File _patchinfo of Package patchinfo.35182
<patchinfo incident="35182">
<issue id="1082555" tracker="bnc">SLE15 TPM base kernel fixes</issue>
<issue id="1193454" tracker="bnc">Partner-L3: SLES15 SP4: Hardlockups observed while doing smt=off or offlining cores.[Denali][P10][2TB/240c]</issue>
<issue id="1193554" tracker="bnc">NV60100M - NVMe/TCP - ENET port disable/enable - paths do not return</issue>
<issue id="1193787" tracker="bnc">[DELL EMC SLES15 SP3 BUG] System got Crashed and rebooted when tried to connect with more(4 to 6) NVME Over TCP initiators.</issue>
<issue id="1194324" tracker="bnc">ISST-LTE: SLES15Sp4 Beta1 [ Rainier ] [ P10 ] [ 5.14.19-150400.1]: HPT: ramlp53 : LPAR crashed @xs_sock_getport while running LTP tests using SLS.</issue>
<issue id="1194869" tracker="bnc">[TRACKERBUG] 5.14 powerpc base kernel fixes</issue>
<issue id="1195357" tracker="bnc">watchdog: BUG: soft lockup - CPU#33 stuck for 26s! [kcompactd0:479]</issue>
<issue id="1195668" tracker="bnc">SLES15SP4 - [Regression] dlpar remove operation hangs with ibmvnic call traces. ( P10/ ibmvnic/Denali)</issue>
<issue id="1195927" tracker="bnc">SLES 15 SP4 - s390/cio: verify the driver availability for path_event call</issue>
<issue id="1195957" tracker="bnc">[Build 97.1] openQA test fails in RD5a - NFS server must convert incoming offsets</issue>
<issue id="1196018" tracker="bnc">VUL-0: CVE-2022-28748: kernel-source: malicious hardware can cause a leak of kernel memory over the network by ax88179_178a devices</issue>
<issue id="1196823" tracker="bnc">VUL-0: CVE-2022-0854: kernel-source: swiotlb: fix info leak with DMA_FROM_DEVICE</issue>
<issue id="1197146" tracker="bnc">[SLES 15 SP4] - System crash observed when 'nvme connect-all' is issued on a NVMe TCP volume under stress</issue>
<issue id="1197246" tracker="bnc">VUL-0: CVE-2022-0995: kernel: kernel bug in the watch_queue subsystem</issue>
<issue id="1197762" tracker="bnc">Install fails on HP Z2 G9 Workstation (Alder Lake)</issue>
<issue id="1202346" tracker="bnc">VUL-0: CVE-2022-20368: kernel: slab-out-of-bounds access in packet_recvmsg()</issue>
<issue id="1202686" tracker="bnc">VUL-0: CVE-2022-2964: kernel: memory corruption in AX88179_178A based USB ethernet device.</issue>
<issue id="1208783" tracker="bnc">Kernel hard lockup when initializing FW sound device with jackdbus</issue>
<issue id="1209636" tracker="bnc">VUL-0: CVE-2023-1582: kernel: Soft lockup occurred during __page_mapcount</issue>
<issue id="1213123" tracker="bnc">VUL-0: CVE-2023-37453: kernel: out-of-bounds and crash in read_descriptors in drivers/usb/core/sysfs.c.</issue>
<issue id="1215492" tracker="bnc">Partner-L3: Deleting offline nvme controllers causes I/O errors</issue>
<issue id="1215587" tracker="bnc">Partner-L3: SLES 15 SP4 QLogic Driver Causes NIC Failure</issue>
<issue id="1216834" tracker="bnc">L3: System crashing intermittent with OCFS2</issue>
<issue id="1219832" tracker="bnc">VUL-0: CVE-2024-25741: kernel: possible denial of service in printer_write in drivers/usb/gadget/function/f_printer.c</issue>
<issue id="1220138" tracker="bnc">VUL-0: CVE-2023-52435: kernel: mss overflow in skb_segment()</issue>
<issue id="1220185" tracker="bnc">VUL-0: CVE-2024-26583: kernel: tls: fix race between async notify and socket close</issue>
<issue id="1220186" tracker="bnc">VUL-0: CVE-2024-26584: kernel: net: tls: handle backlogging of crypto requests</issue>
<issue id="1220187" tracker="bnc">VUL-0: CVE-2024-26585: kernel-source,kernel-source-azure,kernel-source-rt: tls: race condition between tx work scheduling and socket close</issue>
<issue id="1220869" tracker="bnc">VUL-0: CVE-2023-52573: kernel: net: rds: Fix possible NULL-pointer dereference</issue>
<issue id="1220876" tracker="bnc">VUL-0: CVE-2023-52580: kernel: net/core: Fix ETH_P_1588 flow dissector</issue>
<issue id="1220942" tracker="bnc">VUL-0: CVE-2024-26615: kernel: net/smc: fix illegal rmb_desc access in SMC-D connection dump</issue>
<issue id="1220952" tracker="bnc">VUL-0: CVE-2021-47086: kernel: phonet/pep: refuse to enable an unbound pipe</issue>
<issue id="1221010" tracker="bnc">VUL-0: CVE-2021-47103: kernel: inet: fully convert sk->sk_rx_dst to RCU rules</issue>
<issue id="1221044" tracker="bnc">VUL-0: CVE-2023-52591: kernel: reiserfs: potential filesystem corruption on directory rename</issue>
<issue id="1221647" tracker="bnc">VUL-0: CVE-2024-26633: kernel: ip6_tunnel: NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() reads uninitialized memory</issue>
<issue id="1221654" tracker="bnc">VUL-0: CVE-2024-26641: kernel: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()</issue>
<issue id="1221656" tracker="bnc">VUL-0: CVE-2024-26635: kernel: llc: drop support for ETH_P_TR_802_2</issue>
<issue id="1221659" tracker="bnc">VUL-0: CVE-2024-26636: kernel: llc: make llc_ui_sendmsg() more robust against bonding changes</issue>
<issue id="1221777" tracker="bnc">Update Broadcom Emulex lpfc driver for SLES15 SP6 to 14.4.0.1</issue>
<issue id="1222011" tracker="bnc">[Regression] SLES15SP6:[6.4.0-150600.9] LPAR reboot crashes the kernel after PCI injection (everest/1060_023/shinner)</issue>
<issue id="1222323" tracker="bnc">VUL-0: CVE-2024-26661: kernel: drm/amd/display: Add NULL test for 'timing generator' in 'dcn21_set_pipe()'</issue>
<issue id="1222326" tracker="bnc">VUL-0: CVE-2024-26663: kernel: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add()</issue>
<issue id="1222328" tracker="bnc">VUL-0: CVE-2024-26665: kernel: tunnels: fix out of bounds access when building IPv6 PMTU error</issue>
<issue id="1222625" tracker="bnc">VUL-0: CVE-2024-27437: kernel: vfio/pci: Disable auto-enable of exclusive INTx IRQ</issue>
<issue id="1222702" tracker="bnc">VUL-0: CVE-2021-47186: kernel: tipc: check for null after calling kmemdup</issue>
<issue id="1222728" tracker="bnc">VUL-0: CVE-2024-26800: kernel: tls: use-after-free on failed backlog decryption</issue>
<issue id="1222799" tracker="bnc">VUL-0: CVE-2024-26802: kernel: stmmac: Clear variable when destroying workqueue</issue>
<issue id="1222809" tracker="bnc">VUL-0: CVE-2024-26813: kernel: vfio/platform: NULL pointer dereference</issue>
<issue id="1222810" tracker="bnc">VUL-0: CVE-2024-26814: kernel: vfio/fsl-mc: Block calling interrupt handler without trigger</issue>
<issue id="1223021" tracker="bnc">VUL-0: CVE-2024-26863: kernel: hsr: Fix uninit-value access in hsr_get_node()</issue>
<issue id="1223180" tracker="bnc">L3: netfilter: conntrack: ignore overly delayed tcp packet fix request for kernel (SLES15 SP5)</issue>
<issue id="1223635" tracker="bnc">VUL-0: CVE-2024-26976: kernel: KVM: Always flush async #PF workqueue when vCPU is being destroyed</issue>
<issue id="1223652" tracker="bnc">VUL-0: CVE-2024-26961: kernel: mac802154: fix llsec key resources release in mac802154_llsec_key_del</issue>
<issue id="1223675" tracker="bnc">VUL-0: CVE-2024-26935: kernel: scsi: core: WARNING in proc_register</issue>
<issue id="1223778" tracker="bnc">VUL-0: CVE-2024-27025: kernel: nbd: null check for nla_nest_start</issue>
<issue id="1223806" tracker="bnc">VUL-0: CVE-2024-27015: kernel: netfilter: flowtable: incorrect pppoe tuple</issue>
<issue id="1223813" tracker="bnc">VUL-0: CVE-2024-27019: kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()</issue>
<issue id="1223815" tracker="bnc">VUL-0: CVE-2024-27020: kernel: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()</issue>
<issue id="1223836" tracker="bnc">VUL-0: CVE-2024-27065: kernel: netfilter: nf_tables: do not compare internal table flags on updates</issue>
<issue id="1223863" tracker="bnc">L3: Process accessing NFS enters Uninterruptible sleep state</issue>
<issue id="1224414" tracker="bnc">VUL-0: CVE-2024-27402: kernel: phonet/pep: fix racy skb_queue_empty() use</issue>
<issue id="1224499" tracker="bnc">VUL-0: CVE-2024-35899: kernel: netfilter: nf_tables: flush pending destroy work before exit_net release</issue>
<issue id="1224500" tracker="bnc">VUL-0: CVE-2024-35837: kernel: net: mvpp2: clear BM pool before initialization</issue>
<issue id="1224512" tracker="bnc">VUL-0: CVE-2024-35893: kernel: net/sched: act_skbmod: prevent kernel-infoleak</issue>
<issue id="1224516" tracker="bnc">VUL-0: CVE-2024-35890: kernel: gro: fix ownership transfer</issue>
<issue id="1224517" tracker="bnc">VUL-0: CVE-2024-35889: kernel: idpf: fix kernel panic on unknown packet types</issue>
<issue id="1224545" tracker="bnc">VUL-0: CVE-2024-36004: kernel: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue</issue>
<issue id="1224548" tracker="bnc">VUL-0: CVE-2024-36000: kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge</issue>
<issue id="1224557" tracker="bnc">VUL-0: CVE-2024-35995: kernel: ACPI: CPPC: Use access_width over bit_width for system memory accesses</issue>
<issue id="1224572" tracker="bnc">VUL-0: CVE-2024-35979: kernel: raid1: fix use-after-free for original bio in raid1_write_request()</issue>
<issue id="1224573" tracker="bnc">VUL-0: CVE-2024-35974: kernel: block: fix q->blkg_list corruption during disk rebind</issue>
<issue id="1224585" tracker="bnc">VUL-0: CVE-2024-35961: kernel: net/mlx5: Register devlink first under devlink lock</issue>
<issue id="1224604" tracker="bnc">VUL-0: CVE-2024-35853: kernel: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash</issue>
<issue id="1224636" tracker="bnc">VUL-0: CVE-2024-35854: kernel: mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash</issue>
<issue id="1224641" tracker="bnc">VUL-0: CVE-2024-35934: kernel: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()</issue>
<issue id="1224683" tracker="bnc">VUL-0: CVE-2024-35819: kernel: soc: fsl: qbman: Use raw spinlock for cgr_lock</issue>
<issue id="1224694" tracker="bnc">VUL-0: CVE-2024-35855: kernel: mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update</issue>
<issue id="1224700" tracker="bnc">VUL-0: CVE-2024-35949: kernel: btrfs: make sure that WRITTEN is set on all metadata blocks</issue>
<issue id="1224743" tracker="bnc">VUL-0: CVE-2024-35805: kernel: dm snapshot: fix lockup in dm_exception_table_exit</issue>
<issue id="1225088" tracker="bnc">VUL-0: CVE-2023-52775: kernel: net/smc: avoid data corruption caused by decline</issue>
<issue id="1225272" tracker="bnc">soft lockup on non-responding NFS server after blocking NFS port [ref:_00D1igLOd._500TrA9Uu1:ref]</issue>
<issue id="1225301" tracker="bnc">VUL-0: CVE-2021-47402: kernel: net: sched: flower: protect fl_walk() with rcu</issue>
<issue id="1225475" tracker="bnc">VUL-0: CVE-2023-52735: kernel: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself</issue>
<issue id="1225489" tracker="bnc">VUL-0: CVE-2023-52751: kernel: smb: client: fix use-after-free in smb2_query_info_compound()</issue>
<issue id="1225504" tracker="bnc">VUL-0: CVE-2021-47546: kernel: ipv6: fix memory leak in fib6_rule_suppress</issue>
<issue id="1225505" tracker="bnc">VUL-0: CVE-2021-47547: kernel: net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound</issue>
<issue id="1225564" tracker="bnc">VUL-0: CVE-2023-52812: kernel: drm/amd: check num of link levels when update pcie param</issue>
<issue id="1225573" tracker="bnc">VUL-0: CVE-2023-52762: kernel: virtio-blk: fix implicit overflow on virtio_max_dma_size</issue>
<issue id="1225581" tracker="bnc">VUL-0: CVE-2023-52857: kernel: drm/mediatek: Fix coverity issue with unintentional integer overflow</issue>
<issue id="1225586" tracker="bnc">VUL-0: CVE-2023-52863: kernel: hwmon: (axi-fan-control) Fix possible NULL pointer dereference</issue>
<issue id="1225711" tracker="bnc">VUL-0: CVE-2024-36901: kernel: ipv6: prevent NULL dereference in ip6_output()</issue>
<issue id="1225717" tracker="bnc">VUL-0: CVE-2024-36910: kernel: uio_hv_generic: Don't free decrypted memory</issue>
<issue id="1225719" tracker="bnc">VUL-0: CVE-2024-36902: kernel: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()</issue>
<issue id="1225744" tracker="bnc">VUL-0: CVE-2024-36909: kernel: Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted</issue>
<issue id="1225745" tracker="bnc">VUL-0: CVE-2024-36911: kernel: hv_netvsc: Don't free decrypted memory</issue>
<issue id="1225746" tracker="bnc">VUL-0: CVE-2024-36889: kernel: mptcp: ensure snd_nxt is properly initialized on connect</issue>
<issue id="1225752" tracker="bnc">VUL-0: CVE-2024-36912: kernel: Drivers: hv: vmbus: track decrypted status in vmbus_gpadl</issue>
<issue id="1225753" tracker="bnc">VUL-0: CVE-2024-36913: kernel: Drivers: hv: vmbus: leak pages if set_memory_encrypted() fails</issue>
<issue id="1225757" tracker="bnc">VUL-0: CVE-2024-36914: kernel: drm/amd/display: skip on writeback when it's not applicable</issue>
<issue id="1225767" tracker="bnc">VUL-0: CVE-2024-36919: kernel: scsi: bnx2fc: remove spin_lock_bh while releasing resources after upload</issue>
<issue id="1225810" tracker="bnc">VUL-0: CVE-2024-36955: kernel: ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()</issue>
<issue id="1225815" tracker="bnc">VUL-0: CVE-2024-36923: kernel: fs/9p: fix uninitialized values during inode evict</issue>
<issue id="1225820" tracker="bnc">VUL-0: CVE-2024-36924: kernel: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()</issue>
<issue id="1225829" tracker="bnc">VUL-0: CVE-2024-36926: kernel: powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE</issue>
<issue id="1225835" tracker="bnc">VUL-0: CVE-2024-36941: kernel: wifi: nl80211: don't free NULL coalescing rule</issue>
<issue id="1225838" tracker="bnc">VUL-0: CVE-2024-36939: kernel: nfs: Handle error of rpc_proc_register() in nfs_net_init().</issue>
<issue id="1225839" tracker="bnc">VUL-0: CVE-2024-36959: kernel: pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()</issue>
<issue id="1225843" tracker="bnc">VUL-0: CVE-2024-36942: kernel: Bluetooth: qca: fix firmware check error path</issue>
<issue id="1225847" tracker="bnc">VUL-0: CVE-2024-36944: kernel: reapply "drm/qxl: simplify qxl_fence_wait"</issue>
<issue id="1225851" tracker="bnc">VUL-0: CVE-2024-36946: kernel: phonet: fix rtm_phonet_notify() skb allocation</issue>
<issue id="1225856" tracker="bnc">VUL-0: CVE-2024-36947: kernel: qibfs: fix dentry leak</issue>
<issue id="1225895" tracker="bnc">VUL-0: CVE-2024-36950: kernel: firewire: ohci: mask bus reset interrupts between ISR and bottom half</issue>
<issue id="1225898" tracker="bnc">VUL-0: CVE-2024-36952: kernel: scsi: lpfc: Move NPIV's transport unregistration to after resource clean up</issue>
<issue id="1225903" tracker="bnc">bpf: backport of iterator and callback handling fixes</issue>
<issue id="1226202" tracker="bnc">Request to backport kernel changes to support EC2 Graviton4 instance</issue>
<issue id="1226502" tracker="bnc">Backport arm64 write combining support optimization to SLES 15</issue>
<issue id="1226519" tracker="bnc">VUL-0: CVE-2024-36974: kernel: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP</issue>
<issue id="1226551" tracker="bnc">VUL-0: CVE-2021-47593: kernel: mptcp: clear 'kern' flag from fallback sockets</issue>
<issue id="1226555" tracker="bnc">VUL-0: CVE-2021-47606: kernel: net: netlink: af_netlink: Prevent empty skb by adding a check on len.</issue>
<issue id="1226565" tracker="bnc">VUL-0: CVE-2021-47590: kernel: mptcp: fix deadlock in __mptcp_push_pending()</issue>
<issue id="1226568" tracker="bnc">VUL-0: CVE-2021-47588: kernel: sit: do not call ipip6_dev_free() from sit_init_net()</issue>
<issue id="1226570" tracker="bnc">VUL-0: CVE-2021-47591: kernel: mptcp: remove tcp ulp setsockopt support</issue>
<issue id="1226571" tracker="bnc">VUL-0: CVE-2021-47599: kernel: btrfs: use latest_dev in btrfs_show_devname</issue>
<issue id="1226574" tracker="bnc">VUL-0: CVE-2021-47598: kernel: sch_cake: do not call cake_destroy() from cake_init()</issue>
<issue id="1226588" tracker="bnc">cachefiles: remove requests from xarray during flushing requests</issue>
<issue id="1226607" tracker="bnc">VUL-0: CVE-2024-38555: kernel: net/mlx5: Discard command completions in internal error</issue>
<issue id="1226650" tracker="bnc">VUL-0: CVE-2022-48749: kernel: drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc</issue>
<issue id="1226698" tracker="bnc">VUL-0: CVE-2022-48756: kernel: drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable</issue>
<issue id="1226713" tracker="bnc">VUL-0: CVE-2022-48730: kernel: dma-buf: heaps: Fix potential spectre v1 gadget</issue>
<issue id="1226716" tracker="bnc">VUL-0: CVE-2022-48732: kernel: drm/nouveau: fix off by one in BIOS boundary checking</issue>
<issue id="1226750" tracker="bnc">VUL-0: CVE-2024-38586: kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets.</issue>
<issue id="1226757" tracker="bnc">VUL-0: CVE-2024-38598: kernel: md: fix resync softlockup when bitmap size is less than array size</issue>
<issue id="1226758" tracker="bnc">VUL-0: CVE-2024-38610: kernel: drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()</issue>
<issue id="1226775" tracker="bnc">VUL-0: CVE-2024-38570: kernel: gfs2: Fix potential glock use-after-free on unmount</issue>
<issue id="1226783" tracker="bnc">VUL-0: CVE-2024-38558: kernel: net: openvswitch: fix overwriting ct original tuple for ICMPv6</issue>
<issue id="1226785" tracker="bnc">VUL-0: CVE-2024-38559: kernel: scsi: qedf: ensure the copied buf is NUL terminated</issue>
<issue id="1226834" tracker="bnc">VUL-0: CVE-2024-36288: kernel: SUNRPC: Fix loop termination condition in gss_free_in_token_pages()</issue>
<issue id="1226837" tracker="bnc">VUL-0: CVE-2024-38588: kernel: ftrace: Fix possible use-after-free issue in ftrace_location()</issue>
<issue id="1226911" tracker="bnc">VUL-0: CVE-2024-38628: kernel: usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind.</issue>
<issue id="1226990" tracker="bnc">VUL-0: CVE-2024-39371: kernel: io_uring: check for non-NULL file pointer in io_file_can_poll()</issue>
<issue id="1226993" tracker="bnc">VUL-0: CVE-2024-39276: kernel: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()</issue>
<issue id="1227090" tracker="bnc">VUL-0: CVE-2024-39463: kernel: 9p: add missing locking around taking dentry fid list</issue>
<issue id="1227121" tracker="bnc">Backport: SLE15-SP5: powerpc/cpuidle: Set CPUIDLE_FLAG_POLLING for snooze state</issue>
<issue id="1227157" tracker="bnc">fstests btrfs/029 fails on kernel 5.14</issue>
<issue id="1227162" tracker="bnc">fstests btrfs/318 fails on kernel 5.14</issue>
<issue id="1227362" tracker="bnc">L3: SUSE NFS 4.1 client logs "lock reclaim failed" after NFS4ERR_BAD_STATEID from Azure NFS server</issue>
<issue id="1227383" tracker="bnc">VUL-0: kernel: slab-out-of-bounds in hex_dump_to_buffer</issue>
<issue id="1227432" tracker="bnc">VUL-0: CVE-2024-39472: kernel: xfs: fix log recovery buffer allocation for the legacy h_size fixup</issue>
<issue id="1227435" tracker="bnc">VUL-0: CVE-2024-39475: kernel: fbdev: savage: Handle err return when savagefb_check_var failed</issue>
<issue id="1227447" tracker="bnc">VUL-0: CVE-2024-39482: kernel: bcache: fix variable length array abuse in btree_iter</issue>
<issue id="1227487" tracker="bnc">powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()</issue>
<issue id="1227549" tracker="bnc">VUL-0: CVE-2022-48713: kernel: perf/x86/intel/pt: Fix crash with stop filters in single-range mode</issue>
<issue id="1227573" tracker="bnc">VUL-0: CVE-2024-39487: kernel: bonding: fix out-of-bounds read in bond_option_arp_ip_targets_set()</issue>
<issue id="1227618" tracker="bnc">VUL-0: CVE-2024-39488: kernel: arm64: asm-bug: add .align 2 to the end of __BUG_ENTRY</issue>
<issue id="1227620" tracker="bnc">VUL-0: CVE-2024-39493: kernel: crypto: qat - fix ADF_DEV_RESET_SYNC memory leak</issue>
<issue id="1227626" tracker="bnc">VUL-0: CVE-2024-39490: kernel: ipv6: sr: fix missing sk_buff release in seg6_input_core</issue>
<issue id="1227635" tracker="bnc">SLES 15 SP5 - KVM: s390: unhandled guest LPSWEY instruction</issue>
<issue id="1227661" tracker="bnc">NVIDIA - Grace: Backport missing i2c driver improvements</issue>
<issue id="1227716" tracker="bnc">VUL-0: CVE-2024-39494: kernel: ima: fix use-after-free on a dentry's dname.name</issue>
<issue id="1227722" tracker="bnc">VUL-0: CVE-2024-39497: kernel: drm/shmem-helper: fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)</issue>
<issue id="1227724" tracker="bnc">VUL-0: CVE-2024-39500: kernel: sock_map: avoid race between sock_map_close and sk_psock_put</issue>
<issue id="1227725" tracker="bnc">VUL-0: CVE-2024-39499: kernel: vmci: prevent speculation leaks by sanitizing event in event_deliver()</issue>
<issue id="1227728" tracker="bnc">VUL-0: CVE-2024-39505: kernel: drm/komeda: check for error-valued pointer</issue>
<issue id="1227729" tracker="bnc">VUL-0: CVE-2024-39506: kernel: liquidio: adjust a NULL pointer handling path in lio_vf_rep_copy_packet</issue>
<issue id="1227730" tracker="bnc">VUL-0: CVE-2024-39507: kernel: net: hns3: fix kernel crash problem in concurrent scenario</issue>
<issue id="1227732" tracker="bnc">VUL-0: CVE-2024-39508: kernel: io_uring/io-wq: use set_bit() and test_bit() at worker->flags</issue>
<issue id="1227733" tracker="bnc">VUL-0: CVE-2024-39509: kernel: HID: core: remove unnecessary WARN_ON() in implement()</issue>
<issue id="1227750" tracker="bnc">VUL-0: CVE-2023-52885: kernel: SUNRPC: Fix UAF in svc_tcp_listen_data_ready()</issue>
<issue id="1227754" tracker="bnc">VUL-0: CVE-2024-39501: kernel: drivers: core: synchronize really_probe() and dev_uevent()</issue>
<issue id="1227755" tracker="bnc">VUL-0: CVE-2024-39502: kernel: ionic: fix use after netif_napi_del()</issue>
<issue id="1227760" tracker="bnc">VUL-0: CVE-2024-40900: kernel: cachefiles: remove requests from xarray during flushing requests</issue>
<issue id="1227762" tracker="bnc">VUL-0: CVE-2024-40901: kernel: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory</issue>
<issue id="1227763" tracker="bnc">VUL-0: CVE-2024-40906: kernel: net/mlx5: Always stop health timer during driver removal</issue>
<issue id="1227764" tracker="bnc">VUL-0: CVE-2024-40902: kernel: jfs: xattr: fix buffer overflow for invalid xattr</issue>
<issue id="1227766" tracker="bnc">VUL-0: CVE-2024-40903: kernel: usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps</issue>
<issue id="1227770" tracker="bnc">VUL-0: CVE-2024-40942: kernel: wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects</issue>
<issue id="1227771" tracker="bnc">VUL-0: CVE-2024-40941: kernel: wifi: iwlwifi: mvm: don't read past the mfuart notifcation</issue>
<issue id="1227772" tracker="bnc">VUL-0: CVE-2024-40904: kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages</issue>
<issue id="1227774" tracker="bnc">VUL-0: CVE-2024-40929: kernel: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids</issue>
<issue id="1227779" tracker="bnc">VUL-0: CVE-2024-40919: kernel: bnxt_en: adjust logging of firmware messages in case of released token in __hwrm_send()</issue>
<issue id="1227780" tracker="bnc">VUL-0: CVE-2024-40931: kernel: mptcp: ensure snd_una is properly initialized on connect</issue>
<issue id="1227783" tracker="bnc">VUL-0: CVE-2024-40908: kernel: bpf: Set run context for rawtp test_run callback</issue>
<issue id="1227786" tracker="bnc">VUL-0: CVE-2024-40923: kernel: vmxnet3: disable rx data ring on dma allocation failure</issue>
<issue id="1227787" tracker="bnc">VUL-0: CVE-2024-40924: kernel: drm/i915/dpt: make DPT object unshrinkable</issue>
<issue id="1227790" tracker="bnc">VUL-0: CVE-2024-40912: kernel: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()</issue>
<issue id="1227792" tracker="bnc">VUL-0: CVE-2024-40911: kernel: wifi: cfg80211: Lock wiphy in cfg80211_get_station</issue>
<issue id="1227796" tracker="bnc">VUL-0: CVE-2024-40934: kernel: HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()</issue>
<issue id="1227797" tracker="bnc">VUL-0: CVE-2024-40935: kernel: cachefiles: flush all requests after setting CACHEFILES_DEAD</issue>
<issue id="1227798" tracker="bnc">VUL-0: CVE-2024-40909: kernel: bpf: Fix a potential use-after-free in bpf_link_free()</issue>
<issue id="1227800" tracker="bnc">VUL-0: CVE-2024-40940: kernel: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail</issue>
<issue id="1227802" tracker="bnc">VUL-0: CVE-2024-40945: kernel: iommu: Return right value in iommu_sva_bind_device()</issue>
<issue id="1227806" tracker="bnc">VUL-0: CVE-2024-40953: kernel: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()</issue>
<issue id="1227808" tracker="bnc">VUL-0: CVE-2024-40954: kernel: net: do not leave a dangling sk pointer, when socket creation fails</issue>
<issue id="1227810" tracker="bnc">VUL-0: CVE-2024-40956: kernel: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list</issue>
<issue id="1227812" tracker="bnc">VUL-0: CVE-2024-40958: kernel: netns: Make get_net_ns() handle zero refcount net</issue>
<issue id="1227813" tracker="bnc">VUL-0: CVE-2024-40960: kernel: ipv6: prevent possible NULL dereference in rt6_probe()</issue>
<issue id="1227814" tracker="bnc">VUL-0: CVE-2024-40961: kernel: ipv6: prevent possible NULL deref in fib6_nh_init()</issue>
<issue id="1227816" tracker="bnc">VUL-0: CVE-2024-40927: kernel: xhci: handle TD clearing for multiple streams case</issue>
<issue id="1227820" tracker="bnc">VUL-0: CVE-2024-40984: kernel: ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine."</issue>
<issue id="1227823" tracker="bnc">VUL-0: CVE-2024-40989: kernel: KVM: arm64: Disassociate vcpus from redistributor region on teardown</issue>
<issue id="1227824" tracker="bnc">VUL-0: CVE-2024-40990: kernel: RDMA/mlx5: Add check for srq max_sge attribute</issue>
<issue id="1227828" tracker="bnc">VUL-0: CVE-2024-40932: kernel: drm/exynos/vidi: fix memory leak in .get_modes()</issue>
<issue id="1227829" tracker="bnc">VUL-0: CVE-2024-40994: kernel: ptp: fix integer overflow in max_vclocks_store</issue>
<issue id="1227836" tracker="bnc">VUL-0: CVE-2024-40937: kernel: gve: clear napi->skb before dev_kfree_skb_any()</issue>
<issue id="1227846" tracker="bnc">VUL-0: CVE-2024-40916: kernel: drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found</issue>
<issue id="1227849" tracker="bnc">VUL-0: CVE-2024-40943: kernel: ocfs2: fix races between hole punching and AIO+DIO</issue>
<issue id="1227851" tracker="bnc">VUL-0: CVE-2024-41004: kernel: tracing: build event generation tests only as modules</issue>
<issue id="1227862" tracker="bnc">VUL-0: CVE-2024-41006: kernel: netrom: fix a memory leak in nr_heartbeat_expiry()</issue>
<issue id="1227864" tracker="bnc">VUL-0: CVE-2024-40981: kernel: batman-adv: bypass empty buckets in batadv_purge_orig_ref()</issue>
<issue id="1227865" tracker="bnc">VUL-0: CVE-2024-40982: kernel: ssb: fix potential NULL pointer dereference in ssb_device_uevent()</issue>
<issue id="1227866" tracker="bnc">VUL-0: CVE-2024-40998: kernel: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super()</issue>
<issue id="1227870" tracker="bnc">VUL-0: CVE-2024-41002: kernel: crypto: hisilicon/sec - fix memory leak for sec resource release</issue>
<issue id="1227884" tracker="bnc">VUL-0: CVE-2024-40959: kernel: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()</issue>
<issue id="1227886" tracker="bnc">VUL-0: CVE-2024-40966: kernel: tty: add the option to have a tty reject a new ldisc</issue>
<issue id="1227891" tracker="bnc">VUL-0: CVE-2024-40967: kernel: serial: imx: Introduce timeout when waiting on transmitter empty</issue>
<issue id="1227893" tracker="bnc">VUL-0: CVE-2024-40976: kernel: drm/lima: mask irqs in timeout path before hard reset</issue>
<issue id="1227899" tracker="bnc">VUL-0: CVE-2024-40970: kernel: Avoid hw_desc array overrun in dw-axi-dmac</issue>
<issue id="1227900" tracker="bnc">Speculative Store Bypass disabled via prctl</issue>
<issue id="1227910" tracker="bnc">VUL-0: CVE-2024-40972: kernel: ext4: do not create EA inode under buffer lock</issue>
<issue id="1227913" tracker="bnc">VUL-0: CVE-2024-40999: kernel: net: ena: add validation for completion descriptors consistency</issue>
<issue id="1227917" tracker="bnc">VUL-0: CVE-2021-47622: kernel: scsi: ufs: Fix a deadlock in the error handler</issue>
<issue id="1227919" tracker="bnc">VUL-0: CVE-2021-47623: kernel: powerpc/fixmap: Fix VM debug warning on unmap</issue>
<issue id="1227920" tracker="bnc">VUL-0: CVE-2021-47624: kernel: net/sunrpc: fix reference count leaks in rpc_sysfs_xprt_state_change</issue>
<issue id="1227921" tracker="bnc">VUL-0: CVE-2022-48773: kernel: xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create</issue>
<issue id="1227922" tracker="bnc">VUL-0: CVE-2022-48777: kernel: mtd: parsers: qcom: fix kernel panic on skipped partition</issue>
<issue id="1227923" tracker="bnc">VUL-0: CVE-2022-48774: kernel: dmaengine: ptdma: Fix the error handling path in pt_core_init()</issue>
<issue id="1227924" tracker="bnc">VUL-0: CVE-2022-48775: kernel: Drivers: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj</issue>
<issue id="1227925" tracker="bnc">VUL-0: CVE-2022-48776: kernel: mtd: parsers: qcom: Fix missing free for pparts in cleanup</issue>
<issue id="1227927" tracker="bnc">VUL-0: CVE-2022-48785: kernel: ipv6: mcast: use rcu-safe version of ipv6_get_lladdr()</issue>
<issue id="1227928" tracker="bnc">VUL-0: CVE-2022-48811: kernel: ibmvnic: don't release napi in __ibmvnic_open()</issue>
<issue id="1227931" tracker="bnc">VUL-0: CVE-2022-48817: kernel: net: dsa: ar9331: register the mdiobus under devres</issue>
<issue id="1227932" tracker="bnc">VUL-0: CVE-2022-48787: kernel: iwlwifi: fix use-after-free</issue>
<issue id="1227933" tracker="bnc">VUL-0: CVE-2022-48815: kernel: net: dsa: bcm_sf2: don't use devres for mdiobus</issue>
<issue id="1227935" tracker="bnc">VUL-0: CVE-2022-48778: kernel: mtd: rawnand: gpmi: don't leak PM reference in error path</issue>
<issue id="1227936" tracker="bnc">VUL-0: CVE-2022-48810: kernel: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path</issue>
<issue id="1227938" tracker="bnc">VUL-0: CVE-2022-48784: kernel: cfg80211: fix race in netlink owner interface destruction</issue>
<issue id="1227941" tracker="bnc">VUL-0: CVE-2022-48790: kernel: nvme: fix a possible use-after-free in controller reset during load</issue>
<issue id="1227942" tracker="bnc">VUL-0: CVE-2022-48802: kernel: fs/proc: task_mmu.c: don't read mapcount for migration entry</issue>
<issue id="1227944" tracker="bnc">VUL-0: CVE-2022-48814: kernel: net: dsa: seville: register the mdiobus under devres</issue>
<issue id="1227945" tracker="bnc">VUL-0: CVE-2022-48798: kernel: s390/cio: verify the driver availability for path_event call</issue>
<issue id="1227947" tracker="bnc">VUL-0: CVE-2022-48809: kernel: net: fix a memleak when uncloning an skb dst and its metadata</issue>
<issue id="1227948" tracker="bnc">VUL-0: CVE-2022-48806: kernel: eeprom: ee1004: limit i2c reads to I2C_SMBUS_BLOCK_MAX</issue>
<issue id="1227949" tracker="bnc">VUL-0: CVE-2022-48783: kernel: net: dsa: lantiq_gswip: fix use after free in gswip_remove()</issue>
<issue id="1227950" tracker="bnc">VUL-0: CVE-2024-40977: kernel: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery</issue>
<issue id="1227952" tracker="bnc">VUL-0: CVE-2022-48788: kernel: nvme-rdma: fix possible use-after-free in transport error_recovery work</issue>
<issue id="1227953" tracker="bnc">VUL-0: CVE-2022-48799: kernel: perf: fix list corruption in perf_cgroup_switch()</issue>
<issue id="1227954" tracker="bnc">VUL-0: CVE-2022-48800: kernel: mm: vmscan: remove deadlock due to throttling failing to make progress</issue>
<issue id="1227956" tracker="bnc">VUL-0: CVE-2022-48801: kernel: iio: buffer: fix file related error handling in IIO_BUFFER_GET_FD_IOCTL</issue>
<issue id="1227957" tracker="bnc">VUL-0: CVE-2024-40988: kernel: drm/radeon: fix UBSAN warning in kv_dpm.c</issue>
<issue id="1227963" tracker="bnc">VUL-0: CVE-2022-48813: kernel: net: dsa: felix: don't use devres for mdiobus</issue>
<issue id="1227964" tracker="bnc">VUL-0: CVE-2022-48824: kernel: scsi: myrs: fix crash in error case</issue>
<issue id="1227965" tracker="bnc">VUL-0: CVE-2022-48803: kernel: phy: ti: fix missing sentinel for clk_div_table</issue>
<issue id="1227968" tracker="bnc">VUL-0: CVE-2022-48804: kernel: vt_ioctl: fix array_index_nospec in vt_setactivate</issue>
<issue id="1227969" tracker="bnc">VUL-0: CVE-2022-48805: kernel: net: usb: ax88179_178a: fix out-of-bounds accesses in RX fixup</issue>
<issue id="1227970" tracker="bnc">VUL-0: CVE-2022-48807: kernel: ice: fix KASAN error in LAG NETDEV_UNREGISTER handler</issue>
<issue id="1227971" tracker="bnc">VUL-0: CVE-2022-48812: kernel: net: dsa: lantiq_gswip: don't use devres for mdiobus</issue>
<issue id="1227972" tracker="bnc">VUL-0: CVE-2022-48820: kernel: phy: stm32: fix a refcount leak in stm32_usbphyc_pll_enable()</issue>
<issue id="1227975" tracker="bnc">VUL-0: CVE-2022-48826: kernel: drm/vc4: fix deadlock on DSI device attach error</issue>
<issue id="1227976" tracker="bnc">VUL-0: CVE-2022-48821: kernel: misc: fastrpc: avoid double fput() on failed usercopy</issue>
<issue id="1227981" tracker="bnc">VUL-0: CVE-2023-52886: kernel: USB: core: Fix race by not overwriting udev->descriptor in hub_port_init()</issue>
<issue id="1227982" tracker="bnc">VUL-0: CVE-2022-48830: kernel: can: isotp: fix potential CAN frame reception race in isotp_rcv()</issue>
<issue id="1227985" tracker="bnc">VUL-0: CVE-2022-48839: kernel: net/packet: fix slab-out-of-bounds access in packet_recvmsg()</issue>
<issue id="1227986" tracker="bnc">VUL-0: CVE-2022-48831: kernel: ima: fix reference leak in asymmetric_verify()</issue>
<issue id="1227987" tracker="bnc">VUL-0: CVE-2022-48837: kernel: usb: gadget: rndis: prevent integer overflow in rndis_set_response()</issue>
<issue id="1227988" tracker="bnc">VUL-0: CVE-2022-48838: kernel: usb: gadget: Fix use-after-free bug by not setting udc->dev.driver</issue>
<issue id="1227989" tracker="bnc">VUL-0: CVE-2022-48836: kernel: Input: aiptek - properly check endpoint type</issue>
<issue id="1227990" tracker="bnc">VUL-0: CVE-2022-48840: kernel: iavf: Fix hang during reboot/shutdown</issue>
<issue id="1227991" tracker="bnc">VUL-0: CVE-2022-48841: kernel: ice: fix NULL pointer dereference in ice_update_vsi_tx_ring_stats()</issue>
<issue id="1227992" tracker="bnc">VUL-0: CVE-2022-48846: kernel: block: release rq qos structures for queue without disk</issue>
<issue id="1227993" tracker="bnc">VUL-0: CVE-2022-48847: kernel: watch_queue: Fix filter limit check</issue>
<issue id="1227995" tracker="bnc">VUL-0: CVE-2022-48780: kernel: net/smc: Avoid overwriting the copies of clcsock callback functions</issue>
<issue id="1227996" tracker="bnc">VUL-0: CVE-2022-48786: kernel: vsock: remove vsock from connected table when connect is interrupted by a signal</issue>
<issue id="1227997" tracker="bnc">VUL-0: CVE-2022-48851: kernel: staging: gdm724x: fix use after free in gdm_lte_rx()</issue>
<issue id="1228000" tracker="bnc">VUL-0: CVE-2022-48789: kernel: nvme-tcp: fix possible use-after-free in transport error_recovery work</issue>
<issue id="1228002" tracker="bnc">VUL-0: CVE-2022-48791: kernel: scsi: pm8001: Fix use-after-free for aborted TMF sas_task</issue>
<issue id="1228003" tracker="bnc">VUL-0: CVE-2022-48855: kernel: sctp: fix kernel-infoleak for SCTP sockets</issue>
<issue id="1228004" tracker="bnc">VUL-0: CVE-2022-48856: kernel: gianfar: ethtool: Fix refcount leak in gfar_get_ts_info</issue>
<issue id="1228005" tracker="bnc">VUL-0: CVE-2022-48857: kernel: NFC: port100: fix use-after-free in port100_send_complete</issue>
<issue id="1228006" tracker="bnc">VUL-0: CVE-2022-48858: kernel: net/mlx5: Fix a race on command flush flow</issue>
<issue id="1228007" tracker="bnc">VUL-0: CVE-2022-48859: kernel: net: marvell: prestera: Add missing of_node_put() in prestera_switch_set_base_mac_addr</issue>
<issue id="1228008" tracker="bnc">VUL-0: CVE-2022-48860: kernel: ethernet: Fix error handling in xemaclite_of_probe</issue>
<issue id="1228009" tracker="bnc">VUL-0: CVE-2022-48861: kernel: vdpa: fix use-after-free on vp_vdpa_remove</issue>
<issue id="1228010" tracker="bnc">VUL-0: CVE-2022-48862: kernel: vhost: fix hung thread due to erroneous iotlb entries</issue>
<issue id="1228011" tracker="bnc">VUL-0: CVE-2022-48864: kernel: vdpa/mlx5: add validation for VIRTIO_NET_CTRL_MQ_VQ_PAIRS_SET command</issue>
<issue id="1228013" tracker="bnc">VUL-0: CVE-2022-48792: kernel: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task</issue>
<issue id="1228014" tracker="bnc">VUL-0: CVE-2022-48866: kernel: HID: hid-thrustmaster: fix OOB read in thrustmaster_interrupts</issue>
<issue id="1228015" tracker="bnc">VUL-0: CVE-2022-48853: kernel: swiotlb: fix info leak with DMA_FROM_DEVICE</issue>
<issue id="1228019" tracker="bnc">VUL-0: CVE-2022-48793: kernel: KVM: x86: nSVM: fix potential NULL derefernce on nested migration</issue>
<issue id="1228020" tracker="bnc">VUL-0: CVE-2024-41009: kernel: bpf: Fix overrunning reservations in ringbuf</issue>
<issue id="1228025" tracker="bnc">VUL-0: CVE-2022-48794: kernel: net: ieee802154: at86rf230: Stop leaking skb's</issue>
<issue id="1228028" tracker="bnc">VUL-0: CVE-2022-48796: kernel: iommu: Fix potential use-after-free during probe</issue>
<issue id="1228035" tracker="bnc">VUL-0: CVE-2022-48797: kernel: mm: don't try to NUMA-migrate COW pages that have other uses</issue>
<issue id="1228037" tracker="bnc">VUL-0: CVE-2022-48827: kernel: NFSD: Fix the behavior of READ near OFFSET_MAX</issue>
<issue id="1228038" tracker="bnc">VUL-0: CVE-2022-48816: kernel: SUNRPC: lock against ->sock changing during sysfs read</issue>
<issue id="1228039" tracker="bnc">VUL-0: CVE-2022-48818: kernel: net: dsa: mv88e6xxx: don't use devres for mdiobus</issue>
<issue id="1228040" tracker="bnc">VUL-0: CVE-2022-48822: kernel: usb: f_fs: fix use-after-free for epfile</issue>
<issue id="1228045" tracker="bnc">VUL-0: CVE-2022-48823: kernel: scsi: qedf: fix refcount issue when LOGO is received during TMF</issue>
<issue id="1228054" tracker="bnc">VUL-0: CVE-2022-48828: kernel: NFSD: Fix ia_size underflow</issue>
<issue id="1228055" tracker="bnc">VUL-0: CVE-2022-48829: kernel: NFSD: Fix NFSv3 SETATTR/CREATE's handling of large file sizes</issue>
<issue id="1228056" tracker="bnc">VUL-0: CVE-2022-48825: kernel: scsi: qedf: add stag_work to all the vports</issue>
<issue id="1228060" tracker="bnc">VUL-0: CVE-2022-48835: kernel: scsi: mpt3sas: page fault in reply q processing</issue>
<issue id="1228061" tracker="bnc">VUL-0: CVE-2022-48849: kernel: drm/amdgpu: bypass tiling flag check in virtual display case (v2)</issue>
<issue id="1228062" tracker="bnc">VUL-0: CVE-2022-48834: kernel: usb: usbtmc: Fix bug in pipe direction for control transfers</issue>
<issue id="1228063" tracker="bnc">VUL-0: CVE-2022-48863: kernel: mISDN: fix memory leak in dsp_pipeline_build()</issue>
<issue id="1228064" tracker="bnc">VUL-0: CVE-2022-48842: kernel: ice: Fix race condition during interface enslave</issue>
<issue id="1228066" tracker="bnc">VUL-0: CVE-2022-48843: kernel: drm/vrr: Set VRR capable prop only if it is attached to connector</issue>
<issue id="1228067" tracker="bnc">VUL-0: CVE-2022-48852: kernel: drm/vc4: hdmi: Unregister codec device on unbind</issue>
<issue id="1228068" tracker="bnc">VUL-0: CVE-2022-48844: kernel: Bluetooth: hci_core: Fix leaking sent_cmd skb</issue>
<issue id="1228071" tracker="bnc">VUL-0: CVE-2022-48850: kernel: net-sysfs: add check for netdevice being present to speed_show</issue>
<issue id="1228079" tracker="bnc">SRSO mitigation in microcode not passed through KVM VMs</issue>
<issue id="1228090" tracker="bnc">Backport arm64: PCI: Extend ACS configurability</issue>
<issue id="1228114" tracker="bnc">VUL-0: CVE-2024-41011: kernel: drm/amdkfd: don't allow mapping the MMIO HDP page with large pages</issue>
<issue id="1228140" tracker="bnc">L3: continuously growing values in /proc/sys/fs/file-nr with the linux-5.14.21-150500.55.65 kernel during special NFS load tests</issue>
<issue id="1228190" tracker="bnc">libceph: fix race between delayed_work() and ceph_monc_stop()</issue>
<issue id="1228191" tracker="bnc">fuse: verify {g,u}id mount options correctly</issue>
<issue id="1228195" tracker="bnc">VUL-0: CVE-2024-26889: kernel: Bluetooth: hci_core: Fix possible buffer overflow</issue>
<issue id="1228202" tracker="bnc">VUL-0: CVE-2024-38548: kernel: drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference</issue>
<issue id="1228226" tracker="bnc">softlockup while running SAP HCMT (IO test) on SLES15SP5</issue>
<issue id="1228235" tracker="bnc">VUL-0: CVE-2024-40987: kernel: drm/amdgpu: fix UBSAN warning in kv_dpm.c</issue>
<issue id="1228237" tracker="bnc">VUL-0: CVE-2024-26920: kernel: tracing/trigger: Fix to return error if failed to alloc snapshot</issue>
<issue id="1228247" tracker="bnc">VUL-0: CVE-2024-41012: kernel: filelock: Remove locks reliably when fcntl/close race is detected</issue>
<issue id="1228327" tracker="bnc">VUL-0: CVE-2024-41091: kernel: virtio-net: tun: mlx5_core short frame denial of service</issue>
<issue id="1228328" tracker="bnc">VUL-0: CVE-2024-41090: kernel: virtio-net: tap: mlx5_core short frame denial of service</issue>
<issue id="1228330" tracker="bnc">Backport OSNOISE_WORKLOAD option</issue>
<issue id="1228403" tracker="bnc">VUL-0: CVE-2024-41017: kernel: jfs: don't walk off the end of ealist</issue>
<issue id="1228405" tracker="bnc">VUL-0: CVE-2024-41013: kernel: xfs: don't walk off the end of a directory data block</issue>
<issue id="1228408" tracker="bnc">VUL-0: CVE-2024-41014: kernel: xfs: add bounds checking to xlog_recover_process_data</issue>
<issue id="1228409" tracker="bnc">VUL-0: CVE-2024-41015: kernel: ocfs2: add bounds checking to ocfs2_check_dir_entry()</issue>
<issue id="1228410" tracker="bnc">VUL-0: CVE-2024-41016: kernel: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()</issue>
<issue id="1228418" tracker="bnc">ceph: fix incorrect kmalloc size of pagevec mempool</issue>
<issue id="1228440" tracker="bnc">Partner-L3: SLES15SP4: kernel 5.14.21-150400.24.125.1 would panic if to run "mv <old-dir> <new-dir>" on ext2 file system.</issue>
<issue id="1228459" tracker="bnc">VUL-0: CVE-2024-41058: kernel: cachefiles: fix slab-use-after-free in fscache_withdraw_volume()</issue>
<issue id="1228462" tracker="bnc">VUL-0: CVE-2024-41057: kernel: cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie()</issue>
<issue id="1228470" tracker="bnc">VUL-0: CVE-2024-42070: kernel: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers</issue>
<issue id="1228518" tracker="bnc">VUL-0: CVE-2024-41040: kernel: net/sched: Fix UAF when resolving a clash</issue>
<issue id="1228520" tracker="bnc">VUL-0: CVE-2024-41041: kernel: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port().</issue>
<issue id="1228530" tracker="bnc">VUL-0: CVE-2024-41044: kernel: ppp: reject claimed-as-LCP but actually malformed packets</issue>
<issue id="1228561" tracker="bnc">VUL-0: CVE-2024-41059: kernel: hfsplus: fix uninit-value in copy_name</issue>
<issue id="1228565" tracker="bnc">VUL-0: CVE-2024-41048: kernel: skmsg: Skip zero length skb in sk_msg_recvmsg</issue>
<issue id="1228580" tracker="bnc">VUL-0: CVE-2024-41063: kernel: bluetooth: hci_core: cancel all works upon hci_unregister_dev()</issue>
<issue id="1228581" tracker="bnc">VUL-0: CVE-2024-41070: kernel: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group()</issue>
<issue id="1228591" tracker="bnc">VUL-0: CVE-2024-42122: kernel: drm/amd/display: Add NULL pointer check for kzalloc</issue>
<issue id="1228599" tracker="bnc">VUL-0: CVE-2024-41064: kernel: powerpc/eeh: avoid possible crash when edev->pdev changes</issue>
<issue id="1228617" tracker="bnc">VUL-0: CVE-2024-41081: kernel: ila: block BH in ila_output()</issue>
<issue id="1228625" tracker="bnc">VUL-0: CVE-2024-41071: kernel: wifi: mac80211: Avoid address calculations via out of bounds array indexing</issue>
<issue id="1228626" tracker="bnc">VUL-0: CVE-2024-41072: kernel: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check</issue>
<issue id="1228633" tracker="bnc">VUL-0: CVE-2024-42096: kernel: x86: stop playing stack games in profile_pc()</issue>
<issue id="1228640" tracker="bnc">VUL-0: CVE-2024-41066: kernel: ibmvnic: add tx check to prevent skb leak</issue>
<issue id="1228644" tracker="bnc">VUL-0: CVE-2024-41069: kernel: ASoC: topology: fix references to freed memory</issue>
<issue id="1228649" tracker="bnc">VUL-0: CVE-2024-41076: kernel: NFSv4: Fix memory leak in nfs4_set_security_label</issue>
<issue id="1228655" tracker="bnc">VUL-0: CVE-2024-41078: kernel: btrfs: qgroup: fix quota root leak after quota disable failure</issue>
<issue id="1228665" tracker="bnc">VUL-0: CVE-2024-42105: kernel: nilfs2: fix inode number range checks</issue>
<issue id="1228672" tracker="bnc">VUL-0: CVE-2024-42079: kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush</issue>
<issue id="1228680" tracker="bnc">VUL-0: CVE-2024-42093: kernel: net/dpaa2: Avoid explicit cpumask var allocation on stack</issue>
<issue id="1228705" tracker="bnc">VUL-0: CVE-2024-42124: kernel: scsi: qedf: Make qedf_execute_tmf() non-preemptible</issue>
<issue id="1228723" tracker="bnc">VUL-0: CVE-2024-42224: kernel: net: dsa: mv88e6xxx: Correct check for empty list</issue>
<issue id="1228743" tracker="bnc">VUL-0: CVE-2024-42145: kernel: IB/core: implement a limit on UMAD receive List</issue>
<issue id="1228756" tracker="bnc">VUL-0: CVE-2024-42161: kernel: bpf: avoid uninitialized value in BPF_CORE_READ_BITFIELD</issue>
<issue id="1228801" tracker="bnc">cgroup/cpuset: Prevent UAF in proc_cpuset_show()</issue>
<issue id="1228850" tracker="bnc">qla2xxx: update driver to 10.02.09.300-k</issue>
<issue id="1228857" tracker="bnc">Update Broadcom Emulex lpfc driver to 14.4.0.3</issue>
<issue id="2024-26976" tracker="cve" />
<issue id="2024-40902" tracker="cve" />
<issue id="2024-26814" tracker="cve" />
<issue id="2024-26813" tracker="cve" />
<issue id="2023-52885" tracker="cve" />
<issue id="2023-37453" tracker="cve" />
<issue id="2023-52886" tracker="cve" />
<issue id="2023-52762" tracker="cve" />
<issue id="2022-48866" tracker="cve" />
<issue id="2022-48836" tracker="cve" />
<issue id="2022-48793" tracker="cve" />
<issue id="2022-48857" tracker="cve" />
<issue id="2022-48829" tracker="cve" />
<issue id="2022-48828" tracker="cve" />
<issue id="2022-48827" tracker="cve" />
<issue id="2022-48816" tracker="cve" />
<issue id="2022-48830" tracker="cve" />
<issue id="2022-48784" tracker="cve" />
<issue id="2022-48774" tracker="cve" />
<issue id="2022-48849" tracker="cve" />
<issue id="2022-48826" tracker="cve" />
<issue id="2022-48843" tracker="cve" />
<issue id="2022-48806" tracker="cve" />
<issue id="2022-48860" tracker="cve" />
<issue id="2023-1582" tracker="cve" />
<issue id="2022-48802" tracker="cve" />
<issue id="2022-48856" tracker="cve" />
<issue id="2022-48840" tracker="cve" />
<issue id="2022-48811" tracker="cve" />
<issue id="2022-48807" tracker="cve" />
<issue id="2022-48842" tracker="cve" />
<issue id="2022-48841" tracker="cve" />
<issue id="2022-48801" tracker="cve" />
<issue id="2022-48831" tracker="cve" />
<issue id="2022-48796" tracker="cve" />
<issue id="2022-48787" tracker="cve" />
<issue id="2022-48863" tracker="cve" />
<issue id="2022-48821" tracker="cve" />
<issue id="2022-48797" tracker="cve" />
<issue id="2022-48800" tracker="cve" />
<issue id="2022-48775" tracker="cve" />
<issue id="2022-48777" tracker="cve" />
<issue id="2022-48776" tracker="cve" />
<issue id="2022-48778" tracker="cve" />
<issue id="2022-48817" tracker="cve" />
<issue id="2022-48815" tracker="cve" />
<issue id="2022-48813" tracker="cve" />
<issue id="2022-48812" tracker="cve" />
<issue id="2022-48783" tracker="cve" />
<issue id="2022-48818" tracker="cve" />
<issue id="2022-48814" tracker="cve" />
<issue id="2022-48794" tracker="cve" />
<issue id="2022-48859" tracker="cve" />
<issue id="2022-48858" tracker="cve" />
<issue id="2022-48839" tracker="cve" />
<issue id="2022-48780" tracker="cve" />
<issue id="2022-48805" tracker="cve" />
<issue id="2022-48790" tracker="cve" />
<issue id="2022-48788" tracker="cve" />
<issue id="2022-48789" tracker="cve" />
<issue id="2022-48799" tracker="cve" />
<issue id="2022-48820" tracker="cve" />
<issue id="2022-48803" tracker="cve" />
<issue id="2022-48798" tracker="cve" />
<issue id="2022-48835" tracker="cve" />
<issue id="2022-48824" tracker="cve" />
<issue id="2022-48792" tracker="cve" />
<issue id="2022-48791" tracker="cve" />
<issue id="2022-48825" tracker="cve" />
<issue id="2022-48823" tracker="cve" />
<issue id="2022-48851" tracker="cve" />
<issue id="2022-48853" tracker="cve" />
<issue id="2022-48822" tracker="cve" />
<issue id="2022-48838" tracker="cve" />
<issue id="2022-48837" tracker="cve" />
<issue id="2022-48834" tracker="cve" />
<issue id="2022-48861" tracker="cve" />
<issue id="2022-48862" tracker="cve" />
<issue id="2022-48786" tracker="cve" />
<issue id="2022-48804" tracker="cve" />
<issue id="2022-48847" tracker="cve" />
<issue id="2022-48773" tracker="cve" />
<issue id="2021-47624" tracker="cve" />
<issue id="2021-47622" tracker="cve" />
<issue id="2024-35854" tracker="cve" />
<issue id="2024-35855" tracker="cve" />
<issue id="2024-40984" tracker="cve" />
<issue id="2024-26889" tracker="cve" />
<issue id="2024-39509" tracker="cve" />
<issue id="2024-40934" tracker="cve" />
<issue id="2024-40990" tracker="cve" />
<issue id="2024-36288" tracker="cve" />
<issue id="2024-40904" tracker="cve" />
<issue id="2024-41087" tracker="cve" />
<issue id="2024-40981" tracker="cve" />
<issue id="2024-40900" tracker="cve" />
<issue id="2024-41002" tracker="cve" />
<issue id="2024-40956" tracker="cve" />
<issue id="2024-39501" tracker="cve" />
<issue id="2024-40987" tracker="cve" />
<issue id="2024-41011" tracker="cve" />
<issue id="2024-38548" tracker="cve" />
<issue id="2024-40916" tracker="cve" />
<issue id="2024-40932" tracker="cve" />
<issue id="2024-40924" tracker="cve" />
<issue id="2024-39505" tracker="cve" />
<issue id="2024-40976" tracker="cve" />
<issue id="2024-40988" tracker="cve" />
<issue id="2024-38588" tracker="cve" />
<issue id="2024-40945" tracker="cve" />
<issue id="2023-52735" tracker="cve" />
<issue id="2024-39500" tracker="cve" />
<issue id="2024-41004" tracker="cve" />
<issue id="2024-26920" tracker="cve" />
<issue id="2024-40903" tracker="cve" />
<issue id="2024-39499" tracker="cve" />
<issue id="2024-40911" tracker="cve" />
<issue id="2024-40929" tracker="cve" />
<issue id="2024-40941" tracker="cve" />
<issue id="2024-40912" tracker="cve" />
<issue id="2024-40942" tracker="cve" />
<issue id="2024-40927" tracker="cve" />
<issue id="2022-48852" tracker="cve" />
<issue id="2022-48844" tracker="cve" />
<issue id="2022-48846" tracker="cve" />
<issue id="2022-48730" tracker="cve" />
<issue id="2022-48749" tracker="cve" />
<issue id="2022-48756" tracker="cve" />
<issue id="2022-48732" tracker="cve" />
<issue id="2022-48809" tracker="cve" />
<issue id="2022-48864" tracker="cve" />
<issue id="2021-47402" tracker="cve" />
<issue id="2024-41072" tracker="cve" />
<issue id="2024-41076" tracker="cve" />
<issue id="2024-42105" tracker="cve" />
<issue id="2023-52591" tracker="cve" />
<issue id="2024-36889" tracker="cve" />
<issue id="2024-36955" tracker="cve" />
<issue id="2024-36942" tracker="cve" />
<issue id="2024-36944" tracker="cve" />
<issue id="2024-39488" tracker="cve" />
<issue id="2024-39475" tracker="cve" />
<issue id="2024-36950" tracker="cve" />
<issue id="2024-36959" tracker="cve" />
<issue id="2024-36926" tracker="cve" />
<issue id="2024-36947" tracker="cve" />
<issue id="2024-269355" tracker="cve" />
<issue id="2024-26935" tracker="cve" />
<issue id="2024-36952" tracker="cve" />
<issue id="2024-36924" tracker="cve" />
<issue id="2024-36941" tracker="cve" />
<issue id="2022-48713" tracker="cve" />
<issue id="2024-38559" tracker="cve" />
<issue id="2024-26583" tracker="cve" />
<issue id="2024-26584" tracker="cve" />
<issue id="2024-26800" tracker="cve" />
<issue id="2024-25741" tracker="cve" />
<issue id="2024-35979" tracker="cve" />
<issue id="2024-39494" tracker="cve" />
<issue id="2024-42161" tracker="cve" />
<issue id="2024-41069" tracker="cve" />
<issue id="2024-39506" tracker="cve" />
<issue id="2024-40954" tracker="cve" />
<issue id="2024-42145" tracker="cve" />
<issue id="2024-42096" tracker="cve" />
<issue id="2024-40994" tracker="cve" />
<issue id="2024-39493" tracker="cve" />
<issue id="2024-41012" tracker="cve" />
<issue id="2024-26976" tracker="cve" />
<issue id="2024-42124" tracker="cve" />
<issue id="2024-42224" tracker="cve" />
<issue id="2024-41048" tracker="cve" />
<issue id="2024-40958" tracker="cve" />
<issue id="2024-36000" tracker="cve" />
<issue id="2024-42093" tracker="cve" />
<issue id="2024-41044" tracker="cve" />
<issue id="2024-41066" tracker="cve" />
<issue id="2024-42122" tracker="cve" />
<issue id="2024-42079" tracker="cve" />
<issue id="2024-41078" tracker="cve" />
<issue id="2024-40989" tracker="cve" />
<issue id="2024-41071" tracker="cve" />
<issue id="2024-41064" tracker="cve" />
<issue id="2024-41040" tracker="cve" />
<issue id="2024-35949" tracker="cve" />
<issue id="2024-41081" tracker="cve" />
<issue id="2024-41059" tracker="cve" />
<issue id="2024-40998" tracker="cve" />
<issue id="2024-41057" tracker="cve" />
<issue id="2024-41058" tracker="cve" />
<issue id="2024-41015" tracker="cve" />
<issue id="2024-41016" tracker="cve" />
<issue id="2024-27437" tracker="cve" />
<issue id="2024-41063" tracker="cve" />
<issue id="2024-41041" tracker="cve" />
<issue id="2022-48785" tracker="cve" />
<issue id="2024-42070" tracker="cve" />
<issue id="2024-41070" tracker="cve" />
<issue id="2024-40959" tracker="cve" />
<issue id="2024-41090" tracker="cve" />
<issue id="2024-41009" tracker="cve" />
<issue id="2024-41014" tracker="cve" />
<issue id="2024-41013" tracker="cve" />
<issue id="2024-41017" tracker="cve" />
<issue id="2024-40972" tracker="cve" />
<issue id="2024-39276" tracker="cve" />
<issue id="2024-39463" tracker="cve" />
<issue id="2024-41091" tracker="cve" />
<issue id="2024-40999" tracker="cve" />
<issue id="2024-35837" tracker="cve" />
<issue id="2021-47588" tracker="cve" />
<issue id="2021-47591" tracker="cve" />
<issue id="2021-47598" tracker="cve" />
<issue id="2024-40967" tracker="cve" />
<issue id="2024-40966" tracker="cve" />
<issue id="2024-40909" tracker="cve" />
<issue id="2022-48850" tracker="cve" />
<issue id="2021-47623" tracker="cve" />
<issue id="2024-40977" tracker="cve" />
<issue id="2024-40970" tracker="cve" />
<issue id="2024-40982" tracker="cve" />
<issue id="2023-52751" tracker="cve" />
<issue id="2024-40908" tracker="cve" />
<issue id="2024-40960" tracker="cve" />
<issue id="2024-40935" tracker="cve" />
<issue id="2022-48810" tracker="cve" />
<issue id="2022-48855" tracker="cve" />
<issue id="2024-40961" tracker="cve" />
<issue id="2024-40901" tracker="cve" />
<issue id="2024-39508" tracker="cve" />
<issue id="2024-26961" tracker="cve" />
<issue id="2024-41006" tracker="cve" />
<issue id="2024-40937" tracker="cve" />
<issue id="2024-39507" tracker="cve" />
<issue id="2024-40940" tracker="cve" />
<issue id="2024-40923" tracker="cve" />
<issue id="2024-40931" tracker="cve" />
<issue id="2024-40919" tracker="cve" />
<issue id="2024-39487" tracker="cve" />
<issue id="2024-35899" tracker="cve" />
<issue id="2024-35934" tracker="cve" />
<issue id="2024-35893" tracker="cve" />
<issue id="2024-40953" tracker="cve" />
<issue id="2024-39472" tracker="cve" />
<issue id="2024-40943" tracker="cve" />
<issue id="2023-52573" tracker="cve" />
<issue id="2024-27020" tracker="cve" />
<issue id="2024-27019" tracker="cve" />
<issue id="2024-35890" tracker="cve" />
<issue id="2024-36902" tracker="cve" />
<issue id="2024-36946" tracker="cve" />
<issue id="2021-47606" tracker="cve" />
<issue id="2024-38586" tracker="cve" />
<issue id="2024-36919" tracker="cve" />
<issue id="2024-39490" tracker="cve" />
<issue id="2024-40906" tracker="cve" />
<issue id="2024-35961" tracker="cve" />
<issue id="2024-35889" tracker="cve" />
<issue id="2024-26802" tracker="cve" />
<issue id="2021-47103" tracker="cve" />
<issue id="2021-47590" tracker="cve" />
<issue id="2024-39497" tracker="cve" />
<issue id="2024-39502" tracker="cve" />
<issue id="2024-36901" tracker="cve" />
<issue id="2024-36004" tracker="cve" />
<issue id="2024-27025" tracker="cve" />
<issue id="2021-47599" tracker="cve" />
<issue id="2024-35853" tracker="cve" />
<issue id="2024-27402" tracker="cve" />
<issue id="2023-52435" tracker="cve" />
<issue id="2024-27065" tracker="cve" />
<issue id="2023-52775" tracker="cve" />
<issue id="2024-27015" tracker="cve" />
<issue id="2024-26663" tracker="cve" />
<issue id="2021-47086" tracker="cve" />
<issue id="2021-47186" tracker="cve" />
<issue id="2024-38558" tracker="cve" />
<issue id="2024-26615" tracker="cve" />
<issue id="2024-36909" tracker="cve" />
<issue id="2024-36910" tracker="cve" />
<issue id="2024-36911" tracker="cve" />
<issue id="2024-36912" tracker="cve" />
<issue id="2024-36913" tracker="cve" />
<issue id="2024-26665" tracker="cve" />
<issue id="2024-35995" tracker="cve" />
<issue id="2024-36939" tracker="cve" />
<issue id="2024-42230" tracker="cve" />
<issue id="2024-26661" tracker="cve" />
<issue id="2023-52580" tracker="cve" />
<issue id="2024-26585" tracker="cve" />
<issue id="2024-39482" tracker="cve" />
<issue id="2024-35819" tracker="cve" />
<issue id="2023-52863" tracker="cve" />
<issue id="2021-47547" tracker="cve" />
<issue id="2024-38598" tracker="cve" />
<issue id="2024-35805" tracker="cve" />
<issue id="2024-26636" tracker="cve" />
<issue id="2024-26635" tracker="cve" />
<issue id="2024-38628" tracker="cve" />
<issue id="2024-26641" tracker="cve" />
<issue id="2024-26863" tracker="cve" />
<issue id="2024-26633" tracker="cve" />
<issue id="2024-38570" tracker="cve" />
<issue id="2024-39371" tracker="cve" />
<issue id="2024-36923" tracker="cve" />
<issue id="2021-47546" tracker="cve" />
<issue id="2021-47593" tracker="cve" />
<issue id="2024-36974" tracker="cve" />
<issue id="2024-38555" tracker="cve" />
<issue id="2024-36914" tracker="cve" />
<issue id="2023-52857" tracker="cve" />
<issue id="2023-52812" tracker="cve" />
<issue id="PED-8582" tracker="jsc" />
<issue id="PED-8690" tracker="jsc" />
<category>security</category>
<rating>important</rating>
<packager>olh</packager>
<reboot_needed/>
<description>
The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe (bsc#1220952).
- CVE-2021-47103: net: sock: preserve kabi for sock (bsc#1221010).
- CVE-2021-47186: ipc: check for null after calling kmemdup (bsc#1222702).
- CVE-2021-47546: Kabi fix for ipv6: fix memory leak in fib6_rule_suppress (bsc#1225504).
- CVE-2021-47547: net: tulip: de4x5: fix the problem that the array 'lp->phy' may be out of bound (bsc#1225505).
- CVE-2021-47588: sit: do not call ipip6_dev_free() from sit_init_net() (bsc#1226568).
- CVE-2021-47590: mptcp: fix deadlock in __mptcp_push_pending() (bsc#1226565).
- CVE-2021-47591: mptcp: remove tcp ulp setsockopt support (bsc#1226570).
- CVE-2021-47593: mptcp: clear 'kern' flag from fallback sockets (bsc#1226551).
- CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574).
- CVE-2021-47599: btrfs: use latest_dev in btrfs_show_devname (bsc#1226571)
- CVE-2021-47606: net: netlink: af_netlink: Prevent empty skb by adding a check on len (bsc#1226555).
- CVE-2021-47623: powerpc/fixmap: Fix VM debug warning on unmap (bsc#1227919).
- CVE-2022-48785: ipv6: mcast: use rcu-safe version of ipv6_get_lladdr() (bsc#1227927)
- CVE-2022-48810: ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (bsc#1227936).
- CVE-2022-48850: net-sysfs: add check for netdevice being present to speed_show (bsc#1228071)
- CVE-2022-48855: sctp: fix kernel-infoleak for SCTP sockets (bsc#1228003).
- CVE-2023-52435: net: prevent mss overflow in skb_segment() (bsc#1220138).
- CVE-2023-52573: net: rds: Fix possible NULL-pointer dereference (bsc#1220869)
- CVE-2023-52580: net/core: Fix ETH_P_1588 flow dissector (bsc#1220876).
- CVE-2023-52751: smb: client: fix use-after-free in smb2_query_info_compound() (bsc#1225489).
- CVE-2023-52775: net/smc: avoid data corruption caused by decline (bsc#1225088).
- CVE-2023-52812: drm/amd: check num of link levels when update pcie param (bsc#1225564).
- CVE-2023-52857: drm/mediatek: Fix coverity issue with unintentional integer overflow (bsc#1225581).
- CVE-2023-52863: hwmon: (axi-fan-control) Fix possible NULL pointer dereference (bsc#1225586).
- CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).
- CVE-2024-26615: net/smc: fix illegal rmb_desc access in SMC-D connection dump (bsc#1220942).
- CVE-2024-26633: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() (bsc#1221647).
- CVE-2024-26635: llc: Drop support for ETH_P_TR_802_2 (bsc#1221656).
- CVE-2024-26636: llc: make llc_ui_sendmsg() more robust against bonding changes (bsc#1221659).
- CVE-2024-26641: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() (bsc#1221654).
- CVE-2024-26661: drm/amd/display: Add NULL test for 'timing generator' in (bsc#1222323)
- CVE-2024-26663: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1222326).
- CVE-2024-26665: tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1222328).
- CVE-2024-26802: stmmac: Clear variable when destroying workqueue (bsc#1222799).
- CVE-2024-26863: hsr: Fix uninit-value access in hsr_get_node() (bsc#1223021).
- CVE-2024-26961: mac802154: fix llsec key resources release in mac802154_llsec_key_del (bsc#1223652).
- CVE-2024-27015: netfilter: flowtable: incorrect pppoe tuple (bsc#1223806).
- CVE-2024-27019: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() (bsc#1223813)
- CVE-2024-27020: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (bsc#1223815)
- CVE-2024-27025: nbd: null check for nla_nest_start (bsc#1223778)
- CVE-2024-27065: netfilter: nf_tables: do not compare internal table flags on updates (bsc#1223836).
- CVE-2024-27402: phonet/pep: fix racy skb_queue_empty() use (bsc#1224414).
- CVE-2024-27437: vfio/pci: Disable auto-enable of exclusive INTx IRQ (bsc#1222625).
- CVE-2024-35805: dm snapshot: fix lockup in dm_exception_table_exit (bsc#1224743).
- CVE-2024-35819: soc: fsl: qbman: Use raw spinlock for cgr_lock (bsc#1224683).
- CVE-2024-35837: net: mvpp2: clear BM pool before initialization (bsc#1224500).
- CVE-2024-35853: mlxsw: spectrum_acl_tcam: Fix memory leak during rehash (bsc#1224604).
- CVE-2024-35889: idpf: fix kernel panic on unknown packet types (bsc#1224517).
- CVE-2024-35890: gro: fix ownership transfer (bsc#1224516).
- CVE-2024-35893: net/sched: act_skbmod: prevent kernel-infoleak (bsc#1224512)
- CVE-2024-35899: netfilter: nf_tables: flush pending destroy work before exit_net release (bsc#1224499)
- CVE-2024-35934: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1224641)
- CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1224700)
- CVE-2024-35961: net/mlx5: Restore mistakenly dropped parts in register devlink flow (bsc#1224585).
- CVE-2024-35995: ACPI: CPPC: Fix access width used for PCC registers (bsc#1224557).
- CVE-2024-36000: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (bsc#1224548).
- CVE-2024-36004: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (bsc#1224545)
- CVE-2024-36901: ipv6: prevent NULL dereference in ip6_output() (bsc#1225711)
- CVE-2024-36902: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() (bsc#1225719).
- CVE-2024-36909: Drivers: hv: vmbus: Do not free ring buffers that couldn't be re-encrypted (bsc#1225744).
- CVE-2024-36910: uio_hv_generic: Do not free decrypted memory (bsc#1225717).
- CVE-2024-36911: hv_netvsc: Do not free decrypted memory (bsc#1225745).
- CVE-2024-36912: Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl (bsc#1225752).
- CVE-2024-36913: Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails (bsc#1225753).
- CVE-2024-36914: drm/amd/display: Skip on writeback when it's not applicable (bsc#1225757).
- CVE-2024-36919: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload (bsc#1225767).
- CVE-2024-36923: fs/9p: fix uninitialized values during inode evict (bsc#1225815).
- CVE-2024-36939: nfs: Handle error of rpc_proc_register() in nfs_net_init() (bsc#1225838).
- CVE-2024-36946: phonet: fix rtm_phonet_notify() skb allocation (bsc#1225851).
- CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).
- CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607).
- CVE-2024-38558: net: openvswitch: fix overwriting ct original tuple for ICMPv6 (bsc#1226783).
- CVE-2024-38570: gfs2: Fix potential glock use-after-free on unmount (bsc#1226775).
- CVE-2024-38586: r8169: Fix possible ring buffer corruption on fragmented Tx packets (bsc#1226750).
- CVE-2024-38598: md: fix resync softlockup when bitmap size is less than array size (bsc#1226757).
- CVE-2024-38628: usb: gadget: u_audio: Fix race condition use of controls after free during gadget unbind (bsc#1226911).
- CVE-2024-39276: ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find() (bsc#1226993).
- CVE-2024-39371: io_uring: check for non-NULL file pointer in io_file_can_poll() (bsc#1226990).
- CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090).
- CVE-2024-39472: xfs: fix log recovery buffer allocation for the legacy h_size fixup (bsc#1227432).
- CVE-2024-39482: bcache: fix variable length array abuse in btree_iter (bsc#1227447).
- CVE-2024-39487: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (bsc#1227573)
- CVE-2024-39490: ipv6: sr: fix missing sk_buff release in seg6_input_core (bsc#1227626).
- CVE-2024-39493: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak (bsc#1227620).
- CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716).
- CVE-2024-39497: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) (bsc#1227722)
- CVE-2024-39502: ionic: fix use after netif_napi_del() (bsc#1227755).
- CVE-2024-39506: liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet (bsc#1227729).
- CVE-2024-39507: net: hns3: fix kernel crash problem in concurrent scenario (bsc#1227730).
- CVE-2024-39508: io_uring/io-wq: Use set_bit() and test_bit() at worker->flags (bsc#1227732).
- CVE-2024-40901: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory (bsc#1227762).
- CVE-2024-40906: net/mlx5: Always stop health timer during driver removal (bsc#1227763).
- CVE-2024-40908: bpf: Set run context for rawtp test_run callback (bsc#1227783).
- CVE-2024-40909: bpf: Fix a potential use-after-free in bpf_link_free() (bsc#1227798).
- CVE-2024-40919: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() (bsc#1227779).
- CVE-2024-40923: vmxnet3: disable rx data ring on dma allocation failure (bsc#1227786).
- CVE-2024-40931: mptcp: ensure snd_una is properly initialized on connect (bsc#1227780).
- CVE-2024-40935: cachefiles: flush all requests after setting CACHEFILES_DEAD (bsc#1227797).
- CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836).
- CVE-2024-40940: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail (bsc#1227800).
- CVE-2024-40943: ocfs2: fix races between hole punching and AIO+DIO (bsc#1227849).
- CVE-2024-40953: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() (bsc#1227806).
- CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808)
- CVE-2024-40958: netns: Make get_net_ns() handle zero refcount net (bsc#1227812).
- CVE-2024-40959: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (bsc#1227884).
- CVE-2024-40960: ipv6: prevent possible NULL dereference in rt6_probe() (bsc#1227813).
- CVE-2024-40961: ipv6: prevent possible NULL deref in fib6_nh_init() (bsc#1227814).
- CVE-2024-40966: kABI: tty: add the option to have a tty reject a new ldisc (bsc#1227886).
- CVE-2024-40967: serial: imx: Introduce timeout when waiting on transmitter empty (bsc#1227891).
- CVE-2024-40970: Avoid hw_desc array overrun in dw-axi-dmac (bsc#1227899).
- CVE-2024-40972: ext4: fold quota accounting into ext4_xattr_inode_lookup_create() (bsc#1227910).
- CVE-2024-40977: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (bsc#1227950).
- CVE-2024-40982: ssb: Fix potential NULL pointer dereference in ssb_device_uevent() (bsc#1227865).
- CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823).
- CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829).
- CVE-2024-40998: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (bsc#1227866).
- CVE-2024-40999: net: ena: Add validation for completion descriptors consistency (bsc#1227913).
- CVE-2024-41006: netrom: Fix a memory leak in nr_heartbeat_expiry() (bsc#1227862).
- CVE-2024-41009: selftests/bpf: Add more ring buffer test coverage (bsc#1228020).
- CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247).
- CVE-2024-41013: xfs: do not walk off the end of a directory data block (bsc#1228405).
- CVE-2024-41014: xfs: add bounds checking to xlog_recover_process_data (bsc#1228408).
- CVE-2024-41015: ocfs2: add bounds checking to ocfs2_check_dir_entry() (bsc#1228409).
- CVE-2024-41016: ocfs2: add bounds checking to ocfs2_xattr_find_entry() (bsc#1228410).
- CVE-2024-41017: jfs: do not walk off the end of ealist (bsc#1228403).
- CVE-2024-41040: net/sched: Fix UAF when resolving a clash (bsc#1228518)
- CVE-2024-41041: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port() (bsc#1228520)
- CVE-2024-41044: ppp: reject claimed-as-LCP but actually malformed packets (bsc#1228530).
- CVE-2024-41048: skmsg: Skip zero length skb in sk_msg_recvmsg (bsc#1228565)
- CVE-2024-41057: cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() (bsc#1228462).
- CVE-2024-41058: cachefiles: fix slab-use-after-free in fscache_withdraw_volume() (bsc#1228459).
- CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561).
- CVE-2024-41063: Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (bsc#1228580)
- CVE-2024-41064: powerpc/eeh: avoid possible crash when edev->pdev changes (bsc#1228599).
- CVE-2024-41066: ibmvnic: Add tx check to prevent skb leak (bsc#1228640).
- CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644).
- CVE-2024-41070: KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() (bsc#1228581).
- CVE-2024-41071: wifi: mac80211: Avoid address calculations via out of bounds array indexing (bsc#1228625).
- CVE-2024-41078: btrfs: qgroup: fix quota root leak after quota disable failure (bsc#1228655).
- CVE-2024-41081: ila: block BH in ila_output() (bsc#1228617)
- CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).
- CVE-2024-41091: tun: add missing verification for short frame (bsc#1228327).
- CVE-2024-42070: netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (bsc#1228470)
- CVE-2024-42079: gfs2: Fix NULL pointer dereference in gfs2_log_flush (bsc#1228672).
- CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680).
- CVE-2024-42096: x86: stop playing stack games in profile_pc() (bsc#1228633).
- CVE-2024-42122: drm/amd/display: Add NULL pointer check for kzalloc (bsc#1228591)
- CVE-2024-42124: scsi: qedf: Make qedf_execute_tmf() non-preemptible (bsc#1228705)
- CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743)
- CVE-2024-42161: bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD (bsc#1228756).
- CVE-2024-42224: net: dsa: mv88e6xxx: Correct check for empty list (bsc#1228723)
- CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869).
The following non-security bugs were fixed:
- ACPI: EC: Abort address space access upon error (stable-fixes).
- ACPI: EC: Avoid returning AE_OK on errors in address space handler (stable-fixes).
- ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (git-fixes).
- ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7 (stable-fixes).
- ACPI: x86: Force StorageD3Enable on more products (stable-fixes).
- ACPI: x86: utils: Add Picasso to the list for forcing StorageD3Enable (stable-fixes).
- ALSA: dmaengine_pcm: terminate dmaengine before synchronize (stable-fixes).
- ALSA: dmaengine: Synchronize dma channel after drop() (stable-fixes).
- ALSA: emux: improve patch ioctl data validation (stable-fixes).
- ALSA: hda: conexant: Fix headset auto detect fail in the polling mode (git-fixes).
- ALSA: hda/realtek: Add more codec ID to no shutup pins list (stable-fixes).
- ALSA: hda/realtek: add quirk for Clevo V5[46]0TU (stable-fixes).
- ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (stable-fixes).
- ALSA: hda/realtek: Enable headset mic on Positivo SU C1400 (stable-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP 250 G7 (stable-fixes).
- ALSA: hda/realtek: fix mute/micmute LEDs do not work for EliteBook 645/665 G11 (stable-fixes).
- ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360 (stable-fixes).
- ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (stable-fixes).
- ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx (stable-fixes).
- ALSA: pcm_dmaengine: Do not synchronize DMA channel when DMA is paused (git-fixes).
- ALSA: usb-audio: Add a quirk for Sonix HD USB Camera (stable-fixes).
- ALSA: usb-audio: Correct surround channels in UAC1 channel map (git-fixes).
- ALSA: usb-audio: Fix microphone sound on HD webcam (stable-fixes).
- ALSA: usb-audio: Move HD Webcam quirk to the right place (git-fixes).
- arm64: dts: allwinner: Pine H64: correctly remove reg_gmac_3v3 (git-fixes)
- arm64: dts: hi3798cv200: fix the size of GICR (git-fixes)
- arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc (git-fixes)
- arm64: dts: microchip: sparx5: fix mdio reg (git-fixes)
- arm64: dts: rockchip: Add enable-strobe-pulldown to emmc phy on ROCK (git-fixes)
- arm64: dts: rockchip: Add sound-dai-cells for RK3368 (git-fixes)
- arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E (git-fixes)
- arm64/io: add constant-argument check (bsc#1226502 git-fixes)
- arm64/io: Provide a WC friendly __iowriteXX_copy() (bsc#1226502)
- arm64: tegra: Correct Tegra132 I2C alias (git-fixes)
- ASoC: amd: Adjust error handling in case of absent codec device (git-fixes).
- ASoC: max98088: Check for clk_prepare_enable() error (git-fixes).
- ASoC: ti: davinci-mcasp: Set min period size using FIFO config (stable-fixes).
- ASoC: ti: omap-hdmi: Fix too long driver name (stable-fixes).
- batman-adv: bypass empty buckets in batadv_purge_orig_ref() (stable-fixes).
- blk-cgroup: dropping parent refcount after pd_free_fn() is done (bsc#1224573).
- block: do not add partitions if GD_SUPPRESS_PART_SCAN is set (bsc#1227162).
- block, loop: support partitions without scanning (bsc#1227162).
- Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (stable-fixes).
- Bluetooth: btqca: use le32_to_cpu for ver.soc_id (stable-fixes).
- Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (stable-fixes).
- Bluetooth: hci_qca: mark OF related data as maybe unused (stable-fixes).
- Bluetooth: hci_sync: Fix suspending with wrong filter policy (git-fixes).
- Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot (git-fixes).
- bnxt_re: Fix imm_data endianness (git-fixes)
- bpf: aggressively forget precise markings during state checkpointing (bsc#1225903).
- bpf: allow precision tracking for programs with subprogs (bsc#1225903).
- bpf: check bpf_func_state->callback_depth when pruning states (bsc#1225903).
- bpf: clean up visit_insn()'s instruction processing (bsc#1225903).
- bpf: correct loop detection for iterators convergence (bsc#1225903).
- bpf: encapsulate precision backtracking bookkeeping (bsc#1225903).
- bpf: ensure state checkpointing at iter_next() call sites (bsc#1225903).
- bpf: exact states comparison for iterator convergence checks (bsc#1225903).
- bpf: extract __check_reg_arg() utility function (bsc#1225903).
- bpf: extract same_callsites() as utility function (bsc#1225903).
- bpf: extract setup_func_entry() utility function (bsc#1225903).
- bpf: fix calculation of subseq_idx during precision backtracking (bsc#1225903).
- bpf: fix mark_all_scalars_precise use in mark_chain_precision (bsc#1225903).
- bpf: Fix memory leaks in __check_func_call (bsc#1225903).
- bpf: fix propagate_precision() logic for inner frames (bsc#1225903).
- bpf: fix regs_exact() logic in regsafe() to remap IDs correctly (bsc#1225903).
- bpf: Fix to preserve reg parent/live fields when copying range info (bsc#1225903).
- bpf: generalize MAYBE_NULL vs non-MAYBE_NULL rule (bsc#1225903).
- bpf: improve precision backtrack logging (bsc#1225903).
- bpf: Improve verifier u32 scalar equality checking (bsc#1225903).
- bpf: keep track of max number of bpf_loop callback iterations (bsc#1225903).
- bpf: maintain bitmasks across all active frames in __mark_chain_precision (bsc#1225903).
- bpf: mark relevant stack slots scratched for register read instructions (bsc#1225903).
- bpf: move explored_state() closer to the beginning of verifier.c (bsc#1225903).
- bpf: perform byte-by-byte comparison only when necessary in regsafe() (bsc#1225903).
- bpf: print full verifier states on infinite loop detection (bsc#1225903).
- bpf: regsafe() must not skip check_ids() (bsc#1225903).
- bpf: reject non-exact register type matches in regsafe() (bsc#1225903).
- bpf: Remove unused insn_cnt argument from visit_[func_call_]insn() (bsc#1225903).
- bpf: reorganize struct bpf_reg_state fields (bsc#1225903).
- bpf: Skip invalid kfunc call in backtrack_insn (bsc#1225903).
- bpf: states_equal() must build idmap for all function frames (bsc#1225903).
- bpf: stop setting precise in current state (bsc#1225903).
- bpf: support precision propagation in the presence of subprogs (bsc#1225903).
- bpf: take into account liveness when propagating precision (bsc#1225903).
- bpf: teach refsafe() to take into account ID remapping (bsc#1225903).
- bpf: unconditionally reset backtrack_state masks on global func exit (bsc#1225903).
- bpf: use check_ids() for active_lock comparison (bsc#1225903).
- bpf: Use scalar ids in mark_chain_precision() (bsc#1225903).
- bpf: verify callbacks as if they are called unknown number of times (bsc#1225903).
- bpf: Verify scalar ids mapping in regsafe() using check_ids() (bsc#1225903).
- bpf: widening for callback iterators (bsc#1225903).
- btrfs: add device major-minor info in the struct btrfs_device (bsc#1227162).
- btrfs: harden identification of a stale device (bsc#1227162).
- btrfs: match stale devices by dev_t (bsc#1227162).
- btrfs: remove the cross file system checks from remap (bsc#1227157).
- btrfs: use dev_t to match device in device_matched (bsc#1227162).
- btrfs: validate device maj:min during open (bsc#1227162).
- bytcr_rt5640 : inverse jack detect for Archos 101 cesium (stable-fixes).
- cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd (git-fixes).
- can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (git-fixes).
- can: kvaser_usb: fix return value for hif_usb_send_regout (stable-fixes).
- ceph: fix incorrect kmalloc size of pagevec mempool (bsc#1228418).
- cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801).
- crypto: aead,cipher - zeroize key buffer after use (stable-fixes).
- crypto: ecdh - explicitly zeroize private_key (stable-fixes).
- crypto: ecdsa - Fix the public key format description (git-fixes).
- crypto: hisilicon/sec - Fix memory leak for sec resource release (stable-fixes).
- csky: ftrace: Drop duplicate implementation of arch_check_ftrace_location() (git-fixes).
- decompress_bunzip2: fix rare decompression failure (git-fixes).
- devres: Fix devm_krealloc() wasting memory (git-fixes).
- devres: Fix memory leakage caused by driver API devm_free_percpu() (git-fixes).
- dma: fix call order in dmam_free_coherent (git-fixes).
- docs: crypto: async-tx-api: fix broken code example (git-fixes).
- docs: Fix formatting of literal sections in fanotify docs (stable-fixes).
- drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c (stable-fixes).
- drm/amd/display: Account for cursor prefetch BW in DML1 mode support (stable-fixes).
- drm/amd/display: Check for NULL pointer (stable-fixes).
- drm/amd/display: Check index msg_id before read or write (stable-fixes).
- drm/amd/display: Check pipe offset before setting vblank (stable-fixes).
- drm/amd/display: Skip finding free audio for unknown engine_id (stable-fixes).
- drm/amdgpu/atomfirmware: fix parsing of vram_info (stable-fixes).
- drm/amdgpu/atomfirmware: silence UBSAN warning (stable-fixes).
- drm/amdgpu: avoid using null object of framebuffer (stable-fixes).
- drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit (git-fixes).
- drm/amdgpu: Fix pci state save during mode-1 reset (git-fixes).
- drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (git-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warnings (stable-fixes).
- drm/amdgpu: Initialize timestamp for some legacy SOCs (stable-fixes).
- drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1 (git-fixes).
- drm/amd/pm: Fix aldebaran pcie speed reporting (git-fixes).
- drm/amd/pm: remove logically dead code for renoir (git-fixes).
- drm/dp_mst: Fix all mstb marked as not probed after suspend/resume (git-fixes).
- drm/etnaviv: do not block scheduler when GPU is still active (stable-fixes).
- drm/etnaviv: fix DMA direction handling for cached RW buffers (git-fixes).
- drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes (git-fixes).
- drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes (git-fixes).
- drm/i915/gt: Do not consider preemption during execlists_dequeue for gen8 (git-fixes).
- drm/lima: fix shared irq handling on driver remove (stable-fixes).
- drm/lima: Mark simple_ondemand governor as softdep (git-fixes).
- drm/mediatek: Add OVL compatible name for MT8195 (git-fixes).
- drm/meson: fix canvas release in bind function (git-fixes).
- drm/mgag200: Bind I2C lifetime to DRM device (git-fixes).
- drm/mgag200: Set DDC timeout in milliseconds (git-fixes).
- drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format (stable-fixes).
- drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq() (git-fixes).
- drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op (git-fixes).
- drm/msm/mdp5: Remove MDP_CAP_SRC_SPLIT from msm8x53_config (git-fixes).
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (stable-fixes).
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (stable-fixes).
- drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (git-fixes).
- drm/nouveau: prime: fix refcount underflow (git-fixes).
- drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare() (git-fixes).
- drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before regulators (git-fixes).
- drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Valve Galileo (stable-fixes).
- drm/panfrost: Mark simple_ondemand governor as softdep (git-fixes).
- drm/qxl: Add check for drm_cvt_mode (git-fixes).
- drm/radeon: check bo_va->bo is non-NULL before using it (stable-fixes).
- drm/radeon/radeon_display: Decrease the size of allocated memory (stable-fixes).
- drm/vmwgfx: Fix a deadlock in dma buf fence polling (git-fixes).
- drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency (stable-fixes).
- drm/vmwgfx: Fix overlay when using Screen Targets (git-fixes).
- eeprom: digsy_mtc: Fix 93xx46 driver probe failure (git-fixes).
- exfat: check if cluster num is valid (git-fixes).
- exfat: simplify is_valid_cluster() (git-fixes).
- filelock: add a new locks_inode_context accessor function (git-fixes).
- firmware: cs_dsp: Fix overflow checking of wmfw header (git-fixes).
- firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers (git-fixes).
- firmware: cs_dsp: Return error if block header overflows file (git-fixes).
- firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files (git-fixes).
- firmware: cs_dsp: Validate payload length before processing block (git-fixes).
- firmware: dmi: Stop decoding on broken entry (stable-fixes).
- firmware: turris-mox-rwtm: Do not complete if there are no waiters (git-fixes).
- firmware: turris-mox-rwtm: Fix checking return value of wait_for_completion_timeout() (git-fixes).
- firmware: turris-mox-rwtm: Initialize completion before mailbox (git-fixes).
- fix build warning
- fs: allow cross-vfsmount reflink/dedupe (bsc#1227157).
- ftrace: Fix possible use-after-free issue in ftrace_location() (git-fixes).
- fuse: verify {g,u}id mount options correctly (bsc#1228191).
- gpio: mc33880: Convert comma to semicolon (git-fixes).
- hfsplus: fix to avoid false alarm of circular locking (git-fixes).
- hfsplus: fix uninit-value in copy_name (git-fixes).
- HID: Add quirk for Logitech Casa touchpad (stable-fixes).
- HID: wacom: Modify pen IDs (git-fixes).
- hpet: Support 32-bit userspace (git-fixes).
- hwmon: (adt7475) Fix default duty on fan is disabled (git-fixes).
- hwmon: (max6697) Fix swapped temp{1,8} critical alarms (git-fixes).
- hwmon: (max6697) Fix underflow when writing limit attributes (git-fixes).
- i2c: mark HostNotify target address as used (git-fixes).
- i2c: rcar: bring hardware to known state when probing (git-fixes).
- i2c: tegra: Fix failure during probe deferral cleanup (git-fixes)
- i2c: tegra: Share same DMA channel for RX and TX (bsc#1227661)
- i2c: testunit: avoid re-issued work after read message (git-fixes).
- i2c: testunit: correct Kconfig description (git-fixes).
- Input: elan_i2c - do not leave interrupt disabled on suspend failure (git-fixes).
- Input: elantech - fix touchpad state on resume for Lenovo N24 (stable-fixes).
- Input: ff-core - prefer struct_size over open coded arithmetic (stable-fixes).
- Input: qt1050 - handle CHIP_ID reading error (git-fixes).
- Input: silead - Always support 10 fingers (stable-fixes).
- intel_th: pci: Add Granite Rapids SOC support (stable-fixes).
- intel_th: pci: Add Granite Rapids support (stable-fixes).
- intel_th: pci: Add Lunar Lake support (stable-fixes).
- intel_th: pci: Add Meteor Lake-S support (stable-fixes).
- intel_th: pci: Add Sapphire Rapids SOC support (stable-fixes).
- iommu/arm-smmu-v3: Free MSIs in case of ENOMEM (git-fixes).
- ionic: clean interrupt before enabling queue to avoid credit race (git-fixes).
- jffs2: Fix potential illegal address access in jffs2_free_inode (git-fixes).
- jfs: Fix array-index-out-of-bounds in diFree (git-fixes).
- jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383).
- kABI: bpf: bpf_reg_state reorganization kABI workaround (bsc#1225903).
- kABI: bpf: callback fixes kABI workaround (bsc#1225903).
- kABI: bpf: struct bpf_{idmap,idset} kABI workaround (bsc#1225903).
- kABI: bpf: tmp_str_buf kABI workaround (bsc#1225903).
- kABI: rtas: Workaround false positive due to lost definition (bsc#1227487).
- kabi/severities: ignore kABI for FireWire sound local symbols (bsc#1208783)
- kabi/severities: Ignore tpm_tis_core_init (bsc#1082555).
- kabi/severity: add nvme common code The nvme common code is also allowed to change the data structures, there are only internal users.
- kabi: Use __iowriteXX_copy_inlined for in-kernel modules (bsc#1226502)
- kernel-binary: vdso: Own module_dir
- kernel/sched: Remove dl_boosted flag comment (git fixes (sched)).
- knfsd: LOOKUP can return an illegal error value (git-fixes).
- kobject_uevent: Fix OOB access within zap_modalias_env() (git-fixes).
- kprobes: Make arch_check_ftrace_location static (git-fixes).
- KVM: nVMX: Clear EXIT_QUALIFICATION when injecting an EPT Misconfig (git-fixes).
- KVM: PPC: Book3S HV: Fix "rm_exit" entry in debugfs timings (bsc#1194869).
- KVM: PPC: Book3S HV: Fix the set_one_reg for MMCR3 (bsc#1194869).
- KVM: PPC: Book3S HV Nested: L2 LPCR should inherit L1 LPES setting (bsc#1194869).
- KVM: PPC: Book3S HV: remove extraneous asterisk from rm_host_ipi_action() comment (bsc#1194869).
- KVM: PPC: Book3S: Suppress failed alloc warning in H_COPY_TOFROM_GUEST (bsc#1194869).
- KVM: PPC: Book3S: Suppress warnings when allocating too big memory slots (bsc#1194869).
- KVM: s390: fix LPSWEY handling (bsc#1227635 git-fixes).
- KVM: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (git-fixes).
- KVM: VMX: Report up-to-date exit qualification to userspace (git-fixes).
- KVM: x86: Add IBPB_BRTYPE support (bsc#1228079).
- KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes (git-fixes).
- KVM: x86: Bail from kvm_recalculate_phys_map() if x2APIC ID is out-of-bounds (git-fixes).
- KVM: x86: Disable APIC logical map if logical ID covers multiple MDAs (git-fixes).
- KVM: x86: Disable APIC logical map if vCPUs are aliased in logical mode (git-fixes).
- KVM: x86: Do not advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID (git-fixes).
- KVM: x86: Explicitly skip optimized logical map setup if vCPU's LDR==0 (git-fixes).
- KVM: x86: Explicitly track all possibilities for APIC map's logical modes (git-fixes).
- KVM: x86: Fix broken debugregs ABI for 32 bit kernels (git-fixes).
- KVM: x86: Fix KVM_GET_MSRS stack info leak (git-fixes).
- KVM: x86: Honor architectural behavior for aliased 8-bit APIC IDs (git-fixes).
- KVM: x86: Purge "highest ISR" cache when updating APICv state (git-fixes).
- KVM: x86: Save/restore all NMIs when multiple NMIs are pending (git-fixes).
- KVM: x86: Skip redundant x2APIC logical mode optimized cluster setup (git-fixes).
- leds: ss4200: Convert PCIBIOS_* return codes to errnos (git-fixes).
- leds: triggers: Flush pending brightness before activating trigger (git-fixes).
- leds: trigger: Unregister sysfs attributes before calling deactivate() (git-fixes).
- libceph: fix race between delayed_work() and ceph_monc_stop() (bsc#1228190).
- lib: objagg: Fix general protection fault (git-fixes).
- lib: objagg: Fix spelling (git-fixes).
- lib: test_objagg: Fix spelling (git-fixes).
- lockd: set missing fl_flags field when retrieving args (git-fixes).
- lockd: use locks_inode_context helper (git-fixes).
- Make AMD_HSMP=m and mark it unsupported in supported.conf (jsc#PED-8582)
- media: dvb: as102-fe: Fix as10x_register_addr packing (stable-fixes).
- media: dvbdev: Initialize sbuf (stable-fixes).
- media: dvb-frontends: tda10048: Fix integer overflow (stable-fixes).
- media: dvb-frontends: tda18271c2dd: Remove casting during div (stable-fixes).
- media: dvb-usb: dib0700_devices: Add missing release_firmware() (stable-fixes).
- media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control() (git-fixes).
- media: dw2102: Do not translate i2c read into write (stable-fixes).
- media: dw2102: fix a potential buffer overflow (git-fixes).
- media: imon: Fix race getting ictx->lock (git-fixes).
- media: s2255: Use refcount_t instead of atomic_t for num_channels (stable-fixes).
- media: uvcvideo: Fix integer overflow calculating timestamp (git-fixes).
- media: uvcvideo: Override default flags (git-fixes).
- media: venus: fix use after free in vdec_close (git-fixes).
- media: venus: flush all buffers in output plane streamoff (git-fixes).
- mei: demote client disconnect warning on suspend to debug (stable-fixes).
- mfd: omap-usb-tll: Use struct_size to allocate tll (git-fixes).
- mtd: partitions: redboot: Added conversion of operands to a larger type (stable-fixes).
- net/dcb: check for detached device before executing callbacks (bsc#1215587).
- netfilter: conntrack: ignore overly delayed tcp packets (bsc#1223180).
- netfilter: conntrack: prepare tcp_in_window for ternary return value (bsc#1223180).
- netfilter: conntrack: remove pr_debug callsites from tcp tracker (bsc#1223180).
- netfilter: conntrack: work around exceeded receive window (bsc#1223180).
- netfs, fscache: export fscache_put_volume() and add fscache_try_get_volume() (bsc#1228459 bsc#1228462).
- net: mana: Fix possible double free in error handling path (git-fixes).
- net: mana: Fix the extra HZ in mana_hwc_send_request (git-fixes).
- net: usb: qmi_wwan: add Telit FN912 compositions (git-fixes).
- net: usb: sr9700: fix uninitialized variable use in sr_mdio_read (git-fixes).
- nfc/nci: Add the inconsistency check between the input data length and count (stable-fixes).
- NFSD: Add an nfsd_file_fsync tracepoint (git-fixes).
- NFSD: Add an NFSD_FILE_GC flag to enable nfsd_file garbage collection (git-fixes).
- nfsd: Add errno mapping for EREMOTEIO (git-fixes).
- NFSD: Add nfsd_file_lru_dispose_list() helper (git-fixes).
- nfsd: add some comments to nfsd_file_do_acquire (git-fixes).
- nfsd: allow nfsd_file_get to sanely handle a NULL pointer (git-fixes).
- nfsd: allow reaping files still under writeback (git-fixes).
- NFSD: Avoid calling fh_drop_write() twice in do_nfsd_create() (git-fixes).
- NFSD: Clean up nfsd3_proc_create() (git-fixes).
- nfsd: Clean up nfsd_file_put() (git-fixes).
- NFSD: Clean up nfsd_open_verified() (git-fixes).
- NFSD: Clean up unused code after rhashtable conversion (git-fixes).
- NFSD: Convert filecache to rhltable (git-fixes).
- NFSD: Convert the filecache to use rhashtable (git-fixes).
- NFSD: De-duplicate hash bucket indexing (git-fixes).
- nfsd: do not free files unconditionally in __nfsd_file_cache_purge (git-fixes).
- nfsd: do not fsync nfsd_files on last close (git-fixes).
- nfsd: do not hand out delegation on setuid files being opened for write (git-fixes).
- nfsd: do not kill nfsd_files because of lease break error (git-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nfsd: do not take/put an extra reference when putting a file (git-fixes).
- NFSD enforce filehandle check for source file in COPY (git-fixes).
- NFSD: Ensure nf_inode is never dereferenced (git-fixes).
- nfsd: fix handling of cached open files in nfsd4_open codepath (git-fixes).
- NFSD: Fix licensing header in filecache.c (git-fixes).
- nfsd: fix net-namespace logic in __nfsd_file_cache_purge (git-fixes).
- nfsd: fix nfsd_file_unhash_and_dispose (git-fixes).
- NFSD: Fix potential use-after-free in nfsd_file_put() (git-fixes).
- NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop (git-fixes).
- NFSD: Fix the filecache LRU shrinker (git-fixes).
- nfsd: fix up the filecache laundrette scheduling (git-fixes).
- nfsd: fix use-after-free in nfsd_file_do_acquire tracepoint (git-fixes).
- NFSD: Flesh out a documenting comment for filecache.c (git-fixes).
- NFSD: handle errors better in write_ports_addfd() (git-fixes).
- NFSD: Instantiate a struct file when creating a regular NFSv4 file (git-fixes).
- NFSD: Leave open files out of the filecache LRU (git-fixes).
- nfsd: map EBADF (git-fixes).
- NFSD: Move nfsd_file_trace_alloc() tracepoint (git-fixes).
- NFSD: nfsd_file_hash_remove can compute hashval (git-fixes).
- nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries (git-fixes).
- NFSD: nfsd_file_put() can sleep (git-fixes).
- NFSD: nfsd_file_unhash can compute hashval from nf->nf_inode (git-fixes).
- NFSD: No longer record nf_hashval in the trace log (git-fixes).
- NFSD: Pass the target nfsd_file to nfsd_commit() (git-fixes).
- nfsd: put the export reference in nfsd4_verify_deleg_dentry (git-fixes).
- NFSD: Record number of flush calls (git-fixes).
- NFSD: Refactor nfsd_create_setattr() (git-fixes).
- NFSD: Refactor __nfsd_file_close_inode() (git-fixes).
- NFSD: Refactor nfsd_file_gc() (git-fixes).
- NFSD: Refactor nfsd_file_lru_scan() (git-fixes).
- NFSD: Refactor NFSv3 CREATE (git-fixes).
- NFSD: Refactor NFSv4 OPEN(CREATE) (git-fixes).
- NFSD: Remove do_nfsd_create() (git-fixes).
- NFSD: Remove lockdep assertion from unhash_and_release_locked() (git-fixes).
- NFSD: Remove nfsd_file::nf_hashval (git-fixes).
- nfsd: remove the pages_flushed statistic from filecache (git-fixes).
- nfsd: reorganize filecache.c (git-fixes).
- NFSD: Replace the "init once" mechanism (git-fixes).
- NFSD: Report average age of filecache items (git-fixes).
- NFSD: Report count of calls to nfsd_file_acquire() (git-fixes).
- NFSD: Report count of freed filecache items (git-fixes).
- NFSD: Report filecache LRU size (git-fixes).
- NFSD: Report the number of items evicted by the LRU walk (git-fixes).
- nfsd: Retry once in nfsd_open on an -EOPENSTALE return (git-fixes).
- nfsd: rework hashtable handling in nfsd_do_file_acquire (git-fixes).
- nfsd: rework refcounting in filecache (git-fixes).
- NFSD: Separate tracepoints for acquire and create (git-fixes).
- NFSD: Set up an rhashtable for the filecache (git-fixes).
- nfsd: silence extraneous printk on nfsd.ko insertion (git-fixes).
- NFSD: simplify per-net file cache management (git-fixes).
- nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator (git-fixes).
- nfsd: simplify the delayed disposal list code (git-fixes).
- NFSD: Trace filecache LRU activity (git-fixes).
- NFSD: Trace filecache opens (git-fixes).
- NFSD: verify the opened dentry after setting a delegation (git-fixes).
- NFSD: WARN when freeing an item still linked via nf_lru (git-fixes).
- NFSD: Write verifier might go backwards (git-fixes).
- NFSD: Zero counters when the filecache is re-initialized (git-fixes).
- NFS: Fix READ_PLUS when server does not support OP_READ_PLUS (git-fixes).
- nfs: fix undefined behavior in nfs_block_bits() (git-fixes).
- nfs: keep server info for remounts (git-fixes).
- nfs: Leave pages in the pagecache if readpage failed (git-fixes).
- NFSv4: Fixup smatch warning for ambiguous return (git-fixes).
- NFSv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362)
- nilfs2: add missing check for inode numbers on directory entries (git-fixes).
- nilfs2: add missing check for inode numbers on directory entries (stable-fixes).
- nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro (git-fixes).
- nilfs2: convert persistent object allocator to use kmap_local (git-fixes).
- nilfs2: fix incorrect inode allocation from reserved inodes (git-fixes).
- nilfs2: fix inode number range checks (git-fixes).
- nilfs2: fix inode number range checks (stable-fixes).
- nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset (git-fixes).
- nvme-auth: alloc nvme_dhchap_key as single buffer (git-fixes).
- nvme-auth: allow mixing of secret and hash lengths (git-fixes).
- nvme-auth: use transformed key size to create resp (git-fixes).
- nvme: avoid double free special payload (git-fixes).
- nvme: ensure reset state check ordering (bsc#1215492).
- nvme: fixup comment for nvme RDMA Provider Type (git-fixes).
- nvme-multipath: find NUMA path only for online numa-node (git-fixes).
- nvme-pci: add missing condition check for existence of mapped data (git-fixes).
- nvme-pci: Fix the instructions for disabling power management (git-fixes).
- nvmet: always initialize cqe.result (git-fixes).
- nvmet-auth: fix nvmet_auth hash error handling (git-fixes).
- nvmet: fix a possible leak when destroy a ctrl during qp establishment (git-fixes).
- nvme: use ctrl state accessor (bsc#1215492).
- ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834).
- ocfs2: remove redundant assignment to variable free_space (bsc#1228409).
- ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() (bsc#1228410).
- orangefs: fix out-of-bounds fsid access (git-fixes).
- PCI: Add PCI_ERROR_RESPONSE and related definitions (stable-fixes).
- PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal (git-fixes).
- PCI: Extend ACS configurability (bsc#1228090).
- PCI: Fix resource double counting on remove & rescan (git-fixes).
- PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN (git-fixes).
- PCI: Introduce cleanup helpers for device reference counts and locks (git-fixes).
- PCI: Introduce cleanup helpers for device reference counts and locks (stable-fixes).
- PCI: keystone: Do not enable BAR 0 for AM654x (git-fixes).
- PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() (git-fixes).
- PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode() (git-fixes).
- PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (git-fixes).
- PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (stable-fixes).
- PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio (git-fixes).
- PCI: tegra194: Set EP alignment restriction for inbound ATU (git-fixes).
- pinctrl: core: fix possible memory leak when pinctrl_enable() fails (git-fixes).
- pinctrl: freescale: mxs: Fix refcount of child (git-fixes).
- pinctrl: single: fix possible memory leak when pinctrl_enable() fails (git-fixes).
- pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (git-fixes).
- platform/chrome: cros_ec_debugfs: fix wrong EC message version (git-fixes).
- platform/chrome: cros_ec_proto: Lock device when updating MKBP version (git-fixes).
- platform/x86: dell-smbios-base: Use sysfs_emit() (stable-fixes).
- platform/x86: dell-smbios: Fix wrong token data in sysfs (git-fixes).
- platform/x86: lg-laptop: Change ACPI device id (stable-fixes).
- platform/x86: lg-laptop: Remove LGEX0815 hotkey handling (stable-fixes).
- platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6" tablet (stable-fixes).
- platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro (stable-fixes).
- platform/x86: wireless-hotkey: Add support for LG Airplane Button (stable-fixes).
- powerpc/cpuidle: Set CPUIDLE_FLAG_POLLING for snooze state (bsc#1227121 ltc#207129).
- powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap() (bsc#1194869).
- powerpc/kasan: Disable address sanitization in kexec paths (bsc#1194869).
- powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869).
- powerpc/rtas: clean up includes (bsc#1227487).
- powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).
- power: supply: cros_usbpd: provide ID table for avoiding fallback match (stable-fixes).
- pwm: stm32: Always do lazy disabling (git-fixes).
- RDMA/cache: Release GID table even if leak is detected (git-fixes)
- RDMA/device: Return error earlier if port in not valid (git-fixes)
- RDMA/hns: Check atomic wr length (git-fixes)
- RDMA/hns: Fix insufficient extend DB for VFs. (git-fixes)
- RDMA/hns: Fix mbx timing out before CMD execution is completed (git-fixes)
- RDMA/hns: Fix missing pagesize and alignment check in FRMR (git-fixes)
- RDMA/hns: Fix shift-out-bounds when max_inline_data is 0 (git-fixes)
- RDMA/hns: Fix soft lockup under heavy CEQE load (git-fixes)
- RDMA/hns: Fix undifined behavior caused by invalid max_sge (git-fixes)
- RDMA/hns: Fix unmatch exception handling when init eq table fails (git-fixes)
- RDMA/iwcm: Fix a use-after-free related to destroying CM IDs (git-fixes)
- RDMA/mana_ib: Ignore optional access flags for MRs (git-fixes).
- RDMA/mlx4: Fix truncated output warning in alias_GUID.c (git-fixes)
- RDMA/mlx4: Fix truncated output warning in mad.c (git-fixes)
- RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE (git-fixes)
- RDMA/restrack: Fix potential invalid address access (git-fixes)
- RDMA/rxe: Do not set BTH_ACK_MASK for UC or UD QPs (git-fixes)
- regmap-i2c: Subtract reg size from max_write (stable-fixes).
- Revert "ALSA: firewire-lib: obsolete workqueue for period update" (bsc#1208783).
- Revert "ALSA: firewire-lib: operate for period elapse event in process context" (bsc#1208783).
- Revert "leds: led-core: Fix refcount leak in of_led_get()" (git-fixes).
- Revert "usb: musb: da8xx: Set phy in OTG mode by default" (stable-fixes).
- rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL (git-fixes).
- rtc: cmos: Fix return value of nvmem callbacks (git-fixes).
- rtc: interface: Add RTC offset to alarm after fix-up (git-fixes).
- rtc: isl1208: Fix return value of nvmem callbacks (git-fixes).
- rtlwifi: rtl8192de: Style clean-ups (stable-fixes).
- s390: Implement __iowrite32_copy() (bsc#1226502)
- s390: Stop using weak symbols for __iowrite64_copy() (bsc#1226502)
- saa7134: Unchecked i2c_transfer function result fixed (git-fixes).
- sched/fair: Do not balance task to its current running CPU (git fixes (sched)).
- sched: Fix stop_one_cpu_nowait() vs hotplug (git fixes (sched)).
- scsi: lpfc: Allow DEVICE_RECOVERY mode after RSCN receipt if in PRLI_ISSUE state (bsc#1228857).
- scsi: lpfc: Cancel ELS WQE instead of issuing abort when SLI port is inactive (bsc#1228857).
- scsi: lpfc: Fix handling of fully recovered fabric node in dev_loss callbk (bsc#1228857).
- scsi: lpfc: Fix incorrect request len mbox field when setting trunking via sysfs (bsc#1228857).
- scsi: lpfc: Handle mailbox timeouts in lpfc_get_sfp_info (bsc#1228857).
- scsi: lpfc: Relax PRLI issue conditions after GID_FT response (bsc#1228857).
- scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro usages (bsc#1228857).
- scsi: lpfc: Update lpfc version to 14.4.0.3 (bsc#1228857).
- scsi: qla2xxx: Avoid possible run-time warning with long model_num (bsc#1228850).
- scsi: qla2xxx: Complete command early within lock (bsc#1228850).
- scsi: qla2xxx: Convert comma to semicolon (bsc#1228850).
- scsi: qla2xxx: Drop driver owner assignment (bsc#1228850).
- scsi: qla2xxx: During vport delete send async logout explicitly (bsc#1228850).
- scsi: qla2xxx: Fix debugfs output for fw_resource_count (bsc#1228850).
- scsi: qla2xxx: Fix flash read failure (bsc#1228850).
- scsi: qla2xxx: Fix for possible memory corruption (bsc#1228850).
- scsi: qla2xxx: Fix optrom version displayed in FDMI (bsc#1228850).
- scsi: qla2xxx: Indent help text (bsc#1228850).
- scsi: qla2xxx: Reduce fabric scan duplicate code (bsc#1228850).
- scsi: qla2xxx: Remove unused struct 'scsi_dif_tuple' (bsc#1228850).
- scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds (bsc#1228850).
- scsi: qla2xxx: Unable to act on RSCN for port online (bsc#1228850).
- scsi: qla2xxx: Update version to 10.02.09.300-k (bsc#1228850).
- scsi: qla2xxx: Use QP lock to search for bsg (bsc#1228850).
- scsi: qla2xxx: validate nvme_local_port correctly (bsc#1228850).
- selftests/bpf: Add a selftest for checking subreg equality (bsc#1225903).
- selftests/bpf: add pre bpf_prog_test_run_opts() callback for test_loader (bsc#1225903).
- selftests/bpf: add precision propagation tests in the presence of subprogs (bsc#1225903).
- selftests/bpf: Add pruning test case for bpf_spin_lock (bsc#1225903).
- selftests/bpf: Check if mark_chain_precision() follows scalar ids (bsc#1225903).
- selftests/bpf: check if max number of bpf_loop iterations is tracked (bsc#1225903).
- selftests/bpf: fix __retval() being always ignored (bsc#1225903).
- selftests/bpf: fix unpriv_disabled check in test_verifier (bsc#1225903).
- selftests/bpf: __imm_insn & __imm_const macro for bpf_misc.h (bsc#1225903).
- selftests/bpf: make test_align selftest more robust (bsc#1225903).
- selftests/bpf: populate map_array_ro map for verifier_array_access test (bsc#1225903).
- selftests/bpf: prog_tests entry point for migrated test_verifier tests (bsc#1225903).
- selftests/bpf: Report program name on parse_test_spec error (bsc#1225903).
- selftests/bpf: Support custom per-test flags and multiple expected messages (bsc#1225903).
- selftests/bpf: test case for callback_depth states pruning logic (bsc#1225903).
- selftests/bpf: test case for relaxed prunning of active_lock.id (bsc#1225903).
- selftests/bpf: test cases for regsafe() bug skipping check_id() (bsc#1225903).
- selftests/bpf: Tests execution support for test_loader.c (bsc#1225903).
- selftests/bpf: tests for iterating callbacks (bsc#1225903).
- selftests/bpf: test widening for iterating callbacks (bsc#1225903).
- selftests/bpf: track string payload offset as scalar in strobemeta (bsc#1225903).
- selftests/bpf: Unprivileged tests for test_loader.c (bsc#1225903).
- selftests/bpf: Verify copy_register_state() preserves parent/live fields (bsc#1225903).
- selftests/bpf: verify states_equal() maintains idmap across all frames (bsc#1225903).
- selftests/bpf: Verify that check_ids() is used for scalars in regsafe() (bsc#1225903).
- selftests/sigaltstack: Fix ppc64 GCC build (git-fixes).
- soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (stable-fixes).
- spi: imx: Do not expect DMA for i.MX{25,35,50,51,53} cspi devices (stable-fixes).
- spi: mux: set ctlr->bits_per_word_mask (stable-fixes).
- string.h: Introduce memtostr() and memtostr_pad() (bsc#1228850).
- SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272).
- SUNRPC: Fix gss_free_in_token_pages() (git-fixes).
- SUNRPC: Fix loop termination condition in gss_free_in_token_pages() (git-fixes).
- sunrpc: fix NFSACL RPC retry on soft mount (git-fixes).
- SUNRPC: return proper error from gss_wrap_req_priv (git-fixes).
- supported.conf:
- tpm: Allow system suspend to continue when TPM suspend fails (bsc#1082555).
- tpm: Prevent hwrng from activating during resume (bsc#1082555).
- tpm_tis: Resend command to recover from data transfer errors (bsc#1082555).
- tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume (bsc#1082555).
- tpm, tpm: Implement usage counter for locality (bsc#1082555).
- tpm, tpm_tis: Avoid cache incoherency in test for interrupts (bsc#1082555).
- tpm, tpm_tis: Claim locality before writing interrupt registers (bsc#1082555).
- tpm, tpm_tis: Claim locality in interrupt handler (bsc#1082555).
- tpm, tpm_tis: Claim locality when interrupts are reenabled on resume (bsc#1082555).
- tpm, tpm_tis: correct tpm_tis_flags enumeration values (bsc#1082555).
- tpm, tpm_tis: Do not skip reset of original interrupt vector (bsc#1082555).
- tpm, tpm_tis: Only handle supported interrupts (bsc#1082555).
- tracing: Build event generation tests only as modules (git-fixes).
- tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset() (git-fixes).
- tracing/osnoise: Add osnoise/options file (bsc#1228330)
- tracing/osnoise: Add OSNOISE_WORKLOAD option (bsc#1228330)
- tracing/osnoise: Do not follow tracing_cpumask (bsc#1228330)
- tracing/osnoise: Fix notify new tracing_max_latency (bsc#1228330)
- tracing/osnoise: Make osnoise_instances static (bsc#1228330)
- tracing/osnoise: Split workload start from the tracer start (bsc#1228330)
- tracing/osnoise: Support a list of trace_array *tr (bsc#1228330)
- tracing/osnoise: Use built-in RCU list checking (bsc#1228330)
- tracing/timerlat: Notify new max thread latency (bsc#1228330)
- USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (stable-fixes).
- usb: cdns3: allocate TX FIFO size according to composite EP number (git-fixes).
- usb: cdns3: fix incorrect calculation of ep_buf_size when more than one config (git-fixes).
- usb: cdns3: fix iso transfer error when mult is not zero (git-fixes).
- usb: cdns3: improve handling of unaligned address case (git-fixes).
- usb: cdns3: optimize OUT transfer by copying only actual received data (git-fixes).
- usb: cdns3: skip set TRB_IOC when usb_request: no_interrupt is true (git-fixes).
- USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (git-fixes).
- usb: dwc3: gadget: Do not delay End Transfer on delayed_status (git-fixes).
- usb: dwc3: gadget: Force sending delayed status during soft disconnect (git-fixes).
- usb: dwc3: gadget: Synchronize IRQ between soft connect/disconnect (git-fixes).
- usb: gadget: call usb_gadget_check_config() to verify UDC capability (git-fixes).
- usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (stable-fixes).
- usb: gadget: printer: SS+ support (stable-fixes).
- usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (stable-fixes).
- USB: serial: mos7840: fix crash on resume (git-fixes).
- USB: serial: option: add Fibocom FM350-GL (stable-fixes).
- USB: serial: option: add Netprisma LCUK54 series modules (stable-fixes).
- USB: serial: option: add Rolling RW350-GL variants (stable-fixes).
- USB: serial: option: add support for Foxconn T99W651 (stable-fixes).
- USB: serial: option: add Telit FN912 rmnet compositions (stable-fixes).
- USB: serial: option: add Telit generic core-dump composition (stable-fixes).
- usb: typec: tcpm: clear pd_event queue in PORT_RESET (git-fixes).
- usb: xhci-plat: Do not include xhci.h (git-fixes).
- USB: xhci-plat: fix legacy PHY double init (git-fixes).
- wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers (git-fixes).
- wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device (git-fixes).
- wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he() (git-fixes).
- wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (git-fixes).
- wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (git-fixes).
- wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (stable-fixes).
- wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup (stable-fixes).
- wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd (stable-fixes).
- wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option (stable-fixes).
- wifi: mac80211: disable softirqs for queued frame handling (git-fixes).
- wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (stable-fixes).
- wifi: mac80211: handle tasklet frames before stopping (stable-fixes).
- wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (stable-fixes).
- wifi: mt76: replace skb_put with skb_put_zero (stable-fixes).
- wifi: mwifiex: Fix interface type change (git-fixes).
- wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() (git-fixes).
- wifi: wilc1000: fix ies_len type in connect path (git-fixes).
- workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454).
- workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454).
- x86/amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs (git-fixes).
- x86/apic: Force native_apic_mem_read() to use the MOV instruction (git-fixes).
- x86/bhi: Avoid warning in #DB handler due to BHI mitigation (git-fixes).
- x86/bugs: Remove default case for fully switched enums (bsc#1227900).
- x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup (git-fixes).
- x86/ibt,ftrace: Search for __fentry__ location (git-fixes).
- x86/Kconfig: Transmeta Crusoe is CPU family 5, not 6 (git-fixes).
- x86/mm: Allow guest.enc_status_change_prepare() to fail (git-fixes).
- x86/mm: Fix enc_status_change_finish_noop() (git-fixes).
- x86/purgatory: Switch to the position-independent small code model (git-fixes).
- x86/srso: Move retbleed IBPB check into existing 'has_microcode' code block (bsc#1227900).
- x86/srso: Remove 'pred_cmd' label (bsc#1227900).
- x86: Stop using weak symbols for __iowrite32_copy() (bsc#1226502)
- x86/tdx: Fix race between set_memory_encrypted() and load_unaligned_zeropad() (git-fixes).
- xfs: Add cond_resched to block unmap range and reflink remap path (bsc#1228226).
- xhci: Apply broken streams quirk to Etron EJ188 xHCI host (stable-fixes).
- xhci: Apply reset resume quirk to Etron EJ188 xHCI host (stable-fixes).
- xhci: Set correct transferred length for cancelled bulk transfers (stable-fixes).
</description>
<summary>Security update for the Linux Kernel</summary>
</patchinfo>
