File _patchinfo of Package patchinfo.33353

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.33353

<patchinfo incident="33353">
<retracted/>
  <issue id="1194869" tracker="bnc">[TRACKERBUG] 5.14 powerpc base kernel fixes</issue>
  <issue id="1200465" tracker="bnc">SLES15 SP4 [ Everest]: powersave mode is always set to "static" even if we change powersave mode from HMC on everest machine.</issue>
  <issue id="1205316" tracker="bnc">SLES 15 SP3 - Removing in-use mediated device should fail with error message instead of hang</issue>
  <issue id="1207948" tracker="bnc">Lenovo T14s Gen3 AMD resume from hibernation ends in kernel panic</issue>
  <issue id="1209635" tracker="bnc">VUL-0: CVE-2022-4744: kernel: tun: avoid double free in tun_free_netdev</issue>
  <issue id="1209657" tracker="bnc">VUL-0: CVE-2023-0160: kernel-source,kernel-source-azure,kernel-source-rt: possibility of deadlock in libbpf function sock_hash_delete_elem()</issue>
  <issue id="1212514" tracker="bnc">VUL-0: CVE-2023-35827: kernel: use-after-free was found in ravb_remove in drivers/net/ethernet/renesas/ravb_main.c</issue>
  <issue id="1213456" tracker="bnc">VUL-0: CVE-2023-28746: CPU: Register File Data Sampling</issue>
  <issue id="1214852" tracker="bnc">install to FCoE hangs instead of rebooting: BUG: kernel NULL pointer dereference, address: 0000000000000102</issue>
  <issue id="1215221" tracker="bnc">VUL-0: CVE-2023-4881: kernel-source: stack out-of-bounds write in nft_exthdr ip/tcp/sctp functions</issue>
  <issue id="1215322" tracker="bnc">PVT:1050:XM:ITC: SLES SP5 LPAR is not responding when we do Fatal Injection on 4 Port ethernet Adapter (Shiner - 14E4 168A 1014 0493)</issue>
  <issue id="1217339" tracker="bnc">VUL-0: CVE-2024-2201: CPU: InSpectre Gadget: Inspecting the Residual Attack Surface of Cross-privilege Spectre v2</issue>
  <issue id="1217959" tracker="bnc">iLAB:Emulex;Abort timeouts, multipath hang during I/O after update</issue>
  <issue id="1217987" tracker="bnc">VUL-0: CVE-2023-6356: kernel: NULL pointer dereference in nvmet_tcp_build_pdu_iovec</issue>
  <issue id="1217988" tracker="bnc">VUL-0: CVE-2023-6535: kernel: NULL pointer dereference in nvmet_tcp_execute_request</issue>
  <issue id="1217989" tracker="bnc">VUL-0: CVE-2023-6536: kernel: NULL pointer dereference in __nvmet_req_complete</issue>
  <issue id="1218321" tracker="bnc">L3: HPE ProLiant DL380 Gen11 (U54) fails to load Xen fully</issue>
  <issue id="1218336" tracker="bnc">VUL-0: CVE-2023-7042: kernel-source,kernel-source-azure,kernel-source-rt: null pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev()</issue>
  <issue id="1218479" tracker="bnc">VUL-0: CVE-2023-7192: kernel-source,kernel-source-azure,kernel-source-rt: refcount leak in ctnetlink_create_conntrack()</issue>
  <issue id="1218643" tracker="bnc">SLE-15SP5 KOTD: cgroup memory.stat file no longer shows unevictable memory</issue>
  <issue id="1218777" tracker="bnc">NVIDIA - Grace: Backport PCI/MSI: Fix MSI hwirq truncation</issue>
  <issue id="1219169" tracker="bnc">VUL-0: CVE-2024-23307: kernel-source,kernel-source-azure,kernel-source-rt: Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow.</issue>
  <issue id="1219170" tracker="bnc">VUL-0: CVE-2024-22099: kernel: NULL pointer dereference vulnerability allows buffers overflow in /net/bluetooth/rfcomm/core.c</issue>
  <issue id="1219264" tracker="bnc">VUL-0: DISPUTED: CVE-2024-0841: kernel: hugetlbfs: Null pointer dereference in hugetlbfs_fill_super function</issue>
  <issue id="1219834" tracker="bnc">VUL-0: CVE-2024-25739: kernel: potential denial of service in create_empty_lvol in drivers/mtd/ubi/vtbl.c</issue>
  <issue id="1220114" tracker="bnc">L3: oom_kill counter grows rapidly without any traces in logs</issue>
  <issue id="1220176" tracker="bnc">[Build 20240221-1] openQA test fails in proc_sched_rt01</issue>
  <issue id="1220237" tracker="bnc">VUL-0: CVE-2023-52450: kernel: perf/x86/intel/uncore: Fix NULL pointer dereference issue in upi_fill_topology()</issue>
  <issue id="1220251" tracker="bnc">VUL-0: CVE-2023-52447: kernel-source,kernel-source-azure,kernel-source-rt: bpf: Defer the free of inner map when necessary</issue>
  <issue id="1220320" tracker="bnc">VUL-0: CVE-2023-52454: kernel: nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length</issue>
  <issue id="1220337" tracker="bnc">VUL-0: CVE-2023-52453: kernel-source,kernel-source-azure,kernel-source-rt: hisi_acc_vfio_pci: incorrect data pointer use in saving/resume</issue>
  <issue id="1220340" tracker="bnc">VUL-0: CVE-2024-26600: kernel: phy: ti: phy-omap-usb2: NULL pointer dereference for SRP</issue>
  <issue id="1220365" tracker="bnc">VUL-0: CVE-2024-26599: kernel: pwm: fix out-of-bounds access in of_pwm_single_xlate()</issue>
  <issue id="1220366" tracker="bnc">VUL-0: CVE-2022-48626: kernel: moxart: fix potential use-after-free on remove path</issue>
  <issue id="1220398" tracker="bnc">VUL-0: CVE-2024-26602: kernel: sched/membarrier: reduce the ability to hammer on sys_membarrier</issue>
  <issue id="1220411" tracker="bnc">VUL-0: CVE-2023-52469: kernel-source,kernel-source-azure,kernel-source-rt: drivers/gpu/drm/amd/pm: fix a use-after-free in kv_parse_power_table</issue>
  <issue id="1220413" tracker="bnc">VUL-0: CVE-2023-52470: kernel-source,kernel-source-azure,kernel-source-rt: drm/radeon: check the alloc_workqueue return value in radeon_crtc_init() to avoid null-ptr-deref</issue>
  <issue id="1220439" tracker="bnc">VUL-0: CVE-2021-46936: kernel-source,kernel-source-azure,kernel-source-rt: net: use-after-free in tw_timer_handler()</issue>
  <issue id="1220443" tracker="bnc">VUL-0: CVE-2021-46927: kernel-source,kernel-source-azure,kernel-source-rt: nitro_enclaves: reachable assertion via get_user_pages()</issue>
  <issue id="1220445" tracker="bnc">VUL-0: CVE-2023-52474: kernel: IB/hfi1: fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA requests</issue>
  <issue id="1220466" tracker="bnc">VUL-0: CVE-2021-46925: kernel-source,kernel-source-azure,kernel-source-rt: net/smc: fix kernel panic caused by race of smc_sock</issue>
  <issue id="1220478" tracker="bnc">VUL-0: CVE-2021-46926: kernel: ALSA: hda: intel-sdw-acpi: harden detection of controller</issue>
  <issue id="1220482" tracker="bnc">VUL-0: CVE-2021-46929: kernel: sctp: use call_rcu to free endpoint</issue>
  <issue id="1220484" tracker="bnc">VUL-0: CVE-2021-46930: kernel-source,kernel-source-azure,kernel-source-rt: usb: mtu3: fix list_head check warning</issue>
  <issue id="1220486" tracker="bnc">VUL-0: CVE-2021-46931: kernel: net/mlx5e: wrap the tx reporter dump callback to extract the sq</issue>
  <issue id="1220487" tracker="bnc">VUL-0: CVE-2021-46933: kernel: usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear.</issue>
  <issue id="1220492" tracker="bnc">SLES15SP6 - kdump is failing over NFS configured over HNV device with IOMMU call traces</issue>
  <issue id="1220703" tracker="bnc">VUL-0: CVE-2023-52476: kernel: perf/x86/lbr: perf sampling NMI during vsyscall can cause unhandled page fault</issue>
  <issue id="1220775" tracker="bnc">Kernel oops on aws M6g.metal</issue>
  <issue id="1220790" tracker="bnc">VUL-0: CVE-2023-52477: kernel: usb: hub: Guard against accesses to uninitialized BOS descriptors</issue>
  <issue id="1220797" tracker="bnc">VUL-0: CVE-2023-52484: kernel: iommu/arm-smmu-v3: Fix soft lockup triggered by arm_smmu_mm_invalidate_range</issue>
  <issue id="1220831" tracker="bnc">VUL-0: CVE-2023-52502: kernel: net: nfc: race conditions in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()</issue>
  <issue id="1220833" tracker="bnc">VUL-0: CVE-2023-52507: kernel: nfc: nci: invalid requested protocol can cause an out of bounds shift</issue>
  <issue id="1220836" tracker="bnc">VUL-0: CVE-2023-52509: kernel: ravb: use-after-free in ravb_tx_timeout_work()</issue>
  <issue id="1220839" tracker="bnc">VUL-0: CVE-2023-52567: kernel: serial: 8250_port: NULL pointer dereference when using IRQ polling</issue>
  <issue id="1220840" tracker="bnc">VUL-0: CVE-2023-52525: kernel: wifi: mwifiex: invalid out-of-bounds check condition in mwifiex_process_rx_packet()</issue>
  <issue id="1220843" tracker="bnc">VUL-0: CVE-2023-52528: kernel: net: usb: smsc75xx: uninit-value access in __smsc75xx_read_reg()</issue>
  <issue id="1220870" tracker="bnc">VUL-0: CVE-2023-52574: kernel: team: fix null-ptr-deref when team device type is changed</issue>
  <issue id="1220871" tracker="bnc">VUL-0: CVE-2023-52575: kernel: x86/srso: Fix SBPB enablement for spec_rstack_overflow=off</issue>
  <issue id="1220872" tracker="bnc">VUL-0: CVE-2023-52576: kernel: x86/mm, kexec, ima: Use memblock_free_late() from ima_free_kexec_buffer()</issue>
  <issue id="1220878" tracker="bnc">VUL-0: CVE-2023-52582: kernel: netfs: Only call folio_start_fscache() one time for each folio</issue>
  <issue id="1220879" tracker="bnc">VUL-0: CVE-2023-52497: kernel: erofs: fix lz4 inplace decompression</issue>
  <issue id="1220883" tracker="bnc">VUL-0: CVE-2023-52500: kernel: scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command</issue>
  <issue id="1220885" tracker="bnc">VUL-0: CVE-2023-52501: kernel: ring-buffer: Do not attempt to read past "commit"</issue>
  <issue id="1220887" tracker="bnc">VUL-0: CVE-2023-52481: kernel: arm64: errata: Add Cortex-A520 speculative unprivileged load workaround</issue>
  <issue id="1220898" tracker="bnc">VUL-0: CVE-2023-52510: kernel: ieee802154: ca8210: potential UAF in ca8210_probe()</issue>
  <issue id="1220918" tracker="bnc">VUL-0: CVE-2023-52569: kernel: btrfs: remove BUG() after failure to insert delayed dir index item</issue>
  <issue id="1220920" tracker="bnc">VUL-0: CVE-2023-52519: kernel: HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit</issue>
  <issue id="1220921" tracker="bnc">VUL-0: CVE-2023-52520: kernel: platform/x86: think-lmi: Fix reference leak</issue>
  <issue id="1220926" tracker="bnc">VUL-0: CVE-2023-52523: kernel: bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets</issue>
  <issue id="1220927" tracker="bnc">VUL-0: CVE-2023-52524: kernel: net: nfc: llcp: Add lock when modifying device list</issue>
  <issue id="1220929" tracker="bnc">VUL-0: CVE-2023-52529: kernel: HID: sony: Fix a potential memory leak in sony_probe()</issue>
  <issue id="1220932" tracker="bnc">VUL-0: CVE-2023-52532: kernel: net: mana: Fix TX CQE error handling</issue>
  <issue id="1220937" tracker="bnc">VUL-0: CVE-2023-52563: kernel: drm/meson: fix memory leak on -&amp;gt;hpd_notify callback</issue>
  <issue id="1220938" tracker="bnc">VUL-0: CVE-2023-52564: kernel: Revert &amp;#34;tty: n_gsm: fix UAF in gsm_cleanup_mux&amp;#34;</issue>
  <issue id="1220940" tracker="bnc">VUL-0: CVE-2023-52566: kernel: nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()</issue>
  <issue id="1220954" tracker="bnc">VUL-0: CVE-2021-47087: kernel: tee: optee: Fix incorrect page free bug</issue>
  <issue id="1220955" tracker="bnc">VUL-0: CVE-2021-47099: kernel: veth: shared skbs in veth device may trigger BUG assertion if GRO is enabled</issue>
  <issue id="1220959" tracker="bnc">VUL-0: CVE-2021-47091: kernel: mac80211: fix locking in ieee80211_start_ap error path</issue>
  <issue id="1220960" tracker="bnc">VUL-0: CVE-2021-47104: kernel: IB/qib: Fix memory leak in qib_user_sdma_queue_pkts()</issue>
  <issue id="1220961" tracker="bnc">VUL-0: CVE-2021-47105: kernel: ice: xsk: return xsk buffers back to pool when cleaning the ring</issue>
  <issue id="1220965" tracker="bnc">VUL-0: CVE-2021-47107: kernel: NFSD: Fix READDIR buffer overflow If a client sends a READDIR count argument that is too small (say, zero), ...</issue>
  <issue id="1220969" tracker="bnc">VUL-0: CVE-2021-47082: kernel: tun: avoid double free in tun_free_netdev</issue>
  <issue id="1220978" tracker="bnc">VUL-0: CVE-2021-47093: kernel: platform/x86: intel_pmc_core: fix memleak on registration failure</issue>
  <issue id="1220979" tracker="bnc">VUL-0: CVE-2021-47095: kernel: ipmi: ssif: initialize ssif_info-&gt;client early</issue>
  <issue id="1220981" tracker="bnc">VUL-0: CVE-2021-47096: kernel: ALSA: rawmidi - fix the uninitalized user_pversion</issue>
  <issue id="1220982" tracker="bnc">VUL-0: CVE-2021-47097: kernel: Input: elantech - fix stack out of bound access in elantech_change_report_id()</issue>
  <issue id="1220983" tracker="bnc">VUL-0: CVE-2021-47098: kernel: hwmon: (lm90) Prevent integer overflow/underflow in hysteresis calculations</issue>
  <issue id="1220985" tracker="bnc">VUL-0: CVE-2021-47100: kernel: ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module</issue>
  <issue id="1220986" tracker="bnc">VUL-0: CVE-2021-47108: kernel: drm/mediatek: hdmi: Perform NULL pointer check for mtk_hdmi_conf</issue>
  <issue id="1220987" tracker="bnc">VUL-0: CVE-2021-47101: kernel: asix: fix uninit-value in asix_mdio_read()</issue>
  <issue id="1220989" tracker="bnc">VUL-0: CVE-2022-48629: kernel: crypto: qcom-rng - ensure buffer for generate is completely filled</issue>
  <issue id="1220990" tracker="bnc">VUL-0: CVE-2022-48630: kernel: crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ</issue>
  <issue id="1221009" tracker="bnc">VUL-0: CVE-2021-47102: kernel: net: marvell: prestera: fix incorrect structure access</issue>
  <issue id="1221012" tracker="bnc">VUL-0: CVE-2023-52511: kernel: spi: sun6i: reduce DMA RX transfer width to single byte</issue>
  <issue id="1221015" tracker="bnc">VUL-0: CVE-2023-52508: kernel: nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()</issue>
  <issue id="1221022" tracker="bnc">VUL-0: CVE-2023-52513: kernel: RDMA/siw: Fix connection failure handling</issue>
  <issue id="1221039" tracker="bnc">VUL-0: REJECTED: CVE-2023-52605: kernel: ACPI: extlog: potential NULL pointer dereference in extlog_exit()</issue>
  <issue id="1221040" tracker="bnc">VUL-0: CVE-2023-52597: kernel: KVM: s390: interrupt during guest fpc value test may lead to corrupted userspace registers</issue>
  <issue id="1221044" tracker="bnc">VUL-0: CVE-2023-52591: kernel: reiserfs: potential filesystem corruption on directory rename</issue>
  <issue id="1221045" tracker="bnc">VUL-0: CVE-2023-52594: wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus()</issue>
  <issue id="1221046" tracker="bnc">VUL-0: CVE-2023-52595: wifi: rt2x00: restart beacon queue when hardware reset</issue>
  <issue id="1221048" tracker="bnc">VUL-0: CVE-2023-52515: kernel: RDMA/srp: Do not call scsi_done() from srp_abort()</issue>
  <issue id="1221055" tracker="bnc">VUL-0: CVE-2023-52517: kernel: spi: sun6i: fix race between DMA RX transfer completion and RX FIFO drain</issue>
  <issue id="1221056" tracker="bnc">VUL-0: CVE-2023-52518: kernel: Bluetooth: hci_codec: Fix leaking content of local_codecs</issue>
  <issue id="1221058" tracker="bnc">VUL-0: CVE-2023-52583: kernel: ceph: fix deadlock or deadcode of misusing dget()</issue>
  <issue id="1221060" tracker="bnc">VUL-0: CVE-2023-52598: kernel: s390/ptrace: handle setting of fpc register correctly</issue>
  <issue id="1221061" tracker="bnc">VUL-0: CVE-2023-52607: kernel: powerpc/mm: potential null-pointer dereference in pgtable_cache_add() if kasprintf() fails</issue>
  <issue id="1221062" tracker="bnc">VUL-0: CVE-2023-52599: kernel: jfs: fix array-index-out-of-bounds in diNewExt</issue>
  <issue id="1221066" tracker="bnc">VUL-0: CVE-2023-52603: kernel: UBSAN: array-index-out-of-bounds in dtSplitRoot</issue>
  <issue id="1221067" tracker="bnc">VUL-0: CVE-2023-52604: kernel: FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree</issue>
  <issue id="1221068" tracker="bnc">VUL-0: CVE-2023-52601: kernel: jfs: fix array-index-out-of-bounds in dbAdjTree</issue>
  <issue id="1221069" tracker="bnc">VUL-0: CVE-2023-52606: kernel: powerpc/lib: Validate size for vector operations</issue>
  <issue id="1221070" tracker="bnc">VUL-0: CVE-2023-52602: kernel: jfs: fix slab-out-of-bounds Read in dtSearch</issue>
  <issue id="1221071" tracker="bnc">VUL-0: CVE-2023-52600: kernel: jfs: fix uaf in jfs_evict_inode</issue>
  <issue id="1221077" tracker="bnc">rpm cannot handle filenames with spaces in package</issue>
  <issue id="1221082" tracker="bnc">VUL-0: CVE-2023-52587: kernel: IB/ipoib: Fix mcast list locking</issue>
  <issue id="1221090" tracker="bnc">VUL-0: CVE-2024-26627: kernel: scsi: core: Move scsi_host_busy() out of host lock for waking up EH handler</issue>
  <issue id="1221097" tracker="bnc">system panic during failing a component disk of md raid1 array with I/O workload</issue>
  <issue id="1221156" tracker="bnc">NVIDIA:Grace-Hopper Update spi_tegra210_quad and tpm_tis_spi to built-ins</issue>
  <issue id="1221252" tracker="bnc">Unknown VPD Code: 0xb9 spamming logs</issue>
  <issue id="1221273" tracker="bnc">VUL-0: CVE-2023-52494: kernel: bus: mhi: host: Add alignment check for event ring read pointer</issue>
  <issue id="1221274" tracker="bnc">VUL-0: CVE-2023-52493: kernel: bus: mhi: host: Drop chan lock before queuing buffers</issue>
  <issue id="1221276" tracker="bnc">VUL-0: CVE-2023-52492: kernel: dmaengine: fix NULL pointer in channel unregistration function</issue>
  <issue id="1221277" tracker="bnc">VUL-0: CVE-2023-52486: kernel: drm: Don't unref the same fb many times by mistake due to deadlock handling</issue>
  <issue id="1221291" tracker="bnc">VUL-0: CVE-2024-26612: kernel: netfs, fscache: Prevent Oops in fscache_put_cache()</issue>
  <issue id="1221293" tracker="bnc">VUL-0: CVE-2024-26614: kernel: tcp: make sure init the accept_queue's spinlocks once</issue>
  <issue id="1221298" tracker="bnc">VUL-0: CVE-2024-26620: kernel: s390/vfio-ap: always filter entire AP matrix</issue>
  <issue id="1221337" tracker="bnc">VUL-0: CVE-2024-26651: kernel-source: sr9800: malicious device can oops the kernel</issue>
  <issue id="1221338" tracker="bnc">L3: /proc/vmstat: oom_kill doesn't increment after oom event</issue>
  <issue id="1221375" tracker="bnc">VUL-0: CVE-2023-52608: kernel: firmware: arm_scmi: Check mailbox/SMT channel for consistency</issue>
  <issue id="1221379" tracker="bnc">VUL-0: CVE-2024-26629: kernel: nfsd: fix RELEASE_LOCKOWNER</issue>
  <issue id="1221551" tracker="bnc">VUL-0: CVE-2021-47094: kernel: KVM: x86/mmu: don't advance iterator after restart due to yielding</issue>
  <issue id="1221553" tracker="bnc">VUL-0: CVE-2023-52504: kernel: x86/alternatives: Disable KASAN in apply_alternatives()</issue>
  <issue id="1221613" tracker="bnc">VUL-0: CVE-2023-52617: kernel: PCI: switchtec: Fix stdev_release() crash after surprise hot remove</issue>
  <issue id="1221614" tracker="bnc">VUL-0: CVE-2023-52615: kernel: hwrng: core - Fix page fault dead lock on mmap-ed hwrng</issue>
  <issue id="1221616" tracker="bnc">VUL-0: CVE-2023-52612: kernel: crypto: scomp - fix req-&gt;dst buffer overflow</issue>
  <issue id="1221618" tracker="bnc">VUL-0: CVE-2023-52619: kernel: pstore/ram: Fix crash when setting number of cpus to an odd number</issue>
  <issue id="1221631" tracker="bnc">KVM: s390: only deliver the set service event bits</issue>
  <issue id="1221633" tracker="bnc">s390/pai: fix attr_event_free upper limit for pai device drivers</issue>
  <issue id="1221713" tracker="bnc">Kernel compilation fails after update from 5.14.21-150500.55.49.1 to 5.14.21-150500.55.52.1</issue>
  <issue id="1221777" tracker="bnc">Update Broadcom Emulex lpfc driver for SLES15 SP6 to 14.4.0.1</issue>
  <issue id="1221814" tracker="bnc">[Build 137.7] Textmode installation fails with kernel crash in 15-SP5 QR3 SS3</issue>
  <issue id="1221816" tracker="bnc">qla2xxx: update driver to 10.02.09.200-k</issue>
  <issue id="1221830" tracker="bnc">VUL-0: CVE-2024-26642: kernel: netfilter: nf_tables: disallow anonymous set with timeout flag</issue>
  <issue id="1221951" tracker="bnc">s390/vtime: fix average steal time calculation</issue>
  <issue id="1222033" tracker="bnc">[SLE15-SP5] bpf: selftests: fail to build due to use of new test infrastructure</issue>
  <issue id="1222056" tracker="bnc">VUL-0: CVE-2024-26645: kernel: tracing: ensure visibility when inserting an element into tracing_map</issue>
  <issue id="1222060" tracker="bnc">VUL-0: CVE-2023-52623: kernel: SUNRPC: suspicious RCU usage in rpc_xprt_switch_has_addr()</issue>
  <issue id="1222070" tracker="bnc">VUL-0: CVE-2024-26646: kernel: thermal: intel: hfi: potential memory corruption when resuming from suspend or hibernation</issue>
  <issue id="1222073" tracker="bnc">VUL-0: CVE-2023-52621: kernel: bpf: check rcu_read_lock_trace_held() before calling bpf map helpers</issue>
  <issue id="1222117" tracker="bnc">VUL-0: CVE-2023-52628: kernel: netfilter: nftables: exthdr: 4-byte stack OOB write</issue>
  <issue id="1222274" tracker="bnc">VUL-0: CVE-2023-52632: kernel: drm/amdkfd: Fix lock dependency warning with srcu</issue>
  <issue id="1222291" tracker="bnc">VUL-0: CVE-2023-52637: kernel: can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER)</issue>
  <issue id="1222300" tracker="bnc">VUL-0: CVE-2023-52639: kernel: KVM: s390: vsie: fix race during shadow creation</issue>
  <issue id="1222304" tracker="bnc">VUL-0: CVE-2024-26654: kernel: ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs</issue>
  <issue id="1222317" tracker="bnc">VUL-0: CVE-2024-26659: kernel: xhci: handle isoc Babble and Buffer Overrun events properly</issue>
  <issue id="1222331" tracker="bnc">VUL-0: CVE-2024-26667: kernel: drm/msm/dpu: check for valid hw_pp in dpu_encoder_helper_phys_cleanup</issue>
  <issue id="1222355" tracker="bnc">VUL-0: CVE-2024-26664: kernel: hwmon: (coretemp) Fix out-of-bounds memory access</issue>
  <issue id="1222356" tracker="bnc">VUL-0: CVE-2024-26670: kernel: arm64: entry: fix ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD</issue>
  <issue id="1222360" tracker="bnc">VUL-0: CVE-2024-26717: kernel: HID: i2c-hid-of: fix NULL-deref on failed power up</issue>
  <issue id="1222366" tracker="bnc">page_owner fixups for page_owner_stacks</issue>
  <issue id="1222373" tracker="bnc">VUL-0: CVE-2024-26695: kernel: crypto: ccp - Fix null pointer dereference in __sev_platform_shutdown_locked</issue>
  <issue id="1222619" tracker="bnc">VUL-0: kernel: tty/n_gsm: 0day with exploit dropped on Github</issue>
  <issue id="2021-46925" tracker="cve" />
  <issue id="2021-46926" tracker="cve" />
  <issue id="2021-46927" tracker="cve" />
  <issue id="2021-46929" tracker="cve" />
  <issue id="2021-46930" tracker="cve" />
  <issue id="2021-46931" tracker="cve" />
  <issue id="2021-46933" tracker="cve" />
  <issue id="2021-46936" tracker="cve" />
  <issue id="2021-47082" tracker="cve" />
  <issue id="2021-47087" tracker="cve" />
  <issue id="2021-47091" tracker="cve" />
  <issue id="2021-47093" tracker="cve" />
  <issue id="2021-47094" tracker="cve" />
  <issue id="2021-47095" tracker="cve" />
  <issue id="2021-47096" tracker="cve" />
  <issue id="2021-47097" tracker="cve" />
  <issue id="2021-47098" tracker="cve" />
  <issue id="2021-47099" tracker="cve" />
  <issue id="2021-47100" tracker="cve" />
  <issue id="2021-47101" tracker="cve" />
  <issue id="2021-47102" tracker="cve" />
  <issue id="2021-47104" tracker="cve" />
  <issue id="2021-47105" tracker="cve" />
  <issue id="2021-47107" tracker="cve" />
  <issue id="2021-47108" tracker="cve" />
  <issue id="2022-4744" tracker="cve" />
  <issue id="2022-48626" tracker="cve" />
  <issue id="2022-48629" tracker="cve" />
  <issue id="2022-48630" tracker="cve" />
  <issue id="2023-0160" tracker="cve" />
  <issue id="2023-28746" tracker="cve" />
  <issue id="2023-35827" tracker="cve" />
  <issue id="2023-4881" tracker="cve" />
  <issue id="2023-52447" tracker="cve" />
  <issue id="2023-52450" tracker="cve" />
  <issue id="2023-52453" tracker="cve" />
  <issue id="2023-52454" tracker="cve" />
  <issue id="2023-52469" tracker="cve" />
  <issue id="2023-52470" tracker="cve" />
  <issue id="2023-52474" tracker="cve" />
  <issue id="2023-52476" tracker="cve" />
  <issue id="2023-52477" tracker="cve" />
  <issue id="2023-52481" tracker="cve" />
  <issue id="2023-52484" tracker="cve" />
  <issue id="2023-52486" tracker="cve" />
  <issue id="2023-52492" tracker="cve" />
  <issue id="2023-52493" tracker="cve" />
  <issue id="2023-52494" tracker="cve" />
  <issue id="2023-52497" tracker="cve" />
  <issue id="2023-52500" tracker="cve" />
  <issue id="2023-52501" tracker="cve" />
  <issue id="2023-52502" tracker="cve" />
  <issue id="2023-52504" tracker="cve" />
  <issue id="2023-52507" tracker="cve" />
  <issue id="2023-52508" tracker="cve" />
  <issue id="2023-52509" tracker="cve" />
  <issue id="2023-52510" tracker="cve" />
  <issue id="2023-52511" tracker="cve" />
  <issue id="2023-52513" tracker="cve" />
  <issue id="2023-52515" tracker="cve" />
  <issue id="2023-52517" tracker="cve" />
  <issue id="2023-52518" tracker="cve" />
  <issue id="2023-52519" tracker="cve" />
  <issue id="2023-52520" tracker="cve" />
  <issue id="2023-52523" tracker="cve" />
  <issue id="2023-52524" tracker="cve" />
  <issue id="2023-52525" tracker="cve" />
  <issue id="2023-52528" tracker="cve" />
  <issue id="2023-52529" tracker="cve" />
  <issue id="2023-52532" tracker="cve" />
  <issue id="2023-52563" tracker="cve" />
  <issue id="2023-52564" tracker="cve" />
  <issue id="2023-52566" tracker="cve" />
  <issue id="2023-52567" tracker="cve" />
  <issue id="2023-52569" tracker="cve" />
  <issue id="2023-52574" tracker="cve" />
  <issue id="2023-52575" tracker="cve" />
  <issue id="2023-52576" tracker="cve" />
  <issue id="2023-52582" tracker="cve" />
  <issue id="2023-52583" tracker="cve" />
  <issue id="2023-52587" tracker="cve" />
  <issue id="2023-52591" tracker="cve" />
  <issue id="2023-52594" tracker="cve" />
  <issue id="2023-52595" tracker="cve" />
  <issue id="2023-52597" tracker="cve" />
  <issue id="2023-52598" tracker="cve" />
  <issue id="2023-52599" tracker="cve" />
  <issue id="2023-52600" tracker="cve" />
  <issue id="2023-52601" tracker="cve" />
  <issue id="2023-52602" tracker="cve" />
  <issue id="2023-52603" tracker="cve" />
  <issue id="2023-52604" tracker="cve" />
  <issue id="2023-52605" tracker="cve" />
  <issue id="2023-52606" tracker="cve" />
  <issue id="2023-52607" tracker="cve" />
  <issue id="2023-52608" tracker="cve" />
  <issue id="2023-52612" tracker="cve" />
  <issue id="2023-52615" tracker="cve" />
  <issue id="2023-52617" tracker="cve" />
  <issue id="2023-52619" tracker="cve" />
  <issue id="2023-52621" tracker="cve" />
  <issue id="2023-52623" tracker="cve" />
  <issue id="2023-52628" tracker="cve" />
  <issue id="2023-52632" tracker="cve" />
  <issue id="2023-52637" tracker="cve" />
  <issue id="2023-52639" tracker="cve" />
  <issue id="2023-6356" tracker="cve" />
  <issue id="2023-6535" tracker="cve" />
  <issue id="2023-6536" tracker="cve" />
  <issue id="2023-7042" tracker="cve" />
  <issue id="2023-7192" tracker="cve" />
  <issue id="2024-0841" tracker="cve" />
  <issue id="2024-2201" tracker="cve" />
  <issue id="2024-22099" tracker="cve" />
  <issue id="2024-23307" tracker="cve" />
  <issue id="2024-25739" tracker="cve" />
  <issue id="2024-26599" tracker="cve" />
  <issue id="2024-26600" tracker="cve" />
  <issue id="2024-26602" tracker="cve" />
  <issue id="2024-26612" tracker="cve" />
  <issue id="2024-26614" tracker="cve" />
  <issue id="2024-26620" tracker="cve" />
  <issue id="2024-26627" tracker="cve" />
  <issue id="2024-26629" tracker="cve" />
  <issue id="2024-26642" tracker="cve" />
  <issue id="2024-26645" tracker="cve" />
  <issue id="2024-26646" tracker="cve" />
  <issue id="2024-26651" tracker="cve" />
  <issue id="2024-26654" tracker="cve" />
  <issue id="2024-26659" tracker="cve" />
  <issue id="2024-26664" tracker="cve" />
  <issue id="2024-26667" tracker="cve" />
  <issue id="2024-26670" tracker="cve" />
  <issue id="2024-26695" tracker="cve" />
  <issue id="2024-26717" tracker="cve" />
  <issue id="PED-5759" tracker="jsc" />
  <issue id="PED-7167" tracker="jsc" />
  <issue id="PED-7619" tracker="jsc" />
  <category>security</category>
  <rating>important</rating>
  <packager>olh</packager>
  <reboot_needed/>
  <description>
The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.

NOTE: This update has been retracted due to a bug in the BHI CPU sidechannel mitigation, which led to incorrect selection of other CPU mitigations.

The following security bugs were fixed:

- CVE-2021-46925: Fixed kernel panic caused by race of smc_sock (bsc#1220466).
- CVE-2021-46926: Fixed bug when detecting controllers in ALSA/hda/intel-sdw-acpi (bsc#1220478).
- CVE-2021-46927: Fixed assertion bug in nitro_enclaves: Use get_user_pages_unlocked() (bsc#1220443).
- CVE-2021-46929: Fixed use-after-free issue in sctp_sock_dump() (bsc#1220482).
- CVE-2021-46930: Fixed usb/mtu3 list_head check warning (bsc#1220484).
- CVE-2021-46931: Fixed wrong type casting in mlx5e_tx_reporter_dump_sq() (bsc#1220486).
- CVE-2021-46933: Fixed possible underflow in ffs_data_clear() (bsc#1220487).
- CVE-2021-46936: Fixed use-after-free in tw_timer_handler() (bsc#1220439).
- CVE-2021-47082: Fixed ouble free in tun_free_netdev() (bsc#1220969).
- CVE-2021-47087: Fixed incorrect page free bug in tee/optee (bsc#1220954).
- CVE-2021-47091: Fixed locking in ieee80211_start_ap()) error path (bsc#1220959).
- CVE-2021-47093: Fixed memleak on registration failure in intel_pmc_core (bsc#1220978).
- CVE-2021-47094: Fixed possible memory leak in KVM x86/mmu (bsc#1221551).
- CVE-2021-47095: Fixed missing initialization in ipmi/ssif (bsc#1220979).
- CVE-2021-47096: Fixed uninitalized user_pversion in ALSA rawmidi (bsc#1220981).
- CVE-2021-47097: Fixed stack out of bound access in elantech_change_report_id() (bsc#1220982).
- CVE-2021-47098: Fixed integer overflow/underflow in hysteresis calculations hwmon: (lm90) (bsc#1220983).
- CVE-2021-47099: Fixed BUG_ON assertion in veth when skb entering GRO are cloned (bsc#1220955).
- CVE-2021-47100: Fixed UAF when uninstall in ipmi (bsc#1220985).
- CVE-2021-47101: Fixed uninit-value in asix_mdio_read() (bsc#1220987).
- CVE-2021-47102: Fixed incorrect structure access In line: upper = info->upper_dev in net/marvell/prestera (bsc#1221009).
- CVE-2021-47104: Fixed memory leak in qib_user_sdma_queue_pkts() (bsc#1220960).
- CVE-2021-47105: Fixed potential memory leak in ice/xsk (bsc#1220961).
- CVE-2021-47107: Fixed READDIR buffer overflow in NFSD (bsc#1220965).
- CVE-2021-47108: Fixed possible NULL pointer dereference for mtk_hdmi_conf in drm/mediatek (bsc#1220986).
- CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality (bsc#1209635).
- CVE-2022-48626: Fixed a potential use-after-free on remove path moxart (bsc#1220366).
- CVE-2022-48629: Fixed possible memory leak in qcom-rng (bsc#1220989).
- CVE-2022-48630: Fixed infinite loop on requests not multiple of WORD_SZ in crypto: qcom-rng (bsc#1220990).
- CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657).
- CVE-2023-28746: Fixed Register File Data Sampling (bsc#1213456).
- CVE-2023-35827: Fixed a use-after-free issue in ravb_tx_timeout_work() (bsc#1212514).
- CVE-2023-4881: Fixed a out-of-bounds write flaw in the netfilter subsystem that could lead to potential information disclosure or a denial of service (bsc#1215221).
- CVE-2023-52447: Fixed map_fd_put_ptr() signature kABI workaround  (bsc#1220251).
- CVE-2023-52450: Fixed NULL pointer dereference issue in upi_fill_topology() (bsc#1220237).
- CVE-2023-52453: Fixed data corruption in hisi_acc_vfio_pci (bsc#1220337).
- CVE-2023-52454: Fixed a kernel panic when host sends an invalid H2C PDU length (bsc#1220320).
- CVE-2023-52469: Fixed a use-after-free in kv_parse_power_table (bsc#1220411).
- CVE-2023-52470: Fixed null-ptr-deref in radeon_crtc_init() (bsc#1220413).
- CVE-2023-52474: Fixed a vulnerability with non-PAGE_SIZE-end multi-iovec user SDMA requests (bsc#1220445).
- CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703).
- CVE-2023-52477: Fixed USB Hub accesses to uninitialized BOS descriptors (bsc#1220790).
- CVE-2023-52481: Fixed speculative unprivileged load in Cortex-A520 (bsc#1220887).
- CVE-2023-52484: Fixed a soft lockup triggered by arm_smmu_mm_invalidate_range (bsc#1220797).
- CVE-2023-52486: Fixed possible use-after-free in drm (bsc#1221277).
- CVE-2023-52492: Fixed a null-pointer-dereference in channel unregistration function __dma_async_device_channel_register() (bsc#1221276).
- CVE-2023-52493: Fixed possible soft lockup in bus/mhi/host (bsc#1221274).
- CVE-2023-52494: Fixed missing alignment check for event ring read pointer in bus/mhi/host (bsc#1221273).
- CVE-2023-52497: Fixed data corruption in erofs (bsc#1220879).
- CVE-2023-52500: Fixed information leaking when processing OPC_INB_SET_CONTROLLER_CONFIG command (bsc#1220883).
- CVE-2023-52501: Fixed possible memory corruption in ring-buffer (bsc#1220885).
- CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220831).
- CVE-2023-52504: Fixed possible out-of bounds in apply_alternatives() on a 5-level paging machine (bsc#1221553).
- CVE-2023-52507: Fixed possible shift-out-of-bounds in nfc/nci (bsc#1220833).
- CVE-2023-52508: Fixed null pointer dereference in nvme_fc_io_getuuid() (bsc#1221015).
- CVE-2023-52509: Fixed a use-after-free issue in ravb_tx_timeout_work() (bsc#1220836).
- CVE-2023-52510: Fixed a potential UAF in ca8210_probe() (bsc#1220898).
- CVE-2023-52511: Fixed possible memory corruption in spi/sun6i (bsc#1221012).
- CVE-2023-52513: Fixed connection failure handling  in RDMA/siw (bsc#1221022).
- CVE-2023-52515: Fixed possible use-after-free in RDMA/srp (bsc#1221048).
- CVE-2023-52517: Fixed race between DMA RX transfer completion and RX FIFO drain in spi/sun6i (bsc#1221055).
- CVE-2023-52518: Fixed information leak in bluetooth/hci_codec (bsc#1221056).
- CVE-2023-52519: Fixed possible overflow in HID/intel-ish-hid/ipc (bsc#1220920).
- CVE-2023-52520: Fixed reference leak in platform/x86/think-lmi (bsc#1220921).
- CVE-2023-52523: Fixed wrong redirects to non-TCP sockets in bpf (bsc#1220926).
- CVE-2023-52524: Fixed possible corruption in nfc/llcp (bsc#1220927).
- CVE-2023-52525: Fixed out of bounds check mwifiex_process_rx_packet() (bsc#1220840).
- CVE-2023-52528: Fixed uninit-value access in __smsc75xx_read_reg() (bsc#1220843).
- CVE-2023-52529: Fixed a potential memory leak in sony_probe() (bsc#1220929).
- CVE-2023-52532: Fixed a bug in TX CQE error handling (bsc#1220932).
- CVE-2023-52563: Fixed memory leak on ->hpd_notify callback() in drm/meson (bsc#1220937).
- CVE-2023-52564: Reverted invalid fix for UAF in gsm_cleanup_mux() (bsc#1220938).
- CVE-2023-52566: Fixed potential use after free in nilfs_gccache_submit_read_data() (bsc#1220940).
- CVE-2023-52567: Fixed possible Oops in  serial/8250_port: when using IRQ polling (irq = 0) (bsc#1220839).
- CVE-2023-52569: Fixed a bug in btrfs by remoning BUG() after failure to insert delayed dir index item (bsc#1220918).
- CVE-2023-52574: Fixed a bug by hiding new member header_ops (bsc#1220870).
- CVE-2023-52575: Fixed SBPB enablement for spec_rstack_overflow=off (bsc#1220871).
- CVE-2023-52576: Fixed potential use after free in memblock_isolate_range() (bsc#1220872).
- CVE-2023-52582: Fixed possible oops in netfs (bsc#1220878).
- CVE-2023-52583: Fixed deadlock or deadcode of misusing dget() inside ceph (bsc#1221058).
- CVE-2023-52587: Fixed mcast list locking in IB/ipoib (bsc#1221082).
- CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044).
- CVE-2023-52594: Fixed potential array-index-out-of-bounds read in ath9k_htc_txstatus() (bsc#1221045).
- CVE-2023-52595: Fixed possible deadlock in wifi/rt2x00 (bsc#1221046).
- CVE-2023-52597: Fixed a setting of fpc register in KVM (bsc#1221040).
- CVE-2023-52598: Fixed wrong setting of fpc register in s390/ptrace (bsc#1221060).
- CVE-2023-52599: Fixed array-index-out-of-bounds in diNewExt() in jfs (bsc#1221062).
- CVE-2023-52600: Fixed uaf in jfs_evict_inode() (bsc#1221071).
- CVE-2023-52601: Fixed array-index-out-of-bounds in dbAdjTree() in jfs (bsc#1221068).
- CVE-2023-52602: Fixed slab-out-of-bounds Read in dtSearch() in jfs (bsc#1221070).
- CVE-2023-52603: Fixed array-index-out-of-bounds in dtSplitRoot() (bsc#1221066).
- CVE-2023-52604: Fixed array-index-out-of-bounds in dbAdjTree() (bsc#1221067).
- CVE-2023-52605: Fixed a NULL pointer dereference check (bsc#1221039)
- CVE-2023-52606: Fixed possible kernel stack corruption in powerpc/lib (bsc#1221069).
- CVE-2023-52607: Fixed a null-pointer-dereference in pgtable_cache_add kasprintf() (bsc#1221061).
- CVE-2023-52608: Fixed possible race condition in firmware/arm_scmi (bsc#1221375).
- CVE-2023-52612: Fixed req->dst buffer overflow in crypto/scomp (bsc#1221616).
- CVE-2023-52615: Fixed page fault dead lock on mmap-ed hwrng (bsc#1221614).
- CVE-2023-52617: Fixed stdev_release() crash after surprise hot remove (bsc#1221613).
- CVE-2023-52619: Fixed possible crash when setting number of cpus to an odd number in pstore/ram (bsc#1221618).
- CVE-2023-52621: Fixed missing asserion in bpf (bsc#1222073).
- CVE-2023-52623: Fixed suspicious RCU usage in SUNRPC (bsc#1222060).
- CVE-2023-52628: Fixed 4-byte stack OOB write in nftables (bsc#1222117).
- CVE-2023-52632: Fixed lock dependency warning with srcu in drm/amdkfd (bsc#1222274).
- CVE-2023-52637: Fixed UAF in j1939_sk_match_filter() in can/k1939 (bsc#1222291).
- CVE-2023-52639: Fixed race during shadow creation in KVM/s390/vsie Fixed (bsc#1222300).
- CVE-2023-6356: Fixed a NULL pointer dereference in nvmet_tcp_build_pdu_iovec (bsc#1217987).
- CVE-2023-6535: Fixed a NULL pointer dereference in nvmet_tcp_execute_request (bsc#1217988).
- CVE-2023-6536: Fixed a NULL pointer dereference in __nvmet_req_complete (bsc#1217989).
- CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336).
- CVE-2023-7192: Fixed a memory leak problem in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c (bsc#1218479).
- CVE-2024-0841: Fixed null pointer dereference in hugetlbfs_fill_super() (bsc#1219264).
- CVE-2024-2201: Fixed information leak in x86/BHI (bsc#1217339).
- CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170).
- CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169).
- CVE-2024-25739: Fixed possible crash in create_empty_lvol() in drivers/mtd/ubi/vtbl.c (bsc#1219834).
- CVE-2024-26599: Fixed out-of-bounds access in of_pwm_single_xlate() (bsc#1220365).
- CVE-2024-26600: Fixed NULL pointer dereference for SRP in phy-omap-usb2 (bsc#1220340).
- CVE-2024-26602: Fixed overall slowdowns with sys_membarrier (bsc1220398).
- CVE-2024-26612: Fixed Oops in fscache_put_cache() This function dereferences  (bsc#1221291).
- CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293).
- CVE-2024-26620: Fixed possible device model violation in s390/vfio-ap (bsc#1221298).
- CVE-2024-26627: Fixed possible hard lockup in scsi (bsc#1221090).
- CVE-2024-26629: Fixed possible protocol violation via RELEASE_LOCKOWNER in nfsd (bsc#1221379).
- CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830).
- CVE-2024-26645: Fixed missing visibility when inserting an element into tracing_map (bsc#1222056).
- CVE-2024-26646: Fixed potential memory corruption when resuming from suspend or hibernation in thermal/intel/hfi (bsc#1222070).
- CVE-2024-26651: Fixed possible oops via malicious devices in sr9800 (bsc#1221337).
- CVE-2024-26654: Fixed use after free in ALSA/sh/aica (bsc#1222304).
- CVE-2024-26659: Fixed wrong handling of isoc Babble and Buffer Overrun events in xhci (bsc#1222317).
- CVE-2024-26664: Fixed out-of-bounds memory access in create_core_data() in hwmon coretemp (bsc#1222355).
- CVE-2024-26667: Fixed null pointer reference in dpu_encoder_helper_phys_cleanup in drm/msm/dpu (bsc#1222331).
- CVE-2024-26670: Fixed ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD workaround in kernel arm64 (bsc#1222356).
- CVE-2024-26695: Fixed null pointer dereference in __sev_platform_shutdown_locked in crypto ccp (bsc#1222373).
- CVE-2024-26717: Fixed null pointer dereference on failed power up in HID i2c-hid-of (bsc#1222360).

The following non-security bugs were fixed:

- Revert "PCI: tegra194: Enable support for 256 Byte payload" (git-fixes).
- Revert "Revert "drm/amdgpu/display: change pipe policy for DCN 2.0"" (git-fixes).
- Revert "SUNRPC dont update timeout value on connection reset" (git-fixes).
- Revert "drm/amd: Disable PSR-SU on Parade 0803 TCON" (git-fixes).
- Revert "drm/amd: Disable S/G for APUs when 64GB or more host memory" (git-fixes).
- Revert "drm/amdgpu/display: change pipe policy for DCN 2.0" (git-fixes).
- Revert "drm/amdgpu/display: change pipe policy for DCN 2.1" (git-fixes).
- Revert "drm/vc4: hdmi: Enforce the minimum rate at runtime_resume" (git-fixes).
- Revert "fbdev: flush deferred IO before closing (git-fixes)." (bsc#1221814)
- acpi: CPPC: enable AMD CPPC V2 support for family 17h processors (git-fixes).
- acpi: processor_idle: Fix memory leak in acpi_processor_power_exit() (git-fixes).
- acpi: resource: Add Infinity laptops to irq1_edge_low_force_override (stable-fixes).
- acpi: resource: Add MAIBENBEN X577 to irq1_edge_low_force_override (git-fixes).
- acpi: resource: Do IRQ override on Lunnen Ground laptops (stable-fixes).
- acpi: scan: Fix device check notification handling (git-fixes).
- acpica: debugger: check status of acpi_evaluate_object() in acpi_db_walk_for_fields() (git-fixes).
- alsa: aaci: Delete unused variable in aaci_do_suspend (git-fixes).
- alsa: aoa: avoid false-positive format truncation warning (git-fixes).
- alsa: aw2: avoid casting function pointers (git-fixes).
- alsa: ctxfi: avoid casting function pointers (git-fixes).
- alsa: hda/realtek - ALC285 reduce pop noise from Headphone port (stable-fixes).
- alsa: hda/realtek - Add Headset Mic supported Acer NB platform (stable-fixes).
- alsa: hda/realtek - Fix headset Mic no show at resume back for Lenovo ALC897 platform (git-fixes).
- alsa: hda/realtek: Enable Mute LED on HP 840 G8 (MB 8AB8) (git-fixes).
- alsa: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with microphone (git-fixes).
- alsa: hda/realtek: fix ALC285 issues on HP Envy x360 laptops (stable-fixes).
- alsa: hda/realtek: fix mute/micmute LED For HP mt440 (git-fixes).
- alsa: hda/realtek: fix mute/micmute LEDs for HP EliteBook (stable-fixes).
- alsa: seq: fix function cast warnings (git-fixes).
- alsa: sh: aica: reorder cleanup operations to avoid UAF bugs (git-fixes).
- alsa: usb-audio: Stop parsing channels bits when all channels are found (git-fixes).
- arm64: dts: allwinner: h6: Add RX DMA channel for SPDIF (git-fixes)
- arm64: dts: broadcom: bcmbca: bcm4908: drop invalid switch cells (git-fixes)
- arm64: dts: imx8mm-kontron: Add support for ultra high speed modes on (git-fixes)
- arm64: dts: imx8mm-venice-gw71xx: fix USB OTG VBUS (git-fixes)
- arm64: dts: marvell: reorder crypto interrupts on Armada SoCs (git-fixes)
- arm64: dts: rockchip: add ES8316 codec for ROCK Pi 4 (git-fixes)
- arm64: dts: rockchip: add SPDIF node for ROCK Pi 4 (git-fixes)
- arm64: dts: rockchip: fix regulator name on rk3399-rock-4 (git-fixes)
- arm64: dts: rockchip: set num-cs property for spi on px30 (git-fixes)
- arm64: mm: fix VA-range sanity check (git-fixes)
- arm64: set __exception_irq_entry with __irq_entry as a default (git-fixes)
- asoc: Intel: bytcr_rt5640: Add an extra entry for the Chuwi Vi8 tablet (stable-fixes).
- asoc: amd: acp: Add missing error handling in sof-mach (git-fixes).
- asoc: amd: acp: fix for acp_init function error handling (git-fixes).
- asoc: madera: Fix typo in madera_set_fll_clks shift value (git-fixes).
- asoc: meson: Use dev_err_probe() helper (stable-fixes).
- asoc: meson: aiu: fix function pointer type mismatch (git-fixes).
- asoc: meson: axg-tdm-interface: add frame rate constraint (git-fixes).
- asoc: meson: axg-tdm-interface: fix mclk setup without mclk-fs (git-fixes).
- asoc: meson: t9015: fix function pointer type mismatch (git-fixes).
- asoc: ops: Fix wraparound for mask in snd_soc_get_volsw (git-fixes).
- asoc: rcar: adg: correct TIMSEL setting for SSI9 (git-fixes).
- asoc: rt5645: Make LattePanda board DMI match more precise (stable-fixes).
- asoc: rt5682-sdw: fix locking sequence (git-fixes).
- asoc: rt711-sdca: fix locking sequence (git-fixes).
- asoc: rt711-sdw: fix locking sequence (git-fixes).
- asoc: wm8962: Enable both SPKOUTR_ENA and SPKOUTL_ENA in mono mode (stable-fixes).
- asoc: wm8962: Enable oscillator if selecting WM8962_FLL_OSC (stable-fixes).
- asoc: wm8962: Fix up incorrect error message in wm8962_set_fll (stable-fixes).
- ata: sata_mv: Fix PCI device ID table declaration compilation warning (git-fixes).
- ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit (git-fixes).
- backlight: da9052: Fully initialize backlight_properties during probe (git-fixes).
- backlight: lm3630a: Do not set bl->props.brightness in get_brightness (git-fixes).
- backlight: lm3630a: Initialize backlight_properties on init (git-fixes).
- backlight: lm3639: Fully initialize backlight_properties during probe (git-fixes).
- backlight: lp8788: Fully initialize backlight_properties during probe (git-fixes).
- blocklayoutdriver: Fix reference leak of pnfs_device_node (git-fixes).
- bluetooth: hci_core: Fix possible buffer overflow (git-fixes).
- bluetooth: mgmt: Remove leftover queuing of power_off work (git-fixes).
- bluetooth: remove HCI_POWER_OFF_TIMEOUT (git-fixes).
- bluetooth: remove superfluous call to hci_conn_check_pending() (git-fixes).
- bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security (stable-fixes).
- bpf, scripts: Correct GPL license name (git-fixes).
- bpf, sockmap: Fix preempt_rt splat when using raw_spin_lock_t (git-fixes).
- can: softing: remove redundant NULL check (git-fixes).
- clk: zynq: Prevent null pointer dereference caused by kmalloc failure (git-fixes).
- comedi: comedi_test: Prevent timers rescheduling during deletion (git-fixes).
- coresight: etm4x: Do not access TRCIDR1 for identification (bsc#1220775)
- coresight: etm4x: Fix accesses to TRCSEQRSTEVR and TRCSEQSTR (bsc#1220775)
- coresight: etm: Override TRCIDR3.CCITMIN on errata affected cpus (bsc#1220775)
- cpufreq: amd-pstate: Fix min_perf assignment in amd_pstate_adjust_perf() (git-fixes).
- cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value (git-fixes).
- crypto: arm/sha - fix function cast warnings (git-fixes).
- crypto: qat - avoid division by zero (git-fixes).
- crypto: qat - fix deadlock in backlog processing (git-fixes).
- crypto: qat - fix double free during reset (git-fixes).
- crypto: qat - fix state machines cleanup paths (bsc#1218321).
- crypto: qat - fix unregistration of compression algorithms (git-fixes).
- crypto: qat - fix unregistration of crypto algorithms (git-fixes).
- crypto: qat - ignore subsequent state up commands (git-fixes).
- crypto: qat - increase size of buffers (git-fixes).
- crypto: qat - resolve race condition during AER recovery (git-fixes).
- crypto: xilinx - call finalize with bh disabled (git-fixes).
- doc-guide: kernel-doc: tell about object-like macros (git-fixes).
- doc/README.SUSE: Update information about module support status (jsc#PED-5759)
- drivers: hv: vmbus: Calculate ring buffer size for more efficient use of memory (git-fixes).
- drm/amd/display: Add FAMS validation before trying to use it (git-fixes).
- drm/amd/display: Add function for validate and update new stream (git-fixes).
- drm/amd/display: Avoid ABM when ODM combine is enabled for eDP (git-fixes).
- drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31 (git-fixes).
- drm/amd/display: Check if link state is valid (git-fixes).
- drm/amd/display: Copy DC context in the commit streams (git-fixes).
- drm/amd/display: Disable PSR-SU on Parade 0803 TCON again (git-fixes).
- drm/amd/display: Enable fast plane updates on DCN3.2 and above (git-fixes).
- drm/amd/display: Enable new commit sequence only for DCN32x (git-fixes).
- drm/amd/display: Exit idle optimizations before attempt to access PHY (git-fixes).
- drm/amd/display: Expand kernel doc for DC (git-fixes).
- drm/amd/display: Fix a bug when searching for insert_above_mpcc (git-fixes).
- drm/amd/display: Fix a potential buffer overflow in 'dp_dsc_clock_en_read()' (git-fixes).
- drm/amd/display: Fix possible underflow for displays with large vblank (git-fixes).
- drm/amd/display: Fix the delta clamping for shaper LUT (git-fixes).
- drm/amd/display: Fix underflow issue on 175hz timing (git-fixes).
- drm/amd/display: For prefetch mode > 0, extend prefetch if possible (git-fixes).
- drm/amd/display: Guard DCN31 PHYD32CLK logic against chip family (git-fixes).
- drm/amd/display: Guard against invalid RPTR/WPTR being set (git-fixes).
- drm/amd/display: Handle seamless boot stream (git-fixes).
- drm/amd/display: Handle virtual hardware detect (git-fixes).
- drm/amd/display: Include surface of unaffected streams (git-fixes).
- drm/amd/display: Include udelay when waiting for INBOX0 ACK (git-fixes).
- drm/amd/display: Increase frame warning limit with KASAN or KCSAN in dml (git-fixes).
- drm/amd/display: Keep PHY active for dp config (git-fixes).
- drm/amd/display: Prevent vtotal from being set to 0 (git-fixes).
- drm/amd/display: Remove min_dst_y_next_start check for Z8 (git-fixes).
- drm/amd/display: Restore rptr/wptr for DMCUB as workaround (git-fixes).
- drm/amd/display: Return the correct HDCP error code (stable-fixes).
- drm/amd/display: Revert vblank change that causes null pointer crash (git-fixes).
- drm/amd/display: Rework comments on dc file (git-fixes).
- drm/amd/display: Rework context change check (git-fixes).
- drm/amd/display: Set minimum requirement for using PSR-SU on Phoenix (git-fixes).
- drm/amd/display: Set minimum requirement for using PSR-SU on Rembrandt (git-fixes).
- drm/amd/display: Update OTG instance in the commit stream (git-fixes).
- drm/amd/display: Update correct DCN314 register header (git-fixes).
- drm/amd/display: Update min Z8 residency time to 2100 for DCN314 (git-fixes).
- drm/amd/display: Use DRAM speed from validation for dummy p-state (git-fixes).
- drm/amd/display: Use DTBCLK as refclk instead of DPREFCLK (git-fixes).
- drm/amd/display: Use min transition for all SubVP plane add/remove (git-fixes).
- drm/amd/display: Write to correct dirty_rect (git-fixes).
- drm/amd/display: Wrong colorimetry workaround (git-fixes).
- drm/amd/display: add FB_DAMAGE_CLIPS support (git-fixes).
- drm/amd/display: add ODM case when looking for first split pipe (git-fixes).
- drm/amd/display: always switch off ODM before committing more streams (git-fixes).
- drm/amd/display: clean code-style issues in dcn30_set_mpc_shaper_3dlut (git-fixes).
- drm/amd/display: dc.h: eliminate kernel-doc warnings (git-fixes).
- drm/amd/display: ensure async flips are only accepted for fast updates (git-fixes).
- drm/amd/display: fix ABM disablement (git-fixes).
- drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer() (git-fixes).
- drm/amd/display: fix dc/core/dc.c kernel-doc (git-fixes).
- drm/amd/display: fix hw rotated modes when PSR-SU is enabled (git-fixes).
- drm/amd/display: fix kernel-doc issues in dc.h (git-fixes).
- drm/amd/display: fix unbounded requesting for high pixel rate modes on dcn315 (git-fixes).
- drm/amd/display: handle range offsets in VRR ranges (stable-fixes).
- drm/amd/display: perform a bounds check before filling dirty rectangles (git-fixes).
- drm/amd/display: set per pipe dppclk to 0 when dpp is off (git-fixes).
- drm/amd/display: update extended blank for dcn314 onwards (git-fixes).
- drm/amd/display: use low clocks for no plane configs (git-fixes).
- drm/amd/pm: Fix error of MACO flag setting code (git-fixes).
- drm/amd/pm: fix a memleak in aldebaran_tables_init (git-fixes).
- drm/amd/smu: use AverageGfxclkFrequency* to replace previous GFX Curr Clock (git-fixes).
- drm/amd: Enable PCIe PME from D3 (git-fixes).
- drm/amdgpu/pm: Fix the error of pwm1_enable setting (stable-fixes).
- drm/amdgpu/pm: make gfxclock consistent for sienna cichlid (git-fixes).
- drm/amdgpu/pm: make mclk consistent for smu 13.0.7 (git-fixes).
- drm/amdgpu/smu13: drop compute workload workaround (git-fixes).
- drm/amdgpu: Enable gpu reset for S3 abort cases on Raven series (stable-fixes).
- drm/amdgpu: Fix missing break in ATOM_ARG_IMM Case of atom_get_src_int() (git-fixes).
- drm/amdgpu: Force order between a read and write to the same address (git-fixes).
- drm/amdgpu: Match against exact bootloader status (git-fixes).
- drm/amdgpu: Unset context priority is now invalid (git-fixes).
- drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl' (git-fixes).
- drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag (stable-fixes).
- drm/amdgpu: lower CS errors to debug severity (git-fixes).
- drm/amdkfd: fix TLB flush after unmap for GFX9.4.2 (stable-fixes).
- drm/bridge: tc358762: Instruct DSI host to generate HSE packets (git-fixes).
- drm/display: fix typo (git-fixes).
- drm/edid: Add quirk for OSVR HDK 2.0 (git-fixes).
- drm/etnaviv: Restore some id values (git-fixes).
- drm/exynos: do not return negative values from .get_modes() (stable-fixes).
- drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() (git-fixes).
- drm/i915/bios: Tolerate devdata==NULL in intel_bios_encoder_supports_dp_dual_mode() (stable-fixes).
- drm/i915/gt: Do not generate the command streamer for all the CCS (git-fixes).
- drm/i915/gt: Reset queue_priority_hint on parking (git-fixes).
- drm/i915/gt: Use i915_vm_put on ppgtt_create error paths (git-fixes).
- drm/i915/selftests: Fix dependency of some timeouts on HZ (git-fixes).
- drm/i915: Add missing CCS documentation (git-fixes).
- drm/i915: Call intel_pre_plane_updates() also for pipes getting enabled (git-fixes).
- drm/i915: Check before removing mm notifier (git-fixes).
- drm/lima: fix a memleak in lima_heap_alloc (git-fixes).
- drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip (git-fixes).
- drm/mediatek: dsi: Fix DSI RGB666 formats and definitions (git-fixes).
- drm/msm/dpu: Only enable DSC_MODE_MULTIPLEX if dsc_merge is enabled (git-fixes).
- drm/msm/dpu: add division of drm_display_mode's hskew parameter (git-fixes).
- drm/msm/dpu: fix the programming of INTF_CFG2_DATA_HCTL_EN (git-fixes).
- drm/msm/dpu: improve DSC allocation (git-fixes).
- drm/panel-edp: use put_sync in unprepare (git-fixes).
- drm/panel: Move AUX B116XW03 out of panel-edp back to panel-simple (git-fixes).
- drm/panel: auo,b101uan08.3: Fine tune the panel power sequence (git-fixes).
- drm/panel: boe-tv101wum-nl6: Fine tune the panel power sequence (git-fixes).
- drm/panel: do not return negative error codes from drm_panel_get_modes() (stable-fixes).
- drm/panfrost: fix power transition timeout warnings (git-fixes).
- drm/probe-helper: warn about negative .get_modes() (stable-fixes).
- drm/qxl: remove unused `count` variable from `qxl_surface_id_alloc()` (git-fixes).
- drm/qxl: remove unused variable from `qxl_process_single_command()` (git-fixes).
- drm/radeon/ni: Fix wrong firmware size logging in ni_init_microcode() (git-fixes).
- drm/radeon/ni_dpm: remove redundant NULL check (git-fixes).
- drm/radeon: remove dead code in ni_mc_load_microcode() (git-fixes).
- drm/rockchip: dsi: Clean up 'usage_mode' when failing to attach (git-fixes).
- drm/rockchip: inno_hdmi: Fix video timing (git-fixes).
- drm/rockchip: lvds: do not overwrite error code (git-fixes).
- drm/rockchip: lvds: do not print scary message when probing defer (git-fixes).
- drm/tegra: dpaux: Fix PM disable depth imbalance in tegra_dpaux_probe (git-fixes).
- drm/tegra: dsi: Add missing check for of_find_device_by_node (git-fixes).
- drm/tegra: dsi: Fix missing pm_runtime_disable() in the error handling path of tegra_dsi_probe() (git-fixes).
- drm/tegra: dsi: Fix some error handling paths in tegra_dsi_probe() (git-fixes).
- drm/tegra: dsi: Make use of the helper function dev_err_probe() (stable-fixes).
- drm/tegra: hdmi: Convert to devm_platform_ioremap_resource() (stable-fixes).
- drm/tegra: hdmi: Fix some error handling paths in tegra_hdmi_probe() (git-fixes).
- drm/tegra: output: Fix missing i2c_put_adapter() in the error handling paths of tegra_output_probe() (git-fixes).
- drm/tegra: put drm_gem_object ref on error in tegra_fb_create (git-fixes).
- drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe() (git-fixes).
- drm/tegra: rgb: Fix some error handling paths in tegra_dc_rgb_probe() (git-fixes).
- drm/tidss: Fix initial plane zpos values (git-fixes).
- drm/tidss: Fix sync-lost issue with two displays (git-fixes).
- drm/ttm: Do not leak a resource on eviction error (git-fixes).
- drm/ttm: Do not print error message if eviction was interrupted (git-fixes).
- drm/vc4: Add module dependency on hdmi-codec (git-fixes).
- drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed (git-fixes).
- drm/vmwgfx: Fix possible null pointer derefence with invalid contexts (git-fixes).
- drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node (git-fixes).
- drm: Do not treat 0 as -1 in drm_fixp2int_ceil (git-fixes).
- drm: Fix drm_fixp2int_round() making it add 0.5 (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Acer Switch V 10 (SW5-017) (git-fixes).
- firewire: core: use long bus reset on gap count error (stable-fixes).
- fix "coresight: etm4x: Change etm4_platform_driver driver for MMIO devices" (bsc#1220775) Hunk with clk_put(drvdata->pclk) was incorrectly moved to another function.
- force config_TCG_TIS_CORE=m on aarch64 for workaround kconfig issues
- group-source-files.pl: Quote filenames (boo#1221077). The kernel source now contains a file with a space in the name. Add quotes in group-source-files.pl to avoid splitting the filename. Also use -print0 / -0 when updating timestamps.
- hid: amd_sfh: Update HPD sensor structure elements (git-fixes).
- hid: lenovo: Add middleclick_workaround sysfs knob for cptkbd (git-fixes).
- hid: multitouch: Add required quirk for Synaptics 0xcddc device (stable-fixes).
- hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes (git-fixes).
- hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove (git-fixes).
- hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed (git-fixes).
- i2c: aspeed: Fix the dummy irq expected print (git-fixes).
- i2c: i801: Avoid potential double call to gpiod_remove_lookup_table (git-fixes).
- i2c: wmt: Fix an error handling path in wmt_i2c_probe() (git-fixes).
- ib/ipoib: fix mcast list locking (git-fixes)
- iio: dummy_evgen: remove Excess kernel-doc comments (git-fixes).
- iio: pressure: dlhl60d: Initialize empty DLH bytes (git-fixes).
- input: gpio_keys_polled - suppress deferred probe error for gpio (stable-fixes).
- input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal (git-fixes).
- iommu/amd: Mark interrupt as managed (git-fixes).
- iommu/dma: Trace bounce buffer usage when mapping buffers (git-fixes).
- iommu/mediatek-v1: Fix an error handling path in mtk_iommu_v1_probe() (git-fixes).
- iommu/mediatek: Fix forever loop in error handling (git-fixes).
- iommu/vt-d: Allow to use flush-queue when first level is default (git-fixes).
- iommu/vt-d: Do not issue ATS Invalidation request when device is disconnected (git-fixes).
- iommu/vt-d: Fix PASID directory pointer coherency (git-fixes).
- iommu/vt-d: Set No Execute Enable bit in PASID table entry (git-fixes).
- kABI: PCI: Add locking to RMW PCI Express Capability Register accessors (kabi).
- kconfig: fix infinite loop when expanding a macro at the end of file (git-fixes).
- kernel-binary: Fix i386 build Fixes: 89eaf4cdce05 ("rpm templates: Move macro definitions below buildrequires")
- kernel-binary: Move build script to the end All other spec templates have the build script at the end, only kernel-binary has it in the middle. Align with the other templates.
- kernel-binary: certs: Avoid trailing space
- kernel-binary: vdso: fix filelist for non-usrmerged kernel Fixes: a6ad8af207e6 ("rpm templates: Always define usrmerged")
- kvm: s390: only deliver the set service event bits (git-fixes bsc#1221631).
- leds: aw2013: Unlock mutex before destroying it (git-fixes).
- lib/cmdline: Fix an invalid format specifier in an assertion msg (git-fixes).
- make nvidia Grace-Hopper TPM related drivers build-ins (bsc#1221156)
- md: fix data corruption for raid456 when reshape restart while grow up (git-fixes).
- media: dvb-frontends: avoid stack overflow warnings with clang (git-fixes).
- media: edia: dvbdev: fix a use-after-free (git-fixes).
- media: em28xx: annotate unchecked call to media_device_register() (git-fixes).
- media: go7007: add check of return value of go7007_read_addr() (git-fixes).
- media: go7007: fix a memleak in go7007_load_encoder (git-fixes).
- media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak (git-fixes).
- media: pvrusb2: fix pvr2_stream_callback casts (git-fixes).
- media: pvrusb2: fix uaf in pvr2_context_set_notify (git-fixes).
- media: pvrusb2: remove redundant NULL check (git-fixes).
- media: staging: ipu3-imgu: Set fields before media_entity_pads_init() (git-fixes).
- media: sun8i-di: Fix chroma difference threshold (git-fixes).
- media: sun8i-di: Fix coefficient writes (git-fixes).
- media: sun8i-di: Fix power on/off sequences (git-fixes).
- media: tc358743: register v4l2 async device only after successful setup (git-fixes).
- media: ttpci: fix two memleaks in budget_av_attach (git-fixes).
- media: usbtv: Remove useless locks in usbtv_video_free() (git-fixes).
- media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity (git-fixes).
- media: v4l2-tpg: fix some memleaks in tpg_alloc (git-fixes).
- media: xc4000: Fix atomicity violation in xc4000_get_frequency (git-fixes).
- mfd: altera-sysmgr: Call of_node_put() only when of_parse_phandle() takes a ref (git-fixes).
- mfd: syscon: Call of_node_put() only when of_parse_phandle() takes a ref (git-fixes).
- mm,page_owner: Defer enablement of static branch (bsc#1222366).
- mm,page_owner: Fix accounting of pages when migrating (bsc#1222366).
- mm,page_owner: Fix printing of stack records (bsc#1222366).
- mm,page_owner: Fix refcount imbalance (bsc#1222366).
- mm,page_owner: Update metadata for tail pages (bsc#1222366).
- mm,page_owner: check for null stack_record before bumping its refcount (bsc#1222366).
- mm,page_owner: drop unnecessary check (bsc#1222366).
- mm,page_owner: fix recursion (bsc#1222366).
- mmc: core: Avoid negative index with array access (git-fixes).
- mmc: core: Fix switch on gp3 partition (git-fixes).
- mmc: core: Initialize mmc_blk_ioc_data (git-fixes).
- mmc: mmci: stm32: fix DMA API overlapping mappings warning (git-fixes).
- mmc: mmci: stm32: use a buffer for unaligned DMA requests (git-fixes).
- mmc: tmio: avoid concurrent runs of mmc_request_done() (git-fixes).
- mmc: wmt-sdmmc: remove an incorrect release_mem_region() call in the .remove function (git-fixes).
- mtd: maps: physmap-core: fix flash size larger than 32-bit (git-fixes).
- mtd: rawnand: lpc32xx_mlc: fix irq handler prototype (git-fixes).
- mtd: rawnand: meson: fix scrambling mode value in command macro (git-fixes).
- net/bnx2x: Prevent access to a freed page in page_pool (bsc#1215322).
- net/x25: fix incorrect parameter validation in the x25_getsockopt() function (git-fixes).
- net: Fix features skip in for_each_netdev_feature() (git-fixes).
- net: lan78xx: fix runtime PM count underflow on link stop (git-fixes).
- net: ll_temac: platform_get_resource replaced by wrong function (git-fixes).
- net: mana: Fix Rx DMA datasize and skb_over_panic (git-fixes).
- net: phy: fix phy_get_internal_delay accessing an empty array (git-fixes).
- net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr() (git-fixes).
- nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet (git-fixes).
- nfs: fix an off by one in root_nfs_cat() (git-fixes).
- nfs: rename nfs_client_kset to nfs_kset (git-fixes).
- nfsd: change LISTXATTRS cookie encoding to big-endian (git-fixes).
- nfsd: convert the callback workqueue to use delayed_work (git-fixes).
- nfsd: do not take fi_lock in nfsd_break_deleg_cb() (git-fixes).
- nfsd: fix file memleak on client_opens_release (git-fixes).
- nfsd: fix liSTXATTRS returning a short list with eof=TRUE (git-fixes).
- nfsd: fix liSTXATTRS returning more bytes than maxcount (git-fixes).
- nfsd: fix nfsd4_listxattr_validate_cookie (git-fixes).
- nfsd: lock_rename() needs both directories to live on the same fs (git-fixes).
- nfsd: reschedule CB operations when backchannel rpc_clnt is shut down (git-fixes).
- nfsd: reset cb_seq_status after NFS4ERR_DELAY (git-fixes).
- nfsd: retransmit callbacks after client reconnects (git-fixes).
- nfsd: use vfs setgid helper (git-fixes).
- nfsv4.1/pnfs: Ensure we handle the error NFS4ERR_RETURNCONFLICT (git-fixes).
- nfsv4.1: fix SP4_MACH_CRED protection for pnfs IO (git-fixes).
- nfsv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server (git-fixes).
- nfsv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server (git-fixes).
- nfsv4.2: fix listxattr maximum XDR buffer size (git-fixes).
- nfsv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102 (git-fixes).
- nfsv4.2: fix wrong shrinker_id (git-fixes).
- nfsv4: fix a nfs4_state_manager() race (git-fixes).
- nfsv4: fix a state manager thread deadlock regression (git-fixes).
- nilfs2: fix failure to detect DAT corruption in btree and direct mappings (git-fixes).
- nilfs2: prevent kernel bug at submit_bh_wbc() (git-fixes).
- nouveau/dmem: handle kcalloc() allocation failure (git-fixes).
- nouveau: reset the bo resource bus info after an eviction (git-fixes).
- ntfs: fix use-after-free in ntfs_ucsncmp() (bsc#1221713).
- nvme-fc: do not wait in vain when unloading module (git-fixes).
- nvme: fix reconnection fail due to reserved tag allocation (git-fixes).
- nvmet-fc: abort command when there is no binding (git-fixes).
- nvmet-fc: avoid deadlock on delete association path (git-fixes).
- nvmet-fc: defer cleanup using RCU properly (git-fixes).
- nvmet-fc: hold reference on hostport match (git-fixes).
- nvmet-fc: release reference on target port (git-fixes).
- nvmet-fc: take ref count on tgtport before delete assoc (git-fixes).
- nvmet-fcloop: swap the list_add_tail arguments (git-fixes).
- nvmet-tcp: fix nvme tcp ida memory leak (git-fixes).
- pNFS/flexfiles: Check the layout validity in ff_layout_mirror_prepare_stats (git-fixes).
- pNFS: Fix a hang in nfs4_evict_inode() (git-fixes).
- pNFS: Fix the pnfs block driver's calculation of layoutget size (git-fixes).
- pci/aer: fix rootport attribute paths in ABI docs (git-fixes).
- pci/aspm: use RMW accessors for changing LNKCTL (git-fixes).
- pci/dpc: print all TLP Prefixes, not just the first (git-fixes).
- pci/msi: prevent MSI hardware interrupt number truncation (bsc#1218777)
- pci/p2pdma: Fix a sleeping issue in a RCU read section (git-fixes).
- pci: add locking to RMW PCI Express Capability Register accessors (git-fixes).
- pci: dwc: endpoint: Fix advertised resizable BAR size (git-fixes).
- pci: dwc: endpoint: Fix dw_pcie_ep_raise_msix_irq() alignment support (git-fixes).
- pci: dwc: fix a 64bit bug in dw_pcie_ep_raise_msix_irq() (git-fixes).
- pci: fu740: Set the number of MSI vectors (git-fixes).
- pci: lengthen reset delay for VideoPropulsion Torrent QN16e card (git-fixes).
- pci: make link retraining use RMW accessors for changing LNKCTL (git-fixes).
- pci: mark 3ware-9650SE Root Port Extended Tags as broken (git-fixes).
- pci: mediatek-gen3: Fix translation window size calculation (git-fixes).
- pci: mediatek: Clear interrupt status before dispatching handler (git-fixes).
- pci: qcom: enable BDF to SID translation properly (git-fixes).
- pci: qcom: use DWC helpers for modifying the read-only DBI registers (git-fixes).
- pci: rockchip: Do not advertise MSI-X in PCIe capabilities (git-fixes).
- pci: rockchip: Fix window mapping and address translation for endpoint (git-fixes).
- pci: rockchip: Use 64-bit mask on MSI 64-bit PCI address (git-fixes).
- pci: switchtec: Fix an error handling path in switchtec_pci_probe() (git-fixes).
- pinctrl: mediatek: Drop bogus slew rate register range for MT8192 (git-fixes).
- platform/mellanox: mlxreg-hotplug: Remove redundant NULL-check (git-fixes).
- pm: suspend: Set mem_sleep_current during kernel command line setup (git-fixes).
- powerpc/64s: POWER10 CPU Kconfig build option (bsc#1194869).
- powerpc/boot: Disable power10 features after BOOTAFLAGS assignment (bsc#1194869).
- powerpc/boot: Fix boot wrapper code generation with CONFIG_POWER10_CPU (bsc#1194869).
- powerpc/lib/sstep: Do not use __{get/put}_user() on kernel addresses (bsc#1194869).
- powerpc/lib/sstep: Remove unneeded #ifdef __powerpc64__ (bsc#1194869).
- powerpc/lib/sstep: Use l1_dcache_bytes() instead of opencoding (bsc#1194869).
- powerpc/lib/sstep: use truncate_if_32bit() (bsc#1194869).
- powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV (bsc#1220492 ltc#205270).
- powerpc/pseries: Fix potential memleak in papr_get_attr() (bsc#1200465 ltc#197256 jsc#SLE-18130 git-fixes).
- powerpc/sstep: Use bitwise instead of arithmetic operator for flags (bsc#1194869).
- powerpc: add compile-time support for lbarx, lharx (bsc#1194869).
- pwm: mediatek: Update kernel doc for struct pwm_mediatek_of_data (git-fixes).
- qedf: Do not process stag work during unload (bsc#1214852).
- qedf: Wait for stag work during unload (bsc#1214852).
- raid1: fix use-after-free for original bio in raid1_write_request() (bsc#1221097).
- ras/amd/fmpm: Add debugfs interface to print record entries (jsc#PED-7619).
- ras/amd/fmpm: Avoid NULL ptr deref in get_saved_records() (jsc#PED-7619).
- ras/amd/fmpm: Fix build when debugfs is not enabled (jsc#PED-7619).
- ras/amd/fmpm: Fix off by one when unwinding on error (jsc#PED-7619).
- ras/amd/fmpm: Safely handle saved records of various sizes (jsc#PED-7619).
- ras/amd/fmpm: Save SPA values (jsc#PED-7619).
- ras: Avoid build errors when CONFIG_DEBUG_FS=n (git-fixes).
- ras: export helper to get ras_debugfs_dir (jsc#PED-7619).
- rdma/device: Fix a race between mad_client and cm_client init (git-fixes)
- rdma/hns: fix mis-modifying default congestion control algorithm (git-fixes)
- rdma/ipoib: Fix error code return in ipoib_mcast_join (git-fixes)
- rdma/irdma: Remove duplicate assignment (git-fixes)
- rdma/mana_ib: Fix bug in creation of dma regions (git-fixes).
- rdma/mlx5: fix fortify source warning while accessing Eth segment (git-fixes)
- rdma/mlx5: relax DEVX access upon modify commands (git-fixes)
- rdma/rtrs-clt: Check strnlen return len in sysfs mpath_policy_store() (git-fixes)
- rdma/srpt: do not register event handler until srpt device is fully setup (git-fixes)
- rtc: mt6397: select IRQ_DOMAIN instead of depending on it (git-fixes).
- s390/pai: fix attr_event_free upper limit for pai device drivers (git-fixes bsc#1221633).
- s390/vfio-ap: realize the VFIO_DEVICE_GET_IRQ_INFO ioctl (bsc#1205316).
- s390/vfio-ap: realize the VFIO_DEVICE_SET_IRQS ioctl (bsc#1205316).
- s390/vfio-ap: wire in the vfio_device_ops request callback (bsc#1205316).
- s390/vtime: fix average steal time calculation (git-fixes bsc#1221951).
- sched/rt: Disallow writing invalid values to sched_rt_period_us (bsc#1220176).
- sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset (bsc#1220176).
- scsi: lpfc: Copyright updates for 14.4.0.1 patches (bsc#1221777).
- scsi: lpfc: Correct size for cmdwqe/rspwqe for memset() (bsc#1221777).
- scsi: lpfc: Correct size for wqe for memset() (bsc#1221777).
- scsi: lpfc: Define lpfc_dmabuf type for ctx_buf ptr (bsc#1221777).
- scsi: lpfc: Define lpfc_nodelist type for ctx_ndlp ptr (bsc#1221777).
- scsi: lpfc: Define types in a union for generic void *context3 ptr (bsc#1221777).
- scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (bsc#1221777).
- scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (bsc#1221777).
- scsi: lpfc: Remove IRQF_ONESHOT flag from threaded IRQ handling (bsc#1221777 bsc#1217959).
- scsi: lpfc: Remove unnecessary log message in queuecommand path (bsc#1221777).
- scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port() (bsc#1221777).
- scsi: lpfc: Update lpfc version to 14.4.0.1 (bsc#1221777).
- scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic (bsc#1221777).
- scsi: lpfc: Use a dedicated lock for ras_fwlog state (bsc#1221777).
- scsi: qedf: Remove set but unused variable 'page' (bsc#1214852).
- scsi: qedf: Remove unused 'num_handled' variable (bsc#1214852).
- scsi: qedf: Remove unused declaration (bsc#1214852).
- scsi: qla2xxx: Change debug message during driver unload (bsc1221816).
- scsi: qla2xxx: Delay I/O Abort on PCI error (bsc1221816).
- scsi: qla2xxx: Fix N2N stuck connection (bsc1221816).
- scsi: qla2xxx: Fix command flush on cable pull (bsc1221816).
- scsi: qla2xxx: Fix double free of fcport (bsc1221816).
- scsi: qla2xxx: Fix double free of the ha->vp_map pointer (bsc1221816).
- scsi: qla2xxx: NVME|FCP prefer flag not being honored (bsc1221816).
- scsi: qla2xxx: Prevent command send on chip reset (bsc1221816).
- scsi: qla2xxx: Split FCE|EFT trace control (bsc1221816).
- scsi: qla2xxx: Update manufacturer detail (bsc1221816).
- scsi: qla2xxx: Update version to 10.02.09.200-k (bsc1221816).
- scsi: storvsc: Fix ring buffer size calculation (git-fixes).
- scsi: target: core: Silence the message about unknown VPD pages (bsc#1221252).
- selftests/bpf: add generic BPF program tester-loader (bsc#1222033).
- serial: 8250_exar: Do not remove GPIO device on suspend (git-fixes).
- serial: max310x: fix syntax error in IRQ error message (git-fixes).
- slimbus: core: Remove usage of the deprecated ida_simple_xx() API (git-fixes).
- soc: fsl: qbman: Always disable interrupts when taking cgr_lock (git-fixes).
- spi: lm70llp: fix links in doc and comments (git-fixes).
- spi: spi-mt65xx: Fix NULL pointer access in interrupt handler (git-fixes).
- sr9800: Add check for usbnet_get_endpoints (git-fixes).
- stackdepot: rename pool_index to pool_index_plus_1 (git-fixes).
- staging: vc04_services: fix information leak in create_component() (git-fixes).
- sunrpc: Add an IS_ERR() check back to where it was (git-fixes).
- sunrpc: ECONNRESET might require a rebind (git-fixes).
- sunrpc: Fix RPC client cleaned up the freed pipefs dentries (git-fixes).
- sunrpc: Fix a suspicious RCU usage warning (git-fixes).
- sunrpc: fix a memleak in gss_import_v2_context (git-fixes).
- sunrpc: fix some memleaks in gssx_dec_option_array (git-fixes).
- svcrdma: Drop connection after an RDMA Read error (git-fixes).
- tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (bsc#1222619).
- tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled (git-fixes).
- tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT (git-fixes).
- tty: vt: fix 20 vs 0x20 typo in EScsiignore (git-fixes).
- ubifs: Queue up space reservation tasks if retrying many times (git-fixes).
- ubifs: Remove unreachable code in dbg_check_ltab_lnum (git-fixes).
- ubifs: Set page uptodate in the correct place (git-fixes).
- ubifs: dbg_check_idx_size: Fix kmemleak if loading znode failed (git-fixes).
- ubifs: fix sort function prototype (git-fixes).
- usb: audio-v2: Correct comments for struct uac_clock_selector_descriptor (git-fixes).
- usb: cdc-wdm: close race between read and workqueue (git-fixes).
- usb: core: Fix deadlock in usb_deauthorize_interface() (git-fixes).
- usb: dwc2: gadget: Fix exiting from clock gating (git-fixes).
- usb: dwc2: gadget: LPM flow fix (git-fixes).
- usb: dwc2: host: Fix ISOC flow in DDMA mode (git-fixes).
- usb: dwc2: host: Fix hibernation flow (git-fixes).
- usb: dwc2: host: Fix remote wakeup from hibernation (git-fixes).
- usb: dwc3: Properly set system wakeup (git-fixes).
- usb: gadget: ncm: Fix handling of zero block length packets (git-fixes).
- usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin (git-fixes).
- usb: port: Do not try to peer unused USB ports based on location (git-fixes).
- usb: typec: Return size of buffer if pd_set operation succeeds (git-fixes).
- usb: typec: ucsi: Check for notifications after init (git-fixes).
- usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros (git-fixes).
- usb: typec: ucsi: Clear EVENT_PENDING under PPM lock (git-fixes).
- usb: usb-storage: Prevent divide-by-0 error in isd200_ata_command (git-fixes).
- usb: xhci: Add error handling in xhci_map_urb_for_dma (git-fixes).
- vboxsf: Avoid an spurious warning if load_nls_xxx() fails (git-fixes).
- vt: fix unicode buffer corruption when deleting characters (git-fixes).
- watchdog: stm32_iwdg: initialize default timeout (git-fixes).
- wifi: ath10k: fix NULL pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (git-fixes).
- wifi: ath11k: decrease MHI channel buffer length to 8KB (bsc#1207948).
- wifi: ath11k: initialize rx_mcs_80 and rx_mcs_160 before use (git-fixes).
- wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete (git-fixes).
- wifi: b43: Disable QoS for bcm4331 (git-fixes).
- wifi: b43: Stop correct queue in DMA worker when QoS is disabled (git-fixes).
- wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled (git-fixes).
- wifi: b43: Stop/wake correct queue in PIO Tx path when QoS is disabled (git-fixes).
- wifi: brcmfmac: fix copyright year mentioned in platform_data header (git-fixes).
- wifi: brcmsmac: avoid function pointer casts (git-fixes).
- wifi: iwlwifi: dbg-tlv: ensure NUL termination (git-fixes).
- wifi: iwlwifi: fix EWRD table validity check (git-fixes).
- wifi: iwlwifi: fw: do not always use FW dump trig (git-fixes).
- wifi: iwlwifi: mvm: do not set replay counters to 0xff (git-fixes).
- wifi: iwlwifi: mvm: report beacon protection failures (git-fixes).
- wifi: iwlwifi: mvm: rfi: fix potential response leaks (git-fixes).
- wifi: iwlwifi: mvm: use FW rate for non-data only on new devices (git-fixes).
- wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() (git-fixes).
- wifi: mwifiex: debugfs: Drop unnecessary error check for debugfs_create_dir() (git-fixes).
- wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work (git-fixes).
- wifi: rtw88: 8821c: Fix false alarm count (git-fixes).
- wifi: wilc1000: fix RCU usage in connect path (git-fixes).
- wifi: wilc1000: fix declarations ordering (stable-fixes).
- wifi: wilc1000: fix multi-vif management when deleting a vif (git-fixes).
- wifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces (git-fixes).
- x86/CPU/AMD: Update the Zenbleed microcode revisions (git-fixes).
- x86/bugs: Fix the SRSO mitigation on Zen3/4 (git-fixes).
- x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD (git-fixes).
- xhci: handle isoc Babble and Buffer Overrun events properly (git-fixes).
- xhci: process isoc TD properly when there was a transaction error mid TD (git-fixes).
</description>
<summary>Security update for the Linux Kernel</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.33353

Places