently failed due to "unable to execute QEMU command 'cont': Failed to get "write" lock" Intermittent nfs mount failures (may be due to SUNRPC over UDP) SLES 15 SP6 - inkernel crypto xctr(aes) alg: skcipher: failed to allocate transform for ctr(aes): -2 VUL-0: CVE-2024-46848: kernel: perf/x86/intel: Limit the period on Haswell VUL-0: CVE-2024-46849: kernel: ASoC: meson: axg-card: fix 'use-after-free' VUL-0: CVE-2024-46846: kernel: spi: rockchip: Resolve unbalanced runtime PM / system PM handling VUL-0: CVE-2024-46845: kernel: tracing/timerlat: Only clear timer if a kthread exists VUL-0: CVE-2024-46851: kernel: drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() VUL-0: CVE-2024-46852: kernel: dma-buf: heaps: Fix off-by-one in CMA heap fault handler VUL-0: CVE-2024-46853: kernel: spi: nxp-fspi: fix the KASAN report out-of-bounds bug VUL-0: CVE-2024-46854: kernel: net: dpaa: Pad packets to ETH_ZLEN VUL-0: CVE-2024-46855: kernel: netfilter: nft_socket: fix sk refcount leaks VUL-0: CVE-2024-46857: kernel: net/mlx5: Fix bridge mode operations when there are no VFs VUL-0: CVE-2024-46859: kernel: platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses VUL-0: CVE-2024-46836: kernel: usb: gadget: aspeed_udc: validate endpoint index for ast udc VUL-0: CVE-2024-46860: kernel: wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change VUL-0: CVE-2024-46841: kernel: btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() VUL-0: CVE-2024-46834: kernel: ethtool: fail closed if we can't get max channel used in indirection tables VUL-0: CVE-2024-46835: kernel: drm/amdgpu: Fix smatch static checker warning VUL-0: CVE-2024-46843: kernel: scsi: ufs: core: Remove SCSI host only if added VUL-0: CVE-2024-46842: kernel: scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info VUL-0: CVE-2024-46861: kernel: usbnet: ipheth: do not stop RX on failing RX callback VUL-0: CVE-2024-46840: kernel: btrfs: clean up our handling of refs == 0 in snapshot delete VUL-0: CVE-2024-46864: kernel: x86/hyperv: fix kexec crash due to VP assist page corruption VUL-0: CVE-2024-46802: kernel: drm/amd/display: added NULL check at start of dc_validate_stream VUL-0: CVE-2024-46828: kernel: sched: sch_cake: fix bulk flow accounting logic for host fairness VUL-0: CVE-2024-46826: kernel: ELF: fix kernel.randomize_va_space double read VUL-0: CVE-2024-46830: kernel: KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS VUL-0: CVE-2024-46831: kernel: net: microchip: vcap: Fix use-after-free error in kunit test VUL-0: CVE-2024-46803: kernel: drm/amdkfd: Check debug trap enable before write dbg_ev_file VUL-0: CVE-2024-46804: kernel: drm/amd/display: Add array index check for hdcp ddc access VUL-0: CVE-2024-46805: kernel: drm/amdgpu: fix the waring dereferencing hive VUL-0: CVE-2024-46806: kernel: drm/amdgpu: Fix the warning division or modulo by zero VUL-0: CVE-2024-46807: kernel: drm/amd/amdgpu: Check tbo resource pointer VUL-0: CVE-2024-46809: kernel: drm/amd/display: Check BIOS images before it is used VUL-0: CVE-2024-46821: kernel: drm/amd/pm: Fix negative array index read VUL-0: CVE-2024-46825: kernel: wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check VUL-0: CVE-2024-46827: kernel: wifi: ath12k: fix firmware crash due to invalid peer nss VUL-0: CVE-2024-46810: kernel: drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ VUL-0: CVE-2024-46811: kernel: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box ceph: remove the incorrect Fw reference check when dirtying pages cachefiles: fix dentry leak in cachefiles_open_file() VUL-0: CVE-2024-46812: kernel: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration VUL-0: CVE-2024-46813: kernel: drm/amd/display: check link_index before accessing dc->links[] VUL-0: CVE-2024-46814: kernel: drm/amd/display: check msg_id before processing transcation VUL-0: CVE-2024-46815: kernel: drm/amd/display: check num_valid_sets before accessing reader_wm_sets[] VUL-0: CVE-2024-46816: kernel: drm/amd/display: stop amdgpu_dm initialize when link nums greater than max_links VUL-0: CVE-2024-46817: kernel: drm/amd/display: stop amdgpu_dm initialize when stream nums greater than 6 VUL-0: CVE-2024-46819: kernel: drm/amdgpu: the warning dereferencing obj for nbio_v7_4 VUL-0: CVE-2024-46818: kernel: drm/amd/display: check gpio_id before used as array index KVM: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query kernel shown as unreleased ceph: fix cap ref leak via netfs init_request VUL-0: CVE-2024-46871: kernel: drm/amd/display: correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX VUL-0: CVE-2024-46870: kernel: drm/amd/display: disable DMCUB timeout for DCN35 VUL-0: CVE-2024-47658: kernel: crypto: stm32/cryp - call finalize with bh disabled VUL-0: CVE-2024-47660: kernel: fsnotify: clear PARENT_WATCHED flags lazily VUL-0: CVE-2024-47662: kernel: drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection VUL-0: CVE-2024-47663: kernel: staging: iio: frequency: ad9834: validate frequency parameter value VUL-0: CVE-2024-47664: kernel: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware VUL-0: CVE-2024-47665: kernel: i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup VUL-0: CVE-2024-47666: kernel: scsi: pm80xx: Set phy->enable_completion only when we wait for it Kernel 6.11.2-1 only a fraction of ram is available VUL-0: CVE-2024-47669: kernel: nilfs2: fix state management in error path of log writing function VUL-0: CVE-2024-47667: kernel: PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) VUL-0: CVE-2024-47661: kernel: drm/amd/display: avoid overflow from uint32_t to uint8_t VUL-0: CVE-2024-47668: kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() VUL-0: CVE-2024-47670: kernel: ocfs2: add bounds checking to ocfs2_xattr_find_entry() VUL-0: CVE-2024-47673: kernel: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped VUL-0: CVE-2024-47672: kernel: wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead VUL-0: CVE-2024-47671: kernel: USB: usbtmc: prevent kernel-usb-infoleak [sles-15-sp6][maintenance update] [fio-Sequential] nfsv4 server got 'crash' when execute re-read cases on xfs Partner-L3: [Intel] Virtualization regression during PBOffline test with ESXi Host and SUSE SLES15 SP6 Guest ext4: fix possible tid_t sequence overflows ext4: don't track ranges in fast_commit if inode has inlined data ext4: fix fast commit inode enqueueing during a full journal commit ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible() jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit ext4: use handle to mark fc as ineligible in __track_dentry_update() ext4: mark fc as ineligible using an handle in ext4_xattr_set() VUL-0: CVE-2024-47674: kernel: mm: avoid leaving partial pfn mappings around in error case [VT] xen throw crash during reboot VUL-0: CVE-2023-52917: kernel: ntb: intel: fix the NULL vs IS_ERR() bug for debugfs_create_dir() VUL-0: CVE-2024-47681: kernel: wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he VUL-0: CVE-2024-47682: kernel: scsi: sd: fix off-by-one error in sd_read_block_characteristics() VUL-0: CVE-2024-47692: kernel: nfsd: return -EINVAL when namelen is 0 VUL-0: CVE-2024-47697: kernel: drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error VUL-0: CVE-2024-47698: kernel: drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error VUL-0: CVE-2024-47715: kernel: wifi: mt76: mt7915: fix oops on non-dbdc mt7986 VUL-0: CVE-2024-49860: kernel: ACPI: sysfs: validate return type of _STR method VUL-0: CVE-2024-47696: kernel: RDMA/iwcm: fix WARNING:at_kernel/workqueue.c:#check_flush_dependency VUL-0: CVE-2024-47719: kernel: iommufd: protect against overflow of ALIGN() during iova allocation VUL-0: CVE-2024-47753: kernel: media: mediatek: vcodec: fix VP8 stateless decoder smatch warning VUL-0: CVE-2024-47741: kernel: btrfs: fix race setting file private on concurrent lseek using same fd VUL-0: CVE-2024-49862: kernel: powercap: intel_rapl: fix off by one in get_rpi() VUL-0: CVE-2024-47705: kernel: block: fix potential invalid pointer dereference in blk_add_partition VUL-0: CVE-2024-50064: kernel: zram: free secondary algorithms names VUL-0: CVE-2024-50046: kernel: NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() VUL-0: CVE-2024-50045: kernel: netfilter: br_netfilter: fix panic with metadata_dst skb VUL-0: CVE-2024-50044: kernel: Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change VUL-0: CVE-2024-50042: kernel: ice: Fix increasing MSI-X on VF VUL-0: CVE-2024-50041: kernel: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash VUL-0: CVE-2024-50040: kernel: igb: Do not bring the device up after non-fatal error VUL-0: CVE-2024-50033: kernel: slip: make slhc_remember() more robust against malicious packets VUL-0: CVE-2024-47699: kernel: nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() VUL-0: CVE-2024-47701: kernel: ext4: avoid OOB when system.data xattr changes underneath the filesystem VUL-0: CVE-2024-47702: kernel: bpf: fail verification for sign-extension of packet data/data_end/data_meta VUL-0: CVE-2024-47675: kernel: bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() VUL-0: CVE-2024-47679: kernel: vfs: fix race between evice_inodes() and find_inode()&iput() VUL-0: CVE-2024-47695: kernel: RDMA/rtrs-clt: reset cid to con_num - 1 to stay in bounds VUL-0: CVE-2024-47707: kernel: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() VUL-0: CVE-2024-47706: kernel: block, bfq: fix possible UAF for bfqq->bic with merge chain VUL-0: CVE-2024-47704: kernel: drm/amd/display: check link_res->hpo_dp_link_enc before using it VUL-0: CVE-2024-47703: kernel: bpf, lsm: add check for BPF LSM return value VUL-0: CVE-2024-50031: kernel: drm/v3d: Stop the active perfmon before being destroyed VUL-0: CVE-2024-50028: kernel: thermal: core: Reference count the zone in thermal_zone_get_by_id() VUL-0: CVE-2024-50027: kernel: thermal: core: Free tzp copy along with the thermal zone VUL-0: CVE-2024-50026: kernel: scsi: wd33c93: Don't use stale scsi_pointer value VUL-0: CVE-2024-50025: kernel: scsi: fnic: Move flush_work initialization out of if block VUL-0: CVE-2024-50024: kernel: net: Fix an unsafe loop on the list VUL-0: CVE-2024-50023: kernel: net: phy: Remove LED entry from LEDs list on unregister VUL-0: CVE-2024-50022: kernel: device-dax: correct pgoff align in dax_set_mapping() VUL-0: CVE-2024-50021: kernel: ice: Fix improper handling of refcount in ice_dpll_init_rclk_pins() VUL-0: CVE-2024-49917: kernel: drm/amd/display: add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw VUL-0: CVE-2024-49918: kernel: drm/amd/display: add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer VUL-0: CVE-2024-49919: kernel: drm/amd/display: add null check for head_pipe in dcn201_acquire_free_pipe_for_layer VUL-0: CVE-2024-47684: kernel: tcp: check skb is non-NULL in tcp_rto_delta_us() VUL-0: CVE-2023-52919: kernel: nfc: nci: fix possible NULL pointer dereference in send_acknowledge() VUL-0: CVE-2024-50020: kernel: ice: Fix improper handling of refcount in ice_sriov_set_msix_vec_count() VUL-0: CVE-2024-50019: kernel: kthread: unpark only parked kthread VUL-0: CVE-2024-47685: kernel: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() VUL-0: CVE-2024-47686: kernel: ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() VUL-0: CVE-2024-47687: kernel: vdpa/mlx5: Fix invalid mr resource destroy VUL-0: CVE-2024-47688: kernel: driver core: Fix a potential null-ptr-deref in module_add_driver() VUL-0: CVE-2024-47693: kernel: IB/core: Fix ib_cache_setup_one error flow cleanup VUL-0: CVE-2024-47718: kernel: wifi: rtw88: always wait for both firmware loading attempts VUL-0: CVE-2024-47713: kernel: wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() VUL-0: CVE-2024-47712: kernel: wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param VUL-0: CVE-2024-47714: kernel: wifi: mt76: mt7996: use hweight16 to get correct tx antenna net: mana: Fix the extra HZ in mana_hwc_send_request RDMA/mana_ib: use the correct page table index based on hardware page size RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page VUL-0: CVE-2024-47720: kernel: drm/amd/display: add null check for set_output_gamma in dcn30_set_output_transfer_func VUL-0: CVE-2023-52918: kernel: media: pci: cx23885: check cx23885_vdev_init() return VUL-0: CVE-2024-47709: kernel: can: bcm: clear bo->bcm_proc_read after remove_proc_entry(). VUL-0: CVE-2024-47710: kernel: sock_map: add a cond_resched() in sock_hash_free() VUL-0: CVE-2024-47723: kernel: jfs: fix out-of-bounds in dbNextAG() and diAlloc() VUL-0: CVE-2024-47737: kernel: nfsd: call cache_put if xdr_reserve_space returns NULL VUL-0: CVE-2024-47730: kernel: crypto: hisilicon/qm - inject error before stopping queue VUL-0: CVE-2024-47728: kernel: bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error VUL-0: CVE-2024-50015: kernel: ext4: dax: fix overflowing extents beyond inode size when partially writing VUL-0: CVE-2024-50013: kernel: exfat: fix memory leak in exfat_load_bitmap() VUL-0: CVE-2024-50002: kernel: static_call: Handle module init failure correctly in static_call_del_module() VUL-0: CVE-2024-50001: kernel: net/mlx5: Fix error path in multi-packet WQE transmit VUL-0: CVE-2024-50000: kernel: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() VUL-0: CVE-2024-49996: kernel: cifs: Fix buffer overflow when parsing NFS reparse points uvdevice not available in SL-Micro s390x image VUL-0: CVE-2024-49986: kernel: platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors VUL-0: CVE-2024-49985: kernel: i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume VUL-0: CVE-2024-49983: kernel: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free VUL-0: CVE-2024-49982: kernel: aoe: fix the potential use-after-free problem in more places VUL-0: CVE-2024-49981: kernel: media: venus: fix use after free bug in venus_remove due to race condition VUL-0: CVE-2024-49976: kernel: tracing/timerlat: Drop interface_lock in stop_kthread() VUL-0: CVE-2024-49975: kernel: uprobes: fix kernel info leak via "[uprobes]" vma VUL-0: CVE-2024-49973: kernel: r8169: add tally counter fields added with RTL8125 VUL-0: CVE-2024-47732: kernel: crypto: iaa - Fix potential use after free bug VUL-0: CVE-2024-47735: kernel: RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled VUL-0: CVE-2024-47738: kernel: wifi: mac80211: don't use rate mask for offchannel TX either VUL-0: CVE-2024-47727: kernel: x86/tdx: Fix "in-kernel MMIO" check VUL-0: CVE-2024-47731: kernel: drivers/perf: Fix ali_drw_pmu driver interrupt status clearing VUL-0: CVE-2024-47739: kernel: padata: use integer wrap around to prevent deadlock on seq_nr overflow VUL-0: CVE-2024-47742: kernel: firmware_loader: block path traversal VUL-0: CVE-2024-47751: kernel: PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() VUL-0: CVE-2024-47743: kernel: KEYS: prevent NULL pointer dereference in find_asymmetric_key() VUL-0: CVE-2024-47752: kernel: media: mediatek: vcodec: Fix H264 stateless decoder smatch warning VUL-0: CVE-2024-47754: kernel: media: mediatek: vcodec: Fix H264 multi stateless decoder smatch warning VUL-0: CVE-2024-47744: kernel: KVM: use dedicated mutex to protect kvm_usage_count to avoid deadlock VUL-0: CVE-2024-49851: kernel: tpm: Clean up TPM space after command failure VUL-0: CVE-2024-47745: kernel: mm: call the security_mmap_file() LSM hook in remap_file_pages() VUL-0: CVE-2024-49967: kernel: ext4: no need to continue when the number of entries is 1 VUL-0: CVE-2024-49966: kernel: ocfs2: cancel dqi_sync_work before freeing oinfo VUL-0: CVE-2024-49965: kernel: ocfs2: remove unreasonable unlock in ocfs2_read_blocks VUL-0: CVE-2024-47747: kernel: net: seeq: fix use after free vulnerability in ether3 Driver Due to Race Condition VUL-0: CVE-2024-49963: kernel: mailbox: bcm2835: Fix timeout during suspend mode VUL-0: CVE-2024-49961: kernel: media: i2c: ar0521: Use cansleep version of gpiod_set_value() VUL-0: CVE-2024-49959: kernel: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error VUL-0: CVE-2024-49958: kernel: ocfs2: reserve space for inline xattr before attaching reflink tree VUL-0: CVE-2024-49957: kernel: ocfs2: fix null-ptr-deref when journal load failed. VUL-0: CVE-2024-49955: kernel: ACPI: battery: Fix possible crash when unregistering a battery hook VUL-0: CVE-2024-49954: kernel: static_call: Replace pointless WARN_ON() in static_call_module_notify() VUL-0: CVE-2024-49953: kernel: net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice VUL-0: CVE-2024-49952: kernel: netfilter: nf_tables: prevent nf_skb_duplicated corruption VUL-0: CVE-2024-49950: kernel: Bluetooth: L2CAP: Fix uaf in l2cap_connect VUL-0: CVE-2024-49949: kernel: net: avoid potential underflow in qdisc_pkt_len_init() with UFO VUL-0: CVE-2024-49947: kernel: net: test for not too small csum_start in virtio_net_hdr_to_skb() VUL-0: CVE-2024-49946: kernel: ppp: do not assume bh is held in ppp_channel_bridge_input() VUL-0: CVE-2024-49945: kernel: net/ncsi: Disable the ncsi work before freeing the associated structure VUL-0: CVE-2024-49944: kernel: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start VUL-0: CVE-2024-47748: kernel: vhost_vdpa: assign irq bypass producer token correctly VUL-0: CVE-2024-47749: kernel: RDMA/cxgb4: added NULL check for lookup_atid VUL-0: CVE-2024-47750: kernel: RDMA/hns: fix Use-After-Free of rsv_qp on HIP08 printk: Add notation to console_srcu locking VUL-0: CVE-2024-47756: kernel: PCI: keystone: fix if-statement expression in ks_pcie_quirk() VUL-0: CVE-2024-47757: kernel: nilfs2: fix potential oob read in nilfs_btree_check_delete() VUL-0: CVE-2024-49850: kernel: bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos VUL-0: CVE-2024-49853: kernel: firmware: arm_scmi: fix double free in OPTEE transport VUL-0: CVE-2024-49855: kernel: nbd: fix race between timeout and normal completion VUL-0: CVE-2024-49886: kernel: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug VUL-0: CVE-2024-49884: kernel: ext4: fix slab-use-after-free in ext4_split_extent_at() VUL-0: CVE-2024-49883: kernel: ext4: aovid use-after-free in ext4_ext_insert_extent() VUL-0: CVE-2024-49882: kernel: ext4: fix double brelse() the buffer of the extents path VUL-0: CVE-2024-49881: kernel: ext4: update orig_path in ext4_find_extent() KVM SEV-ES: wrmsr to MSR_IA32_DEBUGCTLMSR crashes the guest VUL-0: CVE-2024-49888: kernel: bpf: fix a sdiv overflow issue VUL-0: CVE-2024-49890: kernel: drm/amd/pm: ensure the fw_info is not null before using it VUL-0: CVE-2024-49891: kernel: scsi: lpfc: validate hdwq pointers before dereferencing in reset/errata paths VUL-0: CVE-2024-49892: kernel: drm/amd/display: initialize get_bytes_per_element's default to 1 VUL-0: CVE-2024-49896: kernel: drm/amd/display: check stream before comparing them VUL-0: CVE-2024-49898: kernel: drm/amd/display: check null-initialized variables VUL-0: CVE-2024-49925: kernel: fbdev: efifb: register sysfs groups through driver core VUL-0: CVE-2024-50062: kernel: RDMA/rtrs-srv: Avoid null pointer deref during path establishment VUL-0: CVE-2024-49928: kernel: wifi: rtw89: avoid reading out of bounds when loading TX power FW elements VUL-0: CVE-2024-49858: kernel: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption VUL-0: CVE-2024-49929: kernel: wifi: iwlwifi: mvm: avoid NULL pointer dereference VUL-0: CVE-2024-49861: kernel: bpf: Fix helper writes to read-only maps VUL-0: CVE-2024-49863: kernel: vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() VUL-0: CVE-2024-49864: kernel: rxrpc: Fix a race between socket set up and I/O thread creation VUL-0: CVE-2024-49987: kernel: bpftool: fix undefined behavior in qsort(NULL, 0, ...) VUL-0: CVE-2024-49866: kernel: tracing/timerlat: Fix a race during cpuhp processing VUL-0: CVE-2024-49930: kernel: wifi: ath11k: fix array out-of-bound access in SoC stats VUL-0: CVE-2024-49867: kernel: btrfs: wait for fixup workers before stopping cleaner kthread during umount VUL-0: CVE-2024-50061: kernel: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition VUL-0: CVE-2024-49968: kernel: ext4: filesystems without casefold feature cannot be mounted with siphash VUL-0: CVE-2024-49868: kernel: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion VUL-0: CVE-2024-49931: kernel: wifi: ath12k: fix array out-of-bound access in SoC stats VUL-0: CVE-2024-49870: kernel: cachefiles: fix dentry leak in cachefiles_open_file() VUL-0: CVE-2024-49991: kernel: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer VUL-0: CVE-2024-50058: kernel: serial: protect uart_port_dtr_rts() in uart_shutdown() too VUL-0: CVE-2024-49871: kernel: Input: adp5589-keys - fix NULL pointer dereference VUL-0: CVE-2024-49874: kernel: i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition VUL-0: CVE-2024-49901: kernel: drm/msm/adreno: assign msm_gpu->pdev earlier to avoid nullptrs VUL-0: CVE-2024-49913: kernel: drm/amd/display: add null check for top_pipe_to_program in commit_planes_for_stream VUL-0: CVE-2024-50049: kernel: drm/amd/display: Check null pointer before dereferencing se VUL-0: CVE-2024-50048: kernel: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs VUL-0: CVE-2024-50017: kernel: x86/mm/ident_map: Use gbpages only where full GB page should be mapped. VUL-0: CVE-2024-49920: kernel: drm/amd/display: check null pointers before multiple uses VUL-0: CVE-2024-49962: kernel: ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() VUL-0: CVE-2024-49972: kernel: drm/amd/display: deallocate DML memory if allocation fails VUL-0: REJECTED: CVE-2024-49993: kernel: iommu/vt-d: fix potential lockup if qi_submit_sync called with 0 count VUL-0: CVE-2024-50008: kernel: wifi: mwifiex: fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() VUL-0: CVE-2024-50009: kernel: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value VUL-0: CVE-2024-50055: kernel: driver core: bus: Fix double free in driver API bus_register() VUL-0: CVE-2024-49906: kernel: drm/amd/display: Check null pointer before try to access it VUL-0: CVE-2024-49875: kernel: nfsd: map the EBADMSG to nfserr_io to avoid warning VUL-0: CVE-2024-49907: kernel: drm/amd/display: Check null pointers before using dc->clk_mgr VUL-0: CVE-2024-49908: kernel: drm/amd/display: Add null check for 'afb' in amdgpu_dm_update_cursor (v2) VUL-0: CVE-2024-49909: kernel: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func VUL-0: CVE-2024-49877: kernel: ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate VUL-0: CVE-2024-49878: kernel: resource: fix region_intersects() vs add_memory_driver_managed() No Ethernet device anymore on RPi3 VUL-0: CVE-2024-50059: kernel: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition VUL-0: CVE-2024-49879: kernel: drm: omapdrm: Add missing check for alloc_ordered_workqueue VUL-0: CVE-2024-49895: kernel: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation VUL-0: CVE-2024-49894: kernel: drm/amd/display: fix index out of bounds in degamma hardware format translation VUL-0: CVE-2024-49897: kernel: drm/amd/display: Check phantom_stream before it is used VUL-0: CVE-2024-49905: kernel: drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) VUL-0: CVE-2024-49899: kernel: drm/amd/display: initialize denominators' default to 1 VUL-0: CVE-2024-49900: kernel: jfs: fix uninit-value access of new_ea in ea_buffer VUL-0: CVE-2024-49923: kernel: drm/amd/display: pass non-null to dcn20_validate_apply_pipe_split_flags VUL-0: CVE-2024-49903: kernel: jfs: Fix uaf in dbFreeBits VUL-0: CVE-2024-49911: kernel: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func VUL-0: CVE-2024-49912: kernel: drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' VUL-0: CVE-2024-49933: kernel: blk_iocost: fix more out of bound shifts VUL-0: CVE-2024-49914: kernel: drm/amd/display: Add null check for pipe_ctx->plane_state in dcn20_program_pipe VUL-0: CVE-2024-49935: kernel: ACPI: PAD: fix crash in exit_round_robin() VUL-0: CVE-2024-49921: kernel: drm/amd/display: Check null pointers before used VUL-0: CVE-2024-49922: kernel: drm/amd/display: Check null pointers before using them VUL-0: CVE-2024-49902: kernel: jfs: check if leafidx greater than num leaves per dmap tree VUL-0: CVE-2024-49939: kernel: wifi: rtw89: avoid to add interface to list twice when SER VUL-0: CVE-2024-49974: kernel: NFSD: limit the number of concurrent async COPY operations VUL-0: CVE-2024-50003: kernel: drm/amd/display: fix system hang while resume with TBT monitor VUL-0: CVE-2024-50012: kernel: cpufreq: Avoid a bad reference count on CPU node VUL-0: CVE-2024-49934: kernel: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name VUL-0: CVE-2024-50035: kernel: ppp: fix ppp_async_encode() illegal access VUL-0: CVE-2024-50007: kernel: ALSA: asihpi: fix potential OOB array access VUL-0: CVE-2024-49960: kernel: ext4: fix timer use-after-free on failed mount VUL-0: CVE-2024-50004: kernel: drm/amd/display: update DML2 policy EnhancedPrefetchScheduleAccelerationFinal DCN35 hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event VUL-0: CVE-2024-50067: kernel: uprobe: avoid out-of-bounds memory access of fetching args VUL-0: CVE-2024-50060: kernel: io_uring: check if we need to reschedule during overflow flush VUL-0: CVE-2024-50047: kernel: smb: client: fix UAF in async decryption VUL-0: CVE-2024-49936: kernel: net/xen-netback: prevent UAF in xenvif_flush_hash() VUL-0: CVE-2024-49937: kernel: wifi: cfg80211: Set correct chandef when starting CAC VUL-0: CVE-2024-49995: kernel: tipc: guard against string buffer overrun VUL-0: CVE-2024-50063: kernel: bpf: Prevent tail call between progs attached to different hooks VUL-0: CVE-2024-53142: kernel: malformed cpio entry may leak early-boot memory contents VUL-0: CVE-2024-50006: kernel: ext4: fix i_data_sem unlock order in ext4_ind_migrate() VUL-0: CVE-2024-50014: kernel: ext4: fix access to uninitialised lock in fc replay path VUL-0: CVE-2024-49989: kernel: drm/amd/display: fix double free issue during amdgpu module unload VUL-0: CVE-2024-50084: kernel: net: microchip: vcap api: Fix memory leaks in vcap_api_encode_rule_test() VUL-0: CVE-2024-50088: kernel: btrfs: fix uninitialized pointer free in add_inode_ref() VUL-0: CVE-2024-50087: kernel: btrfs: fix uninitialized pointer free on read_alloc_one_name() error VUL-0: CVE-2024-50082: kernel: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race VUL-0: CVE-2024-50081: kernel: blk-mq: setup queue ->tag_set before initializing hctx VUL-0: CVE-2024-50080: kernel: ublk: don't allow user copy for unprivileged device VUL-0: CVE-2024-50078: kernel: Bluetooth: Call iso_exit() on module unload VUL-0: CVE-2024-50077: kernel: Bluetooth: ISO: Fix multiple init when debugfs is disabled VUL-0: CVE-2024-50076: kernel: vt: prevent kernel-infoleak in con_font_get() VUL-0: CVE-2024-50075: kernel: xhci: tegra: fix checked USB2 port number VUL-0: CVE-2024-50074: kernel: parport: Proper fix for array out-of-bounds access VUL-0: CVE-2024-50069: kernel: pinctrl: apple: check devm_kasprintf() returned value VUL-0: CVE-2024-49969: kernel: drm/amd/display: Fix index out of bounds in DCN30 color transformation VUL-0: CVE-2024-50073: kernel: tty: n_gsm: fix use-after-free in gsm_cleanup_mux SLE15-SP6 KOTD (commit 32a3e57bb675) boot Oops VUL-0: CVE-2024-49938: kernel: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit KVM: s390: gaccess: Check if guest address is in memslot KVM: s390: Change virtual to physical address access in diag 0x258 handler s390/sclp_vt220: Convert newlines to CRLF instead of LFCR s390/sclp: Deactivate sclp after all its users s390/pci: Handle PCI error codes other than 0x3a [sle15sp7][Build 36.1][ppc64le]cryptlvm+minimal_x installation fails with error "/sbin/cryptsetup --batch-mode open --type luks '/dev/vda2' 'cr_vda2' --tries 1 --key-file -' failed" Update Broadcom Emulex lpfc driver to 14.4.0.5 HP 320 webcam not working VUL-0: CVE-2024-49852: kernel: scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() VUL-0: CVE-2023-52920: kernel: bpf: support non-r10 register spill/fill to/from stack in precision tracking VUL-0: CVE-2024-50089: kernel: unicode: Don't special case ignorable code points VUL-0: CVE-2024-50101: kernel: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices VUL-0: CVE-2024-50096: kernel: nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error VUL-0: CVE-2024-50095: kernel: RDMA/mad: Improve handling of timed out WRs of mad agent VUL-0: CVE-2024-50100: kernel: USB: gadget: dummy-hcd: Fix "task hung" problem VUL-0: CVE-2024-50093: kernel: thermal: intel: int340x: processor: Fix warning during module unload VUL-0: CVE-2024-50103: kernel: ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() VUL-0: CVE-2024-50102: kernel: x86: fix user address masking non-canonical speculation issue VUL-0: CVE-2024-50098: kernel: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down VUL-0: CVE-2024-50108: kernel: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too VUL-0: CVE-2024-50110: kernel: xfrm: fix one more kernel-infoleak in algo dumping VUL-0: CVE-2024-50099: kernel: arm64: probes: Remove broken LDR (literal) uprobe support VUL-0: CVE-2024-50135: kernel: nvme-pci: fix race condition between reset and nvme_dev_disable() VUL-0: CVE-2024-50134: kernel: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA VUL-0: CVE-2024-50116: kernel: nilfs2: fix kernel bug due to missing clearing of buffer delay flag VUL-0: CVE-2024-50130: kernel: netfilter: bpf: must hold reference on net namespace VUL-0: CVE-2024-50131: kernel: tracing: Consider the NULL character when validating the event length VUL-0: CVE-2024-50117: kernel: drm/amd: Guard against bad data for ATIF ACPI method VUL-0: CVE-2024-50128: kernel: net: wwan: fix global oob in wwan_rtnl_policy VUL-0: CVE-2024-50127: kernel: net: sched: fix use-after-free in taprio_change() VUL-0: CVE-2024-50136: kernel: net/mlx5: Unregister notifier on eswitch init failure VUL-0: CVE-2024-50115: kernel: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory VUL-0: CVE-2024-50121: kernel: nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net VUL-0: CVE-2024-50124: kernel: Bluetooth: ISO: Fix UAF on iso_sock_timeout VUL-0: CVE-2024-50125: kernel: Bluetooth: SCO: Fix UAF on sco_sock_timeout VUL-0: CVE-2024-50138: kernel: bpf: Use raw_spinlock_t in ringbuf VUL-0: CVE-2024-50172: kernel: RDMA/bnxt_re: Fix a possible memory leak VUL-0: CVE-2024-50157: kernel: RDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop VUL-0: CVE-2024-50155: kernel: netdevsim: use cond_resched() in nsim_dev_trap_report_work() VUL-0: CVE-2024-50158: kernel: RDMA/bnxt_re: Fix out of bound check VUL-0: CVE-2024-50159: kernel: firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup() VUL-0: CVE-2024-50145: kernel: octeon_ep: add SKB allocation failures handling in __octep_oq_process_rx() VUL-0: CVE-2024-50167: kernel: be2net: fix potential memory leak in be_xmit() VUL-0: CVE-2024-50166: kernel: fsl/fman: Fix refcount handling of fman-related devices VUL-0: CVE-2024-50150: kernel: usb: typec: altmode should keep reference to parent VUL-0: CVE-2024-50146: kernel: net/mlx5e: don't call cleanup on profile rollback failure VUL-0: CVE-2024-50171: kernel: net: systemport: fix potential memory leak in bcm_sysport_xmit() VUL-0: CVE-2024-50153: kernel: scsi: target: core: Fix null-ptr-deref in target_alloc_device() VUL-0: CVE-2024-50139: kernel: KVM: arm64: fix shift-out-of-bounds bug VUL-0: CVE-2024-50148: kernel: Bluetooth: bnep: fix wild-memory-access in proto_unregister VUL-0: CVE-2024-50141: kernel: ACPI: PRM: find EFI_MEMORY_RUNTIME block for PRM handler and context VUL-0: CVE-2024-50147: kernel: net/mlx5: fix command bitmask initialization VUL-0: CVE-2024-50154: kernel: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). VUL-0: CVE-2024-50156: kernel: drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() VUL-0: CVE-2024-50160: kernel: ALSA: hda/cs8409: Fix possible NULL dereference VUL-0: CVE-2024-50200: kernel: maple_tree: correct tree corruption on spanning store VUL-0: CVE-2024-50176: kernel: remoteproc: k3-r5: Fix error handling when power-up failed VUL-0: CVE-2024-50175: kernel: media: qcom: camss: Remove use_count guard in stop_streaming VUL-0: CVE-2024-50210: kernel: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() VUL-0: CVE-2024-50198: kernel: iio: light: veml6030: fix IIO device retrieval from embedded device VUL-0: CVE-2024-50195: kernel: posix-clock: Fix missing timespec64 check in pc_clock_settime() VUL-0: CVE-2024-50201: kernel: drm/radeon: Fix encoder->possible_clones VUL-0: CVE-2024-50189: kernel: HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() VUL-0: CVE-2024-50192: kernel: irqchip/gic-v4: Don't allow a VMOVP on a dying VPE VUL-0: CVE-2024-50188: kernel: net: phy: dp83869: fix memory corruption when enabling fiber VUL-0: CVE-2024-50187: kernel: drm/vc4: Stop the active perfmon before being destroyed VUL-0: CVE-2024-50186: kernel: net: explicitly clear the sk pointer, when pf->create fails VUL-0: CVE-2024-50194: kernel: arm64: probes: Fix uprobes for big-endian kernels VUL-0: CVE-2024-50196: kernel: pinctrl: ocelot: fix system hang on level based interrupts VUL-0: CVE-2024-50209: kernel: RDMA/bnxt_re: Add a check for memory allocation VUL-0: CVE-2024-50177: kernel: drm/amd/display: fix a UBSAN warning in DML2.1 VUL-0: CVE-2024-50208: kernel: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages turbostat: fails with error "open failed: Too many open files" on large systems VUL-0: CVE-2024-50179: kernel: ceph: remove the incorrect Fw reference check when dirtying pages VUL-0: CVE-2024-50180: kernel: fbdev: sisfb: Fix strbuf array overflow VUL-0: CVE-2024-50181: kernel: clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D VUL-0: CVE-2024-50182: kernel: secretmem: disable memfd_secret() if arch cannot set direct map VUL-0: CVE-2024-50183: kernel: scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance VUL-0: CVE-2024-42102: kernel: revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" VUL-0: CVE-2024-50184: kernel: virtio_pmem: Check device status before requesting flush VUL-0: CVE-2024-50235: kernel: wifi: cfg80211: clear wdev->cqm_config pointer on free VUL-0: CVE-2024-50216: kernel: xfs: fix finding a last resort AG in xfs_filestream_pick_ag VUL-0: CVE-2024-50221: kernel: drm/amd/pm: Vangogh: Fix kernel memory out of bounds write VUL-0: CVE-2024-50224: kernel: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select VUL-0: CVE-2024-50215: kernel: nvmet-auth: assign dh_key to NULL after kfree_sensitive VUL-0: CVE-2024-50218: kernel: ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow VUL-0: CVE-2024-50225: kernel: btrfs: fix error propagation of split bios VUL-0: CVE-2024-50249: kernel: ACPI: CPPC: Make rmw_lock a raw_spin_lock VUL-0: CVE-2024-50252: kernel: mlxsw: spectrum_ipip: fix memory leak when changing remote IPv6 address VUL-0: CVE-2024-50245: kernel: fs/ntfs3: fix possible deadlock in mi_read VUL-0: REJECTED: CVE-2024-50228: kernel: mm: shmem: fix data-race in shmem_getattr() VUL-0: CVE-2024-50229: kernel: nilfs2: fix potential deadlock with newly created symlinks VUL-0: CVE-2024-50230: kernel: nilfs2: fix kernel bug due to missing clearing of checked flag VUL-0: CVE-2024-50246: kernel: fs/ntfs3: add rough attr alloc_size check VUL-0: CVE-2024-50231: kernel: iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() VUL-0: CVE-2024-50232: kernel: iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() VUL-0: CVE-2024-50233: kernel: staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() VUL-0: CVE-2024-50234: kernel: wifi: iwlegacy: Clear stale interrupts before resuming device VUL-0: CVE-2024-50236: kernel: wifi: ath10k: Fix memory leak in management tx VUL-0: CVE-2024-50237: kernel: wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower VUL-0: CVE-2024-50240: kernel: phy: qcom: qmp-usb: fix NULL-deref on runtime suspend VUL-0: CVE-2024-50248: kernel: ntfs3: add bounds checking to mi_enum_attr() VUL-0: CVE-2024-50250: kernel: fsdax: dax_unshare_iter needs to copy entire blocks VUL-0: CVE-2024-50255: kernel: Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs Update Broadcom Emulex lpfc driver for SLES15 SP7 to 14.4.0.5 and 14.4.0.6 VUL-0: CVE-2024-50257: kernel: netfilter: fix use-after-free in get_info() VUL-0: CVE-2024-50261: kernel: macsec: fix use-after-free while sending the offloading packet [15-SP5][Build :36349:dtb-armv7l] ctdb HA resource does not start after node fence VUL-0: CVE-2024-50205: kernel: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() No sound on Medion E15433 laptop with Alder Lake PCH-P High Definition Audio Controller No sound on Laptop after upgrade, sof-firmware-2024.09-150600.3.3.1.noarch VUL-0: CVE-2024-50169: kernel: vsock: Update rx_bytes on read_skb() kABI breakage in "struct bpf_verifier_state_list" since update 6.4.0-150600.23.14 Random reboot with virtualization on Ryzen 7000/8000 CPUs VUL-0: CVE-2023-52921: kernel: drm/amdgpu: fix possible UAF in amdgpu_cs_pass1() VUL-0: CVE-2024-50264: kernel: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans VUL-0: CVE-2024-50265: kernel: ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() VUL-0: CVE-2024-50267: kernel: USB: serial: io_edgeport: fix use after free in debug printk VUL-0: CVE-2024-50268: kernel: usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() VUL-0: CVE-2024-50269: kernel: usb: musb: sunxi: Fix accessing an released usb phy VUL-0: CVE-2024-50271: kernel: signal: restore the override_rlimit logic VUL-0: CVE-2024-50273: kernel: btrfs: reinitialize delayed ref list after deleting it from the list VUL-0: CVE-2024-50274: kernel: idpf: avoid vport access in idpf_get_link_ksettings VUL-0: CVE-2024-50275: kernel: arm64/sve: Discard stale CPU state when handling SVE traps VUL-0: CVE-2024-50276: kernel: net: vertexcom: mse102x: Fix possible double free of TX skb VUL-0: CVE-2024-50279: kernel: dm cache: fix out-of-bounds access to the dirty bitset when resizing VUL-0: CVE-2024-50282: kernel: drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() VUL-0: CVE-2024-50287: kernel: media: v4l2-tpg: prevent the risk of a division by zero VUL-0: CVE-2024-50289: kernel: media: av7110: fix a spectre vulnerability VUL-0: CVE-2024-50290: kernel: media: cx24116: prevent overflows on SNR calculus VUL-0: CVE-2024-50292: kernel: ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove VUL-0: CVE-2024-50295: kernel: net: arc: fix the device for dma_map_single/dma_unmap_single VUL-0: CVE-2024-50296: kernel: net: hns3: fix kernel crash when uninstalling driver VUL-0: CVE-2024-50298: kernel: net: enetc: allocate vf_state during PF probes VUL-0: CVE-2024-50301: kernel: security/keys: fix slab-out-of-bounds in key_task_permission VUL-0: CVE-2024-50302: kernel: HID: core: zero-initialize the report buffer VUL-0: CVE-2024-53043: kernel: mctp i2c: handle NULL header address VUL-0: CVE-2024-53045: kernel: ASoC: dapm: fix bounds checker error in dapm_widget_list_create VUL-0: CVE-2024-53042: kernel: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow() VUL-0: CVE-2024-53051: kernel: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability VUL-0: CVE-2024-53052: kernel: io_uring/rw: fix missing NOWAIT check for O_DIRECT start write VUL-0: CVE-2024-53055: kernel: wifi: iwlwifi: mvm: fix 6 GHz scan construction VUL-0: CVE-2024-53058: kernel: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data VUL-0: CVE-2024-53059: kernel: wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() VUL-0: CVE-2024-53060: kernel: drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported VUL-0: CVE-2024-53061: kernel: media: s5p-jpeg: prevent buffer overflows VUL-0: CVE-2024-53063: kernel: media: dvbdev: prevent the risk of out of memory access VUL-0: CVE-2024-53066: kernel: nfs: Fix KMSAN warning in decode_getfattr_attrs() VUL-0: CVE-2024-53068: kernel: firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() VUL-0: CVE-2024-53072: kernel: platform/x86/amd/pmc: Detect when STB is not available VUL-0: CVE-2024-53074: kernel: wifi: iwlwifi: mvm: don't leak a link on AP removal VUL-0: CVE-2024-53076: kernel: iio: gts-helper: Fix memory leaks for the error path of iio_gts_build_avail_scale_table() VUL-0: CVE-2024-53056: kernel: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() VUL-0: CVE-2024-53079: kernel: mm/thp: fix deferred split unqueue naming and locking VUL-0: CVE-2024-53081: kernel: media: ar0521: don't overflow when checking PLL values VUL-0: CVE-2024-53082: kernel: virtio_net: Add hash_key_length check VUL-0: CVE-2024-53085: kernel: tpm: Lock TPM chip in tpm_pm_suspend() first VUL-0: CVE-2024-53088: kernel: i40e: fix race condition by adding filter's intermediate sync state VUL-0: CVE-2024-53093: kernel: nvme-multipath: defer partition scanning VUL-0: CVE-2024-53094: kernel: RDMA/siw: Add sendpage_ok() check to disable MSG_SPLICE_PAGES VUL-0: CVE-2024-53095: kernel: smb: client: Fix use-after-free of network namespace. VUL-0: CVE-2024-53048: kernel: ice: fix crash on probe for DPLL enabled E810 LOM SLES15 SP6: Error Injection or hot unplug crypto device causes "unregister_netdevice: waiting for eth1 to become free, Usage count = 2" error on both dedicated and sr-iov crypto devices. VUL-0: CVE-2024-53096: kernel: mm: resolve faulty mmap_region() error path behaviour VUL-0: CVE-2024-53101: kernel: fs: fix uninitialized value issue in from_kuid and from_kgid VUL-0: CVE-2024-53100: kernel: nvme: tcp: avoid race between queue_lock lock and destroy VUL-0: CVE-2023-52922: kernel: can: bcm: Fix UAF in bcm_proc_show() unttached inode after power cut with orphan file feature enabled f2fs_gc occupies 100% cpu nodes huge page allocation when there are surplus page VUL-0: CVE-2024-53104: kernel: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format [PATCH] jbd2: avoid infinite transaction commit loop [PATCH] jbd2: avoid mount failed when commit block is partial submitted [PATCH] jbd2: make jbd2_journal_get_max_txn_bufs() internal [PATCH] jbd2: precompute number of transaction descriptor blocks [PATCH] jbd2: avoid memleak in jbd2_journal_write_metadata_buffer [PATCH] jbd2: fix potential data lost in recovering journal raced with synchronizing fs bdev [PATCH] jbd2: correct the printing of write_flags in jbd2_write_superblock() [PATCH] jbd2: fix soft lockup in journal_finish_inode_data_buffers() VUL-0: CVE-2024-53114: kernel: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client VUL-0: CVE-2024-53121: kernel: net/mlx5: fs, lock FTE when checking if active VUL-0: CVE-2024-53108: kernel: drm/amd/display: Adjust VSDB parser for replay feature VUL-0: CVE-2024-53106: kernel: ima: fix buffer overrun in ima_eventdigest_init_common VUL-0: CVE-2024-53110: kernel: vp_vdpa: fix id_table array not null terminated error VUL-0: CVE-2024-53112: kernel: ocfs2: uncache inode which has failed entering the group signal: Replace BUG_ON()s posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone cgroup/bpf: only cgroup v2 can be attached by bpf programs Crash at at fs/nfsd/xdr4.h VUL-0: CVE-2024-53138: kernel: net/mlx5e: kTLS, Fix incorrect page refcounting security important tiwai The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52778: mptcp: deal with large GSO size (bsc#1224948). - CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking (bsc#1232823). - CVE-2024-26596: net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events (bsc#1220355). - CVE-2024-26741: dccp/tcp: Unhash sk from ehash for tb2 alloc failure after check_estalblished() (bsc#1222587). - CVE-2024-26782: mptcp: fix double-free on socket dismantle (bsc#1222590). - CVE-2024-26953: net: esp: fix bad handling of pages from page_pool (bsc#1223656). - CVE-2024-27017: netfilter: nft_set_pipapo: walk over current view on netlink dump (bsc#1223733). - CVE-2024-35888: erspan: make sure erspan_base_hdr is present in skb->head (bsc#1224518). - CVE-2024-36000: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (bsc#1224548). - CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797). - CVE-2024-36883: net: fix out-of-bounds access in ops_init (bsc#1225725). - CVE-2024-36886: tipc: fix UAF in error path (bsc#1225730). - CVE-2024-36905: tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets (bsc#1225742). - CVE-2024-36927: ipv4: Fix uninit-value access in __ip_make_skb() (bsc#1225813). - CVE-2024-36954: tipc: fix a possible memleak in tipc_buf_append (bsc#1225764). - CVE-2024-36968: Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init() (bsc#1226130). - CVE-2024-38589: netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1226748). - CVE-2024-40914: mm/huge_memory: do not unpoison huge_zero_folio (bsc#1227842). - CVE-2024-41023: sched/deadline: Fix task_struct reference leak (bsc#1228430). - CVE-2024-41031: mm/filemap: skip to create PMD-sized page cache if needed (bsc#1228454). - CVE-2024-41082: nvme-fabrics: use reserved tag for reg read/write command (bsc#1228620). - CVE-2024-42102: Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" (bsc#1233132). - CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179). - CVE-2024-44995: net: hns3: fix a deadlock problem when config TC during resetting (bsc#1230231). - CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429). - CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456). - CVE-2024-46678: bonding: change ipsec_lock from spin lock to mutex (bsc#1230550). - CVE-2024-46680: Bluetooth: btnxpuart: Fix random crash seen while removing driver (bsc#1230557). - CVE-2024-46681: pktgen: use cpus_read_lock() in pg_net_init() (bsc#1230558). - CVE-2024-46721: pparmor: fix possible NULL pointer dereference (bsc#1230710) - CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801). - CVE-2024-46765: ice: protect XDP configuration with a mutex (bsc#1230807). - CVE-2024-46766: ice: move netif_queue_set_napi to rtnl-protected sections (bsc#1230762). - CVE-2024-46770: ice: Add netif_device_attach/detach into PF reset flow (bsc#1230763). - CVE-2024-46775: drm/amd/display: Validate function returns (bsc#1230774). - CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773). - CVE-2024-46800: sch/netem: fix use after free in netem_dequeue (bsc#1230827). - CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191). - CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197). - CVE-2024-46826: ELF: fix kernel.randomize_va_space double read (bsc#1231115). - CVE-2024-46831: net: microchip: vcap: Fix use-after-free error in kunit test (bsc#1231117). - CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096). - CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105). - CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094). - CVE-2024-46843: scsi: ufs: core: Remove SCSI host only if added (bsc#1231100). - CVE-2024-46854: net: dpaa: Pad packets to ETH_ZLEN (bsc#1231084). - CVE-2024-46855: netfilter: nft_socket: fix sk refcount leaks (bsc#1231085). - CVE-2024-46857: net/mlx5: Fix bridge mode operations when there are no VFs (bsc#1231087). - CVE-2024-46870: drm/amd/display: Disable DMCUB timeout for DCN35 (bsc#1231435). - CVE-2024-47658: crypto: stm32/cryp - call finalize with bh disabled (bsc#1231436). - CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439). - CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442). - CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673). - CVE-2024-47679: vfs: fix race between evice_inodes() and find_inode() and iput() (bsc#1231930). - CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987). - CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998). - CVE-2024-47687: vdpa/mlx5: Fix invalid mr resource destroy (bsc#1232003). - CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857). - CVE-2024-47701: ext4: avoid OOB when system.data xattr changes underneath the filesystem (bsc#1231920). - CVE-2024-47703: bpf, lsm: add check for BPF LSM return value (bsc#1231946). - CVE-2024-47704: drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944). - CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872). - CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942). - CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935). - CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049). - CVE-2024-47727: x86/tdx: Fix "in-kernel MMIO" check (bsc#1232116). - CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075). - CVE-2024-47731: drivers/perf: Fix ali_drw_pmu driver interrupt status clearing (bsc#1232117). - CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124). - CVE-2024-47741: btrfs: fix race setting file private on concurrent lseek using same fd (bsc#1231869). - CVE-2024-47745: mm: call the security_mmap_file() LSM hook in remap_file_pages() (bsc#1232135). - CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145). - CVE-2024-47752: media: mediatek: vcodec: Fix H264 stateless decoder smatch warning (bsc#1232130). - CVE-2024-47753: media: mediatek: vcodec: Fix VP8 stateless decoder smatch warning (bsc#1231868). - CVE-2024-47754: media: mediatek: vcodec: Fix H264 multi stateless decoder smatch warning (bsc#1232131). - CVE-2024-49852: scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (bsc#1232819). - CVE-2024-49864: rxrpc: Fix a race between socket set up and I/O thread creation (bsc#1232256). - CVE-2024-49867: btrfs: wait for fixup workers before stopping cleaner kthread during umount (bsc#1232262). - CVE-2024-49868: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion (bsc#1232272). - CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201). - CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200). - CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199). - CVE-2024-49888: bpf: Fix a sdiv overflow issue (bsc#1232208). - CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217). - CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element's default to 1 (bsc#1232220). - CVE-2024-49894: drm/amd/display: Fix index out of bounds in degamma hardware format translation (bsc#1232354). - CVE-2024-49895: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (bsc#1232352). - CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221). - CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355). - CVE-2024-49898: drm/amd/display: Check null-initialized variables (bsc#1232222). - CVE-2024-49899: drm/amd/display: Initialize denominators' default to 1 (bsc#1232358). - CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305). - CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332). - CVE-2024-49907: drm/amd/display: Check null pointers before using dc->clk_mgr (bsc#1232334). - CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337). - CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366). - CVE-2024-49912: drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' (bsc#1232367). - CVE-2024-49913: drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (bsc#1232307). - CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx->plane_state in (bsc#1232369). - CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw (bsc#1231965). - CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967). - CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968). - CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313). - CVE-2024-49921: drm/amd/display: Check null pointers before used (bsc#1232371). - CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374). - CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361). - CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core (bsc#1232224) - CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368). - CVE-2024-49934: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name (bsc#1232387). - CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424). - CVE-2024-49944: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start (bsc#1232166). - CVE-2024-49945: net/ncsi: Disable the ncsi work before freeing the associated structure (bsc#1232165). - CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164). - CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160). - CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159). - CVE-2024-49952: netfilter: nf_tables: prevent nf_skb_duplicated corruption (bsc#1232157). - CVE-2024-49953: net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice (bsc#1232156). - CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155). - CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151). - CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149). - CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395). - CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140). - CVE-2024-49968: ext4: filesystems without casefold feature cannot be mounted with siphash (bsc#1232264). - CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519). - CVE-2024-49972: drm/amd/display: Deallocate DML memory if allocation fails (bsc#1232315). - CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105). - CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383). - CVE-2024-49983: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free (bsc#1232096). - CVE-2024-49986: platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors (bsc#1232093). - CVE-2024-49987: bpftool: Fix undefined behavior in qsort(NULL, 0, ...) (bsc#1232258). - CVE-2024-49989: drm/amd/display: fix double free issue during amdgpu module unload (bsc#1232483). - CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282). - CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316). - CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432). - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089). - CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085). - CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084). - CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083). - CVE-2024-50003: drm/amd/display: Fix system hang while resume with TBT monitor (bsc#1232385). - CVE-2024-50004: drm/amd/display: update DML2 policy EnhancedPrefetchScheduleAccelerationFinal DCN35 (bsc#1232396). - CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442). - CVE-2024-50009: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value (bsc#1232318). - CVE-2024-50012: cpufreq: Avoid a bad reference count on CPU node (bsc#1232386). - CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446). - CVE-2024-50015: ext4: dax: fix overflowing extents beyond inode size when partially writing (bsc#1232079). - CVE-2024-50020: ice: Fix improper handling of refcount in ice_sriov_set_msix_vec_count() (bsc#1231989). - CVE-2024-50021: ice: Fix improper handling of refcount in ice_dpll_init_rclk_pins() (bsc#1231957). - CVE-2024-50022: device-dax: correct pgoff align in dax_set_mapping() (bsc#1231956). - CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954). - CVE-2024-50027: thermal: core: Free tzp copy along with the thermal zone (bsc#1231951). - CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950). - CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914). - CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392). - CVE-2024-50040: igb: Do not bring the device up after non-fatal error (bsc#1231908). - CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907). - CVE-2024-50042: ice: Fix increasing MSI-X on VF (bsc#1231906). - CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903). - CVE-2024-50046: NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902). - CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418). - CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345). - CVE-2024-50060: io_uring: check if we need to reschedule during overflow flush (bsc#1232417). - CVE-2024-50063: bpf: Prevent tail call between progs attached to different hooks (bsc#1232435). - CVE-2024-50064: zram: free secondary algorithms names (bsc#1231901). - CVE-2024-50080: ublk: do not allow user copy for unprivileged device (bsc#1232502). - CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501). - CVE-2024-50082: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race (bsc#1232500). - CVE-2024-50084: net: microchip: vcap api: Fix memory leaks in vcap_api_encode_rule_test() (bsc#1232494). - CVE-2024-50087: btrfs: fix uninitialized pointer free on read_alloc_one_name() error (bsc#1232499). - CVE-2024-50088: btrfs: fix uninitialized pointer free in add_inode_ref() (bsc#1232498). - CVE-2024-50098: scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down (bsc#1232881). - CVE-2024-50110: xfrm: fix one more kernel-infoleak in algo dumping (bsc#1232885). - CVE-2024-50115: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory (bsc#1232919). - CVE-2024-50124: Bluetooth: ISO: Fix UAF on iso_sock_timeout (bsc#1232926). - CVE-2024-50125: Bluetooth: SCO: Fix UAF on sco_sock_timeout (bsc#1232928). - CVE-2024-50127: net: sched: fix use-after-free in taprio_change() (bsc#1232907). - CVE-2024-50128: net: wwan: fix global oob in wwan_rtnl_policy (bsc#1232905). - CVE-2024-50130: netfilter: bpf: must hold reference on net namespace (bsc#1232894). - CVE-2024-50138: bpf: Use raw_spinlock_t in ringbuf (bsc#1232935). - CVE-2024-50139: KVM: arm64: Fix shift-out-of-bounds bug (bsc#1233062). - CVE-2024-50145: octeon_ep: add SKB allocation failures handling in __octep_oq_process_rx() (bsc#1233044). - CVE-2024-50153: scsi: target: core: Fix null-ptr-deref in target_alloc_device() (bsc#1233061). - CVE-2024-50154: tcp/dccp: Do not use timer_pending() in reqsk_queue_unlink() (bsc#1233070). - CVE-2024-50166: fsl/fman: Fix refcount handling of fman-related devices (bsc#1233050). - CVE-2024-50167: be2net: fix potential memory leak in be_xmit() (bsc#1233049). - CVE-2024-50169: vsock: Update rx_bytes on read_skb() (bsc#1233320). - CVE-2024-50171: net: systemport: fix potential memory leak in bcm_sysport_xmit() (bsc#1233057). - CVE-2024-50177: drm/amd/display: fix a UBSAN warning in DML2.1 (bsc#1233115). - CVE-2024-50182: secretmem: disable memfd_secret() if arch cannot set direct map (bsc#1233129). - CVE-2024-50184: virtio_pmem: Check device status before requesting flush (bsc#1233135). - CVE-2024-50186: net: explicitly clear the sk pointer, when pf->create fails (bsc#1233110). - CVE-2024-50192: irqchip/gic-v4: Do not allow a VMOVP on a dying VPE (bsc#1233106). - CVE-2024-50225: btrfs: fix error propagation of split bios (bsc#1233193). - CVE-2024-50228: mm: shmem: fix data-race in shmem_getattr() (bsc#1233204). - CVE-2024-50230: nilfs2: fix kernel bug due to missing clearing of checked flag (bsc#1233206). - CVE-2024-50245: fs/ntfs3: Fix possible deadlock in mi_read (bsc#1233203). - CVE-2024-50246: fs/ntfs3: Add rough attr alloc_size check (bsc#1233207). - CVE-2024-50250: fsdax: dax_unshare_iter needs to copy entire blocks (bsc#1233226). - CVE-2024-50252: mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address (bsc#1233201). - CVE-2024-50257: netfilter: Fix use-after-free in get_info() (bsc#1233244). - CVE-2024-50261: macsec: Fix use-after-free while sending the offloading packet (bsc#1233253). - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1233453). - CVE-2024-50271: signal: restore the override_rlimit logic (bsc#1233460). - CVE-2024-50273: btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1233462). - CVE-2024-50274: idpf: avoid vport access in idpf_get_link_ksettings (bsc#1233463). - CVE-2024-50275: arm64/sve: Discard stale CPU state when handling SVE traps (bsc#1233464). - CVE-2024-50276: net: vertexcom: mse102x: Fix possible double free of TX skb (bsc#1233465). - CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing (bsc#1233468). - CVE-2024-50289: media: av7110: fix a spectre vulnerability (bsc#1233478). - CVE-2024-50295: net: arc: fix the device for dma_map_single/dma_unmap_single (bsc#1233484). - CVE-2024-50296: net: hns3: fix kernel crash when uninstalling driver (bsc#1233485). - CVE-2024-50298: net: enetc: allocate vf_state during PF probes (bsc#1233487). - CVE-2024-53042: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow() (bsc#1233540). - CVE-2024-53043: mctp i2c: handle NULL header address (bsc#1233523). - CVE-2024-53048: ice: fix crash on probe for DPLL enabled E810 LOM (bsc#1233721). - CVE-2024-53051: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability (bsc#1233547). - CVE-2024-53055: wifi: iwlwifi: mvm: fix 6 GHz scan construction (bsc#1233550). - CVE-2024-53056: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() (bsc#1233568). - CVE-2024-53058: net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (bsc#1233552). - CVE-2024-53079: mm/thp: fix deferred split unqueue naming and locking (bsc#1233570). - CVE-2024-53082: virtio_net: Add hash_key_length check (bsc#1233573). - CVE-2024-53095: smb: client: Fix use-after-free of network namespace (bsc#1233642). - CVE-2024-53110: vp_vdpa: fix id_table array not null terminated error (bsc#1234085). - CVE-2024-53121: net/mlx5: fs, lock FTE when checking if active (bsc#1234078). - CVE-2024-53138: net/mlx5e: kTLS, Fix incorrect page refcounting (bsc#1234223). The following non-security bugs were fixed: - 9p: explicitly deny setlease attempts (git-fixes). - ACPI: CPPC: Add support for setting EPP register in FFH (stable-fixes). - ACPI: CPPC: Fix _CPC register setting issue (git-fixes). - ACPI: CPPC: Make rmw_lock a raw_spin_lock (git-fixes). - ACPI: EC: Do not release locks during operation region accesses (stable-fixes). - ACPI: PAD: fix crash in exit_round_robin() (stable-fixes). - ACPI: PRM: Clean up guid type in struct prm_handler_info (git-fixes). - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes). - ACPI: battery: Fix possible crash when unregistering a battery hook (git-fixes). - ACPI: battery: Simplify battery hook locking (stable-fixes). - ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes). - ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes). - ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18 (stable-fixes). - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes). - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes). - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes). - ACPICA: iasl: handle empty connection_node (stable-fixes). - ALSA/hda: intel-sdw-acpi: cleanup sdw_intel_scan_controller (stable-fixes). - ALSA/hda: intel-sdw-acpi: fetch fwnode once in sdw_intel_scan_controller() (stable-fixes). - ALSA/hda: intel-sdw-acpi: simplify sdw-master-count property read (stable-fixes). - ALSA: 6fire: Release resources at card release (git-fixes). - ALSA: Reorganize kerneldoc parameter names (stable-fixes). - ALSA: ac97: bus: Fix the mistake in the comment (git-fixes). - ALSA: asihpi: Fix potential OOB array access (stable-fixes). - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (git-fixes). - ALSA: core: add isascii() check to card ID generator (stable-fixes). - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes). - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (git-fixes). - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes). - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes). - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes). - ALSA: hda/conexant: fix Z60MR100 startup pop issue (stable-fixes). - ALSA: hda/conexant: fix some typos (stable-fixes). - ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes). - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (bsc#1219803). - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue (stable-fixes). - ALSA: hda/realtek - update set GPIO3 to default for Thinkpad with ALC1318 (git-fixes). - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes). - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes). - ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes). - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (stable-fixes). - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (stable-fixes). - ALSA: hda/realtek: Apply quirk for Medion E15433 (bsc#1233298). - ALSA: hda/realtek: Enable mic on Vaio VJFH52 (stable-fixes). - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (stable-fixes). - ALSA: hda/realtek: Enable speaker pins for Medion E15443 platform (bsc#1233298). - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (bsc#1233298). - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes). - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes). - ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes). - ALSA: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes). - ALSA: hda/realtek: Refactor and simplify Samsung Galaxy Book init (stable-fixes). - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (stable-fixes). - ALSA: hda/realtek: Update ALC225 depop procedure (git-fixes). - ALSA: hda/realtek: Update ALC256 depop procedure (git-fixes). - ALSA: hda/realtek: Update default depop procedure (git-fixes). - ALSA: hda/realtek: fix mute/micmute LED for HP mt645 G8 (stable-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (stable-fixes). - ALSA: hda/realtek: tas2781: Fix ROG ALLY X audio (stable-fixes). - ALSA: hda/tas2781: Add new quirk for Lenovo Y990 Laptop (stable-fixes). - ALSA: hda/tas2781: Add new quirk for Lenovo, ASUS, Dell projects (stable-fixes). - ALSA: hda/tas2781: select CRC32 instead of CRC32_SARWATE (git-fixes). - ALSA: hda: Poll jack events for LS7A HD-Audio (stable-fixes). - ALSA: hda: Show the codec quirk info at probing (stable-fixes). - ALSA: hda: Sound support for HP Spectre x360 16 inch model 2024 (stable-fixes). - ALSA: hda: tas2781: Fix missing setup at runtime PM (bsc#1230132). - ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes). - ALSA: ice1712: Remove redundant code in stac9460_dac_vol_put (stable-fixes). - ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes). - ALSA: line6: update contact information (stable-fixes). - ALSA: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes). - ALSA: pcm: Add sanity NULL check for the default mmap fault handler (stable-fixes). - ALSA: silence integer wrapping warning (stable-fixes). - ALSA: ump: Fix evaluation of MIDI 1.0 FB info (git-fixes). - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (git-fixes). - ALSA: usb-audio: Add Pioneer DJ/AlphaTheta DJM-A9 Mixer (stable-fixes). - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes). - ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes). - ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes). - ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes). - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (bsc#1232768). - ALSA: usb-audio: Add quirks for Dell WD19 dock (stable-fixes). - ALSA: usb-audio: Define macros for quirk table entries (stable-fixes). - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (stable-fixes). - ALSA: usb-audio: Fix a DMA to stack memory bug (git-fixes). - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (stable-fixes). - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (git-fixes). - ALSA: usb-audio: Make mic volume workarounds globally applicable (stable-fixes). - ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes). - ALSA: usb-audio: Use snprintf instead of sprintf in build_mixer_unit_ctl (stable-fixes). - ALSA: usb-audio: add mixer mapping for Corsair HS80 (stable-fixes). - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (git-fixes). - ASoC: Intel: avs: da7219: Remove suspend_pre() and resume_post() (stable-fixes). - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (stable-fixes). - ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (stable-fixes). - ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (git-fixes). - ASoC: Intel: sst: Support LPE0F28 ACPI HID (stable-fixes). - ASoC: SOF: Add i2s bt dai configuration support for AMD platforms (bsc#1233305). - ASoC: SOF: Add support for configuring PDM interface from topology (bsc#1233305). - ASoC: SOF: Deprecate invalid enums in IPC3 (bsc#1233305). - ASoC: SOF: IPC4: get pipeline priority from topology (bsc#1233305). - ASoC: SOF: IPC4: synchronize fw_config_params with fw definitions (bsc#1233305). - ASoC: SOF: Refactor sof_i2s_tokens reading to update acpbt dai (bsc#1233305). - ASoC: SOF: Rename amd_bt sof_dai_type (bsc#1233305). - ASoC: SOF: Wire up buffer flags (bsc#1233305). - ASoC: SOF: add alignment for topology header file struct definition (bsc#1233305). - ASoC: SOF: align topology header file with sof topology header (bsc#1233305). - ASoC: SOF: ipc3-topology: Convert the topology pin index to ALH dai index (git-fixes). - ASoC: SOF: ipc3-topology: fix resource leaks in sof_ipc3_widget_setup_comp_dai() (git-fixes). - ASoC: SOF: ipc4-control: Add support for ALSA enum control (bsc#1233305). - ASoC: SOF: ipc4-control: Add support for ALSA switch control (bsc#1233305). - ASoC: SOF: ipc4-mtrace: move debug slot related definitions to header.h (bsc#1233305). - ASoC: SOF: ipc4-topology: Add deep buffer size to debug prints (bsc#1233305). - ASoC: SOF: ipc4-topology: Add definition for generic switch/enum control (bsc#1233305). - ASoC: SOF: ipc4-topology: Add module ID print during module set up (bsc#1233305). - ASoC: SOF: ipc4-topology: Helper to find an swidget by module/instance id (bsc#1233305). - ASoC: SOF: ipc4-topology: Only handle dai_config with HW_PARAMS for ChainDMA (bsc#1233305). - ASoC: SOF: ipc4-topology: change chain_dma handling in dai_config (bsc#1233305). - ASoC: SOF: ipc4-topology: export sof_ipc4_copier_is_single_format (bsc#1233305). - ASoC: SOF: ipc4-topology: set config_length based on device_count (bsc#1233305). - ASoC: SOF: ipc4: Add data struct for module notification message from firmware (bsc#1233305). - ASoC: SOF: ipc4: Add new message type: SOF_IPC4_GLB_LOAD_LIBRARY_PREPARE (bsc#1233305). - ASoC: SOF: sof-client-probes-ipc4: Set param_size extension bits (git-fixes). - ASoC: SOF: topology: Parse DAI type token for dspless mode (bsc#1233305). - ASoC: SOF: topology: dynamically allocate and store DAI widget->private (bsc#1233305). - ASoC: amd: yc: Add quirk for ASUS Vivobook S15 M3502RA (stable-fixes). - ASoC: amd: yc: Add quirk for HP Dragonfly pro one (stable-fixes). - ASoC: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry (git-fixes). - ASoC: amd: yc: Fix non-functional mic on ASUS E1404FA (stable-fixes). - ASoC: amd: yc: Support dmic on another model of Lenovo Thinkpad E14 Gen 6 (stable-fixes). - ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022 (stable-fixes). - ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is uninitialized (git-fixes). - ASoC: audio-graph-card2: Purge absent supplies for device tree nodes (stable-fixes). - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (git-fixes). - ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes). - ASoC: codecs: rt5640: Always disable IRQs from rt5640_cancel_work() (stable-fixes). - ASoC: codecs: wsa883x: Handle reading version failure (stable-fixes). - ASoC: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes). - ASoC: dapm: fix bounds checker error in dapm_widget_list_create (git-fixes). - ASoC: fsl_micfil: Add sample rate constraint (stable-fixes). - ASoC: fsl_micfil: fix regmap_write_bits usage (git-fixes). - ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit (stable-fixes). - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes). - ASoC: max98388: Fix missing increment of variable slot_found (git-fixes). - ASoC: mediatek: mt8188-mt6359: Remove hardcoded dmic codec (git-fixes). - ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). - ASoC: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes). - ASoC: rt722-sdca: Remove logically deadcode in rt722-sdca.c (git-fixes). - ASoC: rt722-sdca: increase clk_stop_timeout to fix clock stop issue (stable-fixes). - ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (git-fixes). - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (stable-fixes). - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (stable-fixes). - ASoC: tas2781: Add new driver version for tas2563 & tas2781 qfn chip (stable-fixes). - ASoC: tas2781: Use of_property_read_reg() (stable-fixes). - Bluetooth: Call iso_exit() on module unload (git-fixes). - Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes). - Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync (git-fixes). - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes). - Bluetooth: Remove debugfs directory on module init failure (git-fixes). - Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes). - Bluetooth: btintel: Direct exception event to bluetooth stack (git-fixes). - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - Bluetooth: btnxpuart: Resolve TX timeout error in power save stress test (bsc#1230557) - Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122 (stable-fixes). - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes). - Bluetooth: fix use-after-free in device_for_each_child() (git-fixes). - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes). - Bluetooth: hci_core: Fix calling mgmt_device_connected (git-fixes). - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes). - Documentation: kgdb: Correct parameter error (git-fixes). - HID: Ignore battery for all ELAN I2C-HID devices (stable-fixes). - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes). - HID: core: zero-initialize the report buffer (git-fixes). - HID: i2c-hid: Remove I2C_HID_QUIRK_SET_PWR_WAKEUP_DEV quirk (stable-fixes). - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (stable-fixes). - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (stable-fixes). - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (stable-fixes). - HID: multitouch: Add support for B2402FVA track point (stable-fixes). - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes). - HID: multitouch: Add support for lenovo Y9000P Touchpad (stable-fixes). - HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes). - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (git-fixes). - HID: wacom: fix when get product name maybe null pointer (git-fixes). - Input: adp5589-keys - fix NULL pointer dereference (git-fixes). - Input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes). - Input: edt-ft5x06 - fix regmap leak when probe fails (git-fixes). - Input: hideep - add missing dependency on REGMAP_I2C (git-fixes). - Input: hycon-hy46xx - add missing dependency on REGMAP_I2C (git-fixes). - Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (stable-fixes). - Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (stable-fixes). - Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (stable-fixes). - Input: xpad - add GameSir T4 Kaleid Controller support (git-fixes). - Input: xpad - add GameSir VID for Xbox One controllers (git-fixes). - Input: xpad - add support for 8BitDo Ultimate 2C Wireless Controller (git-fixes). - Input: xpad - add support for MSI Claw A1M (git-fixes). - Input: xpad - add support for Machenike G5 Pro Controller (git-fixes). - Input: xpad - fix support for some third-party controllers (git-fixes). - Input: xpad - sort xpad_device by vendor and product ID (git-fixes). - Input: xpad - spelling fixes for "Xbox" (git-fixes). - KVM: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes). - KVM: PPC: Book3S HV: Avoid returning to nested hypervisor on pending doorbells (bsc#1215199). - KVM: PPC: Book3S HV: Stop using vc->dpdes for nested KVM guests (bsc#1215199). - KVM: PPC: Book3S HV: remove unused varible (bsc#1194869). - KVM: SEV-ES: Fix svm_get_msr()/svm_set_msr() for KVM_SEV_ES_INIT guests (bsc#1232207). - KVM: SEV-ES: Prevent MSR access post VMSA encryption (bsc#1232207). - KVM: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (git-fixes). - KVM: Use dedicated mutex to protect kvm_usage_count to avoid deadlock (git-fixes). - KVM: VMX: Also clear SGX EDECCSSA in KVM CPU caps when SGX is disabled (git-fixes). - KVM: VMX: Set PFERR_GUEST_{FINAL,PAGE}_MASK if and only if the GVA is valid (git-fixes). - KVM: Write the per-page "segment" when clearing (part of) a guest page (git-fixes). - KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232626). - KVM: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query (git-fixes bsc#1231276). - KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232623). - KVM: x86/mmu: Skip emulation on page fault iff 1+ SPs were unprotected (git-fixes). - KVM: x86/mmu: Trigger unprotect logic only on write-protection page faults (git-fixes). - KVM: x86: Dedup fastpath MSR post-handling logic (git-fixes). - KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits (git-fixes). - KVM: x86: Exit to userspace if fastpath triggers one on instruction skip (git-fixes). - KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode() (git-fixes). - KVM: x86: Re-enter guest if WRMSR(X2APIC_ICR) fastpath is successful (git-fixes). - KVM: x86: Re-split x2APIC ICR into ICR+ICR2 for AMD (x2AVIC) (git-fixes). - NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes). - NFS: remove revoked delegation from server's delegation list (git-fixes). - NFSD: Fix NFSv4's PUTPUBFH operation (git-fixes). - NFSD: Mark filecache "down" if init fails (git-fixes). - NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016). - NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes). - PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes). - PCI: Add T_PVPERL macro (git-fixes). - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes). - PCI: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019). - PCI: Fix reset_method_store() memory leak (git-fixes). - PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes). - PCI: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf() (git-fixes). - PCI: j721e: Deassert PERST# after a delay of PCIE_T_PVPERL_MS milliseconds (git-fixes). - PCI: keystone: Add link up check to ks_pcie_other_map_bus() (git-fixes). - PCI: keystone: Set mode as Root Complex for "ti,keystone-pcie" compatible (git-fixes). - PCI: rockchip-ep: Fix address translation unit programming (git-fixes). - RAS/AMD/ATL: Add amd_atl pr_fmt() prefix (jsc#PED-10559). - RAS/AMD/ATL: Expand helpers for adding and removing base and hole (jsc#PED-10559). - RAS/AMD/ATL: Implement DF 4.5 NP2 denormalization (jsc#PED-10559). - RAS/AMD/ATL: Read DRAM hole base early (jsc#PED-10559). - RAS/AMD/ATL: Validate address map when information is gathered (jsc#PED-10559). - RDMA/bnxt_re: Add a check for memory allocation (git-fixes) - RDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop (git-fixes) - RDMA/bnxt_re: Change the sequence of updating the CQ toggle value (git-fixes) - RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (git-fixes) - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes) - RDMA/bnxt_re: Fix a possible memory leak (git-fixes) - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes) - RDMA/bnxt_re: Fix incorrect dereference of srq in async event (git-fixes) - RDMA/bnxt_re: Fix out of bound check (git-fixes) - RDMA/bnxt_re: Fix the GID table length (git-fixes) - RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes) - RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes) - RDMA/bnxt_re: Return more meaningful error (git-fixes) - RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes) - RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes) - RDMA/cxgb4: Dump vendor specific QP details (git-fixes) - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes) - RDMA/hns: Add mutex_destroy() (git-fixes) - RDMA/hns: Disassociate mmap pages for all uctx when HW is being reset (git-fixes) - RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg() (git-fixes) - RDMA/hns: Fix an AEQE overflow error caused by untimely update of eq_db_ci (git-fixes) - RDMA/hns: Fix cpu stuck caused by printings during reset (git-fixes) - RDMA/hns: Fix different dgids mapping to the same dip_idx (git-fixes) - RDMA/hns: Fix flush cqe error when racing with destroy qp (git-fixes) - RDMA/hns: Fix out-of-order issue of requester when setting FENCE (git-fixes) - RDMA/hns: Use dev_* printings in hem code instead of ibdev_* (git-fixes) - RDMA/hns: Use macro instead of magic number (git-fixes) - RDMA/irdma: Fix misspelling of "accept*" (git-fixes) - RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes) - RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes). - RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes). - RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults (git-fixes) - RDMA/mlx5: Move events notifier registration to be after device registration (git-fixes) - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes) - RDMA/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes). - RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes) - RDMA/rxe: Fix the qp flush warnings in req (git-fixes) - RDMA/rxe: Set queue pair cur_qp_state when being queried (git-fixes) - RDMA/siw: Add sendpage_ok() check to disable MSG_SPLICE_PAGES (git-fixes) - RDMA/srpt: Make slab cache names unique (git-fixes) - SUNRPC: Fix integer overflow in decode_rc_list() (git-fixes). - SUNRPC: Fixup gss_status tracepoint error output (git-fixes). - SUNRPC: Remove BUG_ON call sites (git-fixes). - SUNRPC: clnt.c: Remove misleading comment (git-fixes). - USB: appledisplay: close race between probe and completion handler (git-fixes). - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (git-fixes). - USB: chaoskey: fail open after removal (git-fixes). - USB: gadget: dummy-hcd: Fix "task hung" problem (git-fixes). - USB: misc: cypress_cy7c63: check for short transfer (git-fixes). - USB: misc: yurex: fix race between read and write (git-fixes). - USB: serial: ftdi_sio: Fix atomicity violation in get_serial_info() (git-fixes). - USB: serial: io_edgeport: fix use after free in debug printk (git-fixes). - USB: serial: option: add Fibocom FG132 0x0112 composition (stable-fixes). - USB: serial: option: add Quectel RG650V (stable-fixes). - USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes). - USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes). - USB: serial: qcserial: add support for Sierra Wireless EM86xx (stable-fixes). - Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450). - accel/qaic: Fix the for loop used to walk SG table (git-fixes). - accel: Use XArray instead of IDR for minors (jsc#PED-11580). - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (git-fixes). - ad7780: fix division by zero in ad7780_write_raw() (git-fixes). - aes-gcm-p10: Use the correct bit to test for P10 (bsc#1232704). - amd-pstate: Set min_perf to nominal_perf for active mode performance gov (git-fixes). - apparmor: fix 'Do simple duplicate message elimination' (git-fixes). - apparmor: test: Fix memory leak for aa_unpack_strdup() (git-fixes). - apparmor: use kvfree_sensitive to free data->data (git-fixes). - arm64: Subscribe Microsoft Azure Cobalt 100 to erratum 3194386 (git-fixes) - arm64: cputype: Add Neoverse-N3 definitions (git-fixes) - arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (git-fixes) - arm64: dts: freescale: imx8mm-verdin: Fix SD regulator startup delay (git-fixes) - arm64: dts: freescale: imx8mp-verdin: Fix SD regulator startup delay (git-fixes) - arm64: dts: imx8-ss-vpu: Fix imx8qm VPU IRQs (git-fixes) - arm64: dts: imx8qxp: Add VPU subsystem file (git-fixes) - arm64: dts: imx93: add nvmem property for eqos (git-fixes) - arm64: dts: imx93: add nvmem property for fec1 (git-fixes) - arm64: dts: imx93: add ocotp node (git-fixes) - arm64: dts: rockchip: Add DTS for FriendlyARM NanoPi R2S Plus (git-fixes) - arm64: dts: rockchip: Correct GPIO polarity on brcm BT nodes (git-fixes) - arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (git-fixes) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (git-fixes) - arm64: dts: rockchip: Fix bluetooth properties on rk3566 box demo (git-fixes) - arm64: dts: rockchip: Fix reset-gpios property on brcm BT nodes (git-fixes) - arm64: dts: rockchip: Fix rt5651 compatible value on (git-fixes) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610 (git-fixes) - arm64: dts: rockchip: Fix wakeup prop names on PineNote BT node (git-fixes) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma (git-fixes) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (git-fixes) - arm64: dts: rockchip: Remove undocumented supports-emmc property (git-fixes) - arm64: dts: rockchip: fix i2c2 pinctrl-names property on (git-fixes) - arm64: dts: rockchip: remove num-slots property from (git-fixes) - arm64: dts: rockchip: remove orphaned pinctrl-names from pinephone (git-fixes) - arm64: errata: Enable the AC03_CPU_38 workaround for ampere1a (git-fixes). - arm64: errata: Expand speculative SSBS workaround once more (git-fixes) - arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes) - arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (git-fixes) - arm64: fix selection of HAVE_DYNAMIC_FTRACE_WITH_ARGS (git-fixes). - arm64: probes: Fix simulate_ldr*_literal() (git-fixes) - arm64: probes: Fix uprobes for big-endian kernels (git-fixes) - arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes) - arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (git-fixes) - arm64: smccc: replace custom COUNT_ARGS() & CONCATENATE() (git-fixes) - arm64: tegra: Move AGX Orin nodes to correct location (git-fixes) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (git-fixes) - ata: libata: Set DID_TIME_OUT for commands that actually timed out (git-fixes). - ata: libata: avoid superfluous disk spin down + spin up during hibernation (git-fixes). - audit: do not WARN_ON_ONCE(!current->mm) in audit_exe_compare() (git-fixes). - audit: do not take task_lock() in audit_exe_compare() code path (git-fixes). - block: print symbolic error name instead of error code (bsc#1231872). - block: sed-opal: add ioctl IOC_OPAL_SET_SID_PW (bsc#1229677). - bnxt_en: Cap the size of HWRM_PORT_PHY_QCFG forwarded response (git-fixes). - bnxt_en: Fix error recovery for 5760X (P7) chips (git-fixes). - bnxt_en: Fix the PCI-AER routines (git-fixes). - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes). - bnxt_en: refactor reset close code (git-fixes). - bpf, arm64: Fix address emission with tag-based KASAN enabled (git-fixes) - bpf, arm64: Remove garbage frame for struct_ops trampoline (git-fixes) - bpf, lsm: Add disabled BPF LSM hook list (git-fixes). - bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes). - bpf, sockmap: SK_DROP on attempted redirects of unsupported af_vsock (git-fixes). - bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes). - bpf, vsock: Drop static vsock_bpf_prot initialization (git-fixes). - bpf, x64: Remove tail call detection (git-fixes). - bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes). - bpf: Fail verification for sign-extension of packet data/data_end/data_meta (git-fixes). - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes). - bpf: Fix error message on kfunc arg type mismatch (git-fixes). - bpf: Fix helper writes to read-only maps (git-fixes). - bpf: Fix tailcall cases in test_bpf (git-fixes). - bpf: Fix truncation bug in coerce_reg_to_size_sx() (git-fixes). - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes). - bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes). - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes). - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes). - btf, scripts: rust: drop is_rust_module.sh (bsc#1230414 bsc#1229450). - btrfs: merge btrfs_orig_bbio_end_io() into btrfs_bio_end_io() (bsc#1233193) - btrfs: send: fix invalid clone operation for file that got its size decreased (git-fixes). - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (git-fixes). - can: c_can: fix {rx,tx}_errors statistics (git-fixes). - can: dev: can_set_termination(): allow sleeping GPIOs (git-fixes). - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (git-fixes). - can: hi311x: hi3110_can_ist(): fix potential use-after-free (git-fixes). - can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics (git-fixes). - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes). - can: j1939: j1939_session_new(): fix skb reference counting (git-fixes). - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (git-fixes). - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation (git-fixes). - can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E 6 (git-fixes). - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when switching CAN modes (git-fixes). - can: netlink: avoid call to do_set_data_bittiming callback with stale can_priv::ctrlmode (stable-fixes). - can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics (git-fixes). - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (git-fixes). - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (git-fixes). - ceph: fix cap ref leak via netfs init_request (bsc#1231384). - cgroup/bpf: only cgroup v2 can be attached by bpf programs (bsc#1234108). - clk: bcm: bcm53573: fix OF node leak in init (stable-fixes). - clk: clk-apple-nco: Add NULL check in applnco_probe (git-fixes). - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (git-fixes). - clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (stable-fixes). - clk: imx: clk-scu: fix clk enable state save and restore (git-fixes). - clk: imx: fracn-gppll: correct PLL initialization flow (git-fixes). - clk: imx: fracn-gppll: fix pll power up (git-fixes). - clk: imx: lpcg-scu: SW workaround for errata (e10858) (git-fixes). - clk: qcom: clk-alpha-pll: drop lucid-evo pll enabled warning (git-fixes). - clk: qcom: clk-alpha-pll: fix lucid 5lpe pll enabled check (git-fixes). - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (git-fixes). - clk: renesas: rzg2l: Fix FOUTPOSTDIV clk (git-fixes). - clk: sunxi-ng: d1: Fix PLL_AUDIO0 preset (git-fixes). - comedi: Flush partial mappings in error case (git-fixes). - comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes). - config s390x: build ultravisor userspace access into the kernel (bsc#1232090) - config.sh: Remove Arm build project, we do not build armv7 configs - config: Disable LAM on x86 (bsc#1217845) - cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes). - cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost() (git-fixes). - cpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw() (git-fixes). - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_cost() (git-fixes). - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_power() (git-fixes). - cpufreq: loongson2: Unregister platform_driver on failure (git-fixes). - cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (git-fixes). - crypto: aes-gcm-p10 - Use the correct bit to test for P10 (bsc#1232704). - crypto: api - Fix liveliness check in crypto_alg_tested (stable-fixes). - crypto: bcm - add error check in the ahash_hmac_init function (git-fixes). - crypto: caam - Fix the pointer passed to caam_qi_shutdown() (git-fixes). - crypto: caam - add error check to caam_rsa_set_priv_key_form (git-fixes). - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (git-fixes). - crypto: cavium - Fix the if condition to exit loop after timeout (git-fixes). - crypto: hisilicon/qm - flush all work before driver removed (bsc#1232075) - crypto: inside-secure - Fix the return value of safexcel_xcbcmac_cra_init() (git-fixes). - crypto: octeontx - Fix authenc setkey (stable-fixes). - crypto: octeontx* - Select CRYPTO_AUTHENC (git-fixes). - crypto: octeontx2 - Fix authenc setkey (stable-fixes). - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (git-fixes). - crypto: powerpc/p10-aes-gcm - Add dependency on CRYPTO_SIMD and re-enable CRYPTO_AES_GCM_P10 (bsc#1230501 ltc#208632). - crypto: powerpc/p10-aes-gcm - Disable CRYPTO_AES_GCM_P10 (bsc#1230501 ltc#208632). - crypto: powerpc/p10-aes-gcm - Re-write AES/GCM stitched implementation (bsc#1230501 ltc#208632). - crypto: powerpc/p10-aes-gcm - Register modules as SIMD (bsc#1230501 ltc#208632). - crypto: qat - remove check after debugfs_create_dir() (git-fixes). - crypto: qat - remove faulty arbiter config reset (git-fixes). - crypto: qat/qat_4xxx - fix off by one in uof_get_name() (git-fixes). - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (git-fixes). - cxgb4: Properly lock TX queue for the selftest (git-fixes). - cxgb4: add forgotten u64 ivlan cast before shift (git-fixes). - cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes). - cxl: downgrade a warning message to debug level in cxl_probe_component_regs() (bsc#1229165). - dcache: keep dentry_hashtable or d_hash_shift even when not used (git-fixes). - debugfs: fix automount d_fsdata usage (git-fixes). - devlink: Fix command annotation documentation (git-fixes). - dma-fence: Fix reference leak on fence merge failure path (git-fixes). - dma-fence: Use kernel's sort for merging fences (git-fixes). - dmaengine: sh: rz-dmac: handle configs where one address is zero (git-fixes). - dmaengine: ti: k3-udma: Set EOP for all TRs in cyclic BCDMA transfer (git-fixes). - doc: rcu: update printed dynticks counter bits (git-fixes). - driver core: bus: Fix double free in driver API bus_register() (stable-fixes). - driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes). - drivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend() (git-fixes). - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes). - drm/amd/display: Add HDMI DSC native YCbCr422 support (stable-fixes). - drm/amd/display: Add disable timeout option (bsc#1231435) - drm/amd/display: Adjust VSDB parser for replay feature (stable-fixes). - drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944) - drm/amd/display: Check null pointer before dereferencing se (stable-fixes). - drm/amd/display: Clean up dsc blocks in accelerated mode (stable-fixes). - drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (stable-fixes). - drm/amd/display: Fix brightness level not retained over reboot (git-fixes). - drm/amd/display: Fix null check for pipe_ctx->plane_state in dcn20_program_pipe (git-fixes). - drm/amd/display: Fix null check for pipe_ctx->plane_state in hwss_setup_dpp (git-fixes). - drm/amd/display: Remove a redundant check in authenticated_dp (stable-fixes). - drm/amd/display: Revert "Check HDCP returned status" (stable-fixes). - drm/amd/display: Round calculated vtotal (stable-fixes). - drm/amd/display: Skip to enable dsc if it has been off (stable-fixes). - drm/amd/display: Validate backlight caps are sane (stable-fixes). - drm/amd/pm: Vangogh: Fix kernel memory out of bounds write (git-fixes). - drm/amd: Add some missing straps from NBIO 7.11.0 (git-fixes). - drm/amd: Fix initialization mistake for NBIO 7.7.0 (stable-fixes). - drm/amd: Guard against bad data for ATIF ACPI method (git-fixes). - drm/amdgpu/swsmu: Only force workload setup on init (git-fixes). - drm/amdgpu/vcn: enable AV1 on both instances (stable-fixes). - drm/amdgpu: Adjust debugfs eviction and IB access permissions (stable-fixes). - drm/amdgpu: Adjust debugfs register access permissions (stable-fixes). - drm/amdgpu: Fix DPX valid mode check on GC 9.4.3 (git-fixes). - drm/amdgpu: Fix JPEG v4.0.3 register write (git-fixes). - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (stable-fixes). - drm/amdgpu: fix check in gmc_v9_0_get_vm_pte() (git-fixes). - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (git-fixes). - drm/amdkfd: Accounting pdd vram_usage for svm (stable-fixes). - drm/amdkfd: Fix wrong usage of INIT_WORK() (git-fixes). - drm/bridge: anx7625: Drop EDID cache on bridge power off (git-fixes). - drm/bridge: it6505: Drop EDID cache on bridge power off (git-fixes). - drm/bridge: tc358767: Fix link properties discovery (git-fixes). - drm/bridge: tc358768: Fix DSI command tx (git-fixes). - drm/etnaviv: Request pages from DMA32 zone on addressing_limited (git-fixes). - drm/etnaviv: hold GPU lock across perfmon sampling (git-fixes). - drm/i915/gem: fix bitwise and logical AND mixup (git-fixes). - drm/i915/hdcp: fix connector refcounting (git-fixes). - drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - drm/mediatek: Fix child node refcount handling in early exit (git-fixes). - drm/mediatek: Fix get efuse issue for MT8188 DPTX (git-fixes). - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (git-fixes). - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (git-fixes). - drm/msm/dpu: check for overflow in _dpu_crtc_setup_lm_bounds() (git-fixes). - drm/msm/dpu: do not always program merge_3d block (git-fixes). - drm/msm/dpu: drop LM_3 / LM_4 on MSM8998 (git-fixes). - drm/msm/dpu: drop LM_3 / LM_4 on SDM845 (git-fixes). - drm/msm/dpu: make sure phys resources are properly initialized (git-fixes). - drm/msm/dpu: move CRTC resource assignment to dpu_encoder_virt_atomic_check (git-fixes). - drm/msm/dpu: on SDM845 move DSPP_3 to LM_5 block (git-fixes). - drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes). - drm/msm/dsi: improve/fix dsc pclk calculation (git-fixes). - drm/msm/gpu: Check the status of registration to PM QoS (git-fixes). - drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes). - drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes). - drm/msm: Fix some typos in comment (git-fixes). - drm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new() (git-fixes). - drm/omap: Fix locking in omap_gem_new_dmabuf() (git-fixes). - drm/omap: Fix possible NULL dereference (git-fixes). - drm/panfrost: Add missing OPP table refcnt decremental (git-fixes). - drm/panfrost: Remove unused id_mask from struct panfrost_model (git-fixes). - drm/radeon: Fix encoder->possible_clones (git-fixes). - drm/rockchip: vop: Fix a dereferenced before check warning (git-fixes). - drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes). - drm/sched: Always wake up correct scheduler in drm_sched_entity_push_job (git-fixes). - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (git-fixes). - drm/sti: avoid potential dereference of error pointers (git-fixes). - drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (git-fixes). - drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (git-fixes). - drm/v3d: Address race-condition in MMU flush (git-fixes). - drm/v3d: Enable Performance Counters before clearing them (git-fixes). - drm/v3d: Stop the active perfmon before being destroyed (git-fixes). - drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes). - drm/vc4: Match drm_dev_enter and exit calls in vc4_hvs_atomic_flush (git-fixes). - drm/vc4: Match drm_dev_enter and exit calls in vc4_hvs_lut_load (git-fixes). - drm/vc4: Stop the active perfmon before being destroyed (git-fixes). - drm/vc4: hdmi: Avoid hang with debug registers when suspended (git-fixes). - drm/vc4: hvs: Correct logic on stopping an HVS channel (git-fixes). - drm/vc4: hvs: Do not write gamma luts on 2711 (git-fixes). - drm/vc4: hvs: Fix dlist debug not resetting the next entry pointer (git-fixes). - drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs function (git-fixes). - drm/vkms: Drop unnecessary call to drm_crtc_cleanup() (git-fixes). - drm/vmwgfx: Handle surface check failure correctly (git-fixes). - drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (stable-fixes). - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes). - drm: Expand max DRM device number to full MINORBITS (jsc#PED-11580). - drm: Use XArray instead of IDR for minors (jsc#PED-11580). - drm: use ATOMIC64_INIT() for atomic64_t (git-fixes). - drm: xlnx: zynqmp_dpsub: fix hotplug detection (git-fixes). - drm: zynqmp_kms: Unplug DRM device before removal (git-fixes). - e1000e: Fix S0ix residency on corporate systems (git-fixes). - e1000e: Remove Meteor Lake SMBUS workarounds (git-fixes). - e1000e: change I219 (19) devices to ADP (git-fixes). - e1000e: fix force smbus during suspend flow (git-fixes). - e1000e: move force SMBUS near the end of enable_ulp function (git-fixes). - efi/libstub: Free correct pointer on failure (git-fixes). - efi/libstub: fix efi_parse_options() ignoring the default command line (git-fixes). - efi/libstub: zboot.lds: Discard .discard sections (stable-fixes). - efi/memattr: Ignore table if the size is clearly bogus (bsc#1231465). - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes). - eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes). - ext4: do not track ranges in fast_commit if inode has inlined data (bsc#1231635). - ext4: fix fast commit inode enqueueing during a full journal commit (bsc#1231636). - ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible() (bsc#1231637). - ext4: fix possible tid_t sequence overflows (bsc#1231634). - ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201) - ext4: fix unttached inode after power cut with orphan file feature enabled (bsc#1234009). - ext4: mark fc as ineligible using an handle in ext4_xattr_set() (bsc#1231640). - ext4: use handle to mark fc as ineligible in __track_dentry_update() (bsc#1231639). - f2fs: get out of a repeat loop when getting a locked data page (bsc#1234011). - fat: fix uninitialized variable (git-fixes). - fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (stable-fixes). - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (git-fixes). - fbdev: sisfb: Fix strbuf array overflow (stable-fixes). - fgraph: Change the name of cpuhp state to "fgraph:online" (git-fixes). - fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes). - fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes). - filemap: remove use of wait bookmarks (bsc#1224088). - firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (git-fixes). - firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup() (git-fixes). - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (git-fixes). - firmware: arm_sdei: Fix the input parameter of cpuhp_remove_state() (git-fixes). - firmware: google: Unregister driver_info on failure (git-fixes). - firmware_loader: Fix possible resource leak in fw_log_firmware_info() (git-fixes). - fs/9p: drop inodes immediately on non-.L too (git-fixes). - fs/9p: fix the cache always being enabled on files with qid flags (git-fixes). - fs/ntfs3: Add more attributes checks in mi_enum_attr() (bsc#1233207) - fs/ntfs3: Fixed overflow check in mi_enum_attr() (bsc#1233207) - fs/ntfs3: Sequential field availability check in mi_enum_attr() (bsc#1233207) - fs: Fix uninitialized value issue in from_kuid and from_kgid (git-fixes). - genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes). - goldfish: Fix unused const variable 'goldfish_pipe_acpi_match' (git-fixes). - gpio: aspeed: Add the flush write to ensure the write complete (git-fixes). - gpio: aspeed: Use devm_clk api to manage clock source (git-fixes). - gpio: davinci: fix lazy disable (git-fixes). - gpio: exar: set value when external pull-up or pull-down is present (git-fixes). - gpio: zevio: Add missed label initialisation (git-fixes). - gve: Fix XDP TX completion handling when counters overflow (git-fixes). - gve: Fix an edge case for TSO skb validity check (git-fixes). - gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes). - hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma (git-fixes). - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes). - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (git-fixes). - hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (adt7470) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (max16065) Fix alarm attributes (git-fixes). - hwmon: (max16065) Remove use of i2c_match_id() (stable-fixes). - hwmon: (mc34vr500) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (nct6775) add G15CF to ASUS WMI monitoring list (stable-fixes). - hwmon: (nct6775-core) Fix overflows seen when writing limit attributes (git-fixes). - hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (tps23861) Fix reporting of negative temperatures (git-fixes). - hwmon: intel-m10-bmc-hwmon: relabel Columbiaville to CVL Die Temperature (git-fixes). - i2c: core: Setup i2c_adapter runtime-pm before calling device_add() (git-fixes). - i2c: core: fix lockdep warning for sparsely nested adapter chain (git-fixes). - i2c: cpm: Remove linux,i2c-index conversion from be32 (git-fixes). - i2c: designware: do not hold SCL low when I2C_DYNAMIC_TAR_UPDATE is not set (git-fixes). - i2c: exynos5: Calculate t_scl_l, t_scl_h according to i2c spec (git-fixes). - i2c: i801: Add lis3lv02d for Dell Precision 3540 (git-fixes). - i2c: i801: Add lis3lv02d for Dell XPS 15 7590 (git-fixes). - i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes). - i2c: i801: add helper i801_restore_regs (git-fixes). - i2c: ismt: kill transaction in hardware on timeout (git-fixes). - i2c: ocores: Move system PM hooks to the NOIRQ phase (git-fixes). - i2c: ocores: Remove #ifdef guards for PM related functions (git-fixes). - i2c: omap: switch to NOIRQ_SYSTEM_SLEEP_PM_OPS() and RUNTIME_PM_OPS() (git-fixes). - i2c: omap: wakeup the controller during suspend() callback (git-fixes). - i2c: rcar: properly format a debug output (git-fixes). - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes). - i2c: stm32f7: perform most of irq job in threaded handler (git-fixes). - i2c: synquacer: Deal with optional PCLK correctly (git-fixes). - i2c: synquacer: Remove a clk reference from struct synquacer_i2c (stable-fixes). - i2c: xiic: Try re-initialization on bus busy timeout (git-fixes). - i2c: xiic: improve error message when transfer fails to start (stable-fixes). - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (git-fixes). - i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (stable-fixes). - i3c: master: svc: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - i40e: Fix XDP program unloading while removing the driver (git-fixes). - i40e: Report MFS in decimal base instead of hex (git-fixes). - i40e: fix race condition by adding filter's intermediate sync state (git-fixes). - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (git-fixes). - iavf: Fix TC config comparison with existing adapter TC config (git-fixes). - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes). - ice: Fix checking for unsupported keys on non-tunnel device (git-fixes). - ice: Fix lldp packets dropping after changing the number of channels (git-fixes). - ice: Fix netif_is_ice() in Safe Mode (git-fixes). - ice: Fix package download algorithm (git-fixes). - ice: Fix recipe read procedure (git-fixes). - ice: Fix reset handler (git-fixes). - ice: Flush FDB entries before reset (git-fixes). - ice: Interpret .set_channels() input differently (git-fixes). - ice: Rebuild TC queues on VSI queue reconfiguration (git-fixes). - ice: Reject pin requests with unsupported flags (git-fixes). - ice: add flag to distinguish reset from .ndo_bpf in XDP rings config (git-fixes). - ice: add missing WRITE_ONCE when clearing ice_rx_ring::xdp_prog (git-fixes). - ice: avoid IRQ collision to fix init failure on ACPI S3 resume (git-fixes). - ice: clear port vlan config during reset (git-fixes). - ice: disallow DPLL_PIN_STATE_SELECTABLE for dpll output pins (git-fixes). - ice: do not bring the VSI up, if it was down before the XDP setup (git-fixes). - ice: do not busy wait for Rx queue disable in ice_qp_dis() (git-fixes). - ice: fix 200G PHY types to link speed mapping (git-fixes). - ice: fix 200G link speed message log (git-fixes). - ice: fix ICE_LAST_OFFSET formula (git-fixes). - ice: fix VLAN replay after reset (git-fixes). - ice: fix VSI lists confusion when adding VLANs (git-fixes). - ice: fix accounting for filters shared by multiple VSIs (git-fixes). - ice: fix accounting if a VLAN already exists (git-fixes). - ice: fix iteration of TLVs in Preserved Fields Area (git-fixes). - ice: fix page reuse when PAGE_SIZE is over 8k (git-fixes). - ice: fix reads from NVM Shadow RAM on E830 and E825-C devices (git-fixes). - ice: fix truesize operations for PAGE_SIZE >= 8192 (git-fixes). - ice: implement AQ download pkg retry (git-fixes). - ice: map XDP queues to vectors in ice_vsi_map_rings_to_vectors() (git-fixes). - ice: remove af_xdp_zc_qps bitmap (git-fixes). - ice: replace synchronize_rcu with synchronize_net (git-fixes). - ice: respect netif readiness in AF_XDP ZC related ndo's (git-fixes). - ice: set correct dst VSI in only LAN filters (git-fixes). - ice: tc: allow zero flags in parsing tc flower (git-fixes). - ice: tc: check src_vsi in case of traffic from VF (git-fixes). - ice: use proper macro for testing bit (git-fixes). - idpf: Interpret .set_channels() input differently (git-fixes). - idpf: avoid bloating &idpf_q_vector with big %NR_CPUS (git-fixes). - idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes). - idpf: do not skip over ethtool tcp-data-split setting (git-fixes). - idpf: fix UAFs when destroying the queues (git-fixes). - idpf: fix memleak in vport interrupt configuration (git-fixes). - idpf: fix memory leaks and crashes while performing a soft reset (git-fixes). - ieee802154: Fix build error (git-fixes). - igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes). - igb: Disable threaded IRQ for igb_msix_other (git-fixes). - igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes). - igc: Fix double reset adapter triggered from a single taprio cmd (git-fixes). - igc: Fix packet still tx after gate close by reducing i226 MAC retry buffer (git-fixes). - igc: Fix qbv tx latency by setting gtxoffset (git-fixes). - igc: Fix qbv_config_change_errors logics (git-fixes). - igc: Fix reset adapter logics when tx mode change (git-fixes). - igc: Unlock on error in igc_io_resume() (git-fixes). - iio: Fix fwnode_handle in __fwnode_iio_channel_get_by_name() (git-fixes). - iio: accel: bma400: Fix uninitialized variable field_value in tap event handling (git-fixes). - iio: accel: kx022a: Fix raw read format (git-fixes). - iio: accel: kx022a: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes). - iio: adc: ad7606: Fix typo in the driver name (git-fixes). - iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer (git-fixes). - iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iio: adc: ti-lmp92064: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes). - iio: frequency: adf4377: add missing select REMAP_SPI in Kconfig (git-fixes). - iio: frequency: admv4420: fix missing select REMAP_SPI in Kconfig (git-fixes). - iio: gts-helper: Fix memory leaks for the error path of iio_gts_build_avail_scale_table() (git-fixes). - iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() (git-fixes). - iio: gts: Fix uninitialized symbol 'ret' (git-fixes). - iio: gts: fix infinite loop for gain_to_scaletables() (git-fixes). - iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes). - iio: light: al3010: Fix an error handling path in al3010_probe() (git-fixes). - iio: light: opt3001: add missing full-scale range value (git-fixes). - iio: light: veml6030: fix ALS sensor resolution (git-fixes). - iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes). - iio: light: veml6030: fix microlux value calculation (git-fixes). - iio: magnetometer: ak8975: Convert enum->pointer for data in the match tables (stable-fixes). - iio: magnetometer: ak8975: Fix 'Unexpected device' error (git-fixes). - iio: magnetometer: ak8975: drop incorrect AK09116 compatible (git-fixes). - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - ima: fix buffer overrun in ima_eventdigest_init_common (git-fixes). - initramfs: avoid filename buffer overrun (bsc#1232436). - intel_idle: add Granite Rapids Xeon support (bsc#1231630). - intel_idle: fix ACPI _CST matching for newer Xeon platforms (bsc#1231630). - io_uring/eventfd: move to more idiomatic RCU free usage (git-fixes). - io_uring/io-wq: do not allow pinning outside of cpuset (git-fixes). - io_uring/io-wq: inherit cpuset of cgroup in io worker (git-fixes). - io_uring/net: harden multishot termination case for recv (git-fixes). - io_uring/rw: fix cflags posting for single issue multishot read (git-fixes). - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (git-fixes). - io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN (git-fixes). - io_uring/sqpoll: close race on waiting for sqring entries (git-fixes). - io_uring/sqpoll: do not allow pinning outside of cpuset (git-fixes). - io_uring/sqpoll: do not put cpumask on stack (git-fixes). - io_uring/sqpoll: retain test for whether the CPU is valid (git-fixes). - io_uring: check for presence of task_work rather than TIF_NOTIFY_SIGNAL (git-fixes). - iommu/amd: Allocate the page table root using GFP_KERNEL (git-fixes). - iommu/amd: Do not set the D bit on AMD v2 table entries (git-fixes). - iommu/amd: Fix typo of , instead of ; (git-fixes). - iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes). - iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices (git-fixes). - iommufd: Check the domain owner of the parent before creating a nesting domain (git-fixes). - iommufd: Protect against overflow of ALIGN() during iova allocation (git-fixes). - irqchip/gic-v3-its: Avoid explicit cpumask allocation on stack (git-fixes). - jbd2: Move j_transaction_overhead_buffers into a hole (bsc#1234042). - jbd2: avoid infinite transaction commit loop (bsc#1234039). - jbd2: avoid memleak in jbd2_journal_write_metadata_buffer (bsc#1234043). - jbd2: avoid mount failed when commit block is partial submitted (bsc#1234040). - jbd2: correct the printing of write_flags in jbd2_write_superblock() (bsc#1234045). - jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit (bsc#1231638). - jbd2: fix kernel-doc for j_transaction_overhead_buffers (bsc#1234042). - jbd2: fix potential data lost in recovering journal raced with synchronizing fs bdev (bsc#1234044). - jbd2: fix soft lockup in journal_finish_inode_data_buffers() (bsc#1234046). - jbd2: make jbd2_journal_get_max_txn_bufs() internal (bsc#1234041). - jbd2: precompute number of transaction descriptor blocks (bsc#1234042). - jfs: Fix sanity check in dbMount (git-fixes). - jfs: Fix uaf in dbFreeBits (git-fixes). - jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes). - jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes). - jfs: check if leafidx greater than num leaves per dmap tree (git-fixes). - jump_label: Fix static_key_slow_dec() yet again (git-fixes). - kABI fix of VM: x86: Re-split x2APIC ICR into ICR+ICR2 for AMD (x2AVIC) (git-fixes). - kABI workaround for ASoC SOF (bsc#1233305). - kABI: Restore exported __arm_smccc_sve_check (git-fixes) - kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes). - kABI: bpf: struct bpf_insn_acces_aux kABI workaround (git-fixes). - kabi, mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (git-fixes kabi). - kasan: Fix Software Tag-Based KASAN with GCC (git-fixes). - kasan: move checks to do_strncpy_from_user (git-fixes). - kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450). - kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450). - kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450). - kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450). - kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450). - kconfig: qconf: fix buffer overflow in debug links (git-fixes). - kernel-binary: Enable livepatch package only when livepatch is enabled Otherwise the filelist may be empty failing the build (bsc#1218644). - kexec_file: fix elfcorehdr digest exclusion when CONFIG_CRASH_HOTPLUG=y (git-fixes). - keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry (git-fixes). - keys: Fix overwrite of key expiration on instantiation (git-fixes). - kthread: unpark only parked kthread (git-fixes). - leds: lp55xx: Remove redundant test for invalid channel number (git-fixes). - lib/xarray: introduce a new helper xas_get_order (bsc#1231617). - lib: string_helpers: silence snprintf() output truncation warning (git-fixes). - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes). - macsec: do not increment counters for an unrelated SA (git-fixes). - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (git-fixes). - maple_tree: correct tree corruption on spanning store (git-fixes). - maple_tree: fix alloc node fail issue (git-fixes). - maple_tree: refine mas_store_root() on storing NULL (git-fixes). - media: adv7604: prevent underflow condition when reporting colorspace (git-fixes). - media: amphion: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - media: amphion: Set video drvdata before register video device (git-fixes). - media: ar0521: do not overflow when checking PLL values (git-fixes). - media: atomisp: Add check for rgby_data memory allocation failure (git-fixes). - media: bttv: use audio defaults for winfast2000 (git-fixes). - media: core: v4l2-ioctl: check if ioctl is known to avoid NULL name (git-fixes). - media: cx24116: prevent overflows on SNR calculus (git-fixes). - media: dvb_frontend: do not play tricks with underflow values (git-fixes). - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (stable-fixes). - media: dvbdev: prevent the risk of out of memory access (git-fixes). - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (git-fixes). - media: i2c: dw9768: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - media: i2c: imx335: Enable regulator supplies (stable-fixes). - media: i2c: tc358743: Fix crash in the probe error path when using polling (git-fixes). - media: imx-jpeg: Ensure power suppliers be suspended before detach them (git-fixes). - media: imx-jpeg: Set video drvdata before register video device (git-fixes). - media: imx335: Fix reset-gpio handling (git-fixes). - media: mantis: remove orphan mantis_core.h (git-fixes). - media: mtk-jpeg: Fix null-ptr-deref during unload module (git-fixes). - media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning (git-fixes). - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (git-fixes). - media: platform: exynos4-is: Fix an OF node reference leak in fimc_md_is_isp_available (git-fixes). - media: pulse8-cec: fix data timestamp at pulse8_setup() (git-fixes). - media: s5p-jpeg: prevent buffer overflows (git-fixes). - media: stb0899_algo: initialize cfr before using it (git-fixes). - media: ts2020: fix null-ptr-deref in ts2020_probe() (git-fixes). - media: uvcvideo: Require entities to have a non-zero unique ID (git-fixes). - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (git-fixes). - media: uvcvideo: Stop stream during unregister (git-fixes). - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (git-fixes). - media: v4l2-tpg: prevent the risk of a division by zero (git-fixes). - media: vb2: Fix comment (git-fixes). - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes). - media: videobuf2: fix typo: vb2_dbuf -> vb2_qbuf (git-fixes). - media: wl128x: Fix atomicity violation in fmc_send_cmd() (git-fixes). - mei: use kvmalloc for read buffer (git-fixes). - mfd: intel_soc_pmic_chtwc: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes). - mfd: rt5033: Fix missing regmap_del_irq_chip() (git-fixes). - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (git-fixes). - minmax: avoid overly complex min()/max() macro arguments in xen (git-fixes). - minmax: scsi: fix mis-use of 'clamp()' in sr.c (git-fixes). - misc: apds990x: Fix missing pm_runtime_disable() (git-fixes). - mlx5: avoid truncating error message (git-fixes). - mlx5: stop warning for 64KB pages (git-fixes). - mlxbf_gige: disable RX filters until RX path initialized (git-fixes). - mm/filemap: optimize filemap folio adding (bsc#1231617). - mm/filemap: return early if failed to allocate memory for split (bsc#1231617). - mm/hugetlb: fix nodes huge page allocation when there are surplus pages (bsc#1234012). - mm: avoid unsafe VMA hook invocation when error arises on mmap hook (git-fixes). - mm: khugepaged: fix the arguments order in khugepaged_collapse_file trace point (git-fixes). - mm: mmap: no need to call khugepaged_enter_vma() for stack (jsc#PED-10978). - mm: move dummy_vm_ops out of a header (git-fixes prerequisity). - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (git-fixes). - mm: refactor map_deny_write_exec() (git-fixes). - mm: resolve faulty mmap_region() error path behaviour (git-fixes). - mm: unconditionally close VMAs on error (git-fixes). - mmc: core: Further prevent card detect during shutdown (git-fixes). - mmc: mmc_spi: drop buggy snprintf() (git-fixes). - mmc: sunxi-mmc: Fix A100 compatible description (git-fixes). - modpost: fix acpi MODULE_DEVICE_TABLE built with mismatched endianness (git-fixes). - modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (git-fixes). - modpost: remove incorrect code in do_eisa_entry() (git-fixes). - module: abort module loading when sysfs setup suffer errors (git-fixes). - mtd: rawnand: atmel: Fix possible memory leak (git-fixes). - mtd: spi-nor: core: replace dummy buswidth from addr to data (git-fixes). - nbd: fix race between timeout and normal completion (bsc#1230918). - net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes). - net/mlx5: Added cond_resched() to crdump collection (git-fixes). - net/mlx5: Check capability for fw_reset (git-fixes). - net/mlx5: Check for invalid vector index on EQ creation (git-fixes). - net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes). - net/mlx5: Fix command bitmask initialization (git-fixes). - net/mlx5: Fix error handling in irq_pool_request_irq (git-fixes). - net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes). - net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes). - net/mlx5: Stop waiting for PCI if pci channel is offline (git-fixes). - net/mlx5: Unregister notifier on eswitch init failure (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes). - net/mlx5e: Add missing link mode to ptys2ext_ethtool_map (git-fixes). - net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes). - net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes). - net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes). - net/mlx5e: Do not call cleanup on profile rollback failure (git-fixes). - net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes). - net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes). - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes). - net/mlx5e: Require mlx5 tc classifier action support for IPsec prio capability (git-fixes). - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes). - net: mana: Implement get_ringparam/set_ringparam for mana (bsc#1229891). - net: mana: Improve mana_set_channels() in low mem conditions (bsc#1230289). - net: mdio-ipq4019: add missing error check (git-fixes). - net: phy: Remove LED entry from LEDs list on unregister (git-fixes). - net: phy: bcm84881: Fix some error handling paths (git-fixes). - net: phy: dp83822: Fix reset pin definitions (git-fixes). - net: phy: dp83869: fix memory corruption when enabling fiber (git-fixes). - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (git-fixes). - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr() (git-fixes). - net: qede: use return from qede_parse_actions() (git-fixes). - net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes). - net: qede: use return from qede_parse_flow_attr() for flower (git-fixes). - net: relax socket state check at accept time (git-fixes). - net: stmmac: dwmac-tegra: Fix link bring-up sequence (git-fixes) - net: sysfs: Fix /sys/class/net/<iface> path for statistics (git-fixes). - net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes). - net: usb: lan78xx: Fix double free issue with interrupt buffer allocation (git-fixes). - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (git-fixes). - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (git-fixes). - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (stable-fixes). - net: usb: usbnet: fix name regression (get-fixes). - net: usb: usbnet: fix race in probe failure (git-fixes). - net: wwan: fix global oob in wwan_rtnl_policy (git-fixes). - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc() (git-fixes). - net: xfrm: preserve kabi for xfrm_state (bsc#1233754). - netdevsim: copy addresses for both in and out paths (git-fixes). - netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes). - netfilter: nf_tables: missing iterator type in lookup walk (git-fixes). - nfs: Fix KMSAN warning in decode_getfattr_attrs() (git-fixes). - nfs: avoid i_lock contention in nfs_clear_invalid_mapping (git-fixes). - nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes). - nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes). - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (git-fixes). - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes). - nfsd: fix refcount leak when file is unhashed after being found (git-fixes). - nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes). - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes). - nfsd: remove unsafe BUG_ON from set_change_info (bsc#1234121). - nfsd: return -EINVAL when namelen is 0 (git-fixes). - nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes). - nilfs2: fix potential deadlock with newly created symlinks (git-fixes). - nouveau/dmem: Fix privileged error in copy engine channel (git-fixes). - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes). - nouveau/dp: handle retries for AUX CH transfers with GSP (git-fixes). - nouveau/gsp: Avoid addressing beyond end of rpc->entries (stable-fixes). - nouveau: fw: sync dma after setup is called (git-fixes). - nouveau: handle EBUSY and EAGAIN for GSP aux errors (git-fixes). - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes). - ntfs3: Add bounds checking to mi_enum_attr() (bsc#1233207) - nvme-fabrics: fix kernel crash while shutting down controller (git-fixes). - nvme-loop: flush off pending I/O while shutting down loop controller (git-fixes). - nvme-multipath: suppress partition scan until the disk is ready (bsc#1228244). - nvme-pci: fix freeing of the HMB descriptor table (git-fixes). - nvme-pci: fix race condition between reset and nvme_dev_disable() (git-fixes). - nvme-pci: qdepth 1 quirk (git-fixes). - nvme-pci: reverse request order in nvme_queue_rqs (git-fixes). - nvme-pci: set doorbell config before unquiescing (git-fixes). - nvme/host: Fix RCU list traversal to use SRCU primitive (git-fixes). - nvme: disable CC.CRIME (NVME_CC_CRIME) (jsc#PED-9901). - nvme: null terminate nvme_tls_attrs (git-fixes). - nvme: re-fix error-handling for io_uring nvme-passthrough (git-fixes). - nvme: tcp: avoid race between queue_lock lock and destroy (git-fixes). - nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes). - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (git-fixes). - ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes). - ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes). - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes). - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (git-fixes). - ocfs2: uncache inode which has failed entering the group (git-fixes). - of: Add cleanup.h based auto release via __free(device_node) markings (bsc#1232386) - parport: Proper fix for array out-of-bounds access (git-fixes). - phy: freescale: imx8m-pcie: Do CMN_RST just before PHY PLL lock check (git-fixes). - phy: qcom: qmp-combo: move driver data initialisation earlier (git-fixes). - phy: qcom: qmp-usb: fix NULL-deref on runtime suspend (git-fixes). - phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes). - phy: ti: phy-j721e-wiz: fix usxgmii configuration (git-fixes). - pinctrl: apple: check devm_kasprintf() returned value (git-fixes). - pinctrl: k210: Undef K210_PC_DEFAULT (git-fixes). - pinctrl: ocelot: fix system hang on level based interrupts (stable-fixes). - pinctrl: qcom: spmi: fix debugfs drive strength (git-fixes). - pinctrl: zynqmp: drop excess struct member description (git-fixes). - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (git-fixes). - platform/x86/amd/pmc: Detect when STB is not available (git-fixes). - platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (git-fixes). - platform/x86: dell-sysman: add support for alienware products (stable-fixes). - platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes). - platform/x86: lenovo-ymc: Ignore the 0x0 state (stable-fixes). - platform/x86: panasonic-laptop: Return errno correctly in show callback (git-fixes). - platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes). - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (bsc#1234098). - power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes). - power: supply: bq27xxx: Fix registers of bq27426 (git-fixes). - power: supply: core: Remove might_sleep() from power_supply_put() (git-fixes). - power: supply: rt9471: Fix wrong WDT function regfield declaration (git-fixes). - power: supply: rt9471: Use IC status regfield to report real charger status (git-fixes). - powercap: intel_rapl: Fix off by one in get_rpi() (git-fixes). - powerpc/64: Convert patch_instruction() to patch_u32() (bsc#1194869). - powerpc/64s: Fix unnecessary copy to 0 when kernel is booted at address 0 (bsc#1215199). - powerpc/atomic: Use YZ constraints for DS-form instructions (bsc#1194869). - powerpc/boot: Handle allocation failure in simple_realloc() (bsc#1194869). - powerpc/boot: Only free if realloc() succeeds (bsc#1194869). - powerpc/code-patching: Add generic memory patching (bsc#1194869). - powerpc/code-patching: Perform hwsync in __patch_instruction() in case of failure (bsc#1194869). - powerpc/crypto: do not build aes-gcm-p10 by default (bsc#1230501 ltc#208632). - powerpc/crypto: fix missing skcipher dependency for aes-gcm-p10 (bsc#1230501 ltc#208632). - powerpc/fadump: Move fadump_cma_init to setup_arch() after initmem_init() (bsc#1215199). - powerpc/fadump: Refactor and prepare fadump_cma_init for late init (bsc#1215199). - powerpc/kexec: Fix return of uninitialized variable (bsc#1194869). - powerpc/mm/fault: Fix kfence page fault reporting (bsc#1194869). - powerpc/mm: Fix boot crash with FLATMEM (bsc#1194869). - powerpc/mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL (bsc#1194869). - powerpc/powernv: Free name on error in opal_event_init() (bsc#1194869). - powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (bsc#1194869). - powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (bsc#1194869). - powerpc/pseries: Use correct data types from pseries_hp_errorlog struct (bsc#1215199). - powerpc/vdso: Fix VDSO data access when running in a non-root time namespace (bsc#1194869). - powerpc/vdso: Inconditionally use CFUNC macro (bsc#1215199). - powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (bsc#1194869). - powerpc/xmon: Fix disassembly CPU feature checks (bsc#1065729). - printk: Add notation to console_srcu locking (bsc#1232183). - pwm: imx-tpm: Use correct MODULO value for EPWM mode (git-fixes). - qed: avoid truncating work queue length (git-fixes). - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow (bsc#1226631). - rcu: Fix buffer overflow in print_cpu_stall_info() (bsc#1226623). - regmap: detach regmap from dev on regmap_exit (git-fixes). - regmap: irq: Set lockdep class for hierarchical IRQ domains (git-fixes). - rpm/check-for-config-changes: add HAVE_RUST and RUSTC_SUPPORTS_ to IGNORED_CONFIGS_RE They depend on SHADOW_CALL_STACK. - rpm/release-projects: Add SLFO projects (bsc#1231293). - rpm/scripts: Remove obsolete Symbols.list Symbols.list is not longer needed by the new klp-convert implementation. (bsc#1218644) - rpmsg: glink: Handle rejected intent request better (git-fixes). - rtc: ab-eoz9: do not fail temperature reads on undervoltage notification (git-fixes). - rtc: abx80x: Fix WDT bit position of the status register (git-fixes). - rtc: bbnsm: add remove hook (git-fixes). - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (git-fixes). - rtc: rzn1: fix BCD to rtc_time conversion errors (git-fixes). - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - runtime constants: add default dummy infrastructure (git-fixes). - runtime constants: add x86 architecture support (git-fixes). - s390/mm: Add cond_resched() to cmm_alloc/free_pages() (bsc#1228747). - s390/pci: Handle PCI error codes other than 0x3a (git-fixes bsc#1232629). - s390/sclp: Deactivate sclp after all its users (git-fixes bsc#1232628). - s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232627). - scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes). - scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers (git-fixes). - scsi: Remove scsi device no_start_on_resume flag (git-fixes). - scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes). - scsi: cdrom: kABI: fix cdrom_dev_ops change (git-fixes). - scsi: core: Disable CDL by default (git-fixes). - scsi: core: Fix handling of SCMD_FAIL_IF_RECOVERING (git-fixes). - scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes). - scsi: core: Handle devices which return an unusually large VPD page count (git-fixes). - scsi: core: alua: I/O errors for ALUA state transitions (git-fixes). - scsi: fnic: Move flush_work initialization out of if block (bsc#1230055). - scsi: hisi_sas: Handle the NCQ error returned by D2H frame (git-fixes). - scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes). - scsi: kABI: restore no_start_on_resume to scsi_device (git-fixes). - scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes). - scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes). - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757). - scsi: lpfc: Add cleanup of nvmels_wq after HBA reset (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Call lpfc_sli4_queue_unset() in restart and rmmod paths (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Change lpfc_nodelist nlp_flag member into a bitmask (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Check SLI_ACTIVE flag in FDMI cmpl before submitting follow up FDMI (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Check devloss callbk done flag for potential stale NDLP ptrs (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Copyright updates for 14.4.0.6 patches (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757). - scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757). - scsi: lpfc: Modify CGN warning signal calculation based on EDC response (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Prevent NDLP reference count underflow in dev_loss_tmo callback (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Remove NLP_RELEASE_RPI flag from nodelist structure (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Remove trailing space after \n newline (bsc#1232757). - scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (bsc#1232757 bsc#1228119). - scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757). - scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757). - scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757). - scsi: lpfc: Update lpfc version to 14.4.0.6 (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Update lpfc_els_flush_cmd() to check for SLI_ACTIVE before BSG flag (bsc#1233241 jsc#PED-9943). - scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757). - scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes). - scsi: mac_scsi: Refactor polling loop (git-fixes). - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes). - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: mpi3mr: Avoid memcpy field-spanning write WARNING (git-fixes). - scsi: mpi3mr: Avoid possible run-time warning with long manufacturer strings (git-fixes). - scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes). - scsi: mpi3mr: Validate SAS port assignments (git-fixes). - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: pm8001: Do not overwrite PCI queue mapping (git-fixes). - scsi: pm80xx: Set phy->enable_completion only when we wait for it (git-fixes). - scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes). - scsi: scsi_transport_fc: Allow setting rport state to current state (git-fixes). - scsi: sd: Ignore command SYNCHRONIZE CACHE error if format in progress (git-fixes). - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (git-fixes). - scsi: smartpqi: correct stream detection (git-fixes). - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes). - scsi: spi: Fix sshdr use (git-fixes). - scsi: sr: Fix unintentional arithmetic wraparound (git-fixes). - scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes). - security/keys: fix slab-out-of-bounds in key_task_permission (git-fixes). - selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes). - selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes). - selftests/bpf: Add test for sign extension in coerce_subreg_to_size_sx() (git-fixes). - selftests/bpf: Add test for truncation after sign extension in coerce_reg_to_size_sx() (git-fixes). - selftests/bpf: Add tests for ldsx of pkt data/data_end/data_meta accesses (git-fixes). - selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes). - selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes). - selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes). - serial: 8250: omap: Move pm_runtime_get_sync (git-fixes). - serial: imx: Update mctrl old_status on RTSD interrupt (git-fixes). - serial: protect uart_port_dtr_rts() in uart_shutdown() too (stable-fixes). - signal: Replace BUG_ON()s (bsc#1234093). - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (git-fixes). - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (git-fixes). - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - soundwire: intel_bus_common: enable interrupts before exiting reset (stable-fixes). - spi: Fix acpi deferred irq probe (git-fixes). - spi: atmel-quadspi: Fix register name in verbose logging function (git-fixes). - spi: atmel-quadspi: Fix wrong register value written to MR (git-fixes). - spi: mpc52xx: Add cancel_work_sync before module remove (git-fixes). - spi: mtk-snfi: fix kerneldoc for mtk_snand_is_page_ops() (git-fixes). - spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes). - spi: spi-fsl-dspi: Fix crash when not using GPIO chip select (git-fixes). - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - spi: tegra210-quad: Avoid shift-out-of-bounds (git-fixes). - splice: always fsnotify_access(in), fsnotify_modify(out) on success (git-fixes). - splice: fsnotify_access(fd)/fsnotify_modify(fd) in vmsplice (git-fixes). - splice: fsnotify_access(in), fsnotify_modify(out) on success in tee (git-fixes). - srcu: Fix callbacks acceleration mishandling (git-fixes). - staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes). - sumversion: Fix a memory leak in get_src_version() (git-fixes). - supported.conf: mark nhpoly1305 module as supported (bsc#1231035) - supported.conf: mark ultravisor userspace access as supported (bsc#1232090) - task_work: add kerneldoc annotation for 'data' argument (git-fixes). - tcp: Fix refcnt handling in __inet_hash_connect() (git-fixes). - thermal: core: Initialize thermal zones before registering them (git-fixes). - thermal: int3400: Fix reading of current_uuid for active policy (git-fixes). - thermal: intel: int340x: processor: Fix warning during module unload (git-fixes). - thunderbolt: Honor TMU requirements in the domain when setting TMU mode (stable-fixes). - thunderbolt: Improve DisplayPort tunnel setup process to be more robust (stable-fixes). - tools/lib/thermal: Fix sampling handler context ptr (git-fixes). - tools/power turbostat: Fix trailing '\n' parsing (git-fixes). - tools/power turbostat: Increase the limit for fd opened (bsc#1233119). - tools: hv: rm .*.cmd when make clean (git-fixes). - tpm: Lock TPM chip in tpm_pm_suspend() first (bsc#1082555 git-fixes). - tpm: fix signed/unsigned bug when checking event logs (git-fixes). - tracing/hwlat: Fix a race during cpuhp processing (git-fixes). - tracing/osnoise: Fix build when timerlat is not enabled (git-fixes). - tracing/osnoise: Skip running osnoise if all instances are off (git-fixes). - tracing/osnoise: Switch from PF_NO_SETAFFINITY to migrate_disable (git-fixes). - tracing/osnoise: Use a cpumask to know what threads are kthreads (git-fixes). - tracing/timerlat: Add interface_lock around clearing of kthread in stop_kthread() (git-fixes). - tracing/timerlat: Add user-space interface (git-fixes). - tracing/timerlat: Drop interface_lock in stop_kthread() (git-fixes). - tracing/timerlat: Fix a race during cpuhp processing (git-fixes). - tracing/timerlat: Fix duplicated kthread creation due to CPU online/offline (git-fixes). - tracing/timerlat: Move hrtimer_init to timerlat_fd open() (git-fixes). - tracing/timerlat: Only clear timer if a kthread exists (git-fixes). - tracing: Consider the NULL character when validating the event length (git-fixes). - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (git-fixes). - tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (stable-fixes). - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one file (git-fixes). - ubifs: Fix adding orphan entry twice for the same inode (git-fixes). - ubifs: Fix unattached xattr inode if powercut happens after deleting (git-fixes). - ubifs: add check for crypto_shash_tfm_digest (git-fixes). - ubifs: dbg_orphan_check: Fix missed key type checking (git-fixes). - ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1233460). - unicode: Do not special case ignorable code points (stable-fixes). - unicode: Fix utf8_load() error path (git-fixes). - uprobe: avoid out-of-bounds memory access of fetching args (git-fixes). - uprobes: encapsulate preparation of uprobe args buffer (git-fixes). - uprobes: introduce the global struct vm_special_mapping xol_mapping (bsc#1231114). - uprobes: turn xol_area->pages into xol_area->page (bsc#1231114). - usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes). - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes). - usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG (git-fixes). - usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes). - usb: dwc3: gadget: Add missing check for single port RAM in TxFIFO resizing logic (git-fixes). - usb: dwc3: gadget: Fix checking for number of TRBs left (git-fixes). - usb: dwc3: gadget: Fix looping of queued SG entries (git-fixes). - usb: ehci-spear: fix call balance of sehci clk handling routines (git-fixes). - usb: gadget: core: force synchronous registration (git-fixes). - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe (stable-fixes). - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler (stable-fixes). - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context (git-fixes). - usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant (stable-fixes). - usb: gadget: f_uac2: fix non-newline-terminated function name (stable-fixes). - usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store (git-fixes). - usb: musb: Fix hardware lockup on first Rx endpoint request (git-fixes). - usb: musb: sunxi: Fix accessing an released usb phy (git-fixes). - usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes). - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes). - usb: typec: altmode should keep reference to parent (git-fixes). - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (git-fixes). - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes). - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (git-fixes). - usb: xhci: Fix TD invalidation under pending Set TR Dequeue (git-fixes). - usb: xhci: Fix problem with xhci resume from suspend (stable-fixes). - usb: xhci: fix loss of data on Cadence xHC (git-fixes). - usb: yurex: make waiting on yurex_write interruptible (git-fixes). - usbip: tools: Fix detach_port() invalid port error path (git-fixes). - usbnet: fix cyclical race on disconnect with work queue (git-fixes). - vdpa: Fix an error handling path in eni_vdpa_probe() (git-fixes). - vdpa_sim_blk: Fix the potential leak of mgmt_dev (git-fixes). - vdpa_sim_blk: allocate the buffer zeroed (git-fixes). - vduse: avoid using __GFP_NOFAIL (git-fixes). - vfs: dcache: move hashlen_hash() from callers into d_hash() (git-fixes). - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes). - vhost_vdpa: assign irq bypass producer token correctly (git-fixes). - virtio_console: fix misc probe bugs (git-fixes). - vmalloc: modify the alloc_vmap_area() error message for better diagnostics (jsc#PED-10978). - vmxnet3: Add XDP support (bsc#1226498). - vmxnet3: Fix missing reserved tailroom (bsc#1226498). - vmxnet3: Fix packet corruption in vmxnet3_xdp_xmit_frame (bsc#1226498). - vmxnet3: add command to allow disabling of offloads (bsc#1226498). - vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498). - vmxnet3: prepare for version 9 changes (bsc#1226498). - vmxnet3: update to version 9 (bsc#1226498). - vsock: Update msg_count on read_skb() (git-fixes). - vt: prevent kernel-infoleak in con_font_get() (git-fixes). - watchdog: apple: Actually flush writes after requesting watchdog restart (git-fixes). - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (git-fixes). - watchdog: rti: of: honor timeout-sec property (git-fixes). - wifi: ath10k: Fix memory leak in management tx (git-fixes). - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (git-fixes). - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (git-fixes). - wifi: ath11k: Fix CE offset address calculation for WCN6750 in SSR (git-fixes). - wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes). - wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes). - wifi: ath12k: Skip Rx TID cleanup for self peer (git-fixes). - wifi: ath12k: fix array out-of-bound access in SoC stats (stable-fixes). - wifi: ath12k: fix crash when unbinding (git-fixes). - wifi: ath12k: fix warning when unbinding (git-fixes). - wifi: ath12k: remove msdu_end structure for WCN7850 (git-fixes). - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (git-fixes). - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes). - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes). - wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes). - wifi: brcmfmac: release 'root' node in all execution paths (git-fixes). - wifi: cfg80211: Set correct chandef when starting CAC (stable-fixes). - wifi: cfg80211: clear wdev->cqm_config pointer on free (git-fixes). - wifi: cw1200: Fix potential NULL dereference (git-fixes). - wifi: iwlegacy: Clear stale interrupts before resuming device (stable-fixes). - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd() (git-fixes). - wifi: iwlwifi: allow only CN mcc from WRDD (stable-fixes). - wifi: iwlwifi: config: label 'gl' devices as discrete (git-fixes). - wifi: iwlwifi: mvm: Fix a race in scan abort flow (stable-fixes). - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes). - wifi: iwlwifi: mvm: avoid NULL pointer dereference (stable-fixes). - wifi: iwlwifi: mvm: do not add default link in fw restart flow (git-fixes). - wifi: iwlwifi: mvm: do not leak a link on AP removal (git-fixes). - wifi: iwlwifi: mvm: drop wrong STA selection in TX (stable-fixes). - wifi: iwlwifi: mvm: use correct key iteration (stable-fixes). - wifi: iwlwifi: remove AX101, AX201 and AX203 support from LNL (stable-fixes). - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes). - wifi: mac80211: fix RCU list iterations (stable-fixes). - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes). - wifi: mt76: mt7915: add dummy HW offload of IEEE 802.11 fragmentation (stable-fixes). - wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable (stable-fixes). - wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker (stable-fixes). - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes). - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (git-fixes). - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - wifi: rtw88: 8821cu: Remove VID/PID 0bda:c82c (stable-fixes). - wifi: rtw88: Fix USB/SDIO devices not transmitting beacons (git-fixes). - wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes). - wifi: rtw89: avoid reading out of bounds when loading TX power FW elements (stable-fixes). - wifi: rtw89: avoid to add interface to list twice when SER (stable-fixes). - wifi: rtw89: correct base HT rate mask for firmware (stable-fixes). - wifi: wfx: Fix error handling in wfx_core_init() (git-fixes). - x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client (bsc#1233443). - x86/CPU/AMD: Only apply Zenbleed fix for Zen2 during late microcode load (git-fixes). - x86/Documentation: Indent 'note::' directive for protocol version number note (git-fixes). - x86/PCI: Check pcie_find_root_port() return for NULL (git-fixes). - x86/amd_nb: Add new PCI IDs for AMD family 1Ah model 60h (git-fixes). - x86/apic: Always explicitly disarm TSC-deadline timer (git-fixes). - x86/apic: Make x2apic_disable() work correctly (git-fixes). - x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes). - x86/bugs: Skip RSB fill at VMEXIT (git-fixes). - x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes). - x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes). - x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes). - x86/entry: Remove unwanted instrumentation in common_interrupt() (git-fixes). - x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes). - x86/microcode/intel: Remove unnecessary cache writeback and invalidation (git-fixes). - x86/mm: Use IPIs to synchronize LAM enablement (git-fixes). - x86/resctrl: Annotate get_mem_config() functions as __init (git-fixes). - x86/resctrl: Avoid overflow in MB settings in bw_validate() (git-fixes). - x86/resctrl: Remove hard-coded memory bandwidth limit (git-fixes). - x86/sev: Check for MWAITX and MONITORX opcodes in the #VC handler (git-fixes). - x86/syscall: Avoid memcpy() for ia32 syscall_get_arguments() (git-fixes). - x86/tdx: Dynamically disable SEPT violations from causing #VEs (git-fixes). - x86/tdx: Enable CPU topology enumeration (git-fixes). - x86/tdx: Introduce wrappers to read and write TD metadata (git-fixes). - x86/tdx: Rename tdx_parse_tdinfo() to tdx_setup() (git-fixes). - x86/traps: move kmsan check after instrumentation_begin (git-fixes). - x86: Increase brk randomness entropy for 64-bit systems (git-fixes). - x86: do the user address masking outside the user access area (git-fixes). - x86: fix off-by-one in access_ok() (git-fixes). - x86: fix user address masking non-canonical speculation issue (git-fixes). - x86: make the masked_user_access_begin() macro use its argument only once (git-fixes). - x86: support user address masking instead of non-speculative conditional (git-fixes). - xfrm: Export symbol xfrm_dev_state_delete (bsc#1233754). - xfrm: Fix unregister netdevice hang on hardware offload (bsc#1233754). - xfs: check opcode and iovec count match in xlog_recover_attri_commit_pass2 (git-fixes). - xfs: check shortform attr entry flags specifically (git-fixes). - xfs: convert delayed extents to unwritten when zeroing post eof blocks (git-fixes). - xfs: fix finding a last resort AG in xfs_filestream_pick_ag (git-fixes). - xfs: fix freeing speculative preallocations for preallocated files (git-fixes). - xfs: make sure sb_fdblocks is non-negative (git-fixes). - xfs: make the seq argument to xfs_bmapi_convert_delalloc() optional (git-fixes). - xfs: make xfs_bmapi_convert_delalloc() to allocate the target offset (git-fixes). - xfs: remove a racy if_bytes check in xfs_reflink_end_cow_extent (git-fixes). - xfs: validate recovered name buffers when recovering xattr items (git-fixes). - xhci: Add a quirk for writing ERST in high-low order (git-fixes). - xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes). - xhci: Fix incorrect stream context type macro (git-fixes). - xhci: Mitigate failed set dequeue pointer commands (git-fixes). - xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes). - xhci: tegra: fix checked USB2 port number (git-fixes). - zonefs: Improve error handling (git-fixes).

Security update for the Linux Kernel

kernel-source kernel-source:dtb-aarch64 kernel-source:kernel-64kb kernel-source:kernel-debug kernel-source:kernel-default kernel-source:kernel-docs kernel-source:kernel-kvmsmall kernel-source:kernel-obs-build kernel-source:kernel-obs-qa kernel-source:kernel-syms kernel-source:kernel-zfcpdump kernel-default-base kernel-livepatch-MICRO-6-0_Update_4