SUSE-SU-2024:3983-1

Source
https://www.suse.com/support/update/announcement/2024/suse-su-20243983-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:3983-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2024:3983-1
Related
Published
2024-11-13T10:12:30Z
Modified
2024-11-13T10:12:30Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

  • CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556).
  • CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893).
  • CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2switchaclentryadd() and dpaa2switchaclentryremove() (bsc#1231973).
  • CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in grethinitrings() (bsc#1231889).
  • CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105setupdevlink_regions() (bsc#1231976).
  • CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979).
  • CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisifemacrx() (bsc#1232286).
  • CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191).
  • CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105initl2_policing() (bsc#1232233).
  • CVE-2022-48991: mm/khugepaged: fix collapseptemappedthp() to allow anonvma (bsc#1232070 git-fix prerequisity).
  • CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938).
  • CVE-2022-49017: tipc: re-fetch skb cb after tipcmsgvalidate (bsc#1232004).
  • CVE-2022-49020: net/9p: Fix a potential socket leak in p9socketopen (bsc#1232175).
  • CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797).
  • CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762).
  • CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MDSBCHANGE_PENDING (bsc#1227437).
  • CVE-2024-40965: i2c: lpi2c: Avoid calling clkgetrate during transfer (bsc#1227885).
  • CVE-2024-42226: Prevent potential failure in handletxevent() for Transfer events without TRB (bsc#1228709).
  • CVE-2024-42253: gpio: pca953x: fix pca953xirqbussyncunlock race (bsc#1229005 stable-fixes).
  • CVE-2024-44931: gpio: prevent potential speculation leaks in gpiodeviceget_desc() (bsc#1229837 stable-fixes).
  • CVE-2024-44958: sched/smt: Fix unbalance schedsmtpresent dec/inc (bsc#1230179).
  • CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429).
  • CVE-2024-45025: fix bitmap corruption on closerange() with CLOSERANGE_UNSHARE (bsc#1230456).
  • CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdmafreedescriptor (bsc#1230715).
  • CVE-2024-46754: bpf: Remove tstrun from lwtseg6localprogops (bsc#1230801).
  • CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773).
  • CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148).
  • CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpuupdatebwboundingbox (bsc#1231179).
  • CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191).
  • CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193).
  • CVE-2024-46815: drm/amd/display: Check numvalidsets before accessing readerwmsets (bsc#1231195).
  • CVE-2024-46816: drm/amd/display: Stop amdgpudm initialize when link nums greater than maxlinks (bsc#1231197).
  • CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200).
  • CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203).
  • CVE-2024-46828: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1231114).
  • CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096).
  • CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105).
  • CVE-2024-46841: btrfs: do not BUGON on ENOMEM from btrfslookupextentinfo() in walkdownproc() (bsc#1231094).
  • CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072).
  • CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073).
  • CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439).
  • CVE-2024-47661: drm/amd/display: Avoid overflow from uint32t to uint8t (bsc#1231496).
  • CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442).
  • CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in _genradixptr_alloc() (bsc#1231502).
  • CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540).
  • CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539).
  • CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673).
  • CVE-2024-47684: tcp: check skb is non-NULL in tcprtodelta_us() (bsc#1231987).
  • CVE-2024-47685: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput() (bsc#1231998).
  • CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857).
  • CVE-2024-47704: drm/amd/display: Check linkres->hpodplinkenc before using it (bsc#1231944).
  • CVE-2024-47705: block: fix potential invalid pointer dereference in blkaddpartition (bsc#1231872).
  • CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942).
  • CVE-2024-47707: ipv6: avoid possible NULL deref in rt6uncachedlistflushdev() (bsc#1231935).
  • CVE-2024-47710: sockmap: Add a condresched() in sockhashfree() (bsc#1232049).
  • CVE-2024-47720: drm/amd/display: Add null check for setoutputgamma in dcn30setoutputtransferfunc (bsc#1232043).
  • CVE-2024-47727: x86/tdx: Fix 'in-kernel MMIO' check (bsc#1232116).
  • CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075).
  • CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114).
  • CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124).
  • CVE-2024-47745: mm: split critical region in remapfilepages() and invoke LSMs in between (bsc#1232135).
  • CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145).
  • CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174).
  • CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861).
  • CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259).
  • CVE-2024-49881: ext4: update origpath in ext4find_extent() (bsc#1232201).
  • CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200).
  • CVE-2024-49883: ext4: aovid use-after-free in ext4extinsert_extent() (bsc#1232199).
  • CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196).
  • CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217).
  • CVE-2024-49892: drm/amd/display: Initialize getbytesper_element's default to 1 (bsc#1232220).
  • CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221).
  • CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355).
  • CVE-2024-49899: drm/amd/display: Initialize denominators' default to 1 (bsc#1232358).
  • CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305).
  • CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332).
  • CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32setoutputtransferfunc (bsc#1232337).
  • CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20setoutputtransferfunc (bsc#1232366).
  • CVE-2024-49914: drm/amd/display: Add null check for pipectx->planestate in (bsc#1232369).
  • CVE-2024-49917: drm/amd/display: Add NULL check for clkmgr and clkmgr->funcs in dcn30inithw (bsc#1231965).
  • CVE-2024-49918: drm/amd/display: Add null check for headpipe in dcn32acquireidlepipeforheadpipein_layer (bsc#1231967).
  • CVE-2024-49919: drm/amd/display: Add null check for headpipe in dcn201acquirefreepipeforlayer (bsc#1231968).
  • CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313).
  • CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374).
  • CVE-2024-49923: drm/amd/display: Pass non-null to dcn20validateapplypipesplit_flags (bsc#1232361).
  • CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253).
  • CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260).
  • CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368).
  • CVE-2024-49936: net/xen-netback: prevent UAF in xenvifflushhash() (bsc#1232424).
  • CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381).
  • CVE-2024-49946: ppp: do not assume bh is held in pppchannelbridge_input() (bsc#1232164).
  • CVE-2024-49949: net: avoid potential underflow in qdiscpktlen_init() with UFO (bsc#1232160).
  • CVE-2024-49954: staticcall: Replace pointless WARNON() in staticcallmodule_notify() (bsc#1232155).
  • CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154).
  • CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151).
  • CVE-2024-49959: jbd2: stop waiting for space when jbd2cleanupjournal_tail() returns error (bsc#1232149).
  • CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395).
  • CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140).
  • CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519).
  • CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105).
  • CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383).
  • CVE-2024-49975: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1232104).
  • CVE-2024-49991: drm/amdkfd: amdkfdfreegtt_mem clear the correct pointer (bsc#1232282).
  • CVE-2024-49993: iommu/vt-d: Fix potential lockup if qisubmitsync called with 0 count (bsc#1232316).
  • CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432).
  • CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089).
  • CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5etirbuilder_alloc() (bsc#1232085).
  • CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084).
  • CVE-2024-50002: staticcall: Handle module init failure correctly in staticcalldelmodule() (bsc#1232083).
  • CVE-2024-50006: ext4: fix idatasem unlock order in ext4indmigrate() (bsc#1232442).
  • CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446).
  • CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990).
  • CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954).
  • CVE-2024-50028: thermal: core: Reference count the zone in thermalzonegetbyid() (bsc#1231950).
  • CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914).
  • CVE-2024-50035: ppp: fix pppasyncencode() illegal access (bsc#1232392).
  • CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to macfilterhash (bsc#1231907).
  • CVE-2024-50045: netfilter: brnetfilter: fix panic with metadatadst skb (bsc#1231903).
  • CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42completecopies() (bsc#1231902).
  • CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418).
  • CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310).
  • CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329).
  • CVE-2024-50058: serial: protect uartportdtrrts() in uartshutdown() too (bsc#1232285).
  • CVE-2024-50059: ntb: ntbhwswitchtec: Fix use after free vulnerability in switchtecntbremove due to race condition (bsc#1232345).
  • CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdnsi3cmaster Driver Due to Race Condition (bsc#1232263).
  • CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435).
  • CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501).

The following non-security bugs were fixed:

  • ACPI: EC: Do not release locks during operation region accesses (stable-fixes).
  • ACPI: PAD: fix crash in exitroundrobin() (stable-fixes).
  • ACPI: PRM: Clean up guid type in struct prmhandlerinfo (git-fixes).
  • ACPI: PRM: Find EFIMEMORYRUNTIME block for PRM handler and context (git-fixes).
  • ACPI: battery: Call powersupplychanged() when adding hooks (bsc#1232154)
  • ACPI: battery: Simplify battery hook locking (bsc#1232154)
  • ACPI: resource: Add Asus ExpertBook B2502CVA to irq1levellowskipoverride[] (stable-fixes).
  • ACPI: resource: Add Asus Vivobook X1704VAP to irq1levellowskipoverride[] (stable-fixes).
  • ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes).
  • ACPICA: Fix memory leak if acpipsgetnextfield() fails (stable-fixes).
  • ACPICA: Fix memory leak if acpipsgetnextnamepath() fails (stable-fixes).
  • ACPICA: check null return of ACPIALLOCATEZEROED() in acpidbconverttopackage() (stable-fixes).
  • ACPICA: iasl: handle empty connection_node (stable-fixes).
  • ALSA: asihpi: Fix potential OOB array access (stable-fixes).
  • ALSA: core: add isascii() check to card ID generator (stable-fixes).
  • ALSA: firewire-lib: Avoid division by zero in applyconstraintto_size() (git-fixes).
  • ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes).
  • ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes).
  • ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes).
  • ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes).
  • ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes).
  • ALSA: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes).
  • ALSA: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes).
  • ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes).
  • ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes).
  • ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes).
  • ALSA: hda/realtek: Update default depop procedure (git-fixes).
  • ALSA: hda: Fix kctl->id initialization (git-fixes).
  • ALSA: hda: cs35l41: fix module autoloading (git-fixes).
  • ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes).
  • ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes).
  • ALSA: mixeross: Remove some incorrect kfreeconst() usages (git-fixes).
  • ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes).
  • ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes).
  • ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes).
  • ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes).
  • ALSA: usb-audio: Define macros for quirk table entries (stable-fixes).
  • ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes).
  • ASoC: allow module autoloading for table db1200_pids (stable-fixes).
  • ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes).
  • ASoC: intel: fix module autoloading (stable-fixes).
  • ASoC: qcom: Fix NULL Dereference in asocqcomlpasscpuplatform_probe() (git-fixes).
  • ASoC: rt5682: Return devmofclkaddhw_provider to transfer the error (git-fixes).
  • ASoC: soc-pcm: Do not zero TDM masks in _socpcm_open() (git-fixes).
  • ASoC: tda7419: fix module autoloading (stable-fixes).
  • Bluetooth: Call iso_exit() on module unload (git-fixes).
  • Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes).
  • Bluetooth: RFCOMM: FIX possible deadlock in rfcommskstate_change (git-fixes).
  • Bluetooth: Remove debugfs directory on module init failure (git-fixes).
  • Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes).
  • Bluetooth: btmrvl: Use IRQFNOAUTOEN flag in request_irq() (git-fixes).
  • Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes).
  • Bluetooth: hcievent: Align BR/EDR JUSTWORKS paring with LE (git-fixes).
  • HID: amdsfh: Switch to device-managed dmamalloc_coherent() (git-fixes).
  • HID: multitouch: Add support for GT7868Q (stable-fixes).
  • HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes).
  • HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes).
  • Input: adp5589-keys - fix NULL pointer dereference (git-fixes).
  • Input: adp5589-keys - fix adp5589gpioget_value() (git-fixes).
  • Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
  • Input: goodix - use the new socintelis_byt() helper (stable-fixes).
  • Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
  • KVM: Fix coalescedmmiohas_room() to avoid premature userspace exit (git-fixes).
  • KVM: Fix lockdep false negative during host resume (git-fixes).
  • KVM: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes).
  • KVM: Optimize kvmmakevcpusrequestmask() a bit (git-fixes).
  • KVM: Pre-allocate cpumasks for kvmmakeallcpusrequest_except() (git-fixes).
  • KVM: Reject overly excessive IDs in KVMCREATEVCPU (git-fixes).
  • KVM: SVM: Disallow guest from changing userspace's MSRAMD64DE_CFG value (git-fixes).
  • KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
  • KVM: SVM: fix emulation of msr reads/writes of MSRFSBASE and MSRGSBASE (git-fixes).
  • KVM: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes).
  • KVM: Write the per-page 'segment' when clearing (part of) a guest page (git-fixes).
  • KVM: arm64: Add missing memory barriers when switching to pKVM's hyp pgd (git-fixes).
  • KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes).
  • KVM: arm64: Fix AArch32 register narrowing on userspace write (git-fixes).
  • KVM: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes).
  • KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
  • KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).
  • KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
  • KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).
  • KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes).
  • KVM: arm64: vgic-its: Test for valid IRQ in itssynclpipendingtable() (git-fixes).
  • KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgicv2parse_attr() (git-fixes).
  • KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes).
  • KVM: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes).
  • KVM: eventfd: Fix false positive RCU usage warning (git-fixes).
  • KVM: fix memoryleak in kvm_init() (git-fixes).
  • KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631).
  • KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630).
  • KVM: x86/mmu: Fold rmaprecycle into rmapadd (git-fixes).
  • KVM: x86/mmu: Rename slothandleleaf to slothandlelevel_4k (git-fixes).
  • KVM: x86: Use a stable condition around all VT-d PI paths (git-fixes).
  • Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450).
  • NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes).
  • NFSD: Fix NFSv4's PUTPUBFH operation (git-fixes).
  • NFSD: Mark filecache 'down' if init fails (git-fixes).
  • NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016).
  • NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes).
  • PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes).
  • PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes).
  • PCI: Fix pcienableacs() support for the ACS quirks (bsc#1229019).
  • PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes).
  • RDMA/bnxt_re: Add a check for memory allocation (git-fixes)
  • RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes)
  • RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes)
  • RDMA/bnxt_re: Fix the GID table length (git-fixes)
  • RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes)
  • RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes)
  • RDMA/bnxt_re: Return more meaningful error (git-fixes)
  • RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes)
  • RDMA/cxgb4: Dump vendor specific QP details (git-fixes)
  • RDMA/cxgb4: Fix RDMACMEVENT_UNREACHABLE error for iWARP (git-fixes)
  • RDMA/hns: Remove unused abnormal interrupt of type RAS (git-fixes)
  • RDMA/irdma: Fix misspelling of 'accept*' (git-fixes)
  • RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes)
  • RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes).
  • RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes).
  • RDMA/mlx5: Round maxrdatomic/maxdestrd_atomic up instead of down (git-fixes)
  • RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes)
  • RDMA/srpt: Make slab cache names unique (git-fixes)
  • SUNRPC: Fix integer overflow in decoderclist() (git-fixes).
  • SUNRPC: Fixup gss_status tracepoint error output (git-fixes).
  • SUNRPC: clnt.c: Remove misleading comment (git-fixes).
  • USB: appledisplay: close race between probe and completion handler (stable-fixes).
  • USB: misc: cypress_cy7c63: check for short transfer (stable-fixes).
  • USB: misc: yurex: fix race between read and write (stable-fixes).
  • USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes).
  • USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes).
  • USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
  • Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450).
  • add bug reference for a mana change (bsc#1229769).
  • add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036).
  • afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
  • arm64: cputype: Add Neoverse-N3 definitions (git-fixes)
  • arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
  • arm64: errata: Expand speculative SSBS workaround once more (git-fixes)
  • arm64: esr: Define ESRELxEC_* constants as UL (git-fixes)
  • arm64: probes: Fix simulateldr*literal() (git-fixes)
  • arm64: probes: Fix uprobes for big-endian kernels (git-fixes)
  • arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes)
  • block: print symbolic error name instead of error code (bsc#1231872).
  • bpf, lsm: Add disabled BPF LSM hook list (git-fixes).
  • bpf, net: Fix a potential race in dosockgetsockopt() (git-fixes).
  • bpf, verifier: Correct tailcallreachable for bpf prog (git-fixes).
  • bpf, x64: Remove tail call detection (git-fixes).
  • bpf,perf: Fix perfeventdetachbpfprog error handling (git-fixes).
  • bpf: Add --skipencodingbtfinconsistentproto, --btfgenoptimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450).
  • bpf: Allow helpers to accept pointers with a fixed size (git-fixes).
  • bpf: Check for helper calls in check_subprogs() (git-fixes).
  • bpf: Fix bpfstrtol and bpfstrtoul helpers for 32bit (git-fixes).
  • bpf: Fix helper writes to read-only maps (git-fixes).
  • bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375).
  • bpf: Fix tailcall cases in test_bpf (git-fixes).
  • bpf: Improve checkrawmodeok test for MEMUNINIT-tagged types (git-fixes).
  • bpf: Remove truncation test in bpfstrtol and bpfstrtoul helpers (git-fixes).
  • bpf: Zero former ARGPTRTO_{LONG,INT} args in case of error (git-fixes).
  • bpf: correctly handle malformed BPFCORETYPEIDLOCAL relos (git-fixes).
  • btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450).
  • bus: integrator-lm: fix OF node leak in probe() (git-fixes).
  • ceph: fix cap ref leak via netfs init_request (bsc#1231383).
  • clk: Add a devm variant of clkrateexclusive_get() (bsc#1227885).
  • clk: Provide !COMMONCLK dummy for devmclkrateexclusive_get() (bsc#1227885).
  • comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes).
  • cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes).
  • crypto: hisilicon - Remove pciaerclearnonfatalstatus() call (bsc#1232075)
  • crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075)
  • debugfs: fix automount d_fsdata usage (git-fixes).
  • dnroute: set rt neigh to blackholenetdev instead of loopback_dev in ifdown (bsc#1216813).
  • drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes).
  • drbd: Fix atomicity violation in drbduuidset_bm() (git-fixes).
  • driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes).
  • drm/amd/amdgpu: Fix double unlock in amdgpumesadd_ring (git-fixes).
  • drm/amd/display: Add null check for 'afb' in amdgpudmplanehandlecursor_update (v2) (stable-fixes).
  • drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream (stable-fixes).
  • drm/amd/display: Allow backlight to go below AMDGPU_DM_DEFAULT_MIN_BACKLIGHT (stable-fixes).
  • drm/amd/display: Check linkres->hpodplinkenc before using it (bsc#1231944)
  • drm/amd/display: Check null pointer before dereferencing se (stable-fixes).
  • drm/amd/display: Check null pointers before using dc->clk_mgr (stable-fixes).
  • drm/amd/display: Check stream before comparing them (stable-fixes).
  • drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).
  • drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes).
  • drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes).
  • drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes).
  • drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes).
  • drm/amd/display: Handle null 'streamstatus' in 'planeschangedforexisting_stream' (stable-fixes).
  • drm/amd/display: Initialize getbytesper_element's default to 1 (stable-fixes).
  • drm/amd/display: Round calculated vtotal (stable-fixes).
  • drm/amd/display: Validate backlight caps are sane (stable-fixes).
  • drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes).
  • drm/amd: Guard against bad data for ATIF ACPI method (git-fixes).
  • drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes).
  • drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).
  • drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).
  • drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).
  • drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).
  • drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).
  • drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
  • drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).
  • drm/msm/dpu: do not always program merge_3d block (git-fixes).
  • drm/msm/dpu: make sure phys resources are properly initialized (git-fixes).
  • drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes).
  • drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes).
  • drm/msm: Avoid NULL dereference in msmdispstateprintregs() (git-fixes).
  • drm/printer: Allow NULL data in devcoredump printer (stable-fixes).
  • drm/radeon/r100: Handle unknown family in r100cpinit_microcode() (stable-fixes).
  • drm/radeon: Fix encoder->possible_clones (git-fixes).
  • drm/radeon: Replace one-element array with flexible-array member (stable-fixes).
  • drm/radeon: properly handle vbios fake edid sizing (git-fixes).
  • drm/rockchip: define gamma registers for RK3399 (stable-fixes).
  • drm/rockchip: support gamma control on RK3399 (stable-fixes).
  • drm/sched: Add locking to drmschedentitymodifysched (git-fixes).
  • drm/v3d: Stop the active perfmon before being destroyed (git-fixes).
  • drm/vc4: Stop the active perfmon before being destroyed (git-fixes).
  • drm/vmwgfx: Handle surface check failure correctly (git-fixes).
  • drm: Consistently use struct drmmoderect for FBDAMAGECLIPS (git-fixes).
  • drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
  • efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes).
  • erofs: avoid consecutive detection for Highmem memory (git-fixes).
  • erofs: avoid infinite loop in zerofsdoreadpage() when reading beyond EOF (git-fixes).
  • erofs: fix pcluster use-after-free on UP platforms (git-fixes).
  • erofs: fix potential overflow calculating xattr_isize (git-fixes).
  • erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes).
  • exportfs: use pr_debug for unreachable debug statements (git-fixes).
  • ext4: fix slab-use-after-free in ext4splitextent_at() (bsc#1232201)
  • fat: fix uninitialized variable (git-fixes).
  • fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes).
  • fbdev: sisfb: Fix strbuf array overflow (stable-fixes).
  • fgraph: Change the name of cpuhp state to 'fgraph:online' (git-fixes).
  • fgraph: Fix missing unlock in registerftracegraph() (git-fixes).
  • fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes).
  • filelock: fix potential use-after-free in posixlockinode (git-fixes).
  • firmware: tegra: bpmp: Drop unused mboxclientto_bpmp() (git-fixes).
  • fs/namespace: fnic: Switch to use %ptTd (git-fixes).
  • fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes).
  • fs: Fix filesetfowner LSM hook inconsistencies (git-fixes).
  • gpio: aspeed: Add the flush write to ensure the write complete (git-fixes).
  • gpio: aspeed: Use devm_clk api to manage clock source (git-fixes).
  • gpio: davinci: fix lazy disable (git-fixes).
  • hid: intel-ish-hid: Fix uninitialized variable 'rv' in ishfwxferdirectdma (git-fixes).
  • hvnetvsc: Fix VF namespace also in synthetic NIC NETDEVREGISTER event (git-fixes).
  • hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes).
  • hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes).
  • i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes).
  • i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885).
  • i2c: imx-lpi2c: use bulk clk API (bsc#1227885).
  • i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes).
  • i2c: xiic: Fix RX IRQ busy check (stable-fixes).
  • i2c: xiic: Fix broken locking on tx_msg (stable-fixes).
  • i2c: xiic: Fix pmruntimeset_suspended() with runtime pm enabled (git-fixes).
  • i2c: xiic: Switch from waitqueue to completion (stable-fixes).
  • i2c: xiic: Try re-initialization on bus busy timeout (git-fixes).
  • i2c: xiic: Use devmclkget_enabled() (stable-fixes).
  • i2c: xiic: improve error message when transfer fails to start (stable-fixes).
  • i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes).
  • ice: Unbind the workqueue (bsc#1231344).
  • iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes).
  • iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes).
  • iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes).
  • iio: hid-sensors: Fix an error handling path in hidsensorsetreport_latency() (git-fixes).
  • iio: light: opt3001: add missing full-scale range value (git-fixes).
  • iio: light: veml6030: fix ALS sensor resolution (git-fixes).
  • iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes).
  • iio: proximity: mb1232: add missing select IIO(TRIGGERED)BUFFER in Kconfig (git-fixes).
  • iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes).
  • ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813).
  • ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813).
  • jfs: Fix sanity check in dbMount (git-fixes).
  • jfs: Fix uaf in dbFreeBits (git-fixes).
  • jfs: Fix uninit-value access of newea in eabuffer (git-fixes).
  • jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes).
  • jfs: check if leafidx greater than num leaves per dmap tree (git-fixes).
  • kABI: bpf: enum bpf{typeflag,arg_type} kABI workaround (git-fixes).
  • kABI: bpf: struct bpffuncproto kABI workaround (git-fixes).
  • kab: fix after net: add more sanity check in virtionethdrtoskb() (git-fixes).
  • kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).
  • kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).
  • kabi: fix after kvm: add gueststate{enter,exit}_irqoff() (git-fixes).
  • kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450).
  • kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450).
  • kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450).
  • kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450).
  • kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450).
  • kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450).
  • kvm/arm64: rework guest entry logic (git-fixes).
  • kvm: Add support for arch compat vm ioctls (git-fixes).
  • kvm: add gueststate{enter,exit}_irqoff() (git-fixes).
  • media: videobuf2-core: clear memory related fields in _vb2planedmabufput() (stable-fixes).
  • module: abort module loading when sysfs setup suffer errors (git-fixes).
  • nbd: fix race between timeout and normal completion (bsc#1230918).
  • net/sched: taprio: Limit TCATAPRIOATTRSCHEDCYCLETIME to INTMAX (bsc#1226797)
  • net: add more sanity check in virtionethdrtoskb() (git-fixes).
  • net: socket: suppress unused warning (git-fixes).
  • net: test for not too small csumstart in virtionethdrto_skb() (git-fixes).
  • net: usb: usbnet: fix name regression (git-fixes).
  • netdevsim: use condresched() in nsimdevtrapreport_work() (git-fixes).
  • nfs: fix memory leak in error path of nfs4doreclaim (git-fixes).
  • nfsd: call cacheput if xdrreserve_space returns NULL (git-fixes).
  • nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes).
  • nfsd: fix refcount leak when file is unhashed after being found (git-fixes).
  • nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes).
  • nfsd: remove unneeded EEXIST error check in nfsddofile_acquire (git-fixes).
  • nfsd: return -EINVAL when namelen is 0 (git-fixes).
  • nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes).
  • nouveau/dmem: Fix vulnerability in migratetoram upon copy error (git-fixes).
  • ntb: intel: Fix the NULL vs ISERR() bug for debugfscreate_dir() (git-fixes).
  • ntb: ntbhwswitchtec: Fix use after free vulnerability in switchtecntbremove due to race condition (stable-fixes).
  • nvme-multipath: system fails to create generic nvme device (git-fixes).
  • nvme-pci: qdepth 1 quirk (git-fixes).
  • nvmet-auth: assign dhkey to NULL after kfreesensitive (git-fixes).
  • ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes).
  • ocfs2: fix uninit-value in ocfs2getblock() (git-fixes).
  • ocfs2: pass u64 to ocfs2truncateinline maybe overflow (git-fixes).
  • parport: Proper fix for array out-of-bounds access (git-fixes).
  • platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
  • platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes).
  • power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes).
  • s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632).
  • scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes).
  • scsi: aacraid: Rearrange order of struct aacsrbunit (git-fixes).
  • scsi: core: Fix the return value of scsilogicalblock_count() (git-fixes).
  • scsi: core: Handle devices which return an unusually large VPD page count (git-fixes).
  • scsi: core: alua: I/O errors for ALUA state transitions (git-fixes).
  • scsi: elx: libefc: Fix potential use after free in efcnportvport_del() (git-fixes).
  • scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes).
  • scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes).
  • scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes).
  • scsi: lpfc: Add ELSRSP cmd to the list of WQEs to flush in lpfcelsflushcmd() (bsc#1232757).
  • scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757).
  • scsi: lpfc: Fix kref imbalance on fabric ndlps from devlosstmo handler (bsc#1232757).
  • scsi: lpfc: Remove trailing space after \n newline (bsc#1232757).
  • scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes).
  • scsi: lpfc: Revise TRACEEVENT log flag severities from KERNERR to KERN_WARNING (bsc#1232757).
  • scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757).
  • scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757).
  • scsi: lpfc: Update phba link state conditional before sending CMFSYNCWQE (bsc#1232757).
  • scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes).
  • scsi: mac_scsi: Refactor polling loop (git-fixes).
  • scsi: macscsi: Revise printk(KERNDEBUG ...) messages (git-fixes).
  • scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes).
  • scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes).
  • scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes).
  • scsi: qedf: Set qedslowpathparams to zero before use (git-fixes).
  • scsi: smartpqi: correct stream detection (git-fixes).
  • scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes).
  • scsi: spi: Fix sshdr use (git-fixes).
  • scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes).
  • selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes).
  • selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes).
  • selftests/bpf: Fix ARGPTRTO_LONG {half-,}uninitialized test (git-fixes).
  • selftests/bpf: Rename ARGPTRTO_LONG test description (git-fixes).
  • selftests/bpf: test for malformed BPFCORETYPEIDLOCAL relocation (git-fixes).
  • spi: bcm63xx: Enable module autoloading (stable-fixes).
  • spi: bcm63xx: Fix module autoloading (git-fixes).
  • spi: lpspi: Silence error message upon deferred probe (stable-fixes).
  • spi: lpspi: Simplify some error message (git-fixes).
  • spi: lpspi: release requested DMA channels (stable-fixes).
  • spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
  • spi: ppc4xx: handle irqofparseandmap() errors (git-fixes).
  • spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes).
  • spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
  • spi: spi-imx: Fix pmruntimeset_suspended() with runtime pm enabled (git-fixes).
  • spi: spidev: Add missing spideviceid for jg10309-01 (git-fixes).
  • staticcall: Do not make _staticcallreturn0 static (git-fixes).
  • tracing/hwlat: Fix a race during cpuhp processing (git-fixes).
  • tracing/uprobes: Use traceeventbuffer_reserve() helper (git-fixes).
  • tracing: Consider the NULL character when validating the event length (git-fixes).
  • uprobe: avoid out-of-bounds memory access of fetching args (git-fixes).
  • uprobes: encapsulate preparation of uprobe args buffer (git-fixes).
  • usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes).
  • usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes).
  • usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes).
  • usb: gadget: core: force synchronous registration (git-fixes).
  • usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes).
  • usb: typec: altmode should keep reference to parent (git-fixes).
  • usb: xhci: Fix problem with xhci resume from suspend (stable-fixes).
  • usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes).
  • usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes).
  • usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes).
  • vhost/scsi: null-ptr-dereference in vhostscsiget_req() (git-fixes).
  • vhost_vdpa: assign irq bypass producer token correctly (git-fixes).
  • virtio-net: synchronize probe with ndosetfeatures (git-fixes).
  • virtio_console: fix misc probe bugs (git-fixes).
  • virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
  • vmxnet3: add command to allow disabling of offloads (bsc#1226498).
  • vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498).
  • vmxnet3: prepare for version 9 changes (bsc#1226498).
  • vmxnet3: update to version 9 (bsc#1226498).
  • vsock/virtio: fix packet delivery to tap device (git-fixes).
  • wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes).
  • wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
  • wifi: ath9k: fix parameter check in ath9kinitdebug() (stable-fixes).
  • wifi: ath9k: fix possible integer overflow in ath9kgetet_stats() (stable-fixes).
  • wifi: ath9khtc: Use _skbsetlength() for resetting urb before resubmit (stable-fixes).
  • wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
  • wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
  • wifi: iwlwifi: mvm: fix iwlmvmscan_fits() calculation (stable-fixes).
  • wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiexcmd80211scan_ext() (stable-fixes).
  • wifi: rtw88: select WANTDEVCOREDUMP (stable-fixes).
  • x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes).
  • x86/bugs: Skip RSB fill at VMEXIT (git-fixes).
  • x86/cpufeatures: Add a IBPBNORET BUG flag (git-fixes).
  • x86/cpufeatures: Define X86FEATUREAMDIBPBRET (git-fixes).
  • x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes).
  • x86/hyperv: Set X86FEATURETSCKNOWNFREQ when Hyper-V provides frequency (git-fixes).
  • x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405).
  • xfrm: set dst dev to blackholenetdev instead of loopbackdev in ifdown (bsc#1216813).
  • xhci: Fix incorrect stream context type macro (git-fixes).
  • xhci: Mitigate failed set dequeue pointer commands (git-fixes).
References

Affected packages

SUSE:Linux Enterprise Module for Public Cloud 15 SP5 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.72.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-devel": "5.14.21-150500.33.72.1",
            "kernel-devel-azure": "5.14.21-150500.33.72.1",
            "kernel-syms-azure": "5.14.21-150500.33.72.1",
            "kernel-source-azure": "5.14.21-150500.33.72.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.72.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-devel": "5.14.21-150500.33.72.1",
            "kernel-devel-azure": "5.14.21-150500.33.72.1",
            "kernel-syms-azure": "5.14.21-150500.33.72.1",
            "kernel-source-azure": "5.14.21-150500.33.72.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.72.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-devel": "5.14.21-150500.33.72.1",
            "kernel-devel-azure": "5.14.21-150500.33.72.1",
            "kernel-syms-azure": "5.14.21-150500.33.72.1",
            "kernel-source-azure": "5.14.21-150500.33.72.1"
        }
    ]
}

openSUSE:Leap 15.5 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.72.1

Ecosystem specific

{
    "binaries": [
        {
            "ocfs2-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-devel-azure": "5.14.21-150500.33.72.1",
            "dlm-kmp-azure": "5.14.21-150500.33.72.1",
            "cluster-md-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-extra": "5.14.21-150500.33.72.1",
            "gfs2-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-optional": "5.14.21-150500.33.72.1",
            "kernel-azure-devel": "5.14.21-150500.33.72.1",
            "kernel-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-vdso": "5.14.21-150500.33.72.1",
            "kselftests-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-syms-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-livepatch-devel": "5.14.21-150500.33.72.1",
            "reiserfs-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-source-azure": "5.14.21-150500.33.72.1"
        }
    ]
}

openSUSE:Leap 15.5 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.72.1

Ecosystem specific

{
    "binaries": [
        {
            "ocfs2-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-devel-azure": "5.14.21-150500.33.72.1",
            "dlm-kmp-azure": "5.14.21-150500.33.72.1",
            "cluster-md-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-extra": "5.14.21-150500.33.72.1",
            "gfs2-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-optional": "5.14.21-150500.33.72.1",
            "kernel-azure-devel": "5.14.21-150500.33.72.1",
            "kernel-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-vdso": "5.14.21-150500.33.72.1",
            "kselftests-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-syms-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-livepatch-devel": "5.14.21-150500.33.72.1",
            "reiserfs-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-source-azure": "5.14.21-150500.33.72.1"
        }
    ]
}

openSUSE:Leap 15.5 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150500.33.72.1

Ecosystem specific

{
    "binaries": [
        {
            "ocfs2-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-devel-azure": "5.14.21-150500.33.72.1",
            "dlm-kmp-azure": "5.14.21-150500.33.72.1",
            "cluster-md-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-extra": "5.14.21-150500.33.72.1",
            "gfs2-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-optional": "5.14.21-150500.33.72.1",
            "kernel-azure-devel": "5.14.21-150500.33.72.1",
            "kernel-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-vdso": "5.14.21-150500.33.72.1",
            "kselftests-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-syms-azure": "5.14.21-150500.33.72.1",
            "kernel-azure-livepatch-devel": "5.14.21-150500.33.72.1",
            "reiserfs-kmp-azure": "5.14.21-150500.33.72.1",
            "kernel-source-azure": "5.14.21-150500.33.72.1"
        }
    ]
}