mirror of
https://git.yoctoproject.org/poky
synced 2026-02-25 10:59:41 +01:00
232fdbf0e5fe27ab1a6130f9435b359d975e1c72
59899 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Bruce Ashfield
|
232fdbf0e5 |
linux-yocto/5.4: update to v5.4.199
Updating to the latest korg -stable release that comprises
the following commits:
a31bd366116c Linux 5.4.199
4cc40b1022bb x86/speculation/mmio: Print SMT warning
d49c22094e6f KVM: x86/speculation: Disable Fill buffer clear within guests
d96159263593 x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
bc64f38b5a38 x86/speculation/srbds: Update SRBDS mitigation selection
020ce7495cfc x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data
8d25482fc96a x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
7f898baa2044 x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations
0800f1b45bf6 x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data
ae649e0cbf76 x86/speculation: Add a common function for MD_CLEAR mitigation update
814ccb673035 x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug
91f8147c8371 Documentation: Add documentation for Processor MMIO Stale Data
1e9f4e8a7aa9 x86/cpu: Add another Alder Lake CPU to the Intel family
45e744de251c x86/cpu: Add Lakefield, Alder Lake and Rocket Lake models to the to Intel CPU family
79568d551570 x86/cpu: Add Jasper Lake to Intel family
9e2efaa5dd10 cpu/speculation: Add prototype for cpu_show_srbds()
9d6e67bf5090 Linux 5.4.198
602b338e3c3c tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd
b35e08edb2c2 mtd: cfi_cmdset_0002: Use chip_ready() for write on S29GL064N
0c12d7625502 md/raid0: Ignore RAID0 layout if the second zone has only one device
0c4bc0a2f825 powerpc/32: Fix overread/overwrite of thread_struct via ptrace
3c953d47eb1e Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag
6ec537c50033 ixgbe: fix unexpected VLAN Rx in promisc mode on VF
24030768a7b4 ixgbe: fix bcast packets Rx on VF after promisc removal
3eca2c42daa4 nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling
31f9c39b4a37 nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION
4f4ab5004633 mmc: block: Fix CQE recovery reset success
0245434e381e ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files
b651f70ed3a8 cifs: return errors during session setup during reconnects
850965edc861 ALSA: hda/conexant - Fix loopback issue with CX20632
6c04a2ae039b scripts/gdb: change kernel config dumping method
1a36f77dc23c vringh: Fix loop descriptors check in the indirect cases
a3f9b0afd8b4 nodemask: Fix return values to be unsigned
9b306339a511 cifs: version operations for smb20 unneeded when legacy support disabled
5cb13cdc180a s390/gmap: voluntarily schedule during key setting
69893d6d7f5c nbd: fix io hung while disconnecting device
8a7da4ced236 nbd: fix race between nbd_alloc_config() and module removal
1be608e1ee1f nbd: call genl_unregister_family() first in nbd_cleanup()
045045b522c6 x86/cpu: Elide KCSAN for cpu_has() and friends
460083de66c4 modpost: fix undefined behavior of is_arm_mapping_symbol()
28fd384c78d7 drm/radeon: fix a possible null pointer dereference
9223144fdd64 ceph: allow ceph.dir.rctime xattr to be updatable
7df12bee5415 Revert "net: af_key: add check for pfkey_broadcast in function pfkey_process"
0331d261c398 scsi: myrb: Fix up null pointer access on myrb_cleanup()
cf6b9316879f md: protect md_unregister_thread from reentrancy
99e4c67a5581 watchdog: wdat_wdt: Stop watchdog when rebooting the system
6fd031799e7b kernfs: Separate kernfs_pr_cont_buf and rename_lock.
19f4b51b836d serial: msm_serial: disable interrupts in __msm_console_write()
52a0d88c3280 staging: rtl8712: fix uninit-value in r871xu_drv_init()
58762f1c63c7 staging: rtl8712: fix uninit-value in usb_read8() and friends
1bcfb95de192 clocksource/drivers/sp804: Avoid error on multiple instances
d472c78cc829 extcon: Modify extcon device to be created after driver data is set
fa0b2dd6829d misc: rtsx: set NULL intfdata when probe fails
d232ca0bbc7d usb: dwc2: gadget: don't reset gadget's driver->bus
3a7170a3de62 USB: hcd-pci: Fully suspend across freeze/thaw cycle
2dcec0bc142b drivers: usb: host: Fix deadlock in oxu_bus_suspend()
09a5958a2452 drivers: tty: serial: Fix deadlock in sa1100_set_termios()
c91a74b1f0f2 USB: host: isp116x: check return value after calling platform_get_resource()
64b05fa212c7 drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop()
1fbe033c5248 drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop()
8c014373f178 tty: Fix a possible resource leak in icom_probe
f6e07eb7ebec tty: synclink_gt: Fix null-pointer-dereference in slgt_clean()
1b04c934e1e6 lkdtm/usercopy: Expand size of "out of frame" object
ca2498cce875 iio: st_sensors: Add a local lock for protecting odr
ab75e02366e1 iio: dummy: iio_simple_dummy: check the return value of kstrdup()
36acb4d9ce55 drm: imx: fix compiler warning with gcc-12
8174acbef87b net: altera: Fix refcount leak in altera_tse_mdio_create
3d08bc3a5d9b ip_gre: test csum_start instead of transport header
957d298526b5 net/mlx5: fs, fail conflicting actions
8a6740fdc562 net/mlx5: Rearm the FW tracer after each tracer event
317260b3eb63 net: ipv6: unexport __init-annotated seg6_hmac_init()
ef6d2354de23 net: xfrm: unexport __init-annotated xfrm4_protocol_init()
6a90a44d5342 net: mdio: unexport __init-annotated mdio_bus_init()
978dcc55cf36 SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer()
180473e8e42a net/mlx4_en: Fix wrong return value on ioctl EEPROM query failure
7c8df6fad43d net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list
e412b3d178ea bpf, arm64: Clear prog->jited_len along prog->jited
556720013c36 af_unix: Fix a data-race in unix_dgram_peer_wake_me().
b49c884146e2 xen: unexport __init-annotated xen_xlate_map_ballooned_pages()
5b8d63489c3b netfilter: nf_tables: memleak flow rule from commit path
d5a1e7f33c88 ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe
e0212033ff68 netfilter: nat: really support inet nat without l3 address
da99331fa621 xprtrdma: treat all calls not a bcall when bc_serv is NULL
48dea4d3a11f video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove()
a2b3be930e79 NFSv4: Don't hold the layoutget locks across multiple RPC calls
83960276ffc9 dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type
4917e43bca50 m68knommu: fix undefined reference to `_init_sp'
f6bdafbb9b04 m68knommu: set ZERO_PAGE() to the allocated zeroed page
27fdb4572344 i2c: cadence: Increase timeout per message if necessary
0a7a1fc7e71e f2fs: remove WARN_ON in f2fs_is_valid_blkaddr
23b2163b887f tracing: Avoid adding tracer option before update_tracer_options
48c6ee7d6c61 tracing: Fix sleeping function called from invalid context on RT kernel
cc0aed22d33c mips: cpc: Fix refcount leak in mips_cpc_default_phys_base
ff66ae4359ff perf c2c: Fix sorting in percent_rmt_hitm_cmp()
8b91d0dfc839 tipc: check attribute length for bearer name
c2eba68d185b afs: Fix infinite loop found by xfstest generic/676
d05c2fdf8e10 tcp: tcp_rtx_synack() can be called from process context
1bd2f7f38bac net: sched: add barrier to fix packet stuck problem for lockless qdisc
77b954ce2d64 net/mlx5e: Update netdev features after changing XDP state
a4c52440acf4 net/mlx5: Don't use already freed action pointer
00803d30518f nfp: only report pause frame configuration for physical device
8302620aeb94 ubi: ubi_create_volume: Fix use-after-free when volume creation failed
d3a4fff1e7e4 jffs2: fix memory leak in jffs2_do_fill_super
acf92b525723 modpost: fix removing numeric suffixes
a101793994c0 net: dsa: mv88e6xxx: Fix refcount leak in mv88e6xxx_mdios_register
2bd1faedb74d net: ethernet: mtk_eth_soc: out of bounds read in mtk_hwlro_get_fdir_entry()
be73e3bf6862 net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog
51ed32c1cfcf s390/crypto: fix scatterwalk_unmap() callers in AES-GCM
80f6712f241c clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value
e5d479d73f21 ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition
5b110d940417 watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe
593b595332bd driver core: fix deadlock in __device_attach
5d709f58c743 driver: base: fix UAF when driver_attach failed
3157118c1795 bus: ti-sysc: Fix warnings for unbind for serial
a724634b2a49 firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle
c3a16e7c8624 serial: stm32-usart: Correct CSIZE, bits, and parity
29d963635ee6 serial: st-asc: Sanitize CSIZE and correct PARENB for CS7
5c01c19f64c7 serial: sifive: Sanitize CSIZE and c_iflag
841cab744cc0 serial: sh-sci: Don't allow CS5-6
942aa88467b9 serial: txx9: Don't allow CS5-6
eb8de4bac35a serial: rda-uart: Don't allow CS5-6
0de3d2344ee0 serial: digicolor-usart: Don't allow CS5-6
035bc3b734aa serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485
1b3ae6d85069 serial: meson: acquire port->lock in startup()
d77f28c1bc9d rtc: mt6397: check return value after calling platform_get_resource()
d041e885749f clocksource/drivers/riscv: Events are stopped during CPU suspend
69a30b2ed620 soc: rockchip: Fix refcount leak in rockchip_grf_init
0f91755514b8 coresight: cpu-debug: Replace mutex with mutex_trylock on panic notifier
47e4c42faab9 serial: sifive: Report actual baud base rather than fixed 115200
f2a16af2ee0a phy: qcom-qmp: fix pipe-clock imbalance on power-on failure
b6b0f8904bd6 rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails
088f449d9d3c iio: adc: sc27xx: Fine tune the scale calibration values
e5d48301d1fc iio: adc: sc27xx: fix read big scale voltage not right
0f57d139300f iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check
bec18bb00f11 firmware: stratix10-svc: fix a missing check on list iterator
8ad7b3d9f838 usb: dwc3: pci: Fix pm_runtime_get_sync() error checking
1026ee392ba3 rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value
89d1b9dfccce pwm: lp3943: Fix duty calculation in case period was clamped
8e9f3f508a9c staging: fieldbus: Fix the error handling path in anybuss_host_common_probe()
67c2aa77b40e usb: musb: Fix missing of_node_put() in omap2430_probe
b78499772fa7 USB: storage: karma: fix rio_karma_init return
72ab0f6f2ba8 usb: usbip: add missing device lock on tweak configuration cmd
2f0ae93ec33c usb: usbip: fix a refcount leak in stub_probe()
077f58e469a6 tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get
7320308b189c tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe
9ae3d073f7db tty: goldfish: Use tty_port_destroy() to destroy port
d88fdea1477c iio: adc: ad7124: Remove shift from scan_type
1aa30dc88372 staging: greybus: codecs: fix type confusion of list iterator variable
6c8c536e0020 pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards
4faa6308e1b8 md: bcache: check the return value of kzalloc() in detached_dev_do_request()
5f62b21b7c93 block: fix bio_clone_blkg_association() to associate with proper blkcg_gq
ccddf8cd411c bfq: Make sure bfqg for which we are queueing requests is online
8afc13b958bd bfq: Get rid of __bio_blkcg() usage
be1b78f94992 bfq: Remove pointless bfq_init_rq() calls
f885f55033a1 bfq: Drop pointless unlock-lock pair
97be7d13fbd4 bfq: Avoid merging queues with different parents
54073410537f MIPS: IP27: Remove incorrect `cpu_has_fpu' override
427c3c7ebd5f RDMA/rxe: Generate a completion for unsupported/invalid opcode
4946cfd1c8f0 Kconfig: add config option for asm goto w/ outputs
7ac21b24af85 phy: qcom-qmp: fix reset-controller leak on probe errors
d19fa8f25200 blk-iolatency: Fix inflight count imbalances and IO hangs on offline
8a068913d19d dt-bindings: gpio: altera: correct interrupt-cells
3b8c37780d11 docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0
da9634374d41 ARM: pxa: maybe fix gpio lookup tables
1668ad103679 phy: qcom-qmp: fix struct clk leak on probe errors
2040b6076544 arm64: dts: qcom: ipq8074: fix the sleep clock frequency
8dd2e5f9c1f1 gma500: fix an incorrect NULL check on list iterator
a62591e36100 tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator
77ec584d3de0 serial: pch: don't overwrite xmit->buf[0] by x_char
f6cb1470ba22 carl9170: tx: fix an incorrect use of list iterator
2ea49d6310c9 ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control
b8ce58ab80fa rtl818x: Prevent using not initialized queues
6f4a489d8458 hugetlb: fix huge_pmd_unshare address update
73bdb2359dbc nodemask.h: fix compilation error with GCC12
6e071eaf5002 iommu/msm: Fix an incorrect NULL check on list iterator
9caad70819ae um: Fix out-of-bounds read in LDT setup
6cbe83680f01 um: chan_user: Fix winch_tramp() return value
3466e4265244 mac80211: upgrade passive scan to active scan on DFS channels after beacon rx
cf465ecfe3a8 irqchip: irq-xtensa-mx: fix initial IRQ affinity
36bab24bb81b irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x
8858284dd749 RDMA/hfi1: Fix potential integer multiplication overflow errors
64623236263f Kconfig: Add option for asm goto w/ tied outputs to workaround clang-13 bug
532aa3f7a50c media: coda: Add more H264 levels for CODA960
adcea1c8eea8 media: coda: Fix reported H264 profile
f2c2ad538e49 mtd: cfi_cmdset_0002: Move and rename chip_check/chip_ready/chip_good_for_write
16e993ac7c81 md: fix an incorrect NULL check in md_reload_sb
d0bdc809f788 md: fix an incorrect NULL check in does_sb_need_changing
3623f833e19b drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX
8fa6eb03e3f5 drm/nouveau/clk: Fix an incorrect NULL check on list iterator
19323b3671a8 drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem
c12984cdb077 drm/amdgpu/cs: make commands with 0 chunks illegal behaviour.
8e105178c26a scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled
494685db0023 scsi: dc395x: Fix a missing check on list iterator
82bf8e7271fa ocfs2: dlmfs: fix error handling of user_dlm_destroy_lock
17ea63484975 dlm: fix missing lkb refcount handling
49cd9eb7b9a7 dlm: fix plock invalid read
f160e7b4b02a mm, compaction: fast_find_migrateblock() should return pfn in the target zone
665602c83776 PCI: qcom: Fix unbalanced PHY init on probe errors
c3919b10c45f PCI: qcom: Fix runtime PM imbalance on probe errors
c99306cf5983 PCI/PM: Fix bridge_d3_blacklist[] Elo i2 overwrite of Gigabyte X299
c27f744ceefa tracing: Fix potential double free in create_var_ref()
742736dc9c01 ACPI: property: Release subnode properties with data nodes
e157c8f87e8f ext4: avoid cycles in directory h-tree
17034d45ec44 ext4: verify dir block before splitting it
73fd5b192851 ext4: fix bug_on in ext4_writepages
0ab308d72af7 ext4: fix warning in ext4_handle_inode_extension
eaecf7ebfd5d ext4: fix use-after-free in ext4_rename_dir_prepare
f36736fbd484 netfilter: nf_tables: disallow non-stateful expression in sets earlier
28a8060a0bd2 bfq: Track whether bfq_group is still online
da9f3025d595 bfq: Update cgroup information before merging bio
31326bf55126 bfq: Split shared queues on move between cgroups
b1cda6dd2c44 efi: Do not import certificates from UEFI Secure Boot for T2 Macs
440d345d0274 fs-writeback: writeback_sb_inodes:Recalculate 'wrote' according skipped pages
e0dddab01f94 iwlwifi: mvm: fix assert 1F04 upon reconfig
265bec4779a3 wifi: mac80211: fix use-after-free in chanctx code
9259227605df f2fs: fix fallocate to use file_modified to update permissions consistently
1f926457c3e7 f2fs: don't need inode lock for system hidden quota
12ffc0044aba f2fs: fix deadloop in foreground GC
54c116615c99 f2fs: fix to clear dirty inode in f2fs_evict_inode()
7361c9f2bd6a f2fs: fix to do sanity check on block address in f2fs_do_zero_range()
f8b3c3fcf331 f2fs: fix to avoid f2fs_bug_on() in dec_valid_node_count()
7f51f2734555 perf jevents: Fix event syntax error caused by ExtSel
9eb684dc41d8 perf c2c: Use stdio interface if slang is not supported
e23eb2f43f4d iommu/amd: Increase timeout waiting for GA log enablement
db7ea8b261ef dmaengine: stm32-mdma: remove GISR1 register
8db59df7f582 video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup
dcc00106c325 NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout
3d216510f8af NFS: Don't report errors from nfs_pageio_complete() more than once
55f0fc32b2f2 NFS: Do not report flush errors in nfs_write_end()
59137943af75 NFS: Do not report EINTR/ERESTARTSYS as mapping errors
4826af9a07cf i2c: at91: Initialize dma_buf in at91_twi_xfer()
d77a0f2842b3 i2c: at91: use dma safe buffers
e4db5f4b680a iommu/mediatek: Add list_del in mtk_iommu_remove
5e47a7add3dd f2fs: fix dereference of stale list iterator after loop body
c8735252f93f Input: stmfts - do not leave device disabled in stmfts_input_open
addb192000d8 RDMA/hfi1: Prevent use of lock before it is initialized
6d8b9f574bca mailbox: forward the hrtimer if not queued and under a lock
49c1e32e7b3f mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe()
bcb6c4c5eb48 powerpc/fsl_rio: Fix refcount leak in fsl_rio_setup
2631fe5b53b5 macintosh: via-pmu and via-cuda need RTC_LIB
bc21634ce430 powerpc/perf: Fix the threshold compare group constraint for power9
cf0b52858f74 powerpc/64: Only WARN if __pa()/__va() called with bad addresses
bbc2b0ce6042 Input: sparcspkr - fix refcount leak in bbc_beep_probe
6d7b2cf5c7ed crypto: cryptd - Protect per-CPU resource by disabling BH.
3219ac364ac3 tty: fix deadlock caused by calling printk() under tty_port->lock
ded067f24b90 PCI: imx6: Fix PERST# start-up sequence
0b35a685d911 ipc/mqueue: use get_tree_nodev() in mqueue_get_tree()
203537caad3c proc: fix dentry/inode overinstantiating under /proc/${pid}/net
6cdb6582b566 powerpc/4xx/cpm: Fix return value of __setup() handler
337eef19aad8 powerpc/idle: Fix return value of __setup() handler
1d83f304215b powerpc/8xx: export 'cpm_setbrg' for modules
662b70a45b32 dax: fix cache flush on PMD-mapped pages
386e69e06817 drivers/base/node.c: fix compaction sysfs file leak
d1f908bd0100 pinctrl: mvebu: Fix irq_of_parse_and_map() return value
9282496aac8b nvdimm: Allow overwrite in the presence of disabled dimms
b0e4bafac896 firmware: arm_scmi: Fix list protocols enumeration in the base protocol
ffd3bed66b54 scsi: fcoe: Fix Wstringop-overflow warnings in fcoe_wwn_from_mac()
829ea474876f mfd: ipaq-micro: Fix error check return value of platform_get_irq()
8c4eeab72608 powerpc/fadump: fix PT_LOAD segment for boot memory area
bbf58e97426d arm: mediatek: select arch timer for mt7629
e7a0d0c2802f crypto: marvell/cesa - ECB does not IV
de65c32ace9a misc: ocxl: fix possible double free in ocxl_file_register_afu
7f287d0c7001 ARM: dts: bcm2835-rpi-b: Fix GPIO line names
3a37022d48a5 ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED
fd1c098b3bdd ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C
e0bf7f084412 ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT
e4594ca90b4e can: xilinx_can: mark bit timing constants as const
6077a1e637b3 KVM: nVMX: Leave most VM-Exit info fields unmodified on failed VM-Entry
9cccb3f6ed9a PCI: rockchip: Fix find_first_zero_bit() limit
f063429ac33f PCI: cadence: Fix find_first_zero_bit() limit
5543752a48ad soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc
669575521633 soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc
56b8d748ec43 ARM: dts: suniv: F1C100: fix watchdog compatible
754ef324b70b arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399
60546c0b4b46 net/smc: postpone sk_refcnt increment in connect()
91121ee57414 rxrpc: Fix decision on when to generate an IDLE ACK
d7b16ee15fc6 rxrpc: Don't let ack.previousPacket regress
2fd958ae29fd rxrpc: Fix overlapping ACK accounting
5aa14dafd2b0 rxrpc: Don't try to resend the request if we're receiving the reply
91b34bf0409f rxrpc: Fix listen() setting the bar too high for the prealloc rings
0bfaff00d1a7 NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx
9934025c4d66 ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition()
b3461ccaa5d2 thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe
449374565f34 drm: msm: fix possible memory leak in mdp5_crtc_cursor_set()
6832e36f156e drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init
48d331a03b0d ext4: reject the 'commit' option on ext2 filesystems
3dc032375595 media: ov7670: remove ov7670_power_off from ov7670_remove
dc794fa2b3c4 sctp: read sk->sk_bound_dev_if once in sctp_rcv()
d43a87d66039 m68k: math-emu: Fix dependencies of math emulation support
6f55fac0af35 Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout
c3c8c7e409d0 media: vsp1: Fix offset calculation for plane cropping
1310fc3538dc media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init
83345b536599 media: exynos4-is: Change clk_disable to clk_disable_unprepare
b87d3a043b32 media: st-delta: Fix PM disable depth imbalance in delta_probe
12480f757810 media: aspeed: Fix an error handling path in aspeed_video_probe()
d2b1dc3a0432 scripts/faddr2line: Fix overlapping text section failures
0be5d9da5743 regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt
18b907ff0ae4 ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe
96fc3da6184a ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe
ddb1a77f94d7 perf/amd/ibs: Use interrupt regs ip for stack unwinding
f2e2e934d2b6 Revert "cpufreq: Fix possible race in cpufreq online error path"
1253811c71e0 iomap: iomap_write_failed fix
6b8291e574a8 media: uvcvideo: Fix missing check to determine if element is found in list
ab888b1a9a6d drm/msm: return an error pointer in msm_gem_prime_get_sg_table()
22d8424913b1 drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected
b2aa2c4efe93 drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected
cd4cfd99ec14 regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET
db5a21f2dd62 x86/mm: Cleanup the control_va_addr_alignment() __setup handler
d2476a1fc50b irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value
b97eb924a234 irqchip/exiu: Fix acknowledgment of edge triggered interrupts
9777de28cfea x86: Fix return value of __setup handlers
ee3901d7c7f4 virtio_blk: fix the discard_granularity and discard_alignment queue limits
a9b4599665e4 drm/rockchip: vop: fix possible null-ptr-deref in vop_bind()
35d9a84e3b35 drm/msm/hdmi: fix error check return value of irq_of_parse_and_map()
2b3ed7547b1a drm/msm/hdmi: check return value after calling platform_get_resource_byname()
11709592b350 drm/msm/dsi: fix error checks and return values for DSI xmit functions
ef10d0c68e86 drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume
db681127e96d perf tools: Add missing headers needed by util/data.h
31de06ef06a8 ASoC: rk3328: fix disabling mclk on pclk probe failure
ed8d5cf1dcad x86/speculation: Add missing prototype for unpriv_ebpf_notify()
1d0c4bc628ca x86/pm: Fix false positive kmemleak report in msr_build_context()
b889619eba6f scsi: ufs: core: Exclude UECxx from SFR dump list
e120d31d04bf of: overlay: do not break notify on NOTIFY_{OK|STOP}
b0be017bc59d fsnotify: fix wrong lockdep annotations
60d159e0d084 inotify: show inotify mask flags in proc fdinfo
2326d398ccd4 ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix
cd1f386120d0 cpufreq: Fix possible race in cpufreq online error path
e7f0fd6f2566 spi: img-spfi: Fix pm_runtime_get_sync() error checking
735b57a96088 sched/fair: Fix cfs_rq_clock_pelt() for throttled cfs_rq
55fddbb1e278 drm/bridge: Fix error handling in analogix_dp_probe
f1d4f19a7965 HID: elan: Fix potential double free in elan_input_configured
75a89bc1baee HID: hid-led: fix maximum brightness for Dream Cheeky
3caa2d7943ca drbd: fix duplicate array initializer
65065f96d53e efi: Add missing prototype for efi_capsule_setup_info
fbf9c4c714d3 NFC: NULL out the dev->rfkill to prevent UAF
2c59535b6be0 spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout
fa0d7ba25a53 drm: mali-dp: potential dereference of null pointer
797f8ee35f03 drm/komeda: Fix an undefined behavior bug in komeda_plane_add()
1a994f1f1841 nl80211: show SSID for P2P_GO interfaces
93c0f9d78ddd bpf: Fix excessive memory allocation in stack_map_alloc()
c398c2149b17 drm/vc4: txp: Force alpha to be 0xff if it's disabled
8a60b54e41c9 drm/vc4: txp: Don't set TXP_VSTART_AT_EOF
a0c890c0ae9f drm/mediatek: Fix mtk_cec_mask()
ea8b2ecc920d x86/delay: Fix the wrong asm constraint in delay_loop()
c71494f5f2b4 ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe
23f340ed906c ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe
e92b927fffb6 drm/bridge: adv7511: clean up CEC adapter when probe fails
224e1eef0386 drm/edid: fix invalid EDID extension block filtering
657734866839 ath9k: fix ar9003_get_eepmisc
ebede9aadfa3 drm: fix EDID struct for old ARM OABI format
e60ad83f645e RDMA/hfi1: Prevent panic when SDMA is disabled
cb4f2dc513e9 powerpc/iommu: Add missing of_node_put in iommu_init_early_dart
6557555a86f3 macintosh/via-pmu: Fix build failure when CONFIG_INPUT is disabled
793b82d1c424 powerpc/powernv: fix missing of_node_put in uv_init()
537a317e5ff4 powerpc/xics: fix refcount leak in icp_opal_init()
a910e9613130 tracing: incorrect isolate_mote_t cast in mm_vmscan_lru_isolate
c9a81f9ed6ae PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
e10905816513 ARM: hisi: Add missing of_node_put after of_find_compatible_node
2f46a955b6f5 ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM
fcd1999ba974 ARM: versatile: Add missing of_node_put in dcscb_init
fd48cf8f972f fat: add ratelimit to fat*_ent_bread()
60ce637c194b powerpc/fadump: Fix fadump to work with a different endian capture kernel
41c7096286aa ARM: OMAP1: clock: Fix UART rate reporting algorithm
e54fd01178eb fs: jfs: fix possible NULL pointer dereference in dbFree()
a0180e324a9a PM / devfreq: rk3399_dmc: Disable edev on remove()
1995a60be7cb ARM: dts: ox820: align interrupt controller node name with dtschema
58e55f4f5a2a IB/rdmavt: add missing locks in rvt_ruc_loopback
56fd9dcfe10c selftests/bpf: fix btf_dump/btf_dump due to recent clang change
063d945795a0 eth: tg3: silence the GCC 12 array-bounds warning
88d730463e9b rxrpc: Return an error to sendmsg if call failed
1ec0bc72f5da hwmon: Make chip parameter for with_info API mandatory
a7a41dd47303 ASoC: max98357a: remove dependency on GPIOLIB
3cf43978ffd1 media: exynos4-is: Fix compile warning
1e5fbfc2a6f3 net: phy: micrel: Allow probing without .driver_data
9d1764b9266b nbd: Fix hung on disconnect request if socket is closed before
abe7554da62c ASoC: rt5645: Fix errorenous cleanup order
f76729662650 nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags
69edf28d2c42 openrisc: start CPU timer early in boot
67fb49438858 media: cec-adap.c: fix is_configuring state
4172a34ef93f media: coda: limit frame interval enumeration to supported encoder frame sizes
8f2a5721cdc3 rtlwifi: Use pr_warn instead of WARN_ONCE
2d966c94adce ipmi: Fix pr_fmt to avoid compilation issues
2064a1eab2ec ipmi:ssif: Check for NULL msg when handling events and messages
17cfc9455830 ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default
5a71f14a9b2e dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC
6583d0d6ad6d spi: stm32-qspi: Fix wait_cmd timeout in APM mode
1651a95517fb s390/preempt: disable __preempt_count_add() optimization for PROFILE_ALL_BRANCHES
890b16b4709d ASoC: tscs454: Add endianness flag in snd_soc_component_driver
00771de7cc28 HID: bigben: fix slab-out-of-bounds Write in bigben_probe
0d7074792bb9 drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo
2317f3bfda6d mlxsw: spectrum_dcb: Do not warn about priority changes
121f56a9a832 ASoC: dapm: Don't fold register value changes into notifications
430af81135d5 net/mlx5: fs, delete the FTE when there are no rules attached to it
f857855a8a83 ipv6: Don't send rs packets to the interface of ARPHRD_TUNNEL
b507f067e9fc drm: msm: fix error check return value of irq_of_parse_and_map()
efd183d988b4 arm64: compat: Do not treat syscall number as ESR_ELx for a bad syscall
a610cfe56c38 drm/amd/pm: fix the compile warning
1e29d829ad51 drm/plane: Move range check for format_count earlier
e1599ced6be1 scsi: megaraid: Fix error check return value of register_chrdev()
7923f95997a7 mmc: jz4740: Apply DMA engine limits to maximum segment size
0959aa00f976 md/bitmap: don't set sb values if can't pass sanity check
222292930c8e media: cx25821: Fix the warning when removing the module
fa636e9ee444 media: pci: cx23885: Fix the error handling in cx23885_initdev()
0ac84ab50712 media: venus: hfi: avoid null dereference in deinit
de16cdf0b73d ath9k: fix QCA9561 PA bias level
af832028af6f drm/amd/pm: fix double free in si_parse_power_table()
7bd0ac1e2345 tools/power turbostat: fix ICX DRAM power numbers
6266ab1f31fa spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction
f68bed124c76 ALSA: jack: Access input_dev under mutex
aea748501d09 drm/komeda: return early if drm_universal_plane_init() fails.
8ded0af90e97 ACPICA: Avoid cache flush inside virtual machines
c7b41fd76ce2 fbcon: Consistently protect deferred_takeover with console_lock()
4460066eb248 ipv6: fix locking issues with loops over idev->addr_list
8fb1b9beb085 ipw2x00: Fix potential NULL dereference in libipw_xmit()
303380919df7 b43: Fix assigning negative value to unsigned variable
60d515fd8797 b43legacy: Fix assigning negative value to unsigned variable
92225d3c2241 mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue
f85cb059fad0 drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes
670f5e40d7b3 btrfs: repair super block num_devices automatically
622ced791ed8 btrfs: add "0x" prefix for unsupported optional features
0ca511204740 ptrace: Reimplement PTRACE_KILL by always sending SIGKILL
f5faa24137d7 ptrace/xtensa: Replace PT_SINGLESTEP with TIF_SINGLESTEP
e10356eae1c2 ptrace/um: Replace PT_DTRACE with TIF_SINGLESTEP
00c93ce2665c perf/x86/intel: Fix event constraints for ICL
1b767500d151 usb: core: hcd: Add support for deferring roothub registration
114790876393 USB: new quirk for Dell Gen 2 devices
7c5a52dd4d91 USB: serial: option: add Quectel BG95 modem
6b3ecb2d92a0 ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS
1c6cfb9e8a5c binfmt_flat: do not stop relocating GOT entries prematurely on riscv
35c6471fd2c1 Linux 5.4.197
e00c2f22fbfa bpf: Enlarge offset check value to INT_MAX in bpf_skb_{load,store}_bytes
a2235bc65ade NFSD: Fix possible sleep during nfsd4_release_lockowner()
f5b6bc69a792 NFS: Memory allocation failures are not server fatal errors
0490cd2aee18 docs: submitting-patches: Fix crossref to 'The canonical patch format'
72ef5d01fe37 tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe()
7ecd237e5036 tpm: Fix buffer access in tpm2_get_tpm_pt()
396d1f51764d HID: multitouch: Add support for Google Whiskers Touchpad
25f0e9459f94 raid5: introduce MD_BROKEN
fd2f7e998485 dm verity: set DM_TARGET_IMMUTABLE feature flag
f00597350210 dm stats: add cond_resched when looping over entries
65e6282f0d75 dm crypt: make printing of the key constant-time
a4415f39e3e8 dm integrity: fix error code in dm_integrity_ctr()
fc658c083904 zsmalloc: fix races between asynchronous zspage free and page migration
7632451ad926 crypto: ecrdsa - Fix incorrect use of vli_cmp
b16bb373988d netfilter: conntrack: re-fetch conntrack after insertion
1fe82bfd9e4c exec: Force single empty string when argv is empty
241b566e0403 drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency()
3dbab9e37ca1 cfg80211: set custom regdomain after wiphy registration
039fa25d95ce assoc_array: Fix BUG_ON during garbage collect
8c668da61bd0 drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers
fdcbdb3d089a i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging
827980029d0f net: ftgmac100: Disable hardware checksum on AST2600
e619506ed010 net: af_key: check encryption module availability consistency
fa77d2a3a755 pinctrl: sunxi: fix f1c100s uart2 function
2208c31d864e ACPI: sysfs: Fix BERT error region memory mapping
92d4b5e14830 ACPI: sysfs: Make sparse happy about address space in use
5a73bd4f4710 media: vim2m: initialize the media device earlier
b7248281afb1 media: vim2m: Register video device after setting up internals
ab5b00cfe050 secure_seq: use the 64 bits of the siphash for port offset calculation
80cca53a48c8 tcp: change source port randomizarion at connect() time
9ce35dad5a1a Input: goodix - fix spurious key release events
bdbc7ef3eb2c staging: rtl8723bs: prevent ->Ssid overflow in rtw_wx_set_scan()
4f0750839421 x86/pci/xen: Disable PCI/MSI[-X] masking for XEN_HVM guests
8bb828229da9 lockdown: also lock down previous kgdb use
(From OE-Core rev: 5503425172d832dae12bad6af8ca22ece454e4b0)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Richard Purdie
|
60a98feb86 |
vim: 8.2.5083 -> 9.0.0005
The license checksum changed due to a major version change in the referenced file. (From OE-Core rev: cc245b75ebd8dfc4925a21e3ff08d841fef77635) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 89f34d8aa4f4572d048dbb732ca4c83d443157fb) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Ranjitsinh Rathod
|
6a3d60d873 |
openssl: Minor security upgrade 1.1.1o to 1.1.1p
This security upgrade fixes CVE-2022-2068 as per below link Link: https://www.openssl.org/news/cl111.txt Also, remove 73db5d82489b3ec09ccc772dfcee14fef0e8e908.patch and b7ce611887cfac633aacc052b2e71a7f195418b8.patch as these two are part 1.1.1p now (From OE-Core rev: a8283f9251f59d86f93f9d7cfd4c7e29c61e4631) Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com> Signed-off-by: Ranjitsinh Rathod <ranjitsinhrathod1991@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Ross Burton
|
1c38d0d3d6 |
cve-check: hook cleanup to the BuildCompleted event, not CookerExit
The cve-check class writes temporary files to preserve state across the build, and cleans them up in a CookerExit handler. However, in memory-resident builds the cooker won't exit in between builds, so the state isn't cleared and the CVE report generation fails: NOTE: Generating JSON CVE summary ERROR: Error adding the same package twice Easily solved by hooking to BuildCompleted, instead of CookerExit. (From OE-Core rev: ee3270709158aff463fec6798f3b8968268b4d4b) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit fccdcfd301de281a427bfee48d8ff47fa07b7259) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Richard Purdie
|
ca90350d13 |
cve-extra-exclusions: Clean up and ignore three CVEs (2xqemu and nasm)
Remove obsolete comments/data from the file. Add in three CVEs to ignore. Two are qemu CVEs which upstream aren't particularly intersted in and aren't serious issues. Also ignore the nasm CVE found from fuzzing as this isn't a issue we'd expose from OE. (From OE-Core rev: b82c95720488eea8ea4b5684c9f89e4931085fa5) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 68291026aab2fa6ee1260ca95198dd1d568521e5) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Ahmed Hossam
|
159a2de146 |
insane.bbclass: host-user-contaminated: Correct per package home path
The current home path that is compared against is incorrect as it is missing the package name, this patch adds it. [YOCTO #14553] (From OE-Core rev: b75caf4a985e3c20996531785125eaffdc832104) Signed-off-by: Ahmed Hossam <Ahmed.Hossam@opensynergy.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> (cherry picked from commit ae8f22d9e2694eea5ede3b31c6f3bca404ea4a5a) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Martin Jansa
|
684c5d4c12 |
wic: fix WicError message
* add missing % to print the values instead of:
| INFO: Build artifacts not found, exiting.
| INFO: (Please check that the build artifacts for the machine
| INFO: selected in local.conf actually exist and that they
| INFO: are the correct artifacts for the image (.wks file)).
|
| ERROR: ("The artifact that couldn't be found was %s:\n %s", 'kernel-dir', '/OE/build/deploy/images/qemux86-64')
(From OE-Core rev: c83cabad78dbc98bb72be7fd7dd51023853a3ff9)
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e104c2b1273d8c5bd97893f318bf2a2699ef7f2d)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Muhammad Hamza
|
8dfc7162e3 |
initramfs-framework: move storage mounts to actual rootfs
Operations such as mkfs fail on devices that are not
switched to the actual rootfs before switch_root is
called. The kernel interprets these devices as still
being used even after unmounting and errors such as
below are seen when the target is fully booted
root@v1000:~# umount /dev/sdb1
root@v1000:~# mkfs.ext4 /dev/sdb1
mke2fs 1.43.8 (1-Jan-2018)
/dev/sdb1 contains a ext4 file system
last mounted on Wed Nov 28 07:33:54 2018
Proceed anyway? (y,N) y
/dev/sdb1 is apparently in use by the system; will not make a filesystem here!
(From OE-Core rev: ce27982c24d2398c9eadb9d4d9e7475509424195)
Signed-off-by: Awais Belal <awais_belal@mentor.com>
Signed-off-by: Muhammad Hamza <muhammad_hamza@mentor.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit ec53ffd01972d1be2d6a28de828b3f0b80dc1e61)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Marek Vasut
|
d2f8a57a30 |
lttng-modules: Backport Linux 5.18+, 5.15.44+, 5.10.119+ fixes
The Linux kernel commit 14c174633f349 ("random: remove unused tracepoints")
removed unused tracepoints and has been backported to stable Linux kernel
releases. This causes build failure of lttng-modules:
"
lttng-modules-2.11.6/probes/lttng-probe-random.c:18:10: fatal error: trace/events/random.h: No such file or directory
| 18 | #include <trace/events/random.h>
| | ^~~~~~~~~~~~~~~~~~~~~~~
| compilation terminated.
"
Backport patches from lttng-modules master branch to address the build
failure on all of Linux 5.18.y, 5.15.y 5.10.y, 5.4, 4.19, 4.14, and 4.9 kernel versions.
(From OE-Core rev: 9f301f5563df868626d624c2d0781dae1b81a4c0)
Signed-off-by: Marek Vasut <marex@denx.de>
Cc: Bruce Ashfield <bruce.ashfield@gmail.com>
Cc: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Alexander Kanavin
|
0a0e0663ab |
wireless-regdb: upgrade 2022.04.08 -> 2022.06.06
(From OE-Core rev: a0415549af8d10f4915c519433b49ce812bd2324) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 4c27711292f93dfad1ffdeab6d715becad32a4ff) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Marta Rybczynska
|
79b3e05767 |
oeqa/selftest/cve_check: add tests for Ignored and partial reports
Add testcases for partial reports with CVE_CHECK_REPORT_PATCHED and Ignored CVEs. (From OE-Core rev: 577d297babd7b399f631c8a95155265f08c5e193) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry-picked from 3f7639b90004973782a2e74925fd2e9a764c1090) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Hitendra Prajapati
|
b6f4778e37 |
grub2: CVE-2021-3981 Incorrect permission in grub.cfg allow unprivileged user to read the file content
Source: https://git.savannah.gnu.org/cgit/grub.git/ MR: 116495 Type: Security Fix Disposition: Backport from https://git.savannah.gnu.org/cgit/grub.git/diff/util/grub-mkconfig.in?id=0adec29674561034771c13e446069b41ef41e4d4 ChangeID: fce3d59e50320bef247bb981352051b8f953a4fc Description: CVE-2021-3981 grub2: Incorrect permission in grub.cfg allow unprivileged user to read the file content. Affects "grub2 < 2.06" (From OE-Core rev: fd9dc688ead5cf0225cba94c380a618e332d548f) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Marta Rybczynska
|
6e79d96c6d |
cve-check: add support for Ignored CVEs
Ignored CVEs aren't patched, but do not apply in our configuration for some reason. Up till now they were only partially supported and reported as "Patched". This patch adds separate reporting of Ignored CVEs. The variable CVE_CHECK_REPORT_PATCHED now manages reporting of both patched and ignored CVEs. (From OE-Core rev: 14b3c0ca46a0aa97565a24b7a5116306237d7cfe) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry-picked from c773102d4828fc4ddd1024f6115d577e23f1afe4) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Richard Purdie
|
31b4392e6e |
unzip: Port debian fixes for two CVEs
Add two fixes from debian for two CVEs. From: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010355 I wans't able to get the reproducers to work but the added error checking isn't probably a bad thing. (From OE-Core rev: 097469513f6dea7c678438e71a152f4e77fe670d) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 054be00a632c2918dd1f973e76514e459fc6f017) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Joe Slater
|
4bc2324a25 |
unzip: fix CVE-2021-4217
Avoid a null pointer dereference. (From OE-Core rev: 357791da82f767ad695e4476aa12fea3d7db5e04) Signed-off-by: Joe Slater <joe.slater@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit 36db85b9b127e5a9f5d3d6e428168cf597ab95f3) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Hitendra Prajapati
|
6013fc2606 |
golang: CVE-2021-31525 net/http: panic in ReadRequest and ReadResponse when reading a very large header
Source: https://github.com/argoheyard/lang-net
MR: 114874
Type: Security Fix
Disposition: Backport from
|
||
|
Hitendra Prajapati
|
3f2da49c2b |
golang: CVE-2022-24675 encoding/pem: fix stack overflow in Decode
Source: https://go-review.googlesource.com/c/go MR: 117551 Type: Security Fix Disposition: Backport from https://go-review.googlesource.com/c/go/+/399816/ ChangeID: 347f22f93e8eaecb3d39f8d6c0fe5a70c5cf7b7c Description: CVE-2022-24675 golang: encoding/pem: fix stack overflow in Decode. (From OE-Core rev: 6625e24a6143765ce2e4e08d25e3fe021bc2cdf6) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Michael Opdenacker
|
02867c9039 |
manuals: switch to the sstate mirror shared between all versions
Following https://git.yoctoproject.org/poky/commit/?id=cf7d8894545b83f55420fa33f7848e1bfc6754ff (From yocto-docs rev: 5a5499609bc1f6ac99ad909dc1aeb91505f5bd48) Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Ross Burton
|
33a08f7b8f |
bitbake: knotty: reduce keep-alive timeout from 5000s (83 minutes) to 10 minutes
The keep alive timeout is excessively long at 83 minutes (5000 seconds), reduce this to 10 minutes: this should be long enough that it rarely triggers in normal builds, but when it does it has useful information. (Bitbake rev: a496a8952d8542ce814b13f460811d8849d25a3c) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit dcf52157d3635925491783be656c6b76d1efe1a4) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Ross Burton
|
07eca06c71 |
bitbake: knotty: display active tasks when printing keepAlive() message
In interactive bitbake sessions it is obvious what tasks are running when one of them hangs or otherwise takes a long time. However, in non-interactive sessions (such as automated builds) bitbake just prints a message saying that it is "still alive" with no clues as to what tasks are active still. By simply listing the active tasks when printing the keep alive message, we don't need to parse the bitbake log to identify which of the tasks is still active and has presumably hung. (Bitbake rev: 36fe8bae9fec61547ee0b13bcb721033afd3ac0e) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 30f6c3f175617beea8e8bb75dcf255611e3fc2fd) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Richard Purdie
|
9f20f682ff |
bitbake: bin/bitbake-getvar: Add a new command to query a variable value (with history)
We've talked about having this for long enough. Add a command which queries a single variable value with history. This saves "bitbake -e | grep" and avoids the various pitfalls that has. It also provides a neat example of using tinfoil to make such a query. Parameters to limit the output to just the value, to limit to a variable flag and to not expand the output are provided. [YOCTO #10748] (Bitbake rev: 47ed06d441152f8b6d374cacfac2c668c354423e) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 4c1881b620e885f55d7772f8626b8a76c2828333) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Richard Purdie
|
6d1f8412be |
bitbake: tinfoil/data_smart: Allow variable history emit() to function remotely
We can't access the emit() function of varhistory currently as the datastore parameter isn't handled correctly, nor is the output stream. Add a custom wrapper for this function which handles the two details correctly. (Bitbake rev: 144a1cfe8b60c677bb6ec66c242e064c7ba3ed88) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit ba0fa084ccd2b1ade96425d158fd31e49e42f286) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Dmitry Baryshkov
|
872caf23ad |
linux-firmware: upgrade 20220509 -> 20220610
Drop 0001-Makefile-replace-mkdir-by-install.patch merged upstream. License-Update: additional files (From OE-Core rev: c6f5fb5e7545636ef7948ad1562548b7b64dac35) Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 91cd99267157e860a108282aee13e162e8c10572) Signed-off-by: Steve Sakoman <steve@sakoman.com> (cherry picked from commit bcc5a22cd2b25c777315fe9d677fc0338ae2ab68) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Dmitry Baryshkov
|
b9bffd7650 |
linux-firmware: add support for building snapshots
In some cases it is useful to be able to test the snapshot of
linux-firmware (e.g. to test if the updated firmware works on the
particular hardware). Allow building the linux-firmware snapshots.
To switch to the most recent branch, add the following lines to the
local.conf file:
PREFERRED_VERSION_linux-firmware = "1:20220509+git%"
SRCREV:class-devupstream = "${AUTOREV}"
WHENCE_CHKSUM:class-devupstream:pn-linux-firmware = "4288aad55d189fa225d492526b8406d5"
(From OE-Core rev: 6654baf267003ac62bc886901e5197fc211239f4)
Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b023570ae1d239de14b50a0e827582d0e84ddf81)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Nick Potenski
|
0b84202a2b |
systemd: systemd-systemctl: Support instance conf files during enable
Add ability to parse instance-specific conf files when enabling an instance of a templated unit during postinstall. (From OE-Core rev: f2d59bf2240eaf4c483edc4feb6e5d66b8dc387f) Signed-off-by: Nick Potenski <nick.potenski@garmin.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit baa0ecf3271008cf60cd830c54a71f191aebb81c) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Chee Yang Lee
|
ae90fa778a |
dpkg: update to 1.19.8
update include fixes for CVE-2022-1664. (From OE-Core rev: 12169c1104adbfd9f5196fdbdab16536e98fd43f) Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Hitendra Prajapati
|
fe6c34c48d |
golang: CVE-2021-44717 syscall: don't close fd 0 on ForkExec error
Source: https://github.com/golang/go MR: 114884 Type: Security Fix Disposition: Backport from https://github.com/golang/go/commit/44a3fb49 ChangeID: 7b28553d4e23828b20c3357b1cca79ee3ca18058 Description: CVE-2021-44717 golang: syscall: don't close fd 0 on ForkExec error. (From OE-Core rev: b835c65845b1445e1bb547c192cb22c2db4c7e6f) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Hitendra Prajapati
|
2ae3d43628 |
python-pip: CVE-2021-3572 Incorrect handling of unicode separators in git references
Source: https://github.com/pypa/pip
MR: 113864
Type: Security Fix
Disposition: Backport from
|
||
|
Jose Quaresma
|
5582ab6aae |
archiver: don't use machine variables in shared recipes
When using multiconfig with the same TMP folder we can have
races because the shared recipes like gcc-source run twice.
ARCHIVER_OUTDIR = ${ARCHIVER_TOPDIR}/${TARGET_SYS}/${PF}/
which includes TARGET_SYS and between the two different MACHINE values,
this changes from 'arm-poky-linux-gnueabi' to 'aarch64-poky-linux'.
This leads to the task running twice, once for each multiconfig.
To solve this we need to store the shared output in a common place
for all machines and in this way the stamps will be the same for each
machine so the gcc-source will on run once regardless of the machine used.
(From OE-Core rev: 135adeb82c9303c26193bb6f6bd3bc696793aa62)
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 5abe497aad39a6ce8d72556fcdda1938a0f8c1bc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Richard Purdie
|
d4c7b40039 |
gcc-source: Fix incorrect task dependencies from ${B}
Some tasks may reference ${B} for gcc-source which in general would not exist.
It has dependencies on HOST_SYS and TARGET_SYS which are not appropriate for a
shared recipe like gcc-source. This causes problems for the archiver and
multiconfigs in particlar.
Set B to something else to avoid these task hash issues.
Acked-by: Jose Quaresma <jose.quaresma@foundries.io>
(From OE-Core rev: 14aa189c2e47a2c5a4a0099235a2605666651f74)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit beb2a76c591e985c6fc7ed473abd1bee27f955a2)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Rasmus Villemoes
|
a2805141e9 |
e2fsprogs: add alternatives handling of lsattr as well
Building busybox with CONFIG_LSATTR=y and installing that in the same
filesystem as e2fsprogs breaks:
ERROR: ... do_rootfs: Postinstall scriptlets of ['busybox'] have failed. If the intention is to defer them to first boot,
then please place them into pkg_postinst_ontarget:${PN} ().
Deferring to first boot via 'exit 1' is no longer supported.
Fix that by also alternatifying lsattr just as chattr already is.
(From OE-Core rev: 28090d32c88d99ea36a03f3bb723838746001e4b)
Signed-off-by: Rasmus Villemoes <rasmus.villemoes@prevas.dk>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 96703961eeb3460e9da26503d7942cc965d1e573)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Mingli Yu
|
7d9d97368b |
oescripts: change compare logic in OEListPackageconfigTests
When multilib enabled and add layers/meta-openembedded/meta-oe in
conf/bblayers.conf, it reports below error when run oe-selftest.
$ oe-selftest -r oescripts
[snip]
[20:36:33-0700] 2022-05-16 03:36:33,494 - oe-selftest - INFO - RESULTS - oescripts.OEListPackageconfigTests.test_packageconfig_flags_option_flags: FAILED (585.37s)
[snip]
It is because the output of "list-packageconfig-flags.py -f" as below:
$ ../scripts/contrib/list-packageconfig-flags.py -f
[snip]
qt lib32-pinentry lib32-wxwidgets nativesdk-pinentry pinentry pinentry-native wxwidgets wxwidgets-native
secret lib32-pinentry nativesdk-pinentry pinentry pinentry-native
[snip]
But the check logic as below:
class OEListPackageconfigTests(OEScriptTests):
#oe-core.scripts.List_all_the_PACKAGECONFIG's_flags
def check_endlines(self, results, expected_endlines):
for line in results.output.splitlines():
for el in expected_endlines:
if line.split() == el.split():
expected_endlines.remove(el)
break
def test_packageconfig_flags_option_flags(self):
results = runCmd('%s/contrib/list-packageconfig-flags.py -f' % self.scripts_dir)
expected_endlines = []
expected_endlines.append("PACKAGECONFIG FLAG RECIPE NAMES")
expected_endlines.append("qt nativesdk-pinentry pinentry pinentry-native")
expected_endlines.append("secret nativesdk-pinentry pinentry pinentry-native")
self.check_endlines(results, expected_endlines)
And the test will fail as line.split() doesn't equal el.split() as
line.split() is ['lib32-pinentry', 'lib32-wxwidgets', 'nativesdk-pinentry',
'pinentry', 'pinentry-native', 'wxwidgets', 'wxwidgets-native'] and
el.split() is ['nativesdk-pinentry', 'pinentry', 'pinentry-native'].
So change the compare logic to fix the gap.
(From OE-Core rev: 9eecfbfc957359b7933f1e1bde3aba1780dde202)
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 239f22847bcae0cb31769adb0a42b5440173a7c5)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Jose Quaresma
|
69fb63b4fc |
archiver: use bb.note instead of echo
(From OE-Core rev: fd1ed873ec00fda2f58370770ad7aed039bdc470) Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 6420c8a6a8143f53ccad7ab2d56b2ba06db83099) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Martin Jansa
|
9638dc4826 |
rootfs.py: close kernel_abi_ver_file
* fixes:
oe-core/meta/lib/oe/rootfs.py:331: ResourceWarning: unclosed file <_io.TextIOWrapper name='pkgdata/mach/kernel-depmod/kernel-abiversion' mode='r' encoding='UTF-8'>
kernel_ver = open(kernel_abi_ver_file).read().strip(' \n')
(From OE-Core rev: b761150790231792b42a8eb534013f1e17b4efb3)
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f9dd8ee063c1132265248457fcd628e1e93727be)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Peter Kjellerstedt
|
f51a254415 |
license.bbclass: Bound beginline and endline in copy_license_files()
Ensure that begin_idx (i.e., beginline - 1) and end_idx (i.e., endline) are positive numbers in copy_license_files(). This makes sure the same lines are copied as populate_lic_qa_checksum() uses when it calculates the checksum. Before, beginline=0 would typically lead to that no lines were copied at all. (From OE-Core rev: 27cd074d747c5ef4b475c8a62a8ede2bbe58f996) Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit ab3cc3651d08d226675c461da760cda0bb6c0ce0) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Marcel Ziswiler
|
1487d68388 |
alsa-plugins: fix libavtp vs. avtp packageconfig
Fix PACKAGECONFIG to refer to libavtp instead of avtp as this is what the project and everything is really called everywhere. (From OE-Core rev: a1b73bc6ba90fb079e514e4eeda8e231a950b9f4) Signed-off-by: Marcel Ziswiler <marcel.ziswiler@toradex.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 8824d91fe2063195014c38c134b97946d3b429c2) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Stefan Wiehler
|
8a382d8655 |
kernel-yocto.bbclass: Reset to exiting on non-zero return code at end of task
Several tasks deactivate exiting on non-zero return codes via set +e because they run subcommands that have legitimate non-zero return codes. However when appending to those tasks, this behavior is not expected and can lead to builds silently proceeding in case of an error. Therefore reset the default behavior at the end of the respective tasks via set -e. (From OE-Core rev: 7777cc853db7200b819095be6f6a3561738ac94d) Signed-off-by: Stefan Wiehler <stefan.wiehler@nokia.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 83a6f28d2e464f00202090e998a63045adba9e4e) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Richard Purdie
|
8d6f9680e4 |
vim: Upgrade 8.2.5034 -> 8.2.5083
Includes fixes for CVE-2022-1927, CVE-2022-1942. (From OE-Core rev: 2bba60d687fb45a8367cb683a8e9d385384ad51a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 1e740b5c2227c0040621ae63436d06db4873670f) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Pawan Badganchi
|
23ed0037b6 |
openssh: Whitelist CVE-2021-36368
As per debian, the issue is fixed by a feature called "agent restriction" in openssh 8.9. Urgency is unimportant as per debian, Hence this CVE is whitelisting. Link: https://security-tracker.debian.org/tracker/CVE-2021-36368 https://bugzilla.mindrot.org/show_bug.cgi?id=3316#c2 https://docs.ssh-mitm.at/trivialauth.html (From OE-Core rev: 179b862e97d95ef57f8ee847e54a78b5f3f52ee7) Signed-off-by: Pawan Badganchi <badganchipv@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Steve Sakoman
|
95cda9d091 |
cups: fix CVE-2022-26691
In scheduler/cert.c the previous algorithm didn't expect the strings can
have a different length, so one string can be a substring of the other
and such substring was reported as equal to the longer string.
Backport patch from upstream to fix:
|
||
|
Richard Purdie
|
238fb89434 |
local.conf.sample: Update sstate url to new 'all' path
(From meta-yocto rev: 36f7c6b9ddbcd4f518aa199b523a0606d1f4018a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Bruce Ashfield
|
7f694e46a8 |
linux-yocto/5.4: update to v5.4.196
Updating to the latest korg -stable release that comprises
the following commits:
04b092e4a01a Linux 5.4.196
dba1941f5bc3 afs: Fix afs_getattr() to refetch file status if callback break occurred
ef5374d532ca i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe()
10a221e2d3d8 x86/xen: Mark cpu_bringup_and_idle() as dead_end_function
a12884ff4340 x86/xen: fix booting 32-bit pv guest
b2f140a9f980 Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
060f38b1dfb4 ARM: dts: imx7: Use audio_mclk_post_div instead audio_mclk_root_clk
b38cf3cb17df firmware_loader: use kernel credentials when reading firmware
e14e3856e94d net: stmmac: disable Split Header (SPH) for Intel platforms
9ea8e6a8323e block: return ELEVATOR_DISCARD_MERGE if possible
36ac6caf742d Input: ili210x - fix reset timing
1c450bdf2e8c net: atlantic: verify hw_head_ lies within TX buffer ring
e5307704c4ad net: stmmac: fix missing pci_disable_device() on error in stmmac_pci_probe()
91d8d7edf192 ethernet: tulip: fix missing pci_disable_device() on error in tulip_init_one()
dd5de66f5c8a selftests: add ping test with ping_group_range tuned
9919585e5f41 mac80211: fix rx reordering with non explicit / psmp ack policy
19e2cd737c16 scsi: qla2xxx: Fix missed DMA unmap for aborted commands
74168c2207a5 perf bench numa: Address compiler error on s390
d1915d9c9fa3 gpio: mvebu/pwm: Refuse requests with inverted polarity
3fdd67e83c42 gpio: gpio-vf610: do not touch other bits when set the target bit
1fe6dc5f5d19 net: bridge: Clear offload_fwd_mark when passing frame up bridge interface.
622be11fa385 igb: skip phy status check where unavailable
eb92a8ecce23 ARM: 9197/1: spectre-bhb: fix loop8 sequence for Thumb2
463a7b957db0 ARM: 9196/1: spectre-bhb: enable for Cortex-A15
1b93631c77c9 net: af_key: add check for pfkey_broadcast in function pfkey_process
c0be5fec786b net/mlx5e: Properly block LRO when XDP is enabled
3277789f332e NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc
b368e07fb44d net/qla3xxx: Fix a test in ql_reset_work()
d672eee9e404 clk: at91: generated: consider range when calculating best rate
8cb1a05fe38b ice: fix possible under reporting of ethtool Tx and Rx statistics
dc64e8874e87 net: vmxnet3: fix possible NULL pointer dereference in vmxnet3_rq_cleanup()
32f779e6fbbe net: vmxnet3: fix possible use-after-free bugs in vmxnet3_rq_alloc_rx_buf()
1eb2d7858155 net/sched: act_pedit: sanitize shift argument before usage
50f70ee30236 net: macb: Increment rx bd head after allocating skb and buffer
a42ffe88332c ARM: dts: aspeed-g6: fix SPI1/SPI2 quad pin group
6493ff94c022 ARM: dts: aspeed-g6: remove FWQSPID group in pinctrl dtsi
fe2a9469eca0 dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace
8cf6c24ed488 drm/dp/mst: fix a possible memory leak in fetch_monitor_name()
8be06f62b426 crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ
f4a093215b8e KVM: x86/mmu: Update number of zapped pages even if page list is stable
de8745182749 PCI/PM: Avoid putting Elo i2 PCIe Ports in D3cold
3a12b2c413b2 Fix double fget() in vhost_net_set_backend()
dd0ea88b0a0f perf: Fix sys_perf_event_open() race against self
c8a5e14cb407 ALSA: wavefront: Proper check of get_user() error
2f8f6c393b11 SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
975a0f14d5cd SUNRPC: Don't call connect() more than once on a TCP socket
aa4d71edd609 SUNRPC: Prevent immediate close+reconnect
2d6f096476e6 SUNRPC: Clean up scheduling of autoclose
f3fe8d13ac89 mmc: core: Default to generic_cmd6_time as timeout in __mmc_switch()
def047ae1266 mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD
f10260f35992 mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC
1e93f939927d nilfs2: fix lockdep warnings during disk space reclamation
307d021b1a7f nilfs2: fix lockdep warnings in page operations for btree nodes
77b71a4c8767 ARM: 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in unwind_frame()
54f7358be14d platform/chrome: cros_ec_debugfs: detach log reader wq from devm
232128f6e60f drbd: remove usage of list iterator variable after loop
83abb076f473 MIPS: lantiq: check the return value of kzalloc()
e7947c031ffe rtc: mc146818-lib: Fix the AltCentury for AMD platforms
7be785032c05 nvme-multipath: fix hang when disk goes live over reconnect
ee0323cc8bbb ALSA: hda/realtek: Enable headset mic on Lenovo P360
c0d86f2a3c03 crypto: x86/chacha20 - Avoid spurious jumps to other functions
f0213894337a crypto: stm32 - fix reference leak in stm32_crc_remove
8c015cd52442 Input: stmfts - fix reference leak in stmfts_input_open
bb83a744bc67 Input: add bounds checking to input_set_capability()
4fd396695646 um: Cleanup syscall_handler_t definition/cast, fix warning
0c319b998835 rtc: fix use-after-free on device removal
05df3bdbc259 x86/xen: Make the secondary CPU idle tasks reliable
0d3817cb4ebe x86/xen: Make the boot CPU idle task reliable
67e2b62461b5 floppy: use a statically allocated error counter
0187300e6aa6 Linux 5.4.195
8fcefb43ecfc tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe()
6d80857c4fc7 ping: fix address binding wrt vrf
7845532adb53 arm[64]/memremap: don't abuse pfn_valid() to ensure presence of linear map
c0b735fef2af net: phy: Fix race condition on link status change
a60def756821 MIPS: fix build with gcc-12
a3112d5da17c drm/vmwgfx: Initialize drm_mode_fb_cmd2
463c7431490d cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp()
f25145c37c4e i40e: i40e_main: fix a missing check on list iterator
17c744716af5 drm/nouveau/tegra: Stop using iommu_present()
c8f567c46543 serial: 8250_mtk: Fix register address for XON/XOFF character
aa3ea7451bd6 serial: 8250_mtk: Fix UART_EFR register address
031fda28d0a6 slimbus: qcom: Fix IRQ check in qcom_slim_probe
7de6f3059629 USB: serial: option: add Fibocom MA510 modem
65732f62f730 USB: serial: option: add Fibocom L610 modem
6c78537f3e29 USB: serial: qcserial: add support for Sierra Wireless EM7590
e40d00494712 USB: serial: pl2303: add device id for HP LM930 Display
056a56f8fbfe usb: typec: tcpci: Don't skip cleanup in .remove() on error
457d9401b8c1 usb: cdc-wdm: fix reading stuck on device close
4d93303fd877 tty: n_gsm: fix mux activation issues in gsm_config()
6e34ee5b5b92 tcp: resalt the secret every 10 seconds
39c26fe93c76 net: emaclite: Don't advertise 1000BASE-T and do auto negotiation
638bfbc84cca s390: disable -Warray-bounds
f66d3fa5089f ASoC: ops: Validate input values in snd_soc_put_volsw_range()
13b850a6cc80 ASoC: max98090: Generate notifications on changes for custom control
5c766c000a64 ASoC: max98090: Reject invalid values in custom control put()
22f6c68b4927 hwmon: (f71882fg) Fix negative temperature
208200e573bd gfs2: Fix filesystem block deallocation for short writes
42daae7d845c net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe()
e038c457bd12 net/smc: non blocking recvmsg() return -EAGAIN when no data and signal_pending
2ec2dd7d51a9 net/sched: act_pedit: really ensure the skb is writable
48c6a40e2f25 s390/lcs: fix variable dereferenced before check
467ddbbe7e74 s390/ctcm: fix potential memory leak
2cbce0110070 s390/ctcm: fix variable dereferenced before check
1c40e85d0aa0 hwmon: (ltq-cputemp) restrict it to SOC_XWAY
0a778db9319f dim: initialize all struct fields
522986cc39c1 mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection
0729594cb788 netlink: do not reset transport header in netlink_recvmsg()
33ce32587c44 drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name()
5809a1c53049 ipv4: drop dst in multicast routing path
c9d75e87f45b net: Fix features skip in for_each_netdev_feature()
5c9057670504 mac80211: Reset MBSSID parameters upon connection
cfe74fd41f18 hwmon: (tmp401) Add OF device ID table
3915341a935f batman-adv: Don't skb_split skbuffs with frag_list
90659487578c Linux 5.4.194
2f4e0bf651e3 mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte() and __mcopy_atomic()
e4db0c3ce0c5 mm: hugetlb: fix missing cache flush in copy_huge_page_from_user()
ea9cad1c5d95 mm: fix missing cache flush for all tail pages of compound page
45c05171d6e3 Bluetooth: Fix the creation of hdev->name
f52c4c067aa5 KVM: x86/svm: Account for family 17h event renumberings in amd_pmc_perf_hw_id
c1bdf1e6e706 x86: kprobes: Prohibit probing on instruction which has emulate prefix
6af6427a9600 x86: xen: insn: Decode Xen and KVM emulate-prefix signature
c67a4a91f5e1 x86: xen: kvm: Gather the definition of emulate prefixes
4c39e1ace3dc x86/asm: Allow to pass macros to __ASM_FORM()
29afcd5af012 KVM: x86/pmu: Refactoring find_arch_event() to pmc_perf_hw_id()
ea65a7d76c00 arm: remove CONFIG_ARCH_HAS_HOLES_MEMORYMODEL
5755f946a89f can: grcan: only use the NAPI poll budget for RX
caba5c13a892 can: grcan: grcan_probe(): fix broken system id check for errata workaround needs
76b64c690f03 nfp: bpf: silence bitwise vs. logical OR warning
86ccefb83ede drm/i915: Cast remain to unsigned long in eb_relocate_vma
de542bd76541 drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version, environment} types
e6ff94d31c53 block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit
f668da98ad83 MIPS: Use address-of operator on section symbols
01565c91b789 Linux 5.4.193
8a7f92053dc9 mmc: rtsx: add 74 Clocks in power on flow
d789b9891761 PCI: aardvark: Fix reading MSI interrupt number
253bc43ca5b7 PCI: aardvark: Clear all MSIs at setup
786dc86c8434 dm: interlock pending dm_io and dm_wait_for_bios_completion
ad1393b92e50 dm: fix mempool NULL pointer race when completing IO
40bcd39a0093 tcp: make sure treq->af_specific is initialized
9661bf674d6a ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock
37b12c16beb6 ALSA: pcm: Fix races among concurrent prealloc proc writes
2a559eec81ac ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls
08d1807f097a ALSA: pcm: Fix races among concurrent read/write and buffer changes
fbeb492694ce ALSA: pcm: Fix races among concurrent hw_params and hw_free calls
f098f8b9820f mm: fix unexpected zeroed page mapping with zram swap
c7337efd1d11 block-map: add __GFP_ZERO flag for alloc_page in function bio_copy_kern
9588ac2eddc2 net: ipv6: ensure we call ipv6_mc_down() at most once
367b49086b41 KVM: LAPIC: Enable timer posted-interrupt only when mwait/hlt is advertised
c2fadf2d0ab4 x86/kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume
8b78939f4b0b kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU
f455c8e657e3 NFSv4: Don't invalidate inode attributes on delegation return
89e7a625ec5c drm/amdkfd: Use drm_priv to pass VM from KFD to amdgpu
1d14c1c7a3bd net: igmp: respect RCU rules in ip_mc_source() and ip_mc_msfilter()
2b99ff4c3e3e btrfs: always log symlinks in full mode
dc4784489426 smsc911x: allow using IRQ0
cff6cb162f7a bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag
64ece01adb42 selftests: mirror_gre_bridge_1q: Avoid changing PVID while interface is operational
52401926c863 net: emaclite: Add error handling for of_address_to_resource()
354cac1e392b net: stmmac: dwmac-sun8i: add missing of_node_put() in sun8i_dwmac_register_mdio_mux()
0510b6ccfb4f net: ethernet: mediatek: add missing of_node_put() in mtk_sgmii_init()
102986592ffd RDMA/siw: Fix a condition race issue in MPA request processing
e6ae21eb948a ASoC: dmaengine: Restore NULL prepare_slave_config() callback
df3ea6cc1af5 hwmon: (adt7470) Fix warning on module removal
01d4363dd717 NFC: netlink: fix sleep in atomic bug when firmware download timeout
33d3e76fc7a7 nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs
85aecdef77f9 nfc: replace improper check device_is_registered() in netlink related functions
da9eb43b9a56 can: grcan: use ofdev->dev when allocating DMA memory
8b451b7d7e95 can: grcan: grcan_close(): fix deadlock
8f4246450a95 s390/dasd: Fix read inconsistency for ESE DASD devices
91193a2c2f4f s390/dasd: Fix read for ESE with blksize < 4k
1aa75808edd8 s390/dasd: prevent double format of tracks for ESE devices
061a424dd1c4 s390/dasd: fix data corruption for ESE devices
860db6cdc5be ASoC: meson: Fix event generation for G12A tohdmi mux
d4864e8c4ba8 ASoC: wm8958: Fix change notifications for DSP controls
6723ab2ed8bb ASoC: da7219: Fix change notifications for tone generator frequency
ac5894fb8626 genirq: Synchronize interrupt thread startup
8624e2c5af95 ACPICA: Always create namespace nodes using acpi_ns_create_node()
27183539cfac firewire: core: extend card->lock in fw_core_handle_bus_reset
2fefc6259861 firewire: remove check of list iterator against head past the loop body
34b9b9182911 firewire: fix potential uaf in outbound_phy_packet_callback()
f6b6e9336936 Revert "SUNRPC: attempt AF_LOCAL connect on setup"
d403ff32e566 gpiolib: of: fix bounds check for 'gpio-reserved-ranges'
94842485b4ec ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes
73ce49fa59a7 parisc: Merge model and model name into one line in /proc/cpuinfo
0d5bb59858c6 MIPS: Fix CP0 counter erratum detection for R4k CPUs
(From OE-Core rev: 7e056e79a5acce8261cb5124c172cc40ad608b82)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
|
||
|
Marta Rybczynska
|
e873840317 |
cve-update-db-native: make it possible to disable database updates
Make it possible to disable the database update completely by using a negative update interval CVE_DB_UPDATE_INTERVAL. Disabling the update is useful when running multiple parallel builds when we want to have a control on the database version. This allows coherent cve-check results without an database update for only some of the builds. (From OE-Core rev: 487a53522a739b9a52720c4c40b93f88ad77d242) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit b5c2269240327c2a8f93b9e55354698f52c976f3) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Marta Rybczynska
|
9868f99149 |
cve-check: add coverage statistics on recipes with/without CVEs
Until now the CVE checker was giving information about CVEs found for a product (or more products) contained in a recipe. However, there was no easy way to find out which products or recipes have no CVEs. Having no reported CVEs might mean there are simply none, but can also mean a product name (CPE) mismatch. This patch adds CVE_CHECK_COVERAGE option enabling a new type of statistics. Then we use the new JSON format to report the information. The legacy text mode report does not contain it. This option is expected to help with an identification of recipes with mismatched CPEs, issues in the database and more. This work is based on [1], but adding the JSON format makes it easier to implement, without additional result files. [1] https://lists.openembedded.org/g/openembedded-core/message/159873 (From OE-Core rev: c63d06becc340270573bdef2630749db1f5230d4) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit d1849a1facd64fa0bcf8336a0ed5fbf71b2e3cb5) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Marta Rybczynska
|
f2d12bc50b |
cve-check: write empty fragment files in the text mode
In the cve-check text mode output, we didn't write fragment files if there are no CVEs (if CVE_CHECK_REPORT_PATCHED is 1), or no unpached CVEs otherwise. However, in a system after multiple builds, cve_check_write_rootfs_manifest might find older files and use them as current, what leads to incorrect reporting. Fix it by always writing a fragment file, even if empty. (From OE-Core rev: 4c10ee956f21ea2f805403704ac3c54b7f1be78c) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit f1b7877acd0f6e3626faa57d9f89809cfcdfd0f1) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Marta Rybczynska
|
6cf824520a |
cve-check: move update_symlinks to a library
Move the function to a library, it could be useful in other places. (From OE-Core rev: c8a0e7ecee15985f7eed10ce9c86c48a77c5b7c5) Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit debd37abcdde8788761ebdb4a05bc61f7394cbb8) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Robert Joslyn
|
42bb9689a0 |
curl: Fix CVE_CHECK_WHITELIST typo
Fix typo to properly whitelist CVE-2021-22945. (From OE-Core rev: 7b2a1d908d3b63da5e9f072b61dd3c5fa91c7b8f) Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Robert Joslyn
|
7da79fcac2 |
curl: Backport CVE fixes
Backport patches to address CVE-2022-27774, CVE-2022-27781, and CVE-2022-27782. (From OE-Core rev: f8cdafc0ef54ab203164366ad96288fd10144b30) Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |
||
|
Richard Purdie
|
1be2437fd2 |
libxslt: Mark CVE-2022-29824 as not applying
We have libxml2 2.9.10 and we don't link statically against libxml2 anyway
so the CVE doesn't apply to libxslt.
(From OE-Core rev: c6315d8a2a1429a0fb7563b1d6352ceee7bc222c)
(From OE-Core rev: 9c736c9dcf5f18b8db082a0903be0acb3fbb51c2)
Signed-off-by: Omkar Patil <Omkar.Patil@kpit.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit
|
||
|
omkar patil
|
d3d92d7852 |
libxslt: Fix CVE-2021-30560
CVE: CVE-2021-30560 (From OE-Core rev: 3e01aa47b85ebeba26443fc3293c341b5ef72817) Signed-off-by: omkar patil <omkar.patil@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |