Oracle Linux 6266 Published by

The following updates have been released for Oracle Linux:

ELSA-2023-7732 Important: Oracle Linux 8 tracker-miners security update
ELSA-2023-7716 Important: Oracle Linux 8 webkit2gtk3 security update
ELBA-2023-7246 Oracle Linux 8 container-tools:ol8 bug fix update
ELSA-2023-13044 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
ELSA-2023-13048 Important: Oracle Linux 7 Unbreakable Enterprise kernel-container security update
ELSA-2023-13044 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
ELSA-2023-13049 Important: Oracle Linux 8 Unbreakable Enterprise kernel-container security update
ELSA-2023-13044 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
ELSA-2023-13043 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
ELSA-2023-7784 Important: Oracle Linux 9 postgresql security update
ELSA-2023-7747 Moderate: Oracle Linux 9 libxml2 security update
ELSA-2023-7766 Moderate: Oracle Linux 9 containernetworking-plugins security update
ELSA-2023-13043 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
ELSA-2023-13043 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
ELSA-2023-7762 Moderate: Oracle Linux 9 skopeo security update
ELSA-2023-7763 Moderate: Oracle Linux 9 runc security update
ELSA-2023-7715 Important: Oracle Linux 9 webkit2gtk3 security update
ELSA-2023-7754 Moderate: Oracle Linux 9 pixman security update
ELSA-2023-7791 Important: Oracle Linux 9 gstreamer1-plugins-bad-free security update
ELSA-2023-7785 Important: Oracle Linux 9 postgresql:15 security update
ELSA-2023-7765 Moderate: Oracle Linux 9 podman security update
ELBA-2023-7760 Oracle Linux 9 nmstate bug fix and enhancement update
ELSA-2023-7712 Important: Oracle Linux 9 tracker-miners security update
ELSA-2023-7764 Moderate: Oracle Linux 9 buildah security update
ELBA-2023-7759 Oracle Linux 9 cmake bug fix update
ELSA-2023-13047 Important: Oracle Linux 9 kernel security update
ELBA-2023-13040 Oracle Linux 9 oracle-instantclient-release-el9 bug fix update
ELBA-2023-7756 Oracle Linux 9 compiler-rt bug fix update
ELBA-2023-13046 Oracle Linux 9 gdb bug fix update




ELSA-2023-7732 Important: Oracle Linux 8 tracker-miners security update


Oracle Linux Security Advisory ELSA-2023-7732

http://linux.oracle.com/errata/ELSA-2023-7732.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
tracker-miners-2.1.5-2.el8_9.1.i686.rpm
tracker-miners-2.1.5-2.el8_9.1.x86_64.rpm

aarch64:
tracker-miners-2.1.5-2.el8_9.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//tracker-miners-2.1.5-2.el8_9.1.src.rpm

Related CVEs:

CVE-2023-5557

Description of changes:

[2.1.5-2.1]
- Bump dist

[2.1.5-2]
- Backport stricter seccomp jail
Resolves: RHEL-12466



ELSA-2023-7716 Important: Oracle Linux 8 webkit2gtk3 security update


Oracle Linux Security Advisory ELSA-2023-7716

http://linux.oracle.com/errata/ELSA-2023-7716.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
webkit2gtk3-2.40.5-1.el8_9.1.i686.rpm
webkit2gtk3-2.40.5-1.el8_9.1.x86_64.rpm
webkit2gtk3-devel-2.40.5-1.el8_9.1.i686.rpm
webkit2gtk3-devel-2.40.5-1.el8_9.1.x86_64.rpm
webkit2gtk3-jsc-2.40.5-1.el8_9.1.i686.rpm
webkit2gtk3-jsc-2.40.5-1.el8_9.1.x86_64.rpm
webkit2gtk3-jsc-devel-2.40.5-1.el8_9.1.i686.rpm
webkit2gtk3-jsc-devel-2.40.5-1.el8_9.1.x86_64.rpm

aarch64:
webkit2gtk3-2.40.5-1.el8_9.1.aarch64.rpm
webkit2gtk3-devel-2.40.5-1.el8_9.1.aarch64.rpm
webkit2gtk3-jsc-2.40.5-1.el8_9.1.aarch64.rpm
webkit2gtk3-jsc-devel-2.40.5-1.el8_9.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//webkit2gtk3-2.40.5-1.el8_9.1.src.rpm

Related CVEs:

CVE-2023-42917

Description of changes:

[2.40.5-1.1]
- Add patch for CVE-2023-42917
Resolves: rhbz#2253058



ELBA-2023-7246 Oracle Linux 8 container-tools:ol8 bug fix update


Oracle Linux Bug Fix Advisory ELBA-2023-7246

http://linux.oracle.com/errata/ELBA-2023-7246.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
aardvark-dns-1.7.0-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
buildah-1.31.3-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
buildah-tests-1.31.3-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
cockpit-podman-75-1.module+el8.9.0+90102+5a5b2dad.noarch.rpm
conmon-2.1.8-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
containernetworking-plugins-1.3.0-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
containers-common-1-70.0.1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
container-selinux-2.221.0-1.module+el8.9.0+90102+5a5b2dad.noarch.rpm
crit-3.18-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
criu-3.18-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
criu-devel-3.18-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
criu-libs-3.18-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
crun-1.8.7-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
fuse-overlayfs-1.12-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
libslirp-4.4.0-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
libslirp-devel-4.4.0-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
netavark-1.7.0-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
oci-seccomp-bpf-hook-1.2.9-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
podman-4.6.1-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
podman-catatonit-4.6.1-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
podman-docker-4.6.1-4.module+el8.9.0+90102+5a5b2dad.noarch.rpm
podman-gvproxy-4.6.1-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
podman-plugins-4.6.1-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
podman-remote-4.6.1-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
podman-tests-4.6.1-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
python3-criu-3.18-4.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
python3-podman-4.6.0-1.module+el8.9.0+90102+5a5b2dad.noarch.rpm
runc-1.1.9-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
skopeo-1.13.3-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
skopeo-tests-1.13.3-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
slirp4netns-1.2.1-1.module+el8.9.0+90102+5a5b2dad.x86_64.rpm
udica-0.2.6-20.module+el8.9.0+90102+5a5b2dad.noarch.rpm

aarch64:
aardvark-dns-1.7.0-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
buildah-1.31.3-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
buildah-tests-1.31.3-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
cockpit-podman-75-1.module+el8.9.0+90102+5a5b2dad.noarch.rpm
conmon-2.1.8-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
containernetworking-plugins-1.3.0-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
containers-common-1-70.0.1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
container-selinux-2.221.0-1.module+el8.9.0+90102+5a5b2dad.noarch.rpm
crit-3.18-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
criu-3.18-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
criu-devel-3.18-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
criu-libs-3.18-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
crun-1.8.7-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
fuse-overlayfs-1.12-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
libslirp-4.4.0-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
libslirp-devel-4.4.0-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
netavark-1.7.0-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
oci-seccomp-bpf-hook-1.2.9-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
podman-4.6.1-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
podman-catatonit-4.6.1-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
podman-docker-4.6.1-4.module+el8.9.0+90102+5a5b2dad.noarch.rpm
podman-gvproxy-4.6.1-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
podman-plugins-4.6.1-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
podman-remote-4.6.1-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
podman-tests-4.6.1-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
python3-criu-3.18-4.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
python3-podman-4.6.0-1.module+el8.9.0+90102+5a5b2dad.noarch.rpm
runc-1.1.9-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
skopeo-1.13.3-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
skopeo-tests-1.13.3-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
slirp4netns-1.2.1-1.module+el8.9.0+90102+5a5b2dad.aarch64.rpm
udica-0.2.6-20.module+el8.9.0+90102+5a5b2dad.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//aardvark-dns-1.7.0-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.31.3-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-75-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.8-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.3.0-4.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-70.0.1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.221.0-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//criu-3.18-4.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//crun-1.8.7-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.12-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//netavark-1.7.0-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.9-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//podman-4.6.1-4.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.6.0-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.9-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.13.3-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.2.1-1.module+el8.9.0+90102+5a5b2dad.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-20.module+el8.9.0+90102+5a5b2dad.src.rpm

Description of changes:

aardvark-dns
buildah
cockpit-podman
conmon
containernetworking-plugins
containers-common
[2:1-70.0.1]
- Rebuild with higher version than the latest released

container-selinux
criu
crun
fuse-overlayfs
libslirp
netavark
oci-seccomp-bpf-hook
podman
python-podman
runc
skopeo
slirp4netns
udica



ELSA-2023-13044 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2023-13044

http://linux.oracle.com/errata/ELSA-2023-13044.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2136.326.6.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.326.6.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.326.6.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.326.6.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.326.6.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.326.6.el8uek.src.rpm

Related CVEs:

CVE-2023-5178

Description of changes:

[5.4.17-2136.326.6.el8uek]
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 35914789]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 35914789]

[5.4.17-2136.326.5.el8uek]
- Revert "tracing: Increase trace array ref count on enable and filter files" (Sherry Yang) [Orabug: 36059945]
- xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky) [Orabug: 36050498]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36049644]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36049644]

[5.4.17-2136.326.4.el8uek]
- Revert "mmc: core: Capture correct oemid-bits for eMMC cards" (Dominique Martinet)
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- perf/core: Fix potential NULL deref (Peter Zijlstra)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35065319]
- Use inflight IO in io acct of high latency devices (Gulam Mohamed) [Orabug: 35475691]
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028026] {CVE-2023-5178}

[5.4.17-2136.326.3.el8uek]
- LTS tag: v5.4.259 (Sherry Yang)
- xfrm6: fix inet6_dev refcount underflow problem (Zhang Changzhong)
- Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name (Kees Cook)
- Bluetooth: hci_sock: fix slab oob read in create_monitor_event (Edward AD)
- phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime PM for remove (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime disable on probe (Tony Lindgren)
- ASoC: pxa: fix a memory leak in probe() (Dan Carpenter)
- gpio: vf610: set value before the direction to avoid a glitch (Haibo Chen)
- s390/pci: fix iommu bitmap allocation (Niklas Schnelle)
- perf: Disallow mis-matched inherited group reads (Peter Zijlstra)
- USB: serial: option: add Fibocom to DELL custom modem FM101R-GL (Puliang Lu)
- USB: serial: option: add entry for Sierra EM9191 with new firmware (Benoît Monin)
- USB: serial: option: add Telit LE910C4-WWX 0x1035 composition (Fabio Porcedda)
- ACPI: irq: Fix incorrect return value in acpi_register_gsi() (Sunil V L)
- Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" (Andy Shevchenko)
- mmc: core: Capture correct oemid-bits for eMMC cards (Avri Altman)
- mmc: core: sdio: hold retuning if sdio in 1-bit mode (Haibo Chen)
- mtd: physmap-core: Restore map_rom fallback (Geert Uytterhoeven)
- mtd: spinand: micron: correct bitmask for ecc status (Martin Kurbanov)
- mtd: rawnand: qcom: Unmap the right resource upon probe failure (Bibek Kumar Patro)
- Bluetooth: hci_event: Fix using memcmp when comparing keys (Luiz Augusto von Dentz)
- HID: multitouch: Add required quirk for Synaptics 0xcd7e device (Rahul Rameshbabu)
- btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c (Josef Bacik)
- drm: panel-orientation-quirks: Add quirk for One Mix 2S (Kai Uwe Broulik)
- sky2: Make sure there is at least one frag_addr available (Kees Cook)
- regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" (Michał Mirosław)
- wifi: cfg80211: avoid leaking stack data into trace (Benjamin Berg)
- wifi: mac80211: allow transmitting EAPOL frames with tainted key (Wen Gong)
- Bluetooth: hci_core: Fix build warnings (Luiz Augusto von Dentz)
- Bluetooth: Avoid redundant authentication (Ying Hsu)
- HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event (Ma Ke)
- tracing: relax trace_event_eval_update() execution with cond_resched() (Clément Léger)
- ata: libata-eh: Fix compilation warning in ata_eh_link_report() (Damien Le Moal)
- gpio: timberdale: Fix potential deadlock on &tgpio->lock (Chengfeng Ye)
- overlayfs: set ctime when setting mtime and atime (Jeff Layton)
- i2c: mux: Avoid potential false error message in i2c_mux_add_adapter (Heiner Kallweit)
- btrfs: initialize start_slot in btrfs_log_prealloc_extents (Josef Bacik)
- btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (Filipe Manana)
- ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone (Tony Lindgren)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA (Hans de Goede)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (Paul Menzel)
- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (Tamim Khan)
- ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks (Hans de Goede)
- ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA (Tamim Khan)
- ACPI: resource: Add ASUS model S5402ZA to quirks (Kellen Renshaw)
- ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA (Tamim Khan)
- ACPI: resources: Add DMI-based legacy IRQ override quirk (Hui Wang)
- ACPI: Drop acpi_dev_irqresource_disabled() (John Garry)
- resource: Add irqresource_disabled() (John Garry)
- net: pktgen: Fix interface flags printing (Gavrilov Ilia)
- netfilter: nft_set_rbtree: .deactivate fails if element has expired (Pablo Neira Ayuso)
- neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section (Geert Uytterhoeven)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- i40e: prevent crash on probe if hw registers have invalid values (Michal Schmidt)
- net: usb: smsc95xx: Fix an error code in smsc95xx_reset() (Dan Carpenter)
- ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr (Eric Dumazet)
- tun: prevent negative ifindex (Eric Dumazet)
- tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb (Eric Dumazet)
- tcp: fix excessive TLP and RACK timeouts from HZ rounding (Neal Cardwell)
- net: rfkill: gpio: prevent value glitch during probe (Josua Mayer)
- net: ipv6: fix return value check in esp_remove_trailer (Ma Ke)
- net: ipv4: fix return value check in esp_remove_trailer (Ma Ke)
- xfrm: interface: use DEV_STATS_INC() (Eric Dumazet)
- xfrm: fix a data-race in xfrm_gen_index() (Eric Dumazet)
- qed: fix LL2 RX buffer allocation (Manish Chopra)
- netfilter: nft_payload: fix wrong mac header matching (Florian Westphal)
- KVM: x86: Mask LVTPC when handling a PMI (Jim Mattson)
- regmap: fix NULL deref on lookup (Johan Hovold)
- nfc: nci: fix possible NULL pointer dereference in send_acknowledge() (Krzysztof Kozlowski)
- ice: fix over-shifted variable (Jesse Brandeburg)
- Bluetooth: avoid memcmp() out of bounds warning (Arnd Bergmann)
- Bluetooth: hci_event: Fix coding style (Luiz Augusto von Dentz)
- Bluetooth: vhci: Fix race when opening vhci device (Arkadiusz Bokowy)
- Bluetooth: Fix a refcnt underflow problem for hci_conn (Ziyang Xuan)
- Bluetooth: Reject connection with the device which has same BD_ADDR (Lee, Chun-Yi)
- Bluetooth: hci_event: Ignore NULL link key (Lee, Chun-Yi)
- usb: hub: Guard against accesses to uninitialized BOS descriptors (Ricardo Cañuelo)
- Documentation: sysctl: align cells in second content column (Bagas Sanjaya)
- dev_forward_skb: do not scrub skb mark within the same name space (Nicolas Dichtel)
- ravb: Fix use-after-free issue in ravb_tx_timeout_work() (Yoshihiro Shimoda)
- powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() (Christophe Leroy)
- powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE (Christophe Leroy)
- dmaengine: mediatek: Fix deadlock caused by synchronize_irq() (Duoming Zhou)
- x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (Borislav Petkov (AMD))
- usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call (Krishna Kurapati)
- usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta)
- pinctrl: avoid unsafe code pattern in find_pinctrl() (Dmitry Torokhov)
- cgroup: Remove duplicates in cgroup v1 tasks file (Michal Koutný)
- Input: xpad - add PXN V900 support (Matthias Berndt)
- Input: psmouse - fix fast_reconnect function for PS/2 mode (Jeffery Miller)
- Input: powermate - fix use-after-free in powermate_config_complete (Javier Carrasco)
- ceph: fix incorrect revoked caps assert in ceph_fill_file_size() (Xiubo Li)
- libceph: use kernel_connect() (Jordan Rife)
- mcb: remove is_added flag from mcb_device struct (Jorge Sanjuan Garcia)
- iio: pressure: ms5611: ms5611_prom_is_valid false negative bug (Alexander Zangerl)
- iio: pressure: dps310: Adjust Timeout Settings (Lakshmi Yadlapati)
- iio: pressure: bmp280: Fix NULL pointer exception (Phil Elwell)
- usb: musb: Modify the "HWVers" register address (Xingxing Luo)
- usb: musb: Get the musb_qh poniter after musb_giveback (Xingxing Luo)
- usb: dwc3: Soft reset phy on probe for host (Thinh Nguyen)
- net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read (Javier Carrasco)
- usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer (Wesley Cheng)
- dmaengine: stm32-mdma: abort resume if no ongoing transfer (Amelie Delaunay)
- workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() (Waiman Long)
- nfc: nci: assert requested protocol is valid (Jeremy Cline)
- net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (Eric Dumazet)
- ixgbe: fix crash with empty VF macvlan list (Dan Carpenter)
- drm/vmwgfx: fix typo of sizeof argument (Konstantin Meskhidze)
- xen-netback: use default TX queue size for vifs (Roger Pau Monne)
- mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type (Dan Carpenter)
- ieee802154: ca8210: Fix a potential UAF in ca8210_probe (Dinghao Liu)
- ravb: Fix up dma_free_coherent() call in ravb_remove() (Yoshihiro Shimoda)
- drm/msm/dsi: skip the wait for video mode done if not applicable (Abhinav Kumar)
- drm: etvnaviv: fix bad backport leading to warning (Martin Fuzzey)
- quota: Fix slow quotaoff (Jan Kara)
- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect (Hans de Goede)
- pwm: hibvt: Explicitly set .polarity in .get_state() (Uwe Kleine-König)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- RDMA/cxgb4: Check skb value for failure to allocate (Artem Chernyshev)
- LTS tag: v5.4.258 (Sherry Yang)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross)
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- NFS: Fix a race in __nfs_list_for_each_server() (Trond Myklebust)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- cpupower: add Makefile dependencies for install targets (Ivan Babrou)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- NFS: Add a helper nfs_client_for_each_server() (Trond Myklebust)
- NFS4: Trace state recovery operation (Chuck Lever)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann)
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann)
- i40e: improve locking of mac_filter_hash (Stefan Assmann)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- drm/amd/display: Fix LFC multiplier changing erratically (Anthony Koo)
- drm/amd/display: Reinstate LFC optimization (Amanda Liu)
- scsi: qla2xxx: Fix deletion race condition (Quinn Tran)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Fix warning message and call stack during rmmod i40e driver (Karen Sornek)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- selftests/tls: Add {} to avoid static checker warning (Kees Cook)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: mark group as trimmed only if it was fully scanned (Dmitry Monakhov)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ext4: add new helper interface ext4_try_to_trim_range() (Wang Jianchao)
- ext4: remove the 'group' parameter of ext4_trim_extent (Wang Jianchao)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)

[5.4.17-2136.326.2.el8uek]
- mm/memcg: optimize memory.numa_stat like memory.stat (Shakeel Butt) [Orabug: 35879962]

[5.4.17-2136.326.1.el8uek]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843809]
- mm: mapping over a reserved va range may unmap twice (Anthony Yznaga) [Orabug: 35843809]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916078]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926165]



ELSA-2023-13048 Important: Oracle Linux 7 Unbreakable Enterprise kernel-container security update


Oracle Linux Security Advisory ELSA-2023-13048

http://linux.oracle.com/errata/ELSA-2023-13048.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-container-5.4.17-2136.326.6.el7.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.326.6.el7.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-container-5.4.17-2136.326.6.el7.src.rpm

Related CVEs:

CVE-2023-5178

Description of changes:

[5.4.17-2136.326.6.el7]
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 35914789]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 35914789]

[5.4.17-2136.326.5.el7]
- Revert "tracing: Increase trace array ref count on enable and filter files" (Sherry Yang) [Orabug: 36059945]
- xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky) [Orabug: 36050498]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36049644]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36049644]

[5.4.17-2136.326.4.el7]
- Revert "mmc: core: Capture correct oemid-bits for eMMC cards" (Dominique Martinet)
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- perf/core: Fix potential NULL deref (Peter Zijlstra)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35065319]
- Use inflight IO in io acct of high latency devices (Gulam Mohamed) [Orabug: 35475691]
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028026] {CVE-2023-5178}

[5.4.17-2136.326.3.el7]
- LTS tag: v5.4.259 (Sherry Yang)
- xfrm6: fix inet6_dev refcount underflow problem (Zhang Changzhong)
- Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name (Kees Cook)
- Bluetooth: hci_sock: fix slab oob read in create_monitor_event (Edward AD)
- phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime PM for remove (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime disable on probe (Tony Lindgren)
- ASoC: pxa: fix a memory leak in probe() (Dan Carpenter)
- gpio: vf610: set value before the direction to avoid a glitch (Haibo Chen)
- s390/pci: fix iommu bitmap allocation (Niklas Schnelle)
- perf: Disallow mis-matched inherited group reads (Peter Zijlstra)
- USB: serial: option: add Fibocom to DELL custom modem FM101R-GL (Puliang Lu)
- USB: serial: option: add entry for Sierra EM9191 with new firmware (Benoît Monin)
- USB: serial: option: add Telit LE910C4-WWX 0x1035 composition (Fabio Porcedda)
- ACPI: irq: Fix incorrect return value in acpi_register_gsi() (Sunil V L)
- Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" (Andy Shevchenko)
- mmc: core: Capture correct oemid-bits for eMMC cards (Avri Altman)
- mmc: core: sdio: hold retuning if sdio in 1-bit mode (Haibo Chen)
- mtd: physmap-core: Restore map_rom fallback (Geert Uytterhoeven)
- mtd: spinand: micron: correct bitmask for ecc status (Martin Kurbanov)
- mtd: rawnand: qcom: Unmap the right resource upon probe failure (Bibek Kumar Patro)
- Bluetooth: hci_event: Fix using memcmp when comparing keys (Luiz Augusto von Dentz)
- HID: multitouch: Add required quirk for Synaptics 0xcd7e device (Rahul Rameshbabu)
- btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c (Josef Bacik)
- drm: panel-orientation-quirks: Add quirk for One Mix 2S (Kai Uwe Broulik)
- sky2: Make sure there is at least one frag_addr available (Kees Cook)
- regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" (Michał Mirosław)
- wifi: cfg80211: avoid leaking stack data into trace (Benjamin Berg)
- wifi: mac80211: allow transmitting EAPOL frames with tainted key (Wen Gong)
- Bluetooth: hci_core: Fix build warnings (Luiz Augusto von Dentz)
- Bluetooth: Avoid redundant authentication (Ying Hsu)
- HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event (Ma Ke)
- tracing: relax trace_event_eval_update() execution with cond_resched() (Clément Léger)
- ata: libata-eh: Fix compilation warning in ata_eh_link_report() (Damien Le Moal)
- gpio: timberdale: Fix potential deadlock on &tgpio->lock (Chengfeng Ye)
- overlayfs: set ctime when setting mtime and atime (Jeff Layton)
- i2c: mux: Avoid potential false error message in i2c_mux_add_adapter (Heiner Kallweit)
- btrfs: initialize start_slot in btrfs_log_prealloc_extents (Josef Bacik)
- btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (Filipe Manana)
- ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone (Tony Lindgren)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA (Hans de Goede)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (Paul Menzel)
- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (Tamim Khan)
- ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks (Hans de Goede)
- ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA (Tamim Khan)
- ACPI: resource: Add ASUS model S5402ZA to quirks (Kellen Renshaw)
- ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA (Tamim Khan)
- ACPI: resources: Add DMI-based legacy IRQ override quirk (Hui Wang)
- ACPI: Drop acpi_dev_irqresource_disabled() (John Garry)
- resource: Add irqresource_disabled() (John Garry)
- net: pktgen: Fix interface flags printing (Gavrilov Ilia)
- netfilter: nft_set_rbtree: .deactivate fails if element has expired (Pablo Neira Ayuso)
- neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section (Geert Uytterhoeven)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- i40e: prevent crash on probe if hw registers have invalid values (Michal Schmidt)
- net: usb: smsc95xx: Fix an error code in smsc95xx_reset() (Dan Carpenter)
- ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr (Eric Dumazet)
- tun: prevent negative ifindex (Eric Dumazet)
- tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb (Eric Dumazet)
- tcp: fix excessive TLP and RACK timeouts from HZ rounding (Neal Cardwell)
- net: rfkill: gpio: prevent value glitch during probe (Josua Mayer)
- net: ipv6: fix return value check in esp_remove_trailer (Ma Ke)
- net: ipv4: fix return value check in esp_remove_trailer (Ma Ke)
- xfrm: interface: use DEV_STATS_INC() (Eric Dumazet)
- xfrm: fix a data-race in xfrm_gen_index() (Eric Dumazet)
- qed: fix LL2 RX buffer allocation (Manish Chopra)
- netfilter: nft_payload: fix wrong mac header matching (Florian Westphal)
- KVM: x86: Mask LVTPC when handling a PMI (Jim Mattson)
- regmap: fix NULL deref on lookup (Johan Hovold)
- nfc: nci: fix possible NULL pointer dereference in send_acknowledge() (Krzysztof Kozlowski)
- ice: fix over-shifted variable (Jesse Brandeburg)
- Bluetooth: avoid memcmp() out of bounds warning (Arnd Bergmann)
- Bluetooth: hci_event: Fix coding style (Luiz Augusto von Dentz)
- Bluetooth: vhci: Fix race when opening vhci device (Arkadiusz Bokowy)
- Bluetooth: Fix a refcnt underflow problem for hci_conn (Ziyang Xuan)
- Bluetooth: Reject connection with the device which has same BD_ADDR (Lee, Chun-Yi) {CVE-2020-26555}
- Bluetooth: hci_event: Ignore NULL link key (Lee, Chun-Yi) {CVE-2020-26555}
- usb: hub: Guard against accesses to uninitialized BOS descriptors (Ricardo Cañuelo)
- Documentation: sysctl: align cells in second content column (Bagas Sanjaya)
- dev_forward_skb: do not scrub skb mark within the same name space (Nicolas Dichtel)
- ravb: Fix use-after-free issue in ravb_tx_timeout_work() (Yoshihiro Shimoda)
- powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() (Christophe Leroy)
- powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE (Christophe Leroy)
- dmaengine: mediatek: Fix deadlock caused by synchronize_irq() (Duoming Zhou)
- x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (Borislav Petkov (AMD))
- usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call (Krishna Kurapati)
- usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta)
- cgroup: Remove duplicates in cgroup v1 tasks file (Michal Koutný)
- Input: xpad - add PXN V900 support (Matthias Berndt)
- Input: psmouse - fix fast_reconnect function for PS/2 mode (Jeffery Miller)
- Input: powermate - fix use-after-free in powermate_config_complete (Javier Carrasco)
- ceph: fix incorrect revoked caps assert in ceph_fill_file_size() (Xiubo Li)
- libceph: use kernel_connect() (Jordan Rife)
- mcb: remove is_added flag from mcb_device struct (Jorge Sanjuan Garcia)
- iio: pressure: ms5611: ms5611_prom_is_valid false negative bug (Alexander Zangerl)
- iio: pressure: dps310: Adjust Timeout Settings (Lakshmi Yadlapati)
- iio: pressure: bmp280: Fix NULL pointer exception (Phil Elwell)
- usb: musb: Modify the "HWVers" register address (Xingxing Luo)
- usb: musb: Get the musb_qh poniter after musb_giveback (Xingxing Luo)
- usb: dwc3: Soft reset phy on probe for host (Thinh Nguyen)
- net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read (Javier Carrasco)
- usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer (Wesley Cheng)
- dmaengine: stm32-mdma: abort resume if no ongoing transfer (Amelie Delaunay)
- workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() (Waiman Long)
- nfc: nci: assert requested protocol is valid (Jeremy Cline)
- net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (Eric Dumazet)
- ixgbe: fix crash with empty VF macvlan list (Dan Carpenter)
- drm/vmwgfx: fix typo of sizeof argument (Konstantin Meskhidze)
- xen-netback: use default TX queue size for vifs (Roger Pau Monne)
- mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type (Dan Carpenter)
- ieee802154: ca8210: Fix a potential UAF in ca8210_probe (Dinghao Liu)
- ravb: Fix up dma_free_coherent() call in ravb_remove() (Yoshihiro Shimoda)
- drm/msm/dsi: skip the wait for video mode done if not applicable (Abhinav Kumar)
- drm: etvnaviv: fix bad backport leading to warning (Martin Fuzzey)
- quota: Fix slow quotaoff (Jan Kara)
- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect (Hans de Goede)
- pwm: hibvt: Explicitly set .polarity in .get_state() (Uwe Kleine-König)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- RDMA/cxgb4: Check skb value for failure to allocate (Artem Chernyshev)
- LTS tag: v5.4.258 (Sherry Yang)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross) {CVE-2023-34324}
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- NFS: Fix a race in __nfs_list_for_each_server() (Trond Myklebust)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- cpupower: add Makefile dependencies for install targets (Ivan Babrou)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- NFS: Add a helper nfs_client_for_each_server() (Trond Myklebust)
- NFS4: Trace state recovery operation (Chuck Lever)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann)
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann)
- i40e: improve locking of mac_filter_hash (Stefan Assmann)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- drm/amd/display: Fix LFC multiplier changing erratically (Anthony Koo)
- drm/amd/display: Reinstate LFC optimization (Amanda Liu)
- scsi: qla2xxx: Fix deletion race condition (Quinn Tran)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Fix warning message and call stack during rmmod i40e driver (Karen Sornek)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- selftests/tls: Add {} to avoid static checker warning (Kees Cook)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: mark group as trimmed only if it was fully scanned (Dmitry Monakhov)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ext4: add new helper interface ext4_try_to_trim_range() (Wang Jianchao)
- ext4: remove the 'group' parameter of ext4_trim_extent (Wang Jianchao)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)

[5.4.17-2136.326.2.el7]
- mm/memcg: optimize memory.numa_stat like memory.stat (Shakeel Butt) [Orabug:
35879962]

[5.4.17-2136.326.1.el7]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843809]
- mm: mapping over a reserved va range may unmap twice (Anthony Yznaga) [Orabug: 35843809]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916078]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926165]



ELSA-2023-13044 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2023-13044

http://linux.oracle.com/errata/ELSA-2023-13044.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.326.6.el7uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.326.6.el7uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.326.6.el7uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.326.6.el7uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.326.6.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.326.6.el7uek.x86_64.rpm

aarch64:
kernel-uek-5.4.17-2136.326.6.el7uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.326.6.el7uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.326.6.el7uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.326.6.el7uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.326.6.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.326.6.el7uek.aarch64.rpm
kernel-uek-tools-libs-5.4.17-2136.326.6.el7uek.aarch64.rpm
perf-5.4.17-2136.326.6.el7uek.aarch64.rpm
python-perf-5.4.17-2136.326.6.el7uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.326.6.el7uek.src.rpm

Related CVEs:

CVE-2023-5178

Description of changes:

[5.4.17-2136.326.6.el7uek]
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 35914789]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 35914789]

[5.4.17-2136.326.5.el7uek]
- Revert "tracing: Increase trace array ref count on enable and filter files" (Sherry Yang) [Orabug: 36059945]
- xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky) [Orabug: 36050498]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36049644]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36049644]

[5.4.17-2136.326.4.el7uek]
- Revert "mmc: core: Capture correct oemid-bits for eMMC cards" (Dominique Martinet)
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- perf/core: Fix potential NULL deref (Peter Zijlstra)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35065319]
- Use inflight IO in io acct of high latency devices (Gulam Mohamed) [Orabug: 35475691]
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028026] {CVE-2023-5178}

[5.4.17-2136.326.3.el7uek]
- LTS tag: v5.4.259 (Sherry Yang)
- xfrm6: fix inet6_dev refcount underflow problem (Zhang Changzhong)
- Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name (Kees Cook)
- Bluetooth: hci_sock: fix slab oob read in create_monitor_event (Edward AD)
- phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime PM for remove (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime disable on probe (Tony Lindgren)
- ASoC: pxa: fix a memory leak in probe() (Dan Carpenter)
- gpio: vf610: set value before the direction to avoid a glitch (Haibo Chen)
- s390/pci: fix iommu bitmap allocation (Niklas Schnelle)
- perf: Disallow mis-matched inherited group reads (Peter Zijlstra)
- USB: serial: option: add Fibocom to DELL custom modem FM101R-GL (Puliang Lu)
- USB: serial: option: add entry for Sierra EM9191 with new firmware (Benoît Monin)
- USB: serial: option: add Telit LE910C4-WWX 0x1035 composition (Fabio Porcedda)
- ACPI: irq: Fix incorrect return value in acpi_register_gsi() (Sunil V L)
- Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" (Andy Shevchenko)
- mmc: core: Capture correct oemid-bits for eMMC cards (Avri Altman)
- mmc: core: sdio: hold retuning if sdio in 1-bit mode (Haibo Chen)
- mtd: physmap-core: Restore map_rom fallback (Geert Uytterhoeven)
- mtd: spinand: micron: correct bitmask for ecc status (Martin Kurbanov)
- mtd: rawnand: qcom: Unmap the right resource upon probe failure (Bibek Kumar Patro)
- Bluetooth: hci_event: Fix using memcmp when comparing keys (Luiz Augusto von Dentz)
- HID: multitouch: Add required quirk for Synaptics 0xcd7e device (Rahul Rameshbabu)
- btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c (Josef Bacik)
- drm: panel-orientation-quirks: Add quirk for One Mix 2S (Kai Uwe Broulik)
- sky2: Make sure there is at least one frag_addr available (Kees Cook)
- regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" (Michał Mirosław)
- wifi: cfg80211: avoid leaking stack data into trace (Benjamin Berg)
- wifi: mac80211: allow transmitting EAPOL frames with tainted key (Wen Gong)
- Bluetooth: hci_core: Fix build warnings (Luiz Augusto von Dentz)
- Bluetooth: Avoid redundant authentication (Ying Hsu)
- HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event (Ma Ke)
- tracing: relax trace_event_eval_update() execution with cond_resched() (Clément Léger)
- ata: libata-eh: Fix compilation warning in ata_eh_link_report() (Damien Le Moal)
- gpio: timberdale: Fix potential deadlock on &tgpio->lock (Chengfeng Ye)
- overlayfs: set ctime when setting mtime and atime (Jeff Layton)
- i2c: mux: Avoid potential false error message in i2c_mux_add_adapter (Heiner Kallweit)
- btrfs: initialize start_slot in btrfs_log_prealloc_extents (Josef Bacik)
- btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (Filipe Manana)
- ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone (Tony Lindgren)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA (Hans de Goede)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (Paul Menzel)
- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (Tamim Khan)
- ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks (Hans de Goede)
- ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA (Tamim Khan)
- ACPI: resource: Add ASUS model S5402ZA to quirks (Kellen Renshaw)
- ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA (Tamim Khan)
- ACPI: resources: Add DMI-based legacy IRQ override quirk (Hui Wang)
- ACPI: Drop acpi_dev_irqresource_disabled() (John Garry)
- resource: Add irqresource_disabled() (John Garry)
- net: pktgen: Fix interface flags printing (Gavrilov Ilia)
- netfilter: nft_set_rbtree: .deactivate fails if element has expired (Pablo Neira Ayuso)
- neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section (Geert Uytterhoeven)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- i40e: prevent crash on probe if hw registers have invalid values (Michal Schmidt)
- net: usb: smsc95xx: Fix an error code in smsc95xx_reset() (Dan Carpenter)
- ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr (Eric Dumazet)
- tun: prevent negative ifindex (Eric Dumazet)
- tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb (Eric Dumazet)
- tcp: fix excessive TLP and RACK timeouts from HZ rounding (Neal Cardwell)
- net: rfkill: gpio: prevent value glitch during probe (Josua Mayer)
- net: ipv6: fix return value check in esp_remove_trailer (Ma Ke)
- net: ipv4: fix return value check in esp_remove_trailer (Ma Ke)
- xfrm: interface: use DEV_STATS_INC() (Eric Dumazet)
- xfrm: fix a data-race in xfrm_gen_index() (Eric Dumazet)
- qed: fix LL2 RX buffer allocation (Manish Chopra)
- netfilter: nft_payload: fix wrong mac header matching (Florian Westphal)
- KVM: x86: Mask LVTPC when handling a PMI (Jim Mattson)
- regmap: fix NULL deref on lookup (Johan Hovold)
- nfc: nci: fix possible NULL pointer dereference in send_acknowledge() (Krzysztof Kozlowski)
- ice: fix over-shifted variable (Jesse Brandeburg)
- Bluetooth: avoid memcmp() out of bounds warning (Arnd Bergmann)
- Bluetooth: hci_event: Fix coding style (Luiz Augusto von Dentz)
- Bluetooth: vhci: Fix race when opening vhci device (Arkadiusz Bokowy)
- Bluetooth: Fix a refcnt underflow problem for hci_conn (Ziyang Xuan)
- Bluetooth: Reject connection with the device which has same BD_ADDR (Lee, Chun-Yi)
- Bluetooth: hci_event: Ignore NULL link key (Lee, Chun-Yi)
- usb: hub: Guard against accesses to uninitialized BOS descriptors (Ricardo Cañuelo)
- Documentation: sysctl: align cells in second content column (Bagas Sanjaya)
- dev_forward_skb: do not scrub skb mark within the same name space (Nicolas Dichtel)
- ravb: Fix use-after-free issue in ravb_tx_timeout_work() (Yoshihiro Shimoda)
- powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() (Christophe Leroy)
- powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE (Christophe Leroy)
- dmaengine: mediatek: Fix deadlock caused by synchronize_irq() (Duoming Zhou)
- x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (Borislav Petkov (AMD))
- usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call (Krishna Kurapati)
- usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta)
- pinctrl: avoid unsafe code pattern in find_pinctrl() (Dmitry Torokhov)
- cgroup: Remove duplicates in cgroup v1 tasks file (Michal Koutný)
- Input: xpad - add PXN V900 support (Matthias Berndt)
- Input: psmouse - fix fast_reconnect function for PS/2 mode (Jeffery Miller)
- Input: powermate - fix use-after-free in powermate_config_complete (Javier Carrasco)
- ceph: fix incorrect revoked caps assert in ceph_fill_file_size() (Xiubo Li)
- libceph: use kernel_connect() (Jordan Rife)
- mcb: remove is_added flag from mcb_device struct (Jorge Sanjuan Garcia)
- iio: pressure: ms5611: ms5611_prom_is_valid false negative bug (Alexander Zangerl)
- iio: pressure: dps310: Adjust Timeout Settings (Lakshmi Yadlapati)
- iio: pressure: bmp280: Fix NULL pointer exception (Phil Elwell)
- usb: musb: Modify the "HWVers" register address (Xingxing Luo)
- usb: musb: Get the musb_qh poniter after musb_giveback (Xingxing Luo)
- usb: dwc3: Soft reset phy on probe for host (Thinh Nguyen)
- net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read (Javier Carrasco)
- usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer (Wesley Cheng)
- dmaengine: stm32-mdma: abort resume if no ongoing transfer (Amelie Delaunay)
- workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() (Waiman Long)
- nfc: nci: assert requested protocol is valid (Jeremy Cline)
- net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (Eric Dumazet)
- ixgbe: fix crash with empty VF macvlan list (Dan Carpenter)
- drm/vmwgfx: fix typo of sizeof argument (Konstantin Meskhidze)
- xen-netback: use default TX queue size for vifs (Roger Pau Monne)
- mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type (Dan Carpenter)
- ieee802154: ca8210: Fix a potential UAF in ca8210_probe (Dinghao Liu)
- ravb: Fix up dma_free_coherent() call in ravb_remove() (Yoshihiro Shimoda)
- drm/msm/dsi: skip the wait for video mode done if not applicable (Abhinav Kumar)
- drm: etvnaviv: fix bad backport leading to warning (Martin Fuzzey)
- quota: Fix slow quotaoff (Jan Kara)
- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect (Hans de Goede)
- pwm: hibvt: Explicitly set .polarity in .get_state() (Uwe Kleine-König)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- RDMA/cxgb4: Check skb value for failure to allocate (Artem Chernyshev)
- LTS tag: v5.4.258 (Sherry Yang)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross)
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- NFS: Fix a race in __nfs_list_for_each_server() (Trond Myklebust)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- cpupower: add Makefile dependencies for install targets (Ivan Babrou)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- NFS: Add a helper nfs_client_for_each_server() (Trond Myklebust)
- NFS4: Trace state recovery operation (Chuck Lever)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann)
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann)
- i40e: improve locking of mac_filter_hash (Stefan Assmann)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- drm/amd/display: Fix LFC multiplier changing erratically (Anthony Koo)
- drm/amd/display: Reinstate LFC optimization (Amanda Liu)
- scsi: qla2xxx: Fix deletion race condition (Quinn Tran)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Fix warning message and call stack during rmmod i40e driver (Karen Sornek)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- selftests/tls: Add {} to avoid static checker warning (Kees Cook)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: mark group as trimmed only if it was fully scanned (Dmitry Monakhov)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ext4: add new helper interface ext4_try_to_trim_range() (Wang Jianchao)
- ext4: remove the 'group' parameter of ext4_trim_extent (Wang Jianchao)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)

[5.4.17-2136.326.2.el7uek]
- mm/memcg: optimize memory.numa_stat like memory.stat (Shakeel Butt) [Orabug: 35879962]

[5.4.17-2136.326.1.el7uek]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843809]
- mm: mapping over a reserved va range may unmap twice (Anthony Yznaga) [Orabug: 35843809]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916078]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926165]



ELSA-2023-13049 Important: Oracle Linux 8 Unbreakable Enterprise kernel-container security update


Oracle Linux Security Advisory ELSA-2023-13049

http://linux.oracle.com/errata/ELSA-2023-13049.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-container-5.4.17-2136.326.6.el8.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.326.6.el8.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-container-5.4.17-2136.326.6.el8.src.rpm

Related CVEs:

CVE-2023-5178

Description of changes:

[5.4.17-2136.326.6.el8]
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 35914789]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 35914789]

[5.4.17-2136.326.5.el8]
- Revert "tracing: Increase trace array ref count on enable and filter files" (Sherry Yang) [Orabug: 36059945]
- xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky) [Orabug: 36050498]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36049644]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36049644]

[5.4.17-2136.326.4.el8]
- Revert "mmc: core: Capture correct oemid-bits for eMMC cards" (Dominique Martinet)
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- perf/core: Fix potential NULL deref (Peter Zijlstra)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35065319]
- Use inflight IO in io acct of high latency devices (Gulam Mohamed) [Orabug: 35475691]
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028026] {CVE-2023-5178}

[5.4.17-2136.326.3.el8]
- LTS tag: v5.4.259 (Sherry Yang)
- xfrm6: fix inet6_dev refcount underflow problem (Zhang Changzhong)
- Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name (Kees Cook)
- Bluetooth: hci_sock: fix slab oob read in create_monitor_event (Edward AD)
- phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime PM for remove (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime disable on probe (Tony Lindgren)
- ASoC: pxa: fix a memory leak in probe() (Dan Carpenter)
- gpio: vf610: set value before the direction to avoid a glitch (Haibo Chen)
- s390/pci: fix iommu bitmap allocation (Niklas Schnelle)
- perf: Disallow mis-matched inherited group reads (Peter Zijlstra)
- USB: serial: option: add Fibocom to DELL custom modem FM101R-GL (Puliang Lu)
- USB: serial: option: add entry for Sierra EM9191 with new firmware (Benoît Monin)
- USB: serial: option: add Telit LE910C4-WWX 0x1035 composition (Fabio Porcedda)
- ACPI: irq: Fix incorrect return value in acpi_register_gsi() (Sunil V L)
- Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" (Andy Shevchenko)
- mmc: core: Capture correct oemid-bits for eMMC cards (Avri Altman)
- mmc: core: sdio: hold retuning if sdio in 1-bit mode (Haibo Chen)
- mtd: physmap-core: Restore map_rom fallback (Geert Uytterhoeven)
- mtd: spinand: micron: correct bitmask for ecc status (Martin Kurbanov)
- mtd: rawnand: qcom: Unmap the right resource upon probe failure (Bibek Kumar Patro)
- Bluetooth: hci_event: Fix using memcmp when comparing keys (Luiz Augusto von Dentz)
- HID: multitouch: Add required quirk for Synaptics 0xcd7e device (Rahul Rameshbabu)
- btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c (Josef Bacik)
- drm: panel-orientation-quirks: Add quirk for One Mix 2S (Kai Uwe Broulik)
- sky2: Make sure there is at least one frag_addr available (Kees Cook)
- regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" (Michał Mirosław)
- wifi: cfg80211: avoid leaking stack data into trace (Benjamin Berg)
- wifi: mac80211: allow transmitting EAPOL frames with tainted key (Wen Gong)
- Bluetooth: hci_core: Fix build warnings (Luiz Augusto von Dentz)
- Bluetooth: Avoid redundant authentication (Ying Hsu)
- HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event (Ma Ke)
- tracing: relax trace_event_eval_update() execution with cond_resched() (Clément Léger)
- ata: libata-eh: Fix compilation warning in ata_eh_link_report() (Damien Le Moal)
- gpio: timberdale: Fix potential deadlock on &tgpio->lock (Chengfeng Ye)
- overlayfs: set ctime when setting mtime and atime (Jeff Layton)
- i2c: mux: Avoid potential false error message in i2c_mux_add_adapter (Heiner Kallweit)
- btrfs: initialize start_slot in btrfs_log_prealloc_extents (Josef Bacik)
- btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (Filipe Manana)
- ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone (Tony Lindgren)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA (Hans de Goede)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (Paul Menzel)
- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (Tamim Khan)
- ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks (Hans de Goede)
- ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA (Tamim Khan)
- ACPI: resource: Add ASUS model S5402ZA to quirks (Kellen Renshaw)
- ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA (Tamim Khan)
- ACPI: resources: Add DMI-based legacy IRQ override quirk (Hui Wang)
- ACPI: Drop acpi_dev_irqresource_disabled() (John Garry)
- resource: Add irqresource_disabled() (John Garry)
- net: pktgen: Fix interface flags printing (Gavrilov Ilia)
- netfilter: nft_set_rbtree: .deactivate fails if element has expired (Pablo Neira Ayuso)
- neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section (Geert Uytterhoeven)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- i40e: prevent crash on probe if hw registers have invalid values (Michal Schmidt)
- net: usb: smsc95xx: Fix an error code in smsc95xx_reset() (Dan Carpenter)
- ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr (Eric Dumazet)
- tun: prevent negative ifindex (Eric Dumazet)
- tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb (Eric Dumazet)
- tcp: fix excessive TLP and RACK timeouts from HZ rounding (Neal Cardwell)
- net: rfkill: gpio: prevent value glitch during probe (Josua Mayer)
- net: ipv6: fix return value check in esp_remove_trailer (Ma Ke)
- net: ipv4: fix return value check in esp_remove_trailer (Ma Ke)
- xfrm: interface: use DEV_STATS_INC() (Eric Dumazet)
- xfrm: fix a data-race in xfrm_gen_index() (Eric Dumazet)
- qed: fix LL2 RX buffer allocation (Manish Chopra)
- netfilter: nft_payload: fix wrong mac header matching (Florian Westphal)
- KVM: x86: Mask LVTPC when handling a PMI (Jim Mattson)
- regmap: fix NULL deref on lookup (Johan Hovold)
- nfc: nci: fix possible NULL pointer dereference in send_acknowledge() (Krzysztof Kozlowski)
- ice: fix over-shifted variable (Jesse Brandeburg)
- Bluetooth: avoid memcmp() out of bounds warning (Arnd Bergmann)
- Bluetooth: hci_event: Fix coding style (Luiz Augusto von Dentz)
- Bluetooth: vhci: Fix race when opening vhci device (Arkadiusz Bokowy)
- Bluetooth: Fix a refcnt underflow problem for hci_conn (Ziyang Xuan)
- Bluetooth: Reject connection with the device which has same BD_ADDR (Lee, Chun-Yi) {CVE-2020-26555}
- Bluetooth: hci_event: Ignore NULL link key (Lee, Chun-Yi) {CVE-2020-26555}
- usb: hub: Guard against accesses to uninitialized BOS descriptors (Ricardo Cañuelo)
- Documentation: sysctl: align cells in second content column (Bagas Sanjaya)
- dev_forward_skb: do not scrub skb mark within the same name space (Nicolas Dichtel)
- ravb: Fix use-after-free issue in ravb_tx_timeout_work() (Yoshihiro Shimoda)
- powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() (Christophe Leroy)
- powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE (Christophe Leroy)
- dmaengine: mediatek: Fix deadlock caused by synchronize_irq() (Duoming Zhou)
- x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (Borislav Petkov (AMD))
- usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call (Krishna Kurapati)
- usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta)
- cgroup: Remove duplicates in cgroup v1 tasks file (Michal Koutný)
- Input: xpad - add PXN V900 support (Matthias Berndt)
- Input: psmouse - fix fast_reconnect function for PS/2 mode (Jeffery Miller)
- Input: powermate - fix use-after-free in powermate_config_complete (Javier Carrasco)
- ceph: fix incorrect revoked caps assert in ceph_fill_file_size() (Xiubo Li)
- libceph: use kernel_connect() (Jordan Rife)
- mcb: remove is_added flag from mcb_device struct (Jorge Sanjuan Garcia)
- iio: pressure: ms5611: ms5611_prom_is_valid false negative bug (Alexander Zangerl)
- iio: pressure: dps310: Adjust Timeout Settings (Lakshmi Yadlapati)
- iio: pressure: bmp280: Fix NULL pointer exception (Phil Elwell)
- usb: musb: Modify the "HWVers" register address (Xingxing Luo)
- usb: musb: Get the musb_qh poniter after musb_giveback (Xingxing Luo)
- usb: dwc3: Soft reset phy on probe for host (Thinh Nguyen)
- net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read (Javier Carrasco)
- usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer (Wesley Cheng)
- dmaengine: stm32-mdma: abort resume if no ongoing transfer (Amelie Delaunay)
- workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() (Waiman Long)
- nfc: nci: assert requested protocol is valid (Jeremy Cline)
- net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (Eric Dumazet)
- ixgbe: fix crash with empty VF macvlan list (Dan Carpenter)
- drm/vmwgfx: fix typo of sizeof argument (Konstantin Meskhidze)
- xen-netback: use default TX queue size for vifs (Roger Pau Monne)
- mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type (Dan Carpenter)
- ieee802154: ca8210: Fix a potential UAF in ca8210_probe (Dinghao Liu)
- ravb: Fix up dma_free_coherent() call in ravb_remove() (Yoshihiro Shimoda)
- drm/msm/dsi: skip the wait for video mode done if not applicable (Abhinav Kumar)
- drm: etvnaviv: fix bad backport leading to warning (Martin Fuzzey)
- quota: Fix slow quotaoff (Jan Kara)
- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect (Hans de Goede)
- pwm: hibvt: Explicitly set .polarity in .get_state() (Uwe Kleine-König)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- RDMA/cxgb4: Check skb value for failure to allocate (Artem Chernyshev)
- LTS tag: v5.4.258 (Sherry Yang)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross) {CVE-2023-34324}
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- NFS: Fix a race in __nfs_list_for_each_server() (Trond Myklebust)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- cpupower: add Makefile dependencies for install targets (Ivan Babrou)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- NFS: Add a helper nfs_client_for_each_server() (Trond Myklebust)
- NFS4: Trace state recovery operation (Chuck Lever)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann)
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann)
- i40e: improve locking of mac_filter_hash (Stefan Assmann)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- drm/amd/display: Fix LFC multiplier changing erratically (Anthony Koo)
- drm/amd/display: Reinstate LFC optimization (Amanda Liu)
- scsi: qla2xxx: Fix deletion race condition (Quinn Tran)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Fix warning message and call stack during rmmod i40e driver (Karen Sornek)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- selftests/tls: Add {} to avoid static checker warning (Kees Cook)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: mark group as trimmed only if it was fully scanned (Dmitry Monakhov)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ext4: add new helper interface ext4_try_to_trim_range() (Wang Jianchao)
- ext4: remove the 'group' parameter of ext4_trim_extent (Wang Jianchao)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)
- mm/memcg: optimize memory.numa_stat like memory.stat (Shakeel Butt) [Orabug: 35879962]

[5.4.17-2136.326.1.el8]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843809]
- mm: mapping over a reserved va range may unmap twice (Anthony Yznaga) [Orabug: 35843809]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916078]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926165]



ELSA-2023-13044 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2023-13044

http://linux.oracle.com/errata/ELSA-2023-13044.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.326.6.el8uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.326.6.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.326.6.el8uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.326.6.el8uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.326.6.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.326.6.el8uek.src.rpm

Related CVEs:

CVE-2023-5178

Description of changes:

[5.4.17-2136.326.6.el8uek]
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 35914789]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 35914789]

[5.4.17-2136.326.5.el8uek]
- Revert "tracing: Increase trace array ref count on enable and filter files" (Sherry Yang) [Orabug: 36059945]
- xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky) [Orabug: 36050498]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36049644]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36049644]

[5.4.17-2136.326.4.el8uek]
- Revert "mmc: core: Capture correct oemid-bits for eMMC cards" (Dominique Martinet)
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- perf/core: Fix potential NULL deref (Peter Zijlstra)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35065319]
- Use inflight IO in io acct of high latency devices (Gulam Mohamed) [Orabug: 35475691]
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028026] {CVE-2023-5178}

[5.4.17-2136.326.3.el8uek]
- LTS tag: v5.4.259 (Sherry Yang)
- xfrm6: fix inet6_dev refcount underflow problem (Zhang Changzhong)
- Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name (Kees Cook)
- Bluetooth: hci_sock: fix slab oob read in create_monitor_event (Edward AD)
- phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime PM for remove (Tony Lindgren)
- phy: mapphone-mdm6600: Fix runtime disable on probe (Tony Lindgren)
- ASoC: pxa: fix a memory leak in probe() (Dan Carpenter)
- gpio: vf610: set value before the direction to avoid a glitch (Haibo Chen)
- s390/pci: fix iommu bitmap allocation (Niklas Schnelle)
- perf: Disallow mis-matched inherited group reads (Peter Zijlstra)
- USB: serial: option: add Fibocom to DELL custom modem FM101R-GL (Puliang Lu)
- USB: serial: option: add entry for Sierra EM9191 with new firmware (Benoît Monin)
- USB: serial: option: add Telit LE910C4-WWX 0x1035 composition (Fabio Porcedda)
- ACPI: irq: Fix incorrect return value in acpi_register_gsi() (Sunil V L)
- Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" (Andy Shevchenko)
- mmc: core: Capture correct oemid-bits for eMMC cards (Avri Altman)
- mmc: core: sdio: hold retuning if sdio in 1-bit mode (Haibo Chen)
- mtd: physmap-core: Restore map_rom fallback (Geert Uytterhoeven)
- mtd: spinand: micron: correct bitmask for ecc status (Martin Kurbanov)
- mtd: rawnand: qcom: Unmap the right resource upon probe failure (Bibek Kumar Patro)
- Bluetooth: hci_event: Fix using memcmp when comparing keys (Luiz Augusto von Dentz)
- HID: multitouch: Add required quirk for Synaptics 0xcd7e device (Rahul Rameshbabu)
- btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c (Josef Bacik)
- drm: panel-orientation-quirks: Add quirk for One Mix 2S (Kai Uwe Broulik)
- sky2: Make sure there is at least one frag_addr available (Kees Cook)
- regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" (Michał Mirosław)
- wifi: cfg80211: avoid leaking stack data into trace (Benjamin Berg)
- wifi: mac80211: allow transmitting EAPOL frames with tainted key (Wen Gong)
- Bluetooth: hci_core: Fix build warnings (Luiz Augusto von Dentz)
- Bluetooth: Avoid redundant authentication (Ying Hsu)
- HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event (Ma Ke)
- tracing: relax trace_event_eval_update() execution with cond_resched() (Clément Léger)
- ata: libata-eh: Fix compilation warning in ata_eh_link_report() (Damien Le Moal)
- gpio: timberdale: Fix potential deadlock on &tgpio->lock (Chengfeng Ye)
- overlayfs: set ctime when setting mtime and atime (Jeff Layton)
- i2c: mux: Avoid potential false error message in i2c_mux_add_adapter (Heiner Kallweit)
- btrfs: initialize start_slot in btrfs_log_prealloc_extents (Josef Bacik)
- btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 (Filipe Manana)
- ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone (Tony Lindgren)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA (Hans de Goede)
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (Paul Menzel)
- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (Tamim Khan)
- ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks (Hans de Goede)
- ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA (Tamim Khan)
- ACPI: resource: Add ASUS model S5402ZA to quirks (Kellen Renshaw)
- ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA (Tamim Khan)
- ACPI: resources: Add DMI-based legacy IRQ override quirk (Hui Wang)
- ACPI: Drop acpi_dev_irqresource_disabled() (John Garry)
- resource: Add irqresource_disabled() (John Garry)
- net: pktgen: Fix interface flags printing (Gavrilov Ilia)
- netfilter: nft_set_rbtree: .deactivate fails if element has expired (Pablo Neira Ayuso)
- neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section (Geert Uytterhoeven)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- i40e: prevent crash on probe if hw registers have invalid values (Michal Schmidt)
- net: usb: smsc95xx: Fix an error code in smsc95xx_reset() (Dan Carpenter)
- ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr (Eric Dumazet)
- tun: prevent negative ifindex (Eric Dumazet)
- tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb (Eric Dumazet)
- tcp: fix excessive TLP and RACK timeouts from HZ rounding (Neal Cardwell)
- net: rfkill: gpio: prevent value glitch during probe (Josua Mayer)
- net: ipv6: fix return value check in esp_remove_trailer (Ma Ke)
- net: ipv4: fix return value check in esp_remove_trailer (Ma Ke)
- xfrm: interface: use DEV_STATS_INC() (Eric Dumazet)
- xfrm: fix a data-race in xfrm_gen_index() (Eric Dumazet)
- qed: fix LL2 RX buffer allocation (Manish Chopra)
- netfilter: nft_payload: fix wrong mac header matching (Florian Westphal)
- KVM: x86: Mask LVTPC when handling a PMI (Jim Mattson)
- regmap: fix NULL deref on lookup (Johan Hovold)
- nfc: nci: fix possible NULL pointer dereference in send_acknowledge() (Krzysztof Kozlowski)
- ice: fix over-shifted variable (Jesse Brandeburg)
- Bluetooth: avoid memcmp() out of bounds warning (Arnd Bergmann)
- Bluetooth: hci_event: Fix coding style (Luiz Augusto von Dentz)
- Bluetooth: vhci: Fix race when opening vhci device (Arkadiusz Bokowy)
- Bluetooth: Fix a refcnt underflow problem for hci_conn (Ziyang Xuan)
- Bluetooth: Reject connection with the device which has same BD_ADDR (Lee, Chun-Yi)
- Bluetooth: hci_event: Ignore NULL link key (Lee, Chun-Yi)
- usb: hub: Guard against accesses to uninitialized BOS descriptors (Ricardo Cañuelo)
- Documentation: sysctl: align cells in second content column (Bagas Sanjaya)
- dev_forward_skb: do not scrub skb mark within the same name space (Nicolas Dichtel)
- ravb: Fix use-after-free issue in ravb_tx_timeout_work() (Yoshihiro Shimoda)
- powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() (Christophe Leroy)
- powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE (Christophe Leroy)
- dmaengine: mediatek: Fix deadlock caused by synchronize_irq() (Duoming Zhou)
- x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs (Borislav Petkov (AMD))
- usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call (Krishna Kurapati)
- usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta)
- pinctrl: avoid unsafe code pattern in find_pinctrl() (Dmitry Torokhov)
- cgroup: Remove duplicates in cgroup v1 tasks file (Michal Koutný)
- Input: xpad - add PXN V900 support (Matthias Berndt)
- Input: psmouse - fix fast_reconnect function for PS/2 mode (Jeffery Miller)
- Input: powermate - fix use-after-free in powermate_config_complete (Javier Carrasco)
- ceph: fix incorrect revoked caps assert in ceph_fill_file_size() (Xiubo Li)
- libceph: use kernel_connect() (Jordan Rife)
- mcb: remove is_added flag from mcb_device struct (Jorge Sanjuan Garcia)
- iio: pressure: ms5611: ms5611_prom_is_valid false negative bug (Alexander Zangerl)
- iio: pressure: dps310: Adjust Timeout Settings (Lakshmi Yadlapati)
- iio: pressure: bmp280: Fix NULL pointer exception (Phil Elwell)
- usb: musb: Modify the "HWVers" register address (Xingxing Luo)
- usb: musb: Get the musb_qh poniter after musb_giveback (Xingxing Luo)
- usb: dwc3: Soft reset phy on probe for host (Thinh Nguyen)
- net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read (Javier Carrasco)
- usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer (Wesley Cheng)
- dmaengine: stm32-mdma: abort resume if no ongoing transfer (Amelie Delaunay)
- workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() (Waiman Long)
- nfc: nci: assert requested protocol is valid (Jeremy Cline)
- net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (Eric Dumazet)
- ixgbe: fix crash with empty VF macvlan list (Dan Carpenter)
- drm/vmwgfx: fix typo of sizeof argument (Konstantin Meskhidze)
- xen-netback: use default TX queue size for vifs (Roger Pau Monne)
- mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type (Dan Carpenter)
- ieee802154: ca8210: Fix a potential UAF in ca8210_probe (Dinghao Liu)
- ravb: Fix up dma_free_coherent() call in ravb_remove() (Yoshihiro Shimoda)
- drm/msm/dsi: skip the wait for video mode done if not applicable (Abhinav Kumar)
- drm: etvnaviv: fix bad backport leading to warning (Martin Fuzzey)
- quota: Fix slow quotaoff (Jan Kara)
- HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect (Hans de Goede)
- pwm: hibvt: Explicitly set .polarity in .get_state() (Uwe Kleine-König)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- RDMA/cxgb4: Check skb value for failure to allocate (Artem Chernyshev)
- LTS tag: v5.4.258 (Sherry Yang)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross)
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- NFS: Fix a race in __nfs_list_for_each_server() (Trond Myklebust)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- cpupower: add Makefile dependencies for install targets (Ivan Babrou)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- NFS: Add a helper nfs_client_for_each_server() (Trond Myklebust)
- NFS4: Trace state recovery operation (Chuck Lever)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc (Stefan Assmann)
- i40e: always propagate error value in i40e_set_vsi_promisc() (Stefan Assmann)
- i40e: improve locking of mac_filter_hash (Stefan Assmann)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- drm/amd/display: Fix LFC multiplier changing erratically (Anthony Koo)
- drm/amd/display: Reinstate LFC optimization (Amanda Liu)
- scsi: qla2xxx: Fix deletion race condition (Quinn Tran)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Fix warning message and call stack during rmmod i40e driver (Karen Sornek)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- selftests/tls: Add {} to avoid static checker warning (Kees Cook)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: mark group as trimmed only if it was fully scanned (Dmitry Monakhov)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ext4: add new helper interface ext4_try_to_trim_range() (Wang Jianchao)
- ext4: remove the 'group' parameter of ext4_trim_extent (Wang Jianchao)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)

[5.4.17-2136.326.2.el8uek]
- mm/memcg: optimize memory.numa_stat like memory.stat (Shakeel Butt) [Orabug: 35879962]

[5.4.17-2136.326.1.el8uek]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843809]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843809]
- mm: mapping over a reserved va range may unmap twice (Anthony Yznaga) [Orabug: 35843809]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843809]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916078]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926165]



ELSA-2023-13043 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2023-13043

http://linux.oracle.com/errata/ELSA-2023-13043.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-core-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-debug-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-devel-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-doc-5.15.0-201.135.6.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-container-5.15.0-201.135.6.el8uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-201.135.6.el8uek.x86_64.rpm

aarch64:
bpftool-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-core-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-debug-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-devel-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-doc-5.15.0-201.135.6.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-container-5.15.0-201.135.6.el8uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-201.135.6.el8uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.15.0-201.135.6.el8uek.src.rpm

Related CVEs:

CVE-2023-3159
CVE-2023-4244
CVE-2023-42752
CVE-2023-42756
CVE-2023-45871
CVE-2023-4623
CVE-2023-4921
CVE-2023-5090
CVE-2023-5178
CVE-2023-5197

Description of changes:

[5.15.0-201.135.6.el8uek]
- Revert ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- netfilter: nf_tables: split async and sync catchall in two functions (Pablo Neira Ayuso)
- netfilter: nf_tables: remove catchall element in GC sync path (Pablo Neira Ayuso)
- scsi: mpt3sas: Fix loop logic (Ranjan Kumar)
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 36050011]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 36050011]
- tracing: Have trace_event_file have ref counters (Steven Rostedt (Google)) [Orabug: 36059972]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36039006]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36039006]
- audit: Apply special optimizations (Håkon Bugge) [Orabug: 36038149]
- audit: Vary struct audit_entry alignment (Håkon Bugge) [Orabug: 36038149]
- Revert "Revert "printk: Consolidate console deferred printing"" (Håkon Bugge) [Orabug: 36038149]

[5.15.0-201.135.5.el8uek]
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value (Ivan Vecera)
- firmware/imx-dsp: Fix use_after_free in imx_dsp_setup_channels() (Hao Ge)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server (Olga Kornievskaia)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- Revert "kernel/sched: Modify initial boot task idle setup" (Greg Kroah-Hartman)
- usb: cdns3: Modify the return value of cdns_set_active () to void when CONFIG_PM_SLEEP is disabled (Xiaolei Wang)
- quota: Fix slow quotaoff (Jan Kara)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028025] {CVE-2023-5178}

[5.15.0-201.135.4.el8uek]
- uek-rpm: Enable PDS_CORE and PDS_VFIO drivers (Joao Martins) [Orabug: 35424097]
- pds_core: use correct index to mask irq (Shannon Nelson) [Orabug: 35424097]
- amd/pds_core: core: No need for Null pointer check before kfree (Bragatheswaran Manickavel) [Orabug: 35424097]
- pds_core: add an error code check in pdsc_dl_info_get (Su Hui) [Orabug: 35424097]
- pds_core: devlink health: use retained error fmsg API (Przemek Kitszel) [Orabug: 35424097]
- pds_core: add attempts to fix broken PCI (Shannon Nelson) [Orabug: 35424097]
- pds_core: implement pci reset handlers (Shannon Nelson) [Orabug: 35424097]
- pds_core: keep viftypes table across reset (Shannon Nelson) [Orabug: 35424097]
- pds_core: check health in devcmd wait (Shannon Nelson) [Orabug: 35424097]
- vfio/pds: Use proper PF device access helper (Shixiong Ou) [Orabug: 35424097]
- vfio/pds: Add missing PCI_IOV depends (Shixiong Ou) [Orabug: 35424097]
- pds_core: pass opcode to devcmd_wait (Shannon Nelson) [Orabug: 35424097]
- pds_core: check for work queue before use (Shannon Nelson) [Orabug: 35424097]
- pds_core: no reset command for VF (Shannon Nelson) [Orabug: 35424097]
- pds_core: no health reporter in VF (Shannon Nelson) [Orabug: 35424097]
- pds_core: protect devlink callbacks from fw_down state (Shannon Nelson) [Orabug: 35424097]
- vfio/pds: Send type for SUSPEND_STATUS command (Brett Creeley) [Orabug: 35424097]
- Revert "pds_core: Fix some kernel-doc comments" (Jakub Kicinski) [Orabug: 35424097]
- pds_core: Fix some kernel-doc comments (Yang Li) [Orabug: 35424097]
- pds_core: remove redundant pci_clear_master() (Yu Liao) [Orabug: 35424097]
- vfio/pds: fix return value in pds_vfio_get_lm_file() (Yang Yingliang) [Orabug: 35424097]
- pds_core: Fix function header descriptions (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add Kconfig and documentation (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add support for firmware recovery (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add support for dirty page tracking (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add VFIO live migration support (Brett Creeley) [Orabug: 35424097]
- vfio/pds: register with the pds_core PF (Brett Creeley) [Orabug: 35424097]
- pds_core: Require callers of register/unregister to pass PF drvdata (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Initial support for pds VFIO driver (Brett Creeley) [Orabug: 35424097]
- vfio: Commonize combine_ranges for use in other VFIO drivers (Brett Creeley) [Orabug: 35424097]
- pds_core: Fix documentation for pds_client_register (Brett Creeley) [Orabug: 35424097]
- pds_core: Fix FW recovery detection (Brett Creeley) [Orabug: 35424097]
- pds_core: fix mutex double unlock in error path (Shannon Nelson) [Orabug: 35424097]
- pds_core: add AUXILIARY_BUS and NET_DEVLINK to Kconfig (Shannon Nelson) [Orabug: 35424097]
- pds_core: remove CONFIG_DEBUG_FS from makefile (Shannon Nelson) [Orabug: 35424097]
- pds_core: Kconfig and pds_core.rst (Shannon Nelson) [Orabug: 35424097]
- pds_core: publish events to the clients (Shannon Nelson) [Orabug: 35424097]
- pds_core: add the aux client API (Shannon Nelson) [Orabug: 35424097]
- pds_core: devlink params for enabling VIF support (Shannon Nelson) [Orabug: 35424097]
- pds_core: add auxiliary_bus devices (Shannon Nelson) [Orabug: 35424097]
- pds_core: add initial VF device handling (Shannon Nelson) [Orabug: 35424097]
- pds_core: set up the VIF definitions and defaults (Shannon Nelson) [Orabug: 35424097]
- pds_core: add FW update feature to devlink (Shannon Nelson) [Orabug: 35424097]
- pds_core: Add adminq processing and commands (Shannon Nelson) [Orabug: 35424097]
- pds_core: set up device and adminq (Shannon Nelson) [Orabug: 35424097]
- pds_core: add devlink health facilities (Shannon Nelson) [Orabug: 35424097]
- pds_core: health timer and workqueue (Shannon Nelson) [Orabug: 35424097]
- pds_core: add devcmd device interfaces (Shannon Nelson) [Orabug: 35424097]
- pds_core: initial framework for pds_core PF driver (Shannon Nelson) [Orabug: 35424097]
- vfio/mlx5: Use the new device life cycle helpers (Yi Liu) [Orabug: 35424097]
- vfio/pci: Use the new device life cycle helpers (Yi Liu) [Orabug: 35424097]
- vfio: Add helpers for unifying vfio_device life cycle (Kevin Tian) [Orabug: 35424097]
- net/rds: Always cancel heartbeat worker thread during conn destroy (Sharath Srinivasan) [Orabug: 35739389]
- x86: KVM: SVM: always update the x2avic msr interception (Maxim Levitsky) [Orabug: 35857365] {CVE-2023-5090}
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35896266]
- hugetlb: disable HVO in Xen (Jane Chu) [Orabug: 35904478]
- hugetlb: check for hugetlb folio before vmemmap_restore (Mike Kravetz) [Orabug: 35904478]
- hugetlb: batch TLB flushes when restoring vmemmap (Mike Kravetz) [Orabug: 35904478]
- hugetlb: batch TLB flushes when freeing vmemmap (Joao Martins) [Orabug: 35904478]
- hugetlb: batch PMD split for bulk vmemmap dedup (Joao Martins) [Orabug: 35904478]
- hugetlb: batch freeing of vmemmap pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: perform vmemmap restoration on a list of pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: perform vmemmap optimization on a list of pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: restructure pool allocations (Mike Kravetz) [Orabug: 35904478]
- hugetlb: optimize update_and_free_pages_bulk to avoid lock cycles (Mike Kravetz) [Orabug: 35904478]
- mm: hugetlb: skip initialization of gigantic tail struct pages if freed by HVO (Usama Arif) [Orabug: 35904478]
- memblock: introduce MEMBLOCK_RSRV_NOINIT flag (Usama Arif) [Orabug: 35904478]
- mm: pass nid to reserve_bootmem_region() (Yajun Deng) [Orabug: 35904478]
- mm/page_alloc: invert logic for early page initialisation checks (Mike Rapoport (IBM)) [Orabug: 35904478]
- memblock: add missing argument definition (Usama Arif) [Orabug: 35904478]
- memblock: pass memblock_type to memblock_setclr_flag (Usama Arif) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use nid of the head page to reallocate it (Usama Arif) [Orabug: 35904478]
- mm: hugetlb_vmemmap: allow alloc vmemmap pages fallback to other nodes (Yuan Can) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix hugetlb page number decrease failed on movable nodes (Yuan Can) [Orabug: 35904478]
- hugetlb: set hugetlb page flag before optimizing vmemmap (Mike Kravetz) [Orabug: 35904478]
- hugetlb: do not clear hugetlb dtor until allocating vmemmap (Mike Kravetz) [Orabug: 35904478]
- mm/vmemmap optimization: split hugetlb and devdax vmemmap optimization (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/vmemmap: improve vmemmap_can_optimize and allow architectures to override (Aneesh Kumar K.V) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix a race between vmemmap pmd split (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: provide stronger vmemmap allocation guarantees (Pasha Tatashin) [Orabug: 35904478]
- mm/hugetlb_vmemmap: rename ARCH_WANT_HUGETLB_PAGE_OPTIMIZE_VMEMMAP (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/vmemmap/devdax: fix kernel crash when probing devdax devices (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/hugetlb_vmemmap: fix hugetlb_vmemmap_sysctls.maxlen (Jane Chu) [Orabug: 35904478]
- mm: move most of core MM initialization to mm/mm_init.c (Mike Rapoport (IBM)) [Orabug: 35904478]
- memblock: Disable mirror feature if kernelcore is not specified (Ma Wupeng) [Orabug: 35904478]
- mm: hugetlb_vmemmap: simplify hugetlb_vmemmap_init() a bit (Muchun Song) [Orabug: 35904478]
- mm/hugetlb_vmemmap: remap head page to newly allocated page (Joao Martins) [Orabug: 35904478]
- mm: hugetlb_vmemmap: remove redundant list_del() (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: include missing linux/moduleparam.h (Vasily Gorbik) [Orabug: 35904478]
- hugetlb: freeze allocated pages before creating hugetlb pages (Mike Kravetz) [Orabug: 35904478]
- mm: hugetlb_vmemmap: simplify reset_struct_pages() (Muchun Song) [Orabug: 35904478]
- mm/hugetlb: make detecting shared pte more reliable (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix sysfs group leak in hugetlb_unregister_node() (Miaohe Lin) [Orabug: 35904478]
- mm: hugetlb_vmemmap: add missing smp_wmb() before set_pte_at() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix missing call to restore_reserve_on_error() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix WARN_ON(!kobj) in sysfs_create_group() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix incorrect update of max_huge_pages (Miaohe Lin) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use PTRS_PER_PTE instead of PMD_SIZE / PAGE_SIZE (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: move code comments to vmemmap_dedup.rst (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: improve hugetlb_vmemmap code readability (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: replace early_param() with core_param() (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: move vmemmap code related to HugeTLB to hugetlb_vmemmap.c (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: introduce the name HVO (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: optimize vmemmap_optimize_mode handling (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: delete hugetlb_optimize_vmemmap_enabled() (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: make hugetlb_optimize_vmemmap compatible with memmap_on_memory (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: enumerate all supported section flags (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix CONFIG_HUGETLB_PAGE_FREE_VMEMMAP_DEFAULT_ON (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: add hugetlb_optimize_vmemmap sysctl (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use kstrtobool for hugetlb_vmemmap param parsing (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: override memmap_on_memory when hugetlb_free_vmemmap=on (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: disable hugetlb_optimize_vmemmap when struct page crosses page boundaries (Muchun Song) [Orabug: 35904478]
- mm/hugetlb_vmemmap: move comment block to Documentation/vm (Joao Martins) [Orabug: 35904478]
- uek-rpm/ol8[9]: config switch update to keep default vmemmap optimization behavior (Jane Chu) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup CONFIG_HUGETLB_PAGE_FREE_VMEMMAP* (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup hugetlb_free_vmemmap_enabled* (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup hugetlb_vmemmap related functions (Muchun Song) [Orabug: 35904478]
- arm64: mm: hugetlb: enable HUGETLB_PAGE_FREE_VMEMMAP for arm64 (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: introduce ARCH_WANT_HUGETLB_PAGE_FREE_VMEMMAP (Muchun Song) [Orabug: 35904478]
- Consider inflight IO in io accounting for high latency devices (Gulam Mohamed) [Orabug: 35922334]
- EDAC/amd64: Add support for AMD family 1Ah models 00h-1Fh and 40h-4Fh (Avadhut Naik) [Orabug: 35925125]
- hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (Avadhut Naik) [Orabug: 35925125]
- x86/amd_nb: Add PCI IDs for AMD Family 1Ah-based models (Avadhut Naik) [Orabug: 35925125]
- EDAC/amd64: Add get_err_info() to pvt->ops (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split dump_misc_regs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split init_csrows() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split determine_edac_cap() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Rename f17h_determine_edac_ctl_cap() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Split setup_mci_misc_attrs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split ecc_enabled() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split read_mc_regs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split determine_memory_type() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split read_base_mask() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split prep_chip_selects() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Rework hw_info_{get,put} (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Merge struct amd64_family_type into struct amd64_pvt (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Do not discover ECC symbol size for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Drop dbam_to_cs() for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Split get_csrow_nr_pages() into dct/umc functions (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Rename debug_display_dimm_sizes() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Shut up an -Werror,-Wsometimes-uninitialized clang false positive (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove early_channel_count() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove PCI Function 0 (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove PCI Function 6 (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove scrub rate control for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Don't set up EDAC PCI control on Family 17h+ (Yazen Ghannam) [Orabug: 35925125]
- x86/amd_nb: Unexport amd_cache_northbridges() (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Add new register offset support and related changes (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Set memory type per DIMM (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Add support for family 19h, models 50h-5fh (Marc Bevand) [Orabug: 35925125]
- EDAC/amd64: Add context struct (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Allow for DF Indirect Broadcast reads (Yazen Ghannam) [Orabug: 35925125]
- x86/amd_nb, EDAC/amd64: Move DF Indirect Read to AMD64 EDAC (Yazen Ghannam) [Orabug: 35925125]
- x86/microcode/AMD: Rip out static buffers (Borislav Petkov (AMD)) [Orabug: 35925125]
- x86/microcode/amd: Remove unneeded pointer arithmetic (Nathan Fontenot) [Orabug: 35925125]
- x86/microcode/AMD: Get rid of __find_equiv_id() (Borislav Petkov (AMD)) [Orabug: 35925125]
- x86/microcode/AMD: Rename a couple of functions (Borislav Petkov) [Orabug: 35925125]
- crypto: ccp - Add support for PCI device 0x156E (John Allen) [Orabug: 35925125]
- crypto: ccp - Add support for PCI device 0x17E0 (Mario Limonciello) [Orabug: 35925125]
- sbsa_gwdt: Calculate timeout with 64-bit math (Darren Hart) [Orabug: 35968810]
- uek-rpm: Enable CONFIG_USBIP_VHCI_HCD and CONFIG_USBIP_HOST in UEK7 (Harshit Mogalapalli) [Orabug: 35994192]
- vfio/type1: Parameterize pgsize bitmap (Joao Martins) [Orabug: 36002436]
- vfio/type1: Parallel dirty scans with padata (Joao Martins) [Orabug: 36002436]
- iommu/iova_bitmap: Add remote mm_struct for iova_bitmap (Joao Martins) [Orabug: 36002436]
- vfio/type1: Advertise IOMMU dirty tracking support (Joao Martins) [Orabug: 36002436]
- vfio/type1: Avoid perpectual dirty when iommu supports (Joao Martins) [Orabug: 36002436]
- vfio/type1: Report dirty info from IOMMU (Joao Martins) [Orabug: 36002436]
- vfio/type1: Add hardware dirty tracking start/stop support (Joao Martins) [Orabug: 36002436]
- vfio/type1: Move start/stop dirty tracking to helpers (Joao Martins) [Orabug: 36002436]
- iommu/amd: Improve dirty read io-pgtable walker (Joao Martins) [Orabug: 36002436]
- iommu/amd: Access/Dirty bit support in IOPTEs (Joao Martins) [Orabug: 36002436]
- iommu: Add iommu_domain ops for dirty tracking (Joao Martins) [Orabug: 36002436]
- vfio: Move iova_bitmap into iommufd (Joao Martins) [Orabug: 36002436]

[5.15.0-201.135.3.el8uek]
- Revert "printk: Consolidate console deferred printing" (Sherry Yang) [Orabug: 35955850]

[5.15.0-201.135.2.el8uek]
- LTS Version: v5.15.135 (Jack Vogel)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- ksmbd: fix uaf in smb20_oplock_break_ack (luosili)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- RDMA/cma: Initialize ib_sa_multicast structure to 0 when join (Mark Zhang)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- of: dynamic: Fix potential memory leak in of_changeset_action() (Dan Carpenter)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- dm zoned: free dmz->ddev array in dmz_put_zoned_devices (Fedor Pchelkin)
- HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit (Srinivas Pandruvada)
- HID: sony: remove duplicate NULL check before calling usb_free_urb() (Jiri Kosina)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- tipc: fix a potential deadlock on &tx->lock (Chengfeng Ye)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- ipv4: Set offload_failed flag in fibmatch results (Benjamin Poirier)
- netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure (Florian Westphal)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- ibmveth: Remove condition to recompute TCP header checksum. (David Wilder)
- net: ethernet: ti: am65-cpsw: Fix error code in am65_cpsw_nuss_init_tx_chns() (Dan Carpenter)
- net: nfc: llcp: Add lock when modifying device list (Jeremy Cline)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent (Fabio Estevam)
- ptp: ocp: Fix error handling in ptp_ocp_device_init (Dinghao Liu)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets (Jakub Sitnicki)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig (Oleksandr Tymoshenko)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- bpf: Fix tr dereferencing (Leon Hwang)
- wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet (Pin-yen Lin)
- wifi: iwlwifi: mvm: Fix a memory corruption issue (Christophe JAILLET)
- iwlwifi: avoid void pointer arithmetic (Johannes Berg)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- HID: sony: Fix a potential memory leak in sony_probe() (Christophe JAILLET)
- arm64: Add Cortex-A520 CPU part definition (Rob Herring)
- drm/amd: Fix detection of _PR3 on the PCIe root port (Mario Limonciello)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- net: replace calls to sock->ops->connect() with kernel_connect() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- vringh: don't use vringh_kiov_advance() in vringh_iov_xfer() (Stefano Garzarella)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- Revert "clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz" (Greg Kroah-Hartman)
- block: fix use-after-free of q->q_usage_counter (Ming Lei)
- rbd: take header_rwsem in rbd_dev_refresh() only when updating (Ilya Dryomov)
- rbd: decouple parent info read-in from updating rbd_dev (Ilya Dryomov)
- rbd: decouple header read-in from updating rbd_dev->header (Ilya Dryomov)
- rbd: move rbd_dev_refresh() definition (Ilya Dryomov)
- iommu/arm-smmu-v3: Avoid constructing invalid range commands (Robin Murphy)
- iommu/arm-smmu-v3: Set TTL invalidation hint better (Robin Murphy)
- arm64: Avoid repeated AA64MMFR1_EL1 register read on pagefault path (Gabriel Krisman Bertazi)
- ring-buffer: Fix bytes info in per_cpu buffer stats (Zheng Yejian)
- ring-buffer: remove obsolete comment for free_buffer_page() (Vlastimil Babka)
- NFSv4: Fix a state manager thread deadlock regression (Trond Myklebust)
- NFS: rename nfs_client_kset to nfs_kset (Benjamin Coddington)
- NFS: Cleanup unused rpc_clnt variable (Benjamin Coddington)
- ASoC: tegra: Fix redundant PLLA and PLLA_OUT0 updates (Sameer Pujar)
- ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol (Sameer Pujar)
- spi: zynqmp-gqspi: fix clock imbalance on probe failure (Johan Hovold)
- spi: zynqmp-gqspi: Convert to platform remove callback returning void (Uwe Kleine-König)
- LTS Version: v5.15.134 (Jack Vogel)
- netfilter: nf_tables: fix kdoc warnings after gc rework (Florian Westphal)
- drm/meson: fix memory leak on ->hpd_notify callback (Jani Nikula)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- bpf: Fix BTF_ID symbol generation collision in tools/ (Nick Desaulniers)
- bpf: Fix BTF_ID symbol generation collision (Jiri Olsa)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- proc: nommu: /proc//maps: release mmap read lock (Ben Wolsieffer)
- Revert "SUNRPC dont update timeout value on connection reset" (Trond Myklebust)
- io_uring/fs: remove sqe->rw_flags checking from LINKAT (Jens Axboe)
- sched/rt: Fix live lock between select_fallback_rq() and RT push (Joel Fernandes (Google))
- kernel/sched: Modify initial boot task idle setup (Liam R. Howlett)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- netfilter: nf_tables: disallow rule removal from chain binding (Pablo Neira Ayuso) [Orabug: 35865117] {CVE-2023-5197}
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux" (Daniel Starke)
- misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to probe (Ricky WU)
- x86/srso: Add SRSO mitigation for Hygon processors (Pu Wen)
- iommu/arm-smmu-v3: Fix soft lockup triggered by arm_smmu_mm_invalidate_range (Nicolin Chen)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev (Irvin Cote)
- i40e: fix potential NULL pointer dereferencing of pf->vf i40e_sync_vsi_filters() (Andrii Staikov)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- nvme-pci: factor out a nvme_pci_alloc_dev helper (Christoph Hellwig)
- nvme-pci: factor the iod mempool creation into a helper (Christoph Hellwig)
- cgroup: Fix suspicious rcu_dereference_check() usage warning (Chengming Zhou)
- sched/cpuacct: Optimize away RCU read lock (Chengming Zhou)
- perf build: Define YYNOMEM as YYNOABORT for bison < 3.81 (Arnaldo Carvalho de Melo)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- powerpc/watchpoint: Disable pagefaults when getting user instruction (Benjamin Gray)
- powerpc/watchpoints: Disable preemption in thread_change_pc() (Benjamin Gray)
- media: vb2: frame_vector.c: replace WARN_ONCE with a comment (Hans Verkuil)
- ASoC: imx-rpmsg: Set ignore_pmdown_time for dai_link (Chancel Liu)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- ASoC: fsl: imx-pcm-rpmsg: Add SNDRV_PCM_INFO_BATCH flag (Shengjiu Wang)
- spi: stm32: add a delay before SPI disable (Valentin Caron)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- smb3: correct places where ENOTSUPP is used instead of preferred EOPNOTSUPP (Steve French)
- scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command (Michal Grzedzicki)
- scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command (Michal Grzedzicki)
- drm/amdgpu: Handle null atom context in VBIOS info ioctl (David Francis)
- drm/amd/display: Don't check registers, if using AUX BL control (Swapnil Patel)
- platform/mellanox: mlxbf-bootctl: add NET dependency into Kconfig (David Thompson)
- ring-buffer: Do not attempt to read past "commit" (Steven Rostedt (Google))
- selftests: fix dependency checker script (Ricardo B. Marliere)
- btrfs: improve error message after failure to add delayed dir index item (Filipe Manana)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock (Kiwoong Kim)
- scsi: qedf: Add synchronization between I/O completions and abort (Javed Hasan)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- spi: sun6i: fix race between DMA RX transfer completion and RX FIFO drain (Tobias Schramm)
- spi: sun6i: reduce DMA RX transfer width to single byte (Tobias Schramm)
- dma-debug: don't call __dma_entry_alloc_check_leak() under free_entries_lock (Sergey Senozhatsky)
- i2c: npcm7xx: Fix callback completion ordering (William A. Kennington III)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- soc: imx8m: Enable OCOTP clock for imx8mm before reading registers (Nathan Rossi)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- firmware: imx-dsp: Fix an error handling path in imx_dsp_setup_channels() (Christophe JAILLET)
- power: supply: ucs1002: fix error code in ucs1002_get_property() (Dan Carpenter)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- ARM: dts: ti: omap: Fix bandgap thermal cells addressing for omap3/4 (Tony Lindgren)
- ARM: dts: omap: correct indentation (Krzysztof Kozlowski)
- treewide: Replace GPLv2 boilerplate/reference with SPDX - gpl-2.0_56.RULE (part 1) (Thomas Gleixner)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- bus: ti-sysc: Fix missing AM35xx SoC matching (Adam Ford)
- bus: ti-sysc: Use fsleep() instead of usleep_range() in sysc_reset() (Julien Panis)
- drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet (Marek Vasut)
- MIPS: Alchemy: only build mmc support helpers if au1xmmc is enabled (Christoph Hellwig)
- btrfs: reset destination buffer when read_extent_buffer() gets invalid range (Qu Wenruo)
- ata: ahci: Add Elkhart Lake AHCI controller (Werner Fischer)
- ata: ahci: Rename board_ahci_mobile (Mario Limonciello)
- ata: ahci: Add support for AMD A85 FCH (Hudson D4) (Paul Menzel)
- ata: libata: Rename link flag ATA_LFLAG_NO_DB_DELAY (Paul Menzel)
- netfilter: nft_exthdr: Fix non-linear header modification (Xiao Liang)
- netfilter: exthdr: add support for tcp option removal (Florian Westphal)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- Input: i8042 - rename i8042-x86ia64io.h to i8042-acpipnpio.h (Huacai Chen)
- xfs: fix xfs_inodegc_stop racing with mod_delayed_work (Darrick J. Wong)
- xfs: disable reaping in fscounters scrub (Darrick J. Wong)
- xfs: check that per-cpu inodegc workers actually run on that cpu (Darrick J. Wong)
- xfs: explicitly specify cpu when forcing inodegc delayed work to run immediately (Darrick J. Wong)
- xfs: introduce xfs_inodegc_push() (Dave Chinner)
- xfs: bound maximum wait time for inodegc work (Dave Chinner)
- i2c: mux: gpio: Add missing fwnode_handle_put() (Liang He)
- i2c: mux: gpio: Replace custom acpi_get_local_address() (Andy Shevchenko)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- Fix up backport of 136191703038 ("interconnect: Teach lockdep about icc_bw_lock order") (Sasha Levin)
- igc: Expose tx-usecs coalesce setting to user (Muhammad Husaini Zulkifli)
- bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI (Sebastian Andrzej Siewior)
- net: ena: Flush XDP packets on error. (Sebastian Andrzej Siewior)
- locking/seqlock: Do the lockdep annotation before locking in do_write_seqcount_begin_nested() (Sebastian Andrzej Siewior)
- netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP (Jozsef Kadlecsik) [Orabug: 35865151] {CVE-2023-42756}
- netfilter: nf_tables: disable toggling dormant table state more than once (Florian Westphal)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- net: hns3: fix fail to delete tc flower rules during reset issue (Jijie Shao)
- net: hns3: only enable unicast promisc when mac table full (Jian Shen)
- net: hns3: fix GRE checksum offload issue (Jie Wang)
- x86/srso: Fix SBPB enablement for spec_rstack_overflow=off (Josh Poimboeuf)
- x86/srso: Fix srso_show_state() side effect (Josh Poimboeuf)
- platform/x86: intel_scu_ipc: Fail IPC send if still busy (Stephen Boyd)
- platform/x86: intel_scu_ipc: Don't override scu in intel_scu_ipc_dev_simple_command() (Stephen Boyd)
- platform/x86: intel_scu_ipc: Check status upon timeout in ipc_wait_for_interrupt() (Stephen Boyd)
- platform/x86: intel_scu_ipc: Check status after timeout in busy_loop() (Stephen Boyd)
- dccp: fix dccp_v4_err()/dccp_v6_err() again (Eric Dumazet)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- igc: Fix infinite initialization loop with early XDP redirect (Vinicius Costa Gomes)
- ionic: fix 16bit math issue when PAGE_SIZE >= 64KB (David Christensen)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Add VF VLAN pruning (Mateusz Palczewski)
- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (Radoslaw Tyl)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- net/core: Fix ETH_P_1588 flow dissector (Sasha Neftin)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- netfilter: nf_tables: fix memleak when more than 255 elements expired (Florian Westphal)
- netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration (Pablo Neira Ayuso)
- netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation fails (Pablo Neira Ayuso)
- netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC (Pablo Neira Ayuso)
- netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention (Pablo Neira Ayuso)
- netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction (Pablo Neira Ayuso) [Orabug: 35814389] {CVE-2023-4244}
- netfilter: nf_tables: defer gc run if previous batch is still pending (Florian Westphal)
- netfilter: nf_tables: use correct lock to protect gc_list (Pablo Neira Ayuso)
- netfilter: nf_tables: GC transaction race with abort path (Pablo Neira Ayuso)
- netfilter: nf_tables: GC transaction race with netns dismantle (Pablo Neira Ayuso)
- netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path (Pablo Neira Ayuso)
- netfilter: nf_tables: don't fail inserts if duplicate has expired (Florian Westphal)
- netfilter: nf_tables: remove busy mark and gc batch API (Pablo Neira Ayuso)
- netfilter: nft_set_hash: mark set element as dead when deleting from packet path (Pablo Neira Ayuso)
- netfilter: nf_tables: adapt set backend to use GC transaction API (Pablo Neira Ayuso) [Orabug: 35814389] {CVE-2023-4244}
- netfilter: nf_tables: GC transaction API to avoid race with control plane (Pablo Neira Ayuso)
- netfilter: nf_tables: don't skip expired elements during walk (Florian Westphal)
- tracing: Have event inject files inc the trace array ref count (Steven Rostedt (Google))
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- ata: ahci: Drop pointless VPRINTK() calls and convert the remaining ones (Hannes Reinecke)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- tracing: Make trace_marker{,_raw} stream-like (John Keeping)
- NFSv4.1: fix pnfs MDS=DS session trunking (Olga Kornievskaia)
- NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server (Olga Kornievskaia)
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)
- NFS: More fixes for nfs_direct_write_reschedule_io() (Trond Myklebust)
- NFS: Use the correct commit info in nfs_join_page_group() (Trond Myklebust)
- LTS version: v5.15.133 (Jack Vogel)
- interconnect: Teach lockdep about icc_bw_lock order (Rob Clark)
- drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma (Melissa Wen)
- drm/amdgpu: fix amdgpu_cs_p1_user_fence (Christian König)
- drm/amd/display: fix the white screen issue when >= 64GB DRAM (Yifan Zhang)
- ext4: fix rec_len verify error (Shida Zhang)
- scsi: pm8001: Setup IRQs on resume (Damien Le Moal)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- i2c: aspeed: Reset the i2c controller when timeout occurs (Tommy Huang)
- tracefs: Add missing lockdown check to tracefs_create_dir() (Steven Rostedt (Google))
- nfsd: fix change_info in NFSv4 RENAME replies (Jeff Layton)
- tracing: Have option files inc the trace array ref count (Steven Rostedt (Google))
- tracing: Have current_trace inc the trace array ref count (Steven Rostedt (Google))
- tracing: Have tracing_max_latency inc the trace array ref count (Steven Rostedt (Google))
- btrfs: release path before inode lookup during the ino lookup ioctl (Filipe Manana)
- btrfs: fix lockdep splat and potential deadlock after failure running delayed items (Filipe Manana)
- ovl: fix incorrect fdput() on aio completion (Amir Goldstein)
- ovl: fix failed copyup of fileattr on a symlink (Amir Goldstein)
- attr: block mode changes of symlinks (Christian Brauner)
- md/raid1: fix error: ISO C90 forbids mixed declarations (Nigel Croxon)
- samples/hw_breakpoint: fix building without module unloading (Arnd Bergmann)
- x86/purgatory: Remove LTO flags (Song Liu)
- x86/boot/compressed: Reserve more memory for page tables (Kirill A. Shutemov)
- scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file() (Jinjie Ruan)
- selftests: tracing: Fix to unmount tracefs for recovering environment (Masami Hiramatsu (Google))
- scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir() (Jinjie Ruan)
- drm: gm12u320: Fix the timeout usage for usb_bulk_msg() (Jinjie Ruan)
- btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super (Anand Jain)
- btrfs: add a helper to read the superblock metadata_uuid (Anand Jain)
- btrfs: move btrfs_pinned_by_swapfile prototype into volumes.h (Josef Bacik)
- perf test shell stat_bpf_counters: Fix test on Intel (Namhyung Kim)
- perf test: Remove bash construct from stat_bpf_counters.sh test (James Clark)
- MIPS: Use "grep -E" instead of "egrep" (Tiezhu Yang)
- mtd: rawnand: brcmnand: Fix ECC level field setting for v7.2 controller (William Zhang)
- mtd: rawnand: brcmnand: Allow SoC to provide I/O operations (Florian Fainelli)
- jbd2: correct the end of the journal recovery scan range (Zhang Yi)
- jbd2: rename jbd_debug() to jbd2_debug() (Jan Kara)
- jbd2: kill t_handle_lock transaction spinlock (Ritesh Harjani)
- jbd2: fix use-after-free of transaction_t race (Ritesh Harjani)
- jbd2: refactor wait logic for transaction updates into a common function (Ritesh Harjani)
- printk: Consolidate console deferred printing (John Ogness)
- interconnect: Fix locking for runpm vs reclaim (Rob Clark)
- kobject: Add sanity check for kset->kobj.ktype in kset_register() (Zhen Lei)
- media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning (Sakari Ailus)
- usb: ehci: add workaround for chipidea PORTSC.PEC bug (Xu Yang)
- serial: cpm_uart: Avoid suspicious locking (Christophe Leroy)
- scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (Konstantin Shelekhin)
- tools: iio: iio_generic_buffer: Fix some integer type and calculation (Chenyuan Mi)
- usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc (Ma Ke)
- usb: cdns3: Put the cdns set active part outside the spin lock (Xiaolei Wang)
- media: pci: cx23885: replace BUG with error return (Hans Verkuil)
- media: tuners: qt1010: replace BUG_ON with a regular error (Hans Verkuil)
- media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer (Zhang Shurong)
- media: az6007: Fix null-ptr-deref in az6007_i2c_xfer() (Zhang Shurong)
- media: anysee: fix null-ptr-deref in anysee_master_xfer (Zhang Shurong)
- media: af9005: Fix null-ptr-deref in af9005_i2c_xfer (Zhang Shurong)
- media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() (Zhang Shurong)
- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (Zhang Shurong)
- PCI: fu740: Set the number of MSI vectors (Yong-Xuan Wang)
- powerpc/pseries: fix possible memory leak in ibmebus_bus_init() (ruanjinjie)
- ARM: 9317/1: kexec: Make smp stop calls asynchronous (Mårten Lindahl)
- jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount (Liu Shixin via Jfs-discussion)
- fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount() (Andrew Kanner)
- ext2: fix datatype of block number in ext2_xattr_set2() (Georg Ottinger)
- md: raid1: fix potential OOB in raid1_remove_disk() (Zhang Shurong)
- bus: ti-sysc: Configure uart quirks for k3 SoC (Tony Lindgren)
- drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() (Tuo Li)
- drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31 (Leo Chen)
- ALSA: hda: intel-dsp-cfg: add LunarLake support (Pierre-Louis Bossart)
- samples/hw_breakpoint: Fix kernel BUG 'invalid opcode: 0000' (Rong Tao)
- arm64: dts: qcom: sm8250-edo: correct ramoops pmsg-size (Krzysztof Kozlowski)
- arm64: dts: qcom: sm8150-kumano: correct ramoops pmsg-size (Krzysztof Kozlowski)
- arm64: dts: qcom: sm6125-pdx201: correct ramoops pmsg-size (Krzysztof Kozlowski)
- drm/bridge: tc358762: Instruct DSI host to generate HSE packets (Marek Vasut)
- wifi: mac80211_hwsim: drop short frames (Johannes Berg)
- netfilter: ebtables: fix fortify warnings in size_entry_mwt() (GONG, Ruiqi)
- wifi: mac80211: check S1G action frame size (Johannes Berg)
- alx: fix OOB-read compiler warning (GONG, Ruiqi)
- mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450 (Giulio Benetti)
- tpm_tis: Resend command to recover from data transfer errors (Alexander Steffen)
- crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() (Mark O'Donovan)
- wifi: wil6210: fix fortify warnings (Dmitry Antipov)
- wifi: mwifiex: fix fortify warning (Dmitry Antipov)
- wifi: ath9k: fix printk specifier (Dongliang Mu)
- wifi: ath9k: fix fortify warnings (Dmitry Antipov)
- crypto: lrw,xts - Replace strlcpy with strscpy (Azeem Shaikh)
- devlink: remove reload failed checks in params get/set callbacks (Jiri Pirko)
- ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects (Mario Limonciello)
- hw_breakpoint: fix single-stepping when using bpf_overflow_handler (Tomislav Novak)
- perf/imx_ddr: speed up overflow frequency of cycle (Xu Yang)
- perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09 (Yicong Yang)
- ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470 (Jiri Slaby (SUSE))
- scftorture: Forgive memory-allocation failure if KASAN (Paul E. McKenney)
- rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle() (Zqiang)
- kernel/fork: beware of __put_task_struct() calling context (Wander Lairson Costa)
- ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer (Abhishek Mainkar)
- locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock (Will Shiu)
- btrfs: output extra debug info if we failed to find an inline backref (Qu Wenruo)
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (Fedor Pchelkin)
- LTS version: v5.15.132 (Jack Vogel)
- pcd: fix error codes in pcd_init_unit() (Dan Carpenter)
- drm/amd/display: Fix a bug when searching for insert_above_mpcc (Wesley Chalmers)
- MIPS: Only fiddle with CHECKFLAGS if need-compiler' (Maciej W. Rozycki)
- kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg(). (Kuniyuki Iwashima)
- ixgbe: fix timestamp configuration code (Vadim Fedorenko)
- ipv6: fix ip6_sock_set_addr_preferences() typo (Eric Dumazet)
- net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict() (Liu Jian)
- platform/mellanox: mlxbf-pmc: Fix reading of unprogrammed events (Shravan Kumar Ramani)
- platform/mellanox: mlxbf-pmc: Fix potential buffer overflows (Shravan Kumar Ramani)
- platform/mellanox: mlxbf-tmfifo: Drop jumbo frames (Liming Sun)
- platform/mellanox: mlxbf-tmfifo: Drop the Rx packet if no more descriptors (Liming Sun)
- kcm: Fix memory leak in error path of kcm_sendmsg() (Shigeru Yoshida)
- r8152: check budget for r8152_poll() (Hayes Wang)
- net: dsa: sja1105: hide all multicast addresses from "bridge fdb show" (Vladimir Oltean)
- hsr: Fix uninit-value access in fill_frame_info() (Ziyang Xuan)
- net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all() (Hangyu Hua)
- net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc() (Hangyu Hua)
- net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add (Guangguan Wang)
- kselftest/runner.sh: Propagate SIGTERM to runner child (Björn Töpel)
- net: ipv4: fix one memleak in __inet_del_ifa() (Liu Jian)
- ARM: dts: BCM5301X: Extend RAM to full 256MB for Linksys EA6500 V2 (Aleksey Nasibulin)
- ARM: dts: samsung: exynos4210-i9100: Fix LCD screen's physical size (Paul Cercueil)
- block: don't add or resize partition on the disk with GENHD_FL_NO_PART (Li Lingfeng)
- block: rename GENHD_FL_NO_PART_SCAN to GENHD_FL_NO_PART (Christoph Hellwig)
- block: move GENHD_FL_BLOCK_EVENTS_ON_EXCL_WRITE to disk->event_flags (Christoph Hellwig)
- block: move GENHD_FL_NATIVE_CAPACITY to disk->state (Christoph Hellwig)
- pcd: cleanup initialization (Christoph Hellwig)
- pcd: move the identify buffer into pcd_identify (Christoph Hellwig)
- perf hists browser: Fix the number of entries for 'e' key (Namhyung Kim)
- perf tools: Handle old data in PERF_RECORD_ATTR (Namhyung Kim)
- perf hists browser: Fix hierarchy mode header (Namhyung Kim)
- MIPS: Fix CONFIG_CPU_DADDI_WORKAROUNDS modules_install' regression (Maciej W. Rozycki)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- mtd: rawnand: brcmnand: Fix potential false time out warning (William Zhang)
- mtd: rawnand: brcmnand: Fix potential out-of-bounds access in oob write (William Zhang)
- mtd: rawnand: brcmnand: Fix crash during the panic_write (William Zhang)
- btrfs: use the correct superblock to compare fsid in btrfs_validate_super (Anand Jain)
- btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART (Filipe Manana)
- btrfs: free qgroup rsv on io failure (Boris Burkov)
- fuse: nlookup missing decrement in fuse_direntplus_link (ruanmeisi)
- ata: pata_ftide010: Add missing MODULE_DESCRIPTION (Damien Le Moal)
- ata: sata_gemini: Add missing MODULE_DESCRIPTION (Damien Le Moal)
- ata: pata_falcon: fix IO base selection for Q40 (Michael Schmitz)
- lib: test_scanf: Add explicit type cast to result initialization in test_number_prefix() (Nathan Chancellor)
- ext4: add correct group descriptors and reserved GDT blocks to system zone (Wang Jianjian)
- dmaengine: sh: rz-dmac: Fix destination and source data size setting (Hien Huynh)
- ARC: atomics: Add compiler barrier to atomic operations... (Pavel Kozlov)
- sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory() (Petr Tesarik)
- net: hns3: remove GSO partial feature bit (Jie Wang)
- net: hns3: fix the port information display when sfp is absent (Yisen Zhuang)
- net: hns3: fix invalid mutex between tc qdisc and dcb ets command issue (Jijie Shao)
- net: hns3: fix debugfs concurrency issue between kfree buffer and read (Hao Chen)
- net: hns3: fix byte order conversion issue in hclge_dbg_fd_tcam_read() (Hao Chen)
- net: dsa: sja1105: complete tc-cbs offload support on SJA1110 (Vladimir Oltean)
- net: dsa: sja1105: fix -ENOSPC when replacing the same tc-cbs too many times (Vladimir Oltean)
- net: dsa: sja1105: fix bandwidth discrepancy between tc-cbs software and offload (Vladimir Oltean)
- ip_tunnels: use DEV_STATS_INC() (Eric Dumazet)
- idr: fix param name in idr_alloc_cyclic() doc (Ariel Marcovitch)
- s390/zcrypt: don't leak memory if dev_set_name() fails (Andy Shevchenko)
- igb: Change IGB_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- igc: Change IGC_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- octeontx2-af: Fix truncation of smq in CN10K NIX AQ enqueue mbox handler (Geetha sowjanya)
- kcm: Destroy mutex in kcm_exit_net() (Shigeru Yoshida)
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (valis) [Orabug: 35814453] {CVE-2023-4921}
- af_unix: Fix data race around sk->sk_err. (Kuniyuki Iwashima)
- af_unix: Fix data-races around sk->sk_shutdown. (Kuniyuki Iwashima)
- af_unix: Fix data-race around unix_tot_inflight. (Kuniyuki Iwashima)
- af_unix: Fix data-races around user->unix_inflight. (Kuniyuki Iwashima)
- net: phy: micrel: Correct bit assignments for phy_device flags (Oleksij Rempel)
- net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr (Alex Henrie)
- veth: Fixing transmit return status for dropped packets (Liang Chen)
- igb: disable virtualization features on 82580 (Corinna Vinschen)
- ipv4: ignore dst hint for multipath routes (Sriram Yagnaraman)
- drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt() (Sean Christopherson)
- xsk: Fix xsk_diag use-after-free error during socket cleanup (Magnus Karlsson)
- net: fib: avoid warn splat in flow dissector (Florian Westphal)
- net: read sk->sk_family once in sk_mc_loop() (Eric Dumazet)
- ipv4: annotate data-races around fi->fib_dead (Eric Dumazet)
- sctp: annotate data-races around sk->sk_wmem_queued (Eric Dumazet)
- net/sched: fq_pie: avoid stalls in fq_pie_timer() (Eric Dumazet)
- pwm: lpc32xx: Remove handling of PWM channels (Vladimir Zapolskiy)
- watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load (Raag Jadav)
- perf top: Don't pass an ERR_PTR() directly to perf_session__delete() (Arnaldo Carvalho de Melo)
- perf vendor events: Drop some of the JSON/events for power10 platform (Kajol Jain)
- perf vendor events: Update the JSON/events descriptions for power10 platform (Kajol Jain)
- x86/virt: Drop unnecessary check on extended CPUID level in cpu_has_svm() (Sean Christopherson)
- perf annotate bpf: Don't enclose non-debug code with an assert() (Arnaldo Carvalho de Melo)
- Input: tca6416-keypad - fix interrupt enable disbalance (Dmitry Torokhov)
- Input: tca6416-keypad - always expect proper IRQ number in i2c client (Dmitry Torokhov)
- backlight: gpio_backlight: Drop output GPIO direction check for initial power state (Ying Liu)
- pwm: atmel-tcb: Fix resource freeing in error path and remove (Uwe Kleine-König)
- pwm: atmel-tcb: Harmonize resource allocation order (Uwe Kleine-König)
- pwm: atmel-tcb: Convert to platform remove callback returning void (Uwe Kleine-König)
- perf trace: Really free the evsel->priv area (Arnaldo Carvalho de Melo)
- perf trace: Use zfree() to reduce chances of use after free (Arnaldo Carvalho de Melo)
- kconfig: fix possible buffer overflow (Konstantin Meskhidze)
- gfs2: low-memory forced flush fixes (Andreas Gruenbacher)
- gfs2: Switch to wait_event in gfs2_logd (Andreas Gruenbacher)
- kbuild: do not run depmod for 'make modules_sign' (Masahiro Yamada)
- bus: mhi: host: Skip MHI reset if device is in RDDM (Qiang Yu)
- NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info (Fedor Pchelkin)
- NFS: Fix a potential data corruption (Trond Myklebust)
- clk: qcom: mss-sc7180: fix missing resume during probe (Johan Hovold)
- clk: qcom: q6sstop-qcs404: fix missing resume during probe (Johan Hovold)
- soc: qcom: qmi_encdec: Restrict string length in decode (Chris Lew)
- clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock (Dmitry Baryshkov)
- clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz (Ahmad Fatoum)
- dt-bindings: clock: xlnx,versal-clk: drop select:false (Krzysztof Kozlowski)
- pinctrl: cherryview: fix address_space_handler() argument (Raag Jadav)
- parisc: led: Reduce CPU overhead for disk & lan LED computation (Helge Deller)
- parisc: led: Fix LAN receive and transmit LEDs (Helge Deller)
- lib/test_meminit: allocate pages up to order MAX_ORDER (Andrew Donnellan)
- clk: qcom: turingcc-qcs404: fix missing resume during probe (Johan Hovold)
- drm/ast: Fix DRAM init on AST2200 (Thomas Zimmermann)
- clk: qcom: camcc-sc7180: fix async resume during probe (Johan Hovold)
- fbdev/ep93xx-fb: Do not assign to struct fb_info.dev (Thomas Zimmermann)
- io_uring: break iopolling on signal (Pavel Begunkov)
- io_uring: break out of iowq iopoll on teardown (Pavel Begunkov)
- io_uring: always lock in io_apoll_task_func (Pavel Begunkov)
- net/ipv6: SKB symmetric hash should incorporate transport ports (Quan Tian)
- udf: initialize newblock to 0 (Tom Rix)
- md/md-bitmap: remove unnecessary local variable in backlog_store() (Yu Kuai)
- tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY (Brian Foster)
- perf/x86/uncore: Correct the number of CHAs on EMR (Kan Liang)
- x86/sgx: Break up long non-preemptible delays in sgx_vepc_release() (Jack Wang)
- USB: core: Fix oversight in SuperSpeed initialization (Alan Stern)
- USB: core: Fix race by not overwriting udev->descriptor in hub_port_init() (Alan Stern)
- USB: core: Change usb_get_device_descriptor() API (Alan Stern)
- USB: core: Unite old scheme and new scheme descriptor reads (Alan Stern)
- usb: typec: bus: verify partner exists in typec_altmode_attention (RD Babiera)
- usb: typec: tcpm: set initial svdm version based on pd revision (RD Babiera)
- cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug (Gustavo A. R. Silva)
- crypto: stm32 - fix loop iterating through scatterlist for DMA (Thomas Bourgoin)
- s390/ipl: add missing secure/has_secure file to ipl type 'unknown' (Sven Schnelle)
- pstore/ram: Check start of empty przs during init (Enlin Mu)
- mmc: renesas_sdhi: register irqs before registering controller (Wolfram Sang)
- fsverity: skip PKCS#7 parser when keyring is empty (Eric Biggers)
- net: handle ARPHRD_PPP in dev_is_mac_header_xmit() (Nicolas Dichtel)
- X.509: if signature is unsupported skip validation (Thore Sommer)
- dccp: Fix out of bounds access in DCCP error handler (Jann Horn)
- parisc: Fix /proc/cpuinfo output for lscpu (Helge Deller)
- procfs: block chmod on /proc/thread-self/comm (Aleksa Sarai)
- Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset" (Bjorn Helgaas)
- ntb: Fix calculation ntb_transport_tx_free_entry() (Dave Jiang)
- ntb: Clean up tx tail index on link down (Dave Jiang)
- ntb: Drop packets when qp link is down (Dave Jiang)
- scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (Ranjan Kumar)
- media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking interrupts (Konrad Dybcio)
- arm64: csum: Fix OoB access in IP checksum code for negative lengths (Will Deacon)
- i3c: master: svc: fix probe failure when no i3c device exist (Frank Li)
- xtensa: PMU: fix base address for the newer hardware (Max Filippov)
- backlight/lv5207lp: Compare against struct fb_info.device (Thomas Zimmermann)
- backlight/bd6107: Compare against struct fb_info.device (Thomas Zimmermann)
- backlight/gpio_backlight: Compare against struct fb_info.device (Thomas Zimmermann)
- ARM: OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch() (Gustavo A. R. Silva)
- ipmi_si: fix a memleak in try_smi_init() (Yi Yang)
- media: i2c: ccs: Check rules is non-NULL (Sakari Ailus)
- mm/vmalloc: add a safer version of find_vm_area() for debug (Joel Fernandes (Google))
- scsi: core: Fix the scsi_set_resid() documentation (Bart Van Assche)
- printk: ringbuffer: Fix truncating buffer size min_t cast (Kees Cook)
- rcu: dump vmalloc memory info safely (Zqiang)
- ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl (Takashi Iwai)
- PM / devfreq: Fix leak in devfreq_dev_release() (Boris Brezillon)
- igb: set max size RX buffer when store bad packet is enabled (Radoslaw Tyl) [Orabug: 35924095] {CVE-2023-45871}
- skbuff: skb_segment, Call zero copy functions before using skbuff frags (Mohamed Khalfella)
- igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (Eric Dumazet) [Orabug: 35923998] {CVE-2023-42752}
- virtio_ring: fix avail_wrap_counter in virtqueue_add_packed (Yuan Yao)
- cpufreq: Fix the race condition while updating the transition_task of policy (Liao Chang)
- dmaengine: ste_dma40: Add missing IRQ check in d40_probe (ruanjinjie)
- um: Fix hostaudio build errors (Randy Dunlap)
- mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume() (Yi Yang)
- mtd: spi-nor: Check bus width while setting QE bit (Hsin-Yi Wang)
- leds: trigger: tty: Do not use LED_ON/OFF constants, use led_blink_set_oneshot instead (Marek Behún)
- leds: multicolor: Use rounded division when calculating color components (Marek Behún)
- leds: pwm: Fix error code in led_pwm_create_fwnode() (Dan Carpenter)
- rpmsg: glink: Add check for kstrdup (Jiasheng Jiang)
- phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write (Jonas Karlman)
- phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate (Zheng Yang)
- phy/rockchip: inno-hdmi: use correct vco_div_5 macro on rk3328 (Jonas Karlman)
- mtd: rawnand: brcmnand: Fix mtd oobsize (William Zhang)
- tracing: Fix race issue between cpu buffer write and swap (Zheng Yejian)
- tracing: Remove extra space at the end of hwlat_detector/mode (Mikhail Kobuk)
- HID: multitouch: Correct devm device reference for hidinput input_dev name (Rahul Rameshbabu)
- HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode() (Nikita Zhandarovich)
- Revert "IB/isert: Fix incorrect release of isert connection" (Leon Romanovsky)
- amba: bus: fix refcount leak (Peng Fan)
- serial: tegra: handle clk prepare error in tegra_uart_hw_init() (Yi Yang)
- scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock (Chengfeng Ye)
- scsi: core: Use 32-bit hostnum in scsi_host_lookup() (Tony Battersby)
- cgroup:namespace: Remove unused cgroup_namespaces_init() (Lu Jialin)
- media: i2c: rdacm21: Fix uninitialized value (Jacopo Mondi)
- media: ov2680: Fix regulators being left enabled on ov2680_power_on() errors (Hans de Goede)
- media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not working (Hans de Goede)
- media: ov2680: Add ov2680_fill_format() helper function (Hans de Goede)
- media: ov2680: Don't take the lock for try_fmt calls (Hans de Goede)
- media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s (Hans de Goede)
- media: ov2680: Fix vflip / hflip set functions (Hans de Goede)
- media: ov2680: Fix ov2680_bayer_order() (Hans de Goede)
- media: ov2680: Remove auto-gain and auto-exposure controls (Hans de Goede)
- media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips (Dave Stevenson)
- media: ov5640: Enable MIPI interface in ov5640_set_power_mipi() (Marek Vasut)
- USB: gadget: f_mass_storage: Fix unused variable warning (Alan Stern)
- media: venus: hfi_venus: Only consider sys_idle_indicator on V1 (Konrad Dybcio)
- media: go7007: Remove redundant if statement (Colin Ian King)
- platform/x86: dell-sysman: Fix reference leak (Armin Wolf)
- iommu/vt-d: Fix to flush cache of PASID directory table (Yanfei Xu)
- iommu/qcom: Disable and reset context bank before programming (AngeloGioacchino Del Regno)
- fsi: aspeed: Reset master errors after CFAM reset (Eddie James)
- IB/uverbs: Fix an potential error pointer dereference (Xiang Yang)
- RDMA/hns: Fix CQ and QP cache affinity (Chengchang Tang)
- RDMA/hns: Fix incorrect post-send with direct wqe of wr-list (Junxian Huang)
- RDMA/hns: Fix port active speed (Chengchang Tang)
- iommu/sprd: Add missing force_aperture (Jason Gunthorpe)
- driver core: test_async: fix an error code (Dan Carpenter)
- dma-buf/sync_file: Fix docs syntax (Rob Clark)
- coresight: tmc: Explicit type conversions to prevent integer overflow (Ruidong Tian)
- RDMA/irdma: Replace one-element array with flexible-array member (Gustavo A. R. Silva)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko)
- x86/APM: drop the duplicate APM_MINOR_DEV macro (Randy Dunlap)
- serial: sprd: Fix DMA buffer leak issue (Chunyan Zhang)
- serial: sprd: Assign sprd_port after initialized to avoid wrong access (Chunyan Zhang)
- scsi: qla4xxx: Add length check when parsing nlattrs (Lin Ma)
- scsi: be2iscsi: Add length check when parsing nlattrs (Lin Ma)
- scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() (Lin Ma)
- scsi: iscsi: Add length check for nlattr payload (Lin Ma)
- scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param() (Wenchao Hao)
- scsi: RDMA/srp: Fix residual handling (Bart Van Assche)
- usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host() (Xu Yang)
- media: mediatek: vcodec: Return NULL if no vdec_fb is found (Irui Wang)
- media: rkvdec: increase max supported height for H.264 (Benjamin Gaignard)
- scsi: hisi_sas: Fix normally completed I/O analysed as failed (Xingui Yang)
- scsi: hisi_sas: Fix warnings detected by sparse (Xingui Yang)
- scsi: hisi_sas: Modify v3 HW SATA completion error processing (Xingui Yang)
- scsi: hisi_sas: Modify v3 HW SSP underflow error processing (Xingui Yang)
- media: cx24120: Add retval check for cx24120_message_send() (Daniil Dulov)
- media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer() (Christophe JAILLET)
- media: dib7000p: Fix potential division by zero (Daniil Dulov)
- drivers: usb: smsusb: fix error handling code in smsusb_init_device (Dongliang Mu)
- iommu: rockchip: Fix directory table address encoding (Jonas Karlman)
- iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on pasid unbind (Daniel Marcovitch)
- media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link() (Christophe JAILLET)
- media: i2c: tvp5150: check return value of devm_kasprintf() (Claudiu Beznea)
- media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables (Hans de Goede)
- RDMA/qedr: Remove a duplicate assignment in irdma_query_ah() (Minjie Du)
- pNFS: Fix assignment of xprtdata.cred (Anna Schumaker)
- NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ (Olga Kornievskaia)
- NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN (Benjamin Coddington)
- NFSD: da_addr_body field missing in some GETDEVICEINFO replies (Chuck Lever)
- fs: lockd: avoid possible wrong NULL parameter (Su Hui)
- jfs: validate max amount of blocks before allocation. (Alexei Filippov)
- ext4: fix unttached inode after power cut with orphan file feature enabled (Zhihao Cheng)
- powerpc/iommu: Fix notifiers being shared by PCI and VIO buses (Russell Currey)
- nfs/blocklayout: Use the passed in gfp flags (Dan Carpenter)
- powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT (Russell Currey)
- powerpc: Don't include lppaca.h in paca.h (Michael Ellerman)
- PCI: layerscape: Add workaround for lost link capabilities during reset (Xiaowei Bao)
- PCI: layerscape: Add the endpoint linkup notifier support (Frank Li)
- PCI: dwc: Add start_link/stop_link inlines (Serge Semin)
- wifi: ath10k: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- wifi: ath11k: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- net/mlx5: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- drm/radeon: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- drm/amdgpu: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- powerpc/perf: Convert fsl_emb notifier to state machine callbacks (Christophe Leroy)
- powerpc/fadump: reset dump area size if fadump memory reserve fails (Sourabh Jain)
- vfio/type1: fix cap_migration information leak (Stefan Hajnoczi)
- powerpc/radix: Move some functions into #ifdef CONFIG_KVM_BOOK3S_HV_POSSIBLE (Christophe Leroy)
- clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op (Ahmad Fatoum)
- clk: imx8mp: fix sai4 clock (Marco Felsch)
- PCI/ASPM: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- PCI: pciehp: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- pinctrl: mcp23s08: check return value of devm_kasprintf() (Claudiu Beznea)
- PCI: Mark NVIDIA T4 GPUs to avoid bus reset (Wu Zongyong)
- PCI: microchip: Correct the DED and SEC interrupt bit offsets (Daire McNamara)
- clk: qcom: gcc-sm6350: Fix gcc_sdcc2_apps_clk_src (Luca Weiss)
- clk: qcom: gcc-sm8250: Fix gcc_sdcc2_apps_clk_src (Patrick Whewell)
- ext4: avoid potential data overflow in next_linear_group (Kemeng Shi)
- ext4: correct grp validation in ext4_mb_good_group (Kemeng Shi)
- EDAC/igen6: Fix the issue of no error events (Qiuxu Zhuo)
- clk: qcom: gcc-sc7180: Fix up gcc_sdcc2_apps_clk_src (David Wronek)
- clk: sunxi-ng: Modify mismatched function name (Zhang Jianhua)
- drivers: clk: keystone: Fix parameter judgment in _of_pll_clk_init() (Minjie Du)
- ipmi:ssif: Fix a memory leak when scanning for an adapter (Corey Minyard)
- ipmi:ssif: Add check for kstrdup (Jiasheng Jiang)
- of: unittest: Fix overlay type in apply/revert check (Geert Uytterhoeven)
- of: overlay: Call of_changeset_init() early (Geert Uytterhoeven)
- md: raid0: account for split bio in iostat accounting (David Jeffery)
- bus: ti-sysc: Fix cast to enum warning (Tony Lindgren)
- arm64: dts: qcom: apq8016-sbc: Fix ov5640 regulator supply names (Bryan O'Donoghue)
- drm/mediatek: Fix potential memory leak if vmap() fail (Sui Jingfeng)
- drm/mediatek: Remove freeing not dynamic allocated memory (Jason-JH.Lin)
- bus: ti-sysc: Fix build warning for 64-bit build (Tony Lindgren)
- io_uring: fix drain stalls by invalid SQE (Pavel Begunkov)
- audit: fix possible soft lockup in __audit_inode_child() (Gaosheng Cui)
- drm/msm/a2xx: Call adreno_gpu_init() earlier (Fabio Estevam)
- drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create() (Yang Wang)
- smackfs: Prevent underflow in smk_set_cipso() (Dan Carpenter)
- firmware: meson_sm: fix to avoid potential NULL pointer dereference (Zhang Shurong)
- drm/msm/mdp5: Don't leak some plane state (Daniel Vetter)
- drm: xlnx: zynqmp_dpsub: Add missing check for dma_set_mask (Jiasheng Jiang)
- ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig (Nayna Jain)
- drm/panel: simple: Add missing connector type and pixel format for AUO T215HVN01 (Marek Vasut)
- drm/armada: Fix off-by-one error in armada_overlay_get_property() (Geert Uytterhoeven)
- arm64: dts: qcom: sm8150: Fix the I2C7 interrupt (Zeyan Li)
- of: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name() (Ruan Jinjie)
- drm/tegra: dpaux: Fix incorrect return value of platform_get_irq (Yangtao Li)
- drm/msm: Update dev core dump to not print backwards (Ryan McCann)
- md/md-bitmap: hold 'reconfig_mutex' in backlog_store() (Yu Kuai)
- md/bitmap: don't set max_write_behind if there is no write mostly device (Guoqing Jiang)
- md/raid10: use dereference_rdev_and_rrdev() to get devices (Li Nan)
- md/raid10: factor out dereference_rdev_and_rrdev() (Li Nan)
- drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl' (Srinivasan Shanmugam)
- arm64: dts: qcom: sdm845: Fix the min frequency of "ice_core_clk" (Manivannan Sadhasivam)
- arm64: dts: qcom: sdm845: Add missing RPMh power domain to GCC (Manivannan Sadhasivam)
- ARM: dts: BCM53573: Fix Ethernet info for Luxul devices (Rafał Miłecki)
- drm: adv7511: Fix low refresh rate register for ADV7533/5 (Bogdan Togorean)
- ARM: dts: samsung: s5pv210-smdkv210: correct ethernet reg addresses (split) (Krzysztof Kozlowski)
- ARM: dts: s5pv210: add dummy 5V regulator for backlight on SMDKv210 (Krzysztof Kozlowski)
- ARM: dts: samsung: s3c6410-mini6410: correct ethernet reg addresses (split) (Krzysztof Kozlowski)
- ARM: dts: s3c64xx: align pinctrl with dtschema (Krzysztof Kozlowski)
- x86/mm: Fix PAT bit missing from page protection modify mask (Janusz Krzysztofik)
- drm/etnaviv: fix dumping of active MMU context (Lucas Stach)
- arm64: dts: qcom: pmi8994: Add missing OVP interrupt (Konrad Dybcio)
- arm64: dts: qcom: Move WLED num-strings from pmi8994 to sony-xperia-tone (Marijn Suijten)
- arm64: dts: qcom: pmi8994: Remove hardcoded linear WLED enabled-strings (Marijn Suijten)
- arm64: dts: qcom: pm660l: Add missing short interrupt (Konrad Dybcio)
- arm64: dts: qcom: correct SPMI WLED register range encoding (Krzysztof Kozlowski)
- arm64: dts: qcom: pmi8998: Add node for WLED (AngeloGioacchino Del Regno)
- arm64: dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again (Krzysztof Kozlowski)
- ARM: dts: BCM53573: Use updated "spi-gpio" binding properties (Rafał Miłecki)
- ARM: dts: BCM53573: Add cells sizes to PCIe node (Rafał Miłecki)
- drm/amdgpu: avoid integer overflow warning in amdgpu_device_resize_fb_bar() (Arnd Bergmann)
- arm64: dts: qcom: sm8250: Mark PCIe hosts as DMA coherent (Konrad Dybcio)
- arm64: dts: qcom: pmk8350: fix ADC-TM compatible string (Dmitry Baryshkov)
- arm64: dts: qcom: sm8350: Use proper CPU compatibles (Konrad Dybcio)
- arm64: dts: qcom: sm8350: Add missing LMH interrupts to cpufreq (Konrad Dybcio)
- arm64: dts: qcom: msm8996: Add missing interrupt to the USB2 controller (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Rectify gpio-keys (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Add gpio line names for TLMM (Konrad Dybcio)
- arm64: dts: qcom: sm8250: correct dynamic power coefficients (Vincent Guittot)
- soc: qcom: ocmem: Fix NUM_PORTS & NUM_MACROS macros (Luca Weiss)
- soc: qcom: ocmem: Add OCMEM hardware version print (Luca Weiss)
- ASoC: stac9766: fix build errors with REGMAP_AC97 (Randy Dunlap)
- quota: fix dqput() to follow the guarantees dquot_srcu should provide (Baokun Li)
- quota: add new helper dquot_active() (Baokun Li)
- quota: rename dquot_active() to inode_quota_active() (Baokun Li)
- quota: factor out dquot_write_dquot() (Baokun Li)
- drm/bridge: tc358764: Fix debug print parameter order (Marek Vasut)
- netrom: Deny concurrent connect(). (Kuniyuki Iwashima)
- net/sched: sch_hfsc: Ensure inner classes have fsc curve (Budimir Markovic) [Orabug: 35810514] {CVE-2023-4623}
- hwmon: (tmp513) Fix the channel number in tmp51x_is_visible() (Biju Das)
- mlxsw: i2c: Limit single transaction buffer size (Vadim Pasternak)
- mlxsw: i2c: Fix chunk size setting in output mailbox buffer (Vadim Pasternak)
- net: arcnet: Do not call kfree_skb() under local_irq_disable() (Jinjie Ruan)
- wifi: ath9k: use IS_ERR() with debugfs_create_dir() (Wang Ming)
- Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave() (Jinjie Ruan)
- wifi: mwifiex: avoid possible NULL skb pointer dereference (Dmitry Antipov)
- wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute (Lin Ma)
- wifi: ath9k: protect WMI command response buffer replacement with a lock (Fedor Pchelkin)
- wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx (Fedor Pchelkin)
- samples/bpf: fix broken map lookup probe (Daniel T. Lee)
- wifi: mwifiex: Fix missed return in oob checks failed path (Polaris Pi)
- wifi: mwifiex: fix memory leak in mwifiex_histogram_read() (Dmitry Antipov)
- fs: ocfs2: namei: check return value of ocfs2_add_entry() (Artem Chernyshev)
- lwt: Check LWTUNNEL_XMIT_CONTINUE strictly (Yan Zhai)
- lwt: Fix return values of BPF xmit ops (Yan Zhai)
- hwrng: iproc-rng200 - Implement suspend and resume calls (Florian Fainelli)
- crypto: caam - fix unchecked return value error (Gaurav Jain)
- ice: ice_aq_check_events: fix off-by-one check when filling buffer (Przemek Kitszel)
- net-memcg: Fix scope of sockmem pressure indicators (Abel Wu)
- selftests/bpf: Clean up fmod_ret in bench_rename test script (Yipeng Zou)
- net: tcp: fix unexcepted socket die when snd_wnd is 0 (Menglong Dong)
- Bluetooth: Fix potential use-after-free when clear keys (Min Li)
- Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe() (Yuanjun Gong)
- crypto: stm32 - Properly handle pm_runtime_get failing (Uwe Kleine-König)
- wifi: mwifiex: fix error recovery in PCIE buffer descriptor management (Dmitry Antipov)
- wifi: mwifiex: Fix OOB and integer underflow when rx packets (Polaris Pi)
- wifi: mt76: mt7915: fix power-limits while chan_switch (Ryder Lee)
- can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also in case of OOM (Marc Kleine-Budde)
- spi: tegra20-sflash: fix to check return value of platform_get_irq() in tegra_sflash_probe() (Zhang Shurong)
- wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH (Lin Ma)
- ipv6: Add reasons for skb drops to __udp6_lib_rcv (David Ahern)
- bpf: reject unhashed sockets in bpf_sk_assign (Lorenz Bauer)
- udp: re-score reuseport groups when connected sockets are present (Lorenz Bauer)
- regmap: rbtree: Use alloc_flags for memory allocations (Dan Carpenter)
- hwrng: pic32 - use devm_clk_get_enabled (Martin Kaiser)
- hwrng: nomadik - keep clock enabled while hwrng is registered (Martin Kaiser)
- tcp: tcp_enter_quickack_mode() should be static (Eric Dumazet)
- bpf: Clear the probe_addr for uprobe (Yafang Shao)
- bpftool: Use a local bpf_perf_event_value to fix accessing its fields (Alexander Lobakin)
- cpufreq: powernow-k8: Use related_cpus instead of cpus in driver.exit() (Liao Chang)
- x86/efistub: Fix PCI ROM preservation in mixed mode (Mikel Rychliski)
- ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table (Mario Limonciello)
- ACPI: x86: s2idle: Post-increment variables when getting constraints (Mario Limonciello)
- s390/paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs (Holger Dengler)
- s390/pkey: fix/harmonize internal keyblob headers (Holger Dengler)
- selftests/futex: Order calls to futex_lock_pi (Nysal Jan K.A)
- perf/imx_ddr: don't enable counter0 if none of 4 counters are used (Xu Yang)
- x86/decompressor: Don't rely on upper 32 bits of GPRs being preserved (Ard Biesheuvel)
- selftests/resctrl: Close perf value read fd on errors (Ilpo Järvinen)
- selftests/resctrl: Unmount resctrl FS if child fails to run benchmark (Ilpo Järvinen)
- selftests/resctrl: Don't leak buffer in fill_cache() (Ilpo Järvinen)
- selftests/resctrl: Add resctrl.h into build deps (Ilpo Järvinen)
- selftests/resctrl: Make resctrl_tests run using kselftest framework (Shaopeng Tan)
- OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd() (Manivannan Sadhasivam)
- refscale: Fix uninitalized use of wait_queue_head_t (Waiman Long)
- ARM: ptrace: Restore syscall skipping for tracers (Kees Cook)
- ARM: ptrace: Restore syscall restart tracing (Kees Cook)
- selftests/harness: Actually report SKIP for signal tests (Kees Cook)
- tmpfs: verify {g,u}id mount options correctly (Christian Brauner)
- fs: Fix error checking for d_hash_and_lookup() (Wang Ming)
- eventfd: prevent underflow for eventfd semaphores (Wen Yang)
- reiserfs: Check the return value from __getblk() (Matthew Wilcox)
- Revert "net: macsec: preserve ingress frame ordering" (Sabrina Dubroca)
- udf: Handle error when adding extent to a file (Jan Kara)
- udf: Check consistency of Space Bitmap Descriptor (Vladislav Efanov)
- of: kexec: Mark ima_{free,stable}_kexec_buffer() as __init (Nathan Chancellor)
- net: Avoid address overwrite in kernel_connect (Jordan Rife)
- arm64: lib: Import latest version of Arm Optimized Routines' strncmp (Joey Gouly)
- crypto: rsa-pkcs1pad - Use helper to set reqsize (Herbert Xu)
- tracing: Introduce pipe_cpumask to avoid race on trace_pipes (Zheng Yejian)
- ALSA: seq: oss: Fix racy open/close of MIDI devices (Takashi Iwai)
- scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path (Justin Tee)
- scsi: storvsc: Always set no_report_opcodes (Michael Kelley)
- sctp: handle invalid error codes without calling BUG() (Dan Carpenter)
- bnx2x: fix page fault following EEH recovery (David Christensen)
- netlabel: fix shift wrapping bug in netlbl_catmap_setlong() (Dmitry Mastykin)
- drm/amdgpu: Match against exact bootloader status (Lijo Lazar)
- net: hns3: restore user pause configure when disable autoneg (Jian Shen)
- scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock (Chengfeng Ye)
- scsi: lpfc: Remove reftag check in DIF paths (Justin Tee)
- idmaengine: make FSL_EDMA and INTEL_IDMA64 depends on HAS_IOMEM (Baoquan He)
- wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1() (Hans de Goede)
- net: usb: qmi_wwan: add Quectel EM05GV2 (Martin Kohn)
- vmbus_testing: fix wrong python syntax for integer value comparison (Ani Sinha)
- clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM (Baoquan He)
- kprobes: Prohibit probing on CFI preamble symbol (Masami Hiramatsu (Google))
- security: keys: perform capable check only on privileged operations (Christian Göttsche)
- ata: pata_arasan_cf: Use dev_err_probe() instead dev_err() in data_xfer() (Minjie Du)
- drm/amd/display: Exit idle optimizations before attempt to access PHY (Leo Chen)
- platform/x86: huawei-wmi: Silence ambient light sensor (Konstantin Shelekhin)
- platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks (Maxim Mikityanskiy)
- platform/x86: intel: hid: Always call BTNL ACPI method (Hans de Goede)
- ASoC: atmel: Fix the 8K sample parameter in I2SC master (Guiting Shen)
- ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- ASoC: rt711: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- ASoc: codecs: ES8316: Fix DMIC config (Edgar)
- ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- fs/nls: make load_nls() take a const parameter (Winston Wen)
- s390/dasd: fix hanging device after request requeue (Stefan Haberland)
- s390/dasd: use correct number of retries for ERP requests (Stefan Haberland)
- m68k: Fix invalid .section syntax (Ben Hutchings)
- vxlan: generalize vxlan_parse_gpe_hdr and remove unused args (Jiri Benc)
- ethernet: atheros: fix return value check in atl1c_tso_csum() (Yuanjun Gong)
- ASoC: da7219: Check for failure reading AAD IRQ events (Dmytro Maluka)
- ASoC: da7219: Flush pending AAD IRQ when suspending (Dmytro Maluka)
- ksmbd: no response from compound read (Namjae Jeon)
- ksmbd: fix out of bounds in smb3_decrypt_req() (Namjae Jeon)
- 9p: virtio: make sure 'offs' is initialized in zc_request (Dominique Martinet)
- media: pci: cx23885: fix error handling for cx23885 ATSC boards (Nikolay Burykin)
- media: pulse8-cec: handle possible ping error (Dmitry Antipov)
- phy: qcom-snps-femto-v2: use qcom_snps_hsphy_suspend/resume error code (Adrien Thierry)
- ARM: dts: imx: Set default tuning step for imx7d usdhc (Xiaolei Wang)
- ARM: dts: imx: Adjust dma-apbh node name (Stefan Wahren)
- ARM: dts: imx7s: Drop dma-apb interrupt-names (Marek Vasut)
- ARM: dts: imx: update sdma node name format (Joy Zou)
- rds: Put back pages on the CPU that allocated them (Håkon Bugge) [Orabug: 35768363]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843808]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843808]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843808]
- mm: fix hang after mapping over a mapped reserved va range (Anthony Yznaga) [Orabug: 35843808]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843808]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843808]
- genetlink: initialize resv_start_op using existing enum values on uek7-u2 (Qing Huang) [Orabug: 35857093]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916077]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926164]
- Crash: add lock to serialize crash hotplug handling (Baoquan He) [Orabug: 35778906]
- x86/crash: optimize CPU changes (Eric DeVolder) [Orabug: 35778906]
- crash: change crash_prepare_elf64_headers() to for_each_possible_cpu() (Eric DeVolder) [Orabug: 35778906]
- crash: hotplug support for kexec_load() (Eric DeVolder) [Orabug: 35778906]
- x86/crash: add x86 crash hotplug support (Eric DeVolder) [Orabug: 35778906]
- crash: memory and CPU hotplug sysfs attributes (Eric DeVolder) [Orabug: 35778906]
- kexec: exclude elfcorehdr from the segment digest (Eric DeVolder) [Orabug: 35778906]
- crash: add generic infrastructure for crash hotplug support (Eric DeVolder) [Orabug: 35778906]
- crash: move a few code bits to setup support of crash hotplug (Eric DeVolder) [Orabug: 35778906]
- remove ARCH_DEFAULT_KEXEC from Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- kexec: rename ARCH_HAS_KEXEC_PURGATORY (Eric DeVolder) [Orabug: 35778906]
- sh/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- s390/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- riscv/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- powerpc/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- parisc/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- mips/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- m68k/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- arm64/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- ia64/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- arm/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- x86/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- kexec: consolidate kexec and crash options into kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]

[5.15.0-201.131.1.el8uek]
- net/rds: report pending-messages count in RDS_INQ response (Devesh Sharma) [Orabug: 35596047]
- uek-rpm: Disable kernel support for CONFIG_FIREWIRE in OL9 (Yifei Liu) [Orabug: 35493648] {CVE-2023-3159}
- rds: Add proper refcnt when an RDS MR references an RDS Socket (Håkon Bugge) [Orabug: 35817900]
- rds: Check for UAF in rds_destroy_mr (Håkon Bugge) [Orabug: 35817900]
- uek-rpm: Enable Microsoft recommended Hyper-V flags for ARM (Harshvardhan Jha) [Orabug: 35823292]
- xfs: reserve less log space when recovering log intent items (Darrick J. Wong) [Orabug: 35871839]
- scsi: target: core: Fix deadlock due to recursive locking (Junxiao Bi) [Orabug: 35886688]



ELSA-2023-7784 Important: Oracle Linux 9 postgresql security update


Oracle Linux Security Advisory ELSA-2023-7784

http://linux.oracle.com/errata/ELSA-2023-7784.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
postgresql-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-contrib-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-plperl-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-plpython3-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-pltcl-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-private-libs-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-server-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-upgrade-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-docs-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-private-devel-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-server-devel-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-static-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-test-13.13-1.0.1.el9_3.x86_64.rpm
postgresql-upgrade-devel-13.13-1.0.1.el9_3.x86_64.rpm

aarch64:
postgresql-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-contrib-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-plperl-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-plpython3-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-pltcl-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-private-libs-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-server-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-upgrade-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-docs-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-private-devel-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-server-devel-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-static-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-test-13.13-1.0.1.el9_3.aarch64.rpm
postgresql-upgrade-devel-13.13-1.0.1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//postgresql-13.13-1.0.1.el9_3.src.rpm

Related CVEs:

CVE-2023-5868
CVE-2023-5869
CVE-2023-5870
CVE-2023-39417

Description of changes:

[13.13-1.0.1]
- Update to 13.13
- Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, and CVE-2023-39417



ELSA-2023-7747 Moderate: Oracle Linux 9 libxml2 security update


Oracle Linux Security Advisory ELSA-2023-7747

http://linux.oracle.com/errata/ELSA-2023-7747.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxml2-2.9.13-5.el9_3.i686.rpm
libxml2-2.9.13-5.el9_3.x86_64.rpm
libxml2-devel-2.9.13-5.el9_3.i686.rpm
libxml2-devel-2.9.13-5.el9_3.x86_64.rpm
python3-libxml2-2.9.13-5.el9_3.x86_64.rpm

aarch64:
libxml2-2.9.13-5.el9_3.aarch64.rpm
libxml2-devel-2.9.13-5.el9_3.aarch64.rpm
python3-libxml2-2.9.13-5.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//libxml2-2.9.13-5.el9_3.src.rpm

Related CVEs:

CVE-2023-39615

Description of changes:

[2.9.13-5]
- Fix CVE-2023-39615 (RHEL-5180)



ELSA-2023-7766 Moderate: Oracle Linux 9 containernetworking-plugins security update


Oracle Linux Security Advisory ELSA-2023-7766

http://linux.oracle.com/errata/ELSA-2023-7766.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
containernetworking-plugins-1.3.0-6.el9_3.x86_64.rpm

aarch64:
containernetworking-plugins-1.3.0-6.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//containernetworking-plugins-1.3.0-6.el9_3.src.rpm

Related CVEs:

CVE-2023-29409
CVE-2023-39318
CVE-2023-39319
CVE-2023-39321
CVE-2023-39322

Description of changes:

[1:1.3.0-6]
- rebuild for following CVEs:
CVE-2023-29409 CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322
- Resolves: #2228743
- Resolves: #2237773
- Resolves: #2237776
- Resolves: #2237777
- Resolves: #2237778

[1:1.3.0-5]
- fix path to dhcp service
- Resolves: #RHEL-3140



ELSA-2023-13043 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2023-13043

http://linux.oracle.com/errata/ELSA-2023-13043.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-core-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-debug-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-devel-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-doc-5.15.0-201.135.6.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-container-5.15.0-201.135.6.el9uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-201.135.6.el9uek.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-uek-5.15.0-201.135.6.el9uek.src.rpm

Related CVEs:

CVE-2023-3159
CVE-2023-4244
CVE-2023-42752
CVE-2023-42756
CVE-2023-45871
CVE-2023-4623
CVE-2023-4921
CVE-2023-5090
CVE-2023-5178
CVE-2023-5197

Description of changes:

[5.15.0-201.135.6.el9uek]
- Revert ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- netfilter: nf_tables: split async and sync catchall in two functions (Pablo Neira Ayuso)
- netfilter: nf_tables: remove catchall element in GC sync path (Pablo Neira Ayuso)
- scsi: mpt3sas: Fix loop logic (Ranjan Kumar)
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 36050011]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 36050011]
- tracing: Have trace_event_file have ref counters (Steven Rostedt (Google)) [Orabug: 36059972]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36039006]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36039006]
- audit: Apply special optimizations (Håkon Bugge) [Orabug: 36038149]
- audit: Vary struct audit_entry alignment (Håkon Bugge) [Orabug: 36038149]
- Revert "Revert "printk: Consolidate console deferred printing"" (Håkon Bugge) [Orabug: 36038149]

[5.15.0-201.135.5.el9uek]
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value (Ivan Vecera)
- firmware/imx-dsp: Fix use_after_free in imx_dsp_setup_channels() (Hao Ge)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server (Olga Kornievskaia)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- Revert "kernel/sched: Modify initial boot task idle setup" (Greg Kroah-Hartman)
- usb: cdns3: Modify the return value of cdns_set_active () to void when CONFIG_PM_SLEEP is disabled (Xiaolei Wang)
- quota: Fix slow quotaoff (Jan Kara)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028025] {CVE-2023-5178}

[5.15.0-201.135.4.el9uek]
- uek-rpm: Enable PDS_CORE and PDS_VFIO drivers (Joao Martins) [Orabug: 35424097]
- pds_core: use correct index to mask irq (Shannon Nelson) [Orabug: 35424097]
- amd/pds_core: core: No need for Null pointer check before kfree (Bragatheswaran Manickavel) [Orabug: 35424097]
- pds_core: add an error code check in pdsc_dl_info_get (Su Hui) [Orabug: 35424097]
- pds_core: devlink health: use retained error fmsg API (Przemek Kitszel) [Orabug: 35424097]
- pds_core: add attempts to fix broken PCI (Shannon Nelson) [Orabug: 35424097]
- pds_core: implement pci reset handlers (Shannon Nelson) [Orabug: 35424097]
- pds_core: keep viftypes table across reset (Shannon Nelson) [Orabug: 35424097]
- pds_core: check health in devcmd wait (Shannon Nelson) [Orabug: 35424097]
- vfio/pds: Use proper PF device access helper (Shixiong Ou) [Orabug: 35424097]
- vfio/pds: Add missing PCI_IOV depends (Shixiong Ou) [Orabug: 35424097]
- pds_core: pass opcode to devcmd_wait (Shannon Nelson) [Orabug: 35424097]
- pds_core: check for work queue before use (Shannon Nelson) [Orabug: 35424097]
- pds_core: no reset command for VF (Shannon Nelson) [Orabug: 35424097]
- pds_core: no health reporter in VF (Shannon Nelson) [Orabug: 35424097]
- pds_core: protect devlink callbacks from fw_down state (Shannon Nelson) [Orabug: 35424097]
- vfio/pds: Send type for SUSPEND_STATUS command (Brett Creeley) [Orabug: 35424097]
- Revert "pds_core: Fix some kernel-doc comments" (Jakub Kicinski) [Orabug: 35424097]
- pds_core: Fix some kernel-doc comments (Yang Li) [Orabug: 35424097]
- pds_core: remove redundant pci_clear_master() (Yu Liao) [Orabug: 35424097]
- vfio/pds: fix return value in pds_vfio_get_lm_file() (Yang Yingliang) [Orabug: 35424097]
- pds_core: Fix function header descriptions (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add Kconfig and documentation (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add support for firmware recovery (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add support for dirty page tracking (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add VFIO live migration support (Brett Creeley) [Orabug: 35424097]
- vfio/pds: register with the pds_core PF (Brett Creeley) [Orabug: 35424097]
- pds_core: Require callers of register/unregister to pass PF drvdata (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Initial support for pds VFIO driver (Brett Creeley) [Orabug: 35424097]
- vfio: Commonize combine_ranges for use in other VFIO drivers (Brett Creeley) [Orabug: 35424097]
- pds_core: Fix documentation for pds_client_register (Brett Creeley) [Orabug: 35424097]
- pds_core: Fix FW recovery detection (Brett Creeley) [Orabug: 35424097]
- pds_core: fix mutex double unlock in error path (Shannon Nelson) [Orabug: 35424097]
- pds_core: add AUXILIARY_BUS and NET_DEVLINK to Kconfig (Shannon Nelson) [Orabug: 35424097]
- pds_core: remove CONFIG_DEBUG_FS from makefile (Shannon Nelson) [Orabug: 35424097]
- pds_core: Kconfig and pds_core.rst (Shannon Nelson) [Orabug: 35424097]
- pds_core: publish events to the clients (Shannon Nelson) [Orabug: 35424097]
- pds_core: add the aux client API (Shannon Nelson) [Orabug: 35424097]
- pds_core: devlink params for enabling VIF support (Shannon Nelson) [Orabug: 35424097]
- pds_core: add auxiliary_bus devices (Shannon Nelson) [Orabug: 35424097]
- pds_core: add initial VF device handling (Shannon Nelson) [Orabug: 35424097]
- pds_core: set up the VIF definitions and defaults (Shannon Nelson) [Orabug: 35424097]
- pds_core: add FW update feature to devlink (Shannon Nelson) [Orabug: 35424097]
- pds_core: Add adminq processing and commands (Shannon Nelson) [Orabug: 35424097]
- pds_core: set up device and adminq (Shannon Nelson) [Orabug: 35424097]
- pds_core: add devlink health facilities (Shannon Nelson) [Orabug: 35424097]
- pds_core: health timer and workqueue (Shannon Nelson) [Orabug: 35424097]
- pds_core: add devcmd device interfaces (Shannon Nelson) [Orabug: 35424097]
- pds_core: initial framework for pds_core PF driver (Shannon Nelson) [Orabug: 35424097]
- vfio/mlx5: Use the new device life cycle helpers (Yi Liu) [Orabug: 35424097]
- vfio/pci: Use the new device life cycle helpers (Yi Liu) [Orabug: 35424097]
- vfio: Add helpers for unifying vfio_device life cycle (Kevin Tian) [Orabug: 35424097]
- net/rds: Always cancel heartbeat worker thread during conn destroy (Sharath Srinivasan) [Orabug: 35739389]
- x86: KVM: SVM: always update the x2avic msr interception (Maxim Levitsky) [Orabug: 35857365] {CVE-2023-5090}
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35896266]
- hugetlb: disable HVO in Xen (Jane Chu) [Orabug: 35904478]
- hugetlb: check for hugetlb folio before vmemmap_restore (Mike Kravetz) [Orabug: 35904478]
- hugetlb: batch TLB flushes when restoring vmemmap (Mike Kravetz) [Orabug: 35904478]
- hugetlb: batch TLB flushes when freeing vmemmap (Joao Martins) [Orabug: 35904478]
- hugetlb: batch PMD split for bulk vmemmap dedup (Joao Martins) [Orabug: 35904478]
- hugetlb: batch freeing of vmemmap pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: perform vmemmap restoration on a list of pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: perform vmemmap optimization on a list of pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: restructure pool allocations (Mike Kravetz) [Orabug: 35904478]
- hugetlb: optimize update_and_free_pages_bulk to avoid lock cycles (Mike Kravetz) [Orabug: 35904478]
- mm: hugetlb: skip initialization of gigantic tail struct pages if freed by HVO (Usama Arif) [Orabug: 35904478]
- memblock: introduce MEMBLOCK_RSRV_NOINIT flag (Usama Arif) [Orabug: 35904478]
- mm: pass nid to reserve_bootmem_region() (Yajun Deng) [Orabug: 35904478]
- mm/page_alloc: invert logic for early page initialisation checks (Mike Rapoport (IBM)) [Orabug: 35904478]
- memblock: add missing argument definition (Usama Arif) [Orabug: 35904478]
- memblock: pass memblock_type to memblock_setclr_flag (Usama Arif) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use nid of the head page to reallocate it (Usama Arif) [Orabug: 35904478]
- mm: hugetlb_vmemmap: allow alloc vmemmap pages fallback to other nodes (Yuan Can) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix hugetlb page number decrease failed on movable nodes (Yuan Can) [Orabug: 35904478]
- hugetlb: set hugetlb page flag before optimizing vmemmap (Mike Kravetz) [Orabug: 35904478]
- hugetlb: do not clear hugetlb dtor until allocating vmemmap (Mike Kravetz) [Orabug: 35904478]
- mm/vmemmap optimization: split hugetlb and devdax vmemmap optimization (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/vmemmap: improve vmemmap_can_optimize and allow architectures to override (Aneesh Kumar K.V) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix a race between vmemmap pmd split (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: provide stronger vmemmap allocation guarantees (Pasha Tatashin) [Orabug: 35904478]
- mm/hugetlb_vmemmap: rename ARCH_WANT_HUGETLB_PAGE_OPTIMIZE_VMEMMAP (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/vmemmap/devdax: fix kernel crash when probing devdax devices (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/hugetlb_vmemmap: fix hugetlb_vmemmap_sysctls.maxlen (Jane Chu) [Orabug: 35904478]
- mm: move most of core MM initialization to mm/mm_init.c (Mike Rapoport (IBM)) [Orabug: 35904478]
- memblock: Disable mirror feature if kernelcore is not specified (Ma Wupeng) [Orabug: 35904478]
- mm: hugetlb_vmemmap: simplify hugetlb_vmemmap_init() a bit (Muchun Song) [Orabug: 35904478]
- mm/hugetlb_vmemmap: remap head page to newly allocated page (Joao Martins) [Orabug: 35904478]
- mm: hugetlb_vmemmap: remove redundant list_del() (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: include missing linux/moduleparam.h (Vasily Gorbik) [Orabug: 35904478]
- hugetlb: freeze allocated pages before creating hugetlb pages (Mike Kravetz) [Orabug: 35904478]
- mm: hugetlb_vmemmap: simplify reset_struct_pages() (Muchun Song) [Orabug: 35904478]
- mm/hugetlb: make detecting shared pte more reliable (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix sysfs group leak in hugetlb_unregister_node() (Miaohe Lin) [Orabug: 35904478]
- mm: hugetlb_vmemmap: add missing smp_wmb() before set_pte_at() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix missing call to restore_reserve_on_error() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix WARN_ON(!kobj) in sysfs_create_group() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix incorrect update of max_huge_pages (Miaohe Lin) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use PTRS_PER_PTE instead of PMD_SIZE / PAGE_SIZE (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: move code comments to vmemmap_dedup.rst (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: improve hugetlb_vmemmap code readability (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: replace early_param() with core_param() (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: move vmemmap code related to HugeTLB to hugetlb_vmemmap.c (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: introduce the name HVO (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: optimize vmemmap_optimize_mode handling (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: delete hugetlb_optimize_vmemmap_enabled() (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: make hugetlb_optimize_vmemmap compatible with memmap_on_memory (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: enumerate all supported section flags (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix CONFIG_HUGETLB_PAGE_FREE_VMEMMAP_DEFAULT_ON (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: add hugetlb_optimize_vmemmap sysctl (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use kstrtobool for hugetlb_vmemmap param parsing (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: override memmap_on_memory when hugetlb_free_vmemmap=on (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: disable hugetlb_optimize_vmemmap when struct page crosses page boundaries (Muchun Song) [Orabug: 35904478]
- mm/hugetlb_vmemmap: move comment block to Documentation/vm (Joao Martins) [Orabug: 35904478]
- uek-rpm/ol8[9]: config switch update to keep default vmemmap optimization behavior (Jane Chu) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup CONFIG_HUGETLB_PAGE_FREE_VMEMMAP* (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup hugetlb_free_vmemmap_enabled* (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup hugetlb_vmemmap related functions (Muchun Song) [Orabug: 35904478]
- arm64: mm: hugetlb: enable HUGETLB_PAGE_FREE_VMEMMAP for arm64 (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: introduce ARCH_WANT_HUGETLB_PAGE_FREE_VMEMMAP (Muchun Song) [Orabug: 35904478]
- Consider inflight IO in io accounting for high latency devices (Gulam Mohamed) [Orabug: 35922334]
- EDAC/amd64: Add support for AMD family 1Ah models 00h-1Fh and 40h-4Fh (Avadhut Naik) [Orabug: 35925125]
- hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (Avadhut Naik) [Orabug: 35925125]
- x86/amd_nb: Add PCI IDs for AMD Family 1Ah-based models (Avadhut Naik) [Orabug: 35925125]
- EDAC/amd64: Add get_err_info() to pvt->ops (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split dump_misc_regs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split init_csrows() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split determine_edac_cap() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Rename f17h_determine_edac_ctl_cap() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Split setup_mci_misc_attrs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split ecc_enabled() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split read_mc_regs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split determine_memory_type() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split read_base_mask() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split prep_chip_selects() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Rework hw_info_{get,put} (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Merge struct amd64_family_type into struct amd64_pvt (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Do not discover ECC symbol size for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Drop dbam_to_cs() for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Split get_csrow_nr_pages() into dct/umc functions (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Rename debug_display_dimm_sizes() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Shut up an -Werror,-Wsometimes-uninitialized clang false positive (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove early_channel_count() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove PCI Function 0 (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove PCI Function 6 (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove scrub rate control for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Don't set up EDAC PCI control on Family 17h+ (Yazen Ghannam) [Orabug: 35925125]
- x86/amd_nb: Unexport amd_cache_northbridges() (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Add new register offset support and related changes (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Set memory type per DIMM (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Add support for family 19h, models 50h-5fh (Marc Bevand) [Orabug: 35925125]
- EDAC/amd64: Add context struct (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Allow for DF Indirect Broadcast reads (Yazen Ghannam) [Orabug: 35925125]
- x86/amd_nb, EDAC/amd64: Move DF Indirect Read to AMD64 EDAC (Yazen Ghannam) [Orabug: 35925125]
- x86/microcode/AMD: Rip out static buffers (Borislav Petkov (AMD)) [Orabug: 35925125]
- x86/microcode/amd: Remove unneeded pointer arithmetic (Nathan Fontenot) [Orabug: 35925125]
- x86/microcode/AMD: Get rid of __find_equiv_id() (Borislav Petkov (AMD)) [Orabug: 35925125]
- x86/microcode/AMD: Rename a couple of functions (Borislav Petkov) [Orabug: 35925125]
- crypto: ccp - Add support for PCI device 0x156E (John Allen) [Orabug: 35925125]
- crypto: ccp - Add support for PCI device 0x17E0 (Mario Limonciello) [Orabug: 35925125]
- sbsa_gwdt: Calculate timeout with 64-bit math (Darren Hart) [Orabug: 35968810]
- uek-rpm: Enable CONFIG_USBIP_VHCI_HCD and CONFIG_USBIP_HOST in UEK7 (Harshit Mogalapalli) [Orabug: 35994192]
- vfio/type1: Parameterize pgsize bitmap (Joao Martins) [Orabug: 36002436]
- vfio/type1: Parallel dirty scans with padata (Joao Martins) [Orabug: 36002436]
- iommu/iova_bitmap: Add remote mm_struct for iova_bitmap (Joao Martins) [Orabug: 36002436]
- vfio/type1: Advertise IOMMU dirty tracking support (Joao Martins) [Orabug: 36002436]
- vfio/type1: Avoid perpectual dirty when iommu supports (Joao Martins) [Orabug: 36002436]
- vfio/type1: Report dirty info from IOMMU (Joao Martins) [Orabug: 36002436]
- vfio/type1: Add hardware dirty tracking start/stop support (Joao Martins) [Orabug: 36002436]
- vfio/type1: Move start/stop dirty tracking to helpers (Joao Martins) [Orabug: 36002436]
- iommu/amd: Improve dirty read io-pgtable walker (Joao Martins) [Orabug: 36002436]
- iommu/amd: Access/Dirty bit support in IOPTEs (Joao Martins) [Orabug: 36002436]
- iommu: Add iommu_domain ops for dirty tracking (Joao Martins) [Orabug: 36002436]
- vfio: Move iova_bitmap into iommufd (Joao Martins) [Orabug: 36002436]

[5.15.0-201.135.3.el9uek]
- Revert "printk: Consolidate console deferred printing" (Sherry Yang) [Orabug: 35955850]

[5.15.0-201.135.2.el9uek]
- LTS Version: v5.15.135 (Jack Vogel)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- ksmbd: fix uaf in smb20_oplock_break_ack (luosili)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- RDMA/cma: Initialize ib_sa_multicast structure to 0 when join (Mark Zhang)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- of: dynamic: Fix potential memory leak in of_changeset_action() (Dan Carpenter)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- dm zoned: free dmz->ddev array in dmz_put_zoned_devices (Fedor Pchelkin)
- HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit (Srinivas Pandruvada)
- HID: sony: remove duplicate NULL check before calling usb_free_urb() (Jiri Kosina)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- tipc: fix a potential deadlock on &tx->lock (Chengfeng Ye)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- ipv4: Set offload_failed flag in fibmatch results (Benjamin Poirier)
- netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure (Florian Westphal)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- ibmveth: Remove condition to recompute TCP header checksum. (David Wilder)
- net: ethernet: ti: am65-cpsw: Fix error code in am65_cpsw_nuss_init_tx_chns() (Dan Carpenter)
- net: nfc: llcp: Add lock when modifying device list (Jeremy Cline)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent (Fabio Estevam)
- ptp: ocp: Fix error handling in ptp_ocp_device_init (Dinghao Liu)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets (Jakub Sitnicki)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig (Oleksandr Tymoshenko)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- bpf: Fix tr dereferencing (Leon Hwang)
- wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet (Pin-yen Lin)
- wifi: iwlwifi: mvm: Fix a memory corruption issue (Christophe JAILLET)
- iwlwifi: avoid void pointer arithmetic (Johannes Berg)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- HID: sony: Fix a potential memory leak in sony_probe() (Christophe JAILLET)
- arm64: Add Cortex-A520 CPU part definition (Rob Herring)
- drm/amd: Fix detection of _PR3 on the PCIe root port (Mario Limonciello)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- net: replace calls to sock->ops->connect() with kernel_connect() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- vringh: don't use vringh_kiov_advance() in vringh_iov_xfer() (Stefano Garzarella)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- Revert "clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz" (Greg Kroah-Hartman)
- block: fix use-after-free of q->q_usage_counter (Ming Lei)
- rbd: take header_rwsem in rbd_dev_refresh() only when updating (Ilya Dryomov)
- rbd: decouple parent info read-in from updating rbd_dev (Ilya Dryomov)
- rbd: decouple header read-in from updating rbd_dev->header (Ilya Dryomov)
- rbd: move rbd_dev_refresh() definition (Ilya Dryomov)
- iommu/arm-smmu-v3: Avoid constructing invalid range commands (Robin Murphy)
- iommu/arm-smmu-v3: Set TTL invalidation hint better (Robin Murphy)
- arm64: Avoid repeated AA64MMFR1_EL1 register read on pagefault path (Gabriel Krisman Bertazi)
- ring-buffer: Fix bytes info in per_cpu buffer stats (Zheng Yejian)
- ring-buffer: remove obsolete comment for free_buffer_page() (Vlastimil Babka)
- NFSv4: Fix a state manager thread deadlock regression (Trond Myklebust)
- NFS: rename nfs_client_kset to nfs_kset (Benjamin Coddington)
- NFS: Cleanup unused rpc_clnt variable (Benjamin Coddington)
- ASoC: tegra: Fix redundant PLLA and PLLA_OUT0 updates (Sameer Pujar)
- ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol (Sameer Pujar)
- spi: zynqmp-gqspi: fix clock imbalance on probe failure (Johan Hovold)
- spi: zynqmp-gqspi: Convert to platform remove callback returning void (Uwe Kleine-König)
- LTS Version: v5.15.134 (Jack Vogel)
- netfilter: nf_tables: fix kdoc warnings after gc rework (Florian Westphal)
- drm/meson: fix memory leak on ->hpd_notify callback (Jani Nikula)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- bpf: Fix BTF_ID symbol generation collision in tools/ (Nick Desaulniers)
- bpf: Fix BTF_ID symbol generation collision (Jiri Olsa)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- proc: nommu: /proc//maps: release mmap read lock (Ben Wolsieffer)
- Revert "SUNRPC dont update timeout value on connection reset" (Trond Myklebust)
- io_uring/fs: remove sqe->rw_flags checking from LINKAT (Jens Axboe)
- sched/rt: Fix live lock between select_fallback_rq() and RT push (Joel Fernandes (Google))
- kernel/sched: Modify initial boot task idle setup (Liam R. Howlett)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- netfilter: nf_tables: disallow rule removal from chain binding (Pablo Neira Ayuso) [Orabug: 35865117] {CVE-2023-5197}
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux" (Daniel Starke)
- misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to probe (Ricky WU)
- x86/srso: Add SRSO mitigation for Hygon processors (Pu Wen)
- iommu/arm-smmu-v3: Fix soft lockup triggered by arm_smmu_mm_invalidate_range (Nicolin Chen)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev (Irvin Cote)
- i40e: fix potential NULL pointer dereferencing of pf->vf i40e_sync_vsi_filters() (Andrii Staikov)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- nvme-pci: factor out a nvme_pci_alloc_dev helper (Christoph Hellwig)
- nvme-pci: factor the iod mempool creation into a helper (Christoph Hellwig)
- cgroup: Fix suspicious rcu_dereference_check() usage warning (Chengming Zhou)
- sched/cpuacct: Optimize away RCU read lock (Chengming Zhou)
- perf build: Define YYNOMEM as YYNOABORT for bison < 3.81 (Arnaldo Carvalho de Melo)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- powerpc/watchpoint: Disable pagefaults when getting user instruction (Benjamin Gray)
- powerpc/watchpoints: Disable preemption in thread_change_pc() (Benjamin Gray)
- media: vb2: frame_vector.c: replace WARN_ONCE with a comment (Hans Verkuil)
- ASoC: imx-rpmsg: Set ignore_pmdown_time for dai_link (Chancel Liu)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- ASoC: fsl: imx-pcm-rpmsg: Add SNDRV_PCM_INFO_BATCH flag (Shengjiu Wang)
- spi: stm32: add a delay before SPI disable (Valentin Caron)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- smb3: correct places where ENOTSUPP is used instead of preferred EOPNOTSUPP (Steve French)
- scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command (Michal Grzedzicki)
- scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command (Michal Grzedzicki)
- drm/amdgpu: Handle null atom context in VBIOS info ioctl (David Francis)
- drm/amd/display: Don't check registers, if using AUX BL control (Swapnil Patel)
- platform/mellanox: mlxbf-bootctl: add NET dependency into Kconfig (David Thompson)
- ring-buffer: Do not attempt to read past "commit" (Steven Rostedt (Google))
- selftests: fix dependency checker script (Ricardo B. Marliere)
- btrfs: improve error message after failure to add delayed dir index item (Filipe Manana)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock (Kiwoong Kim)
- scsi: qedf: Add synchronization between I/O completions and abort (Javed Hasan)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- spi: sun6i: fix race between DMA RX transfer completion and RX FIFO drain (Tobias Schramm)
- spi: sun6i: reduce DMA RX transfer width to single byte (Tobias Schramm)
- dma-debug: don't call __dma_entry_alloc_check_leak() under free_entries_lock (Sergey Senozhatsky)
- i2c: npcm7xx: Fix callback completion ordering (William A. Kennington III)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- soc: imx8m: Enable OCOTP clock for imx8mm before reading registers (Nathan Rossi)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- firmware: imx-dsp: Fix an error handling path in imx_dsp_setup_channels() (Christophe JAILLET)
- power: supply: ucs1002: fix error code in ucs1002_get_property() (Dan Carpenter)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- ARM: dts: ti: omap: Fix bandgap thermal cells addressing for omap3/4 (Tony Lindgren)
- ARM: dts: omap: correct indentation (Krzysztof Kozlowski)
- treewide: Replace GPLv2 boilerplate/reference with SPDX - gpl-2.0_56.RULE (part 1) (Thomas Gleixner)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- bus: ti-sysc: Fix missing AM35xx SoC matching (Adam Ford)
- bus: ti-sysc: Use fsleep() instead of usleep_range() in sysc_reset() (Julien Panis)
- drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet (Marek Vasut)
- MIPS: Alchemy: only build mmc support helpers if au1xmmc is enabled (Christoph Hellwig)
- btrfs: reset destination buffer when read_extent_buffer() gets invalid range (Qu Wenruo)
- ata: ahci: Add Elkhart Lake AHCI controller (Werner Fischer)
- ata: ahci: Rename board_ahci_mobile (Mario Limonciello)
- ata: ahci: Add support for AMD A85 FCH (Hudson D4) (Paul Menzel)
- ata: libata: Rename link flag ATA_LFLAG_NO_DB_DELAY (Paul Menzel)
- netfilter: nft_exthdr: Fix non-linear header modification (Xiao Liang)
- netfilter: exthdr: add support for tcp option removal (Florian Westphal)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- Input: i8042 - rename i8042-x86ia64io.h to i8042-acpipnpio.h (Huacai Chen)
- xfs: fix xfs_inodegc_stop racing with mod_delayed_work (Darrick J. Wong)
- xfs: disable reaping in fscounters scrub (Darrick J. Wong)
- xfs: check that per-cpu inodegc workers actually run on that cpu (Darrick J. Wong)
- xfs: explicitly specify cpu when forcing inodegc delayed work to run immediately (Darrick J. Wong)
- xfs: introduce xfs_inodegc_push() (Dave Chinner)
- xfs: bound maximum wait time for inodegc work (Dave Chinner)
- i2c: mux: gpio: Add missing fwnode_handle_put() (Liang He)
- i2c: mux: gpio: Replace custom acpi_get_local_address() (Andy Shevchenko)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- Fix up backport of 136191703038 ("interconnect: Teach lockdep about icc_bw_lock order") (Sasha Levin)
- igc: Expose tx-usecs coalesce setting to user (Muhammad Husaini Zulkifli)
- bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI (Sebastian Andrzej Siewior)
- net: ena: Flush XDP packets on error. (Sebastian Andrzej Siewior)
- locking/seqlock: Do the lockdep annotation before locking in do_write_seqcount_begin_nested() (Sebastian Andrzej Siewior)
- netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP (Jozsef Kadlecsik) [Orabug: 35865151] {CVE-2023-42756}
- netfilter: nf_tables: disable toggling dormant table state more than once (Florian Westphal)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- net: hns3: fix fail to delete tc flower rules during reset issue (Jijie Shao)
- net: hns3: only enable unicast promisc when mac table full (Jian Shen)
- net: hns3: fix GRE checksum offload issue (Jie Wang)
- x86/srso: Fix SBPB enablement for spec_rstack_overflow=off (Josh Poimboeuf)
- x86/srso: Fix srso_show_state() side effect (Josh Poimboeuf)
- platform/x86: intel_scu_ipc: Fail IPC send if still busy (Stephen Boyd)
- platform/x86: intel_scu_ipc: Don't override scu in intel_scu_ipc_dev_simple_command() (Stephen Boyd)
- platform/x86: intel_scu_ipc: Check status upon timeout in ipc_wait_for_interrupt() (Stephen Boyd)
- platform/x86: intel_scu_ipc: Check status after timeout in busy_loop() (Stephen Boyd)
- dccp: fix dccp_v4_err()/dccp_v6_err() again (Eric Dumazet)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- igc: Fix infinite initialization loop with early XDP redirect (Vinicius Costa Gomes)
- ionic: fix 16bit math issue when PAGE_SIZE >= 64KB (David Christensen)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Add VF VLAN pruning (Mateusz Palczewski)
- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (Radoslaw Tyl)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- net/core: Fix ETH_P_1588 flow dissector (Sasha Neftin)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- netfilter: nf_tables: fix memleak when more than 255 elements expired (Florian Westphal)
- netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration (Pablo Neira Ayuso)
- netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation fails (Pablo Neira Ayuso)
- netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC (Pablo Neira Ayuso)
- netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention (Pablo Neira Ayuso)
- netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction (Pablo Neira Ayuso) [Orabug: 35814389] {CVE-2023-4244}
- netfilter: nf_tables: defer gc run if previous batch is still pending (Florian Westphal)
- netfilter: nf_tables: use correct lock to protect gc_list (Pablo Neira Ayuso)
- netfilter: nf_tables: GC transaction race with abort path (Pablo Neira Ayuso)
- netfilter: nf_tables: GC transaction race with netns dismantle (Pablo Neira Ayuso)
- netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path (Pablo Neira Ayuso)
- netfilter: nf_tables: don't fail inserts if duplicate has expired (Florian Westphal)
- netfilter: nf_tables: remove busy mark and gc batch API (Pablo Neira Ayuso)
- netfilter: nft_set_hash: mark set element as dead when deleting from packet path (Pablo Neira Ayuso)
- netfilter: nf_tables: adapt set backend to use GC transaction API (Pablo Neira Ayuso) [Orabug: 35814389] {CVE-2023-4244}
- netfilter: nf_tables: GC transaction API to avoid race with control plane (Pablo Neira Ayuso)
- netfilter: nf_tables: don't skip expired elements during walk (Florian Westphal)
- tracing: Have event inject files inc the trace array ref count (Steven Rostedt (Google))
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- ata: ahci: Drop pointless VPRINTK() calls and convert the remaining ones (Hannes Reinecke)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- tracing: Make trace_marker{,_raw} stream-like (John Keeping)
- NFSv4.1: fix pnfs MDS=DS session trunking (Olga Kornievskaia)
- NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server (Olga Kornievskaia)
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)
- NFS: More fixes for nfs_direct_write_reschedule_io() (Trond Myklebust)
- NFS: Use the correct commit info in nfs_join_page_group() (Trond Myklebust)
- LTS version: v5.15.133 (Jack Vogel)
- interconnect: Teach lockdep about icc_bw_lock order (Rob Clark)
- drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma (Melissa Wen)
- drm/amdgpu: fix amdgpu_cs_p1_user_fence (Christian König)
- drm/amd/display: fix the white screen issue when >= 64GB DRAM (Yifan Zhang)
- ext4: fix rec_len verify error (Shida Zhang)
- scsi: pm8001: Setup IRQs on resume (Damien Le Moal)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- i2c: aspeed: Reset the i2c controller when timeout occurs (Tommy Huang)
- tracefs: Add missing lockdown check to tracefs_create_dir() (Steven Rostedt (Google))
- nfsd: fix change_info in NFSv4 RENAME replies (Jeff Layton)
- tracing: Have option files inc the trace array ref count (Steven Rostedt (Google))
- tracing: Have current_trace inc the trace array ref count (Steven Rostedt (Google))
- tracing: Have tracing_max_latency inc the trace array ref count (Steven Rostedt (Google))
- btrfs: release path before inode lookup during the ino lookup ioctl (Filipe Manana)
- btrfs: fix lockdep splat and potential deadlock after failure running delayed items (Filipe Manana)
- ovl: fix incorrect fdput() on aio completion (Amir Goldstein)
- ovl: fix failed copyup of fileattr on a symlink (Amir Goldstein)
- attr: block mode changes of symlinks (Christian Brauner)
- md/raid1: fix error: ISO C90 forbids mixed declarations (Nigel Croxon)
- samples/hw_breakpoint: fix building without module unloading (Arnd Bergmann)
- x86/purgatory: Remove LTO flags (Song Liu)
- x86/boot/compressed: Reserve more memory for page tables (Kirill A. Shutemov)
- scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file() (Jinjie Ruan)
- selftests: tracing: Fix to unmount tracefs for recovering environment (Masami Hiramatsu (Google))
- scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir() (Jinjie Ruan)
- drm: gm12u320: Fix the timeout usage for usb_bulk_msg() (Jinjie Ruan)
- btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super (Anand Jain)
- btrfs: add a helper to read the superblock metadata_uuid (Anand Jain)
- btrfs: move btrfs_pinned_by_swapfile prototype into volumes.h (Josef Bacik)
- perf test shell stat_bpf_counters: Fix test on Intel (Namhyung Kim)
- perf test: Remove bash construct from stat_bpf_counters.sh test (James Clark)
- MIPS: Use "grep -E" instead of "egrep" (Tiezhu Yang)
- mtd: rawnand: brcmnand: Fix ECC level field setting for v7.2 controller (William Zhang)
- mtd: rawnand: brcmnand: Allow SoC to provide I/O operations (Florian Fainelli)
- jbd2: correct the end of the journal recovery scan range (Zhang Yi)
- jbd2: rename jbd_debug() to jbd2_debug() (Jan Kara)
- jbd2: kill t_handle_lock transaction spinlock (Ritesh Harjani)
- jbd2: fix use-after-free of transaction_t race (Ritesh Harjani)
- jbd2: refactor wait logic for transaction updates into a common function (Ritesh Harjani)
- printk: Consolidate console deferred printing (John Ogness)
- interconnect: Fix locking for runpm vs reclaim (Rob Clark)
- kobject: Add sanity check for kset->kobj.ktype in kset_register() (Zhen Lei)
- media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning (Sakari Ailus)
- usb: ehci: add workaround for chipidea PORTSC.PEC bug (Xu Yang)
- serial: cpm_uart: Avoid suspicious locking (Christophe Leroy)
- scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (Konstantin Shelekhin)
- tools: iio: iio_generic_buffer: Fix some integer type and calculation (Chenyuan Mi)
- usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc (Ma Ke)
- usb: cdns3: Put the cdns set active part outside the spin lock (Xiaolei Wang)
- media: pci: cx23885: replace BUG with error return (Hans Verkuil)
- media: tuners: qt1010: replace BUG_ON with a regular error (Hans Verkuil)
- media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer (Zhang Shurong)
- media: az6007: Fix null-ptr-deref in az6007_i2c_xfer() (Zhang Shurong)
- media: anysee: fix null-ptr-deref in anysee_master_xfer (Zhang Shurong)
- media: af9005: Fix null-ptr-deref in af9005_i2c_xfer (Zhang Shurong)
- media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() (Zhang Shurong)
- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (Zhang Shurong)
- PCI: fu740: Set the number of MSI vectors (Yong-Xuan Wang)
- powerpc/pseries: fix possible memory leak in ibmebus_bus_init() (ruanjinjie)
- ARM: 9317/1: kexec: Make smp stop calls asynchronous (Mårten Lindahl)
- jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount (Liu Shixin via Jfs-discussion)
- fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount() (Andrew Kanner)
- ext2: fix datatype of block number in ext2_xattr_set2() (Georg Ottinger)
- md: raid1: fix potential OOB in raid1_remove_disk() (Zhang Shurong)
- bus: ti-sysc: Configure uart quirks for k3 SoC (Tony Lindgren)
- drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() (Tuo Li)
- drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31 (Leo Chen)
- ALSA: hda: intel-dsp-cfg: add LunarLake support (Pierre-Louis Bossart)
- samples/hw_breakpoint: Fix kernel BUG 'invalid opcode: 0000' (Rong Tao)
- arm64: dts: qcom: sm8250-edo: correct ramoops pmsg-size (Krzysztof Kozlowski)
- arm64: dts: qcom: sm8150-kumano: correct ramoops pmsg-size (Krzysztof Kozlowski)
- arm64: dts: qcom: sm6125-pdx201: correct ramoops pmsg-size (Krzysztof Kozlowski)
- drm/bridge: tc358762: Instruct DSI host to generate HSE packets (Marek Vasut)
- wifi: mac80211_hwsim: drop short frames (Johannes Berg)
- netfilter: ebtables: fix fortify warnings in size_entry_mwt() (GONG, Ruiqi)
- wifi: mac80211: check S1G action frame size (Johannes Berg)
- alx: fix OOB-read compiler warning (GONG, Ruiqi)
- mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450 (Giulio Benetti)
- tpm_tis: Resend command to recover from data transfer errors (Alexander Steffen)
- crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() (Mark O'Donovan)
- wifi: wil6210: fix fortify warnings (Dmitry Antipov)
- wifi: mwifiex: fix fortify warning (Dmitry Antipov)
- wifi: ath9k: fix printk specifier (Dongliang Mu)
- wifi: ath9k: fix fortify warnings (Dmitry Antipov)
- crypto: lrw,xts - Replace strlcpy with strscpy (Azeem Shaikh)
- devlink: remove reload failed checks in params get/set callbacks (Jiri Pirko)
- ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects (Mario Limonciello)
- hw_breakpoint: fix single-stepping when using bpf_overflow_handler (Tomislav Novak)
- perf/imx_ddr: speed up overflow frequency of cycle (Xu Yang)
- perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09 (Yicong Yang)
- ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470 (Jiri Slaby (SUSE))
- scftorture: Forgive memory-allocation failure if KASAN (Paul E. McKenney)
- rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle() (Zqiang)
- kernel/fork: beware of __put_task_struct() calling context (Wander Lairson Costa)
- ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer (Abhishek Mainkar)
- locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock (Will Shiu)
- btrfs: output extra debug info if we failed to find an inline backref (Qu Wenruo)
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (Fedor Pchelkin)
- LTS version: v5.15.132 (Jack Vogel)
- pcd: fix error codes in pcd_init_unit() (Dan Carpenter)
- drm/amd/display: Fix a bug when searching for insert_above_mpcc (Wesley Chalmers)
- MIPS: Only fiddle with CHECKFLAGS if need-compiler' (Maciej W. Rozycki)
- kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg(). (Kuniyuki Iwashima)
- ixgbe: fix timestamp configuration code (Vadim Fedorenko)
- ipv6: fix ip6_sock_set_addr_preferences() typo (Eric Dumazet)
- net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict() (Liu Jian)
- platform/mellanox: mlxbf-pmc: Fix reading of unprogrammed events (Shravan Kumar Ramani)
- platform/mellanox: mlxbf-pmc: Fix potential buffer overflows (Shravan Kumar Ramani)
- platform/mellanox: mlxbf-tmfifo: Drop jumbo frames (Liming Sun)
- platform/mellanox: mlxbf-tmfifo: Drop the Rx packet if no more descriptors (Liming Sun)
- kcm: Fix memory leak in error path of kcm_sendmsg() (Shigeru Yoshida)
- r8152: check budget for r8152_poll() (Hayes Wang)
- net: dsa: sja1105: hide all multicast addresses from "bridge fdb show" (Vladimir Oltean)
- hsr: Fix uninit-value access in fill_frame_info() (Ziyang Xuan)
- net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all() (Hangyu Hua)
- net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc() (Hangyu Hua)
- net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add (Guangguan Wang)
- kselftest/runner.sh: Propagate SIGTERM to runner child (Björn Töpel)
- net: ipv4: fix one memleak in __inet_del_ifa() (Liu Jian)
- ARM: dts: BCM5301X: Extend RAM to full 256MB for Linksys EA6500 V2 (Aleksey Nasibulin)
- ARM: dts: samsung: exynos4210-i9100: Fix LCD screen's physical size (Paul Cercueil)
- block: don't add or resize partition on the disk with GENHD_FL_NO_PART (Li Lingfeng)
- block: rename GENHD_FL_NO_PART_SCAN to GENHD_FL_NO_PART (Christoph Hellwig)
- block: move GENHD_FL_BLOCK_EVENTS_ON_EXCL_WRITE to disk->event_flags (Christoph Hellwig)
- block: move GENHD_FL_NATIVE_CAPACITY to disk->state (Christoph Hellwig)
- pcd: cleanup initialization (Christoph Hellwig)
- pcd: move the identify buffer into pcd_identify (Christoph Hellwig)
- perf hists browser: Fix the number of entries for 'e' key (Namhyung Kim)
- perf tools: Handle old data in PERF_RECORD_ATTR (Namhyung Kim)
- perf hists browser: Fix hierarchy mode header (Namhyung Kim)
- MIPS: Fix CONFIG_CPU_DADDI_WORKAROUNDS modules_install' regression (Maciej W. Rozycki)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- mtd: rawnand: brcmnand: Fix potential false time out warning (William Zhang)
- mtd: rawnand: brcmnand: Fix potential out-of-bounds access in oob write (William Zhang)
- mtd: rawnand: brcmnand: Fix crash during the panic_write (William Zhang)
- btrfs: use the correct superblock to compare fsid in btrfs_validate_super (Anand Jain)
- btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART (Filipe Manana)
- btrfs: free qgroup rsv on io failure (Boris Burkov)
- fuse: nlookup missing decrement in fuse_direntplus_link (ruanmeisi)
- ata: pata_ftide010: Add missing MODULE_DESCRIPTION (Damien Le Moal)
- ata: sata_gemini: Add missing MODULE_DESCRIPTION (Damien Le Moal)
- ata: pata_falcon: fix IO base selection for Q40 (Michael Schmitz)
- lib: test_scanf: Add explicit type cast to result initialization in test_number_prefix() (Nathan Chancellor)
- ext4: add correct group descriptors and reserved GDT blocks to system zone (Wang Jianjian)
- dmaengine: sh: rz-dmac: Fix destination and source data size setting (Hien Huynh)
- ARC: atomics: Add compiler barrier to atomic operations... (Pavel Kozlov)
- sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory() (Petr Tesarik)
- net: hns3: remove GSO partial feature bit (Jie Wang)
- net: hns3: fix the port information display when sfp is absent (Yisen Zhuang)
- net: hns3: fix invalid mutex between tc qdisc and dcb ets command issue (Jijie Shao)
- net: hns3: fix debugfs concurrency issue between kfree buffer and read (Hao Chen)
- net: hns3: fix byte order conversion issue in hclge_dbg_fd_tcam_read() (Hao Chen)
- net: dsa: sja1105: complete tc-cbs offload support on SJA1110 (Vladimir Oltean)
- net: dsa: sja1105: fix -ENOSPC when replacing the same tc-cbs too many times (Vladimir Oltean)
- net: dsa: sja1105: fix bandwidth discrepancy between tc-cbs software and offload (Vladimir Oltean)
- ip_tunnels: use DEV_STATS_INC() (Eric Dumazet)
- idr: fix param name in idr_alloc_cyclic() doc (Ariel Marcovitch)
- s390/zcrypt: don't leak memory if dev_set_name() fails (Andy Shevchenko)
- igb: Change IGB_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- igc: Change IGC_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- octeontx2-af: Fix truncation of smq in CN10K NIX AQ enqueue mbox handler (Geetha sowjanya)
- kcm: Destroy mutex in kcm_exit_net() (Shigeru Yoshida)
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (valis) [Orabug: 35814453] {CVE-2023-4921}
- af_unix: Fix data race around sk->sk_err. (Kuniyuki Iwashima)
- af_unix: Fix data-races around sk->sk_shutdown. (Kuniyuki Iwashima)
- af_unix: Fix data-race around unix_tot_inflight. (Kuniyuki Iwashima)
- af_unix: Fix data-races around user->unix_inflight. (Kuniyuki Iwashima)
- net: phy: micrel: Correct bit assignments for phy_device flags (Oleksij Rempel)
- net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr (Alex Henrie)
- veth: Fixing transmit return status for dropped packets (Liang Chen)
- igb: disable virtualization features on 82580 (Corinna Vinschen)
- ipv4: ignore dst hint for multipath routes (Sriram Yagnaraman)
- drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt() (Sean Christopherson)
- xsk: Fix xsk_diag use-after-free error during socket cleanup (Magnus Karlsson)
- net: fib: avoid warn splat in flow dissector (Florian Westphal)
- net: read sk->sk_family once in sk_mc_loop() (Eric Dumazet)
- ipv4: annotate data-races around fi->fib_dead (Eric Dumazet)
- sctp: annotate data-races around sk->sk_wmem_queued (Eric Dumazet)
- net/sched: fq_pie: avoid stalls in fq_pie_timer() (Eric Dumazet)
- pwm: lpc32xx: Remove handling of PWM channels (Vladimir Zapolskiy)
- watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load (Raag Jadav)
- perf top: Don't pass an ERR_PTR() directly to perf_session__delete() (Arnaldo Carvalho de Melo)
- perf vendor events: Drop some of the JSON/events for power10 platform (Kajol Jain)
- perf vendor events: Update the JSON/events descriptions for power10 platform (Kajol Jain)
- x86/virt: Drop unnecessary check on extended CPUID level in cpu_has_svm() (Sean Christopherson)
- perf annotate bpf: Don't enclose non-debug code with an assert() (Arnaldo Carvalho de Melo)
- Input: tca6416-keypad - fix interrupt enable disbalance (Dmitry Torokhov)
- Input: tca6416-keypad - always expect proper IRQ number in i2c client (Dmitry Torokhov)
- backlight: gpio_backlight: Drop output GPIO direction check for initial power state (Ying Liu)
- pwm: atmel-tcb: Fix resource freeing in error path and remove (Uwe Kleine-König)
- pwm: atmel-tcb: Harmonize resource allocation order (Uwe Kleine-König)
- pwm: atmel-tcb: Convert to platform remove callback returning void (Uwe Kleine-König)
- perf trace: Really free the evsel->priv area (Arnaldo Carvalho de Melo)
- perf trace: Use zfree() to reduce chances of use after free (Arnaldo Carvalho de Melo)
- kconfig: fix possible buffer overflow (Konstantin Meskhidze)
- gfs2: low-memory forced flush fixes (Andreas Gruenbacher)
- gfs2: Switch to wait_event in gfs2_logd (Andreas Gruenbacher)
- kbuild: do not run depmod for 'make modules_sign' (Masahiro Yamada)
- bus: mhi: host: Skip MHI reset if device is in RDDM (Qiang Yu)
- NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info (Fedor Pchelkin)
- NFS: Fix a potential data corruption (Trond Myklebust)
- clk: qcom: mss-sc7180: fix missing resume during probe (Johan Hovold)
- clk: qcom: q6sstop-qcs404: fix missing resume during probe (Johan Hovold)
- soc: qcom: qmi_encdec: Restrict string length in decode (Chris Lew)
- clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock (Dmitry Baryshkov)
- clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz (Ahmad Fatoum)
- dt-bindings: clock: xlnx,versal-clk: drop select:false (Krzysztof Kozlowski)
- pinctrl: cherryview: fix address_space_handler() argument (Raag Jadav)
- parisc: led: Reduce CPU overhead for disk & lan LED computation (Helge Deller)
- parisc: led: Fix LAN receive and transmit LEDs (Helge Deller)
- lib/test_meminit: allocate pages up to order MAX_ORDER (Andrew Donnellan)
- clk: qcom: turingcc-qcs404: fix missing resume during probe (Johan Hovold)
- drm/ast: Fix DRAM init on AST2200 (Thomas Zimmermann)
- clk: qcom: camcc-sc7180: fix async resume during probe (Johan Hovold)
- fbdev/ep93xx-fb: Do not assign to struct fb_info.dev (Thomas Zimmermann)
- io_uring: break iopolling on signal (Pavel Begunkov)
- io_uring: break out of iowq iopoll on teardown (Pavel Begunkov)
- io_uring: always lock in io_apoll_task_func (Pavel Begunkov)
- net/ipv6: SKB symmetric hash should incorporate transport ports (Quan Tian)
- udf: initialize newblock to 0 (Tom Rix)
- md/md-bitmap: remove unnecessary local variable in backlog_store() (Yu Kuai)
- tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY (Brian Foster)
- perf/x86/uncore: Correct the number of CHAs on EMR (Kan Liang)
- x86/sgx: Break up long non-preemptible delays in sgx_vepc_release() (Jack Wang)
- USB: core: Fix oversight in SuperSpeed initialization (Alan Stern)
- USB: core: Fix race by not overwriting udev->descriptor in hub_port_init() (Alan Stern)
- USB: core: Change usb_get_device_descriptor() API (Alan Stern)
- USB: core: Unite old scheme and new scheme descriptor reads (Alan Stern)
- usb: typec: bus: verify partner exists in typec_altmode_attention (RD Babiera)
- usb: typec: tcpm: set initial svdm version based on pd revision (RD Babiera)
- cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug (Gustavo A. R. Silva)
- crypto: stm32 - fix loop iterating through scatterlist for DMA (Thomas Bourgoin)
- s390/ipl: add missing secure/has_secure file to ipl type 'unknown' (Sven Schnelle)
- pstore/ram: Check start of empty przs during init (Enlin Mu)
- mmc: renesas_sdhi: register irqs before registering controller (Wolfram Sang)
- fsverity: skip PKCS#7 parser when keyring is empty (Eric Biggers)
- net: handle ARPHRD_PPP in dev_is_mac_header_xmit() (Nicolas Dichtel)
- X.509: if signature is unsupported skip validation (Thore Sommer)
- dccp: Fix out of bounds access in DCCP error handler (Jann Horn)
- parisc: Fix /proc/cpuinfo output for lscpu (Helge Deller)
- procfs: block chmod on /proc/thread-self/comm (Aleksa Sarai)
- Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset" (Bjorn Helgaas)
- ntb: Fix calculation ntb_transport_tx_free_entry() (Dave Jiang)
- ntb: Clean up tx tail index on link down (Dave Jiang)
- ntb: Drop packets when qp link is down (Dave Jiang)
- scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (Ranjan Kumar)
- media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking interrupts (Konrad Dybcio)
- arm64: csum: Fix OoB access in IP checksum code for negative lengths (Will Deacon)
- i3c: master: svc: fix probe failure when no i3c device exist (Frank Li)
- xtensa: PMU: fix base address for the newer hardware (Max Filippov)
- backlight/lv5207lp: Compare against struct fb_info.device (Thomas Zimmermann)
- backlight/bd6107: Compare against struct fb_info.device (Thomas Zimmermann)
- backlight/gpio_backlight: Compare against struct fb_info.device (Thomas Zimmermann)
- ARM: OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch() (Gustavo A. R. Silva)
- ipmi_si: fix a memleak in try_smi_init() (Yi Yang)
- media: i2c: ccs: Check rules is non-NULL (Sakari Ailus)
- mm/vmalloc: add a safer version of find_vm_area() for debug (Joel Fernandes (Google))
- scsi: core: Fix the scsi_set_resid() documentation (Bart Van Assche)
- printk: ringbuffer: Fix truncating buffer size min_t cast (Kees Cook)
- rcu: dump vmalloc memory info safely (Zqiang)
- ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl (Takashi Iwai)
- PM / devfreq: Fix leak in devfreq_dev_release() (Boris Brezillon)
- igb: set max size RX buffer when store bad packet is enabled (Radoslaw Tyl) [Orabug: 35924095] {CVE-2023-45871}
- skbuff: skb_segment, Call zero copy functions before using skbuff frags (Mohamed Khalfella)
- igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (Eric Dumazet) [Orabug: 35923998] {CVE-2023-42752}
- virtio_ring: fix avail_wrap_counter in virtqueue_add_packed (Yuan Yao)
- cpufreq: Fix the race condition while updating the transition_task of policy (Liao Chang)
- dmaengine: ste_dma40: Add missing IRQ check in d40_probe (ruanjinjie)
- um: Fix hostaudio build errors (Randy Dunlap)
- mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume() (Yi Yang)
- mtd: spi-nor: Check bus width while setting QE bit (Hsin-Yi Wang)
- leds: trigger: tty: Do not use LED_ON/OFF constants, use led_blink_set_oneshot instead (Marek Behún)
- leds: multicolor: Use rounded division when calculating color components (Marek Behún)
- leds: pwm: Fix error code in led_pwm_create_fwnode() (Dan Carpenter)
- rpmsg: glink: Add check for kstrdup (Jiasheng Jiang)
- phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write (Jonas Karlman)
- phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate (Zheng Yang)
- phy/rockchip: inno-hdmi: use correct vco_div_5 macro on rk3328 (Jonas Karlman)
- mtd: rawnand: brcmnand: Fix mtd oobsize (William Zhang)
- tracing: Fix race issue between cpu buffer write and swap (Zheng Yejian)
- tracing: Remove extra space at the end of hwlat_detector/mode (Mikhail Kobuk)
- HID: multitouch: Correct devm device reference for hidinput input_dev name (Rahul Rameshbabu)
- HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode() (Nikita Zhandarovich)
- Revert "IB/isert: Fix incorrect release of isert connection" (Leon Romanovsky)
- amba: bus: fix refcount leak (Peng Fan)
- serial: tegra: handle clk prepare error in tegra_uart_hw_init() (Yi Yang)
- scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock (Chengfeng Ye)
- scsi: core: Use 32-bit hostnum in scsi_host_lookup() (Tony Battersby)
- cgroup:namespace: Remove unused cgroup_namespaces_init() (Lu Jialin)
- media: i2c: rdacm21: Fix uninitialized value (Jacopo Mondi)
- media: ov2680: Fix regulators being left enabled on ov2680_power_on() errors (Hans de Goede)
- media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not working (Hans de Goede)
- media: ov2680: Add ov2680_fill_format() helper function (Hans de Goede)
- media: ov2680: Don't take the lock for try_fmt calls (Hans de Goede)
- media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s (Hans de Goede)
- media: ov2680: Fix vflip / hflip set functions (Hans de Goede)
- media: ov2680: Fix ov2680_bayer_order() (Hans de Goede)
- media: ov2680: Remove auto-gain and auto-exposure controls (Hans de Goede)
- media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips (Dave Stevenson)
- media: ov5640: Enable MIPI interface in ov5640_set_power_mipi() (Marek Vasut)
- USB: gadget: f_mass_storage: Fix unused variable warning (Alan Stern)
- media: venus: hfi_venus: Only consider sys_idle_indicator on V1 (Konrad Dybcio)
- media: go7007: Remove redundant if statement (Colin Ian King)
- platform/x86: dell-sysman: Fix reference leak (Armin Wolf)
- iommu/vt-d: Fix to flush cache of PASID directory table (Yanfei Xu)
- iommu/qcom: Disable and reset context bank before programming (AngeloGioacchino Del Regno)
- fsi: aspeed: Reset master errors after CFAM reset (Eddie James)
- IB/uverbs: Fix an potential error pointer dereference (Xiang Yang)
- RDMA/hns: Fix CQ and QP cache affinity (Chengchang Tang)
- RDMA/hns: Fix incorrect post-send with direct wqe of wr-list (Junxian Huang)
- RDMA/hns: Fix port active speed (Chengchang Tang)
- iommu/sprd: Add missing force_aperture (Jason Gunthorpe)
- driver core: test_async: fix an error code (Dan Carpenter)
- dma-buf/sync_file: Fix docs syntax (Rob Clark)
- coresight: tmc: Explicit type conversions to prevent integer overflow (Ruidong Tian)
- RDMA/irdma: Replace one-element array with flexible-array member (Gustavo A. R. Silva)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko)
- x86/APM: drop the duplicate APM_MINOR_DEV macro (Randy Dunlap)
- serial: sprd: Fix DMA buffer leak issue (Chunyan Zhang)
- serial: sprd: Assign sprd_port after initialized to avoid wrong access (Chunyan Zhang)
- scsi: qla4xxx: Add length check when parsing nlattrs (Lin Ma)
- scsi: be2iscsi: Add length check when parsing nlattrs (Lin Ma)
- scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() (Lin Ma)
- scsi: iscsi: Add length check for nlattr payload (Lin Ma)
- scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param() (Wenchao Hao)
- scsi: RDMA/srp: Fix residual handling (Bart Van Assche)
- usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host() (Xu Yang)
- media: mediatek: vcodec: Return NULL if no vdec_fb is found (Irui Wang)
- media: rkvdec: increase max supported height for H.264 (Benjamin Gaignard)
- scsi: hisi_sas: Fix normally completed I/O analysed as failed (Xingui Yang)
- scsi: hisi_sas: Fix warnings detected by sparse (Xingui Yang)
- scsi: hisi_sas: Modify v3 HW SATA completion error processing (Xingui Yang)
- scsi: hisi_sas: Modify v3 HW SSP underflow error processing (Xingui Yang)
- media: cx24120: Add retval check for cx24120_message_send() (Daniil Dulov)
- media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer() (Christophe JAILLET)
- media: dib7000p: Fix potential division by zero (Daniil Dulov)
- drivers: usb: smsusb: fix error handling code in smsusb_init_device (Dongliang Mu)
- iommu: rockchip: Fix directory table address encoding (Jonas Karlman)
- iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on pasid unbind (Daniel Marcovitch)
- media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link() (Christophe JAILLET)
- media: i2c: tvp5150: check return value of devm_kasprintf() (Claudiu Beznea)
- media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables (Hans de Goede)
- RDMA/qedr: Remove a duplicate assignment in irdma_query_ah() (Minjie Du)
- pNFS: Fix assignment of xprtdata.cred (Anna Schumaker)
- NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ (Olga Kornievskaia)
- NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN (Benjamin Coddington)
- NFSD: da_addr_body field missing in some GETDEVICEINFO replies (Chuck Lever)
- fs: lockd: avoid possible wrong NULL parameter (Su Hui)
- jfs: validate max amount of blocks before allocation. (Alexei Filippov)
- ext4: fix unttached inode after power cut with orphan file feature enabled (Zhihao Cheng)
- powerpc/iommu: Fix notifiers being shared by PCI and VIO buses (Russell Currey)
- nfs/blocklayout: Use the passed in gfp flags (Dan Carpenter)
- powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT (Russell Currey)
- powerpc: Don't include lppaca.h in paca.h (Michael Ellerman)
- PCI: layerscape: Add workaround for lost link capabilities during reset (Xiaowei Bao)
- PCI: layerscape: Add the endpoint linkup notifier support (Frank Li)
- PCI: dwc: Add start_link/stop_link inlines (Serge Semin)
- wifi: ath10k: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- wifi: ath11k: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- net/mlx5: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- drm/radeon: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- drm/amdgpu: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- powerpc/perf: Convert fsl_emb notifier to state machine callbacks (Christophe Leroy)
- powerpc/fadump: reset dump area size if fadump memory reserve fails (Sourabh Jain)
- vfio/type1: fix cap_migration information leak (Stefan Hajnoczi)
- powerpc/radix: Move some functions into #ifdef CONFIG_KVM_BOOK3S_HV_POSSIBLE (Christophe Leroy)
- clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op (Ahmad Fatoum)
- clk: imx8mp: fix sai4 clock (Marco Felsch)
- PCI/ASPM: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- PCI: pciehp: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- pinctrl: mcp23s08: check return value of devm_kasprintf() (Claudiu Beznea)
- PCI: Mark NVIDIA T4 GPUs to avoid bus reset (Wu Zongyong)
- PCI: microchip: Correct the DED and SEC interrupt bit offsets (Daire McNamara)
- clk: qcom: gcc-sm6350: Fix gcc_sdcc2_apps_clk_src (Luca Weiss)
- clk: qcom: gcc-sm8250: Fix gcc_sdcc2_apps_clk_src (Patrick Whewell)
- ext4: avoid potential data overflow in next_linear_group (Kemeng Shi)
- ext4: correct grp validation in ext4_mb_good_group (Kemeng Shi)
- EDAC/igen6: Fix the issue of no error events (Qiuxu Zhuo)
- clk: qcom: gcc-sc7180: Fix up gcc_sdcc2_apps_clk_src (David Wronek)
- clk: sunxi-ng: Modify mismatched function name (Zhang Jianhua)
- drivers: clk: keystone: Fix parameter judgment in _of_pll_clk_init() (Minjie Du)
- ipmi:ssif: Fix a memory leak when scanning for an adapter (Corey Minyard)
- ipmi:ssif: Add check for kstrdup (Jiasheng Jiang)
- of: unittest: Fix overlay type in apply/revert check (Geert Uytterhoeven)
- of: overlay: Call of_changeset_init() early (Geert Uytterhoeven)
- md: raid0: account for split bio in iostat accounting (David Jeffery)
- bus: ti-sysc: Fix cast to enum warning (Tony Lindgren)
- arm64: dts: qcom: apq8016-sbc: Fix ov5640 regulator supply names (Bryan O'Donoghue)
- drm/mediatek: Fix potential memory leak if vmap() fail (Sui Jingfeng)
- drm/mediatek: Remove freeing not dynamic allocated memory (Jason-JH.Lin)
- bus: ti-sysc: Fix build warning for 64-bit build (Tony Lindgren)
- io_uring: fix drain stalls by invalid SQE (Pavel Begunkov)
- audit: fix possible soft lockup in __audit_inode_child() (Gaosheng Cui)
- drm/msm/a2xx: Call adreno_gpu_init() earlier (Fabio Estevam)
- drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create() (Yang Wang)
- smackfs: Prevent underflow in smk_set_cipso() (Dan Carpenter)
- firmware: meson_sm: fix to avoid potential NULL pointer dereference (Zhang Shurong)
- drm/msm/mdp5: Don't leak some plane state (Daniel Vetter)
- drm: xlnx: zynqmp_dpsub: Add missing check for dma_set_mask (Jiasheng Jiang)
- ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig (Nayna Jain)
- drm/panel: simple: Add missing connector type and pixel format for AUO T215HVN01 (Marek Vasut)
- drm/armada: Fix off-by-one error in armada_overlay_get_property() (Geert Uytterhoeven)
- arm64: dts: qcom: sm8150: Fix the I2C7 interrupt (Zeyan Li)
- of: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name() (Ruan Jinjie)
- drm/tegra: dpaux: Fix incorrect return value of platform_get_irq (Yangtao Li)
- drm/msm: Update dev core dump to not print backwards (Ryan McCann)
- md/md-bitmap: hold 'reconfig_mutex' in backlog_store() (Yu Kuai)
- md/bitmap: don't set max_write_behind if there is no write mostly device (Guoqing Jiang)
- md/raid10: use dereference_rdev_and_rrdev() to get devices (Li Nan)
- md/raid10: factor out dereference_rdev_and_rrdev() (Li Nan)
- drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl' (Srinivasan Shanmugam)
- arm64: dts: qcom: sdm845: Fix the min frequency of "ice_core_clk" (Manivannan Sadhasivam)
- arm64: dts: qcom: sdm845: Add missing RPMh power domain to GCC (Manivannan Sadhasivam)
- ARM: dts: BCM53573: Fix Ethernet info for Luxul devices (Rafał Miłecki)
- drm: adv7511: Fix low refresh rate register for ADV7533/5 (Bogdan Togorean)
- ARM: dts: samsung: s5pv210-smdkv210: correct ethernet reg addresses (split) (Krzysztof Kozlowski)
- ARM: dts: s5pv210: add dummy 5V regulator for backlight on SMDKv210 (Krzysztof Kozlowski)
- ARM: dts: samsung: s3c6410-mini6410: correct ethernet reg addresses (split) (Krzysztof Kozlowski)
- ARM: dts: s3c64xx: align pinctrl with dtschema (Krzysztof Kozlowski)
- x86/mm: Fix PAT bit missing from page protection modify mask (Janusz Krzysztofik)
- drm/etnaviv: fix dumping of active MMU context (Lucas Stach)
- arm64: dts: qcom: pmi8994: Add missing OVP interrupt (Konrad Dybcio)
- arm64: dts: qcom: Move WLED num-strings from pmi8994 to sony-xperia-tone (Marijn Suijten)
- arm64: dts: qcom: pmi8994: Remove hardcoded linear WLED enabled-strings (Marijn Suijten)
- arm64: dts: qcom: pm660l: Add missing short interrupt (Konrad Dybcio)
- arm64: dts: qcom: correct SPMI WLED register range encoding (Krzysztof Kozlowski)
- arm64: dts: qcom: pmi8998: Add node for WLED (AngeloGioacchino Del Regno)
- arm64: dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again (Krzysztof Kozlowski)
- ARM: dts: BCM53573: Use updated "spi-gpio" binding properties (Rafał Miłecki)
- ARM: dts: BCM53573: Add cells sizes to PCIe node (Rafał Miłecki)
- drm/amdgpu: avoid integer overflow warning in amdgpu_device_resize_fb_bar() (Arnd Bergmann)
- arm64: dts: qcom: sm8250: Mark PCIe hosts as DMA coherent (Konrad Dybcio)
- arm64: dts: qcom: pmk8350: fix ADC-TM compatible string (Dmitry Baryshkov)
- arm64: dts: qcom: sm8350: Use proper CPU compatibles (Konrad Dybcio)
- arm64: dts: qcom: sm8350: Add missing LMH interrupts to cpufreq (Konrad Dybcio)
- arm64: dts: qcom: msm8996: Add missing interrupt to the USB2 controller (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Rectify gpio-keys (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Add gpio line names for TLMM (Konrad Dybcio)
- arm64: dts: qcom: sm8250: correct dynamic power coefficients (Vincent Guittot)
- soc: qcom: ocmem: Fix NUM_PORTS & NUM_MACROS macros (Luca Weiss)
- soc: qcom: ocmem: Add OCMEM hardware version print (Luca Weiss)
- ASoC: stac9766: fix build errors with REGMAP_AC97 (Randy Dunlap)
- quota: fix dqput() to follow the guarantees dquot_srcu should provide (Baokun Li)
- quota: add new helper dquot_active() (Baokun Li)
- quota: rename dquot_active() to inode_quota_active() (Baokun Li)
- quota: factor out dquot_write_dquot() (Baokun Li)
- drm/bridge: tc358764: Fix debug print parameter order (Marek Vasut)
- netrom: Deny concurrent connect(). (Kuniyuki Iwashima)
- net/sched: sch_hfsc: Ensure inner classes have fsc curve (Budimir Markovic) [Orabug: 35810514] {CVE-2023-4623}
- hwmon: (tmp513) Fix the channel number in tmp51x_is_visible() (Biju Das)
- mlxsw: i2c: Limit single transaction buffer size (Vadim Pasternak)
- mlxsw: i2c: Fix chunk size setting in output mailbox buffer (Vadim Pasternak)
- net: arcnet: Do not call kfree_skb() under local_irq_disable() (Jinjie Ruan)
- wifi: ath9k: use IS_ERR() with debugfs_create_dir() (Wang Ming)
- Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave() (Jinjie Ruan)
- wifi: mwifiex: avoid possible NULL skb pointer dereference (Dmitry Antipov)
- wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute (Lin Ma)
- wifi: ath9k: protect WMI command response buffer replacement with a lock (Fedor Pchelkin)
- wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx (Fedor Pchelkin)
- samples/bpf: fix broken map lookup probe (Daniel T. Lee)
- wifi: mwifiex: Fix missed return in oob checks failed path (Polaris Pi)
- wifi: mwifiex: fix memory leak in mwifiex_histogram_read() (Dmitry Antipov)
- fs: ocfs2: namei: check return value of ocfs2_add_entry() (Artem Chernyshev)
- lwt: Check LWTUNNEL_XMIT_CONTINUE strictly (Yan Zhai)
- lwt: Fix return values of BPF xmit ops (Yan Zhai)
- hwrng: iproc-rng200 - Implement suspend and resume calls (Florian Fainelli)
- crypto: caam - fix unchecked return value error (Gaurav Jain)
- ice: ice_aq_check_events: fix off-by-one check when filling buffer (Przemek Kitszel)
- net-memcg: Fix scope of sockmem pressure indicators (Abel Wu)
- selftests/bpf: Clean up fmod_ret in bench_rename test script (Yipeng Zou)
- net: tcp: fix unexcepted socket die when snd_wnd is 0 (Menglong Dong)
- Bluetooth: Fix potential use-after-free when clear keys (Min Li)
- Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe() (Yuanjun Gong)
- crypto: stm32 - Properly handle pm_runtime_get failing (Uwe Kleine-König)
- wifi: mwifiex: fix error recovery in PCIE buffer descriptor management (Dmitry Antipov)
- wifi: mwifiex: Fix OOB and integer underflow when rx packets (Polaris Pi)
- wifi: mt76: mt7915: fix power-limits while chan_switch (Ryder Lee)
- can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also in case of OOM (Marc Kleine-Budde)
- spi: tegra20-sflash: fix to check return value of platform_get_irq() in tegra_sflash_probe() (Zhang Shurong)
- wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH (Lin Ma)
- ipv6: Add reasons for skb drops to __udp6_lib_rcv (David Ahern)
- bpf: reject unhashed sockets in bpf_sk_assign (Lorenz Bauer)
- udp: re-score reuseport groups when connected sockets are present (Lorenz Bauer)
- regmap: rbtree: Use alloc_flags for memory allocations (Dan Carpenter)
- hwrng: pic32 - use devm_clk_get_enabled (Martin Kaiser)
- hwrng: nomadik - keep clock enabled while hwrng is registered (Martin Kaiser)
- tcp: tcp_enter_quickack_mode() should be static (Eric Dumazet)
- bpf: Clear the probe_addr for uprobe (Yafang Shao)
- bpftool: Use a local bpf_perf_event_value to fix accessing its fields (Alexander Lobakin)
- cpufreq: powernow-k8: Use related_cpus instead of cpus in driver.exit() (Liao Chang)
- x86/efistub: Fix PCI ROM preservation in mixed mode (Mikel Rychliski)
- ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table (Mario Limonciello)
- ACPI: x86: s2idle: Post-increment variables when getting constraints (Mario Limonciello)
- s390/paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs (Holger Dengler)
- s390/pkey: fix/harmonize internal keyblob headers (Holger Dengler)
- selftests/futex: Order calls to futex_lock_pi (Nysal Jan K.A)
- perf/imx_ddr: don't enable counter0 if none of 4 counters are used (Xu Yang)
- x86/decompressor: Don't rely on upper 32 bits of GPRs being preserved (Ard Biesheuvel)
- selftests/resctrl: Close perf value read fd on errors (Ilpo Järvinen)
- selftests/resctrl: Unmount resctrl FS if child fails to run benchmark (Ilpo Järvinen)
- selftests/resctrl: Don't leak buffer in fill_cache() (Ilpo Järvinen)
- selftests/resctrl: Add resctrl.h into build deps (Ilpo Järvinen)
- selftests/resctrl: Make resctrl_tests run using kselftest framework (Shaopeng Tan)
- OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd() (Manivannan Sadhasivam)
- refscale: Fix uninitalized use of wait_queue_head_t (Waiman Long)
- ARM: ptrace: Restore syscall skipping for tracers (Kees Cook)
- ARM: ptrace: Restore syscall restart tracing (Kees Cook)
- selftests/harness: Actually report SKIP for signal tests (Kees Cook)
- tmpfs: verify {g,u}id mount options correctly (Christian Brauner)
- fs: Fix error checking for d_hash_and_lookup() (Wang Ming)
- eventfd: prevent underflow for eventfd semaphores (Wen Yang)
- reiserfs: Check the return value from __getblk() (Matthew Wilcox)
- Revert "net: macsec: preserve ingress frame ordering" (Sabrina Dubroca)
- udf: Handle error when adding extent to a file (Jan Kara)
- udf: Check consistency of Space Bitmap Descriptor (Vladislav Efanov)
- of: kexec: Mark ima_{free,stable}_kexec_buffer() as __init (Nathan Chancellor)
- net: Avoid address overwrite in kernel_connect (Jordan Rife)
- arm64: lib: Import latest version of Arm Optimized Routines' strncmp (Joey Gouly)
- crypto: rsa-pkcs1pad - Use helper to set reqsize (Herbert Xu)
- tracing: Introduce pipe_cpumask to avoid race on trace_pipes (Zheng Yejian)
- ALSA: seq: oss: Fix racy open/close of MIDI devices (Takashi Iwai)
- scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path (Justin Tee)
- scsi: storvsc: Always set no_report_opcodes (Michael Kelley)
- sctp: handle invalid error codes without calling BUG() (Dan Carpenter)
- bnx2x: fix page fault following EEH recovery (David Christensen)
- netlabel: fix shift wrapping bug in netlbl_catmap_setlong() (Dmitry Mastykin)
- drm/amdgpu: Match against exact bootloader status (Lijo Lazar)
- net: hns3: restore user pause configure when disable autoneg (Jian Shen)
- scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock (Chengfeng Ye)
- scsi: lpfc: Remove reftag check in DIF paths (Justin Tee)
- idmaengine: make FSL_EDMA and INTEL_IDMA64 depends on HAS_IOMEM (Baoquan He)
- wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1() (Hans de Goede)
- net: usb: qmi_wwan: add Quectel EM05GV2 (Martin Kohn)
- vmbus_testing: fix wrong python syntax for integer value comparison (Ani Sinha)
- clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM (Baoquan He)
- kprobes: Prohibit probing on CFI preamble symbol (Masami Hiramatsu (Google))
- security: keys: perform capable check only on privileged operations (Christian Göttsche)
- ata: pata_arasan_cf: Use dev_err_probe() instead dev_err() in data_xfer() (Minjie Du)
- drm/amd/display: Exit idle optimizations before attempt to access PHY (Leo Chen)
- platform/x86: huawei-wmi: Silence ambient light sensor (Konstantin Shelekhin)
- platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks (Maxim Mikityanskiy)
- platform/x86: intel: hid: Always call BTNL ACPI method (Hans de Goede)
- ASoC: atmel: Fix the 8K sample parameter in I2SC master (Guiting Shen)
- ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- ASoC: rt711: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- ASoc: codecs: ES8316: Fix DMIC config (Edgar)
- ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- fs/nls: make load_nls() take a const parameter (Winston Wen)
- s390/dasd: fix hanging device after request requeue (Stefan Haberland)
- s390/dasd: use correct number of retries for ERP requests (Stefan Haberland)
- m68k: Fix invalid .section syntax (Ben Hutchings)
- vxlan: generalize vxlan_parse_gpe_hdr and remove unused args (Jiri Benc)
- ethernet: atheros: fix return value check in atl1c_tso_csum() (Yuanjun Gong)
- ASoC: da7219: Check for failure reading AAD IRQ events (Dmytro Maluka)
- ASoC: da7219: Flush pending AAD IRQ when suspending (Dmytro Maluka)
- ksmbd: no response from compound read (Namjae Jeon)
- ksmbd: fix out of bounds in smb3_decrypt_req() (Namjae Jeon)
- 9p: virtio: make sure 'offs' is initialized in zc_request (Dominique Martinet)
- media: pci: cx23885: fix error handling for cx23885 ATSC boards (Nikolay Burykin)
- media: pulse8-cec: handle possible ping error (Dmitry Antipov)
- phy: qcom-snps-femto-v2: use qcom_snps_hsphy_suspend/resume error code (Adrien Thierry)
- ARM: dts: imx: Set default tuning step for imx7d usdhc (Xiaolei Wang)
- ARM: dts: imx: Adjust dma-apbh node name (Stefan Wahren)
- ARM: dts: imx7s: Drop dma-apb interrupt-names (Marek Vasut)
- ARM: dts: imx: update sdma node name format (Joy Zou)
- rds: Put back pages on the CPU that allocated them (Håkon Bugge) [Orabug: 35768363]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843808]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843808]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843808]
- mm: fix hang after mapping over a mapped reserved va range (Anthony Yznaga) [Orabug: 35843808]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843808]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843808]
- genetlink: initialize resv_start_op using existing enum values on uek7-u2 (Qing Huang) [Orabug: 35857093]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916077]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926164]
- Crash: add lock to serialize crash hotplug handling (Baoquan He) [Orabug: 35778906]
- x86/crash: optimize CPU changes (Eric DeVolder) [Orabug: 35778906]
- crash: change crash_prepare_elf64_headers() to for_each_possible_cpu() (Eric DeVolder) [Orabug: 35778906]
- crash: hotplug support for kexec_load() (Eric DeVolder) [Orabug: 35778906]
- x86/crash: add x86 crash hotplug support (Eric DeVolder) [Orabug: 35778906]
- crash: memory and CPU hotplug sysfs attributes (Eric DeVolder) [Orabug: 35778906]
- kexec: exclude elfcorehdr from the segment digest (Eric DeVolder) [Orabug: 35778906]
- crash: add generic infrastructure for crash hotplug support (Eric DeVolder) [Orabug: 35778906]
- crash: move a few code bits to setup support of crash hotplug (Eric DeVolder) [Orabug: 35778906]
- remove ARCH_DEFAULT_KEXEC from Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- kexec: rename ARCH_HAS_KEXEC_PURGATORY (Eric DeVolder) [Orabug: 35778906]
- sh/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- s390/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- riscv/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- powerpc/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- parisc/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- mips/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- m68k/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- arm64/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- ia64/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- arm/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- x86/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- kexec: consolidate kexec and crash options into kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]

[5.15.0-201.131.1.el9uek]
- net/rds: report pending-messages count in RDS_INQ response (Devesh Sharma) [Orabug: 35596047]
- uek-rpm: Disable kernel support for CONFIG_FIREWIRE in OL9 (Yifei Liu) [Orabug: 35493648] {CVE-2023-3159}
- rds: Add proper refcnt when an RDS MR references an RDS Socket (Håkon Bugge) [Orabug: 35817900]
- rds: Check for UAF in rds_destroy_mr (Håkon Bugge) [Orabug: 35817900]
- uek-rpm: Enable Microsoft recommended Hyper-V flags for ARM (Harshvardhan Jha) [Orabug: 35823292]
- xfs: reserve less log space when recovering log intent items (Darrick J. Wong) [Orabug: 35871839]
- scsi: target: core: Fix deadlock due to recursive locking (Junxiao Bi) [Orabug: 35886688]



ELSA-2023-13043 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2023-13043

http://linux.oracle.com/errata/ELSA-2023-13043.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

aarch64:
bpftool-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-core-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-debug-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-devel-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-doc-5.15.0-201.135.6.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-201.135.6.el9uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-201.135.6.el9uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-uek-5.15.0-201.135.6.el9uek.src.rpm

Related CVEs:

CVE-2023-3159
CVE-2023-4244
CVE-2023-42752
CVE-2023-42756
CVE-2023-45871
CVE-2023-4623
CVE-2023-4921
CVE-2023-5090
CVE-2023-5178
CVE-2023-5197

Description of changes:

[5.15.0-201.135.6.el9uek]
- Revert ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- netfilter: nf_tables: split async and sync catchall in two functions (Pablo Neira Ayuso)
- netfilter: nf_tables: remove catchall element in GC sync path (Pablo Neira Ayuso)
- scsi: mpt3sas: Fix loop logic (Ranjan Kumar)
- Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) [Orabug: 36050011]
- md: bypass block throttle for superblock update (Junxiao Bi) [Orabug: 36050011]
- tracing: Have trace_event_file have ref counters (Steven Rostedt (Google)) [Orabug: 36059972]
- Revert "PCI: acpiphp: Reassign resources on bridge if necessary" (Dongli Zhang) [Orabug: 36039006]
- Revert "PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for non-root bus" (Dongli Zhang) [Orabug: 36039006]
- audit: Apply special optimizations (Håkon Bugge) [Orabug: 36038149]
- audit: Vary struct audit_entry alignment (Håkon Bugge) [Orabug: 36038149]
- Revert "Revert "printk: Consolidate console deferred printing"" (Håkon Bugge) [Orabug: 36038149]

[5.15.0-201.135.5.el9uek]
- media: dvb-usb-v2: af9035: fix missing unlock (Hans Verkuil)
- i2c: aspeed: Fix i2c bus hang in slave read (Jian Zhang)
- i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value (Ivan Vecera)
- firmware/imx-dsp: Fix use_after_free in imx_dsp_setup_channels() (Hao Ge)
- virtio-mmio: fix memory leak of vm_dev (Maximilian Heyne)
- NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server (Olga Kornievskaia)
- net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve (Pedro Tammela)
- Revert "kernel/sched: Modify initial boot task idle setup" (Greg Kroah-Hartman)
- usb: cdns3: Modify the return value of cdns_set_active () to void when CONFIG_PM_SLEEP is disabled (Xiaolei Wang)
- quota: Fix slow quotaoff (Jan Kara)
- lib/test_meminit: fix off-by-one error in test_pages() (Greg Kroah-Hartman)
- nvmet-tcp: Fix a possible UAF in queue intialization setup (Sagi Grimberg) [Orabug: 36028025] {CVE-2023-5178}

[5.15.0-201.135.4.el9uek]
- uek-rpm: Enable PDS_CORE and PDS_VFIO drivers (Joao Martins) [Orabug: 35424097]
- pds_core: use correct index to mask irq (Shannon Nelson) [Orabug: 35424097]
- amd/pds_core: core: No need for Null pointer check before kfree (Bragatheswaran Manickavel) [Orabug: 35424097]
- pds_core: add an error code check in pdsc_dl_info_get (Su Hui) [Orabug: 35424097]
- pds_core: devlink health: use retained error fmsg API (Przemek Kitszel) [Orabug: 35424097]
- pds_core: add attempts to fix broken PCI (Shannon Nelson) [Orabug: 35424097]
- pds_core: implement pci reset handlers (Shannon Nelson) [Orabug: 35424097]
- pds_core: keep viftypes table across reset (Shannon Nelson) [Orabug: 35424097]
- pds_core: check health in devcmd wait (Shannon Nelson) [Orabug: 35424097]
- vfio/pds: Use proper PF device access helper (Shixiong Ou) [Orabug: 35424097]
- vfio/pds: Add missing PCI_IOV depends (Shixiong Ou) [Orabug: 35424097]
- pds_core: pass opcode to devcmd_wait (Shannon Nelson) [Orabug: 35424097]
- pds_core: check for work queue before use (Shannon Nelson) [Orabug: 35424097]
- pds_core: no reset command for VF (Shannon Nelson) [Orabug: 35424097]
- pds_core: no health reporter in VF (Shannon Nelson) [Orabug: 35424097]
- pds_core: protect devlink callbacks from fw_down state (Shannon Nelson) [Orabug: 35424097]
- vfio/pds: Send type for SUSPEND_STATUS command (Brett Creeley) [Orabug: 35424097]
- Revert "pds_core: Fix some kernel-doc comments" (Jakub Kicinski) [Orabug: 35424097]
- pds_core: Fix some kernel-doc comments (Yang Li) [Orabug: 35424097]
- pds_core: remove redundant pci_clear_master() (Yu Liao) [Orabug: 35424097]
- vfio/pds: fix return value in pds_vfio_get_lm_file() (Yang Yingliang) [Orabug: 35424097]
- pds_core: Fix function header descriptions (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add Kconfig and documentation (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add support for firmware recovery (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add support for dirty page tracking (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Add VFIO live migration support (Brett Creeley) [Orabug: 35424097]
- vfio/pds: register with the pds_core PF (Brett Creeley) [Orabug: 35424097]
- pds_core: Require callers of register/unregister to pass PF drvdata (Brett Creeley) [Orabug: 35424097]
- vfio/pds: Initial support for pds VFIO driver (Brett Creeley) [Orabug: 35424097]
- vfio: Commonize combine_ranges for use in other VFIO drivers (Brett Creeley) [Orabug: 35424097]
- pds_core: Fix documentation for pds_client_register (Brett Creeley) [Orabug: 35424097]
- pds_core: Fix FW recovery detection (Brett Creeley) [Orabug: 35424097]
- pds_core: fix mutex double unlock in error path (Shannon Nelson) [Orabug: 35424097]
- pds_core: add AUXILIARY_BUS and NET_DEVLINK to Kconfig (Shannon Nelson) [Orabug: 35424097]
- pds_core: remove CONFIG_DEBUG_FS from makefile (Shannon Nelson) [Orabug: 35424097]
- pds_core: Kconfig and pds_core.rst (Shannon Nelson) [Orabug: 35424097]
- pds_core: publish events to the clients (Shannon Nelson) [Orabug: 35424097]
- pds_core: add the aux client API (Shannon Nelson) [Orabug: 35424097]
- pds_core: devlink params for enabling VIF support (Shannon Nelson) [Orabug: 35424097]
- pds_core: add auxiliary_bus devices (Shannon Nelson) [Orabug: 35424097]
- pds_core: add initial VF device handling (Shannon Nelson) [Orabug: 35424097]
- pds_core: set up the VIF definitions and defaults (Shannon Nelson) [Orabug: 35424097]
- pds_core: add FW update feature to devlink (Shannon Nelson) [Orabug: 35424097]
- pds_core: Add adminq processing and commands (Shannon Nelson) [Orabug: 35424097]
- pds_core: set up device and adminq (Shannon Nelson) [Orabug: 35424097]
- pds_core: add devlink health facilities (Shannon Nelson) [Orabug: 35424097]
- pds_core: health timer and workqueue (Shannon Nelson) [Orabug: 35424097]
- pds_core: add devcmd device interfaces (Shannon Nelson) [Orabug: 35424097]
- pds_core: initial framework for pds_core PF driver (Shannon Nelson) [Orabug: 35424097]
- vfio/mlx5: Use the new device life cycle helpers (Yi Liu) [Orabug: 35424097]
- vfio/pci: Use the new device life cycle helpers (Yi Liu) [Orabug: 35424097]
- vfio: Add helpers for unifying vfio_device life cycle (Kevin Tian) [Orabug: 35424097]
- net/rds: Always cancel heartbeat worker thread during conn destroy (Sharath Srinivasan) [Orabug: 35739389]
- x86: KVM: SVM: always update the x2avic msr interception (Maxim Levitsky) [Orabug: 35857365] {CVE-2023-5090}
- net/rds: Use proper peer port number even when not connected (Greg Jumper) [Orabug: 35896266]
- hugetlb: disable HVO in Xen (Jane Chu) [Orabug: 35904478]
- hugetlb: check for hugetlb folio before vmemmap_restore (Mike Kravetz) [Orabug: 35904478]
- hugetlb: batch TLB flushes when restoring vmemmap (Mike Kravetz) [Orabug: 35904478]
- hugetlb: batch TLB flushes when freeing vmemmap (Joao Martins) [Orabug: 35904478]
- hugetlb: batch PMD split for bulk vmemmap dedup (Joao Martins) [Orabug: 35904478]
- hugetlb: batch freeing of vmemmap pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: perform vmemmap restoration on a list of pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: perform vmemmap optimization on a list of pages (Mike Kravetz) [Orabug: 35904478]
- hugetlb: restructure pool allocations (Mike Kravetz) [Orabug: 35904478]
- hugetlb: optimize update_and_free_pages_bulk to avoid lock cycles (Mike Kravetz) [Orabug: 35904478]
- mm: hugetlb: skip initialization of gigantic tail struct pages if freed by HVO (Usama Arif) [Orabug: 35904478]
- memblock: introduce MEMBLOCK_RSRV_NOINIT flag (Usama Arif) [Orabug: 35904478]
- mm: pass nid to reserve_bootmem_region() (Yajun Deng) [Orabug: 35904478]
- mm/page_alloc: invert logic for early page initialisation checks (Mike Rapoport (IBM)) [Orabug: 35904478]
- memblock: add missing argument definition (Usama Arif) [Orabug: 35904478]
- memblock: pass memblock_type to memblock_setclr_flag (Usama Arif) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use nid of the head page to reallocate it (Usama Arif) [Orabug: 35904478]
- mm: hugetlb_vmemmap: allow alloc vmemmap pages fallback to other nodes (Yuan Can) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix hugetlb page number decrease failed on movable nodes (Yuan Can) [Orabug: 35904478]
- hugetlb: set hugetlb page flag before optimizing vmemmap (Mike Kravetz) [Orabug: 35904478]
- hugetlb: do not clear hugetlb dtor until allocating vmemmap (Mike Kravetz) [Orabug: 35904478]
- mm/vmemmap optimization: split hugetlb and devdax vmemmap optimization (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/vmemmap: improve vmemmap_can_optimize and allow architectures to override (Aneesh Kumar K.V) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix a race between vmemmap pmd split (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: provide stronger vmemmap allocation guarantees (Pasha Tatashin) [Orabug: 35904478]
- mm/hugetlb_vmemmap: rename ARCH_WANT_HUGETLB_PAGE_OPTIMIZE_VMEMMAP (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/vmemmap/devdax: fix kernel crash when probing devdax devices (Aneesh Kumar K.V) [Orabug: 35904478]
- mm/hugetlb_vmemmap: fix hugetlb_vmemmap_sysctls.maxlen (Jane Chu) [Orabug: 35904478]
- mm: move most of core MM initialization to mm/mm_init.c (Mike Rapoport (IBM)) [Orabug: 35904478]
- memblock: Disable mirror feature if kernelcore is not specified (Ma Wupeng) [Orabug: 35904478]
- mm: hugetlb_vmemmap: simplify hugetlb_vmemmap_init() a bit (Muchun Song) [Orabug: 35904478]
- mm/hugetlb_vmemmap: remap head page to newly allocated page (Joao Martins) [Orabug: 35904478]
- mm: hugetlb_vmemmap: remove redundant list_del() (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: include missing linux/moduleparam.h (Vasily Gorbik) [Orabug: 35904478]
- hugetlb: freeze allocated pages before creating hugetlb pages (Mike Kravetz) [Orabug: 35904478]
- mm: hugetlb_vmemmap: simplify reset_struct_pages() (Muchun Song) [Orabug: 35904478]
- mm/hugetlb: make detecting shared pte more reliable (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix sysfs group leak in hugetlb_unregister_node() (Miaohe Lin) [Orabug: 35904478]
- mm: hugetlb_vmemmap: add missing smp_wmb() before set_pte_at() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix missing call to restore_reserve_on_error() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix WARN_ON(!kobj) in sysfs_create_group() (Miaohe Lin) [Orabug: 35904478]
- mm/hugetlb: fix incorrect update of max_huge_pages (Miaohe Lin) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use PTRS_PER_PTE instead of PMD_SIZE / PAGE_SIZE (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: move code comments to vmemmap_dedup.rst (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: improve hugetlb_vmemmap code readability (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: replace early_param() with core_param() (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: move vmemmap code related to HugeTLB to hugetlb_vmemmap.c (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: introduce the name HVO (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: optimize vmemmap_optimize_mode handling (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: delete hugetlb_optimize_vmemmap_enabled() (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: make hugetlb_optimize_vmemmap compatible with memmap_on_memory (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: enumerate all supported section flags (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: fix CONFIG_HUGETLB_PAGE_FREE_VMEMMAP_DEFAULT_ON (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: add hugetlb_optimize_vmemmap sysctl (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: use kstrtobool for hugetlb_vmemmap param parsing (Muchun Song) [Orabug: 35904478]
- mm: memory_hotplug: override memmap_on_memory when hugetlb_free_vmemmap=on (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: disable hugetlb_optimize_vmemmap when struct page crosses page boundaries (Muchun Song) [Orabug: 35904478]
- mm/hugetlb_vmemmap: move comment block to Documentation/vm (Joao Martins) [Orabug: 35904478]
- uek-rpm/ol8[9]: config switch update to keep default vmemmap optimization behavior (Jane Chu) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup CONFIG_HUGETLB_PAGE_FREE_VMEMMAP* (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup hugetlb_free_vmemmap_enabled* (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: cleanup hugetlb_vmemmap related functions (Muchun Song) [Orabug: 35904478]
- arm64: mm: hugetlb: enable HUGETLB_PAGE_FREE_VMEMMAP for arm64 (Muchun Song) [Orabug: 35904478]
- mm: hugetlb_vmemmap: introduce ARCH_WANT_HUGETLB_PAGE_FREE_VMEMMAP (Muchun Song) [Orabug: 35904478]
- Consider inflight IO in io accounting for high latency devices (Gulam Mohamed) [Orabug: 35922334]
- EDAC/amd64: Add support for AMD family 1Ah models 00h-1Fh and 40h-4Fh (Avadhut Naik) [Orabug: 35925125]
- hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (Avadhut Naik) [Orabug: 35925125]
- x86/amd_nb: Add PCI IDs for AMD Family 1Ah-based models (Avadhut Naik) [Orabug: 35925125]
- EDAC/amd64: Add get_err_info() to pvt->ops (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split dump_misc_regs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split init_csrows() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split determine_edac_cap() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Rename f17h_determine_edac_ctl_cap() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Split setup_mci_misc_attrs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split ecc_enabled() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split read_mc_regs() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split determine_memory_type() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split read_base_mask() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Split prep_chip_selects() into dct/umc functions (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Rework hw_info_{get,put} (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Merge struct amd64_family_type into struct amd64_pvt (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Do not discover ECC symbol size for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Drop dbam_to_cs() for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Split get_csrow_nr_pages() into dct/umc functions (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Rename debug_display_dimm_sizes() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Shut up an -Werror,-Wsometimes-uninitialized clang false positive (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove early_channel_count() (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove PCI Function 0 (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove PCI Function 6 (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Remove scrub rate control for Family 17h and later (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Don't set up EDAC PCI control on Family 17h+ (Yazen Ghannam) [Orabug: 35925125]
- x86/amd_nb: Unexport amd_cache_northbridges() (Muralidhara M K) [Orabug: 35925125]
- EDAC/amd64: Add new register offset support and related changes (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Set memory type per DIMM (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Add support for family 19h, models 50h-5fh (Marc Bevand) [Orabug: 35925125]
- EDAC/amd64: Add context struct (Yazen Ghannam) [Orabug: 35925125]
- EDAC/amd64: Allow for DF Indirect Broadcast reads (Yazen Ghannam) [Orabug: 35925125]
- x86/amd_nb, EDAC/amd64: Move DF Indirect Read to AMD64 EDAC (Yazen Ghannam) [Orabug: 35925125]
- x86/microcode/AMD: Rip out static buffers (Borislav Petkov (AMD)) [Orabug: 35925125]
- x86/microcode/amd: Remove unneeded pointer arithmetic (Nathan Fontenot) [Orabug: 35925125]
- x86/microcode/AMD: Get rid of __find_equiv_id() (Borislav Petkov (AMD)) [Orabug: 35925125]
- x86/microcode/AMD: Rename a couple of functions (Borislav Petkov) [Orabug: 35925125]
- crypto: ccp - Add support for PCI device 0x156E (John Allen) [Orabug: 35925125]
- crypto: ccp - Add support for PCI device 0x17E0 (Mario Limonciello) [Orabug: 35925125]
- sbsa_gwdt: Calculate timeout with 64-bit math (Darren Hart) [Orabug: 35968810]
- uek-rpm: Enable CONFIG_USBIP_VHCI_HCD and CONFIG_USBIP_HOST in UEK7 (Harshit Mogalapalli) [Orabug: 35994192]
- vfio/type1: Parameterize pgsize bitmap (Joao Martins) [Orabug: 36002436]
- vfio/type1: Parallel dirty scans with padata (Joao Martins) [Orabug: 36002436]
- iommu/iova_bitmap: Add remote mm_struct for iova_bitmap (Joao Martins) [Orabug: 36002436]
- vfio/type1: Advertise IOMMU dirty tracking support (Joao Martins) [Orabug: 36002436]
- vfio/type1: Avoid perpectual dirty when iommu supports (Joao Martins) [Orabug: 36002436]
- vfio/type1: Report dirty info from IOMMU (Joao Martins) [Orabug: 36002436]
- vfio/type1: Add hardware dirty tracking start/stop support (Joao Martins) [Orabug: 36002436]
- vfio/type1: Move start/stop dirty tracking to helpers (Joao Martins) [Orabug: 36002436]
- iommu/amd: Improve dirty read io-pgtable walker (Joao Martins) [Orabug: 36002436]
- iommu/amd: Access/Dirty bit support in IOPTEs (Joao Martins) [Orabug: 36002436]
- iommu: Add iommu_domain ops for dirty tracking (Joao Martins) [Orabug: 36002436]
- vfio: Move iova_bitmap into iommufd (Joao Martins) [Orabug: 36002436]

[5.15.0-201.135.3.el9uek]
- Revert "printk: Consolidate console deferred printing" (Sherry Yang) [Orabug: 35955850]

[5.15.0-201.135.2.el9uek]
- LTS Version: v5.15.135 (Jack Vogel)
- xen/events: replace evtchn_rwlock with RCU (Juergen Gross)
- parisc: Restore __ldcw_align for PA-RISC 2.0 processors (John David Anglin)
- ksmbd: fix uaf in smb20_oplock_break_ack (luosili)
- RDMA/mlx5: Fix NULL string error (Shay Drory)
- RDMA/siw: Fix connection failure handling (Bernard Metzler)
- RDMA/uverbs: Fix typo of sizeof argument (Konstantin Meskhidze)
- RDMA/cma: Fix truncation compilation warning in make_cma_ports (Leon Romanovsky)
- RDMA/cma: Initialize ib_sa_multicast structure to 0 when join (Mark Zhang)
- gpio: pxa: disable pinctrl calls for MMP_GPIO (Duje Mihanović)
- gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() (Bartosz Golaszewski)
- IB/mlx4: Fix the size of a buffer in add_port_entries() (Christophe JAILLET)
- of: dynamic: Fix potential memory leak in of_changeset_action() (Dan Carpenter)
- RDMA/core: Require admin capabilities to set system parameters (Leon Romanovsky)
- dm zoned: free dmz->ddev array in dmz_put_zoned_devices (Fedor Pchelkin)
- HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit (Srinivas Pandruvada)
- HID: sony: remove duplicate NULL check before calling usb_free_urb() (Jiri Kosina)
- sctp: update hb timer immediately after users change hb_interval (Xin Long)
- sctp: update transport state when processing a dupcook packet (Xin Long)
- tcp: fix delayed ACKs for MSS boundary condition (Neal Cardwell)
- tcp: fix quick-ack counting to count actual ACKs of new data (Neal Cardwell)
- tipc: fix a potential deadlock on &tx->lock (Chengfeng Ye)
- net: stmmac: dwmac-stm32: fix resume on STM32 MCU (Ben Wolsieffer)
- ipv4: Set offload_failed flag in fibmatch results (Benjamin Poirier)
- netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure (Florian Westphal)
- netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp (Xin Long)
- ibmveth: Remove condition to recompute TCP header checksum. (David Wilder)
- net: ethernet: ti: am65-cpsw: Fix error code in am65_cpsw_nuss_init_tx_chns() (Dan Carpenter)
- net: nfc: llcp: Add lock when modifying device list (Jeremy Cline)
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida)
- net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent (Fabio Estevam)
- ptp: ocp: Fix error handling in ptp_ocp_device_init (Dinghao Liu)
- ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() (David Howells)
- net: fix possible store tearing in neigh_periodic_work() (Eric Dumazet)
- modpost: add missing else to the "of" check (Mauricio Faria de Oliveira)
- bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets (Jakub Sitnicki)
- NFSv4: Fix a nfs4_state_manager() race (Trond Myklebust)
- ima: rework CONFIG_IMA dependency block (Arnd Bergmann)
- ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig (Oleksandr Tymoshenko)
- regmap: rbtree: Fix wrong register marked as in-cache when creating new node (Richard Fitzgerald)
- wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling (Felix Fietkau)
- drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() (Alexandra Diupina)
- bpf: Fix tr dereferencing (Leon Hwang)
- wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet (Pin-yen Lin)
- wifi: iwlwifi: mvm: Fix a memory corruption issue (Christophe JAILLET)
- iwlwifi: avoid void pointer arithmetic (Johannes Berg)
- wifi: iwlwifi: dbg_ini: fix structure packing (Arnd Bergmann)
- ubi: Refuse attaching if mtd's erasesize is 0 (Zhihao Cheng)
- HID: sony: Fix a potential memory leak in sony_probe() (Christophe JAILLET)
- arm64: Add Cortex-A520 CPU part definition (Rob Herring)
- drm/amd: Fix detection of _PR3 on the PCIe root port (Mario Limonciello)
- net: prevent rewrite of msg_name in sock_sendmsg() (Jordan Rife)
- net: replace calls to sock->ops->connect() with kernel_connect() (Jordan Rife)
- wifi: mwifiex: Fix tlv_buf_left calculation (Gustavo A. R. Silva)
- qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info (Gustavo A. R. Silva)
- vringh: don't use vringh_kiov_advance() in vringh_iov_xfer() (Stefano Garzarella)
- scsi: zfcp: Fix a double put in zfcp_port_enqueue() (Dinghao Liu)
- Revert "clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz" (Greg Kroah-Hartman)
- block: fix use-after-free of q->q_usage_counter (Ming Lei)
- rbd: take header_rwsem in rbd_dev_refresh() only when updating (Ilya Dryomov)
- rbd: decouple parent info read-in from updating rbd_dev (Ilya Dryomov)
- rbd: decouple header read-in from updating rbd_dev->header (Ilya Dryomov)
- rbd: move rbd_dev_refresh() definition (Ilya Dryomov)
- iommu/arm-smmu-v3: Avoid constructing invalid range commands (Robin Murphy)
- iommu/arm-smmu-v3: Set TTL invalidation hint better (Robin Murphy)
- arm64: Avoid repeated AA64MMFR1_EL1 register read on pagefault path (Gabriel Krisman Bertazi)
- ring-buffer: Fix bytes info in per_cpu buffer stats (Zheng Yejian)
- ring-buffer: remove obsolete comment for free_buffer_page() (Vlastimil Babka)
- NFSv4: Fix a state manager thread deadlock regression (Trond Myklebust)
- NFS: rename nfs_client_kset to nfs_kset (Benjamin Coddington)
- NFS: Cleanup unused rpc_clnt variable (Benjamin Coddington)
- ASoC: tegra: Fix redundant PLLA and PLLA_OUT0 updates (Sameer Pujar)
- ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol (Sameer Pujar)
- spi: zynqmp-gqspi: fix clock imbalance on probe failure (Johan Hovold)
- spi: zynqmp-gqspi: Convert to platform remove callback returning void (Uwe Kleine-König)
- LTS Version: v5.15.134 (Jack Vogel)
- netfilter: nf_tables: fix kdoc warnings after gc rework (Florian Westphal)
- drm/meson: fix memory leak on ->hpd_notify callback (Jani Nikula)
- fs: binfmt_elf_efpic: fix personality for ELF-FDPIC (Greg Ungerer)
- ata: libata-sata: increase PMP SRST timeout to 10s (Matthias Schiffer)
- ata: libata-core: Do not register PM operations for SAS ports (Damien Le Moal)
- ata: libata-core: Fix port and device removal (Damien Le Moal)
- ata: libata-core: Fix ata_port_request_pm() locking (Damien Le Moal)
- net: thunderbolt: Fix TCPv6 GSO checksum calculation (Mika Westerberg)
- bpf: Fix BTF_ID symbol generation collision in tools/ (Nick Desaulniers)
- bpf: Fix BTF_ID symbol generation collision (Jiri Olsa)
- btrfs: properly report 0 avail for very full file systems (Josef Bacik)
- proc: nommu: /proc//maps: release mmap read lock (Ben Wolsieffer)
- Revert "SUNRPC dont update timeout value on connection reset" (Trond Myklebust)
- io_uring/fs: remove sqe->rw_flags checking from LINKAT (Jens Axboe)
- sched/rt: Fix live lock between select_fallback_rq() and RT push (Joel Fernandes (Google))
- kernel/sched: Modify initial boot task idle setup (Liam R. Howlett)
- i2c: i801: unregister tco_pdev in i801_probe() error path (Heiner Kallweit)
- ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES (Niklas Cassel)
- ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q (Kailang Yang)
- netfilter: nf_tables: disallow rule removal from chain binding (Pablo Neira Ayuso) [Orabug: 35865117] {CVE-2023-5197}
- nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() (Pan Bian)
- serial: 8250_port: Check IRQ data before use (Andy Shevchenko)
- Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux" (Daniel Starke)
- misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to probe (Ricky WU)
- x86/srso: Add SRSO mitigation for Hygon processors (Pu Wen)
- iommu/arm-smmu-v3: Fix soft lockup triggered by arm_smmu_mm_invalidate_range (Nicolin Chen)
- Smack:- Use overlay inode label in smack_inode_copy_up() (Vishal Goel)
- smack: Retrieve transmuting information in smack_inode_getsecurity() (Roberto Sassu)
- smack: Record transmuting in smk_transmuted (Roberto Sassu)
- nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev (Irvin Cote)
- i40e: fix potential NULL pointer dereferencing of pf->vf i40e_sync_vsi_filters() (Andrii Staikov)
- watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running (Mika Westerberg)
- watchdog: iTCO_wdt: No need to stop the timer in probe (Mika Westerberg)
- nvme-pci: do not set the NUMA node of device if it has none (Pratyush Yadav)
- nvme-pci: factor out a nvme_pci_alloc_dev helper (Christoph Hellwig)
- nvme-pci: factor the iod mempool creation into a helper (Christoph Hellwig)
- cgroup: Fix suspicious rcu_dereference_check() usage warning (Chengming Zhou)
- sched/cpuacct: Optimize away RCU read lock (Chengming Zhou)
- perf build: Define YYNOMEM as YYNOABORT for bison < 3.81 (Arnaldo Carvalho de Melo)
- fbdev/sh7760fb: Depend on FB=y (Thomas Zimmermann)
- ncsi: Propagate carrier gain/loss events to the NCSI controller (Johnathan Mantey)
- powerpc/watchpoints: Annotate atomic context in more places (Benjamin Gray)
- powerpc/watchpoint: Disable pagefaults when getting user instruction (Benjamin Gray)
- powerpc/watchpoints: Disable preemption in thread_change_pc() (Benjamin Gray)
- media: vb2: frame_vector.c: replace WARN_ONCE with a comment (Hans Verkuil)
- ASoC: imx-rpmsg: Set ignore_pmdown_time for dai_link (Chancel Liu)
- bpf: Clarify error expectations from bpf_clone_redirect (Stanislav Fomichev)
- ASoC: fsl: imx-pcm-rpmsg: Add SNDRV_PCM_INFO_BATCH flag (Shengjiu Wang)
- spi: stm32: add a delay before SPI disable (Valentin Caron)
- spi: nxp-fspi: reset the FLSHxCR1 registers (Han Xu)
- ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() (Niklas Cassel)
- smb3: correct places where ENOTSUPP is used instead of preferred EOPNOTSUPP (Steve French)
- scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command (Michal Grzedzicki)
- scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command (Michal Grzedzicki)
- drm/amdgpu: Handle null atom context in VBIOS info ioctl (David Francis)
- drm/amd/display: Don't check registers, if using AUX BL control (Swapnil Patel)
- platform/mellanox: mlxbf-bootctl: add NET dependency into Kconfig (David Thompson)
- ring-buffer: Do not attempt to read past "commit" (Steven Rostedt (Google))
- selftests: fix dependency checker script (Ricardo B. Marliere)
- btrfs: improve error message after failure to add delayed dir index item (Filipe Manana)
- ring-buffer: Avoid softlockup in ring_buffer_resize() (Zheng Yejian)
- selftests/ftrace: Correctly enable event in instance-event.tc (Zheng Yejian)
- scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock (Kiwoong Kim)
- scsi: qedf: Add synchronization between I/O completions and abort (Javed Hasan)
- parisc: irq: Make irq_stack_union static to avoid sparse warning (Helge Deller)
- parisc: drivers: Fix sparse warning (Helge Deller)
- parisc: iosapic.c: Fix sparse warnings (Helge Deller)
- parisc: sba: Fix compile warning wrt list of SBA devices (Helge Deller)
- spi: sun6i: fix race between DMA RX transfer completion and RX FIFO drain (Tobias Schramm)
- spi: sun6i: reduce DMA RX transfer width to single byte (Tobias Schramm)
- dma-debug: don't call __dma_entry_alloc_check_leak() under free_entries_lock (Sergey Senozhatsky)
- i2c: npcm7xx: Fix callback completion ordering (William A. Kennington III)
- gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip (Wenhua Lin)
- soc: imx8m: Enable OCOTP clock for imx8mm before reading registers (Nathan Rossi)
- xtensa: boot/lib: fix function prototypes (Max Filippov)
- xtensa: boot: don't add include-dirs (Randy Dunlap)
- xtensa: iss/network: make functions static (Randy Dunlap)
- xtensa: add default definition for XCHAL_HAVE_DIV32 (Max Filippov)
- firmware: imx-dsp: Fix an error handling path in imx_dsp_setup_channels() (Christophe JAILLET)
- power: supply: ucs1002: fix error code in ucs1002_get_property() (Dan Carpenter)
- bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up (Tony Lindgren)
- ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot (Tony Lindgren)
- ARM: dts: ti: omap: Fix bandgap thermal cells addressing for omap3/4 (Tony Lindgren)
- ARM: dts: omap: correct indentation (Krzysztof Kozlowski)
- treewide: Replace GPLv2 boilerplate/reference with SPDX - gpl-2.0_56.RULE (part 1) (Thomas Gleixner)
- clk: tegra: fix error return case for recalc_rate (Timo Alho)
- bus: ti-sysc: Fix missing AM35xx SoC matching (Adam Ford)
- bus: ti-sysc: Use fsleep() instead of usleep_range() in sysc_reset() (Julien Panis)
- drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet (Marek Vasut)
- MIPS: Alchemy: only build mmc support helpers if au1xmmc is enabled (Christoph Hellwig)
- btrfs: reset destination buffer when read_extent_buffer() gets invalid range (Qu Wenruo)
- ata: ahci: Add Elkhart Lake AHCI controller (Werner Fischer)
- ata: ahci: Rename board_ahci_mobile (Mario Limonciello)
- ata: ahci: Add support for AMD A85 FCH (Hudson D4) (Paul Menzel)
- ata: libata: Rename link flag ATA_LFLAG_NO_DB_DELAY (Paul Menzel)
- netfilter: nft_exthdr: Fix non-linear header modification (Xiao Liang)
- netfilter: exthdr: add support for tcp option removal (Florian Westphal)
- Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN (Werner Sembach)
- Input: i8042 - rename i8042-x86ia64io.h to i8042-acpipnpio.h (Huacai Chen)
- xfs: fix xfs_inodegc_stop racing with mod_delayed_work (Darrick J. Wong)
- xfs: disable reaping in fscounters scrub (Darrick J. Wong)
- xfs: check that per-cpu inodegc workers actually run on that cpu (Darrick J. Wong)
- xfs: explicitly specify cpu when forcing inodegc delayed work to run immediately (Darrick J. Wong)
- xfs: introduce xfs_inodegc_push() (Dave Chinner)
- xfs: bound maximum wait time for inodegc work (Dave Chinner)
- i2c: mux: gpio: Add missing fwnode_handle_put() (Liang He)
- i2c: mux: gpio: Replace custom acpi_get_local_address() (Andy Shevchenko)
- i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() (Xiaoke Wang)
- gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() (Christophe JAILLET)
- Fix up backport of 136191703038 ("interconnect: Teach lockdep about icc_bw_lock order") (Sasha Levin)
- igc: Expose tx-usecs coalesce setting to user (Muhammad Husaini Zulkifli)
- bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI (Sebastian Andrzej Siewior)
- net: ena: Flush XDP packets on error. (Sebastian Andrzej Siewior)
- locking/seqlock: Do the lockdep annotation before locking in do_write_seqcount_begin_nested() (Sebastian Andrzej Siewior)
- netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP (Jozsef Kadlecsik) [Orabug: 35865151] {CVE-2023-42756}
- netfilter: nf_tables: disable toggling dormant table state more than once (Florian Westphal)
- team: fix null-ptr-deref when team device type is changed (Ziyang Xuan)
- net: bridge: use DEV_STATS_INC() (Eric Dumazet)
- net: hns3: add 5ms delay before clear firmware reset irq source (Jie Wang)
- net: hns3: fix fail to delete tc flower rules during reset issue (Jijie Shao)
- net: hns3: only enable unicast promisc when mac table full (Jian Shen)
- net: hns3: fix GRE checksum offload issue (Jie Wang)
- x86/srso: Fix SBPB enablement for spec_rstack_overflow=off (Josh Poimboeuf)
- x86/srso: Fix srso_show_state() side effect (Josh Poimboeuf)
- platform/x86: intel_scu_ipc: Fail IPC send if still busy (Stephen Boyd)
- platform/x86: intel_scu_ipc: Don't override scu in intel_scu_ipc_dev_simple_command() (Stephen Boyd)
- platform/x86: intel_scu_ipc: Check status upon timeout in ipc_wait_for_interrupt() (Stephen Boyd)
- platform/x86: intel_scu_ipc: Check status after timeout in busy_loop() (Stephen Boyd)
- dccp: fix dccp_v4_err()/dccp_v6_err() again (Eric Dumazet)
- powerpc/perf/hv-24x7: Update domain value check (Kajol Jain)
- ipv4: fix null-deref in ipv4_link_failure (Kyle Zeng)
- igc: Fix infinite initialization loop with early XDP redirect (Vinicius Costa Gomes)
- ionic: fix 16bit math issue when PAGE_SIZE >= 64KB (David Christensen)
- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera)
- i40e: Add VF VLAN pruning (Mateusz Palczewski)
- iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set (Radoslaw Tyl)
- ASoC: imx-audmix: Fix return error with devm_clk_get() (Shengjiu Wang)
- net/core: Fix ETH_P_1588 flow dissector (Sasha Neftin)
- selftests: tls: swap the TX and RX sockets in some tests (Sabrina Dubroca)
- bpf: Avoid deadlock when using queue and stack maps from NMI (Toke Høiland-Jørgensen)
- netfilter: nf_tables: disallow element removal on anonymous sets (Pablo Neira Ayuso)
- ASoC: meson: spdifin: start hw on dai probe (Jerome Brunet)
- netfilter: nf_tables: fix memleak when more than 255 elements expired (Florian Westphal)
- netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration (Pablo Neira Ayuso)
- netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation fails (Pablo Neira Ayuso)
- netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC (Pablo Neira Ayuso)
- netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention (Pablo Neira Ayuso)
- netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction (Pablo Neira Ayuso) [Orabug: 35814389] {CVE-2023-4244}
- netfilter: nf_tables: defer gc run if previous batch is still pending (Florian Westphal)
- netfilter: nf_tables: use correct lock to protect gc_list (Pablo Neira Ayuso)
- netfilter: nf_tables: GC transaction race with abort path (Pablo Neira Ayuso)
- netfilter: nf_tables: GC transaction race with netns dismantle (Pablo Neira Ayuso)
- netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path (Pablo Neira Ayuso)
- netfilter: nf_tables: don't fail inserts if duplicate has expired (Florian Westphal)
- netfilter: nf_tables: remove busy mark and gc batch API (Pablo Neira Ayuso)
- netfilter: nft_set_hash: mark set element as dead when deleting from packet path (Pablo Neira Ayuso)
- netfilter: nf_tables: adapt set backend to use GC transaction API (Pablo Neira Ayuso) [Orabug: 35814389] {CVE-2023-4244}
- netfilter: nf_tables: GC transaction API to avoid race with control plane (Pablo Neira Ayuso)
- netfilter: nf_tables: don't skip expired elements during walk (Florian Westphal)
- tracing: Have event inject files inc the trace array ref count (Steven Rostedt (Google))
- ext4: do not let fstrim block system suspend (Jan Kara)
- ext4: move setting of trimmed bit into ext4_try_to_trim_range() (Jan Kara)
- ext4: replace the traditional ternary conditional operator with with max()/min() (Kemeng Shi)
- ext4: change s_last_trim_minblks type to unsigned long (Lukas Czerner)
- ext4: scope ret locally in ext4_try_to_trim_range() (Lukas Bulwahn)
- ata: libahci: clear pending interrupt status (Szuying Chen)
- ata: ahci: Drop pointless VPRINTK() calls and convert the remaining ones (Hannes Reinecke)
- tracing: Increase trace array ref count on enable and filter files (Steven Rostedt (Google))
- tracing: Make trace_marker{,_raw} stream-like (John Keeping)
- NFSv4.1: fix pnfs MDS=DS session trunking (Olga Kornievskaia)
- NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server (Olga Kornievskaia)
- SUNRPC: Mark the cred for revalidation if the server rejects it (Trond Myklebust)
- NFS/pNFS: Report EINVAL errors from connect() to the server (Trond Myklebust)
- NFS: More fixes for nfs_direct_write_reschedule_io() (Trond Myklebust)
- NFS: Use the correct commit info in nfs_join_page_group() (Trond Myklebust)
- LTS version: v5.15.133 (Jack Vogel)
- interconnect: Teach lockdep about icc_bw_lock order (Rob Clark)
- drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma (Melissa Wen)
- drm/amdgpu: fix amdgpu_cs_p1_user_fence (Christian König)
- drm/amd/display: fix the white screen issue when >= 64GB DRAM (Yifan Zhang)
- ext4: fix rec_len verify error (Shida Zhang)
- scsi: pm8001: Setup IRQs on resume (Damien Le Moal)
- ata: libata: disallow dev-initiated LPM transitions to unsupported states (Niklas Cassel)
- i2c: aspeed: Reset the i2c controller when timeout occurs (Tommy Huang)
- tracefs: Add missing lockdown check to tracefs_create_dir() (Steven Rostedt (Google))
- nfsd: fix change_info in NFSv4 RENAME replies (Jeff Layton)
- tracing: Have option files inc the trace array ref count (Steven Rostedt (Google))
- tracing: Have current_trace inc the trace array ref count (Steven Rostedt (Google))
- tracing: Have tracing_max_latency inc the trace array ref count (Steven Rostedt (Google))
- btrfs: release path before inode lookup during the ino lookup ioctl (Filipe Manana)
- btrfs: fix lockdep splat and potential deadlock after failure running delayed items (Filipe Manana)
- ovl: fix incorrect fdput() on aio completion (Amir Goldstein)
- ovl: fix failed copyup of fileattr on a symlink (Amir Goldstein)
- attr: block mode changes of symlinks (Christian Brauner)
- md/raid1: fix error: ISO C90 forbids mixed declarations (Nigel Croxon)
- samples/hw_breakpoint: fix building without module unloading (Arnd Bergmann)
- x86/purgatory: Remove LTO flags (Song Liu)
- x86/boot/compressed: Reserve more memory for page tables (Kirill A. Shutemov)
- scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file() (Jinjie Ruan)
- selftests: tracing: Fix to unmount tracefs for recovering environment (Masami Hiramatsu (Google))
- scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir() (Jinjie Ruan)
- drm: gm12u320: Fix the timeout usage for usb_bulk_msg() (Jinjie Ruan)
- btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super (Anand Jain)
- btrfs: add a helper to read the superblock metadata_uuid (Anand Jain)
- btrfs: move btrfs_pinned_by_swapfile prototype into volumes.h (Josef Bacik)
- perf test shell stat_bpf_counters: Fix test on Intel (Namhyung Kim)
- perf test: Remove bash construct from stat_bpf_counters.sh test (James Clark)
- MIPS: Use "grep -E" instead of "egrep" (Tiezhu Yang)
- mtd: rawnand: brcmnand: Fix ECC level field setting for v7.2 controller (William Zhang)
- mtd: rawnand: brcmnand: Allow SoC to provide I/O operations (Florian Fainelli)
- jbd2: correct the end of the journal recovery scan range (Zhang Yi)
- jbd2: rename jbd_debug() to jbd2_debug() (Jan Kara)
- jbd2: kill t_handle_lock transaction spinlock (Ritesh Harjani)
- jbd2: fix use-after-free of transaction_t race (Ritesh Harjani)
- jbd2: refactor wait logic for transaction updates into a common function (Ritesh Harjani)
- printk: Consolidate console deferred printing (John Ogness)
- interconnect: Fix locking for runpm vs reclaim (Rob Clark)
- kobject: Add sanity check for kset->kobj.ktype in kset_register() (Zhen Lei)
- media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler warning (Sakari Ailus)
- usb: ehci: add workaround for chipidea PORTSC.PEC bug (Xu Yang)
- serial: cpm_uart: Avoid suspicious locking (Christophe Leroy)
- scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (Konstantin Shelekhin)
- tools: iio: iio_generic_buffer: Fix some integer type and calculation (Chenyuan Mi)
- usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc (Ma Ke)
- usb: cdns3: Put the cdns set active part outside the spin lock (Xiaolei Wang)
- media: pci: cx23885: replace BUG with error return (Hans Verkuil)
- media: tuners: qt1010: replace BUG_ON with a regular error (Hans Verkuil)
- media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer (Zhang Shurong)
- media: az6007: Fix null-ptr-deref in az6007_i2c_xfer() (Zhang Shurong)
- media: anysee: fix null-ptr-deref in anysee_master_xfer (Zhang Shurong)
- media: af9005: Fix null-ptr-deref in af9005_i2c_xfer (Zhang Shurong)
- media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() (Zhang Shurong)
- media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer (Zhang Shurong)
- PCI: fu740: Set the number of MSI vectors (Yong-Xuan Wang)
- powerpc/pseries: fix possible memory leak in ibmebus_bus_init() (ruanjinjie)
- ARM: 9317/1: kexec: Make smp stop calls asynchronous (Mårten Lindahl)
- jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount (Liu Shixin via Jfs-discussion)
- fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount() (Andrew Kanner)
- ext2: fix datatype of block number in ext2_xattr_set2() (Georg Ottinger)
- md: raid1: fix potential OOB in raid1_remove_disk() (Zhang Shurong)
- bus: ti-sysc: Configure uart quirks for k3 SoC (Tony Lindgren)
- drm/exynos: fix a possible null-pointer dereference due to data race in exynos_drm_crtc_atomic_disable() (Tuo Li)
- drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31 (Leo Chen)
- ALSA: hda: intel-dsp-cfg: add LunarLake support (Pierre-Louis Bossart)
- samples/hw_breakpoint: Fix kernel BUG 'invalid opcode: 0000' (Rong Tao)
- arm64: dts: qcom: sm8250-edo: correct ramoops pmsg-size (Krzysztof Kozlowski)
- arm64: dts: qcom: sm8150-kumano: correct ramoops pmsg-size (Krzysztof Kozlowski)
- arm64: dts: qcom: sm6125-pdx201: correct ramoops pmsg-size (Krzysztof Kozlowski)
- drm/bridge: tc358762: Instruct DSI host to generate HSE packets (Marek Vasut)
- wifi: mac80211_hwsim: drop short frames (Johannes Berg)
- netfilter: ebtables: fix fortify warnings in size_entry_mwt() (GONG, Ruiqi)
- wifi: mac80211: check S1G action frame size (Johannes Berg)
- alx: fix OOB-read compiler warning (GONG, Ruiqi)
- mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450 (Giulio Benetti)
- tpm_tis: Resend command to recover from data transfer errors (Alexander Steffen)
- crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() (Mark O'Donovan)
- wifi: wil6210: fix fortify warnings (Dmitry Antipov)
- wifi: mwifiex: fix fortify warning (Dmitry Antipov)
- wifi: ath9k: fix printk specifier (Dongliang Mu)
- wifi: ath9k: fix fortify warnings (Dmitry Antipov)
- crypto: lrw,xts - Replace strlcpy with strscpy (Azeem Shaikh)
- devlink: remove reload failed checks in params get/set callbacks (Jiri Pirko)
- ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects (Mario Limonciello)
- hw_breakpoint: fix single-stepping when using bpf_overflow_handler (Tomislav Novak)
- perf/imx_ddr: speed up overflow frequency of cycle (Xu Yang)
- perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09 (Yicong Yang)
- ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470 (Jiri Slaby (SUSE))
- scftorture: Forgive memory-allocation failure if KASAN (Paul E. McKenney)
- rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle() (Zqiang)
- kernel/fork: beware of __put_task_struct() calling context (Wander Lairson Costa)
- ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer (Abhishek Mainkar)
- locks: fix KASAN: use-after-free in trace_event_raw_event_filelock_lock (Will Shiu)
- btrfs: output extra debug info if we failed to find an inline backref (Qu Wenruo)
- autofs: fix memory leak of waitqueues in autofs_catatonic_mode (Fedor Pchelkin)
- LTS version: v5.15.132 (Jack Vogel)
- pcd: fix error codes in pcd_init_unit() (Dan Carpenter)
- drm/amd/display: Fix a bug when searching for insert_above_mpcc (Wesley Chalmers)
- MIPS: Only fiddle with CHECKFLAGS if need-compiler' (Maciej W. Rozycki)
- kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg(). (Kuniyuki Iwashima)
- ixgbe: fix timestamp configuration code (Vadim Fedorenko)
- ipv6: fix ip6_sock_set_addr_preferences() typo (Eric Dumazet)
- net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict() (Liu Jian)
- platform/mellanox: mlxbf-pmc: Fix reading of unprogrammed events (Shravan Kumar Ramani)
- platform/mellanox: mlxbf-pmc: Fix potential buffer overflows (Shravan Kumar Ramani)
- platform/mellanox: mlxbf-tmfifo: Drop jumbo frames (Liming Sun)
- platform/mellanox: mlxbf-tmfifo: Drop the Rx packet if no more descriptors (Liming Sun)
- kcm: Fix memory leak in error path of kcm_sendmsg() (Shigeru Yoshida)
- r8152: check budget for r8152_poll() (Hayes Wang)
- net: dsa: sja1105: hide all multicast addresses from "bridge fdb show" (Vladimir Oltean)
- hsr: Fix uninit-value access in fill_frame_info() (Ziyang Xuan)
- net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all() (Hangyu Hua)
- net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc() (Hangyu Hua)
- net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add (Guangguan Wang)
- kselftest/runner.sh: Propagate SIGTERM to runner child (Björn Töpel)
- net: ipv4: fix one memleak in __inet_del_ifa() (Liu Jian)
- ARM: dts: BCM5301X: Extend RAM to full 256MB for Linksys EA6500 V2 (Aleksey Nasibulin)
- ARM: dts: samsung: exynos4210-i9100: Fix LCD screen's physical size (Paul Cercueil)
- block: don't add or resize partition on the disk with GENHD_FL_NO_PART (Li Lingfeng)
- block: rename GENHD_FL_NO_PART_SCAN to GENHD_FL_NO_PART (Christoph Hellwig)
- block: move GENHD_FL_BLOCK_EVENTS_ON_EXCL_WRITE to disk->event_flags (Christoph Hellwig)
- block: move GENHD_FL_NATIVE_CAPACITY to disk->state (Christoph Hellwig)
- pcd: cleanup initialization (Christoph Hellwig)
- pcd: move the identify buffer into pcd_identify (Christoph Hellwig)
- perf hists browser: Fix the number of entries for 'e' key (Namhyung Kim)
- perf tools: Handle old data in PERF_RECORD_ATTR (Namhyung Kim)
- perf hists browser: Fix hierarchy mode header (Namhyung Kim)
- MIPS: Fix CONFIG_CPU_DADDI_WORKAROUNDS modules_install' regression (Maciej W. Rozycki)
- drm/amd/display: prevent potential division by zero errors (Hamza Mahfooz)
- mtd: rawnand: brcmnand: Fix potential false time out warning (William Zhang)
- mtd: rawnand: brcmnand: Fix potential out-of-bounds access in oob write (William Zhang)
- mtd: rawnand: brcmnand: Fix crash during the panic_write (William Zhang)
- btrfs: use the correct superblock to compare fsid in btrfs_validate_super (Anand Jain)
- btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART (Filipe Manana)
- btrfs: free qgroup rsv on io failure (Boris Burkov)
- fuse: nlookup missing decrement in fuse_direntplus_link (ruanmeisi)
- ata: pata_ftide010: Add missing MODULE_DESCRIPTION (Damien Le Moal)
- ata: sata_gemini: Add missing MODULE_DESCRIPTION (Damien Le Moal)
- ata: pata_falcon: fix IO base selection for Q40 (Michael Schmitz)
- lib: test_scanf: Add explicit type cast to result initialization in test_number_prefix() (Nathan Chancellor)
- ext4: add correct group descriptors and reserved GDT blocks to system zone (Wang Jianjian)
- dmaengine: sh: rz-dmac: Fix destination and source data size setting (Hien Huynh)
- ARC: atomics: Add compiler barrier to atomic operations... (Pavel Kozlov)
- sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory() (Petr Tesarik)
- net: hns3: remove GSO partial feature bit (Jie Wang)
- net: hns3: fix the port information display when sfp is absent (Yisen Zhuang)
- net: hns3: fix invalid mutex between tc qdisc and dcb ets command issue (Jijie Shao)
- net: hns3: fix debugfs concurrency issue between kfree buffer and read (Hao Chen)
- net: hns3: fix byte order conversion issue in hclge_dbg_fd_tcam_read() (Hao Chen)
- net: dsa: sja1105: complete tc-cbs offload support on SJA1110 (Vladimir Oltean)
- net: dsa: sja1105: fix -ENOSPC when replacing the same tc-cbs too many times (Vladimir Oltean)
- net: dsa: sja1105: fix bandwidth discrepancy between tc-cbs software and offload (Vladimir Oltean)
- ip_tunnels: use DEV_STATS_INC() (Eric Dumazet)
- idr: fix param name in idr_alloc_cyclic() doc (Ariel Marcovitch)
- s390/zcrypt: don't leak memory if dev_set_name() fails (Andy Shevchenko)
- igb: Change IGB_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- igc: Change IGC_MIN to allow set rx/tx value between 64 and 80 (Olga Zaborska)
- octeontx2-af: Fix truncation of smq in CN10K NIX AQ enqueue mbox handler (Geetha sowjanya)
- kcm: Destroy mutex in kcm_exit_net() (Shigeru Yoshida)
- net: sched: sch_qfq: Fix UAF in qfq_dequeue() (valis) [Orabug: 35814453] {CVE-2023-4921}
- af_unix: Fix data race around sk->sk_err. (Kuniyuki Iwashima)
- af_unix: Fix data-races around sk->sk_shutdown. (Kuniyuki Iwashima)
- af_unix: Fix data-race around unix_tot_inflight. (Kuniyuki Iwashima)
- af_unix: Fix data-races around user->unix_inflight. (Kuniyuki Iwashima)
- net: phy: micrel: Correct bit assignments for phy_device flags (Oleksij Rempel)
- net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr (Alex Henrie)
- veth: Fixing transmit return status for dropped packets (Liang Chen)
- igb: disable virtualization features on 82580 (Corinna Vinschen)
- ipv4: ignore dst hint for multipath routes (Sriram Yagnaraman)
- drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt() (Sean Christopherson)
- xsk: Fix xsk_diag use-after-free error during socket cleanup (Magnus Karlsson)
- net: fib: avoid warn splat in flow dissector (Florian Westphal)
- net: read sk->sk_family once in sk_mc_loop() (Eric Dumazet)
- ipv4: annotate data-races around fi->fib_dead (Eric Dumazet)
- sctp: annotate data-races around sk->sk_wmem_queued (Eric Dumazet)
- net/sched: fq_pie: avoid stalls in fq_pie_timer() (Eric Dumazet)
- pwm: lpc32xx: Remove handling of PWM channels (Vladimir Zapolskiy)
- watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load (Raag Jadav)
- perf top: Don't pass an ERR_PTR() directly to perf_session__delete() (Arnaldo Carvalho de Melo)
- perf vendor events: Drop some of the JSON/events for power10 platform (Kajol Jain)
- perf vendor events: Update the JSON/events descriptions for power10 platform (Kajol Jain)
- x86/virt: Drop unnecessary check on extended CPUID level in cpu_has_svm() (Sean Christopherson)
- perf annotate bpf: Don't enclose non-debug code with an assert() (Arnaldo Carvalho de Melo)
- Input: tca6416-keypad - fix interrupt enable disbalance (Dmitry Torokhov)
- Input: tca6416-keypad - always expect proper IRQ number in i2c client (Dmitry Torokhov)
- backlight: gpio_backlight: Drop output GPIO direction check for initial power state (Ying Liu)
- pwm: atmel-tcb: Fix resource freeing in error path and remove (Uwe Kleine-König)
- pwm: atmel-tcb: Harmonize resource allocation order (Uwe Kleine-König)
- pwm: atmel-tcb: Convert to platform remove callback returning void (Uwe Kleine-König)
- perf trace: Really free the evsel->priv area (Arnaldo Carvalho de Melo)
- perf trace: Use zfree() to reduce chances of use after free (Arnaldo Carvalho de Melo)
- kconfig: fix possible buffer overflow (Konstantin Meskhidze)
- gfs2: low-memory forced flush fixes (Andreas Gruenbacher)
- gfs2: Switch to wait_event in gfs2_logd (Andreas Gruenbacher)
- kbuild: do not run depmod for 'make modules_sign' (Masahiro Yamada)
- bus: mhi: host: Skip MHI reset if device is in RDDM (Qiang Yu)
- NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info (Fedor Pchelkin)
- NFS: Fix a potential data corruption (Trond Myklebust)
- clk: qcom: mss-sc7180: fix missing resume during probe (Johan Hovold)
- clk: qcom: q6sstop-qcs404: fix missing resume during probe (Johan Hovold)
- soc: qcom: qmi_encdec: Restrict string length in decode (Chris Lew)
- clk: qcom: gcc-mdm9615: use proper parent for pll0_vote clock (Dmitry Baryshkov)
- clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz (Ahmad Fatoum)
- dt-bindings: clock: xlnx,versal-clk: drop select:false (Krzysztof Kozlowski)
- pinctrl: cherryview: fix address_space_handler() argument (Raag Jadav)
- parisc: led: Reduce CPU overhead for disk & lan LED computation (Helge Deller)
- parisc: led: Fix LAN receive and transmit LEDs (Helge Deller)
- lib/test_meminit: allocate pages up to order MAX_ORDER (Andrew Donnellan)
- clk: qcom: turingcc-qcs404: fix missing resume during probe (Johan Hovold)
- drm/ast: Fix DRAM init on AST2200 (Thomas Zimmermann)
- clk: qcom: camcc-sc7180: fix async resume during probe (Johan Hovold)
- fbdev/ep93xx-fb: Do not assign to struct fb_info.dev (Thomas Zimmermann)
- io_uring: break iopolling on signal (Pavel Begunkov)
- io_uring: break out of iowq iopoll on teardown (Pavel Begunkov)
- io_uring: always lock in io_apoll_task_func (Pavel Begunkov)
- net/ipv6: SKB symmetric hash should incorporate transport ports (Quan Tian)
- udf: initialize newblock to 0 (Tom Rix)
- md/md-bitmap: remove unnecessary local variable in backlog_store() (Yu Kuai)
- tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY (Brian Foster)
- perf/x86/uncore: Correct the number of CHAs on EMR (Kan Liang)
- x86/sgx: Break up long non-preemptible delays in sgx_vepc_release() (Jack Wang)
- USB: core: Fix oversight in SuperSpeed initialization (Alan Stern)
- USB: core: Fix race by not overwriting udev->descriptor in hub_port_init() (Alan Stern)
- USB: core: Change usb_get_device_descriptor() API (Alan Stern)
- USB: core: Unite old scheme and new scheme descriptor reads (Alan Stern)
- usb: typec: bus: verify partner exists in typec_altmode_attention (RD Babiera)
- usb: typec: tcpm: set initial svdm version based on pd revision (RD Babiera)
- cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug (Gustavo A. R. Silva)
- crypto: stm32 - fix loop iterating through scatterlist for DMA (Thomas Bourgoin)
- s390/ipl: add missing secure/has_secure file to ipl type 'unknown' (Sven Schnelle)
- pstore/ram: Check start of empty przs during init (Enlin Mu)
- mmc: renesas_sdhi: register irqs before registering controller (Wolfram Sang)
- fsverity: skip PKCS#7 parser when keyring is empty (Eric Biggers)
- net: handle ARPHRD_PPP in dev_is_mac_header_xmit() (Nicolas Dichtel)
- X.509: if signature is unsupported skip validation (Thore Sommer)
- dccp: Fix out of bounds access in DCCP error handler (Jann Horn)
- parisc: Fix /proc/cpuinfo output for lscpu (Helge Deller)
- procfs: block chmod on /proc/thread-self/comm (Aleksa Sarai)
- Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset" (Bjorn Helgaas)
- ntb: Fix calculation ntb_transport_tx_free_entry() (Dave Jiang)
- ntb: Clean up tx tail index on link down (Dave Jiang)
- ntb: Drop packets when qp link is down (Dave Jiang)
- scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (Ranjan Kumar)
- media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking interrupts (Konrad Dybcio)
- arm64: csum: Fix OoB access in IP checksum code for negative lengths (Will Deacon)
- i3c: master: svc: fix probe failure when no i3c device exist (Frank Li)
- xtensa: PMU: fix base address for the newer hardware (Max Filippov)
- backlight/lv5207lp: Compare against struct fb_info.device (Thomas Zimmermann)
- backlight/bd6107: Compare against struct fb_info.device (Thomas Zimmermann)
- backlight/gpio_backlight: Compare against struct fb_info.device (Thomas Zimmermann)
- ARM: OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch() (Gustavo A. R. Silva)
- ipmi_si: fix a memleak in try_smi_init() (Yi Yang)
- media: i2c: ccs: Check rules is non-NULL (Sakari Ailus)
- mm/vmalloc: add a safer version of find_vm_area() for debug (Joel Fernandes (Google))
- scsi: core: Fix the scsi_set_resid() documentation (Bart Van Assche)
- printk: ringbuffer: Fix truncating buffer size min_t cast (Kees Cook)
- rcu: dump vmalloc memory info safely (Zqiang)
- ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl (Takashi Iwai)
- PM / devfreq: Fix leak in devfreq_dev_release() (Boris Brezillon)
- igb: set max size RX buffer when store bad packet is enabled (Radoslaw Tyl) [Orabug: 35924095] {CVE-2023-45871}
- skbuff: skb_segment, Call zero copy functions before using skbuff frags (Mohamed Khalfella)
- igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (Eric Dumazet) [Orabug: 35923998] {CVE-2023-42752}
- virtio_ring: fix avail_wrap_counter in virtqueue_add_packed (Yuan Yao)
- cpufreq: Fix the race condition while updating the transition_task of policy (Liao Chang)
- dmaengine: ste_dma40: Add missing IRQ check in d40_probe (ruanjinjie)
- um: Fix hostaudio build errors (Randy Dunlap)
- mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume() (Yi Yang)
- mtd: spi-nor: Check bus width while setting QE bit (Hsin-Yi Wang)
- leds: trigger: tty: Do not use LED_ON/OFF constants, use led_blink_set_oneshot instead (Marek Behún)
- leds: multicolor: Use rounded division when calculating color components (Marek Behún)
- leds: pwm: Fix error code in led_pwm_create_fwnode() (Dan Carpenter)
- rpmsg: glink: Add check for kstrdup (Jiasheng Jiang)
- phy/rockchip: inno-hdmi: do not power on rk3328 post pll on reg write (Jonas Karlman)
- phy/rockchip: inno-hdmi: round fractal pixclock in rk3328 recalc_rate (Zheng Yang)
- phy/rockchip: inno-hdmi: use correct vco_div_5 macro on rk3328 (Jonas Karlman)
- mtd: rawnand: brcmnand: Fix mtd oobsize (William Zhang)
- tracing: Fix race issue between cpu buffer write and swap (Zheng Yejian)
- tracing: Remove extra space at the end of hwlat_detector/mode (Mikhail Kobuk)
- HID: multitouch: Correct devm device reference for hidinput input_dev name (Rahul Rameshbabu)
- HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode() (Nikita Zhandarovich)
- Revert "IB/isert: Fix incorrect release of isert connection" (Leon Romanovsky)
- amba: bus: fix refcount leak (Peng Fan)
- serial: tegra: handle clk prepare error in tegra_uart_hw_init() (Yi Yang)
- scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock (Chengfeng Ye)
- scsi: core: Use 32-bit hostnum in scsi_host_lookup() (Tony Battersby)
- cgroup:namespace: Remove unused cgroup_namespaces_init() (Lu Jialin)
- media: i2c: rdacm21: Fix uninitialized value (Jacopo Mondi)
- media: ov2680: Fix regulators being left enabled on ov2680_power_on() errors (Hans de Goede)
- media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not working (Hans de Goede)
- media: ov2680: Add ov2680_fill_format() helper function (Hans de Goede)
- media: ov2680: Don't take the lock for try_fmt calls (Hans de Goede)
- media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s (Hans de Goede)
- media: ov2680: Fix vflip / hflip set functions (Hans de Goede)
- media: ov2680: Fix ov2680_bayer_order() (Hans de Goede)
- media: ov2680: Remove auto-gain and auto-exposure controls (Hans de Goede)
- media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips (Dave Stevenson)
- media: ov5640: Enable MIPI interface in ov5640_set_power_mipi() (Marek Vasut)
- USB: gadget: f_mass_storage: Fix unused variable warning (Alan Stern)
- media: venus: hfi_venus: Only consider sys_idle_indicator on V1 (Konrad Dybcio)
- media: go7007: Remove redundant if statement (Colin Ian King)
- platform/x86: dell-sysman: Fix reference leak (Armin Wolf)
- iommu/vt-d: Fix to flush cache of PASID directory table (Yanfei Xu)
- iommu/qcom: Disable and reset context bank before programming (AngeloGioacchino Del Regno)
- fsi: aspeed: Reset master errors after CFAM reset (Eddie James)
- IB/uverbs: Fix an potential error pointer dereference (Xiang Yang)
- RDMA/hns: Fix CQ and QP cache affinity (Chengchang Tang)
- RDMA/hns: Fix incorrect post-send with direct wqe of wr-list (Junxian Huang)
- RDMA/hns: Fix port active speed (Chengchang Tang)
- iommu/sprd: Add missing force_aperture (Jason Gunthorpe)
- driver core: test_async: fix an error code (Dan Carpenter)
- dma-buf/sync_file: Fix docs syntax (Rob Clark)
- coresight: tmc: Explicit type conversions to prevent integer overflow (Ruidong Tian)
- RDMA/irdma: Replace one-element array with flexible-array member (Gustavo A. R. Silva)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read() directly (Oleksandr Natalenko)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read() directly (Oleksandr Natalenko)
- scsi: qedf: Do not touch __user pointer in qedf_dbg_stop_io_on_error_cmd_read() directly (Oleksandr Natalenko)
- x86/APM: drop the duplicate APM_MINOR_DEV macro (Randy Dunlap)
- serial: sprd: Fix DMA buffer leak issue (Chunyan Zhang)
- serial: sprd: Assign sprd_port after initialized to avoid wrong access (Chunyan Zhang)
- scsi: qla4xxx: Add length check when parsing nlattrs (Lin Ma)
- scsi: be2iscsi: Add length check when parsing nlattrs (Lin Ma)
- scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param() (Lin Ma)
- scsi: iscsi: Add length check for nlattr payload (Lin Ma)
- scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param() (Wenchao Hao)
- scsi: RDMA/srp: Fix residual handling (Bart Van Assche)
- usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host() (Xu Yang)
- media: mediatek: vcodec: Return NULL if no vdec_fb is found (Irui Wang)
- media: rkvdec: increase max supported height for H.264 (Benjamin Gaignard)
- scsi: hisi_sas: Fix normally completed I/O analysed as failed (Xingui Yang)
- scsi: hisi_sas: Fix warnings detected by sparse (Xingui Yang)
- scsi: hisi_sas: Modify v3 HW SATA completion error processing (Xingui Yang)
- scsi: hisi_sas: Modify v3 HW SSP underflow error processing (Xingui Yang)
- media: cx24120: Add retval check for cx24120_message_send() (Daniil Dulov)
- media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer() (Christophe JAILLET)
- media: dib7000p: Fix potential division by zero (Daniil Dulov)
- drivers: usb: smsusb: fix error handling code in smsusb_init_device (Dongliang Mu)
- iommu: rockchip: Fix directory table address encoding (Jonas Karlman)
- iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on pasid unbind (Daniel Marcovitch)
- media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link() (Christophe JAILLET)
- media: i2c: tvp5150: check return value of devm_kasprintf() (Claudiu Beznea)
- media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables (Hans de Goede)
- RDMA/qedr: Remove a duplicate assignment in irdma_query_ah() (Minjie Du)
- pNFS: Fix assignment of xprtdata.cred (Anna Schumaker)
- NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ (Olga Kornievskaia)
- NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN (Benjamin Coddington)
- NFSD: da_addr_body field missing in some GETDEVICEINFO replies (Chuck Lever)
- fs: lockd: avoid possible wrong NULL parameter (Su Hui)
- jfs: validate max amount of blocks before allocation. (Alexei Filippov)
- ext4: fix unttached inode after power cut with orphan file feature enabled (Zhihao Cheng)
- powerpc/iommu: Fix notifiers being shared by PCI and VIO buses (Russell Currey)
- nfs/blocklayout: Use the passed in gfp flags (Dan Carpenter)
- powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT (Russell Currey)
- powerpc: Don't include lppaca.h in paca.h (Michael Ellerman)
- PCI: layerscape: Add workaround for lost link capabilities during reset (Xiaowei Bao)
- PCI: layerscape: Add the endpoint linkup notifier support (Frank Li)
- PCI: dwc: Add start_link/stop_link inlines (Serge Semin)
- wifi: ath10k: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- wifi: ath11k: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- net/mlx5: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- drm/radeon: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- drm/amdgpu: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- powerpc/perf: Convert fsl_emb notifier to state machine callbacks (Christophe Leroy)
- powerpc/fadump: reset dump area size if fadump memory reserve fails (Sourabh Jain)
- vfio/type1: fix cap_migration information leak (Stefan Hajnoczi)
- powerpc/radix: Move some functions into #ifdef CONFIG_KVM_BOOK3S_HV_POSSIBLE (Christophe Leroy)
- clk: imx: composite-8m: fix clock pauses when set_rate would be a no-op (Ahmad Fatoum)
- clk: imx8mp: fix sai4 clock (Marco Felsch)
- PCI/ASPM: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- PCI: pciehp: Use RMW accessors for changing LNKCTL (Ilpo Järvinen)
- pinctrl: mcp23s08: check return value of devm_kasprintf() (Claudiu Beznea)
- PCI: Mark NVIDIA T4 GPUs to avoid bus reset (Wu Zongyong)
- PCI: microchip: Correct the DED and SEC interrupt bit offsets (Daire McNamara)
- clk: qcom: gcc-sm6350: Fix gcc_sdcc2_apps_clk_src (Luca Weiss)
- clk: qcom: gcc-sm8250: Fix gcc_sdcc2_apps_clk_src (Patrick Whewell)
- ext4: avoid potential data overflow in next_linear_group (Kemeng Shi)
- ext4: correct grp validation in ext4_mb_good_group (Kemeng Shi)
- EDAC/igen6: Fix the issue of no error events (Qiuxu Zhuo)
- clk: qcom: gcc-sc7180: Fix up gcc_sdcc2_apps_clk_src (David Wronek)
- clk: sunxi-ng: Modify mismatched function name (Zhang Jianhua)
- drivers: clk: keystone: Fix parameter judgment in _of_pll_clk_init() (Minjie Du)
- ipmi:ssif: Fix a memory leak when scanning for an adapter (Corey Minyard)
- ipmi:ssif: Add check for kstrdup (Jiasheng Jiang)
- of: unittest: Fix overlay type in apply/revert check (Geert Uytterhoeven)
- of: overlay: Call of_changeset_init() early (Geert Uytterhoeven)
- md: raid0: account for split bio in iostat accounting (David Jeffery)
- bus: ti-sysc: Fix cast to enum warning (Tony Lindgren)
- arm64: dts: qcom: apq8016-sbc: Fix ov5640 regulator supply names (Bryan O'Donoghue)
- drm/mediatek: Fix potential memory leak if vmap() fail (Sui Jingfeng)
- drm/mediatek: Remove freeing not dynamic allocated memory (Jason-JH.Lin)
- bus: ti-sysc: Fix build warning for 64-bit build (Tony Lindgren)
- io_uring: fix drain stalls by invalid SQE (Pavel Begunkov)
- audit: fix possible soft lockup in __audit_inode_child() (Gaosheng Cui)
- drm/msm/a2xx: Call adreno_gpu_init() earlier (Fabio Estevam)
- drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create() (Yang Wang)
- smackfs: Prevent underflow in smk_set_cipso() (Dan Carpenter)
- firmware: meson_sm: fix to avoid potential NULL pointer dereference (Zhang Shurong)
- drm/msm/mdp5: Don't leak some plane state (Daniel Vetter)
- drm: xlnx: zynqmp_dpsub: Add missing check for dma_set_mask (Jiasheng Jiang)
- ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig (Nayna Jain)
- drm/panel: simple: Add missing connector type and pixel format for AUO T215HVN01 (Marek Vasut)
- drm/armada: Fix off-by-one error in armada_overlay_get_property() (Geert Uytterhoeven)
- arm64: dts: qcom: sm8150: Fix the I2C7 interrupt (Zeyan Li)
- of: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name() (Ruan Jinjie)
- drm/tegra: dpaux: Fix incorrect return value of platform_get_irq (Yangtao Li)
- drm/msm: Update dev core dump to not print backwards (Ryan McCann)
- md/md-bitmap: hold 'reconfig_mutex' in backlog_store() (Yu Kuai)
- md/bitmap: don't set max_write_behind if there is no write mostly device (Guoqing Jiang)
- md/raid10: use dereference_rdev_and_rrdev() to get devices (Li Nan)
- md/raid10: factor out dereference_rdev_and_rrdev() (Li Nan)
- drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl' (Srinivasan Shanmugam)
- arm64: dts: qcom: sdm845: Fix the min frequency of "ice_core_clk" (Manivannan Sadhasivam)
- arm64: dts: qcom: sdm845: Add missing RPMh power domain to GCC (Manivannan Sadhasivam)
- ARM: dts: BCM53573: Fix Ethernet info for Luxul devices (Rafał Miłecki)
- drm: adv7511: Fix low refresh rate register for ADV7533/5 (Bogdan Togorean)
- ARM: dts: samsung: s5pv210-smdkv210: correct ethernet reg addresses (split) (Krzysztof Kozlowski)
- ARM: dts: s5pv210: add dummy 5V regulator for backlight on SMDKv210 (Krzysztof Kozlowski)
- ARM: dts: samsung: s3c6410-mini6410: correct ethernet reg addresses (split) (Krzysztof Kozlowski)
- ARM: dts: s3c64xx: align pinctrl with dtschema (Krzysztof Kozlowski)
- x86/mm: Fix PAT bit missing from page protection modify mask (Janusz Krzysztofik)
- drm/etnaviv: fix dumping of active MMU context (Lucas Stach)
- arm64: dts: qcom: pmi8994: Add missing OVP interrupt (Konrad Dybcio)
- arm64: dts: qcom: Move WLED num-strings from pmi8994 to sony-xperia-tone (Marijn Suijten)
- arm64: dts: qcom: pmi8994: Remove hardcoded linear WLED enabled-strings (Marijn Suijten)
- arm64: dts: qcom: pm660l: Add missing short interrupt (Konrad Dybcio)
- arm64: dts: qcom: correct SPMI WLED register range encoding (Krzysztof Kozlowski)
- arm64: dts: qcom: pmi8998: Add node for WLED (AngeloGioacchino Del Regno)
- arm64: dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again (Krzysztof Kozlowski)
- ARM: dts: BCM53573: Use updated "spi-gpio" binding properties (Rafał Miłecki)
- ARM: dts: BCM53573: Add cells sizes to PCIe node (Rafał Miłecki)
- drm/amdgpu: avoid integer overflow warning in amdgpu_device_resize_fb_bar() (Arnd Bergmann)
- arm64: dts: qcom: sm8250: Mark PCIe hosts as DMA coherent (Konrad Dybcio)
- arm64: dts: qcom: pmk8350: fix ADC-TM compatible string (Dmitry Baryshkov)
- arm64: dts: qcom: sm8350: Use proper CPU compatibles (Konrad Dybcio)
- arm64: dts: qcom: sm8350: Add missing LMH interrupts to cpufreq (Konrad Dybcio)
- arm64: dts: qcom: msm8996: Add missing interrupt to the USB2 controller (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Rectify gpio-keys (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs (Konrad Dybcio)
- arm64: dts: qcom: sm8250-edo: Add gpio line names for TLMM (Konrad Dybcio)
- arm64: dts: qcom: sm8250: correct dynamic power coefficients (Vincent Guittot)
- soc: qcom: ocmem: Fix NUM_PORTS & NUM_MACROS macros (Luca Weiss)
- soc: qcom: ocmem: Add OCMEM hardware version print (Luca Weiss)
- ASoC: stac9766: fix build errors with REGMAP_AC97 (Randy Dunlap)
- quota: fix dqput() to follow the guarantees dquot_srcu should provide (Baokun Li)
- quota: add new helper dquot_active() (Baokun Li)
- quota: rename dquot_active() to inode_quota_active() (Baokun Li)
- quota: factor out dquot_write_dquot() (Baokun Li)
- drm/bridge: tc358764: Fix debug print parameter order (Marek Vasut)
- netrom: Deny concurrent connect(). (Kuniyuki Iwashima)
- net/sched: sch_hfsc: Ensure inner classes have fsc curve (Budimir Markovic) [Orabug: 35810514] {CVE-2023-4623}
- hwmon: (tmp513) Fix the channel number in tmp51x_is_visible() (Biju Das)
- mlxsw: i2c: Limit single transaction buffer size (Vadim Pasternak)
- mlxsw: i2c: Fix chunk size setting in output mailbox buffer (Vadim Pasternak)
- net: arcnet: Do not call kfree_skb() under local_irq_disable() (Jinjie Ruan)
- wifi: ath9k: use IS_ERR() with debugfs_create_dir() (Wang Ming)
- Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave() (Jinjie Ruan)
- wifi: mwifiex: avoid possible NULL skb pointer dereference (Dmitry Antipov)
- wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute (Lin Ma)
- wifi: ath9k: protect WMI command response buffer replacement with a lock (Fedor Pchelkin)
- wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx (Fedor Pchelkin)
- samples/bpf: fix broken map lookup probe (Daniel T. Lee)
- wifi: mwifiex: Fix missed return in oob checks failed path (Polaris Pi)
- wifi: mwifiex: fix memory leak in mwifiex_histogram_read() (Dmitry Antipov)
- fs: ocfs2: namei: check return value of ocfs2_add_entry() (Artem Chernyshev)
- lwt: Check LWTUNNEL_XMIT_CONTINUE strictly (Yan Zhai)
- lwt: Fix return values of BPF xmit ops (Yan Zhai)
- hwrng: iproc-rng200 - Implement suspend and resume calls (Florian Fainelli)
- crypto: caam - fix unchecked return value error (Gaurav Jain)
- ice: ice_aq_check_events: fix off-by-one check when filling buffer (Przemek Kitszel)
- net-memcg: Fix scope of sockmem pressure indicators (Abel Wu)
- selftests/bpf: Clean up fmod_ret in bench_rename test script (Yipeng Zou)
- net: tcp: fix unexcepted socket die when snd_wnd is 0 (Menglong Dong)
- Bluetooth: Fix potential use-after-free when clear keys (Min Li)
- Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe() (Yuanjun Gong)
- crypto: stm32 - Properly handle pm_runtime_get failing (Uwe Kleine-König)
- wifi: mwifiex: fix error recovery in PCIE buffer descriptor management (Dmitry Antipov)
- wifi: mwifiex: Fix OOB and integer underflow when rx packets (Polaris Pi)
- wifi: mt76: mt7915: fix power-limits while chan_switch (Ryder Lee)
- can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also in case of OOM (Marc Kleine-Budde)
- spi: tegra20-sflash: fix to check return value of platform_get_irq() in tegra_sflash_probe() (Zhang Shurong)
- wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH (Lin Ma)
- ipv6: Add reasons for skb drops to __udp6_lib_rcv (David Ahern)
- bpf: reject unhashed sockets in bpf_sk_assign (Lorenz Bauer)
- udp: re-score reuseport groups when connected sockets are present (Lorenz Bauer)
- regmap: rbtree: Use alloc_flags for memory allocations (Dan Carpenter)
- hwrng: pic32 - use devm_clk_get_enabled (Martin Kaiser)
- hwrng: nomadik - keep clock enabled while hwrng is registered (Martin Kaiser)
- tcp: tcp_enter_quickack_mode() should be static (Eric Dumazet)
- bpf: Clear the probe_addr for uprobe (Yafang Shao)
- bpftool: Use a local bpf_perf_event_value to fix accessing its fields (Alexander Lobakin)
- cpufreq: powernow-k8: Use related_cpus instead of cpus in driver.exit() (Liao Chang)
- x86/efistub: Fix PCI ROM preservation in mixed mode (Mikel Rychliski)
- ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table (Mario Limonciello)
- ACPI: x86: s2idle: Post-increment variables when getting constraints (Mario Limonciello)
- s390/paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs (Holger Dengler)
- s390/pkey: fix/harmonize internal keyblob headers (Holger Dengler)
- selftests/futex: Order calls to futex_lock_pi (Nysal Jan K.A)
- perf/imx_ddr: don't enable counter0 if none of 4 counters are used (Xu Yang)
- x86/decompressor: Don't rely on upper 32 bits of GPRs being preserved (Ard Biesheuvel)
- selftests/resctrl: Close perf value read fd on errors (Ilpo Järvinen)
- selftests/resctrl: Unmount resctrl FS if child fails to run benchmark (Ilpo Järvinen)
- selftests/resctrl: Don't leak buffer in fill_cache() (Ilpo Järvinen)
- selftests/resctrl: Add resctrl.h into build deps (Ilpo Järvinen)
- selftests/resctrl: Make resctrl_tests run using kselftest framework (Shaopeng Tan)
- OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd() (Manivannan Sadhasivam)
- refscale: Fix uninitalized use of wait_queue_head_t (Waiman Long)
- ARM: ptrace: Restore syscall skipping for tracers (Kees Cook)
- ARM: ptrace: Restore syscall restart tracing (Kees Cook)
- selftests/harness: Actually report SKIP for signal tests (Kees Cook)
- tmpfs: verify {g,u}id mount options correctly (Christian Brauner)
- fs: Fix error checking for d_hash_and_lookup() (Wang Ming)
- eventfd: prevent underflow for eventfd semaphores (Wen Yang)
- reiserfs: Check the return value from __getblk() (Matthew Wilcox)
- Revert "net: macsec: preserve ingress frame ordering" (Sabrina Dubroca)
- udf: Handle error when adding extent to a file (Jan Kara)
- udf: Check consistency of Space Bitmap Descriptor (Vladislav Efanov)
- of: kexec: Mark ima_{free,stable}_kexec_buffer() as __init (Nathan Chancellor)
- net: Avoid address overwrite in kernel_connect (Jordan Rife)
- arm64: lib: Import latest version of Arm Optimized Routines' strncmp (Joey Gouly)
- crypto: rsa-pkcs1pad - Use helper to set reqsize (Herbert Xu)
- tracing: Introduce pipe_cpumask to avoid race on trace_pipes (Zheng Yejian)
- ALSA: seq: oss: Fix racy open/close of MIDI devices (Takashi Iwai)
- scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path (Justin Tee)
- scsi: storvsc: Always set no_report_opcodes (Michael Kelley)
- sctp: handle invalid error codes without calling BUG() (Dan Carpenter)
- bnx2x: fix page fault following EEH recovery (David Christensen)
- netlabel: fix shift wrapping bug in netlbl_catmap_setlong() (Dmitry Mastykin)
- drm/amdgpu: Match against exact bootloader status (Lijo Lazar)
- net: hns3: restore user pause configure when disable autoneg (Jian Shen)
- scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock (Chengfeng Ye)
- scsi: lpfc: Remove reftag check in DIF paths (Justin Tee)
- idmaengine: make FSL_EDMA and INTEL_IDMA64 depends on HAS_IOMEM (Baoquan He)
- wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1() (Hans de Goede)
- net: usb: qmi_wwan: add Quectel EM05GV2 (Martin Kohn)
- vmbus_testing: fix wrong python syntax for integer value comparison (Ani Sinha)
- clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM (Baoquan He)
- kprobes: Prohibit probing on CFI preamble symbol (Masami Hiramatsu (Google))
- security: keys: perform capable check only on privileged operations (Christian Göttsche)
- ata: pata_arasan_cf: Use dev_err_probe() instead dev_err() in data_xfer() (Minjie Du)
- drm/amd/display: Exit idle optimizations before attempt to access PHY (Leo Chen)
- platform/x86: huawei-wmi: Silence ambient light sensor (Konstantin Shelekhin)
- platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks (Maxim Mikityanskiy)
- platform/x86: intel: hid: Always call BTNL ACPI method (Hans de Goede)
- ASoC: atmel: Fix the 8K sample parameter in I2SC master (Guiting Shen)
- ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- ASoC: rt711: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- ASoc: codecs: ES8316: Fix DMIC config (Edgar)
- ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0 (Shuming Fan)
- fs/nls: make load_nls() take a const parameter (Winston Wen)
- s390/dasd: fix hanging device after request requeue (Stefan Haberland)
- s390/dasd: use correct number of retries for ERP requests (Stefan Haberland)
- m68k: Fix invalid .section syntax (Ben Hutchings)
- vxlan: generalize vxlan_parse_gpe_hdr and remove unused args (Jiri Benc)
- ethernet: atheros: fix return value check in atl1c_tso_csum() (Yuanjun Gong)
- ASoC: da7219: Check for failure reading AAD IRQ events (Dmytro Maluka)
- ASoC: da7219: Flush pending AAD IRQ when suspending (Dmytro Maluka)
- ksmbd: no response from compound read (Namjae Jeon)
- ksmbd: fix out of bounds in smb3_decrypt_req() (Namjae Jeon)
- 9p: virtio: make sure 'offs' is initialized in zc_request (Dominique Martinet)
- media: pci: cx23885: fix error handling for cx23885 ATSC boards (Nikolay Burykin)
- media: pulse8-cec: handle possible ping error (Dmitry Antipov)
- phy: qcom-snps-femto-v2: use qcom_snps_hsphy_suspend/resume error code (Adrien Thierry)
- ARM: dts: imx: Set default tuning step for imx7d usdhc (Xiaolei Wang)
- ARM: dts: imx: Adjust dma-apbh node name (Stefan Wahren)
- ARM: dts: imx7s: Drop dma-apb interrupt-names (Marek Vasut)
- ARM: dts: imx: update sdma node name format (Joy Zou)
- rds: Put back pages on the CPU that allocated them (Håkon Bugge) [Orabug: 35768363]
- mm: fix munmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843808]
- mm: fix mmap() of reserved va ranges (Anthony Yznaga) [Orabug: 35843808]
- mm: reinstall placeholder mappings before downgrading mmap lock (Anthony Yznaga) [Orabug: 35843808]
- mm: fix hang after mapping over a mapped reserved va range (Anthony Yznaga) [Orabug: 35843808]
- mm: fix update of total_vm for reserved va placeholders (Anthony Yznaga) [Orabug: 35843808]
- mm: enable merging of reserved va placeholders (Anthony Yznaga) [Orabug: 35843808]
- genetlink: initialize resv_start_op using existing enum values on uek7-u2 (Qing Huang) [Orabug: 35857093]
- rds: Provision to allow all trace points at module load time (Arumugam Kolappan) [Orabug: 35916077]
- rds/ib: Preserve dest qp num in the connect request (Arumugam Kolappan) [Orabug: 35926164]
- Crash: add lock to serialize crash hotplug handling (Baoquan He) [Orabug: 35778906]
- x86/crash: optimize CPU changes (Eric DeVolder) [Orabug: 35778906]
- crash: change crash_prepare_elf64_headers() to for_each_possible_cpu() (Eric DeVolder) [Orabug: 35778906]
- crash: hotplug support for kexec_load() (Eric DeVolder) [Orabug: 35778906]
- x86/crash: add x86 crash hotplug support (Eric DeVolder) [Orabug: 35778906]
- crash: memory and CPU hotplug sysfs attributes (Eric DeVolder) [Orabug: 35778906]
- kexec: exclude elfcorehdr from the segment digest (Eric DeVolder) [Orabug: 35778906]
- crash: add generic infrastructure for crash hotplug support (Eric DeVolder) [Orabug: 35778906]
- crash: move a few code bits to setup support of crash hotplug (Eric DeVolder) [Orabug: 35778906]
- remove ARCH_DEFAULT_KEXEC from Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- kexec: rename ARCH_HAS_KEXEC_PURGATORY (Eric DeVolder) [Orabug: 35778906]
- sh/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- s390/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- riscv/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- powerpc/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- parisc/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- mips/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- m68k/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- arm64/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- ia64/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- arm/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- x86/kexec: refactor for kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]
- kexec: consolidate kexec and crash options into kernel/Kconfig.kexec (Eric DeVolder) [Orabug: 35778906]

[5.15.0-201.131.1.el9uek]
- net/rds: report pending-messages count in RDS_INQ response (Devesh Sharma) [Orabug: 35596047]
- uek-rpm: Disable kernel support for CONFIG_FIREWIRE in OL9 (Yifei Liu) [Orabug: 35493648] {CVE-2023-3159}
- rds: Add proper refcnt when an RDS MR references an RDS Socket (Håkon Bugge) [Orabug: 35817900]
- rds: Check for UAF in rds_destroy_mr (Håkon Bugge) [Orabug: 35817900]
- uek-rpm: Enable Microsoft recommended Hyper-V flags for ARM (Harshvardhan Jha) [Orabug: 35823292]
- xfs: reserve less log space when recovering log intent items (Darrick J. Wong) [Orabug: 35871839]
- scsi: target: core: Fix deadlock due to recursive locking (Junxiao Bi) [Orabug: 35886688]



ELSA-2023-7762 Moderate: Oracle Linux 9 skopeo security update


Oracle Linux Security Advisory ELSA-2023-7762

http://linux.oracle.com/errata/ELSA-2023-7762.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
skopeo-1.13.3-3.el9_3.x86_64.rpm
skopeo-tests-1.13.3-3.el9_3.x86_64.rpm

aarch64:
skopeo-1.13.3-3.el9_3.aarch64.rpm
skopeo-tests-1.13.3-3.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//skopeo-1.13.3-3.el9_3.src.rpm

Related CVEs:

CVE-2023-29409
CVE-2023-39318
CVE-2023-39319
CVE-2023-39321
CVE-2023-39322

Description of changes:

[2:1.13.3-3]
- Rebuild with golang 1.20.10
- Related: Jira:RHEL-2786

[2:1.13.3-2]
- Rebuild with golang 1.21.3
- Related: Jira:RHEL-2786



ELSA-2023-7763 Moderate: Oracle Linux 9 runc security update


Oracle Linux Security Advisory ELSA-2023-7763

http://linux.oracle.com/errata/ELSA-2023-7763.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
runc-1.1.9-2.el9_3.x86_64.rpm

aarch64:
runc-1.1.9-2.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//runc-1.1.9-2.el9_3.src.rpm

Related CVEs:

CVE-2023-29409
CVE-2023-39321
CVE-2023-39322

Description of changes:

[4:1.1.9-2]
- Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409
- Resolves: #2228743
- Resolves: #2237777
- Resolves: #2237778



ELSA-2023-7715 Important: Oracle Linux 9 webkit2gtk3 security update


Oracle Linux Security Advisory ELSA-2023-7715

http://linux.oracle.com/errata/ELSA-2023-7715.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
webkit2gtk3-2.40.5-1.el9_3.1.i686.rpm
webkit2gtk3-2.40.5-1.el9_3.1.x86_64.rpm
webkit2gtk3-devel-2.40.5-1.el9_3.1.i686.rpm
webkit2gtk3-devel-2.40.5-1.el9_3.1.x86_64.rpm
webkit2gtk3-jsc-2.40.5-1.el9_3.1.i686.rpm
webkit2gtk3-jsc-2.40.5-1.el9_3.1.x86_64.rpm
webkit2gtk3-jsc-devel-2.40.5-1.el9_3.1.i686.rpm
webkit2gtk3-jsc-devel-2.40.5-1.el9_3.1.x86_64.rpm

aarch64:
webkit2gtk3-2.40.5-1.el9_3.1.aarch64.rpm
webkit2gtk3-devel-2.40.5-1.el9_3.1.aarch64.rpm
webkit2gtk3-jsc-2.40.5-1.el9_3.1.aarch64.rpm
webkit2gtk3-jsc-devel-2.40.5-1.el9_3.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//webkit2gtk3-2.40.5-1.el9_3.1.src.rpm

Related CVEs:

CVE-2023-42917

Description of changes:

[2.40.5-1.1]
- Add patch for CVE-2023-42917
Resolves: rhbz#2253058



ELSA-2023-7754 Moderate: Oracle Linux 9 pixman security update


Oracle Linux Security Advisory ELSA-2023-7754

http://linux.oracle.com/errata/ELSA-2023-7754.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
pixman-0.40.0-6.el9_3.i686.rpm
pixman-0.40.0-6.el9_3.x86_64.rpm
pixman-devel-0.40.0-6.el9_3.i686.rpm
pixman-devel-0.40.0-6.el9_3.x86_64.rpm

aarch64:
pixman-0.40.0-6.el9_3.aarch64.rpm
pixman-devel-0.40.0-6.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//pixman-0.40.0-6.el9_3.src.rpm

Related CVEs:

CVE-2022-44638

Description of changes:

[0.40.0-6]
- Backport fix for CVE-2022-44638



ELSA-2023-7791 Important: Oracle Linux 9 gstreamer1-plugins-bad-free security update


Oracle Linux Security Advisory ELSA-2023-7791

http://linux.oracle.com/errata/ELSA-2023-7791.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gstreamer1-plugins-bad-free-1.22.1-2.el9_3.i686.rpm
gstreamer1-plugins-bad-free-1.22.1-2.el9_3.x86_64.rpm
gstreamer1-plugins-bad-free-devel-1.22.1-2.el9_3.i686.rpm
gstreamer1-plugins-bad-free-devel-1.22.1-2.el9_3.x86_64.rpm

aarch64:
gstreamer1-plugins-bad-free-1.22.1-2.el9_3.aarch64.rpm
gstreamer1-plugins-bad-free-devel-1.22.1-2.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//gstreamer1-plugins-bad-free-1.22.1-2.el9_3.src.rpm

Related CVEs:

CVE-2023-44429
CVE-2023-44446

Description of changes:

[1.22.1-2]
- Patch CVE-2023-44429: AV1 codec parser heap-based buffer overflow
- Patch CVE-2023-44446: MXF demuxer use-after-free
- Resolves: RHEL-17030, RHEL-17039



ELSA-2023-7785 Important: Oracle Linux 9 postgresql:15 security update


Oracle Linux Security Advisory ELSA-2023-7785

http://linux.oracle.com/errata/ELSA-2023-7785.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
pg_repack-1.4.8-1.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
postgresql-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-contrib-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-docs-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-plperl-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-plpython3-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-pltcl-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-private-devel-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-private-libs-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-server-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-server-devel-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-static-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-test-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-test-rpm-macros-15.5-1.module+el9.3.0+90103+1d024772.noarch.rpm
postgresql-upgrade-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm
postgresql-upgrade-devel-15.5-1.module+el9.3.0+90103+1d024772.x86_64.rpm

aarch64:
pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
pg_repack-1.4.8-1.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
postgresql-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-contrib-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-docs-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-plperl-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-plpython3-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-pltcl-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-private-devel-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-private-libs-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-server-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-server-devel-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-static-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-test-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-test-rpm-macros-15.5-1.module+el9.3.0+90103+1d024772.noarch.rpm
postgresql-upgrade-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm
postgresql-upgrade-devel-15.5-1.module+el9.3.0+90103+1d024772.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//pg_repack-1.4.8-1.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//postgresql-15.5-1.module+el9.3.0+90103+1d024772.src.rpm

Related CVEs:

CVE-2023-5868
CVE-2023-5869
CVE-2023-5870
CVE-2023-39417
CVE-2023-39418

Description of changes:

pgaudit
pg_repack
postgres-decoderbufs
postgresql
[15.5-1]
- update to 15.5
- Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418
Resolves: RHEL-16100, RHEL-16124, RHEL-16139



ELSA-2023-7765 Moderate: Oracle Linux 9 podman security update


Oracle Linux Security Advisory ELSA-2023-7765

http://linux.oracle.com/errata/ELSA-2023-7765.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
podman-4.6.1-7.0.1.el9_3.x86_64.rpm
podman-docker-4.6.1-7.0.1.el9_3.noarch.rpm
podman-gvproxy-4.6.1-7.0.1.el9_3.x86_64.rpm
podman-plugins-4.6.1-7.0.1.el9_3.x86_64.rpm
podman-remote-4.6.1-7.0.1.el9_3.x86_64.rpm
podman-tests-4.6.1-7.0.1.el9_3.x86_64.rpm

aarch64:
podman-4.6.1-7.0.1.el9_3.aarch64.rpm
podman-docker-4.6.1-7.0.1.el9_3.noarch.rpm
podman-gvproxy-4.6.1-7.0.1.el9_3.aarch64.rpm
podman-plugins-4.6.1-7.0.1.el9_3.aarch64.rpm
podman-remote-4.6.1-7.0.1.el9_3.aarch64.rpm
podman-tests-4.6.1-7.0.1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//podman-4.6.1-7.0.1.el9_3.src.rpm

Related CVEs:

CVE-2023-29409
CVE-2023-39318
CVE-2023-39319
CVE-2023-39321
CVE-2023-39322

Description of changes:

[2:4.6.1-7.0.1]
- Rebuild for following CVEs:
CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409
- Resolves: #2228743
- Resolves: #2237773
- Resolves: #2237776
- Resolves: #2237777
- Resolves: #2237778

[2:4.6.1-6.0.1]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[2:4.6.1-6]
- update to the latest content of https://github.com/containers/podman/tree/v4.6.1-rhel
( https://github.com/containers/podman/commit/68e7ae0)
- Related: Jira:RHEL-2112



ELBA-2023-7760 Oracle Linux 9 nmstate bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2023-7760

http://linux.oracle.com/errata/ELBA-2023-7760.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nmstate-2.2.19-1.el9_3.x86_64.rpm
nmstate-libs-2.2.19-1.el9_3.i686.rpm
nmstate-libs-2.2.19-1.el9_3.x86_64.rpm
python3-libnmstate-2.2.19-1.el9_3.x86_64.rpm
nmstate-devel-2.2.19-1.el9_3.i686.rpm
nmstate-devel-2.2.19-1.el9_3.x86_64.rpm
nmstate-static-2.2.19-1.el9_3.i686.rpm
nmstate-static-2.2.19-1.el9_3.x86_64.rpm

aarch64:
nmstate-2.2.19-1.el9_3.aarch64.rpm
nmstate-libs-2.2.19-1.el9_3.aarch64.rpm
python3-libnmstate-2.2.19-1.el9_3.aarch64.rpm
nmstate-devel-2.2.19-1.el9_3.aarch64.rpm
nmstate-static-2.2.19-1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nmstate-2.2.19-1.el9_3.src.rpm

Description of changes:

[2.2.19-1]
- Upgrade to 2.2.19.

[2.2.18-1]
- Upgrade to 2.2.18.

[2.2.16-1]
- Upgrade to 2.2.16.

[2.2.15-3]
- Rebuild for RHEL 9.4.



ELSA-2023-7712 Important: Oracle Linux 9 tracker-miners security update


Oracle Linux Security Advisory ELSA-2023-7712

http://linux.oracle.com/errata/ELSA-2023-7712.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
tracker-miners-3.1.2-4.el9_3.x86_64.rpm

aarch64:
tracker-miners-3.1.2-4.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//tracker-miners-3.1.2-4.el9_3.src.rpm

Related CVEs:

CVE-2023-5557

Description of changes:

[3.1.2-4]
- Backport stricter seccomp jail
Resolves: RHEL-12469



ELSA-2023-7764 Moderate: Oracle Linux 9 buildah security update


Oracle Linux Security Advisory ELSA-2023-7764

http://linux.oracle.com/errata/ELSA-2023-7764.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
buildah-1.31.3-2.0.1.el9_3.x86_64.rpm
buildah-tests-1.31.3-2.0.1.el9_3.x86_64.rpm

aarch64:
buildah-1.31.3-2.0.1.el9_3.aarch64.rpm
buildah-tests-1.31.3-2.0.1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//buildah-1.31.3-2.0.1.el9_3.src.rpm

Related CVEs:

CVE-2023-29409
CVE-2023-39318
CVE-2023-39319
CVE-2023-39321
CVE-2023-39322

Description of changes:

[1.31.3-2.0.1]
- Rebuild for CVEs:
CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409



ELBA-2023-7759 Oracle Linux 9 cmake bug fix update


Oracle Linux Bug Fix Advisory ELBA-2023-7759

http://linux.oracle.com/errata/ELBA-2023-7759.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
cmake-3.20.2-9.el9_3.x86_64.rpm
cmake-data-3.20.2-9.el9_3.noarch.rpm
cmake-doc-3.20.2-9.el9_3.noarch.rpm
cmake-filesystem-3.20.2-9.el9_3.i686.rpm
cmake-filesystem-3.20.2-9.el9_3.x86_64.rpm
cmake-gui-3.20.2-9.el9_3.x86_64.rpm
cmake-rpm-macros-3.20.2-9.el9_3.noarch.rpm

aarch64:
cmake-3.20.2-9.el9_3.aarch64.rpm
cmake-data-3.20.2-9.el9_3.noarch.rpm
cmake-doc-3.20.2-9.el9_3.noarch.rpm
cmake-filesystem-3.20.2-9.el9_3.aarch64.rpm
cmake-gui-3.20.2-9.el9_3.aarch64.rpm
cmake-rpm-macros-3.20.2-9.el9_3.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//cmake-3.20.2-9.el9_3.src.rpm

Description of changes:

[3.20.2-9]
- Fix CPack bug with pretrans scriptlet



ELSA-2023-13047 Important: Oracle Linux 9 kernel security update


Oracle Linux Security Advisory ELSA-2023-13047

http://linux.oracle.com/errata/ELSA-2023-13047.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-7.2.0-362.13.0.1.el9_3.x86_64.rpm
kernel-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-abi-stablelists-5.14.0-362.13.0.1.el9_3.noarch.rpm
kernel-core-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-core-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-modules-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-modules-extra-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-modules-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-modules-extra-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-tools-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-tools-libs-5.14.0-362.13.0.1.el9_3.x86_64.rpm
python3-perf-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-devel-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-devel-matched-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-devel-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-devel-matched-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-doc-5.14.0-362.13.0.1.el9_3.noarch.rpm
kernel-headers-5.14.0-362.13.0.1.el9_3.x86_64.rpm
perf-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-cross-headers-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-tools-libs-devel-5.14.0-362.13.0.1.el9_3.x86_64.rpm
rtla-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-debug-modules-core-5.14.0-362.13.0.1.el9_3.x86_64.rpm
kernel-modules-core-5.14.0-362.13.0.1.el9_3.x86_64.rpm

aarch64:
bpftool-7.2.0-362.13.0.1.el9_3.aarch64.rpm
kernel-tools-5.14.0-362.13.0.1.el9_3.aarch64.rpm
kernel-tools-libs-5.14.0-362.13.0.1.el9_3.aarch64.rpm
python3-perf-5.14.0-362.13.0.1.el9_3.aarch64.rpm
kernel-headers-5.14.0-362.13.0.1.el9_3.aarch64.rpm
perf-5.14.0-362.13.0.1.el9_3.aarch64.rpm
kernel-cross-headers-5.14.0-362.13.0.1.el9_3.aarch64.rpm
kernel-tools-libs-devel-5.14.0-362.13.0.1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-362.13.0.1.el9_3.src.rpm

Related CVEs:

CVE-2023-1192
CVE-2023-5345
CVE-2023-45871

Description of changes:

- [5.14.0-362.13.0.1.el9_3.OL9]
- cifs: Fix UAF in cifs_demultiplex_thread() (Zhang Xiaoxu) (Steve French) {CVE-2023-1192}
- fs/smb/client: Reset password pointer to NULL (Quang Le) (Steve French) {CVE-2023-5345}
- igb: set max size RX buffer when store bad packet is enabled (Tony Nguyen) (David S. Miller) {CVE-2023-45871}

- [5.14.0-362.8.1.el9_3.OL9]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64