File _patchinfo of Package patchinfo.36347
<patchinfo incident="36347">
<issue id="1065729" tracker="bnc">[trackerbug] 4.12 powerpc base kernel fixes</issue>
<issue id="1194869" tracker="bnc">[TRACKERBUG] 5.14 powerpc base kernel fixes</issue>
<issue id="1217845" tracker="bnc">VUL-0: kernel: SLAM - Spectre based on Linear Address Masking</issue>
<issue id="1218562" tracker="bnc">VUL-0: CVE-2023-6270: kernel: use-after-free vulnerability in ATA over Ethernet (AoE) driver</issue>
<issue id="1219596" tracker="bnc">dm-raid/md/raid: regression related to dm-raid456 IO concurrent with reshape</issue>
<issue id="1219803" tracker="bnc">Lenovo Yoga 14APH8 headphones jack requires bass speaker to be full volume</issue>
<issue id="1220382" tracker="bnc">x86/mm/ident_map: Use gbpages only where full GB page should be mapped.</issue>
<issue id="1223384" tracker="bnc">VUL-0: CVE-2024-26923: kernel: af_unix: fix garbage collector racing against connect()</issue>
<issue id="1223700" tracker="bnc">VUL-0: CVE-2024-27026: kernel: vmxnet3: Fix missing reserved tailroom</issue>
<issue id="1223824" tracker="bnc">VUL-0: CVE-2024-27043: kernel: media: media: dvbdev: use-after-free in different places</issue>
<issue id="1223848" tracker="bnc">KVM passthrough disks are detected as 0 byte disks on guest</issue>
<issue id="1224088" tracker="bnc">Partner-L3: [HPS Bug] SLES15SP6 - multiple occurrences of watchdog: BUG: soft lockup during iterated reboot test</issue>
<issue id="1224574" tracker="bnc">VUL-0: CVE-2024-35980: kernel: arm64: tlb: Fix TLBI RANGE operand</issue>
<issue id="1225611" tracker="bnc">VUL-0: CVE-2023-52881: kernel: tcp: do not accept ACK of bytes we never sent</issue>
<issue id="1226003" tracker="bnc">Xen refuses to boot in AMD Ryzen Pro system - ref:_00D1igLOd._500Tr64Tw1:ref</issue>
<issue id="1226498" tracker="bnc">vmxnet3: update to latest ToT</issue>
<issue id="1226623" tracker="bnc">VUL-0: CVE-2024-38576: kernel: rcu: fix buffer overflow in print_cpu_stall_info()</issue>
<issue id="1226631" tracker="bnc">VUL-0: CVE-2024-38577: kernel: rcu-tasks: fix show_rcu_tasks_trace_gp_kthread buffer overflow</issue>
<issue id="1226797" tracker="bnc">VUL-0: CVE-2024-36244: kernel: net/sched: taprio: extend minimum interval restriction to entire cycle too</issue>
<issue id="1226848" tracker="bnc">VUL-0: CVE-2024-38599: kernel: jffs2: prevent xattr node from overflowing the eraseblock</issue>
<issue id="1228119" tracker="bnc">lpfc - Boot failed after installation of kernel-default-5.14.21-150500.55.68.1</issue>
<issue id="1228244" tracker="bnc">[NetApp SLES15 SP6 Bug]: NVMe device inconsistency seen during repeated old NS unmap & new NS map using reused NSID</issue>
<issue id="1228269" tracker="bnc">Internal microphone not working on Lenovo Thinkpad E16 Gen 2 (Model 21M5)</issue>
<issue id="1228410" tracker="bnc">VUL-0: CVE-2024-41016: kernel: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()</issue>
<issue id="1228454" tracker="bnc">VUL-0: CVE-2024-41031: kernel: mm/filemap: skip to create PMD-sized page cache if needed</issue>
<issue id="1228537" tracker="bnc">VUL-0: CVE-2024-41047: kernel: i40e: Fix XDP program unloading while removing the driver</issue>
<issue id="1228620" tracker="bnc">VUL-0: CVE-2024-41082: kernel: nvme-fabrics: use reserved tag for reg read/write command</issue>
<issue id="1228743" tracker="bnc">VUL-0: CVE-2024-42145: kernel: IB/core: implement a limit on UMAD receive List</issue>
<issue id="1228747" tracker="bnc">Server loses primary network and leaves core dump</issue>
<issue id="1228857" tracker="bnc">Update Broadcom Emulex lpfc driver to 14.4.0.3</issue>
<issue id="1229019" tracker="bnc">KVM:Starting KVM error "ensure all devices within the iommu_group are bound to their vfio bus driver" after kernel update</issue>
<issue id="1229429" tracker="bnc">Update Broadcom Emulex lpfc driver for SLES15 SP7 to 14.4.0.4</issue>
<issue id="1229450" tracker="bnc">libbpf: failed to find '.BTF' ELF section in vmlinux</issue>
<issue id="1229585" tracker="bnc">Crash due to invalid per cpu cache freelist</issue>
<issue id="1229677" tracker="bnc">SLES15SP6: Authentication fails for nvme splitter drive while performing "nvme sed revert" operation with changed password on SLES15SP6 (nvme/splitter/SED/SLES15SP6/P10)</issue>
<issue id="1229769" tracker="bnc">mana: Fix race of mana_hwc_post_rx_wqe and new hwc response</issue>
<issue id="1229808" tracker="bnc">VUL-0: CVE-2024-44932: kernel: idpf: fix UAFs when destroying the queues</issue>
<issue id="1229891" tracker="bnc">mana: Implement get_ringparam/set_ringparam for mana</issue>
<issue id="1230055" tracker="bnc">UCS fw upgrade - half of 15sp5 servers lost all paths (fnic 1.6.0.55) while servers with older fnic driver are ok</issue>
<issue id="1230132" tracker="bnc">Intermittent sound Lenovo Legion Pro 7 16IRX8H (Intel CPU)</issue>
<issue id="1230179" tracker="bnc">VUL-0: CVE-2024-44958: kernel: sched/smt: Fix unbalance sched_smt_present dec/inc</issue>
<issue id="1230220" tracker="bnc">VUL-0: CVE-2024-44964: kernel: idpf: fix memory leaks and crashes while performing a soft reset</issue>
<issue id="1230289" tracker="bnc">mana: Improve mana_set_channels() in low mem conditions</issue>
<issue id="1230295" tracker="bnc">SLES15 SP6 - [P10][DD2.0][SHARED] - Hard lockups and Soft lockups are seen and LPAR hangs while running stress-ng (queued_spin_lock)</issue>
<issue id="1230339" tracker="bnc">VUL-0: CVE-2024-26767: kernel: drm/amd/display: fixed integer types and null check locations</issue>
<issue id="1230341" tracker="bnc">VUL-0: CVE-2024-26758: kernel: md: Don't ignore suspended array in md_check_recovery()</issue>
<issue id="1230375" tracker="bnc">VUL-0: CVE-2024-26761: kernel: cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window</issue>
<issue id="1230414" tracker="bnc">kernel: reproducible builds issue with BTF</issue>
<issue id="1230429" tracker="bnc">VUL-0: CVE-2024-45016: kernel: netem: fix return value if duplicate enqueue fails</issue>
<issue id="1230456" tracker="bnc">VUL-0: CVE-2024-45025: kernel: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE</issue>
<issue id="1230501" tracker="bnc">SLES 15 SP6: On P10, IPSec crypto using rfc4106(aes_gcm_p10) caused file moved to dst side checksum mis-match with the original file on src side.</issue>
<issue id="1230527" tracker="bnc">VUL-0: CVE-2024-26943: kernel: nouveau/dmem: handle kcalloc() allocation failure</issue>
<issue id="1230550" tracker="bnc">VUL-0: CVE-2024-46678: kernel: bonding: change ipsec_lock from spin lock to mutex</issue>
<issue id="1230600" tracker="bnc">VUL-0: CVE-2023-52800: kernel: wifi: ath11k: fix htt pktlog locking</issue>
<issue id="1230620" tracker="bnc">VUL-0: CVE-2023-52766: kernel: i3c: mipi-i3c-hci: Fix out of bounds access in hci_dma_irq_handler</issue>
<issue id="1230710" tracker="bnc">VUL-0: CVE-2024-46721: kernel: apparmor: fix possible NULL pointer dereference</issue>
<issue id="1230762" tracker="bnc">VUL-0: CVE-2024-46766: kernel: ice: move netif_queue_set_napi to rtnl-protected sections</issue>
<issue id="1230763" tracker="bnc">VUL-0: CVE-2024-46770: kernel: ice: Add netif_device_attach/detach into PF reset flow</issue>
<issue id="1230773" tracker="bnc">VUL-0: CVE-2024-46777: kernel: udf: Avoid excessive partition lengths</issue>
<issue id="1230774" tracker="bnc">VUL-0: CVE-2024-46775: kernel: drm/amd/display: Validate function returns</issue>
<issue id="1230801" tracker="bnc">VUL-0: CVE-2024-46754: kernel: bpf: Remove tst_run from lwt_seg6local_prog_ops.</issue>
<issue id="1230831" tracker="bnc">VUL-0: CVE-2024-46797: kernel: powerpc/qspinlock: Fix deadlock in MCS queue</issue>
<issue id="1230914" tracker="bnc">NFSv2 support silently dropped</issue>
<issue id="1230918" tracker="bnc">Network Failure when Transferring Data leads to Kernel Oops</issue>
<issue id="1231016" tracker="bnc">Intermittent nfs mount failures (may be due to SUNRPC over UDP)</issue>
<issue id="1231035" tracker="bnc">SLES 15 SP6 - inkernel crypto xctr(aes) alg: skcipher: failed to allocate transform for ctr(aes): -2</issue>
<issue id="1231072" tracker="bnc">VUL-0: CVE-2024-46848: kernel: perf/x86/intel: Limit the period on Haswell</issue>
<issue id="1231073" tracker="bnc">VUL-0: CVE-2024-46849: kernel: ASoC: meson: axg-card: fix 'use-after-free'</issue>
<issue id="1231075" tracker="bnc">VUL-0: CVE-2024-46846: kernel: spi: rockchip: Resolve unbalanced runtime PM / system PM handling</issue>
<issue id="1231081" tracker="bnc">VUL-0: CVE-2024-46851: kernel: drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct()</issue>
<issue id="1231082" tracker="bnc">VUL-0: CVE-2024-46852: kernel: dma-buf: heaps: Fix off-by-one in CMA heap fault handler</issue>
<issue id="1231083" tracker="bnc">VUL-0: CVE-2024-46853: kernel: spi: nxp-fspi: fix the KASAN report out-of-bounds bug</issue>
<issue id="1231084" tracker="bnc">VUL-0: CVE-2024-46854: kernel: net: dpaa: Pad packets to ETH_ZLEN</issue>
<issue id="1231085" tracker="bnc">VUL-0: CVE-2024-46855: kernel: netfilter: nft_socket: fix sk refcount leaks</issue>
<issue id="1231087" tracker="bnc">VUL-0: CVE-2024-46857: kernel: net/mlx5: Fix bridge mode operations when there are no VFs</issue>
<issue id="1231089" tracker="bnc">VUL-0: CVE-2024-46859: kernel: platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses</issue>
<issue id="1231092" tracker="bnc">VUL-0: CVE-2024-46836: kernel: usb: gadget: aspeed_udc: validate endpoint index for ast udc</issue>
<issue id="1231093" tracker="bnc">VUL-0: CVE-2024-46860: kernel: wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change</issue>
<issue id="1231094" tracker="bnc">VUL-0: CVE-2024-46841: kernel: btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc()</issue>
<issue id="1231096" tracker="bnc">VUL-0: CVE-2024-46834: kernel: ethtool: fail closed if we can't get max channel used in indirection tables</issue>
<issue id="1231098" tracker="bnc">VUL-0: CVE-2024-46835: kernel: drm/amdgpu: Fix smatch static checker warning</issue>
<issue id="1231100" tracker="bnc">VUL-0: CVE-2024-46843: kernel: scsi: ufs: core: Remove SCSI host only if added</issue>
<issue id="1231101" tracker="bnc">VUL-0: CVE-2024-46842: kernel: scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info</issue>
<issue id="1231102" tracker="bnc">VUL-0: CVE-2024-46861: kernel: usbnet: ipheth: do not stop RX on failing RX callback</issue>
<issue id="1231105" tracker="bnc">VUL-0: CVE-2024-46840: kernel: btrfs: clean up our handling of refs == 0 in snapshot delete</issue>
<issue id="1231108" tracker="bnc">VUL-0: CVE-2024-46864: kernel: x86/hyperv: fix kexec crash due to VP assist page corruption</issue>
<issue id="1231111" tracker="bnc">VUL-0: CVE-2024-46802: kernel: drm/amd/display: added NULL check at start of dc_validate_stream</issue>
<issue id="1231114" tracker="bnc">VUL-0: CVE-2024-46828: kernel: sched: sch_cake: fix bulk flow accounting logic for host fairness</issue>
<issue id="1231115" tracker="bnc">VUL-0: CVE-2024-46826: kernel: ELF: fix kernel.randomize_va_space double read</issue>
<issue id="1231116" tracker="bnc">VUL-0: CVE-2024-46830: kernel: KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS</issue>
<issue id="1231117" tracker="bnc">VUL-0: CVE-2024-46831: kernel: net: microchip: vcap: Fix use-after-free error in kunit test</issue>
<issue id="1231131" tracker="bnc">VUL-0: CVE-2024-46803: kernel: drm/amdkfd: Check debug trap enable before write dbg_ev_file</issue>
<issue id="1231132" tracker="bnc">VUL-0: CVE-2024-46804: kernel: drm/amd/display: Add array index check for hdcp ddc access</issue>
<issue id="1231135" tracker="bnc">VUL-0: CVE-2024-46805: kernel: drm/amdgpu: fix the waring dereferencing hive</issue>
<issue id="1231136" tracker="bnc">VUL-0: CVE-2024-46806: kernel: drm/amdgpu: Fix the warning division or modulo by zero</issue>
<issue id="1231138" tracker="bnc">VUL-0: CVE-2024-46807: kernel: drm/amd/amdgpu: Check tbo resource pointer</issue>
<issue id="1231148" tracker="bnc">VUL-0: CVE-2024-46809: kernel: drm/amd/display: Check BIOS images before it is used</issue>
<issue id="1231169" tracker="bnc">VUL-0: CVE-2024-46821: kernel: drm/amd/pm: Fix negative array index read</issue>
<issue id="1231170" tracker="bnc">VUL-0: CVE-2024-46825: kernel: wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check</issue>
<issue id="1231171" tracker="bnc">VUL-0: CVE-2024-46827: kernel: wifi: ath12k: fix firmware crash due to invalid peer nss</issue>
<issue id="1231178" tracker="bnc">VUL-0: CVE-2024-46810: kernel: drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ</issue>
<issue id="1231179" tracker="bnc">VUL-0: CVE-2024-46811: kernel: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box</issue>
<issue id="1231183" tracker="bnc">cachefiles: fix dentry leak in cachefiles_open_file()</issue>
<issue id="1231187" tracker="bnc">VUL-0: CVE-2024-46812: kernel: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration</issue>
<issue id="1231191" tracker="bnc">VUL-0: CVE-2024-46813: kernel: drm/amd/display: check link_index before accessing dc->links[]</issue>
<issue id="1231193" tracker="bnc">VUL-0: CVE-2024-46814: kernel: drm/amd/display: check msg_id before processing transcation</issue>
<issue id="1231195" tracker="bnc">VUL-0: CVE-2024-46815: kernel: drm/amd/display: check num_valid_sets before accessing reader_wm_sets[]</issue>
<issue id="1231197" tracker="bnc">VUL-0: CVE-2024-46816: kernel: drm/amd/display: stop amdgpu_dm initialize when link nums greater than max_links</issue>
<issue id="1231200" tracker="bnc">VUL-0: CVE-2024-46817: kernel: drm/amd/display: stop amdgpu_dm initialize when stream nums greater than 6</issue>
<issue id="1231202" tracker="bnc">VUL-0: CVE-2024-46819: kernel: drm/amdgpu: the warning dereferencing obj for nbio_v7_4</issue>
<issue id="1231203" tracker="bnc">VUL-0: CVE-2024-46818: kernel: drm/amd/display: check gpio_id before used as array index</issue>
<issue id="1231276" tracker="bnc">KVM: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query</issue>
<issue id="1231293" tracker="bnc">kernel shown as unreleased</issue>
<issue id="1231384" tracker="bnc">ceph: fix cap ref leak via netfs init_request</issue>
<issue id="1231434" tracker="bnc">VUL-0: CVE-2024-46871: kernel: drm/amd/display: correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX</issue>
<issue id="1231435" tracker="bnc">VUL-0: CVE-2024-46870: kernel: drm/amd/display: disable DMCUB timeout for DCN35</issue>
<issue id="1231436" tracker="bnc">VUL-0: CVE-2024-47658: kernel: crypto: stm32/cryp - call finalize with bh disabled</issue>
<issue id="1231439" tracker="bnc">VUL-0: CVE-2024-47660: kernel: fsnotify: clear PARENT_WATCHED flags lazily</issue>
<issue id="1231440" tracker="bnc">VUL-0: CVE-2024-47662: kernel: drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection</issue>
<issue id="1231441" tracker="bnc">VUL-0: CVE-2024-47663: kernel: staging: iio: frequency: ad9834: validate frequency parameter value</issue>
<issue id="1231442" tracker="bnc">VUL-0: CVE-2024-47664: kernel: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware</issue>
<issue id="1231452" tracker="bnc">VUL-0: CVE-2024-47665: kernel: i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup</issue>
<issue id="1231474" tracker="bnc">VUL-0: CVE-2024-47669: kernel: nilfs2: fix state management in error path of log writing function</issue>
<issue id="1231481" tracker="bnc">VUL-0: CVE-2024-47667: kernel: PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)</issue>
<issue id="1231496" tracker="bnc">VUL-0: CVE-2024-47661: kernel: drm/amd/display: avoid overflow from uint32_t to uint8_t</issue>
<issue id="1231502" tracker="bnc">VUL-0: CVE-2024-47668: kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()</issue>
<issue id="1231537" tracker="bnc">VUL-0: CVE-2024-47670: kernel: ocfs2: add bounds checking to ocfs2_xattr_find_entry()</issue>
<issue id="1231539" tracker="bnc">VUL-0: CVE-2024-47673: kernel: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped</issue>
<issue id="1231540" tracker="bnc">VUL-0: CVE-2024-47672: kernel: wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead</issue>
<issue id="1231541" tracker="bnc">VUL-0: CVE-2024-47671: kernel: USB: usbtmc: prevent kernel-usb-infoleak</issue>
<issue id="1231617" tracker="bnc">[sles-15-sp6][maintenance update] [fio-Sequential] nfsv4 server got 'crash' when execute re-read cases on xfs</issue>
<issue id="1231634" tracker="bnc">ext4: fix possible tid_t sequence overflows</issue>
<issue id="1231635" tracker="bnc">ext4: don't track ranges in fast_commit if inode has inlined data</issue>
<issue id="1231636" tracker="bnc">ext4: fix fast commit inode enqueueing during a full journal commit</issue>
<issue id="1231637" tracker="bnc">ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()</issue>
<issue id="1231638" tracker="bnc">jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit</issue>
<issue id="1231639" tracker="bnc">ext4: use handle to mark fc as ineligible in __track_dentry_update()</issue>
<issue id="1231640" tracker="bnc">ext4: mark fc as ineligible using an handle in ext4_xattr_set()</issue>
<issue id="1231673" tracker="bnc">VUL-0: CVE-2024-47674: kernel: mm: avoid leaving partial pfn mappings around in error case</issue>
<issue id="1231828" tracker="bnc">[VT] xen throw crash during reboot</issue>
<issue id="1231849" tracker="bnc">VUL-0: CVE-2023-52917: kernel: ntb: intel: fix the NULL vs IS_ERR() bug for debugfs_create_dir()</issue>
<issue id="1231855" tracker="bnc">VUL-0: CVE-2024-47681: kernel: wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he</issue>
<issue id="1231856" tracker="bnc">VUL-0: CVE-2024-47682: kernel: scsi: sd: fix off-by-one error in sd_read_block_characteristics()</issue>
<issue id="1231857" tracker="bnc">VUL-0: CVE-2024-47692: kernel: nfsd: return -EINVAL when namelen is 0</issue>
<issue id="1231858" tracker="bnc">VUL-0: CVE-2024-47697: kernel: drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error</issue>
<issue id="1231859" tracker="bnc">VUL-0: CVE-2024-47698: kernel: drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error</issue>
<issue id="1231860" tracker="bnc">VUL-0: CVE-2024-47715: kernel: wifi: mt76: mt7915: fix oops on non-dbdc mt7986</issue>
<issue id="1231861" tracker="bnc">VUL-0: CVE-2024-49860: kernel: ACPI: sysfs: validate return type of _STR method</issue>
<issue id="1231864" tracker="bnc">VUL-0: CVE-2024-47696: kernel: RDMA/iwcm: fix WARNING:at_kernel/workqueue.c:#check_flush_dependency</issue>
<issue id="1231865" tracker="bnc">VUL-0: CVE-2024-47719: kernel: iommufd: protect against overflow of ALIGN() during iova allocation</issue>
<issue id="1231868" tracker="bnc">VUL-0: CVE-2024-47753: kernel: media: mediatek: vcodec: fix VP8 stateless decoder smatch warning</issue>
<issue id="1231869" tracker="bnc">VUL-0: CVE-2024-47741: kernel: btrfs: fix race setting file private on concurrent lseek using same fd</issue>
<issue id="1231871" tracker="bnc">VUL-0: CVE-2024-49862: kernel: powercap: intel_rapl: fix off by one in get_rpi()</issue>
<issue id="1231872" tracker="bnc">VUL-0: CVE-2024-47705: kernel: block: fix potential invalid pointer dereference in blk_add_partition</issue>
<issue id="1231901" tracker="bnc">VUL-0: CVE-2024-50064: kernel: zram: free secondary algorithms names</issue>
<issue id="1231902" tracker="bnc">VUL-0: CVE-2024-50046: kernel: NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()</issue>
<issue id="1231903" tracker="bnc">VUL-0: CVE-2024-50045: kernel: netfilter: br_netfilter: fix panic with metadata_dst skb</issue>
<issue id="1231904" tracker="bnc">VUL-0: CVE-2024-50044: kernel: Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change</issue>
<issue id="1231906" tracker="bnc">VUL-0: CVE-2024-50042: kernel: ice: Fix increasing MSI-X on VF</issue>
<issue id="1231907" tracker="bnc">VUL-0: CVE-2024-50041: kernel: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash</issue>
<issue id="1231908" tracker="bnc">VUL-0: CVE-2024-50040: kernel: igb: Do not bring the device up after non-fatal error</issue>
<issue id="1231914" tracker="bnc">VUL-0: CVE-2024-50033: kernel: slip: make slhc_remember() more robust against malicious packets</issue>
<issue id="1231916" tracker="bnc">VUL-0: CVE-2024-47699: kernel: nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()</issue>
<issue id="1231924" tracker="bnc">VUL-0: CVE-2024-47702: kernel: bpf: fail verification for sign-extension of packet data/data_end/data_meta</issue>
<issue id="1231926" tracker="bnc">VUL-0: CVE-2024-47675: kernel: bpf: Fix use-after-free in bpf_uprobe_multi_link_attach()</issue>
<issue id="1231931" tracker="bnc">VUL-0: CVE-2024-47695: kernel: RDMA/rtrs-clt: reset cid to con_num - 1 to stay in bounds</issue>
<issue id="1231935" tracker="bnc">VUL-0: CVE-2024-47707: kernel: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()</issue>
<issue id="1231942" tracker="bnc">VUL-0: CVE-2024-47706: kernel: block, bfq: fix possible UAF for bfqq->bic with merge chain</issue>
<issue id="1231944" tracker="bnc">VUL-0: CVE-2024-47704: kernel: drm/amd/display: check link_res->hpo_dp_link_enc before using it</issue>
<issue id="1231947" tracker="bnc">VUL-0: CVE-2024-50031: kernel: drm/v3d: Stop the active perfmon before being destroyed</issue>
<issue id="1231950" tracker="bnc">VUL-0: CVE-2024-50028: kernel: thermal: core: Reference count the zone in thermal_zone_get_by_id()</issue>
<issue id="1231951" tracker="bnc">VUL-0: CVE-2024-50027: kernel: thermal: core: Free tzp copy along with the thermal zone</issue>
<issue id="1231953" tracker="bnc">VUL-0: CVE-2024-50025: kernel: scsi: fnic: Move flush_work initialization out of if block</issue>
<issue id="1231954" tracker="bnc">VUL-0: CVE-2024-50024: kernel: net: Fix an unsafe loop on the list</issue>
<issue id="1231955" tracker="bnc">VUL-0: CVE-2024-50023: kernel: net: phy: Remove LED entry from LEDs list on unregister</issue>
<issue id="1231956" tracker="bnc">VUL-0: CVE-2024-50022: kernel: device-dax: correct pgoff align in dax_set_mapping()</issue>
<issue id="1231957" tracker="bnc">VUL-0: CVE-2024-50021: kernel: ice: Fix improper handling of refcount in ice_dpll_init_rclk_pins()</issue>
<issue id="1231965" tracker="bnc">VUL-0: CVE-2024-49917: kernel: drm/amd/display: add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw</issue>
<issue id="1231967" tracker="bnc">VUL-0: CVE-2024-49918: kernel: drm/amd/display: add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer</issue>
<issue id="1231968" tracker="bnc">VUL-0: CVE-2024-49919: kernel: drm/amd/display: add null check for head_pipe in dcn201_acquire_free_pipe_for_layer</issue>
<issue id="1231987" tracker="bnc">VUL-0: CVE-2024-47684: kernel: tcp: check skb is non-NULL in tcp_rto_delta_us()</issue>
<issue id="1231988" tracker="bnc">VUL-0: CVE-2023-52919: kernel: nfc: nci: fix possible NULL pointer dereference in send_acknowledge()</issue>
<issue id="1231989" tracker="bnc">VUL-0: CVE-2024-50020: kernel: ice: Fix improper handling of refcount in ice_sriov_set_msix_vec_count()</issue>
<issue id="1231990" tracker="bnc">VUL-0: CVE-2024-50019: kernel: kthread: unpark only parked kthread</issue>
<issue id="1231998" tracker="bnc">VUL-0: CVE-2024-47685: kernel: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()</issue>
<issue id="1232000" tracker="bnc">VUL-0: CVE-2024-47686: kernel: ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate()</issue>
<issue id="1232003" tracker="bnc">VUL-0: CVE-2024-47687: kernel: vdpa/mlx5: Fix invalid mr resource destroy</issue>
<issue id="1232009" tracker="bnc">VUL-0: CVE-2024-47688: kernel: driver core: Fix a potential null-ptr-deref in module_add_driver()</issue>
<issue id="1232013" tracker="bnc">VUL-0: CVE-2024-47693: kernel: IB/core: Fix ib_cache_setup_one error flow cleanup</issue>
<issue id="1232015" tracker="bnc">VUL-0: CVE-2024-47718: kernel: wifi: rtw88: always wait for both firmware loading attempts</issue>
<issue id="1232016" tracker="bnc">VUL-0: CVE-2024-47713: kernel: wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()</issue>
<issue id="1232017" tracker="bnc">VUL-0: CVE-2024-47712: kernel: wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param</issue>
<issue id="1232018" tracker="bnc">VUL-0: CVE-2024-47714: kernel: wifi: mt76: mt7996: use hweight16 to get correct tx antenna</issue>
<issue id="1232033" tracker="bnc">net: mana: Fix the extra HZ in mana_hwc_send_request</issue>
<issue id="1232034" tracker="bnc">RDMA/mana_ib: use the correct page table index based on hardware page size</issue>
<issue id="1232036" tracker="bnc">RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page</issue>
<issue id="1232043" tracker="bnc">VUL-0: CVE-2024-47720: kernel: drm/amd/display: add null check for set_output_gamma in dcn30_set_output_transfer_func</issue>
<issue id="1232047" tracker="bnc">VUL-0: CVE-2023-52918: kernel: media: pci: cx23885: check cx23885_vdev_init() return</issue>
<issue id="1232048" tracker="bnc">VUL-0: CVE-2024-47709: kernel: can: bcm: clear bo->bcm_proc_read after remove_proc_entry().</issue>
<issue id="1232049" tracker="bnc">VUL-0: CVE-2024-47710: kernel: sock_map: add a cond_resched() in sock_hash_free()</issue>
<issue id="1232050" tracker="bnc">VUL-0: CVE-2024-47723: kernel: jfs: fix out-of-bounds in dbNextAG() and diAlloc()</issue>
<issue id="1232056" tracker="bnc">VUL-0: CVE-2024-47737: kernel: nfsd: call cache_put if xdr_reserve_space returns NULL</issue>
<issue id="1232075" tracker="bnc">VUL-0: CVE-2024-47730: kernel: crypto: hisilicon/qm - inject error before stopping queue</issue>
<issue id="1232076" tracker="bnc">VUL-0: CVE-2024-47728: kernel: bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error</issue>
<issue id="1232079" tracker="bnc">VUL-0: CVE-2024-50015: kernel: ext4: dax: fix overflowing extents beyond inode size when partially writing</issue>
<issue id="1232080" tracker="bnc">VUL-0: CVE-2024-50013: kernel: exfat: fix memory leak in exfat_load_bitmap()</issue>
<issue id="1232083" tracker="bnc">VUL-0: CVE-2024-50002: kernel: static_call: Handle module init failure correctly in static_call_del_module()</issue>
<issue id="1232084" tracker="bnc">VUL-0: CVE-2024-50001: kernel: net/mlx5: Fix error path in multi-packet WQE transmit</issue>
<issue id="1232085" tracker="bnc">VUL-0: CVE-2024-50000: kernel: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()</issue>
<issue id="1232089" tracker="bnc">VUL-0: CVE-2024-49996: kernel: cifs: Fix buffer overflow when parsing NFS reparse points</issue>
<issue id="1232093" tracker="bnc">VUL-0: CVE-2024-49986: kernel: platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors</issue>
<issue id="1232094" tracker="bnc">VUL-0: CVE-2024-49985: kernel: i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume</issue>
<issue id="1232097" tracker="bnc">VUL-0: CVE-2024-49982: kernel: aoe: fix the potential use-after-free problem in more places</issue>
<issue id="1232098" tracker="bnc">VUL-0: CVE-2024-49981: kernel: media: venus: fix use after free bug in venus_remove due to race condition</issue>
<issue id="1232105" tracker="bnc">VUL-0: CVE-2024-49973: kernel: r8169: add tally counter fields added with RTL8125</issue>
<issue id="1232109" tracker="bnc">VUL-0: CVE-2024-47732: kernel: crypto: iaa - Fix potential use after free bug</issue>
<issue id="1232111" tracker="bnc">VUL-0: CVE-2024-47735: kernel: RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled</issue>
<issue id="1232114" tracker="bnc">VUL-0: CVE-2024-47738: kernel: wifi: mac80211: don't use rate mask for offchannel TX either</issue>
<issue id="1232116" tracker="bnc">VUL-0: CVE-2024-47727: kernel: x86/tdx: Fix "in-kernel MMIO" check</issue>
<issue id="1232117" tracker="bnc">VUL-0: CVE-2024-47731: kernel: drivers/perf: Fix ali_drw_pmu driver interrupt status clearing</issue>
<issue id="1232124" tracker="bnc">VUL-0: CVE-2024-47739: kernel: padata: use integer wrap around to prevent deadlock on seq_nr overflow</issue>
<issue id="1232126" tracker="bnc">VUL-0: CVE-2024-47742: kernel: firmware_loader: block path traversal</issue>
<issue id="1232127" tracker="bnc">VUL-0: CVE-2024-47751: kernel: PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()</issue>
<issue id="1232129" tracker="bnc">VUL-0: CVE-2024-47743: kernel: KEYS: prevent NULL pointer dereference in find_asymmetric_key()</issue>
<issue id="1232130" tracker="bnc">VUL-0: CVE-2024-47752: kernel: media: mediatek: vcodec: Fix H264 stateless decoder smatch warning</issue>
<issue id="1232131" tracker="bnc">VUL-0: CVE-2024-47754: kernel: media: mediatek: vcodec: Fix H264 multi stateless decoder smatch warning</issue>
<issue id="1232132" tracker="bnc">VUL-0: CVE-2024-47744: kernel: KVM: use dedicated mutex to protect kvm_usage_count to avoid deadlock</issue>
<issue id="1232134" tracker="bnc">VUL-0: CVE-2024-49851: kernel: tpm: Clean up TPM space after command failure</issue>
<issue id="1232135" tracker="bnc">VUL-0: CVE-2024-47745: kernel: mm: call the security_mmap_file() LSM hook in remap_file_pages()</issue>
<issue id="1232140" tracker="bnc">VUL-0: CVE-2024-49967: kernel: ext4: no need to continue when the number of entries is 1</issue>
<issue id="1232141" tracker="bnc">VUL-0: CVE-2024-49966: kernel: ocfs2: cancel dqi_sync_work before freeing oinfo</issue>
<issue id="1232142" tracker="bnc">VUL-0: CVE-2024-49965: kernel: ocfs2: remove unreasonable unlock in ocfs2_read_blocks</issue>
<issue id="1232145" tracker="bnc">VUL-0: CVE-2024-47747: kernel: net: seeq: fix use after free vulnerability in ether3 Driver Due to Race Condition</issue>
<issue id="1232147" tracker="bnc">VUL-0: CVE-2024-49963: kernel: mailbox: bcm2835: Fix timeout during suspend mode</issue>
<issue id="1232148" tracker="bnc">VUL-0: CVE-2024-49961: kernel: media: i2c: ar0521: Use cansleep version of gpiod_set_value()</issue>
<issue id="1232149" tracker="bnc">VUL-0: CVE-2024-49959: kernel: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error</issue>
<issue id="1232151" tracker="bnc">VUL-0: CVE-2024-49958: kernel: ocfs2: reserve space for inline xattr before attaching reflink tree</issue>
<issue id="1232152" tracker="bnc">VUL-0: CVE-2024-49957: kernel: ocfs2: fix null-ptr-deref when journal load failed.</issue>
<issue id="1232154" tracker="bnc">VUL-0: CVE-2024-49955: kernel: ACPI: battery: Fix possible crash when unregistering a battery hook</issue>
<issue id="1232155" tracker="bnc">VUL-0: CVE-2024-49954: kernel: static_call: Replace pointless WARN_ON() in static_call_module_notify()</issue>
<issue id="1232156" tracker="bnc">VUL-0: CVE-2024-49953: kernel: net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice</issue>
<issue id="1232159" tracker="bnc">VUL-0: CVE-2024-49950: kernel: Bluetooth: L2CAP: Fix uaf in l2cap_connect</issue>
<issue id="1232160" tracker="bnc">VUL-0: CVE-2024-49949: kernel: net: avoid potential underflow in qdisc_pkt_len_init() with UFO</issue>
<issue id="1232162" tracker="bnc">VUL-0: CVE-2024-49947: kernel: net: test for not too small csum_start in virtio_net_hdr_to_skb()</issue>
<issue id="1232164" tracker="bnc">VUL-0: CVE-2024-49946: kernel: ppp: do not assume bh is held in ppp_channel_bridge_input()</issue>
<issue id="1232174" tracker="bnc">VUL-0: CVE-2024-47748: kernel: vhost_vdpa: assign irq bypass producer token correctly</issue>
<issue id="1232180" tracker="bnc">VUL-0: CVE-2024-47749: kernel: RDMA/cxgb4: added NULL check for lookup_atid</issue>
<issue id="1232182" tracker="bnc">VUL-0: CVE-2024-47750: kernel: RDMA/hns: fix Use-After-Free of rsv_qp on HIP08</issue>
<issue id="1232183" tracker="bnc">printk: Add notation to console_srcu locking</issue>
<issue id="1232185" tracker="bnc">VUL-0: CVE-2024-47756: kernel: PCI: keystone: fix if-statement expression in ks_pcie_quirk()</issue>
<issue id="1232187" tracker="bnc">VUL-0: CVE-2024-47757: kernel: nilfs2: fix potential oob read in nilfs_btree_check_delete()</issue>
<issue id="1232189" tracker="bnc">VUL-0: CVE-2024-49850: kernel: bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos</issue>
<issue id="1232192" tracker="bnc">VUL-0: CVE-2024-49853: kernel: firmware: arm_scmi: fix double free in OPTEE transport</issue>
<issue id="1232195" tracker="bnc">VUL-0: CVE-2024-49855: kernel: nbd: fix race between timeout and normal completion</issue>
<issue id="1232196" tracker="bnc">VUL-0: CVE-2024-49886: kernel: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug</issue>
<issue id="1232199" tracker="bnc">VUL-0: CVE-2024-49883: kernel: ext4: aovid use-after-free in ext4_ext_insert_extent()</issue>
<issue id="1232200" tracker="bnc">VUL-0: CVE-2024-49882: kernel: ext4: fix double brelse() the buffer of the extents path</issue>
<issue id="1232201" tracker="bnc">VUL-0: CVE-2024-49881: kernel: ext4: update orig_path in ext4_find_extent()</issue>
<issue id="1232208" tracker="bnc">VUL-0: CVE-2024-49888: kernel: bpf: fix a sdiv overflow issue</issue>
<issue id="1232217" tracker="bnc">VUL-0: CVE-2024-49890: kernel: drm/amd/pm: ensure the fw_info is not null before using it</issue>
<issue id="1232218" tracker="bnc">VUL-0: CVE-2024-49891: kernel: scsi: lpfc: validate hdwq pointers before dereferencing in reset/errata paths</issue>
<issue id="1232220" tracker="bnc">VUL-0: CVE-2024-49892: kernel: drm/amd/display: initialize get_bytes_per_element's default to 1</issue>
<issue id="1232221" tracker="bnc">VUL-0: CVE-2024-49896: kernel: drm/amd/display: check stream before comparing them</issue>
<issue id="1232222" tracker="bnc">VUL-0: CVE-2024-49898: kernel: drm/amd/display: check null-initialized variables</issue>
<issue id="1232232" tracker="bnc">VUL-0: CVE-2024-50062: kernel: RDMA/rtrs-srv: Avoid null pointer deref during path establishment</issue>
<issue id="1232250" tracker="bnc">VUL-0: CVE-2024-49928: kernel: wifi: rtw89: avoid reading out of bounds when loading TX power FW elements</issue>
<issue id="1232251" tracker="bnc">VUL-0: CVE-2024-49858: kernel: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption</issue>
<issue id="1232253" tracker="bnc">VUL-0: CVE-2024-49929: kernel: wifi: iwlwifi: mvm: avoid NULL pointer dereference</issue>
<issue id="1232254" tracker="bnc">VUL-0: CVE-2024-49861: kernel: bpf: Fix helper writes to read-only maps</issue>
<issue id="1232255" tracker="bnc">VUL-0: CVE-2024-49863: kernel: vhost/scsi: null-ptr-dereference in vhost_scsi_get_req()</issue>
<issue id="1232256" tracker="bnc">VUL-0: CVE-2024-49864: kernel: rxrpc: Fix a race between socket set up and I/O thread creation</issue>
<issue id="1232259" tracker="bnc">VUL-0: CVE-2024-49866: kernel: tracing/timerlat: Fix a race during cpuhp processing</issue>
<issue id="1232260" tracker="bnc">VUL-0: CVE-2024-49930: kernel: wifi: ath11k: fix array out-of-bound access in SoC stats</issue>
<issue id="1232262" tracker="bnc">VUL-0: CVE-2024-49867: kernel: btrfs: wait for fixup workers before stopping cleaner kthread during umount</issue>
<issue id="1232263" tracker="bnc">VUL-0: CVE-2024-50061: kernel: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition</issue>
<issue id="1232275" tracker="bnc">VUL-0: CVE-2024-49931: kernel: wifi: ath12k: fix array out-of-bound access in SoC stats</issue>
<issue id="1232279" tracker="bnc">VUL-0: CVE-2024-49870: kernel: cachefiles: fix dentry leak in cachefiles_open_file()</issue>
<issue id="1232282" tracker="bnc">VUL-0: CVE-2024-49991: kernel: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer</issue>
<issue id="1232285" tracker="bnc">VUL-0: CVE-2024-50058: kernel: serial: protect uart_port_dtr_rts() in uart_shutdown() too</issue>
<issue id="1232287" tracker="bnc">VUL-0: CVE-2024-49871: kernel: Input: adp5589-keys - fix NULL pointer dereference</issue>
<issue id="1232295" tracker="bnc">VUL-0: CVE-2024-49874: kernel: i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition</issue>
<issue id="1232305" tracker="bnc">VUL-0: CVE-2024-49901: kernel: drm/msm/adreno: assign msm_gpu->pdev earlier to avoid nullptrs</issue>
<issue id="1232307" tracker="bnc">VUL-0: CVE-2024-49913: kernel: drm/amd/display: add null check for top_pipe_to_program in commit_planes_for_stream</issue>
<issue id="1232309" tracker="bnc">VUL-0: CVE-2024-50049: kernel: drm/amd/display: Check null pointer before dereferencing se</issue>
<issue id="1232310" tracker="bnc">VUL-0: CVE-2024-50048: kernel: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs</issue>
<issue id="1232312" tracker="bnc">VUL-0: CVE-2024-50017: kernel: x86/mm/ident_map: Use gbpages only where full GB page should be mapped.</issue>
<issue id="1232313" tracker="bnc">VUL-0: CVE-2024-49920: kernel: drm/amd/display: check null pointers before multiple uses</issue>
<issue id="1232314" tracker="bnc">VUL-0: CVE-2024-49962: kernel: ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()</issue>
<issue id="1232315" tracker="bnc">VUL-0: CVE-2024-49972: kernel: drm/amd/display: deallocate DML memory if allocation fails</issue>
<issue id="1232316" tracker="bnc">VUL-0: CVE-2024-49993: kernel: iommu/vt-d: fix potential lockup if qi_submit_sync called with 0 count</issue>
<issue id="1232317" tracker="bnc">VUL-0: CVE-2024-50008: kernel: wifi: mwifiex: fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()</issue>
<issue id="1232329" tracker="bnc">VUL-0: CVE-2024-50055: kernel: driver core: bus: Fix double free in driver API bus_register()</issue>
<issue id="1232332" tracker="bnc">VUL-0: CVE-2024-49906: kernel: drm/amd/display: Check null pointer before try to access it</issue>
<issue id="1232333" tracker="bnc">VUL-0: CVE-2024-49875: kernel: nfsd: map the EBADMSG to nfserr_io to avoid warning</issue>
<issue id="1232334" tracker="bnc">VUL-0: CVE-2024-49907: kernel: drm/amd/display: Check null pointers before using dc->clk_mgr</issue>
<issue id="1232335" tracker="bnc">VUL-0: CVE-2024-49908: kernel: drm/amd/display: Add null check for 'afb' in amdgpu_dm_update_cursor (v2)</issue>
<issue id="1232337" tracker="bnc">VUL-0: CVE-2024-49909: kernel: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func</issue>
<issue id="1232339" tracker="bnc">VUL-0: CVE-2024-49877: kernel: ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate</issue>
<issue id="1232340" tracker="bnc">VUL-0: CVE-2024-49878: kernel: resource: fix region_intersects() vs add_memory_driver_managed()</issue>
<issue id="1232342" tracker="bnc">No Ethernet device anymore on RPi3</issue>
<issue id="1232345" tracker="bnc">VUL-0: CVE-2024-50059: kernel: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition</issue>
<issue id="1232349" tracker="bnc">VUL-0: CVE-2024-49879: kernel: drm: omapdrm: Add missing check for alloc_ordered_workqueue</issue>
<issue id="1232352" tracker="bnc">VUL-0: CVE-2024-49895: kernel: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation</issue>
<issue id="1232354" tracker="bnc">VUL-0: CVE-2024-49894: kernel: drm/amd/display: fix index out of bounds in degamma hardware format translation</issue>
<issue id="1232355" tracker="bnc">VUL-0: CVE-2024-49897: kernel: drm/amd/display: Check phantom_stream before it is used</issue>
<issue id="1232359" tracker="bnc">VUL-0: CVE-2024-49900: kernel: jfs: fix uninit-value access of new_ea in ea_buffer</issue>
<issue id="1232362" tracker="bnc">VUL-0: CVE-2024-49903: kernel: jfs: Fix uaf in dbFreeBits</issue>
<issue id="1232369" tracker="bnc">VUL-0: CVE-2024-49914: kernel: drm/amd/display: Add null check for pipe_ctx->plane_state in dcn20_program_pipe</issue>
<issue id="1232370" tracker="bnc">VUL-0: CVE-2024-49935: kernel: ACPI: PAD: fix crash in exit_round_robin()</issue>
<issue id="1232378" tracker="bnc">VUL-0: CVE-2024-49902: kernel: jfs: check if leafidx greater than num leaves per dmap tree</issue>
<issue id="1232381" tracker="bnc">VUL-0: CVE-2024-49939: kernel: wifi: rtw89: avoid to add interface to list twice when SER</issue>
<issue id="1232383" tracker="bnc">VUL-0: CVE-2024-49974: kernel: NFSD: limit the number of concurrent async COPY operations</issue>
<issue id="1232392" tracker="bnc">VUL-0: CVE-2024-50035: kernel: ppp: fix ppp_async_encode() illegal access</issue>
<issue id="1232394" tracker="bnc">VUL-0: CVE-2024-50007: kernel: ALSA: asihpi: fix potential OOB array access</issue>
<issue id="1232395" tracker="bnc">VUL-0: CVE-2024-49960: kernel: ext4: fix timer use-after-free on failed mount</issue>
<issue id="1232417" tracker="bnc">VUL-0: CVE-2024-50060: kernel: io_uring: check if we need to reschedule during overflow flush</issue>
<issue id="1232418" tracker="bnc">VUL-0: CVE-2024-50047: kernel: smb: client: fix UAF in async decryption</issue>
<issue id="1232424" tracker="bnc">VUL-0: CVE-2024-49936: kernel: net/xen-netback: prevent UAF in xenvif_flush_hash()</issue>
<issue id="1232427" tracker="bnc">VUL-0: CVE-2024-49937: kernel: wifi: cfg80211: Set correct chandef when starting CAC</issue>
<issue id="1232432" tracker="bnc">VUL-0: CVE-2024-49995: kernel: tipc: guard against string buffer overrun</issue>
<issue id="1232435" tracker="bnc">VUL-0: CVE-2024-50063: kernel: bpf: Prevent tail call between progs attached to different hooks</issue>
<issue id="1232501" tracker="bnc">VUL-0: CVE-2024-50081: kernel: blk-mq: setup queue ->tag_set before initializing hctx</issue>
<issue id="1232502" tracker="bnc">VUL-0: CVE-2024-50080: kernel: ublk: don't allow user copy for unprivileged device</issue>
<issue id="1232503" tracker="bnc">VUL-0: CVE-2024-50078: kernel: Bluetooth: Call iso_exit() on module unload</issue>
<issue id="1232504" tracker="bnc">VUL-0: CVE-2024-50077: kernel: Bluetooth: ISO: Fix multiple init when debugfs is disabled</issue>
<issue id="1232505" tracker="bnc">VUL-0: CVE-2024-50076: kernel: vt: prevent kernel-infoleak in con_font_get()</issue>
<issue id="1232506" tracker="bnc">VUL-0: CVE-2024-50075: kernel: xhci: tegra: fix checked USB2 port number</issue>
<issue id="1232507" tracker="bnc">VUL-0: CVE-2024-50074: kernel: parport: Proper fix for array out-of-bounds access</issue>
<issue id="1232511" tracker="bnc">VUL-0: CVE-2024-50069: kernel: pinctrl: apple: check devm_kasprintf() returned value</issue>
<issue id="1232519" tracker="bnc">VUL-0: CVE-2024-49969: kernel: drm/amd/display: Fix index out of bounds in DCN30 color transformation</issue>
<issue id="1232520" tracker="bnc">VUL-0: CVE-2024-50073: kernel: tty: n_gsm: fix use-after-free in gsm_cleanup_mux</issue>
<issue id="1232529" tracker="bnc">SLE15-SP6 KOTD (commit 32a3e57bb675) boot Oops</issue>
<issue id="1232552" tracker="bnc">VUL-0: CVE-2024-49938: kernel: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit</issue>
<issue id="1232623" tracker="bnc">KVM: s390: gaccess: Check if guest address is in memslot</issue>
<issue id="1232626" tracker="bnc">KVM: s390: Change virtual to physical address access in diag 0x258 handler</issue>
<issue id="1232627" tracker="bnc">s390/sclp_vt220: Convert newlines to CRLF instead of LFCR</issue>
<issue id="1232628" tracker="bnc">s390/sclp: Deactivate sclp after all its users</issue>
<issue id="1232629" tracker="bnc">s390/pci: Handle PCI error codes other than 0x3a</issue>
<issue id="1232757" tracker="bnc">Update Broadcom Emulex lpfc driver to 14.4.0.5</issue>
<issue id="1232768" tracker="bnc">HP 320 webcam not working</issue>
<issue id="1232819" tracker="bnc">VUL-0: CVE-2024-49852: kernel: scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()</issue>
<issue id="2023-52766" tracker="cve" />
<issue id="2023-52800" tracker="cve" />
<issue id="2023-52881" tracker="cve" />
<issue id="2023-52917" tracker="cve" />
<issue id="2023-52918" tracker="cve" />
<issue id="2023-52919" tracker="cve" />
<issue id="2023-6270" tracker="cve" />
<issue id="2024-26758" tracker="cve" />
<issue id="2024-26761" tracker="cve" />
<issue id="2024-26767" tracker="cve" />
<issue id="2024-26943" tracker="cve" />
<issue id="2024-27026" tracker="cve" />
<issue id="2024-27043" tracker="cve" />
<issue id="2024-35980" tracker="cve" />
<issue id="2024-36244" tracker="cve" />
<issue id="2024-38576" tracker="cve" />
<issue id="2024-38577" tracker="cve" />
<issue id="2024-38599" tracker="cve" />
<issue id="2024-41016" tracker="cve" />
<issue id="2024-41031" tracker="cve" />
<issue id="2024-41047" tracker="cve" />
<issue id="2024-41082" tracker="cve" />
<issue id="2024-42145" tracker="cve" />
<issue id="2024-44932" tracker="cve" />
<issue id="2024-44958" tracker="cve" />
<issue id="2024-44964" tracker="cve" />
<issue id="2024-45016" tracker="cve" />
<issue id="2024-45025" tracker="cve" />
<issue id="2024-46678" tracker="cve" />
<issue id="2024-46721" tracker="cve" />
<issue id="2024-46754" tracker="cve" />
<issue id="2024-46766" tracker="cve" />
<issue id="2024-46770" tracker="cve" />
<issue id="2024-46775" tracker="cve" />
<issue id="2024-46777" tracker="cve" />
<issue id="2024-46797" tracker="cve" />
<issue id="2024-46802" tracker="cve" />
<issue id="2024-46803" tracker="cve" />
<issue id="2024-46804" tracker="cve" />
<issue id="2024-46805" tracker="cve" />
<issue id="2024-46806" tracker="cve" />
<issue id="2024-46807" tracker="cve" />
<issue id="2024-46809" tracker="cve" />
<issue id="2024-46810" tracker="cve" />
<issue id="2024-46811" tracker="cve" />
<issue id="2024-46812" tracker="cve" />
<issue id="2024-46813" tracker="cve" />
<issue id="2024-46814" tracker="cve" />
<issue id="2024-46815" tracker="cve" />
<issue id="2024-46816" tracker="cve" />
<issue id="2024-46817" tracker="cve" />
<issue id="2024-46818" tracker="cve" />
<issue id="2024-46819" tracker="cve" />
<issue id="2024-46821" tracker="cve" />
<issue id="2024-46825" tracker="cve" />
<issue id="2024-46826" tracker="cve" />
<issue id="2024-46827" tracker="cve" />
<issue id="2024-46828" tracker="cve" />
<issue id="2024-46830" tracker="cve" />
<issue id="2024-46831" tracker="cve" />
<issue id="2024-46834" tracker="cve" />
<issue id="2024-46835" tracker="cve" />
<issue id="2024-46836" tracker="cve" />
<issue id="2024-46840" tracker="cve" />
<issue id="2024-46841" tracker="cve" />
<issue id="2024-46842" tracker="cve" />
<issue id="2024-46843" tracker="cve" />
<issue id="2024-46846" tracker="cve" />
<issue id="2024-46848" tracker="cve" />
<issue id="2024-46849" tracker="cve" />
<issue id="2024-46851" tracker="cve" />
<issue id="2024-46852" tracker="cve" />
<issue id="2024-46853" tracker="cve" />
<issue id="2024-46854" tracker="cve" />
<issue id="2024-46855" tracker="cve" />
<issue id="2024-46857" tracker="cve" />
<issue id="2024-46859" tracker="cve" />
<issue id="2024-46860" tracker="cve" />
<issue id="2024-46861" tracker="cve" />
<issue id="2024-46864" tracker="cve" />
<issue id="2024-46870" tracker="cve" />
<issue id="2024-46871" tracker="cve" />
<issue id="2024-47658" tracker="cve" />
<issue id="2024-47660" tracker="cve" />
<issue id="2024-47661" tracker="cve" />
<issue id="2024-47662" tracker="cve" />
<issue id="2024-47663" tracker="cve" />
<issue id="2024-47664" tracker="cve" />
<issue id="2024-47665" tracker="cve" />
<issue id="2024-47667" tracker="cve" />
<issue id="2024-47668" tracker="cve" />
<issue id="2024-47669" tracker="cve" />
<issue id="2024-47670" tracker="cve" />
<issue id="2024-47671" tracker="cve" />
<issue id="2024-47672" tracker="cve" />
<issue id="2024-47673" tracker="cve" />
<issue id="2024-47674" tracker="cve" />
<issue id="2024-47675" tracker="cve" />
<issue id="2024-47681" tracker="cve" />
<issue id="2024-47682" tracker="cve" />
<issue id="2024-47684" tracker="cve" />
<issue id="2024-47685" tracker="cve" />
<issue id="2024-47686" tracker="cve" />
<issue id="2024-47687" tracker="cve" />
<issue id="2024-47688" tracker="cve" />
<issue id="2024-47692" tracker="cve" />
<issue id="2024-47693" tracker="cve" />
<issue id="2024-47695" tracker="cve" />
<issue id="2024-47696" tracker="cve" />
<issue id="2024-47697" tracker="cve" />
<issue id="2024-47698" tracker="cve" />
<issue id="2024-47699" tracker="cve" />
<issue id="2024-47702" tracker="cve" />
<issue id="2024-47704" tracker="cve" />
<issue id="2024-47705" tracker="cve" />
<issue id="2024-47706" tracker="cve" />
<issue id="2024-47707" tracker="cve" />
<issue id="2024-47709" tracker="cve" />
<issue id="2024-47710" tracker="cve" />
<issue id="2024-47712" tracker="cve" />
<issue id="2024-47713" tracker="cve" />
<issue id="2024-47714" tracker="cve" />
<issue id="2024-47715" tracker="cve" />
<issue id="2024-47718" tracker="cve" />
<issue id="2024-47719" tracker="cve" />
<issue id="2024-47720" tracker="cve" />
<issue id="2024-47723" tracker="cve" />
<issue id="2024-47727" tracker="cve" />
<issue id="2024-47728" tracker="cve" />
<issue id="2024-47730" tracker="cve" />
<issue id="2024-47731" tracker="cve" />
<issue id="2024-47732" tracker="cve" />
<issue id="2024-47735" tracker="cve" />
<issue id="2024-47737" tracker="cve" />
<issue id="2024-47738" tracker="cve" />
<issue id="2024-47739" tracker="cve" />
<issue id="2024-47741" tracker="cve" />
<issue id="2024-47742" tracker="cve" />
<issue id="2024-47743" tracker="cve" />
<issue id="2024-47744" tracker="cve" />
<issue id="2024-47745" tracker="cve" />
<issue id="2024-47747" tracker="cve" />
<issue id="2024-47748" tracker="cve" />
<issue id="2024-47749" tracker="cve" />
<issue id="2024-47750" tracker="cve" />
<issue id="2024-47751" tracker="cve" />
<issue id="2024-47752" tracker="cve" />
<issue id="2024-47753" tracker="cve" />
<issue id="2024-47754" tracker="cve" />
<issue id="2024-47756" tracker="cve" />
<issue id="2024-47757" tracker="cve" />
<issue id="2024-49850" tracker="cve" />
<issue id="2024-49851" tracker="cve" />
<issue id="2024-49852" tracker="cve" />
<issue id="2024-49853" tracker="cve" />
<issue id="2024-49855" tracker="cve" />
<issue id="2024-49858" tracker="cve" />
<issue id="2024-49860" tracker="cve" />
<issue id="2024-49861" tracker="cve" />
<issue id="2024-49862" tracker="cve" />
<issue id="2024-49863" tracker="cve" />
<issue id="2024-49864" tracker="cve" />
<issue id="2024-49866" tracker="cve" />
<issue id="2024-49867" tracker="cve" />
<issue id="2024-49870" tracker="cve" />
<issue id="2024-49871" tracker="cve" />
<issue id="2024-49874" tracker="cve" />
<issue id="2024-49875" tracker="cve" />
<issue id="2024-49877" tracker="cve" />
<issue id="2024-49878" tracker="cve" />
<issue id="2024-49879" tracker="cve" />
<issue id="2024-49881" tracker="cve" />
<issue id="2024-49882" tracker="cve" />
<issue id="2024-49883" tracker="cve" />
<issue id="2024-49886" tracker="cve" />
<issue id="2024-49888" tracker="cve" />
<issue id="2024-49890" tracker="cve" />
<issue id="2024-49891" tracker="cve" />
<issue id="2024-49892" tracker="cve" />
<issue id="2024-49894" tracker="cve" />
<issue id="2024-49895" tracker="cve" />
<issue id="2024-49896" tracker="cve" />
<issue id="2024-49897" tracker="cve" />
<issue id="2024-49898" tracker="cve" />
<issue id="2024-49900" tracker="cve" />
<issue id="2024-49901" tracker="cve" />
<issue id="2024-49902" tracker="cve" />
<issue id="2024-49903" tracker="cve" />
<issue id="2024-49906" tracker="cve" />
<issue id="2024-49907" tracker="cve" />
<issue id="2024-49908" tracker="cve" />
<issue id="2024-49909" tracker="cve" />
<issue id="2024-49913" tracker="cve" />
<issue id="2024-49914" tracker="cve" />
<issue id="2024-49917" tracker="cve" />
<issue id="2024-49918" tracker="cve" />
<issue id="2024-49919" tracker="cve" />
<issue id="2024-49920" tracker="cve" />
<issue id="2024-49928" tracker="cve" />
<issue id="2024-49929" tracker="cve" />
<issue id="2024-49930" tracker="cve" />
<issue id="2024-49931" tracker="cve" />
<issue id="2024-49935" tracker="cve" />
<issue id="2024-49936" tracker="cve" />
<issue id="2024-49937" tracker="cve" />
<issue id="2024-49938" tracker="cve" />
<issue id="2024-49939" tracker="cve" />
<issue id="2024-49946" tracker="cve" />
<issue id="2024-49947" tracker="cve" />
<issue id="2024-49949" tracker="cve" />
<issue id="2024-49950" tracker="cve" />
<issue id="2024-49953" tracker="cve" />
<issue id="2024-49954" tracker="cve" />
<issue id="2024-49955" tracker="cve" />
<issue id="2024-49957" tracker="cve" />
<issue id="2024-49958" tracker="cve" />
<issue id="2024-49959" tracker="cve" />
<issue id="2024-49960" tracker="cve" />
<issue id="2024-49961" tracker="cve" />
<issue id="2024-49962" tracker="cve" />
<issue id="2024-49963" tracker="cve" />
<issue id="2024-49965" tracker="cve" />
<issue id="2024-49966" tracker="cve" />
<issue id="2024-49967" tracker="cve" />
<issue id="2024-49969" tracker="cve" />
<issue id="2024-49972" tracker="cve" />
<issue id="2024-49973" tracker="cve" />
<issue id="2024-49974" tracker="cve" />
<issue id="2024-49981" tracker="cve" />
<issue id="2024-49982" tracker="cve" />
<issue id="2024-49985" tracker="cve" />
<issue id="2024-49986" tracker="cve" />
<issue id="2024-49991" tracker="cve" />
<issue id="2024-49993" tracker="cve" />
<issue id="2024-49995" tracker="cve" />
<issue id="2024-49996" tracker="cve" />
<issue id="2024-50000" tracker="cve" />
<issue id="2024-50001" tracker="cve" />
<issue id="2024-50002" tracker="cve" />
<issue id="2024-50007" tracker="cve" />
<issue id="2024-50008" tracker="cve" />
<issue id="2024-50013" tracker="cve" />
<issue id="2024-50015" tracker="cve" />
<issue id="2024-50017" tracker="cve" />
<issue id="2024-50019" tracker="cve" />
<issue id="2024-50020" tracker="cve" />
<issue id="2024-50021" tracker="cve" />
<issue id="2024-50022" tracker="cve" />
<issue id="2024-50023" tracker="cve" />
<issue id="2024-50024" tracker="cve" />
<issue id="2024-50025" tracker="cve" />
<issue id="2024-50027" tracker="cve" />
<issue id="2024-50028" tracker="cve" />
<issue id="2024-50031" tracker="cve" />
<issue id="2024-50033" tracker="cve" />
<issue id="2024-50035" tracker="cve" />
<issue id="2024-50040" tracker="cve" />
<issue id="2024-50041" tracker="cve" />
<issue id="2024-50042" tracker="cve" />
<issue id="2024-50044" tracker="cve" />
<issue id="2024-50045" tracker="cve" />
<issue id="2024-50046" tracker="cve" />
<issue id="2024-50047" tracker="cve" />
<issue id="2024-50048" tracker="cve" />
<issue id="2024-50049" tracker="cve" />
<issue id="2024-50055" tracker="cve" />
<issue id="2024-50058" tracker="cve" />
<issue id="2024-50059" tracker="cve" />
<issue id="2024-50060" tracker="cve" />
<issue id="2024-50061" tracker="cve" />
<issue id="2024-50062" tracker="cve" />
<issue id="2024-50063" tracker="cve" />
<issue id="2024-50064" tracker="cve" />
<issue id="2024-50069" tracker="cve" />
<issue id="2024-50073" tracker="cve" />
<issue id="2024-50074" tracker="cve" />
<issue id="2024-50075" tracker="cve" />
<issue id="2024-50076" tracker="cve" />
<issue id="2024-50077" tracker="cve" />
<issue id="2024-50078" tracker="cve" />
<issue id="2024-50080" tracker="cve" />
<issue id="2024-50081" tracker="cve" />
<issue id="PED-10559" tracker="jsc" />
<issue id="PED-10978" tracker="jsc" />
<issue id="PED-9899" tracker="jsc" />
<issue id="PED-9901" tracker="jsc" />
<category>security</category>
<rating>important</rating>
<packager>olh</packager>
<reboot_needed/>
<description>The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797).
- CVE-2024-41031: mm/filemap: skip to create PMD-sized page cache if needed (bsc#1228454).
- CVE-2024-41082: nvme-fabrics: use reserved tag for reg read/write command (bsc#1228620).
- CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179).
- CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429).
- CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456).
- CVE-2024-46678: bonding: change ipsec_lock from spin lock to mutex (bsc#1230550).
- CVE-2024-46721: pparmor: fix possible NULL pointer dereference (bsc#1230710)
- CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801).
- CVE-2024-46766: ice: move netif_queue_set_napi to rtnl-protected sections (bsc#1230762).
- CVE-2024-46770: ice: Add netif_device_attach/detach into PF reset flow (bsc#1230763).
- CVE-2024-46775: drm/amd/display: Validate function returns (bsc#1230774).
- CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773).
- CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191).
- CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197).
- CVE-2024-46826: ELF: fix kernel.randomize_va_space double read (bsc#1231115).
- CVE-2024-46828: uprobes: fix kernel info leak via "[uprobes]" vma (bsc#1231114).
- CVE-2024-46831: net: microchip: vcap: Fix use-after-free error in kunit test (bsc#1231117).
- CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096).
- CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105).
- CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094).
- CVE-2024-46843: scsi: ufs: core: Remove SCSI host only if added (bsc#1231100).
- CVE-2024-46854: net: dpaa: Pad packets to ETH_ZLEN (bsc#1231084).
- CVE-2024-46855: netfilter: nft_socket: fix sk refcount leaks (bsc#1231085).
- CVE-2024-46857: net/mlx5: Fix bridge mode operations when there are no VFs (bsc#1231087).
- CVE-2024-46870: drm/amd/display: Disable DMCUB timeout for DCN35 (bsc#1231435).
- CVE-2024-47658: crypto: stm32/cryp - call finalize with bh disabled (bsc#1231436).
- CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439).
- CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442).
- CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673).
- CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987).
- CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998).
- CVE-2024-47687: vdpa/mlx5: Fix invalid mr resource destroy (bsc#1232003).
- CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857).
- CVE-2024-47704: drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944).
- CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872).
- CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942).
- CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935).
- CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049).
- CVE-2024-47727: x86/tdx: Fix "in-kernel MMIO" check (bsc#1232116).
- CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075).
- CVE-2024-47731: drivers/perf: Fix ali_drw_pmu driver interrupt status clearing (bsc#1232117).
- CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124).
- CVE-2024-47741: btrfs: fix race setting file private on concurrent lseek using same fd (bsc#1231869).
- CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135).
- CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145).
- CVE-2024-47752: media: mediatek: vcodec: Fix H264 stateless decoder smatch warning (bsc#1232130).
- CVE-2024-47753: media: mediatek: vcodec: Fix VP8 stateless decoder smatch warning (bsc#1231868).
- CVE-2024-47754: media: mediatek: vcodec: Fix H264 multi stateless decoder smatch warning (bsc#1232131).
- CVE-2024-49852: scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (bsc#1232819).
- CVE-2024-49864: rxrpc: Fix a race between socket set up and I/O thread creation (bsc#1232256).
- CVE-2024-49867: btrfs: wait for fixup workers before stopping cleaner kthread during umount (bsc#1232262).
- CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201).
- CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200).
- CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199).
- CVE-2024-49888: bpf: Fix a sdiv overflow issue (bsc#1232208).
- CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217).
- CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element's default to 1 (bsc#1232220).
- CVE-2024-49894: drm/amd/display: Fix index out of bounds in degamma hardware format translation (bsc#1232354).
- CVE-2024-49895: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (bsc#1232352).
- CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221).
- CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355).
- CVE-2024-49898: drm/amd/display: Check null-initialized variables (bsc#1232222).
- CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305).
- CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332).
- CVE-2024-49907: drm/amd/display: Check null pointers before using dc->clk_mgr (bsc#1232334).
- CVE-2024-49908: drm/amd/display: Add null check for 'afb' in amdgpu_dm_update_cursor (bsc#1232335).
- CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337).
- CVE-2024-49913: drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (bsc#1232307).
- CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx->plane_state in (bsc#1232369).
- CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw (bsc#1231965).
- CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967).
- CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968).
- CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313).
- CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424).
- CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164).
- CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160).
- CVE-2024-49950: Bluetooth: L2CAP: Fix uaf in l2cap_connect (bsc#1232159).
- CVE-2024-49953: net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice (bsc#1232156).
- CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155).
- CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151).
- CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149).
- CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395).
- CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140).
- CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519).
- CVE-2024-49972: drm/amd/display: Deallocate DML memory if allocation fails (bsc#1232315).
- CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105).
- CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383).
- CVE-2024-49986: platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors (bsc#1232093).
- CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282).
- CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316).
- CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432).
- CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089).
- CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085).
- CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084).
- CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083).
- CVE-2024-50015: ext4: dax: fix overflowing extents beyond inode size when partially writing (bsc#1232079).
- CVE-2024-50020: ice: Fix improper handling of refcount in ice_sriov_set_msix_vec_count() (bsc#1231989).
- CVE-2024-50021: ice: Fix improper handling of refcount in ice_dpll_init_rclk_pins() (bsc#1231957).
- CVE-2024-50022: device-dax: correct pgoff align in dax_set_mapping() (bsc#1231956).
- CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954).
- CVE-2024-50027: thermal: core: Free tzp copy along with the thermal zone (bsc#1231951).
- CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950).
- CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914).
- CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392).
- CVE-2024-50040: igb: Do not bring the device up after non-fatal error (bsc#1231908).
- CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907).
- CVE-2024-50042: ice: Fix increasing MSI-X on VF (bsc#1231906).
- CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903).
- CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902).
- CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418).
- CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345).
- CVE-2024-50060: io_uring: check if we need to reschedule during overflow flush (bsc#1232417).
- CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435).
- CVE-2024-50064: zram: do not free statically defined names (bsc#1231901).
- CVE-2024-50080: ublk: do not allow user copy for unprivileged device (bsc#1232502).
- CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501).
The following non-security bugs were fixed:
- 9p: explicitly deny setlease attempts (git-fixes).
- ACPI: CPPC: Add support for setting EPP register in FFH (stable-fixes).
- ACPI: CPPC: Make rmw_lock a raw_spin_lock (git-fixes).
- ACPI: EC: Do not release locks during operation region accesses (stable-fixes).
- ACPI: PAD: fix crash in exit_round_robin() (stable-fixes).
- ACPI: PRM: Clean up guid type in struct prm_handler_info (git-fixes).
- ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes).
- ACPI: battery: Fix possible crash when unregistering a battery hook (git-fixes).
- ACPI: battery: Simplify battery hook locking (stable-fixes).
- ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid detection issue (stable-fixes).
- ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[] (stable-fixes).
- ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes).
- ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18 (stable-fixes).
- ACPICA: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes).
- ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes).
- ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes).
- ACPICA: iasl: handle empty connection_node (stable-fixes).
- ALSA/hda: intel-sdw-acpi: cleanup sdw_intel_scan_controller (stable-fixes).
- ALSA/hda: intel-sdw-acpi: fetch fwnode once in sdw_intel_scan_controller() (stable-fixes).
- ALSA/hda: intel-sdw-acpi: simplify sdw-master-count property read (stable-fixes).
- ALSA: Reorganize kerneldoc parameter names (stable-fixes).
- ALSA: asihpi: Fix potential OOB array access (stable-fixes).
- ALSA: core: add isascii() check to card ID generator (stable-fixes).
- ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes).
- ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes).
- ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes).
- ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes).
- ALSA: hda/conexant: fix some typos (stable-fixes).
- ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes).
- ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (bsc#1219803).
- ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes).
- ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes).
- ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593 (stable-fixes).
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (stable-fixes).
- ALSA: hda/realtek: Enable mic on Vaio VJFH52 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 (stable-fixes).
- ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes).
- ALSA: hda/realtek: Limit internal Mic boost on Dell platform (stable-fixes).
- ALSA: hda/realtek: Refactor and simplify Samsung Galaxy Book init (stable-fixes).
- ALSA: hda/realtek: Update default depop procedure (git-fixes).
- ALSA: hda/realtek: fix mute/micmute LED for HP mt645 G8 (stable-fixes).
- ALSA: hda/realtek: tas2781: Fix ROG ALLY X audio (stable-fixes).
- ALSA: hda/tas2781: Add new quirk for Lenovo Y990 Laptop (stable-fixes).
- ALSA: hda/tas2781: Add new quirk for Lenovo, ASUS, Dell projects (stable-fixes).
- ALSA: hda/tas2781: select CRC32 instead of CRC32_SARWATE (git-fixes).
- ALSA: hda: Sound support for HP Spectre x360 16 inch model 2024 (stable-fixes).
- ALSA: hda: tas2781: Fix missing setup at runtime PM (bsc#1230132).
- ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes).
- ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes).
- ALSA: line6: update contact information (stable-fixes).
- ALSA: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes).
- ALSA: silence integer wrapping warning (stable-fixes).
- ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes).
- ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes).
- ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes).
- ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes).
- ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (bsc#1232768).
- ALSA: usb-audio: Add quirks for Dell WD19 dock (stable-fixes).
- ALSA: usb-audio: Define macros for quirk table entries (stable-fixes).
- ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes).
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (stable-fixes).
- ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (stable-fixes).
- ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (git-fixes).
- ASoC: Intel: sst: Support LPE0F28 ACPI HID (stable-fixes).
- ASoC: amd: yc: Add quirk for HP Dragonfly pro one (stable-fixes).
- ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is uninitialized (git-fixes).
- ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to default regs values (stable-fixes).
- ASoC: codecs: rt5640: Always disable IRQs from rt5640_cancel_work() (stable-fixes).
- ASoC: codecs: wsa883x: Handle reading version failure (stable-fixes).
- ASoC: cs42l51: Fix some error handling paths in cs42l51_probe() (git-fixes).
- ASoC: dapm: fix bounds checker error in dapm_widget_list_create (git-fixes).
- ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit (stable-fixes).
- ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes).
- ASoC: max98388: Fix missing increment of variable slot_found (git-fixes).
- ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes).
- ASoC: qcom: sm8250: add qrb4210-rb2-sndcard compatible string (stable-fixes).
- ASoC: tas2781: Use of_property_read_reg() (stable-fixes).
- Bluetooth: Call iso_exit() on module unload (git-fixes).
- Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes).
- Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes).
- Bluetooth: Remove debugfs directory on module init failure (git-fixes).
- Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes).
- Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122 (stable-fixes).
- Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes).
- Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (git-fixes).
- Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes).
- HID: Ignore battery for all ELAN I2C-HID devices (stable-fixes).
- HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes).
- HID: i2c-hid: Remove I2C_HID_QUIRK_SET_PWR_WAKEUP_DEV quirk (stable-fixes).
- HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes).
- HID: multitouch: Add support for lenovo Y9000P Touchpad (stable-fixes).
- HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes).
- Input: adp5589-keys - fix NULL pointer dereference (git-fixes).
- Input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes).
- Input: edt-ft5x06 - fix regmap leak when probe fails (git-fixes).
- Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table (stable-fixes).
- Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table (stable-fixes).
- Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line (stable-fixes).
- KVM: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes).
- KVM: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (git-fixes).
- KVM: Use dedicated mutex to protect kvm_usage_count to avoid deadlock (git-fixes).
- KVM: VMX: Also clear SGX EDECCSSA in KVM CPU caps when SGX is disabled (git-fixes).
- KVM: VMX: Set PFERR_GUEST_{FINAL,PAGE}_MASK if and only if the GVA is valid (git-fixes).
- KVM: Write the per-page "segment" when clearing (part of) a guest page (git-fixes).
- KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232626).
- KVM: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query (git-fixes bsc#1231276).
- KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232623).
- KVM: x86/mmu: Skip emulation on page fault iff 1+ SPs were unprotected (git-fixes).
- KVM: x86/mmu: Trigger unprotect logic only on write-protection page faults (git-fixes).
- KVM: x86: Dedup fastpath MSR post-handling logic (git-fixes).
- KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits (git-fixes).
- KVM: x86: Exit to userspace if fastpath triggers one on instruction skip (git-fixes).
- KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode() (git-fixes).
- KVM: x86: Re-enter guest if WRMSR(X2APIC_ICR) fastpath is successful (git-fixes).
- KVM: x86: Re-split x2APIC ICR into ICR+ICR2 for AMD (x2AVIC) (git-fixes).
- NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes).
- NFSD: Fix NFSv4's PUTPUBFH operation (git-fixes).
- NFSD: Mark filecache "down" if init fails (git-fixes).
- NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016).
- NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes).
- PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes).
- PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes).
- PCI: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019).
- PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes).
- RAS/AMD/ATL: Add amd_atl pr_fmt() prefix (jsc#PED-10559).
- RAS/AMD/ATL: Expand helpers for adding and removing base and hole (jsc#PED-10559).
- RAS/AMD/ATL: Implement DF 4.5 NP2 denormalization (jsc#PED-10559).
- RAS/AMD/ATL: Read DRAM hole base early (jsc#PED-10559).
- RAS/AMD/ATL: Validate address map when information is gathered (jsc#PED-10559).
- RDMA/bnxt_re: Add a check for memory allocation (git-fixes)
- RDMA/bnxt_re: Avoid CPU lockups due fifo occupancy check loop (git-fixes)
- RDMA/bnxt_re: Change the sequence of updating the CQ toggle value (git-fixes)
- RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes)
- RDMA/bnxt_re: Fix a possible memory leak (git-fixes)
- RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes)
- RDMA/bnxt_re: Fix incorrect dereference of srq in async event (git-fixes)
- RDMA/bnxt_re: Fix out of bound check (git-fixes)
- RDMA/bnxt_re: Fix the GID table length (git-fixes)
- RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes)
- RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes)
- RDMA/bnxt_re: Return more meaningful error (git-fixes)
- RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes)
- RDMA/core: Fix ENODEV error for iWARP test over vlan (git-fixes)
- RDMA/cxgb4: Dump vendor specific QP details (git-fixes)
- RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes)
- RDMA/irdma: Fix misspelling of "accept*" (git-fixes)
- RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes)
- RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes).
- RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes).
- RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults (git-fixes)
- RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes)
- RDMA/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled (git-fixes).
- RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes)
- RDMA/srpt: Make slab cache names unique (git-fixes)
- SUNRPC: Fix integer overflow in decode_rc_list() (git-fixes).
- SUNRPC: Fixup gss_status tracepoint error output (git-fixes).
- SUNRPC: clnt.c: Remove misleading comment (git-fixes).
- USB: appledisplay: close race between probe and completion handler (git-fixes).
- USB: misc: cypress_cy7c63: check for short transfer (git-fixes).
- USB: misc: yurex: fix race between read and write (git-fixes).
- USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes).
- USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes).
- Update config files: Enable NFSD_V2 (bsc#1230914)
- Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450).
- accel/qaic: Fix the for loop used to walk SG table (git-fixes).
- add bug reference for a mana change (bsc#1229769).
- add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036).
- arm64: Subscribe Microsoft Azure Cobalt 100 to erratum 3194386 (git-fixes)
- arm64: cputype: Add Neoverse-N3 definitions (git-fixes)
- arm64: errata: Enable the AC03_CPU_38 workaround for ampere1a (git-fixes).
- arm64: errata: Expand speculative SSBS workaround once more (git-fixes)
- arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes)
- arm64: fix selection of HAVE_DYNAMIC_FTRACE_WITH_ARGS (git-fixes).
- arm64: probes: Fix simulate_ldr*_literal() (git-fixes)
- arm64: probes: Fix uprobes for big-endian kernels (git-fixes)
- arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes)
- ata: libata: Set DID_TIME_OUT for commands that actually timed out (git-fixes).
- ata: libata: avoid superfluous disk spin down + spin up during hibernation (git-fixes).
- audit: do not WARN_ON_ONCE(!current->mm) in audit_exe_compare() (git-fixes).
- audit: do not take task_lock() in audit_exe_compare() code path (git-fixes).
- block: print symbolic error name instead of error code (bsc#1231872).
- block: sed-opal: add ioctl IOC_OPAL_SET_SID_PW (bsc#1229677).
- bnxt_en: Cap the size of HWRM_PORT_PHY_QCFG forwarded response (git-fixes).
- bnxt_en: Fix error recovery for 5760X (P7) chips (git-fixes).
- bnxt_en: Fix the PCI-AER routines (git-fixes).
- bnxt_en: Restore PTP tx_avail count in case of skb_pad() error (git-fixes).
- bnxt_en: refactor reset close code (git-fixes).
- bpf, lsm: Add disabled BPF LSM hook list (git-fixes).
- bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes).
- bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes).
- bpf, x64: Remove tail call detection (git-fixes).
- bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes).
- bpf: Fail verification for sign-extension of packet data/data_end/data_meta (git-fixes).
- bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes).
- bpf: Fix error message on kfunc arg type mismatch (git-fixes).
- bpf: Fix helper writes to read-only maps (git-fixes).
- bpf: Fix tailcall cases in test_bpf (git-fixes).
- bpf: Fix truncation bug in coerce_reg_to_size_sx() (git-fixes).
- bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes).
- bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes).
- bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes).
- bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes).
- btf, scripts: rust: drop is_rust_module.sh (bsc#1230414 bsc#1229450).
- btrfs: send: fix invalid clone operation for file that got its size decreased (git-fixes).
- can: netlink: avoid call to do_set_data_bittiming callback with stale can_priv::ctrlmode (stable-fixes).
- ceph: fix cap ref leak via netfs init_request (bsc#1231384).
- clk: bcm: bcm53573: fix OF node leak in init (stable-fixes).
- clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D (stable-fixes).
- comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes).
- config: Disable LAM on x86 (bsc#1217845)
- cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes).
- crypto: hisilicon/qm - flush all work before driver removed (bsc#1232075)
- crypto: octeontx - Fix authenc setkey (stable-fixes).
- crypto: octeontx* - Select CRYPTO_AUTHENC (git-fixes).
- crypto: octeontx2 - Fix authenc setkey (stable-fixes).
- crypto: powerpc/p10-aes-gcm - Add dependency on CRYPTO_SIMD and re-enable CRYPTO_AES_GCM_P10 (bsc#1230501 ltc#208632)
- crypto: powerpc/p10-aes-gcm - Disable CRYPTO_AES_GCM_P10 (bsc#1230501 ltc#208632).
- crypto: powerpc/p10-aes-gcm - Re-write AES/GCM stitched implementation (bsc#1230501 ltc#208632).
- crypto: powerpc/p10-aes-gcm - Register modules as SIMD (bsc#1230501 ltc#208632).
- cxgb4: Properly lock TX queue for the selftest (git-fixes).
- cxgb4: add forgotten u64 ivlan cast before shift (git-fixes).
- cxgb4: unnecessary check for 0 in the free_sge_txq_uld() function (git-fixes).
- dcache: keep dentry_hashtable or d_hash_shift even when not used (git-fixes).
- debugfs: fix automount d_fsdata usage (git-fixes).
- devlink: Fix command annotation documentation (git-fixes).
- dmaengine: sh: rz-dmac: handle configs where one address is zero (git-fixes).
- dmaengine: ti: k3-udma: Set EOP for all TRs in cyclic BCDMA transfer (git-fixes).
- driver core: bus: Fix double free in driver API bus_register() (stable-fixes).
- driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes).
- drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes).
- drm/amd/display: Add HDMI DSC native YCbCr422 support (stable-fixes).
- drm/amd/display: Add disable timeout option (bsc#1231435)
- drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944)
- drm/amd/display: Check null pointer before dereferencing se (stable-fixes).
- drm/amd/display: Clean up dsc blocks in accelerated mode (stable-fixes).
- drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too (stable-fixes).
- drm/amd/display: Remove a redundant check in authenticated_dp (stable-fixes).
- drm/amd/display: Revert "Check HDCP returned status" (stable-fixes).
- drm/amd/display: Round calculated vtotal (stable-fixes).
- drm/amd/display: Skip to enable dsc if it has been off (stable-fixes).
- drm/amd/display: Validate backlight caps are sane (stable-fixes).
- drm/amd/pm: Vangogh: Fix kernel memory out of bounds write (git-fixes).
- drm/amd: Guard against bad data for ATIF ACPI method (git-fixes).
- drm/amdgpu/swsmu: Only force workload setup on init (git-fixes).
- drm/amdgpu/vcn: enable AV1 on both instances (stable-fixes).
- drm/i915/gem: fix bitwise and logical AND mixup (git-fixes).
- drm/i915/hdcp: fix connector refcounting (git-fixes).
- drm/mediatek: Fix get efuse issue for MT8188 DPTX (git-fixes).
- drm/msm/dpu: check for overflow in _dpu_crtc_setup_lm_bounds() (git-fixes).
- drm/msm/dpu: do not always program merge_3d block (git-fixes).
- drm/msm/dpu: make sure phys resources are properly initialized (git-fixes).
- drm/msm/dpu: move CRTC resource assignment to dpu_encoder_virt_atomic_check (git-fixes).
- drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes).
- drm/msm/dsi: improve/fix dsc pclk calculation (git-fixes).
- drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes).
- drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes).
- drm/radeon: Fix encoder->possible_clones (git-fixes).
- drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes).
- drm/sched: Always wake up correct scheduler in drm_sched_entity_push_job (git-fixes).
- drm/v3d: Stop the active perfmon before being destroyed (git-fixes).
- drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA (stable-fixes).
- drm/vc4: Stop the active perfmon before being destroyed (git-fixes).
- drm/vmwgfx: Handle surface check failure correctly (git-fixes).
- drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes).
- e1000e: Fix S0ix residency on corporate systems (git-fixes).
- e1000e: change I219 (19) devices to ADP (git-fixes).
- e1000e: fix force smbus during suspend flow (git-fixes).
- e1000e: move force SMBUS near the end of enable_ulp function (git-fixes).
- efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes).
- eth: bnxt: fix counting packets discarded due to OOM and netpoll (git-fixes).
- ext4: do not track ranges in fast_commit if inode has inlined data (bsc#1231635).
- ext4: fix fast commit inode enqueueing during a full journal commit (bsc#1231636).
- ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible() (bsc#1231637).
- ext4: fix possible tid_t sequence overflows (bsc#1231634).
- ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201)
- ext4: mark fc as ineligible using an handle in ext4_xattr_set() (bsc#1231640).
- ext4: use handle to mark fc as ineligible in __track_dentry_update() (bsc#1231639).
- fat: fix uninitialized variable (git-fixes).
- fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (stable-fixes).
- fbdev: sisfb: Fix strbuf array overflow (stable-fixes).
- fgraph: Change the name of cpuhp state to "fgraph:online" (git-fixes).
- fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes).
- fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes).
- filemap: remove use of wait bookmarks (bsc#1224088).
- firmware: arm_scmi: Fix slab-use-after-free in scmi_bus_notifier() (git-fixes).
- firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup() (git-fixes).
- firmware: arm_sdei: Fix the input parameter of cpuhp_remove_state() (git-fixes).
- fs/9p: drop inodes immediately on non-.L too (git-fixes).
- fs/9p: fix the cache always being enabled on files with qid flags (git-fixes).
- genirq/msi: Fix off-by-one error in msi_domain_alloc() (git-fixes).
- gpio: aspeed: Add the flush write to ensure the write complete (git-fixes).
- gpio: aspeed: Use devm_clk api to manage clock source (git-fixes).
- gpio: davinci: fix lazy disable (git-fixes).
- gve: Fix XDP TX completion handling when counters overflow (git-fixes).
- gve: Fix an edge case for TSO skb validity check (git-fixes).
- gve: ignore nonrelevant GSO type bits when processing TSO headers (git-fixes).
- hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma (git-fixes).
- hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes).
- hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes).
- hwmon: (adt7470) Add missing dependency on REGMAP_I2C (git-fixes).
- hwmon: (max16065) Fix alarm attributes (git-fixes).
- hwmon: (max16065) Remove use of i2c_match_id() (stable-fixes).
- hwmon: (mc34vr500) Add missing dependency on REGMAP_I2C (git-fixes).
- hwmon: (nct6775) add G15CF to ASUS WMI monitoring list (stable-fixes).
- hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes).
- hwmon: intel-m10-bmc-hwmon: relabel Columbiaville to CVL Die Temperature (git-fixes).
- i2c: core: Setup i2c_adapter runtime-pm before calling device_add() (git-fixes).
- i2c: core: fix lockdep warning for sparsely nested adapter chain (git-fixes).
- i2c: cpm: Remove linux,i2c-index conversion from be32 (git-fixes).
- i2c: exynos5: Calculate t_scl_l, t_scl_h according to i2c spec (git-fixes).
- i2c: i801: Add lis3lv02d for Dell Precision 3540 (git-fixes).
- i2c: i801: Add lis3lv02d for Dell XPS 15 7590 (git-fixes).
- i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes).
- i2c: i801: add helper i801_restore_regs (git-fixes).
- i2c: ismt: kill transaction in hardware on timeout (git-fixes).
- i2c: ocores: Move system PM hooks to the NOIRQ phase (git-fixes).
- i2c: ocores: Remove #ifdef guards for PM related functions (git-fixes).
- i2c: omap: switch to NOIRQ_SYSTEM_SLEEP_PM_OPS() and RUNTIME_PM_OPS() (git-fixes).
- i2c: omap: wakeup the controller during suspend() callback (git-fixes).
- i2c: rcar: properly format a debug output (git-fixes).
- i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes).
- i2c: stm32f7: perform most of irq job in threaded handler (git-fixes).
- i2c: synquacer: Deal with optional PCLK correctly (git-fixes).
- i2c: synquacer: Remove a clk reference from struct synquacer_i2c (stable-fixes).
- i2c: xiic: Try re-initialization on bus busy timeout (git-fixes).
- i2c: xiic: improve error message when transfer fails to start (stable-fixes).
- i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (stable-fixes).
- i40e: Fix XDP program unloading while removing the driver (git-fixes).
- i40e: Report MFS in decimal base instead of hex (git-fixes).
- iavf: Fix TC config comparison with existing adapter TC config (git-fixes).
- ice: Fix VSI list rule with ICE_SW_LKUP_LAST type (git-fixes).
- ice: Fix checking for unsupported keys on non-tunnel device (git-fixes).
- ice: Fix lldp packets dropping after changing the number of channels (git-fixes).
- ice: Fix netif_is_ice() in Safe Mode (git-fixes).
- ice: Fix package download algorithm (git-fixes).
- ice: Fix recipe read procedure (git-fixes).
- ice: Fix reset handler (git-fixes).
- ice: Flush FDB entries before reset (git-fixes).
- ice: Interpret .set_channels() input differently (git-fixes).
- ice: Rebuild TC queues on VSI queue reconfiguration (git-fixes).
- ice: Reject pin requests with unsupported flags (git-fixes).
- ice: add flag to distinguish reset from .ndo_bpf in XDP rings config (git-fixes).
- ice: add missing WRITE_ONCE when clearing ice_rx_ring::xdp_prog (git-fixes).
- ice: avoid IRQ collision to fix init failure on ACPI S3 resume (git-fixes).
- ice: clear port vlan config during reset (git-fixes).
- ice: disallow DPLL_PIN_STATE_SELECTABLE for dpll output pins (git-fixes).
- ice: do not bring the VSI up, if it was down before the XDP setup (git-fixes).
- ice: do not busy wait for Rx queue disable in ice_qp_dis() (git-fixes).
- ice: fix 200G PHY types to link speed mapping (git-fixes).
- ice: fix 200G link speed message log (git-fixes).
- ice: fix ICE_LAST_OFFSET formula (git-fixes).
- ice: fix VLAN replay after reset (git-fixes).
- ice: fix VSI lists confusion when adding VLANs (git-fixes).
- ice: fix accounting for filters shared by multiple VSIs (git-fixes).
- ice: fix accounting if a VLAN already exists (git-fixes).
- ice: fix iteration of TLVs in Preserved Fields Area (git-fixes).
- ice: fix page reuse when PAGE_SIZE is over 8k (git-fixes).
- ice: fix reads from NVM Shadow RAM on E830 and E825-C devices (git-fixes).
- ice: fix truesize operations for PAGE_SIZE >= 8192 (git-fixes).
- ice: implement AQ download pkg retry (git-fixes).
- ice: map XDP queues to vectors in ice_vsi_map_rings_to_vectors() (git-fixes).
- ice: remove af_xdp_zc_qps bitmap (git-fixes).
- ice: replace synchronize_rcu with synchronize_net (git-fixes).
- ice: respect netif readiness in AF_XDP ZC related ndo's (git-fixes).
- ice: set correct dst VSI in only LAN filters (git-fixes).
- ice: tc: allow zero flags in parsing tc flower (git-fixes).
- ice: tc: check src_vsi in case of traffic from VF (git-fixes).
- ice: use proper macro for testing bit (git-fixes).
- idpf: Interpret .set_channels() input differently (git-fixes).
- idpf: avoid bloating &idpf_q_vector with big %NR_CPUS (git-fixes).
- idpf: do not enable NAPI and interrupts prior to allocating Rx buffers (git-fixes).
- idpf: do not skip over ethtool tcp-data-split setting (git-fixes).
- idpf: fix UAFs when destroying the queues (git-fixes).
- idpf: fix memleak in vport interrupt configuration (git-fixes).
- idpf: fix memory leaks and crashes while performing a soft reset (git-fixes).
- ieee802154: Fix build error (git-fixes).
- igb: Always call igb_xdp_ring_update_tail() under Tx lock (git-fixes).
- igb: Fix not clearing TimeSync interrupts for 82580 (git-fixes).
- igc: Fix double reset adapter triggered from a single taprio cmd (git-fixes).
- igc: Fix packet still tx after gate close by reducing i226 MAC retry buffer (git-fixes).
- igc: Fix qbv tx latency by setting gtxoffset (git-fixes).
- igc: Fix qbv_config_change_errors logics (git-fixes).
- igc: Fix reset adapter logics when tx mode change (git-fixes).
- igc: Unlock on error in igc_io_resume() (git-fixes).
- iio: accel: bma400: Fix uninitialized variable field_value in tap event handling (git-fixes).
- iio: accel: kx022a: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (git-fixes).
- iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- iio: adc: ti-lmp92064: add missing select REGMAP_SPI in Kconfig (git-fixes).
- iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig (git-fixes).
- iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes).
- iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes).
- iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes).
- iio: frequency: adf4377: add missing select REMAP_SPI in Kconfig (git-fixes).
- iio: frequency: admv4420: fix missing select REMAP_SPI in Kconfig (git-fixes).
- iio: gts-helper: Fix memory leaks for the error path of iio_gts_build_avail_scale_table() (git-fixes).
- iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() (git-fixes).
- iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes).
- iio: light: opt3001: add missing full-scale range value (git-fixes).
- iio: light: veml6030: fix ALS sensor resolution (git-fixes).
- iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes).
- iio: light: veml6030: fix microlux value calculation (git-fixes).
- iio: magnetometer: ak8975: Convert enum->pointer for data in the match tables (stable-fixes).
- iio: magnetometer: ak8975: Fix 'Unexpected device' error (git-fixes).
- iio: magnetometer: ak8975: drop incorrect AK09116 compatible (git-fixes).
- iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).
- io_uring/eventfd: move to more idiomatic RCU free usage (git-fixes).
- io_uring/io-wq: do not allow pinning outside of cpuset (git-fixes).
- io_uring/io-wq: inherit cpuset of cgroup in io worker (git-fixes).
- io_uring/net: harden multishot termination case for recv (git-fixes).
- io_uring/rw: fix cflags posting for single issue multishot read (git-fixes).
- io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN (git-fixes).
- io_uring/sqpoll: do not allow pinning outside of cpuset (git-fixes).
- io_uring/sqpoll: do not put cpumask on stack (git-fixes).
- io_uring/sqpoll: retain test for whether the CPU is valid (git-fixes).
- io_uring: check for presence of task_work rather than TIF_NOTIFY_SIGNAL (git-fixes).
- iommu/amd: Allocate the page table root using GFP_KERNEL (git-fixes).
- iommu/amd: Do not set the D bit on AMD v2 table entries (git-fixes).
- iommu/amd: Fix typo of , instead of ; (git-fixes).
- iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes).
- iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices (git-fixes).
- iommufd: Check the domain owner of the parent before creating a nesting domain (git-fixes).
- iommufd: Protect against overflow of ALIGN() during iova allocation (git-fixes).
- jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit (bsc#1231638).
- jfs: Fix sanity check in dbMount (git-fixes).
- jfs: Fix uaf in dbFreeBits (git-fixes).
- jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes).
- jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes).
- jfs: check if leafidx greater than num leaves per dmap tree (git-fixes).
- jump_label: Fix static_key_slow_dec() yet again (git-fixes).
- kABI fix of VM: x86: Re-split x2APIC ICR into ICR+ICR2 for AMD (x2AVIC) (git-fixes).
- kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes).
- kABI: bpf: struct bpf_insn_acces_aux kABI workaround (git-fixes).
- kasan: Fix Software Tag-Based KASAN with GCC (git-fixes).
- kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450).
- kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450).
- kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450).
- kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450).
- kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450).
- kconfig: qconf: fix buffer overflow in debug links (git-fixes).
- keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry (git-fixes).
- keys: Fix overwrite of key expiration on instantiation (git-fixes).
- kthread: unpark only parked kthread (git-fixes).
- lib/xarray: introduce a new helper xas_get_order (bsc#1231617).
- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING (git-fixes).
- macsec: do not increment counters for an unrelated SA (git-fixes).
- maple_tree: correct tree corruption on spanning store (git-fixes).
- media: bttv: use audio defaults for winfast2000 (git-fixes).
- media: core: v4l2-ioctl: check if ioctl is known to avoid NULL name (git-fixes).
- media: i2c: imx335: Enable regulator supplies (stable-fixes).
- media: imx335: Fix reset-gpio handling (git-fixes).
- media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning (git-fixes).
- media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes).
- media: videobuf2: fix typo: vb2_dbuf -> vb2_qbuf (git-fixes).
- mei: use kvmalloc for read buffer (git-fixes).
- mfd: intel_soc_pmic_chtwc: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- minmax: avoid overly complex min()/max() macro arguments in xen (git-fixes).
- mlx5: avoid truncating error message (git-fixes).
- mlx5: stop warning for 64KB pages (git-fixes).
- mm/filemap: optimize filemap folio adding (bsc#1231617).
- mm/filemap: return early if failed to allocate memory for split (bsc#1231617).
- mm: khugepaged: fix the arguments order in khugepaged_collapse_file trace point (git-fixes).
- mm: mmap: no need to call khugepaged_enter_vma() for stack (jsc#PED-10978).
- modpost: fix acpi MODULE_DEVICE_TABLE built with mismatched endianness (git-fixes).
- modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (git-fixes).
- module: abort module loading when sysfs setup suffer errors (git-fixes).
- nbd: fix race between timeout and normal completion (bsc#1230918).
- net/mlx5: Add missing masks and QoS bit masks for scheduling elements (git-fixes).
- net/mlx5: Added cond_resched() to crdump collection (git-fixes).
- net/mlx5: Check capability for fw_reset (git-fixes).
- net/mlx5: Check for invalid vector index on EQ creation (git-fixes).
- net/mlx5: Explicitly set scheduling element and TSAR type (git-fixes).
- net/mlx5: Fix command bitmask initialization (git-fixes).
- net/mlx5: Fix error handling in irq_pool_request_irq (git-fixes).
- net/mlx5: Lag, do bond only if slaves agree on roce state (git-fixes).
- net/mlx5: Lag, do not use the hardcoded value of the first port (git-fixes).
- net/mlx5: Stop waiting for PCI if pci channel is offline (git-fixes).
- net/mlx5: Unregister notifier on eswitch init failure (git-fixes).
- net/mlx5: Update the list of the PCI supported devices (git-fixes).
- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (git-fixes).
- net/mlx5e: Add missing link mode to ptys2ext_ethtool_map (git-fixes).
- net/mlx5e: Add missing link modes to ptys2ethtool_map (git-fixes).
- net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup() (git-fixes).
- net/mlx5e: Correctly report errors for ethtool rx flows (git-fixes).
- net/mlx5e: Do not call cleanup on profile rollback failure (git-fixes).
- net/mlx5e: Fix IPsec tunnel mode offload feature check (git-fixes).
- net/mlx5e: Fix UDP GSO for encapsulated packets (git-fixes).
- net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN) packets (git-fixes).
- net/mlx5e: Require mlx5 tc classifier action support for IPsec prio capability (git-fixes).
- net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer exhaustion (git-fixes).
- net: mana: Implement get_ringparam/set_ringparam for mana (bsc#1229891).
- net: mana: Improve mana_set_channels() in low mem conditions (bsc#1230289).
- net: phy: Remove LED entry from LEDs list on unregister (git-fixes).
- net: phy: bcm84881: Fix some error handling paths (git-fixes).
- net: phy: dp83869: fix memory corruption when enabling fiber (git-fixes).
- net: qede: sanitize 'rc' in qede_add_tc_flower_fltr() (git-fixes).
- net: qede: use return from qede_parse_actions() (git-fixes).
- net: qede: use return from qede_parse_flow_attr() for flow_spec (git-fixes).
- net: qede: use return from qede_parse_flow_attr() for flower (git-fixes).
- net: stmmac: dwmac-tegra: Fix link bring-up sequence (git-fixes)
- net: sysfs: Fix /sys/class/net/&lt;iface> path for statistics (git-fixes).
- net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes).
- net: usb: usbnet: fix name regression (get-fixes).
- net: usb: usbnet: fix race in probe failure (git-fixes).
- netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes).
- nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes).
- nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes).
- nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (git-fixes).
- nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes).
- nfsd: fix refcount leak when file is unhashed after being found (git-fixes).
- nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes).
- nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes).
- nfsd: return -EINVAL when namelen is 0 (git-fixes).
- nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes).
- nouveau/dmem: Fix privileged error in copy engine channel (git-fixes).
- nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes).
- nouveau/gsp: Avoid addressing beyond end of rpc->entries (stable-fixes).
- ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes).
- nvme-multipath: suppress partition scan until the disk is ready (bsc#1228244).
- nvme-pci: fix race condition between reset and nvme_dev_disable() (git-fixes).
- nvme-pci: qdepth 1 quirk (git-fixes).
- nvme-pci: set doorbell config before unquiescing (git-fixes).
- nvme: disable CC.CRIME (NVME_CC_CRIME) (jsc#PED-9901).
- nvme: null terminate nvme_tls_attrs (git-fixes).
- nvme: re-fix error-handling for io_uring nvme-passthrough (git-fixes).
- nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes).
- ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes).
- ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes).
- ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes).
- parport: Proper fix for array out-of-bounds access (git-fixes).
- phy: freescale: imx8m-pcie: Do CMN_RST just before PHY PLL lock check (git-fixes).
- phy: qcom: qmp-combo: move driver data initialisation earlier (git-fixes).
- phy: qcom: qmp-usb: fix NULL-deref on runtime suspend (git-fixes).
- phy: tegra: xusb: Add error pointer check in xusb.c (git-fixes).
- phy: ti: phy-j721e-wiz: fix usxgmii configuration (git-fixes).
- pinctrl: apple: check devm_kasprintf() returned value (git-fixes).
- pinctrl: ocelot: fix system hang on level based interrupts (stable-fixes).
- platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (git-fixes).
- platform/x86: dell-sysman: add support for alienware products (stable-fixes).
- platform/x86: dell-wmi: Ignore suspend notifications (stable-fixes).
- platform/x86: lenovo-ymc: Ignore the 0x0 state (stable-fixes).
- platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes).
- power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes).
- powercap: intel_rapl: Fix off by one in get_rpi() (git-fixes).
- powerpc/64: Convert patch_instruction() to patch_u32() (bsc#1194869).
- powerpc/boot: Handle allocation failure in simple_realloc() (bsc#1194869).
- powerpc/boot: Only free if realloc() succeeds (bsc#1194869).
- powerpc/code-patching: Add generic memory patching (bsc#1194869).
- powerpc/code-patching: Perform hwsync in __patch_instruction() in case of failure (bsc#1194869).
- powerpc/crypto: do not build aes-gcm-p10 by default (bsc#1230501 ltc#208632).
- powerpc/crypto: fix missing skcipher dependency for aes-gcm-p10 (bsc#1230501 ltc#208632).
- powerpc/vdso: Fix VDSO data access when running in a non-root time namespace (bsc#1194869).
- powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (bsc#1194869).
- powerpc/xmon: Fix disassembly CPU feature checks (bsc#1065729).
- printk: Add notation to console_srcu locking (bsc#1232183).
- qed: avoid truncating work queue length (git-fixes).
- rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow (bsc#1226631).
- rcu: Fix buffer overflow in print_cpu_stall_info() (bsc#1226623).
- rpm/check-for-config-changes: add HAVE_RUST and RUSTC_SUPPORTS_ to IGNORED_CONFIGS_RE They depend on SHADOW_CALL_STACK.
- rpm/release-projects: Add SLFO projects (bsc#1231293).
- rpmsg: glink: Handle rejected intent request better (git-fixes).
- runtime constants: add default dummy infrastructure (git-fixes).
- runtime constants: add x86 architecture support (git-fixes).
- s390/mm: Add cond_resched() to cmm_alloc/free_pages() (bsc#1228747).
- s390/pci: Handle PCI error codes other than 0x3a (git-fixes bsc#1232629).
- s390/sclp: Deactivate sclp after all its users (git-fixes bsc#1232628).
- s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232627).
- scsi: fnic: Move flush_work initialization out of if block (bsc#1230055).
- scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757).
- scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757).
- scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757).
- scsi: lpfc: Remove trailing space after \n newline (bsc#1232757).
- scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (bsc#1232757 bsc#1228119).
- scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757).
- scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757).
- scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757).
- scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757).
- selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes).
- selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes).
- selftests/bpf: Add test for sign extension in coerce_subreg_to_size_sx() (git-fixes).
- selftests/bpf: Add test for truncation after sign extension in coerce_reg_to_size_sx() (git-fixes).
- selftests/bpf: Add tests for ldsx of pkt data/data_end/data_meta accesses (git-fixes).
- selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes).
- selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes).
- selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes).
- serial: imx: Update mctrl old_status on RTSD interrupt (git-fixes).
- serial: protect uart_port_dtr_rts() in uart_shutdown() too (stable-fixes).
- soundwire: intel_bus_common: enable interrupts before exiting reset (stable-fixes).
- spi: atmel-quadspi: Fix wrong register value written to MR (git-fixes).
- spi: mtk-snfi: fix kerneldoc for mtk_snand_is_page_ops() (git-fixes).
- spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes).
- spi: spi-fsl-dspi: Fix crash when not using GPIO chip select (git-fixes).
- spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).
- splice: always fsnotify_access(in), fsnotify_modify(out) on success (git-fixes).
- splice: fsnotify_access(fd)/fsnotify_modify(fd) in vmsplice (git-fixes).
- splice: fsnotify_access(in), fsnotify_modify(out) on success in tee (git-fixes).
- srcu: Fix callbacks acceleration mishandling (git-fixes).
- staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() (git-fixes).
- sumversion: Fix a memory leak in get_src_version() (git-fixes).
- supported.conf: mark nhpoly1305 module as supported (bsc#1231035)
- supported.conf: mark ultravisor userspace access as supported (bsc#1232090)
- task_work: add kerneldoc annotation for 'data' argument (git-fixes).
- thunderbolt: Improve DisplayPort tunnel setup process to be more robust (stable-fixes).
- tools: hv: rm .*.cmd when make clean (git-fixes).
- tracing/hwlat: Fix a race during cpuhp processing (git-fixes).
- tracing/osnoise: Fix build when timerlat is not enabled (git-fixes).
- tracing/osnoise: Skip running osnoise if all instances are off (git-fixes).
- tracing/osnoise: Switch from PF_NO_SETAFFINITY to migrate_disable (git-fixes).
- tracing/osnoise: Use a cpumask to know what threads are kthreads (git-fixes).
- tracing/timerlat: Add interface_lock around clearing of kthread in stop_kthread() (git-fixes).
- tracing/timerlat: Add user-space interface (git-fixes).
- tracing/timerlat: Drop interface_lock in stop_kthread() (git-fixes).
- tracing/timerlat: Fix a race during cpuhp processing (git-fixes).
- tracing/timerlat: Fix duplicated kthread creation due to CPU online/offline (git-fixes).
- tracing/timerlat: Move hrtimer_init to timerlat_fd open() (git-fixes).
- tracing/timerlat: Only clear timer if a kthread exists (git-fixes).
- tracing: Consider the NULL character when validating the event length (git-fixes).
- tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (stable-fixes).
- ubifs: Fix adding orphan entry twice for the same inode (git-fixes).
- ubifs: Fix unattached xattr inode if powercut happens after deleting (git-fixes).
- ubifs: add check for crypto_shash_tfm_digest (git-fixes).
- ubifs: dbg_orphan_check: Fix missed key type checking (git-fixes).
- unicode: Do not special case ignorable code points (stable-fixes).
- uprobe: avoid out-of-bounds memory access of fetching args (git-fixes).
- uprobes: encapsulate preparation of uprobe args buffer (git-fixes).
- uprobes: introduce the global struct vm_special_mapping xol_mapping (bsc#1231114).
- uprobes: turn xol_area->pages into xol_area->page (bsc#1231114).
- usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes).
- usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes).
- usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG (git-fixes).
- usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes).
- usb: gadget: core: force synchronous registration (git-fixes).
- usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant (stable-fixes).
- usb: gadget: f_uac2: fix non-newline-terminated function name (stable-fixes).
- usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store (git-fixes).
- usb: phy: Fix API devm_usb_put_phy() can not release the phy (git-fixes).
- usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes).
- usb: typec: altmode should keep reference to parent (git-fixes).
- usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() (git-fixes).
- usb: xhci: Fix problem with xhci resume from suspend (stable-fixes).
- usb: xhci: fix loss of data on Cadence xHC (git-fixes).
- usbip: tools: Fix detach_port() invalid port error path (git-fixes).
- usbnet: fix cyclical race on disconnect with work queue (git-fixes).
- vdpa: Fix an error handling path in eni_vdpa_probe() (git-fixes).
- vdpa_sim_blk: Fix the potential leak of mgmt_dev (git-fixes).
- vdpa_sim_blk: allocate the buffer zeroed (git-fixes).
- vduse: avoid using __GFP_NOFAIL (git-fixes).
- vfs: dcache: move hashlen_hash() from callers into d_hash() (git-fixes).
- vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes).
- vhost_vdpa: assign irq bypass producer token correctly (git-fixes).
- virtio_console: fix misc probe bugs (git-fixes).
- vmalloc: modify the alloc_vmap_area() error message for better diagnostics (jsc#PED-10978).
- vmxnet3: Add XDP support (bsc#1226498).
- vmxnet3: Fix missing reserved tailroom (bsc#1226498).
- vmxnet3: Fix packet corruption in vmxnet3_xdp_xmit_frame (bsc#1226498).
- vmxnet3: add command to allow disabling of offloads (bsc#1226498).
- vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498).
- vmxnet3: prepare for version 9 changes (bsc#1226498).
- vmxnet3: update to version 9 (bsc#1226498).
- vt: prevent kernel-infoleak in con_font_get() (git-fixes).
- wifi: ath10k: Fix memory leak in management tx (git-fixes).
- wifi: ath11k: Fix invalid ring usage in full monitor mode (git-fixes).
- wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes).
- wifi: ath12k: fix array out-of-bound access in SoC stats (stable-fixes).
- wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes).
- wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes).
- wifi: brcm80211: BRCM_TRACING should depend on TRACING (git-fixes).
- wifi: cfg80211: Set correct chandef when starting CAC (stable-fixes).
- wifi: cfg80211: clear wdev->cqm_config pointer on free (git-fixes).
- wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd() (git-fixes).
- wifi: iwlwifi: allow only CN mcc from WRDD (stable-fixes).
- wifi: iwlwifi: config: label 'gl' devices as discrete (git-fixes).
- wifi: iwlwifi: mvm: Fix a race in scan abort flow (stable-fixes).
- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (git-fixes).
- wifi: iwlwifi: mvm: avoid NULL pointer dereference (stable-fixes).
- wifi: iwlwifi: mvm: do not add default link in fw restart flow (git-fixes).
- wifi: iwlwifi: mvm: do not leak a link on AP removal (git-fixes).
- wifi: iwlwifi: mvm: drop wrong STA selection in TX (stable-fixes).
- wifi: iwlwifi: mvm: use correct key iteration (stable-fixes).
- wifi: iwlwifi: remove AX101, AX201 and AX203 support from LNL (stable-fixes).
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (git-fixes).
- wifi: mac80211: fix RCU list iterations (stable-fixes).
- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys (git-fixes).
- wifi: mt76: mt7915: add dummy HW offload of IEEE 802.11 fragmentation (stable-fixes).
- wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable (stable-fixes).
- wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker (stable-fixes).
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes).
- wifi: rtw88: 8821cu: Remove VID/PID 0bda:c82c (stable-fixes).
- wifi: rtw88: Fix USB/SDIO devices not transmitting beacons (git-fixes).
- wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes).
- wifi: rtw89: avoid reading out of bounds when loading TX power FW elements (stable-fixes).
- wifi: rtw89: avoid to add interface to list twice when SER (stable-fixes).
- wifi: rtw89: correct base HT rate mask for firmware (stable-fixes).
- x86/CPU/AMD: Only apply Zenbleed fix for Zen2 during late microcode load (git-fixes).
- x86/Documentation: Indent 'note::' directive for protocol version number note (git-fixes).
- x86/PCI: Check pcie_find_root_port() return for NULL (git-fixes).
- x86/amd_nb: Add new PCI IDs for AMD family 1Ah model 60h (git-fixes).
- x86/apic: Always explicitly disarm TSC-deadline timer (git-fixes).
- x86/apic: Make x2apic_disable() work correctly (git-fixes).
- x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes).
- x86/bugs: Skip RSB fill at VMEXIT (git-fixes).
- x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes).
- x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes).
- x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes).
- x86/entry: Remove unwanted instrumentation in common_interrupt() (git-fixes).
- x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes).
- x86/mm: Use IPIs to synchronize LAM enablement (git-fixes).
- x86/resctrl: Annotate get_mem_config() functions as __init (git-fixes).
- x86/resctrl: Avoid overflow in MB settings in bw_validate() (git-fixes).
- x86/sev: Check for MWAITX and MONITORX opcodes in the #VC handler (git-fixes).
- x86: do the user address masking outside the user access area (git-fixes).
- x86: fix user address masking non-canonical speculation issue (git-fixes).
- x86: make the masked_user_access_begin() macro use its argument only once (git-fixes).
- x86: support user address masking instead of non-speculative conditional (git-fixes).
- xfs: check opcode and iovec count match in xlog_recover_attri_commit_pass2 (git-fixes).
- xfs: check shortform attr entry flags specifically (git-fixes).
- xfs: convert delayed extents to unwritten when zeroing post eof blocks (git-fixes).
- xfs: fix finding a last resort AG in xfs_filestream_pick_ag (git-fixes).
- xfs: fix freeing speculative preallocations for preallocated files (git-fixes).
- xfs: make sure sb_fdblocks is non-negative (git-fixes).
- xfs: make the seq argument to xfs_bmapi_convert_delalloc() optional (git-fixes).
- xfs: make xfs_bmapi_convert_delalloc() to allocate the target offset (git-fixes).
- xfs: remove a racy if_bytes check in xfs_reflink_end_cow_extent (git-fixes).
- xfs: validate recovered name buffers when recovering xattr items (git-fixes).
- xhci: Add a quirk for writing ERST in high-low order (git-fixes).
- xhci: Fix Link TRB DMA in command ring stopped completion event (git-fixes).
- xhci: Fix incorrect stream context type macro (git-fixes).
- xhci: Mitigate failed set dequeue pointer commands (git-fixes).
- xhci: Use pm_runtime_get to prevent RPM on unsupported systems (git-fixes).
- xhci: tegra: fix checked USB2 port number (git-fixes).
- zonefs: Improve error handling (git-fixes).
</description>
<summary>Security update for the Linux Kernel</summary>
</patchinfo>
