Oracle9: ELSA-2022-10078: kernel Important Security Update
Summary
[5.15.0-5.76.5.1.el9uek] - proc: proc_skip_spaces() shouldn't think it is working on C strings (Linus Torvalds) [Orabug: 34883037] {CVE-2022-4378} - proc: avoid integer type confusion in get_proc_long (Linus Torvalds) [Orabug: 34883037] {CVE-2022-4378} [5.15.0-5.76.5.el9uek] - KVM: x86: Use SRCU to protect zap in __kvm_set_or_clear_apicv_inhibit() (Ben Gardon) [Orabug: 34817119] - KVM: x86: Don't inhibit APICv/AVIC if xAPIC ID mismatch is due to 32-bit ID (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Track xAPIC ID only on userspace SET, _after_ vAPIC is updated (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Flush the "current" TLB when activating AVIC (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Purge "highest ISR" cache when updating APICv state (Sean Christopherson) [Orabug: 34817119] - iommu/amd: Simplify and Consolidate Virtual APIC (AVIC) Enablement (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Add AVIC doorbell tracepoint (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: Warning APICv inconsistency only when vcpu APIC mode is valid (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Introduce hybrid-AVIC mode (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Do not throw warning when calling avic_vcpu_load on a running vcpu (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Introduce logic to (de)activate x2AVIC mode (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Refresh AVIC configuration when changing APIC mode (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: Deactivate APICv on vCPU with APIC disabled (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Do not virtualize MSR accesses for APIC LVTT register (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Fix x2APIC MSRs interception (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Adding support for configuring x2APIC MSRs interception (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Do not support updating APIC ID when in x2APIC mode (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Compute dest based on sender's x2APIC status for AVIC kick (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Update avic_kick_target_vcpus to support 32-bit APIC ID (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Update max number of vCPUs supported for x2AVIC mode (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Detect X2APIC virtualization (x2AVIC) support (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: lapic: Rename [GET/SET]_APIC_DEST_FIELD to [GET/SET]_XAPIC_DEST_FIELD (Suravee Suthikulpanit) [Orabug: 34817119] - x86/cpufeatures: Introduce x2AVIC CPUID bit (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: Blindly get current x2APIC reg value on "nodecode write" traps (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Bug the VM if an accelerated x2APIC trap occurs on a "bad" reg (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Do not block APIC write for non ICR registers (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: Add support for vICR APIC-write VM-Exits in x2APIC mode (Zeng Guang) [Orabug: 34817119] - KVM: x86: disable preemption while updating apicv inhibition (Maxim Levitsky) [Orabug: 34817119] - KVM: SVM: Fix x2APIC Logical ID calculation for avic_kick_target_vcpus_fast (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: SVM: fix avic_kick_target_vcpus_fast (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: SVM: remove avic's broken code that updated APIC ID (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: Don't inhibit APICv/AVIC on xAPIC ID "change" if APIC is disabled (Sean Christopherson) [Orabug: 34817119] - KVM: x86: inhibit APICv/AVIC on changes to APIC ID or APIC base (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: document AVIC/APICv inhibit reasons (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: SVM: allow to force AVIC to be enabled (Maxim Levitsky) [Orabug: 34817119] - KVM: SVM: Introduce trace point for the slow-path of avic_kic_target_vcpus (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: SVM: Use target APIC ID to complete AVIC IRQs when possible (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: Skip KVM_GUESTDBG_BLOCKIRQ APICv update if APICv is disabled (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Do not activate AVIC for SEV-enabled guest (Suravee Suthikulpanit) [Orabug: 34817119] - KVM: x86: Trace all APICv inhibit changes and capture overall status (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Add wrappers for setting/clearing APICv inhibits (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Make APICv inhibit reasons an enum and cleanup naming (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Disable preemption across AVIC load/put during APICv refresh (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Treat x2APIC's ICR as a 64-bit register, not two 32-bit regs (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Add helpers to handle 64-bit APIC MSR read/writes (Sean Christopherson) [Orabug: 34817119] - KVM: x86: WARN if KVM emulates an IPI without clearing the BUSY flag (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Don't rewrite guest ICR on AVIC IPI virtualization failure (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Use "raw" APIC register read for handling APIC-write VM-Exit (Sean Christopherson) [Orabug: 34817119] - KVM: VMX: Handle APIC-write offset wrangling in VMX code (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Rename AVIC helpers to use "avic" prefix instead of "svm" (Sean Christopherson) [Orabug: 34817119] - KVM: VMX: Rename VMX functions to conform to kvm_x86_ops names (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Rename kvm_x86_ops pointers to align w/ preferred vendor names (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Drop export for .tlb_flush_current() static_call key (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Skip APICv update if APICv is disable at the module level (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Unexport __kvm_request_apicv_update() (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: fix race between interrupt delivery and AVIC inhibition (Maxim Levitsky) [Orabug: 34817119] - KVM: SVM: set IRR in svm_deliver_interrupt (Paolo Bonzini) [Orabug: 34817119] - KVM: SVM: extract avic_ring_doorbell (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: SVM: move avic definitions from AMD's spec to svm.h (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: lapic: don't touch irr_pending in kvm_apic_update_apicv when inhibiting it (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: Move delivery of non-APICv interrupt into vendor code (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Drop AVIC's intermediate avic_set_running() helper (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Skip AVIC and IRTE updates when loading blocking vCPU (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Use kvm_vcpu_is_blocking() in AVIC load to handle preemption (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Remove unnecessary APICv/AVIC update in vCPU unblocking path (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Don't bother checking for "running" AVIC when kicking for IPIs (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Signal AVIC doorbell iff vCPU is in guest mode (Sean Christopherson) [Orabug: 34817119] - KVM: x86: add a tracepoint for APICv/AVIC interrupt delivery (Maxim Levitsky) [Orabug: 34817119] - KVM: Add helpers to wake/query blocking vCPU (Sean Christopherson) [Orabug: 34817119] - KVM: SVM: Ensure target pCPU is read once when signalling AVIC doorbell (Sean Christopherson) [Orabug: 34817119] - KVM: ensure APICv is considered inactive if there is no APIC (Paolo Bonzini) [Orabug: 34817119] - KVM: x86: inhibit APICv when KVM_GUESTDBG_BLOCKIRQ active (Maxim Levitsky) [Orabug: 34817119] - KVM: x86: Use rw_semaphore for APICv lock to allow vCPU parallelism (Sean Christopherson) [Orabug: 34817119] - KVM: x86: Move SVM's APICv sanity check to common x86 (Sean Christopherson) [Orabug: 34817119] - rds: Remove the cp_rdsinfo_pending flag (HÃ¥kon Bugge) [Orabug: 34658657] - RDMA/mlx5: Change debug log level for remote access error syndromes (Arumugam Kolappan) [Orabug: 34798451] - uek-rpm: kernel-uek.spec: make -modules-extra depend on -modules (Todd Vierling) [Orabug: 34820756] - Feature: Add cmdline param sched_uek=[preempt,wakeidle] (Libo Chen) [Orabug: 34779451] - rds: ib: Fix cleanup of rds_ib_cache_gc_worker (HÃ¥kon Bugge) [Orabug: 34806076] - KVM: nVMX: Add tracepoint for nested VM-Enter (David Matlack) [Orabug: 34806794] - KVM: x86: Update trace function for nested VM entry to support VMX (Mingwei Zhang) [Orabug: 34806794] - KVM: nVMX: Allow VMREAD when Enlightened VMCS is in use (Vitaly Kuznetsov) [Orabug: 34806794] - KVM: nVMX: Implement evmcs_field_offset() suitable for handle_vmread() (Vitaly Kuznetsov) [Orabug: 34806794] - KVM: nVMX: Rename vmcs_to_field_offset{,_table} (Vitaly Kuznetsov) [Orabug: 34806794] - x86/kvm: Always inline evmcs_write64() (Peter Zijlstra) [Orabug: 34806794] - RDMA/uverbs: restrack shared PDs (Sharath Srinivasan) [Orabug: 34812520] [5.15.0-5.76.4.el9uek] - x86: Ignore iommu=off for AMD cpus (Dave Kleikamp) [Orabug: 34211826] - virtio-net: use mtu size as buffer length for big packets (Gavin Li) [Orabug: 34756664] - virtio-net: introduce and use helper function for guest gso support checks (Gavin Li) [Orabug: 34756664] - vdpa/mlx5: Use consistent RQT size (Eli Cohen) [Orabug: 34756664] - vdpa: mlx5: synchronize driver status with CVQ (Jason Wang) [Orabug: 34756664] - vdpa: support exposing the count of vqs to userspace (Longpeng) [Orabug: 34756664] - vdpa: change the type of nvqs to u32 (Longpeng) [Orabug: 34756664] - vdpa: support exposing the config size to userspace (Longpeng) [Orabug: 34756664] - vdpa/mlx5: re-create forwarding rules after mac modified (Michael Qiu) [Orabug: 34756664] - Add definition of VIRTIO_F_IN_ORDER feature bit (Gautam Dawar) [Orabug: 34756664] - vdpa: factor out vdpa_set_features_unlocked for vdpa internal use (Si-Wei Liu) [Orabug: 34756664] - RDMA/cma: Use output interface for net_dev check (HÃ¥kon Bugge) [Orabug: 34774007] - Revert "RDMA/cma: Use output interface for net_dev check" (HÃ¥kon Bugge) [Orabug: 34774007] - Revert "rdmaip: Flush ARP cache after address has been cleared" (Sharath Srinivasan) [Orabug: 34783631] - Revert "sched: Remove the limitation of WF_ON_CPU on wakelist if wakee cpu is idle" (Samasth Norway Ananda) [Orabug: 34807135] [5.15.0-5.76.3.el9uek] - uek-rpm: Add Documentation to kernel-uek-devel (Somasundaram Krishnasamy) [Orabug: 34734127] - kfence: add sysfs interface to disable kfence for selected slabs. (Imran Khan) [Orabug: 34744270] - scsi: target: core: Silence the message about unknown VPD pages (Konstantin Shelekhin) [Orabug: 34764767] - x86/microcode/AMD: Apply the patch late on every logical thread (Mihai Carabas) [Orabug: 34765295] - perf/x86/intel: Hide Topdown metrics events if slots is not enumerated (Kan Liang) [Orabug: 34771183] [5.15.0-5.76.2.el9uek] - LTS version: v5.15.76 (Jack Vogel) - mm: /proc/pid/smaps_rollup: fix no vma's null-deref (Seth Jenkins) - mmc: core: Add SD card quirk for broken discard (Avri Altman) - Makefile.debug: re-enable debug info for .S files (Nick Desaulniers) - x86/Kconfig: Drop check for -mabi=ms for CONFIG_EFI_STUB (Nathan Chancellor) - ACPI: video: Force backlight native for more TongFang devices (Werner Sembach) - perf: Skip and warn on unknown format 'configN' attrs (Rob Herring) - mmc: sdhci-tegra: Use actual clock rate for SW tuning correction (Prathamesh Shete) - tracing: Do not free snapshot if tracer is on cmdline (Steven Rostedt (Google)) - tracing: Simplify conditional compilation code in tracing_set_tracer() (sunliming) - ksmbd: fix incorrect handling of iterate_dir (Namjae Jeon) - ksmbd: handle smb2 query dir request for OutputBufferLength that is too small (Namjae Jeon) - arm64: mte: move register initialization to C (Peter Collingbourne) - fs: dlm: fix invalid derefence of sb_lvbptr (Alexander Aring) - iommu/vt-d: Clean up si_domain in the init_dmars() error path (Jerry Snitselaar) - iommu/vt-d: Allow NVS regions in arch_rmrr_sanity_check() (Charlotte Tan) - net: phy: dp83822: disable MDI crossover status change interrupt (Felix Riemann) - net: sched: fix race condition in qdisc_graft() (Eric Dumazet) - net: hns: fix possible memory leak in hnae_ae_register() (Yang Yingliang) - wwan_hwsim: fix possible memory leak in wwan_hwsim_dev_new() (Yang Yingliang) - sfc: include vport_id in filter spec hash and equal() (Pieter Jansen van Vuuren) - net: sched: sfb: fix null pointer access issue when sfb_init() fails (Zhengchao Shao) - net: sched: delete duplicate cleanup of backlog and qlen (Zhengchao Shao) - net: sched: cake: fix null pointer access issue when cake_init() fails (Zhengchao Shao) - nvmet: fix workqueue MEM_RECLAIM flushing dependency (Sagi Grimberg) - nvme-hwmon: kmalloc the NVME SMART log buffer (Serge Semin) - nvme-hwmon: consistently ignore errors from nvme_hwmon_init (Christoph Hellwig) - netfilter: nf_tables: relax NFTA_SET_ELEM_KEY_END set flags requirements (Pablo Neira Ayuso) - ionic: catch NULL pointer issue on reconfig (Brett Creeley) - net: hsr: avoid possible NULL deref in skb_clone() (Eric Dumazet) - dm: remove unnecessary assignment statement in alloc_dev() (Genjian Zhang) - cifs: Fix xid leak in cifs_ses_add_channel() (Zhang Xiaoxu) - cifs: Fix xid leak in cifs_flock() (Zhang Xiaoxu) - cifs: Fix xid leak in cifs_copy_file_range() (Zhang Xiaoxu) - cifs: Fix xid leak in cifs_create() (Zhang Xiaoxu) - udp: Update reuse->has_conns under reuseport_lock. (Kuniyuki Iwashima) - scsi: lpfc: Fix memory leak in lpfc_create_port() (Rafael Mendonca) - net: phylink: add mac_managed_pm in phylink_config structure (Shenwei Wang) - net: phy: dp83867: Extend RX strap quirk for SGMII mode (Harini Katakam) - net/atm: fix proc_mpc_write incorrect return value (Xiaobo Liu) - sfc: Change VF mac via PF as first preference if available. (Jonathan Cooper) - HID: magicmouse: Do not set BTN_MOUSE on double report (José Expósito) - i40e: Fix DMA mappings leak (Jan Sokolowski) - tipc: fix an information leak in tipc_topsrv_kern_subscr (Alexander Potapenko) - tipc: Fix recognition of trial period (Mark Tomlinson) - ACPI: extlog: Handle multiple records (Tony Luck) - drm/vc4: Add module dependency on hdmi-codec (Maxime Ripard) - btrfs: fix processing of delayed tree block refs during backref walking (Filipe Manana) - btrfs: fix processing of delayed data refs during backref walking (Filipe Manana) - x86/topology: Fix duplicated core ID within a package (Zhang Rui) - x86/topology: Fix multiple packages shown on a single-package system (Zhang Rui) - media: venus: dec: Handle the case where find_format fails (Bryan O'Donoghue) - media: mceusb: set timeout to at least timeout provided (Sean Young) - media: ipu3-imgu: Fix NULL pointer dereference in active selection access (Sakari Ailus) - KVM: arm64: vgic: Fix exit condition in scan_its_table() (Eric Ren) - kvm: Add support for arch compat vm ioctls (Alexander Graf) - mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages (Rik van Riel) - drm/amdgpu: fix sdma doorbell init ordering on APUs (Alex Deucher) - cpufreq: qcom: fix memory leak in error path (Fabien Parent) - x86/resctrl: Fix min_cbm_bits for AMD (Babu Moger) - ata: ahci: Match EM_MAX_SLOTS with SATA_PMP_MAX_PORTS (Kai-Heng Feng) - ata: ahci-imx: Fix MODULE_ALIAS (Alexander Stein) - hwmon/coretemp: Handle large core ID value (Zhang Rui) - x86/microcode/AMD: Apply the patch early on every logical thread (Borislav Petkov) - i2c: qcom-cci: Fix ordering of pm_runtime_xx and i2c_add_adapter (Bryan O'Donoghue) - cpufreq: qcom: fix writes in read-only memory region (Fabien Parent) - selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context() (GONG, Ruiqi) - ocfs2: fix BUG when iput after ocfs2_mknod fails (Joseph Qi) - ocfs2: clear dinode links count in case of error (Joseph Qi) - btrfs: enhance unsupported compat RO flags handling (Qu Wenruo) - perf/x86/intel/pt: Relax address filter validation (Adrian Hunter) - arm64: errata: Remove AES hwcap for COMPAT tasks (James Morse) - usb: gadget: uvc: improve sg exit condition (Michael Grzeschik) - usb: gadget: uvc: giveback vb2 buffer on req complete (Michael Grzeschik) - usb: gadget: uvc: rework uvcg_queue_next_buffer to uvcg_complete_buffer (Michael Grzeschik) - usb: gadget: uvc: use on returned header len in video_encode_isoc_sg (Michael Grzeschik) - usb: gadget: uvc: consistently use define for headerlen (Michael Grzeschik) - arm64/mm: Consolidate TCR_EL1 fields (Anshuman Khandual) - r8152: add PID for the Lenovo OneLink+ Dock (Jean-Francois Le Fillatre) - LTS version: v5.15.75 (Jack Vogel) - io-wq: Fix memory leak in worker creation (Rafael Mendonca) - gcov: support GCC 12.1 and newer compilers (Martin Liska) - thermal: intel_powerclamp: Use first online CPU as control_cpu (Rafael J. Wysocki) - ext4: continue to expand file system when the target size doesn't reach (Jerry Lee æ修賢) - lib/Kconfig.debug: Add check for non-constant .{s,u}leb128 support to DWARF5 (Nathan Chancellor) - Kconfig.debug: add toolchain checks for DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT (Masahiro Yamada) - Kconfig.debug: simplify the dependency of DEBUG_INFO_DWARF4/5 (Masahiro Yamada) - drm/amd/display: Fix build breakage with CONFIG_DEBUG_FS=n (Nathan Chancellor) - net/ieee802154: don't warn zero-sized raw_sendmsg() (Tetsuo Handa) - Revert "net/ieee802154: reject zero-sized raw_sendmsg()" (Alexander Aring) - net: ethernet: ti: davinci_mdio: fix build for mdio bitbang uses (Randy Dunlap) - blk-wbt: fix that 'rwb->wc' is always set to 1 in wbt_init() (Yu Kuai) - ALSA: usb-audio: Fix last interface check for registration (Takashi Iwai) - net: ieee802154: return -EINVAL for unknown addr type (Alexander Aring) - mm: hugetlb: fix UAF in hugetlb_handle_userfault (Liu Shixin) - io_uring/rw: fix unexpected link breakage (Pavel Begunkov) - io_uring/rw: fix error'ed retry return values (Pavel Begunkov) - io_uring/rw: fix short rw error handling (Pavel Begunkov) - io_uring: correct pinned_vm accounting (Pavel Begunkov) - io_uring/af_unix: defer registered files gc to io_uring release (Pavel Begunkov) - perf intel-pt: Fix segfault in intel_pt_print_info() with uClibc (Adrian Hunter) - clk: bcm2835: Round UART input clock up (Ivan T. Ivanov) - clk: bcm2835: Make peripheral PLLC critical (Maxime Ripard) - usb: idmouse: fix an uninit-value in idmouse_open (Dongliang Mu) - nvmet-tcp: add bounds check on Transfer Tag (Varun Prakash) - nvme: copy firmware_rev on each init (Keith Busch) - ext2: Use kvmalloc() for group descriptor array (Jan Kara) - scsi: tracing: Fix compile error in trace_array calls when TRACING is disabled (Arun Easi) - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv() (Xiaoke Wang) - staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() (Xiaoke Wang) - Revert "usb: storage: Add quirk for Samsung Fit flash" (sunghwan jung) - usb: dwc3: core: Enable GUCTL1 bit 10 for fixing termination error after resume bug (Piyush Mehta) - arm64: dts: imx8mp: Add snps,gfladj-refclk-lpm-sel quirk to USB nodes (Alexander Stein) - usb: musb: Fix musb_gadget.c rxstate overflow bug (Robin Guo) - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (Jianglei Nie) - md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d (Logan Gunthorpe) - eventfd: guard wake_up in eventfd fs calls as well (Dylan Yudaken) - HID: roccat: Fix use-after-free in roccat_read() (Hyunwoo Kim) - soundwire: intel: fix error handling on dai registration issues (Pierre-Louis Bossart) - soundwire: cadence: Don't overwrite msg->buf during write commands (Richard Fitzgerald) - bcache: fix set_at_max_writeback_rate() for multiple attached devices (Coly Li) - ata: libahci_platform: Sanity check the DT child nodes number (Serge Semin) - blk-throttle: prevent overflow while calculating wait time (Yu Kuai) - staging: vt6655: fix potential memory leak (Nam Cao) - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() (Wei Yongjun) - iommu/arm-smmu-v3: Make default domain type of HiSilicon PTT device to identity (Yicong Yang) - nbd: Fix hung when signal interrupts nbd_start_device_ioctl() (Shigeru Yoshida) - scsi: 3w-9xxx: Avoid disabling device if failing to enable it (Letu Ren) - dmaengine: ti: k3-udma: Reset UDMA_CHAN_RT byte counters to prevent overflow (Vaishnav Achath) - usb: host: xhci-plat: suspend/resume clks for brcm (Justin Chen) - usb: host: xhci-plat: suspend and resume clocks (Justin Chen) - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate (Quanyang Wang) - media: platform: fix some double free in meson-ge2d and mtk-jpeg and s5p-mfc (Hangyu Hua) - media: cx88: Fix a null-ptr-deref bug in buffer_prepare() (Zheyu Ma) - clk: zynqmp: Fix stack-out-of-bounds in strncpy (Ian Nam) - ARM: 9242/1: kasan: Only map modules if CONFIG_KASAN_VMALLOC=n (Alex Sverdlin) - btrfs: don't print information about space cache or tree every remount (Maciej S. Szmigiero) - btrfs: scrub: try to fix super block errors (Qu Wenruo) - btrfs: dump extra info if one free space cache has more bitmaps than it should (Qu Wenruo) - arm64: dts: imx8mq-librem5: Add bq25895 as max17055's power supply (Sebastian Krzyszkowiak) - kselftest/arm64: Fix validatation termination record after EXTRA_CONTEXT (Mark Brown) - ARM: dts: imx6sx: add missing properties for sram (Alexander Stein) - ARM: dts: imx6sll: add missing properties for sram (Alexander Stein) - ARM: dts: imx6sl: add missing properties for sram (Alexander Stein) - ARM: dts: imx6qp: add missing properties for sram (Alexander Stein) - ARM: dts: imx6dl: add missing properties for sram (Alexander Stein) - ARM: dts: imx6q: add missing properties for sram (Alexander Stein) - ARM: dts: imx7d-sdb: config the max pressure for tsc2046 (Haibo Chen) - drm/amd/display: Remove interface for periodic interrupt 1 (Aric Cyr) - drm/dp: Don't rewrite link config when setting phy test pattern (Khaled Almahallawy) - mmc: sdhci-msm: add compatible string check for sdm670 (Richard Acayan) - drm/meson: explicitly remove aggregate driver at module unload time (Adrián Larumbe) - drm/meson: reorder driver deinit sequence to fix use-after-free bug (Adrián Larumbe) - drm/amdgpu: fix initial connector audio value (hongao) - ASoC: SOF: pci: Change DMI match info to support all Chrome platforms (Jairaj Arava) - platform/x86: msi-laptop: Change DMI match / alias strings to fix module autoloading (Hans de Goede) - platform/chrome: cros_ec: Notify the PM of wake events during resume (Jameson Thies) - drm: panel-orientation-quirks: Add quirk for Anbernic Win600 (Maya Matuszczyk) - drm/vc4: vec: Fix timings for VEC modes (Mateusz Kwiatkowski) - ALSA: usb-audio: Register card at the last interface (Takashi Iwai) - drm: bridge: dw_hdmi: only trigger hotplug event on link change (Lucas Stach) - udmabuf: Set ubuf->sg = NULL if the creation of sg table fails (Vivek Kasireddy) - drm/amd/display: fix overflow on MIN_I64 definition (David Gow) - gpu: lontium-lt9611: Fix NULL pointer dereference in lt9611_connector_init() (Zeng Jingxiang) - drm/komeda: Fix handling of atomic commits in the atomic_commit_tail hook (Liviu Dudau) - drm: Prevent drm_copy_field() to attempt copying a NULL pointer (Javier Martinez Canillas) - drm: Use size_t type for len variable in drm_copy_field() (Javier Martinez Canillas) - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc() (Jianglei Nie) - r8152: Rate limit overflow messages (Andrew Gaul) - Bluetooth: L2CAP: Fix user-after-free (Luiz Augusto von Dentz) - net: If sock is dead don't access sock's sk_wq in sk_stream_wait_memory (Liu Jian) - hwmon: (sht4x) do not overflow clamping operation on 32-bit platforms (Jason A. Donenfeld) - wifi: rt2x00: correctly set BBP register 86 for MT7620 (Daniel Golle) - wifi: rt2x00: set SoC wmac clock register (Daniel Golle) - wifi: rt2x00: set VGC gain for both chains of MT7620 (Daniel Golle) - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620 (Daniel Golle) - wifi: rt2x00: don't run Rt5592 IQ calibration on MT7620 (Daniel Golle) - can: bcm: check the result of can_send() in bcm_can_tx() (Ziyang Xuan) - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times (Luiz Augusto von Dentz) - Bluetooth: L2CAP: initialize delayed works at l2cap_chan_create() (Tetsuo Handa) - wifi: mt76: mt7921: reset msta->airtime_ac while clearing up hw value (Sean Wang) - regulator: core: Prevent integer underflow (Patrick Rudolph) - Bluetooth: btintel: Mark Intel controller to support LE_STATES quirk (Kiran K) - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (Alexander Coffin) - iavf: Fix race between iavf_close and iavf_reset_task (Michal Jaron) - xfrm: Update ipcomp_scratches with NULL when freed (Khalid Masum) - thunderbolt: Add back Intel Falcon Ridge end-to-end flow control workaround (Mika Westerberg) - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() (Tetsuo Handa) - x86/mce: Retrieve poison range from hardware (Jane Chu) - tcp: annotate data-race around tcp_md5sig_pool_populated (Eric Dumazet) - openvswitch: Fix overreporting of drops in dropwatch (Mike Pattrick) - openvswitch: Fix double reporting of drops in dropwatch (Mike Pattrick) - net: ethernet: ti: davinci_mdio: Add workaround for errata i2329 (Ravi Gunasekaran) - ice: set tx_tstamps when creating new Tx rings via ethtool (Jacob Keller) - bpftool: Clear errno after libcap's checks (Quentin Monnet) - wifi: brcmfmac: fix invalid address access when enabling SCAN log level (Wright Feng) - NFSD: Return nfserr_serverfault if splice_ok but buf->pages have data (Anna Schumaker) - x86/entry: Work around Clang __bdos() bug (Kees Cook) - ACPI: x86: Add a quirk for Dell Inspiron 14 2-in-1 for StorageD3Enable (Mario Limonciello) - ARM: decompressor: Include .data.rel.ro.local (Kees Cook) - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash (Srinivas Pandruvada) - powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue (Chao Qin) - MIPS: BCM47XX: Cast memcmp() of function to (void *) (Kees Cook) - cpufreq: intel_pstate: Add Tigerlake support in no-HWP mode (Doug Smythies) - ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid phys address (Hans de Goede) - ACPI: video: Add Toshiba Satellite/Portege Z830 quirk (Arvid Norlander) - rcu-tasks: Convert RCU_LOCKDEP_WARN() to WARN_ONCE() (Zqiang) - rcu: Back off upon fill_page_cache_func() allocation failure (Michal Hocko) - rcu: Avoid triggering strict-GP irq-work when RCU is idle (Zqiang) - fs: dlm: fix race in lowcomms (Alexander Aring) - selftest: tpm2: Add Client.__del__() to close /dev/tpm* handle (Stefan Berger) - f2fs: fix to account FS_CP_DATA_IO correctly (Chao Yu) - f2fs: fix race condition on setting FI_NO_EXTENT flag (Zhang Qilong) - ACPI: APEI: do not add task_work to kernel thread to avoid memory leak (Shuai Xue) - thermal/drivers/qcom/tsens-v0_1: Fix MSM8939 fourth sensor hw_id (Vincent Knecht) - crypto: cavium - prevent integer overflow loading firmware (Dan Carpenter) - crypto: marvell/octeontx - prevent integer overflows (Dan Carpenter) - kbuild: rpm-pkg: fix breakage when V=1 is used (Janis Schoetterl-Glausch) - kbuild: remove the target in signal traps when interrupted (Masahiro Yamada) - tracing/osnoise: Fix possible recursive locking in stop_per_cpu_kthreads (Nico Pache) - tracing: kprobe: Make gen test module work in arm and riscv (Yipeng Zou) - tracing: kprobe: Fix kprobe event gen test module on exit (Yipeng Zou) - iommu/iova: Fix module config properly (Robin Murphy) - cifs: return correct error in ->calc_signature() (Enzo Matsumiya) - crypto: qat - fix DMA transfer direction (Damian Muszynski) - crypto: inside-secure - Change swab to swab32 (Peter Harliman Liem) - crypto: ccp - Release dma channels before dmaengine unrgister (Koba Ko) - crypto: akcipher - default implementation for setting a private key (Ignat Korchagin) - iommu/omap: Fix buffer overflow in debugfs (Dan Carpenter) - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset (Waiman Long) - crypto: hisilicon/qm - fix missing put dfx access (Weili Qian) - crypto: qat - fix default value of WDT timer (Lucas Segarra Fernandez) - hwrng: imx-rngc - Moving IRQ handler registering after imx_rngc_irq_mask_clear() (Kshitiz Varshney) - cgroup: Honor caller's cgroup NS when resolving path (Michal Koutný) - hwrng: arm-smccc-trng - fix NO_ENTROPY handling (James Cowgill) - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr (Ye Weihua) - crypto: sahara - don't sleep when in softirq (Zhengchao Shao) - powerpc/pseries/vas: Pass hw_cpu_id to node associativity HCALL (Haren Myneni) - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe() (Li Huafei) - powerpc: Fix SPE Power ISA properties for e500v1 platforms (Pali Rohár) - powerpc/64s: Fix GENERIC_CPU build flags for PPC970 / G5 (Nicholas Piggin) - x86/hyperv: Fix 'struct hv_enlightened_vmcs' definition (Vitaly Kuznetsov) - powerpc: Fix fallocate and fadvise64_64 compat parameter combination (Rohan McLure) - powerpc/powernv: add missing of_node_put() in opal_export_attrs() (Zheng Yongjun) - powerpc/pci_dn: Add missing of_node_put() (Liang He) - powerpc/sysdev/fsl_msi: Add missing of_node_put() (Liang He) - powerpc/math_emu/efp: Include module.h (Nathan Chancellor) - powerpc/configs: Properly enable PAPR_SCM in pseries_defconfig (Michael Ellerman) - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg (Jack Wang) - mailbox: mpfs: account for mbox offsets while sending (Conor Dooley) - mailbox: mpfs: fix handling of the reg property (Conor Dooley) - clk: ast2600: BCLK comes from EPLL (Joel Stanley) - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe (Miaoqian Lin) - clk: imx: scu: fix memleak on platform_device_add() fails (Lin Yujun) - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration (Stefan Wahren) - clk: baikal-t1: Add SATA internal ref clock buffer (Serge Semin) - clk: baikal-t1: Add shared xGMAC ref/ptp clocks internal parent (Serge Semin) - clk: baikal-t1: Fix invalid xGMAC PTP clock divider (Serge Semin) - clk: vc5: Fix 5P49V6901 outputs disabling when enabling FOD (Serge Semin) - spmi: pmic-arb: correct duplicate APID to PPID mapping logic (David Collins) - usb: mtu3: fix failed runtime suspend in host only mode (Chunfeng Yun) - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in __cleanup() (Dave Jiang) - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent (Chen-Yu Tsai) - mfd: sm501: Add check for platform_driver_register() (Jiasheng Jiang) - mfd: fsl-imx25: Fix check for platform_get_irq() errors (Dan Carpenter) - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and lp8788_irq_init() (Christophe JAILLET) - mfd: lp8788: Fix an error handling path in lp8788_probe() (Christophe JAILLET) - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq() (Christophe JAILLET) - mfd: intel_soc_pmic: Fix an error handling path in intel_soc_pmic_i2c_probe() (Christophe JAILLET) - fsi: core: Check error number after calling ida_simple_get (Jiasheng Jiang) - RDMA/rxe: Fix resize_finish() in rxe_queue.c (Bob Pearson) - clk: qcom: gcc-sm6115: Override default Alpha PLL regs (Adam Skladowski) - clk: qcom: apss-ipq6018: mark apcs_alias0_core_clk as critical (Robert Marko) - scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername() (Mike Christie) - scsi: iscsi: Run recv path from workqueue (Mike Christie) - scsi: iscsi: Add recv workqueue helpers (Mike Christie) - scsi: iscsi: Rename iscsi_conn_queue_work() (Mike Christie) - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() (Duoming Zhou) - serial: 8250: Fix restoring termios speed after suspend (Pali Rohár) - firmware: google: Test spinlock on panic path to avoid lockups (Guilherme G. Piccoli) - slimbus: qcom-ngd-ctrl: allow compile testing without QCOM_RPROC_COMMON (Krzysztof Kozlowski) - staging: vt6655: fix some erroneous memory clean-up loops (Nam Cao) - phy: qualcomm: call clk_disable_unprepare in the error handling (Dongliang Mu) - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown (Sherry Sun) - serial: 8250: Toggle IER bits on only after irq has been set up (Ilpo Järvinen) - drivers: serial: jsm: fix some leaks in probe (Dan Carpenter) - usb: gadget: function: fix dangling pnp_string in f_printer.c (Albert Briscoe) - xhci: Don't show warning for reinit on known broken suspend (Mario Limonciello) - IB: Set IOVA/LENGTH on IB_MR in core/uverbs layers (Daisuke Matsuda) - RDMA/cm: Use SLID in the work completion as the DLID in responder side (Mark Zhang) - md/raid5: Remove unnecessary bio_put() in raid5_read_one_chunk() (David Sloan) - md/raid5: Ensure stripe_fill happens on non-read IO with journal (Logan Gunthorpe) - md: Replace snprintf with scnprintf (Saurabh Sengar) - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct() (Dan Carpenter) - ata: fix ata_id_has_dipm() (Niklas Cassel) - ata: fix ata_id_has_ncq_autosense() (Niklas Cassel) - ata: fix ata_id_has_devslp() (Niklas Cassel) - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting() (Niklas Cassel) - RDMA/siw: Fix QP destroy to wait for all references dropped. (Bernard Metzler) - RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall. (Bernard Metzler) - RDMA/srp: Fix srp_abort() (Bart Van Assche) - RDMA/irdma: Align AE id codes to correct flush code and event (Sindhu-Devale) - mtd: rawnand: fsl_elbc: Fix none ECC mode (Pali Rohár) - mtd: rawnand: intel: Remove undocumented compatible string (Martin Blumenstingl) - mtd: rawnand: intel: Read the chip-select line from the correct OF node (Martin Blumenstingl) - phy: phy-mtk-tphy: fix the phy type setting issue (Chunfeng Yun) - phy: amlogic: phy-meson-axg-mipi-pcie-analog: Hold reference returned by of_get_parent() (Liang He) - mtd: devices: docg3: check the return value of devm_ioremap() in the probe (William Dean) - clk: qcom: sm6115: Select QCOM_GDSC (Dang Huynh) - dyndbg: drop EXPORTed dynamic_debug_exec_queries (Jim Cromie) - dyndbg: let query-modname override actual module name (Jim Cromie) - dyndbg: fix module.dyndbg handling (Jim Cromie) - dyndbg: fix static_branch manipulation (Jim Cromie) - dmaengine: hisilicon: Add multi-thread support for a DMA channel (Jie Hai) - dmaengine: hisilicon: Fix CQ head update (Jie Hai) - dmaengine: hisilicon: Disable channels when unregister hisi_dma (Jie Hai) - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() (Dan Carpenter) - misc: ocxl: fix possible refcount leak in afu_ioctl() (Hangyu Hua) - RDMA/rxe: Fix the error caused by qp->sk (Zhu Yanjun) - RDMA/rxe: Fix "kernel NULL pointer dereference" error (Zhu Yanjun) - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init (Miaoqian Lin) - media: uvcvideo: Use entity get_cur in uvc_ctrl_set (Yunke Cao) - media: uvcvideo: Fix memory leak in uvc_gpio_parse (José Expósito) - media: meson: vdec: add missing clk_disable_unprepare on error in vdec_hevc_start() (Xu Qiang) - tty: xilinx_uartps: Fix the ignore_status (Shubhrajyoti Datta) - media: exynos4-is: fimc-is: Add of_node_put() when breaking out of loop (Liang He) - HSI: omap_ssi_port: Fix dma_map_sg error check (Jack Wang) - HSI: omap_ssi: Fix refcount leak in ssi_probe (Miaoqian Lin) - clk: tegra20: Fix refcount leak in tegra20_clock_init (Miaoqian Lin) - clk: tegra: Fix refcount leak in tegra114_clock_init (Miaoqian Lin) - clk: tegra: Fix refcount leak in tegra210_clock_init (Miaoqian Lin) - clk: sprd: Hold reference returned by of_get_parent() (Liang He) - clk: berlin: Add of_node_put() for of_get_parent() (Liang He) - clk: qoriq: Hold reference returned by of_get_parent() (Liang He) - clk: oxnas: Hold reference returned by of_get_parent() (Liang He) - clk: meson: Hold reference returned by of_get_parent() (Liang He) - usb: common: debug: Check non-standard control requests (Thinh Nguyen) - RDMA/mlx5: Don't compare mkey tags in DEVX indirect mkey (Aharon Landau) - iio: magnetometer: yas530: Change data type of hard_offsets to signed (Jakob Hauser) - iio: ABI: Fix wrong format of differential capacitance channel ABI. (Jonathan Cameron) - iio: inkern: fix return value in devm_of_iio_channel_get_by_name() (Nuno Sá) - iio: inkern: only release the device node when done with it (Nuno Sá) - iio: adc: at91-sama5d2_adc: disable/prepare buffer on suspend/resume (Claudiu Beznea) - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq (Claudiu Beznea) - iio: adc: at91-sama5d2_adc: check return status for pressure and touch (Claudiu Beznea) - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX (Claudiu Beznea) - ARM: dts: exynos: fix polarity of VBUS GPIO of Origen (Dmitry Torokhov) - arm64: ftrace: fix module PLTs with mcount (Mark Rutland) - ext4: don't run ext4lazyinit for read-only filesystems (Josh Triplett) - ARM: Drop CMDLINE_* dependency on ATAGS (Geert Uytterhoeven) - ARM: dts: exynos: correct s5k6a3 reset polarity on Midas family (Dmitry Torokhov) - arm64: dts: ti: k3-j7200: fix main pinmux range (Matt Ranostay) - soc/tegra: fuse: Drop Kconfig dependency on TEGRA20_APB_DMA (Dmitry Osipenko) - ia64: export memory_add_physaddr_to_nid to fix cxl build error (Randy Dunlap) - ARM: dts: kirkwood: lsxl: remove first ethernet port (Michael Walle) - ARM: dts: kirkwood: lsxl: fix serial line (Michael Walle) - ARM: dts: turris-omnia: Fix mpp26 pin name and comment (Marek Behún) - ARM: dts: imx6qdl-kontron-samx6i: hook up DDC i2c bus (Lucas Stach) - soc: qcom: smem_state: Add refcounting for the 'state->of_node' (Liang He) - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() (Liang He) - locks: fix TOCTOU race when granting write lease (Amir Goldstein) - memory: of: Fix refcount leak bug in of_lpddr3_get_ddr_timings() (Liang He) - memory: of: Fix refcount leak bug in of_get_ddr_timings() (Liang He) - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe() (Liang He) - ALSA: hda/hdmi: Don't skip notification handling during PM operation (Takashi Iwai) - ASoC: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe (Zhang Qilong) - ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe (Zhang Qilong) - ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe (Zhang Qilong) - ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe (Zhang Qilong) - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe() (Christophe JAILLET) - ALSA: dmaengine: increment buffer pointer atomically (Andreas Pape) - ASoC: da7219: Fix an error handling path in da7219_register_dai_clks() (Christophe JAILLET) - ASoC: codecs: tx-macro: fix kcontrol put (Srinivas Kandagatla) - drm/vmwgfx: Fix memory leak in vmw_mksstat_add_ioctl() (Rafael Mendonca) - drm/msm/dp: correct 1.62G link rate at dp_catalog_ctrl_config_msa() (Kuogee Hsieh) - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx (Dmitry Baryshkov) - ASoC: eureka-tlv320: Hold reference returned from of_find_xxx API (Liang He) - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe() (Christophe JAILLET) - drm/amdgpu: Fix memory leak in hpd_rx_irq_create_workqueue() (Rafael Mendonca) - drm/omap: dss: Fix refcount leak bugs (Liang He) - drm/bochs: fix blanking (Gerd Hoffmann) - ALSA: hda: beep: Simplify keep-power-at-enable behavior (Takashi Iwai) - ASoC: rsnd: Add check for rsnd_mod_power_on (Jiasheng Jiang) - drm/bridge: megachips: Fix a null pointer dereference bug (Zheyu Ma) - drm/amdgpu: add missing pci_disable_device() in amdgpu_pmops_runtime_resume() (Yang Yingliang) - platform/chrome: cros_ec_typec: Correct alt mode index (Prashant Malani) - platform/x86: msi-laptop: Fix resource cleanup (Hans de Goede) - platform/x86: msi-laptop: Fix old-ec check for backlight registering (Hans de Goede) - ASoC: tas2764: Fix mute/unmute (Martin PoviÅ¡er) - ASoC: tas2764: Drop conflicting set_bias_level power setting (Martin PoviÅ¡er) - ASoC: tas2764: Allow mono streams (Martin PoviÅ¡er) - platform/chrome: fix memory corruption in ioctl (Dan Carpenter) - platform/chrome: fix double-free in chromeos_laptop_prepare() (Rustam Subkhankulov) - ASoC: mt6359: fix tests for platform_get_irq() failure (Dan Carpenter) - drm:pl111: Add of_node_put() when breaking out of for_each_available_child_of_node() (Liang He) - drm/dp_mst: fix drm_dp_dpcd_read return value checks (Simon Ser) - drm/bridge: parade-ps8640: Fix regulator supply order (Chen-Yu Tsai) - drm/virtio: Correct drm_gem_shmem_get_sg_table() error handling (Dmitry Osipenko) - drm/mipi-dsi: Detach devices when removing the host (Maxime Ripard) - drm/bridge: Avoid uninitialized variable warning (Dan Carpenter) - drm: bridge: adv7511: unregister cec i2c device after cec adapter (Alvin Å ipraga) - drm: bridge: adv7511: fix CEC power down control register offset (Alvin Å ipraga) - net: mvpp2: fix mvpp2 debugfs leak (Russell King (Oracle)) - once: add DO_ONCE_SLOW() for sleepable contexts (Eric Dumazet) - net/ieee802154: reject zero-sized raw_sendmsg() (Tetsuo Handa) - net: wwan: iosm: Call mutex_init before locking it (Maxim Mikityanskiy) - bnx2x: fix potential memory leak in bnx2x_tpa_stop() (Jianglei Nie) - hwmon: (pmbus/mp2888) Fix sensors readouts for MPS Multi-phase mp2888 controller (Oleksandr Shamray) - spi: Ensure that sg_table won't be used after being freed (Marek Szyprowski) - tcp: fix tcp_cwnd_validate() to not forget is_cwnd_limited (Neal Cardwell) - sctp: handle the error returned from sctp_auth_asoc_init_active_key (Xin Long) - mISDN: fix use-after-free bugs in l1oip timer handlers (Duoming Zhou) - eth: alx: take rtnl_lock on resume (Jakub Kicinski) - vhost/vsock: Use kvmalloc/kvfree for larger packets. (Junichi Uekawa) - wifi: rtl8xxxu: Fix AIFS written to REG_EDCA_*_PARAM (Bitterblue Smith) - spi: s3c64xx: Fix large transfers with DMA (Vincent Whitchurch) - netfilter: nft_fib: Fix for rpath check with VRF devices (Phil Sutter) - xfrm: Reinject transport-mode packets through workqueue (Liu Jian) - Bluetooth: hci_core: Fix not handling link timeouts propertly (Luiz Augusto von Dentz) - i2c: mlxbf: support lock mechanism (Asmaa Mnebhi) - skmsg: Schedule psock work if the cached skb exists on the psock (Liu Jian) - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe (Zhang Qilong) - spi: dw: Fix PM disable depth imbalance in dw_spi_bt1_probe (Zhang Qilong) - x86/cpu: Include the header of init_ia32_feat_ctl()'s prototype (Luciano Leão) - x86/microcode/AMD: Track patch allocation size explicitly (Kees Cook) - wifi: ath11k: fix number of VHT beamformee spatial streams (Jesus Fernandez Manzano) - netfilter: conntrack: revisit the gc initial rescheduling bias (Antoine Tenart) - netfilter: conntrack: fix the gc rescheduling delay (Antoine Tenart) - Bluetooth: hci_{ldisc,serdev}: check percpu_init_rwsem() failure (Tetsuo Handa) - bpf: Ensure correct locking around vulnerable function find_vpid() (Lee Jones) - net: fs_enet: Fix wrong check in do_pd_setup (Zheng Yongjun) - Bluetooth: RFCOMM: Fix possible deadlock on socket shutdown/release (Luiz Augusto von Dentz) - wifi: mt76: mt7915: do not check state before configuring implicit beamform (Howard Hsu) - wifi: mt76: mt7615: add mt7615_mutex_acquire/release in mt7615_sta_set_decap_offload (Lorenzo Bianconi) - wifi: mt76: sdio: fix transmitting packet hangs (YN Chen) - wifi: rtl8xxxu: Remove copy-paste leftover in gen2_update_rate_mask (Bitterblue Smith) - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration (Bitterblue Smith) - bpf: btf: fix truncated last_member_type_id in btf_struct_resolve (Lorenz Bauer) - spi: meson-spicc: do not rely on busy flag in pow2 clk ops (Neil Armstrong) - wifi: rtl8xxxu: Fix skb misuse in TX queue selection (Bitterblue Smith) - spi: qup: add missing clk_disable_unprepare on error in spi_qup_pm_resume_runtime() (Xu Qiang) - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume() (Xu Qiang) - selftests/xsk: Avoid use-after-free on ctx (Ian Rogers) - wifi: rtw88: add missing destroy_workqueue() on error path in rtw_core_init() (Yang Yingliang) - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse() (Dan Carpenter) - Bluetooth: btusb: mediatek: fix WMT failure during runtime suspend (Sean Wang) - bpf: Use this_cpu_{inc|dec|inc_return} for bpf_task_storage_busy (Hou Tao) - bpf: Propagate error from htab_lock_bucket() to userspace (Hou Tao) - bpf: Disable preemption when increasing per-cpu map_locked (Hou Tao) - xsk: Fix backpressure mechanism on Tx (Maciej Fijalkowski) - x86/resctrl: Fix to restore to original value when re-enabling hardware prefetch register (Kohei Tarumizu) - spi: mt7621: Fix an error message in mt7621_spi_probe() (Christophe JAILLET) - bpftool: Fix a wrong type cast in btf_dumper_int (Lam Thai) - wifi: mac80211: allow bw change during channel switch in mesh (Hari Chandrakanthan) - bpf: Fix reference state management for synchronous callbacks (Kumar Kartikeya Dwivedi) - leds: lm3601x: Don't use mutex after it was destroyed (Uwe Kleine-König) - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state() (Wen Gong) - wifi: rtlwifi: 8192de: correct checking of IQK reload (Ping-Ke Shih) - NFSD: Fix handling of oversized NFSv4 COMPOUND requests (Chuck Lever) - NFSD: Protect against send buffer overflow in NFSv2 READDIR (Chuck Lever) - SUNRPC: Fix svcxdr_init_encode's buflen calculation (Chuck Lever) - SUNRPC: Fix svcxdr_init_decode's end-of-buffer calculation (Chuck Lever) - nfsd: Fix a memory leak in an error handling path (Christophe JAILLET) - objtool: Preserve special st_shndx indexes in elf_update_symbol (Sami Tolvanen) - ARM: 9247/1: mm: set readonly for MT_MEMORY_RO with ARM_LPAE (Wang Kefeng) - ARM: 9244/1: dump: Fix wrong pg_level in walk_pmd() (Wang Kefeng) - MIPS: SGI-IP27: Fix platform-device leak in bridge_platform_create() (Lin Yujun) - MIPS: SGI-IP27: Free some unused memory (Christophe JAILLET) - sh: machvec: Use char[] for section boundaries (Kees Cook) - thermal: cpufreq_cooling: Check the policy first in cpufreq_cooling_register() (Xuewen Yan) - ntfs3: rework xattr handlers and switch to POSIX ACL VFS helpers (Christian Brauner) - userfaultfd: open userfaultfds with O_RDONLY (Ondrej Mosnacek) - ima: fix blocking of security.ima xattrs of unsupported algorithms (Mimi Zohar) - selinux: use "grep -E" instead of "egrep" (Greg Kroah-Hartman) - smb3: must initialize two ACL struct fields to zero (Steve French) - drm/amd/display: Fix vblank refcount in vrr transition (Yunxiang Li) - drm/i915: Fix watermark calculations for gen12+ CCS+CC modifier (Ville Syrjälä) - drm/i915: Fix watermark calculations for gen12+ MC CCS modifier (Ville Syrjälä) - drm/i915: Fix watermark calculations for gen12+ RC CCS modifier (Ville Syrjälä) - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() (Jianglei Nie) - drm/nouveau/kms/nv140-: Disable interlacing (Lyude Paul) - staging: greybus: audio_helper: remove unused and wrong debugfs usage (Greg Kroah-Hartman) - KVM: VMX: Drop bits 31:16 when shoving exception error code into VMCS (Sean Christopherson) - KVM: nVMX: Don't propagate vmcs12's PERF_GLOBAL_CTRL settings to vmcs02 (Sean Christopherson) - KVM: nVMX: Unconditionally purge queued/injected events on nested "exit" (Sean Christopherson) - KVM: x86/emulator: Fix handing of POP SS to correctly set interruptibility (Michal Luczaj) - blk-wbt: call rq_qos_add() after wb_normal is initialized (Yu Kuai) - media: cedrus: Fix endless loop in cedrus_h265_skip_bits() (Dmitry Osipenko) - media: cedrus: Set the platform driver data earlier (Dmitry Osipenko) - efi: libstub: drop pointless get_memory_map() call (Ard Biesheuvel) - thunderbolt: Explicitly enable lane adapter hotplug events at startup (Mario Limonciello) - tracing: Fix reading strings from synthetic events (Steven Rostedt (Google)) - tracing: Add "(fault)" name injection to kernel probes (Steven Rostedt (Google)) - tracing: Move duplicate code of trace_kprobe/eprobe.c into header (Steven Rostedt (Google)) - tracing: Add ioctl() to force ring buffer waiters to wake up (Steven Rostedt (Google)) - tracing: Wake up waiters when tracing is disabled (Steven Rostedt (Google)) - tracing: Wake up ring buffer waiters on closing of the file (Steven Rostedt (Google)) - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t (Waiman Long) - ring-buffer: Fix race between reset page and reading page (Steven Rostedt (Google)) - ring-buffer: Add ring_buffer_wake_waiters() (Steven Rostedt (Google)) - ring-buffer: Check pending waiters when doing wake ups as well (Steven Rostedt (Google)) - ring-buffer: Have the shortest_full queue be the shortest not longest (Steven Rostedt (Google)) - ring-buffer: Allow splice to read previous partially read pages (Steven Rostedt (Google)) - ftrace: Properly unset FTRACE_HASH_FL_MOD (Zheng Yejian) - livepatch: fix race between fork and KLP transition (Rik van Riel) - ext4: update 'state->fc_regions_size' after successful memory allocation (Ye Bin) - ext4: fix potential memory leak in ext4_fc_record_regions() (Ye Bin) - ext4: fix potential memory leak in ext4_fc_record_modified_inode() (Ye Bin) - ext4: fix miss release buffer head in ext4_fc_write_inode (Ye Bin) - ext4: fix dir corruption when ext4_dx_add_entry() fails (Zhihao Cheng) - ext4: place buffer head allocation before handle start (Jinke Han) - ext4: ext4_read_bh_lock() should submit IO if the buffer isn't uptodate (Zhang Yi) - ext4: don't increase iversion counter for ea_inodes (Lukas Czerner) - ext4: fix check for block being out of directory size (Jan Kara) {CVE-2022-1184} - ext4: make ext4_lazyinit_thread freezable (Lalith Rajendran) - ext4: fix null-ptr-deref in ext4_write_info (Baokun Li) - ext4: avoid crash when inline data creation follows DIO write (Jan Kara) - jbd2: add miss release buffer head in fc_do_one_pass() (Ye Bin) - jbd2: fix potential use-after-free in jbd2_fc_wait_bufs (Ye Bin) - jbd2: fix potential buffer head reference count leak (Ye Bin) - jbd2: wake up journal waiters in FIFO order, not LIFO (Andrew Perepechko) - hardening: Remove Clang's enable flag for -ftrivial-auto-var-init=zero (Kees Cook) - hardening: Avoid harmless Clang option under CONFIG_INIT_STACK_ALL_ZERO (Kees Cook) - f2fs: fix to do sanity check on summary info (Chao Yu) - f2fs: fix to do sanity check on destination blkaddr during recovery (Chao Yu) - f2fs: increase the limit for reserve_root (Jaegeuk Kim) - f2fs: flush pending checkpoints when freezing super (Jaegeuk Kim) - f2fs: complete checkpoints during remount (Jaegeuk Kim) - btrfs: set generation before calling btrfs_clean_tree_block in btrfs_init_new_buffer (Tetsuo Handa) - btrfs: fix race between quota enable and quota rescan ioctl (Filipe Manana) - fs: record I_DIRTY_TIME even if inode already has I_DIRTY_INODE (Lukas Czerner) - ksmbd: Fix user namespace mapping (Mickaël Salaün) - ksmbd: Fix wrong return value and message length check in smb2_ioctl() (Zhang Xiaoxu) - ksmbd: fix endless loop when encryption for response fails (Namjae Jeon) - fbdev: smscufx: Fix use-after-free in ufx_ops_open() (Hyunwoo Kim) - pinctrl: rockchip: add pinmux_ops.gpio_set_direction callback (Quentin Schulz) - gpio: rockchip: request GPIO mux to pinctrl when setting direction (Quentin Schulz) - scsi: qedf: Populate sysfs attributes for vport (Saurav Kashyap) - slimbus: qcom-ngd: cleanup in probe error path (Krzysztof Kozlowski) - slimbus: qcom-ngd: use correct error in message of pdr_add_lookup() failure (Krzysztof Kozlowski) - powerpc/boot: Explicitly disable usage of SPE instructions (Pali Rohár) - powercap: intel_rapl: Use standard Energy Unit for SPR Dram RAPL domain (Zhang Rui) - NFSD: Protect against send buffer overflow in NFSv3 READ (Chuck Lever) - NFSD: Protect against send buffer overflow in NFSv2 READ (Chuck Lever) - NFSD: Protect against send buffer overflow in NFSv3 READDIR (Chuck Lever) - serial: 8250: Request full 16550A feature probing for OxSemi PCIe devices (Maciej W. Rozycki) - serial: 8250: Let drivers request full 16550A feature probing (Maciej W. Rozycki) - PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge (Maciej W. Rozycki) - xen/gntdev: Accommodate VMA splitting (M. Vefa Bicakci) - xen/gntdev: Prevent leaking grants (M. Vefa Bicakci) - mm/mmap: undo ->mmap() when arch_validate_flags() fails (Carlos Llamas) - mm/damon: validate if the pmd entry is present before accessing (Baolin Wang) - arm64: errata: Add Cortex-A55 to the repeat tlbi list (James Morse) - drm/udl: Restore display mode on resume (Takashi Iwai) - drm/virtio: Use appropriate atomic state in virtio_gpu_plane_cleanup_fb() (Dmitry Osipenko) - drm/virtio: Unlock reservations on virtio_gpu_object_shmem_init() error (Dmitry Osipenko) - drm/virtio: Check whether transferred 2D BO is shmem (Dmitry Osipenko) - dmaengine: mxs: use platform_driver_register (Dario Binacchi) - Revert "drm/amdgpu: use dirty framebuffer helper" (Hamza Mahfooz) - nvme-pci: set min_align_mask before calculating max_hw_sectors (Rishabh Bhatnagar) - nvme-multipath: fix possible hang in live ns resize with ANA access (Sagi Grimberg) - nvmem: core: Fix memleak in nvmem_register() (Gaosheng Cui) - UM: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - riscv: Pass -mno-relax only on lld < 15.0.0 (Fangrui Song) - riscv: always honor the CONFIG_CMDLINE_FORCE when parsing dtb (Wenting Zhang) - riscv: Make VM_WRITE imply VM_READ (Andrew Bresticker) - riscv: Allow PROT_WRITE-only mmap() (Andrew Bresticker) - parisc: fbdev/stifb: Align graphics memory size to 4MB (Helge Deller) - RISC-V: Make port I/O string accessors actually work (Maciej W. Rozycki) - riscv: topology: fix default topology reporting (Conor Dooley) - arm64: topology: move store_cpu_topology() to shared code (Conor Dooley) - regulator: qcom_rpm: Fix circular deferral regression (Linus Walleij) - net: thunderbolt: Enable DMA paths only after rings are enabled (Mika Westerberg) - hwmon: (gsc-hwmon) Call of_node_get() before of_find_xxx API (Liang He) - ASoC: wcd934x: fix order of Slimbus unprepare/disable (Krzysztof Kozlowski) - ASoC: wcd9335: fix order of Slimbus unprepare/disable (Krzysztof Kozlowski) - platform/chrome: cros_ec_proto: Update version on GET_NEXT_EVENT failure (Patryk Duda) - quota: Check next/prev free block number after reading from quota file (Zhihao Cheng) - HID: multitouch: Add memory barriers (Andri Yngvason) - fs: dlm: handle -EBUSY first in lock arg validation (Alexander Aring) - fs: dlm: fix race between test_bit() and queue_work() (Alexander Aring) - i2c: designware: Fix handling of real but unexpected device interrupts (Jarkko Nikula) - mmc: sdhci-sprd: Fix minimum clock limit (Wenchao Chen) - can: kvaser_usb_leaf: Fix CAN state after restart (Anssi Hannula) - can: kvaser_usb_leaf: Fix TX queue out of sync after restart (Anssi Hannula) - can: kvaser_usb_leaf: Fix overread with an invalid command (Anssi Hannula) - can: kvaser_usb: Fix use of uninitialized completion (Anssi Hannula) - usb: add quirks for Lenovo OneLink+ Dock (Jean-Francois Le Fillatre) - xhci: dbc: Fix memory leak in xhci_alloc_dbc() (Rafael Mendonca) - iio: pressure: dps310: Reset chip after timeout (Eddie James) - iio: pressure: dps310: Refactor startup procedure (Eddie James) - iio: adc: ad7923: fix channel readings for some variants (Nuno Sá) - iio: ltc2497: Fix reading conversion results (Uwe Kleine-König) - iio: dac: ad5593r: Fix i2c read protocol requirements (Michael Hennerich) - cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message (Zhang Xiaoxu) - cifs: destage dirty pages before re-reading them for cache=none (Ronnie Sahlberg) - hv_netvsc: Fix race between VF offering and VF association message from host (Gaurav Kohli) - io_uring/net: don't update msg_name if not provided (Pavel Begunkov) - mtd: rawnand: atmel: Unmap streaming DMA mappings (Tudor Ambarus) - ALSA: hda/realtek: Add Intel Reference SSID to support headset keys (Saranya Gopal) - ALSA: hda/realtek: Add quirk for ASUS GV601R laptop (Luke D. Jones) - ALSA: hda/realtek: Correct pin configs for ASUS G533Z (Luke D. Jones) - ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530 (Callum Osmotherly) - ALSA: usb-audio: Fix NULL dererence at error path (Takashi Iwai) - ALSA: usb-audio: Fix potential memory leaks (Takashi Iwai) - ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free() (Takashi Iwai) - ALSA: oss: Fix potential deadlock at unregistration (Takashi Iwai) - Revert "fs: check FMODE_LSEEK to control internal pipe splicing" (Sasha Levin) - LTS version: v5.15.74 (Jack Vogel) - wifi: mac80211: fix MBSSID parsing use-after-free (Johannes Berg) - mac80211: fix memory leaks with element parsing (Johannes Berg) - mac80211: always allocate struct ieee802_11_elems (Johannes Berg) - mac80211: mlme: find auth challenge directly (Johannes Berg) - mac80211: move CRC into struct ieee802_11_elems (Johannes Berg) - mac80211: mesh: clean up rx_bcn_presp API (Johannes Berg) - misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic (Shunsuke Mie) - misc: pci_endpoint_test: Aggregate params checking for xfer (Shunsuke Mie) - Input: xpad - fix wireless 360 controller breaking after suspend (Cameron Gutman) - Input: xpad - add supported devices as contributed on github (Pavel Rojtberg) - wifi: cfg80211: update hidden BSSes to avoid WARN_ON (Johannes Berg) - wifi: mac80211: fix crash in beacon protection for P2P-device (Johannes Berg) - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (Johannes Berg) - wifi: cfg80211: avoid nontransmitted BSS list corruption (Johannes Berg) - wifi: cfg80211: fix BSS refcounting bugs (Johannes Berg) - wifi: cfg80211: ensure length byte is present before access (Johannes Berg) - wifi: cfg80211/mac80211: reject bad MBSSID elements (Johannes Berg) - wifi: cfg80211: fix u8 overflow in cfg80211_update_notlisted_nontrans() (Johannes Berg) - Revert "crypto: qat - reduce size of mapped region" (Giovanni Cabiddu) - Revert "powerpc/rtas: Implement reentrant rtas call" (Nathan Lynch) - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (Frank Wunderlich) - scsi: stex: Properly zero out the passthrough command structure (Linus Torvalds) - efi: Correct Macmini DMI match in uefi cert quirk (Orlando Chamberlain) - ALSA: hda: Fix position reporting on Poulsbo (Takashi Iwai) - random: clamp credited irq bits to maximum mixed (Jason A. Donenfeld) - random: restore O_NONBLOCK support (Jason A. Donenfeld) - ceph: don't truncate file in atomic_open (Hu Weiwen) - nilfs2: replace WARN_ONs by nilfs_error for checkpoint acquisition failure (Ryusuke Konishi) - nilfs2: fix leak of nilfs_root in case of writer thread creation failure (Ryusuke Konishi) - nilfs2: fix use-after-free bug of struct nilfs_root (Ryusuke Konishi) - nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level() (Ryusuke Konishi) - LTS version: v5.15.73 (Jack Vogel) - Revert "clk: ti: Stop using legacy clkctrl names for omap4 and 5" (Sasha Levin) - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (Krzysztof Kozlowski) - USB: serial: ftdi_sio: fix 300 bps rate for SIO (Johan Hovold) - usb: mon: make mmapped memory read only (Tadeusz Struk) - net/mlx5: Disable irq when locking lag_lock (Vlad Buslov) - wifi: cfg80211: fix MCS divisor value (Tamizh Chelvam Raja) - mm/huge_memory: use pfn_to_online_page() in split_huge_pages_all() (Naoya Horiguchi) - mm/huge_memory: minor cleanup for split_huge_pages_all (Miaohe Lin) - perf parse-events: Identify broken modifiers (Ian Rogers) - mmc: core: Terminate infinite loop in SD-UHS voltage switch (Brian Norris) - mmc: core: Replace with already defined values for readability (ChanWoo Lee) - drm/amd/display: skip audio setup when audio stream is enabled (zhikzhai) - drm/amd/display: update gamut remap if plane has changed (Hugo Hu) - drm/amd/display: Assume an LTTPR is always present on fixed_vs links (Michael Strauss) - drm/amd/display: Fix double cursor on non-video RGB MPO (Leo Li) - net: atlantic: fix potential memory leak in aq_ndev_close() (Jianglei Nie) - arch: um: Mark the stack non-executable to fix a binutils warning (David Gow) - um: Cleanup compiler warning in arch/x86/um/tls_32.c (Lukas Straub) - um: Cleanup syscall_handler_t cast in syscalls_32.h (Lukas Straub) - ALSA: hda/hdmi: Fix the converter reuse for the silent stream (Jaroslav Kysela) - net: marvell: prestera: add support for for Aldrin2 (Oleksandr Mazur) - net/ieee802154: fix uninit value bug in dgram_sendmsg (Haimin Zhang) - scsi: qedf: Fix a UAF bug in __qedf_probe() (Letu Ren) - ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer (Sergei Antonov) - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (Swati Agarwal) - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (Swati Agarwal) - dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling (Swati Agarwal) - firmware: arm_scmi: Add SCMI PM driver remove routine (Cristian Marussi) - firmware: arm_scmi: Harden accesses to the sensor domains (Cristian Marussi) - firmware: arm_scmi: Improve checks in the info_get operations (Cristian Marussi) - fs: fix UAF/GPF bug in nilfs_mdt_destroy (Dongliang Mu) - powerpc/64s/radix: don't need to broadcast IPI for radix pmd collapse flush (Yang Shi) - mm: gup: fix the fast GUP race against THP collapse (Yang Shi) - xsk: Inherit need_wakeup flag for shared sockets (Jalal Mostafa) - docs: update mediator information in CoC docs (Shuah Khan) - Makefile.extrawarn: Move -Wcast-function-type-strict to W=1 (Sami Tolvanen) - LTS version: v5.15.72 (Jack Vogel) - drm/i915/gem: Really move i915_gem_context.link under ref protection (Chris Wilson) - x86/alternative: Fix race in try_get_desc() (Nadav Amit) - KVM: x86: Hide IA32_PLATFORM_DCA_CAP[31:0] from the guest (Jim Mattson) - clk: iproc: Do not rely on node name for correct PLL setup (Florian Fainelli) - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks (Han Xu) - fs: split off setxattr_copy and do_setxattr function from setxattr (Stefan Roesch) - vdpa/ifcvf: fix the calculation of queuepair (Angus Chen) - selftests: Fix the if conditions of in test_extra_filter() (Wang Yufen) - net: phy: Don't WARN for PHY_UP state in mdio_bus_phy_resume() (Lukas Wunner) - net: stmmac: power up/down serdes in stmmac_open/release (Junxiao Chang) - wifi: mac80211: fix regression with non-QoS drivers (Hans de Goede) - nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices (Michael Kelley) - net/mlxbf_gige: Fix an IS_ERR() vs NULL bug in mlxbf_gige_mdio_probe (Peng Wu) - cxgb4: fix missing unlock on ETHOFLD desc collect fail path (Rafael Mendonca) - net: sched: act_ct: fix possible refcount leak in tcf_ct_init() (Hangyu Hua) - usbnet: Fix memory leak in usbnet_disconnect() (Peilin Ye) - gpio: mvebu: Fix check for pwm support on non-A8K platforms (Pali Rohár) - Input: melfas_mip4 - fix return value check in mip4_probe() (Yang Yingliang) - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in suspend/resume time" (Brian Norris) - drm/bridge: lt8912b: fix corrupted image output (Francesco Dolcini) - drm/bridge: lt8912b: set hdmi or dvi mode (Philippe Schenker) - drm/bridge: lt8912b: add vsync hsync (Philippe Schenker) - ASoC: tas2770: Reinit regcache on reset (Martin PoviÅ¡er) - arm64: dts: qcom: sm8350: fix UFS PHY serdes size (Johan Hovold) - ASoC: imx-card: Fix refcount issue with of_node_put (Shengjiu Wang) - soc: sunxi: sram: Fix debugfs info for A64 SRAM C (Samuel Holland) - soc: sunxi: sram: Fix probe function ordering issues (Samuel Holland) - soc: sunxi_sram: Make use of the helper function devm_platform_ioremap_resource() (Cai Huoqing) - soc: sunxi: sram: Prevent the driver from being unbound (Samuel Holland) - soc: sunxi: sram: Actually claim SRAM regions (Samuel Holland) - ARM: dts: am5748: keep usb4_tm disabled (Romain Naour) - reset: imx7: Fix the iMX8MP PCIe PHY PERST support (Richard Zhu) - ARM: dts: am33xx: Fix MMCHS0 dma properties (YuTong Chang) - swiotlb: max mapping size takes min align mask into account (Tianyu Lan) - media: v4l2-compat-ioctl32.c: zero buffer passed to v4l2_compat_get_array_args() (Hans Verkuil) - media: rkvdec: Disable H.264 error detection (Nicolas Dufresne) - media: dvb_vb2: fix possible out of bound access (Hangyu Hua) - mm,hwpoison: check mm when killing accessing process (Shuai Xue) - mm: fix madivse_pageout mishandling on non-LRU page (Minchan Kim) - mm/migrate_device.c: flush TLB while holding PTL (Alistair Popple) - mm: fix dereferencing possible ERR_PTR (Binyi Han) - mm: prevent page_frag_alloc() from corrupting the memory (Maurizio Lombardi) - mm/page_alloc: fix race condition between build_all_zonelists and page allocation (Mel Gorman) - mmc: hsq: Fix data stomping during mmc recovery (Wenchao Chen) - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width (Sergei Antonov) - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205 (Niklas Cassel) - vduse: prevent uninitialized memory accesses (Maxime Coquelin) - drm/amdgpu: Add amdgpu suspend-resume code path under SRIOV (Bokun Zhang) - drm/i915/gt: Restrict forced preemption to the active context (Chris Wilson) - Revert "firmware: arm_scmi: Add clock management to the SCMI power domain" (Ulf Hansson) - net: mt7531: only do PLL once after the reset (Alexander Couzens) - mm/damon/dbgfs: fix memory leak when using debugfs_lookup() (Greg Kroah-Hartman) - ntfs: fix BUG_ON in ntfs_lookup_inode_by_name() (ChenXiaoSong) - ARM: dts: integrator: Tag PCI host with device_type (Linus Walleij) - x86/sgx: Do not fail on incomplete sanitization on premature stop of ksgxd (Jarkko Sakkinen) - clk: ingenic-tcu: Properly enable registers before accessing timers (Aidan MacDonald) - can: c_can: don't cache TX messages for C_CAN cores (Marc Kleine-Budde) - Input: snvs_pwrkey - fix SNVS_HPVIDR1 register address (Sebastian Krzyszkowiak) - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (Frank Wunderlich) - thunderbolt: Explicitly reset plug events delay back to USB4 spec value (Mario Limonciello) - usb: typec: ucsi: Remove incorrect warning (Heikki Krogerus) - uas: ignore UAS for Thinkplus chips (Hongling Zeng) - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (Hongling Zeng) - uas: add no-uas quirk for Hiksemi usb_disk (Hongling Zeng) - cgroup: cgroup_get_from_id() must check the looked-up kn is a directory (Ming Lei) - cgroup: reduce dependency on cgroup_mutex (Shakeel Butt) - ALSA: hda/realtek: fix speakers and micmute on HP 855 G8 (Alexander Sergeyev) - ALSA: hda: Fix Nvidia dp infoframe (Mohan Kumar) - ALSA: hda: Fix hang at HD-audio codec unbinding due to refcount saturation (Takashi Iwai) - ALSA: hda: Do disconnect jacks at codec unbind (Takashi Iwai) - LTS version: v5.15.71 (Jack Vogel) - ext4: use locality group preallocation for small closed files (Jan Kara) - ext4: avoid unnecessary spreading of allocations among groups (Jan Kara) - ext4: make mballoc try target group first even with mb_optimize_scan (Jan Kara) - ext4: limit the number of retries after discarding preallocations blocks (Theodore Ts'o) - ext4: fix bug in extents parsing when eh_entries == 0 and eh_depth > 0 (LuÃs Henriques) - ext4: make directory inode spreading reflect flexbg size (Jan Kara) - devdax: Fix soft-reservation memory description (Dan Williams) - NFSv4: Fixes for nfs4_inode_return_delegation() (Trond Myklebust) - drm/amdgpu: don't register a dirty callback for non-atomic (Alex Deucher) - i2c: mlxbf: Fix frequency calculation (Asmaa Mnebhi) - i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction() (Asmaa Mnebhi) - i2c: mlxbf: incorrect base address passed during io write (Asmaa Mnebhi) - i2c: imx: If pm_runtime_get_sync() returned 1 device access is possible (Uwe Kleine-König) - workqueue: don't skip lockdep work dependency in cancel_work_sync() (Tetsuo Handa) - fsdax: Fix infinite loop in dax_iomap_rw() (Li Jinlin) - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid (Nathan Huckleberry) - drm/amd/display: Mark dml30's UseMinimumDCFCLK() as noinline for stack usage (Nathan Chancellor) - drm/amd/display: Reduce number of arguments of dml31's CalculateFlipSchedule() (Nathan Chancellor) - drm/amd/display: Reduce number of arguments of dml31's CalculateWatermarksAndDRAMSpeedChangeSupport() (Nathan Chancellor) - drm/amd/display: Limit user regamma to a valid value (Yao Wang1) - drm/amdgpu: use dirty framebuffer helper (Hamza Mahfooz) - drm/amd/pm: disable BACO entry/exit completely on several sienna cichlid cards (Guchun Chen) - drm/gma500: Fix BUG: sleeping function called from invalid context errors (Hans de Goede) - Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (Vitaly Kuznetsov) - drm/amd/amdgpu: fixing read wrong pf2vf data in SRIOV (Jingwen Chen) - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup (Stefan Haberland) - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting (Ilpo Järvinen) - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting (Ilpo Järvinen) - serial: Create uart_xmit_advance() (Ilpo Järvinen) - serial: fsl_lpuart: Reset prior to registration (Lukas Wunner) - KVM: x86/mmu: Fold rmap_recycle into rmap_add (David Matlack) - selftests: forwarding: add shebang for sch_red.sh (Hangbin Liu) - bnxt: prevent skb UAF after handing over to PTP worker (Jakub Kicinski) - net: sched: fix possible refcount leak in tc_new_tfilter() (Hangyu Hua) - net: sunhme: Fix packet reception for len < RX_COPY_THRESHOLD (Sean Anderson) - bonding: fix NULL deref in bond_rr_gen_slave_id (Jonathan Toppins) - net/smc: Stop the CLC flow if no link to map buffers on (Wen Gu) - drm/mediatek: dsi: Move mtk_dsi_stop() call back to mtk_dsi_poweroff() (NÃcolas F. R. A. Prado) - perf tools: Honor namespace when synthesizing build-ids (Namhyung Kim) - perf kcore_copy: Do not check /proc/modules is unchanged (Adrian Hunter) - perf jit: Include program header in ELF files (Lieven Hey) - perf stat: Fix BPF program section name (Namhyung Kim) - can: gs_usb: gs_can_open(): fix race dev->can.state condition (Marc Kleine-Budde) - net: sh_eth: Fix PHY state warning splat during system resume (Geert Uytterhoeven) - net: ravb: Fix PHY state warning splat during system resume (Geert Uytterhoeven) - netfilter: ebtables: fix memory leak when blob is malformed (Florian Westphal) - netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain() (Tetsuo Handa) - netfilter: nf_tables: fix nft_counters_enabled underflow at nf_tables_addchain() (Tetsuo Handa) - net/sched: taprio: make qdisc_leaf() see the per-netdev-queue pfifo child qdiscs (Vladimir Oltean) - net/sched: taprio: avoid disabling offload when it was never enabled (Vladimir Oltean) - net: enetc: deny offload of tc-based TSN features on VF interfaces (Vladimir Oltean) - net: enetc: move enetc_set_psfp() out of the common enetc_set_features() (Vladimir Oltean) - wireguard: netlink: avoid variable-sized memcpy on sockaddr (Jason A. Donenfeld) - wireguard: ratelimiter: disable timings test by default (Jason A. Donenfeld) - net: ipa: properly limit modem routing table use (Alex Elder) - of: mdio: Add of_node_put() when breaking out of for_each_xx (Liang He) - drm/hisilicon: Add depends on MMU (Randy Dunlap) - drm/hisilicon/hibmc: Allow to be built if COMPILE_TEST is enabled (Javier Martinez Canillas) - sfc: fix null pointer dereference in efx_hard_start_xmit (Ãñigo Huguet) - sfc: fix TX channel offset when using legacy interrupts (Ãñigo Huguet) - i40e: Fix set max_tx_rate when it is lower than 1 Mbps (Michal Jaron) - i40e: Fix VF set max MTU size (Michal Jaron) - iavf: Fix set max MTU size with port VLAN and jumbo frames (Michal Jaron) - mlxbf_gige: clear MDIO gateway lock after read (David Thompson) - iavf: Fix bad page state (Norbert Zulinski) - um: fix default console kernel parameter (Christian Lamparter) - MIPS: Loongson32: Fix PHY-mode being left unspecified (Serge Semin) - MIPS: lantiq: export clk_get_io() for lantiq_wdt.ko (Randy Dunlap) - drm/panel: simple: Fix innolux_g121i1_l01 bus_format (Heiko Schocher) - net: team: Unsync device addresses on ndo_stop (Benjamin Poirier) - net: bonding: Unsync device addresses on ndo_stop (Benjamin Poirier) - net: bonding: Share lacpdu_mcast_addr definition (Benjamin Poirier) - scsi: mpt3sas: Fix return value check of dma_get_required_mask() (Sreekanth Reddy) - scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts() (Rafael Mendonca) - net: phy: aquantia: wait for the suspend/resume operations to finish (Ioana Ciornei) - net: core: fix flow symmetric hash (Ludovic Cintrat) - ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header (Lu Wei) - iavf: Fix cached head and tail value for iavf_get_tx_pending (Brett Creeley) - ice: Don't double unplug aux on peer initiated reset (Dave Ertman) - netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() (Pablo Neira Ayuso) - netfilter: nf_conntrack_irc: Tighten matching on DCC message (David Leadbeater) - netfilter: nf_conntrack_sip: fix ct_sip_walk_headers (Igor Ryzhov) - arm64: dts: rockchip: Remove 'enable-active-low' from rk3399-puma (Fabio Estevam) - dmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get() (Liang He) - arm64: dts: rockchip: Set RK3399-Gru PCLK_EDP to 24 MHz (zain wang) - drm/mediatek: dsi: Add atomic {destroy,duplicate}_state, reset callbacks (AngeloGioacchino Del Regno) - arm64: dts: rockchip: Fix typo in lisense text for PX30.Core (Jagan Teki) - arm64: dts: rockchip: Pull up wlan wake# on Gru-Bob (Brian Norris) - firmware: arm_scmi: Fix the asynchronous reset requests (Cristian Marussi) - firmware: arm_scmi: Harden accesses to the reset domains (Cristian Marussi) - xfs: validate inode fork size against fork format (Dave Chinner) - xfs: fix xfs_ifree() error handling to not leak perag ref (Brian Foster) - xfs: reorder iunlink remove operation in xfs_ifree (Dave Chinner) - vmlinux.lds.h: CFI: Reduce alignment of jump-table to function alignment (Will Deacon) - arm64: topology: fix possible overflow in amu_fie_setup() (Sergey Shtylyov) - KVM: x86: Inject #UD on emulated XSETBV if XSAVES isn't enabled (Sean Christopherson) - mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context. (Maurizio Lombardi) - mm/slub: fix to return errno if kmalloc() fails (Chao Yu) - net: mana: Add rmb after checking owner bits (Haiyang Zhang) - can: flexcan: flexcan_mailbox_read() fix return value for drop = true (Marc Kleine-Budde) - kasan: call kasan_malloc() from __kmalloc_*track_caller() (Peter Collingbourne) - riscv: fix a nasty sigreturn bug... (Al Viro) - gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully (Meng Li) - gpio: mockup: Fix potential resource leakage when register a chip (Andy Shevchenko) - gpio: mockup: fix NULL pointer dereference when removing debugfs (Bartosz Golaszewski) - wifi: mt76: fix reading current per-tid starting sequence number for aggregation (Felix Fietkau) - efi: libstub: check Shim mode using MokSBStateRT (Ard Biesheuvel) - efi: x86: Wipe setup_data on pure EFI boot (Ard Biesheuvel) - thunderbolt: Add support for Intel Maple Ridge single port controller (Gil Fine) - usb: dwc3: core: leave default DMA if the controller does not support 64-bit DMA (William Wu) - media: flexcop-usb: fix endpoint type check (Johan Hovold) - btrfs: fix hang during unmount when stopping a space reclaim worker (Filipe Manana) - btrfs: fix hang during unmount when stopping block group reclaim worker (Filipe Manana) - iommu/vt-d: Check correct capability for sagaw determination (Yi Liu) - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop (Callum Osmotherly) - ALSA: hda/realtek: Add quirk for ASUS GA503R laptop (Luke D. Jones) - ALSA: hda/realtek: Add pincfg for ASUS G533Z HP jack (Luke D. Jones) - ALSA: hda/realtek: Add pincfg for ASUS G513 HP jack (Luke D. Jones) - ALSA: hda/realtek: Re-arrange quirk table entries (Takashi Iwai) - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5570 laptop (Callum Osmotherly) - ALSA: hda/realtek: Add quirk for Huawei WRT-WX9 (huangwenhui) - ALSA: hda: add Intel 5 Series / 3400 PCI DID (Kai Vehmanen) - ALSA: hda/tegra: set depop delay for tegra (Mohan Kumar) - ALSA: core: Fix double-free at snd_card_new() (Takashi Iwai) - Revert "ALSA: usb-audio: Split endpoint setups for hw_params and prepare" (Takashi Iwai) - USB: serial: option: add Quectel RM520N (jerry meng) - USB: serial: option: add Quectel BG95 0x0203 composition (Carl Yin(æ®·å¼ æ)) - USB: core: Fix RST error in hub.c (Alan Stern) - drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES (Phil Auld) - Revert "usb: gadget: udc-xilinx: replace memcpy with memcpy_toio" (Greg Kroah-Hartman) - Revert "usb: add quirks for Lenovo OneLink+ Dock" (Greg Kroah-Hartman) - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta) - usb: add quirks for Lenovo OneLink+ Dock (Jean-Francois Le Fillatre) - usb: dwc3: gadget: Avoid duplicate requests to enable Run/Stop (Wesley Cheng) - usb: dwc3: gadget: Don't modify GEVNTCOUNT in pullup() (Thinh Nguyen) - usb: dwc3: gadget: Refactor pullup() (Thinh Nguyen) - usb: dwc3: gadget: Prevent repeat pullup() (Thinh Nguyen) - usb: dwc3: Issue core soft reset before enabling run/stop (Wesley Cheng) - usb: dwc3: gadget: Avoid starting DWC3 gadget during UDC unbind (Wesley Cheng) - staging: r8188eu: Add Rosewill USB-N150 Nano to device tables (Larry Finger) - staging: r8188eu: Remove support for devices with 8188FU chipset (0bda:f179) (Candy Febriyanto) - drm/amdgpu: make sure to init common IP before gmc (Alex Deucher) - drm/amdgpu: Separate vf2pf work item init from virt data exchange (Victor Skvortsov) - bnxt_en: reclaim max resources if sriov enable fails (Kashyap Desai) [Orabug: 34083583] - eth: bnxt: make ulp_id unsigned to make GCC 12 happy (Jakub Kicinski) [Orabug: 34083583] - bnxt_en: Enable packet timestamping for all RX packets (Pavan Chebbi) [Orabug: 34083583] - bnxt_en: Configure ptp filters during bnxt open (Pavan Chebbi) [Orabug: 34083583] - bnxt_en: Update firmware interface to 1.10.2.95 (Michael Chan) [Orabug: 34083583] - bnxt_en: Initiallize bp->ptp_lock first before using it (Michael Chan) [Orabug: 34083583] - bnxt_en: Properly report no pause support on some cards (Michael Chan) [Orabug: 34083583] - bnxt_en: add more error checks to HWRM_NVM_INSTALL_UPDATE (Kalesh AP) [Orabug: 34083583] - bnxt_en: refactor error handling of HWRM_NVM_INSTALL_UPDATE (Kalesh AP) [Orabug: 34083583] - bnxt_en: Handle async event when the PHC is updated in RTC mode (Pavan Chebbi) [Orabug: 34083583] - bnxt_en: Implement .adjtime() for PTP RTC mode (Pavan Chebbi) [Orabug: 34083583] - bnxt_en: Add driver support to use Real Time Counter for PTP (Pavan Chebbi) [Orabug: 34083583] - bnxt_en: PTP: Refactor PTP initialization functions (Pavan Chebbi) [Orabug: 34083583] - bnxt_en: Update firmware interface to 1.10.2.73 (Michael Chan) [Orabug: 34083583] - bnxt_en: Use page frag RX buffers for better software GRO performance (Jakub Kicinski) [Orabug: 34083583] - bnxt_en: convert to xdp_do_flush (Edwin Peer) [Orabug: 34083583] - bnxt_en: enable interrupt sampling on 5750X for DIM (Andy Gospodarek) [Orabug: 34083583] - bnxt_en: Log error report for dropped doorbell (Michael Chan) [Orabug: 34083583] - bnxt_en: Add event handler for PAUSE Storm event (Somnath Kotur) [Orabug: 34083583] - bnxt_en: Update firmware interface to 1.10.2.63 (Michael Chan) [Orabug: 34083583] - bnxt: use netif_is_rxfh_configured instead of open code (Juhee Kang) [Orabug: 34083583] - uek-rpm: add aarch64 to list of vdso arches (Tom Saeger) [Orabug: 34716172] - uapi: Fix [rs]cq_vector data types in rds[6]_info_rdma_connection (Mark Haywood) [Orabug: 34734247] - uapi: Fix congested flag type in rds[6]_info_socket (Mark Haywood) [Orabug: 34734247] - uek-rpm: ol9: disable CONFIG_MISDN and dependent drivers on OL9/UEK7 (Harshit Mogalapalli) [Orabug: 34734324] [5.15.0-5.70.1.el9uek] - net/rds: drop rs_transport module reference count on error (Gerd Rausch) [Orabug: 34500806] - net/rds: rds_tcp_accept_one ought to not discard messages (Gerd Rausch) [Orabug: 34488375] - iommu/vt-d: set default value of INTEL_IOMMU_FLOPPY_WA to n (Harshit Mogalapalli) [Orabug: 34724809]
SRPMs
https://oss.oracle.com:443/ol9/SRPMS-updates/kernel-uek-5.15.0-5.76.5.1.el9uek.src.rpm
x86_64
aarch64
bpftool-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-core-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-debug-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-debug-core-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-debug-devel-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-debug-modules-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-debug-modules-extra-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-devel-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-doc-5.15.0-5.76.5.1.el9uek.noarch.rpm kernel-uek-modules-5.15.0-5.76.5.1.el9uek.aarch64.rpm kernel-uek-modules-extra-5.15.0-5.76.5.1.el9uek.aarch64.rpm
i386
