Validating certificate chains which contain DSA public keys can cause
programs to panic, due to a interface cast that assumes they implement
the Equal method. This affects programs which validate arbitrary certificate chains.
(From OE-Core rev: b532fa208d0b102326642a2fba8b17661a14307e)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Due to the design of the name constraint checking algorithm, the processing
time of some inputs scals non-linearly with respect to the size of the certificate.
This affects programs which validate arbitrary certificate chains.
(From OE-Core rev: ce1626d1f1e232bc6da81e89088d0c0f5f3c52b4)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Parsing a maliciously crafted DER payload could allocate large amounts of memory,
causing memory exhaustion.
(From OE-Core rev: f27acc863ee34b56e2c49dc96ad2b58fb35e2d46)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When recreating the uri in wget's checkstatus method, we only use the
scheme, host and path. This completely strips the query parameters from
the final URI and potentially breaks the checking functionality for
URLs that require query parameters (such as the AZ fetcher with SAS
token).
This bug was resolved on master in
`096301250455e2a83bdd818a56317c62436c9981`.
This patch is adapted to the scarthgap branch.
CC: Steve Sakoman <steve@sakoman.com>
(Bitbake rev: 8dcf084522b9c66a6639b5f117f554fde9b6b45a)
Signed-off-by: Philippe-Alexandre Mathieu <pamathieu@poum.ca>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There is the following warning when executing to bitbake linux-yocto:
bitbake/lib/bb/fetch2/__init__.py:464: DeprecationWarning: 'count' is passed as positional argument
This is because the 4th parameter of re.sub(pattern, repl, string, count=0, flags=0)
is a keyword parameter. We use keyword arguments for parameters that are not positional.
(Bitbake rev: c2a54aceab4c75cea6f8be16fe6d0caed12b32c4)
Signed-off-by: Bin Lan <bin.lan.cn@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Chris Laplante <chris.laplante@agilent.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
kernel commit bfb713ea53c7 ("perf tools: Fix arm64 build by generating unistd_64.h")
introduces a new dependency on source files for arm64, specifically
include/uapi/asm-generic.
Build fails with:
[..]/perf/1.0/perf-1.0/scripts/Makefile.asm-headers:33: [...]/perf/1.0/perf-1.0/include/uapi/asm-generic/Kbuild: No such file or directory
make[4]: *** No rule to make target '[...]/perf/1.0/perf-1.0/include/uapi/asm-generic/Kbuild'. Stop.
Add the directory to PERF_SRC.
Fix whitespace error while at it.
(From OE-Core rev: 06d4981313ce67a8d53b1c14be9845b4b5a9f4cf)
Signed-off-by: Yannic Moog <y.moog@phytec.de>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Passing params as numbers to hwclock is broken in util-linux 2.39.3 due
to wrong pointer handling. So backport the fix from upstream included
since util-linux 2.41.
(From OE-Core rev: 3d8f88906f5560286462eaf55226b872e2805df7)
Signed-off-by: Bastian Krause <bst@pengutronix.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
An error occurred in backport commit
649147913e89cd8f7390cb17cd0be94c9710ffa6. The test file
is empty and has no functionality at all.
(From OE-Core rev: 0539a7869c4a3e28b3e7d0ab93fe07bfb9462d13)
Signed-off-by: Michael Haener <michael.haener@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick patches as listed in NVD CVE report.
Note that Debian lists one of the patches as introducing the
vulnerability. This is against what the original report [1] says.
Also the commit messages provide hints that the first patch fixes this
issue and second is fixing problem with the first patch.
[1] https://jvn.jp/en/jp/JVN19358384/
(From OE-Core rev: a157719ab349d9393d5a640bb2e45fc2489d5338)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Added by commit e478550c8cd8 ("openssl/fontconfig/bzip2: Use relative
symlinks instead of absolute ones (using a new class)") in OE-Core.
(From yocto-docs rev: a8687e4bb2e822670b6ad110613a12fa02943d3d)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit c0dc554eba7d421023ecc68a70b7a19df38628b0)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Mention the use of USE_NLS, INHIBIT_DEFAULT_DEPS and the cross-canadian
class.
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: b16f19e8004d571e7a6eadfa34983781ba6a7634)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d877e54f1c85cefc00dd674d60f2db81446bd95a)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Part of bitbake.conf, this variable allowing to enable or disable
translation was undocumented. Add a entry to the glossary.
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: 675b776390c8079deb8f1912dac44b574688a9c7)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 92a55345a56b5038c0344669daaa7a3a99dd0fc0)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Can be used in recipes that want to explicitly skip Ccache support when
the ccache class is enabled.
Reviewed-by: Quentin Schulz <quentin.schulz@cherry.de>
(From yocto-docs rev: e4fb6cd20955046a397b63bfe57f6cb4020b9cbb)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit b1b4adc8d4d9d23ff6fd91bca632bb0f5277e72b)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
- drop references to obsolete tar packaging format
- add references to apt and dpkg utilities for .deb packaging
- add reference to alternative "dnf" .rpm packaging
(From yocto-docs rev: d1331418317576b569ea2b046adf46ec7af8a15a)
Signed-off-by: Robert P. J. Day <rpjday@crashcourse.ca>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit d4374ac86ebe7980908ed905018ccfb773ac666e)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This variable does not apply to the scope of a single recipe, but rather
to the scope of the entire layer.
(From yocto-docs rev: a86f2e5d291b86dbf56aefab08f4d3b0e5529801)
Signed-off-by: João Marcos Costa <joaomarcos.costa@bootlin.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit eec26e11adb6e3a9c4f53f825b9a1730c9ddee12)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The current autobuilder cluster is at valkyrie.yocto.io, published files
on autobuilder.yocto.io will be missing or out-of-date.
(From yocto-docs rev: b3b95e590248025d59a7cef311bb0abf207e72fb)
Signed-off-by: Paul Barker <paul@pbarker.dev>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
(cherry picked from commit 9ed06c070e309b52f1dbf8877867dcede79f4cb6)
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This CVE is for the tool which is removed in v4.6.0 via [1] and
re-introduced again in v4.7.0 via [2].
[1] eab89a627f
[2] 9ab54a8580
(From OE-Core rev: 1ff4b39374a5b328069a928e7234c3397769dc6f)
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE: CVE-2025-8225
It is possible with fuzzed files to have num_debug_info_entries zero
after allocating space for debug_information, leading to multiple
allocations.
* dwarf.c (process_debug_info): Don't test num_debug_info_entries
to determine whether debug_information has been allocated,
test alloc_num_debug_info_entries.
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4]
(From OE-Core rev: 7feed679262025b8405488d064e2c546a3ed7a0c)
Signed-off-by: Yash Shinde <Yash.Shinde@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Prevent attackers to cause a denial of service (application crash) or
possibly have unspecified other impact when the application processes
untrusted LZ4 frames. For example, LZ4F_createCDict_advanced in
lib/lz4frame.c mishandles NULL checks.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-62813
Upstream patch:
f64efec011
(From OE-Core rev: 0a63e3e120cc6958e2963a3ad510ec7c03f1adae)
Signed-off-by: David Nyström <david.nystrom@est.tech>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
In native/nativesdk builds, sysconfdir refers to a recipe sysroot
directory, which will disappear once the workdir is cleaned up, breaking
libcurl's HTTPS connections.
By simply not setting --with-ca-bundle at all in non-target builds, curl
defaults to the host system's CA certificates, which is desirable anyways
to allow builds in environments that require local CA certificates.
(From OE-Core rev: 4909a46e93ba774c960c3d3c277e2a669af3fea6)
(From OE-Core rev: 0f98fecda8a0436f760e6fd9f3b7eb510e5258b8)
Signed-off-by: Matthias Schiffer <matthias.schiffer@ew.tq-group.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When building an image including iptable built with the libnftnl
PACKAGECONFIG, one hits
Downloading file:.../oe-rootfs-repo/armv8a/libkmod2 * check_data_file_clashes: Package iptables wants to install file .../rootfs/etc/ethertypes
But that file is already provided by package * netbase
This used to be handled by
0003-Makefile.am-do-not-install-etc-ethertypes.patch, but that patch
got removed with the 1.8.9->1.8.10 upgrade (commit 4616ada82e70).
I think the rationale for dropping the patch was wrong; the commit log
talks about xtables.conf, which is indeed gone from upstream, but said
patch didn't change anything about xtables.conf, it did
-dist_conf_DATA = etc/ethertypes etc/xtables.conf
+dist_conf_DATA = etc/xtables.conf
However, instead of patching iptables to not install ethertypes, and
having to forward-port that patch, it is much simpler to just remove
the file in this do_install:append.
(From OE-Core rev: a970b6c927fb4c04473484f6e4b0a9853c8a5896)
Signed-off-by: Rasmus Villemoes <rasmus.villemoes@prevas.dk>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Uwe Kleine-König <u.kleine-koenig@baylibre.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There is a bug in GStreamer 1.22 that prevents video playback when
some of the v4l2codecs are paired with sinks that do not support
GstVideoMeta. This is the case of the Qt 6.9 sink used by some
of the Qt components.
For example, when the v4l2codecs-vp8dec decoder is paired with
QMediaPlayer, video playback fails to start with the following error:
WARN videodecoder gstvideodecoder.c:4409:gst_video_decoder_negotiate_pool: Subclass failed to decide allocation
ERROR videodecoder gstvideodecoder.c:4635:gst_video_decoder_allocate_output_buffer: Failed to allocate the buffer..
WARN videodecoder gstvideodecoder.c:4409:gst_video_decoder_negotiate_pool: Subclass failed to decide allocation
WARN matroskademux matroska-demux.c:6131:gst_matroska_demux_loop: error: Internal data stream error.
WARN matroskademux matroska-demux.c:6131:gst_matroska_demux_loop: error: streaming stopped, reason not-negotiated (-4)
This problem is already fixed in GStreamer 1.24, so backport the fix.
This fixes the buffer allocation failure for H.264, H.265, and VP8.
CC: Steve Sakoman <steve@sakoman.com>
CC: Anuj Mittal <anuj.mittal@intel.com>
(From OE-Core rev: 1be0de000bb852f1acc9644c1cb702336d7fdd61)
Signed-off-by: Daniel Semkowicz <dse@thaumatec.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability, which was classified as problematic, has been found in GNU elfutils
0.192. This issue affects the function gelf_getsymshndx of the file strip.c of the
component eu-strip. The manipulation leads to denial of service. The attack needs to
be approached locally. The exploit has been disclosed to the public and may be used.
The identifier of the patch is fbf1df9ca286de3323ae541973b08449f8d03aba. It is
recommended to apply a patch to fix this issue.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-1377
Upstream patch:
https://sourceware.org/git/?p=elfutils.git;a=fbf1df9ca286de3323ae541973b08449f8d03aba
(From OE-Core rev: ae89d0c2ca49c40429f787577d280b5886f42cc1)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability classified as problematic was found in GNU elfutils 0.192. This
vulnerability affects the function elf_strptr in the library /libelf/elf_strptr.c
of the component eu-strip. The manipulation leads to denial of service. It is
possible to launch the attack on the local host. The complexity of an attack is
rather high. The exploitation appears to be difficult. The exploit has been
disclosed to the public and may be used. The name of the patch is
b16f441cca0a4841050e3215a9f120a6d8aea918. It is recommended to apply a patch to
fix this issue.
Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-1376
Upstream patch:
https://sourceware.org/git/?p=elfutils.git;a=commit;h=b16f441cca0a4841050e3215a9f120a6d8aea918
(From OE-Core rev: 06e3cd0891f553b0ed036d9247dfa7c5ed814d78)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pick patch from PR mentioning this CVE [1]
It's a complex patch so I have checked diff of 2.6.4 and commit before
these patches landed. There were no changes in memory allocations.
Also version in scarthgap is still not that much different from current
upstream master.
Ptests pass.
Also picked one documentation commit (-00) to resolve patch conflict.
Following conflicts were resolved manually:
* commit "mass-cppcheck.sh: Activate in-code suppression comments" was
skipped as it only edited github actions not yet available in 2.6.4
* commit "lib: Implement tracking of dynamic memory allocations"
ale had conflict in github actions not yet available in 2.6.4
* commit "fuzz: Be robust towards NULL return from XML_ExternalEntityParserCreate"
edited file "expat/fuzz/xml_lpm_fuzzer.cpp" which is not present in
our version yet. Since we're not using fuzzying, this is not needed.
* the final changelog commit needed lot conflict resolution actions
Finally picked PR fixing regression [2] together with two minor commits
to have a clean cherry-picks.
Also here the Changes commit needed conflict resolution.
[1] https://github.com/libexpat/libexpat/pull/1034
[2] https://github.com/libexpat/libexpat/pull/1048
(From OE-Core rev: 684d3cdbc08ce41dc1f92e1f228eee34bc2bc1fe)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2025-6018 is a local privilege escalation in PAM that requires
`user_readenv=1` to be enabled in the PAM configuration. The default
configuration does not enable reading user environment files (user_readenv
is 0 by default). Hence this vulnerability cannot be exploited using the
default configuration.
(From OE-Core rev: 3f2a9ad03326dc87681cf47ed5f73712ebaa624c)
Signed-off-by: Anders Heimer <anders.heimer@est.tech>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The filename is outdated as its version was already bumped and there are
also different files for different feed choices.
Use glob to match any available file.
(From yocto-docs rev: 6cd7492bf83232744390f34e496367e94b63e701)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Antonin Godard <antonin.godard@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
If SLIRP is being used instead of TAP for networking to the guest then
the target IP will be localhost. There's no point in pinging localhost
to see if the target is up but whilst you'd think it is harmless, in
some containers ping doesn't actually have enough rights to work:
ping: socktype: SOCK_RAW
ping: socket: Operation not permitted
ping: => missing cap_net_raw+p capability or setuid?
Look at the target address and if it's localhost or 127.0.0.* return
immediately.
(Backport from OE-Core rev: a06ef43d2a50e16c32bd6edbdc7b32c3528687d5)
(From OE-Core rev: 649147913e89cd8f7390cb17cd0be94c9710ffa6)
Signed-off-by: Michael Haener <michael.haener@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
There is a bug libicu that causes libicu to be installed incorrectly when
the build system uses long paths (more than 512 chars).
This condition is not very difficult to trigger on a OE build system
due to the long paths an the deep of the directories that are usually
generated by default.
Also the bug is very subtle and won't be detected by the QA post-install
processes because what this bug causes is that a different version of
libicudata.so.X.Y (one without data) is installed instead of the one
containing the data, but there won't be any file missed on the installation
(just that it installed the wrong one).
See: https://unicode-org.atlassian.net/browse/ICU-22813
This patch backports the fix from upstream/main
(From OE-Core rev: 67d1352873957decacde30ff208fb7bb635b0c5d)
(From OE-Core rev: 0860992436092f7651e22e2b894f0d0a365a9bb0)
Signed-off-by: Carlos Alberto Lopez Perez <clopez@igalia.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Benjamin Hahn <B.Hahn@phytec.de>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Drop upstreamed patch and refresh remaining patches.
Release information:
* https://www.python.org/downloads/release/python-31212/
* The release you're looking at is Python 3.12.12, a security bugfix
release for the legacy 3.12 series.
Handles CVE-2025-59375.
(From OE-Core rev: f1234b8451ba843b5f9ec1d2066c21f54d6bc3b8)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
655054d2c3c1 Linux 6.6.111
3d3abf3f7e8b KVM: x86: Don't (re)check L1 intercepts when completing userspace I/O
284e67a93b8c net/9p: fix double req put in p9_fd_cancelled
ab172f4f4262 crypto: rng - Ensure set_ent is always present
f5f235be7612 riscv: mm: Do not restrict mmap address based on hint
1602c9b4578a riscv: mm: Use hint address in mmap if available
e242e52fdfe4 driver core/PM: Set power.no_callbacks along with power.no_pm
e857421992ce staging: axis-fifo: flush RX FIFO on read errors
a3c71d6c8332 staging: axis-fifo: fix TX handling on copy_from_user() failure
6d953e9d3981 staging: axis-fifo: fix maximum TX packet length check
bfeea103cad9 serial: stm32: allow selecting console when the driver is module
cb7630e714d6 hid: fix I2C read buffer overflow in raw_event() for mcp2221
dc4874366cf6 ALSA: usb-audio: fix race condition to UAF in snd_usbmidi_free
647410a7da46 ALSA: usb-audio: Kill timer properly at removal
97e87f367c91 platform/x86/amd/pmc: Add Stellaris Slim Gen6 AMD to spurious 8042 quirks list
bf28f5db40d5 can: rcar_canfd: Fix controller mode setting
e93af787187e can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled
03510f5fce33 btrfs: ref-verify: handle damaged extent root tree
bcccd0220751 ASoC: rt5682s: Adjust SAR ADC button mode to fix noise issue
081f14b9a3eb perf subcmd: avoid crash in exclude_cmds when excludes is empty
6d59f7467f83 platform/x86/amd/pmc: Add MECHREVO Yilong15Pro to spurious_8042 list
4b91d0c5781a dm-integrity: limit MAX_TAG_SIZE to 255
7f7187118bb5 ASoC: amd: acp: Adjust pdm gain value
8281c2a63bbc wifi: rtlwifi: rtl8192cu: Don't claim USB ID 07b8:8188
96dc17ae64b1 USB: serial: option: add SIMCom 8230C compositions
228d06c4cbfc media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe
71ed8b81a490 media: tuner: xc5000: Fix use-after-free in xc5000_release
f82dc869220d media: tunner: xc5000: Refactor firmware load
250b6e009ff9 KVM: arm64: Fix softirq masking in FPSIMD register saving sequence
(From OE-Core rev: 2a947cb13d0d46747f14aa6a1aa39a486459ee8a)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
f34f16e5c6323 Linux 6.6.109
eb53056323f13 drm/i915/backlight: Return immediately when scale() finds invalid parameters
4529bb0b6be3d minmax.h: remove some #defines that are only expanded once
1a899044a0f5a minmax.h: simplify the variants of clamp()
9955044f552b5 minmax.h: move all the clamp() definitions after the min/max() ones
26c3d697becf3 minmax.h: use BUILD_BUG_ON_MSG() for the lo < hi test in clamp()
511e7d2e4d51f minmax.h: reduce the #define expansion of min(), max() and clamp()
85d619594313e minmax.h: update some comments
6012f69bf7495 minmax.h: add whitespace around operators and after commas
46648b94e6ebb minmax: fix up min3() and max3() too
f0be4c5dc213d minmax: improve macro expansion and type checking
7194a302345da minmax: don't use max() in situations that want a C constant expression
bb63c996c2db0 minmax: simplify min()/max()/clamp() implementation
6183c6579356a minmax: make generic MIN() and MAX() macros available everywhere
c0c83f4cd074b i40e: add validation for ring_len param
6e4251690710d i40e: increase max descriptors for XL710
7ea47a560a7a3 drm/ast: Use msleep instead of mdelay for edid read
ed6fa21f68973 gpiolib: Extend software-node support to support secondary software-nodes
457d2c5e112fd loop: Avoid updating block size under exclusive owner
78f579cb7d825 mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize()
e7a85efb873fa mm: migrate_device: use more folio in migrate_device_finalize()
684a9a995748c ARM: bcm: Select ARM_GIC_V3 for ARCH_BRCMSTB
53888cd32a3f6 s390/cpum_cf: Fix uninitialized warning after backport of ce971233242b
09e3bda3a7ba2 fbcon: Fix OOB access in font allocation
adac90bb1aaf4 fbcon: fix integer overflow in fbcon_do_set_font
c9c2a51f91aea mm/hugetlb: fix folio is still mapped when deleted
df1fa034c0fc2 kmsan: fix out-of-bounds access to shadow memory
cab278cead49a afs: Fix potential null pointer dereference in afs_put_server
58d304a89178d ARM: dts: socfpga: sodia: Fix mdio bus probe and PHY address
3887f3814c0e7 tracing: dynevent: Add a missing lockdown check on dynevent
8703940bd30b5 crypto: af_alg - Fix incorrect boolean values in af_alg_ctx
b769490521cf9 i40e: improve VF MAC filters accounting
b247cdd04750e i40e: add mask to apply valid bits for itr_idx
edecce7abd715 i40e: add max boundary check for VF filters
e748f1ee493f8 i40e: fix validation of VF state in get resources
3883e9702b6a4 i40e: fix input validation logic for action_meta
2cc26dac0518d i40e: fix idx validation in config queues msg
50a1e2f50f6c2 i40e: fix idx validation in i40e_validate_queue_map
3cefd898b7aa1 HID: asus: add support for missing PX series fn keys
ba7bcfd52c66d smb: client: fix wrong index reference in smb2_compound_op()
348736955ed6c futex: Prevent use-after-free during requeue-PI
6ffa6b5bc861a drm/gma500: Fix null dereference in hdmi teardown
df2c071061ed5 octeontx2-pf: Fix potential use after free in otx2_tc_add_flow()
7b209698e648b net: dsa: lantiq_gswip: suppress -EINVAL errors for bridge FDB entries added to the CPU port
816d30afbad52 net: dsa: lantiq_gswip: move gswip_add_single_port_br() call to port_setup()
a7a2b29c1ee44 net: dsa: lantiq_gswip: do also enable or disable cpu port
be0bd592298f8 selftests: fib_nexthops: Fix creation of non-FDB nexthops
24046d31f6f92 nexthop: Forbid FDB status change while nexthop is in a group
31ae2fbc9fcb9 net: allow alloc_skb_with_frags() to use MAX_SKB_FRAGS
98a76bd96f382 bnxt_en: correct offset handling for IPv6 destination address
82a1463c968b1 vhost: Take a reference on the task in struct vhost_task.
bcce99f613163 Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync
6a0070c5c3ad3 Bluetooth: hci_sync: Fix hci_resume_advertising_sync
c957284701353 ethernet: rvu-af: Remove slash from the driver name
17edec1830e48 can: peak_usb: fix shift-out-of-bounds issue
3664ae91b26d1 can: mcba_usb: populate ndo_change_mtu() to prevent buffer overflow
2e423e1990f39 can: sun4i_can: populate ndo_change_mtu() to prevent buffer overflow
be1b25005fd0f can: hi311x: populate ndo_change_mtu() to prevent buffer overflow
cbc1de71766f3 can: etas_es58x: populate ndo_change_mtu() to prevent buffer overflow
0baf92d0b1590 xfrm: xfrm_alloc_spi shouldn't use 0 as SPI
f64abeebf763c bpf: Reject bpf_timer for PREEMPT_RT
865eec09b6e44 can: rcar_can: rcar_can_resume(): fix s2ram with PSCI
210b91bfe355b wifi: virt_wifi: Fix page fault on connect
c5be7edd42602 smb: server: don't use delayed_work for post_recv_credits_work
6017196aabf1d cpufreq: Initialize cpufreq-based invariance before subsys
35bb271de241d ARM: dts: kirkwood: Fix sound DAI cells for OpenRD clients
ebe7a2e46d189 arm64: dts: imx8mp: Correct thermal sensor index
1744aff07b833 mm: folio_may_be_lru_cached() unless folio_test_large()
d37ec803b2813 mm/gup: local lru_add_drain() to avoid lru_add_drain_all()
768c44cc8b638 mm/gup: check ref_count instead of lru before migration
dc58ab1eb90c9 mm: add folio_expected_ref_count() for reference count calculation
4ed203f79821c mm/gup: revert "mm: gup: fix infinite loop within __get_longterm_locked"
df2580fbcedea IB/mlx5: Fix obj_type mismatch for SRQ event subscriptions
943754ad81131 ALSA: usb-audio: Add mute TLV for playback volumes on more devices
0aac2fa4d0c75 ALSA: usb-audio: move mixer_quirks' min_mute into common quirk
ea6016c9ec61d ALSA: usb-audio: Add DSD support for Comtrue USB Audio device
b61b90b07416f i2c: designware: Add quirk for Intel Xe
41ea28a2de255 mmc: sdhci-cadence: add Mobileye eyeQ support
306697a775fbc usb: core: Add 0x prefix to quirks debug output
dc77154e83048 ALSA: usb-audio: Fix build with CONFIG_INPUT=n
a3961b1f7f79e ALSA: usb-audio: Convert comma to semicolon
d04d301614630 ALSA: usb-audio: Add mixer quirk for Sony DualSense PS5
8fa69bd18148e ALSA: usb-audio: Remove unneeded wmb() in mixer_quirks
9db2614986bd0 ALSA: usb-audio: Simplify NULL comparison in mixer_quirks
e8c605fece5b9 ALSA: usb-audio: Avoid multiple assignments in mixer_quirks
bafc648b82c3b ALSA: usb-audio: Drop unnecessary parentheses in mixer_quirks
08a96e22bd37f ALSA: usb-audio: Fix block comments in mixer_quirks
18f9e77de5272 firewire: core: fix overlooked update of subsystem ABI version
ca3e48e96816c scsi: ufs: mcq: Fix memory allocation checks for SQE and CQE
(From OE-Core rev: 5234d795417f97cfce7bcd891e7bdeabc6f36e9e)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
147338df3487 Linux 6.6.108
42a6aeb4b238 Revert "loop: Avoid updating block size under exclusive owner"
06146c26f5cf minmax: add a few more MIN_T/MAX_T users
af8b531ecfd4 minmax: simplify and clarify min_t()/max_t() implementation
2d396aa8264d minmax: avoid overly complicated constant expressions in VM code
532733ff82b9 mptcp: propagate shutdown to subflows when possible
3ef938f6f0b3 rtc: pcf2127: fix SPI command byte for PCF2131 backport
075abf0b1a95 iommu/amd/pgtbl: Fix possible race while increase page table level
564f2312e2ff xhci: dbc: Fix full DbC transfer ring after several reconnects
3c6dd29a460f xhci: dbc: decouple endpoint allocation from initialization
27b04564f7a3 phy: ti: omap-usb2: fix device leak at unbind
34a8d5a198bb phy: Use device_get_match_data()
0ee0ef483aae selftests: mptcp: userspace pm: validate deny-join-id0 flag
650150cc9a3e mptcp: pm: nl: announce deny-join-id0 flag
a6157484bee3 vmxnet3: unregister xdp rxq info in the reset path
e7b7a9387955 smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path
2374c11189ef crypto: af_alg - Set merge to zero early in af_alg_sendmsg
6a075f80f303 drm: bridge: cdns-mhdp8546: Fix missing mutex unlock on error path
15a77e1ab0a9 drm: bridge: anx7625: Fix NULL pointer dereference with early IRQ
e6b0616a360f ASoC: SOF: Intel: hda-stream: Fix incorrect variable used in error message
7740da20a3a0 ASoC: wm8974: Correct PLL rate rounding
b4e8741955dc ASoC: wm8940: Correct typo in control name
b7e4884dd853 ASoC: wm8940: Correct PLL rate rounding
abc9f859a9ea io_uring: include dying ring in task_work "should cancel" state
c8e69b783bc4 io_uring: backport io_should_terminate_tw()
115e7d4d5ee8 ALSA: hda/realtek: Fix mute led for HP Laptop 15-dw4xx
0a3d5a4d4adc selftests: mptcp: avoid spurious errors on TCP disconnect
9ef1af5d4040 selftests: mptcp: connect: catch IO errors on listen side
666b49c848f1 rds: ib: Increment i_fastreg_wrs before bailing out
689aee35ce67 net: rfkill: gpio: Fix crash due to dereferencering uninitialized pointer
7e4c3cd7f0a1 KVM: SVM: Sync TPR from LAPIC into VMCB::V_TPR even if AVIC is active
6584e7ecfa7d mmc: mvsdio: Fix dma_unmap_sg() nents value
ac4e940dc7da ASoC: qcom: q6apm-lpass-dais: Fix missing set_fmt DAI op for I2S
411f7d4f7038 ASoC: qcom: q6apm-lpass-dais: Fix NULL pointer dereference if source graph failed
468bb23472b7 ASoC: qcom: audioreach: Fix lpaif_type configuration for the I2S interface
fc7bd02dadb8 btrfs: tree-checker: fix the incorrect inode ref size check
090b61b87420 iommu/vt-d: Fix __domain_mapping()'s usage of switch_to_super_page()
561eef41aaa3 LoongArch: Check the return value when creating kobj
2ff7ef2f71b4 LoongArch: Align ACPI structures if ARCH_STRICT_ALIGN enabled
fb6ee62d3082 LoongArch: Update help info of ARCH_STRICT_ALIGN
90c0ffa1e0d9 power: supply: bq27xxx: restrict no-battery detection to bq27000
84ac57c4bbfd power: supply: bq27xxx: fix error return in case of no bq27000 hdq battery
7c4491b5644e crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg
ee74d69af170 nilfs2: fix CFI failure when accessing /sys/fs/nilfs2/features/*
d3cb3f209d35 ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size
eb0378dde086 ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer
d2cfefa14ce8 octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp()
8eeb2091e72d cnic: Fix use-after-free bugs in cnic_delete_task
cd093e8bdcfe net: liquidio: fix overflow in octeon_init_instr_queue()
13f57d484676 Revert "net/mlx5e: Update and set Xon/Xoff upon port speed set"
4cefe5be7388 tls: make sure to abort the stream if headers are bogus
dfd06131107e tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect().
97d797c5fc6f bonding: don't set oif to bond dev when getting NS target destination
2cb17c88edd3 net/mlx5e: Harden uplink netdev access against device unbind
fd74bd40f1a4 net/mlx5e: Consider aggregated port speed during rate configuration
a7f10a466d36 i40e: remove redundant memory barrier when cleaning Tx descs
0255c5100470 net: natsemi: fix `rx_dropped` double accounting on `netif_rx()` failure
af114ef225e5 selftests: mptcp: sockopt: fix error messages
dedaa9bcf79c mptcp: tfo: record 'deny join id0' info
36d9f72e5d66 mptcp: set remote_deny_join_id0 on SYN recv
29a5fd482cd5 bonding: set random address only when slaves already exist
ea53e6a47e14 qed: Don't collect too many protection override GRC elements
2f4b68e7905e dpaa2-switch: fix buffer pool seeding for control traffic
4f364023ddcf um: virtio_uml: Fix use-after-free after put_device in probe
5d2c34ff78b8 btrfs: fix invalid extref key setup when replaying dentry
4a1e3ec28e80 cgroup: split cgroup_destroy_wq into 3 workqueues
9ba2b399dee2 pcmcia: omap_cf: Mark driver struct with __refdata to prevent section mismatch
eae22a2573a0 wifi: mac80211: fix incorrect type for ret
93e063f15e17 wifi: mac80211: increase scan_ies_len for S1G
0ffb49ba247c ALSA: firewire-motu: drop EPOLLOUT from poll return values as write is not supported
6085291a1a58 wifi: wilc1000: avoid buffer overflow in WID string configuration
(From OE-Core rev: 0b5c6e21160e54b3b571343d932614b23231e273)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
no ids found, dumping:
af1544b5d072 Linux 6.6.107
f075a33ef204 x86: disable image size check for test builds
23f24d0a538e drm/i915/power: fix size for for_each_set_bit() in abox iteration
0a87bf8bd5d7 drm/amdgpu: fix a memory leak in fence cleanup when unloading
d70b5910ca31 net: mdiobus: release reset_gpio in mdiobus_unregister_device()
cce57cd8c5de ksmbd: fix null pointer dereference in alloc_preauth_hash()
ce807c4c88d2 phy: ti-pipe3: fix device leak at unbind
7c89ea3ab302 phy: tegra: xusb: fix device and OF node leak at probe
221f6739369b dmaengine: dw: dmamux: Fix device reference leak in rzn1_dmamux_route_allocate
ebf6c7c908e5 dmaengine: qcom: bam_dma: Fix DT error handling for num-channels/ees
e0727853992a usb: gadget: midi2: Fix MIDI2 IN EP max packet size
a04b32b0ec1b usb: gadget: midi2: Fix missing UMP group attributes initialization
bea1946b6919 USB: gadget: dummy-hcd: Fix locking bug in RT-enabled kernels
26f296e4c497 xhci: fix memory leak regression when freeing xhci vdev devices depth first
0d861bc0b5c4 RISC-V: Remove unnecessary include from compat.h
156677ea10ba hrtimers: Unconditionally update target CPU base after offline timer migration
b1fa39fb3026 hrtimer: Rename __hrtimer_hres_active() to hrtimer_hres_active()
6276a6b2c84e hrtimer: Remove unused function
c504b5aaaaa5 regulator: sy7636a: fix lifecycle of power good gpio
1baed10553fc dmaengine: ti: edma: Fix memory allocation size for queue_priority_map
df82c7901513 dmaengine: idxd: Fix double free in idxd_setup_wqs()
f0e460925679 dmaengine: idxd: Fix refcount underflow on module unload
0e95ee7f532b dmaengine: idxd: Remove improper idxd_free
608c14c671a8 hsr: use hsr_for_each_port_rtnl in hsr_port_get_hsr
b072e32e0874 hsr: use rtnl lock when iterating over ports
72dbae1f2f21 net: hsr: Add VLAN CTAG filter support
64a58ae64da5 net: hsr: Add support for MC filtering at the slave device
94b050726288 can: xilinx_can: xcan_write_frame(): fix use-after-free of transmitted SKB
deedea599e87 can: j1939: j1939_local_ecu_get(): undo increment when j1939_local_ecu_get() fails
1e1adfffd3fe can: j1939: j1939_sk_bind(): call j1939_priv_put() immediately when j1939_local_ecu_get() failed
23431998a377 i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path
ff00b2ed7c64 igb: fix link test skipping when interface is admin down
e450b4966f72 docs: networking: can: change bcm_msg_head frames member to support flexible array
e6867c0ae100 tunnels: reset the GSO metadata before reusing the skb
5e84e18f6727 net: bridge: Bounce invalid boolopts
fe78891f296a net: fec: Fix possible NPD in fec_enet_phy_reset_after_clk_enable()
092e5703d400 Disable SLUB_TINY for build testing
8a8f093e621c USB: serial: option: add Telit Cinterion LE910C4-WWX new compositions
e88b7810b43e USB: serial: option: add Telit Cinterion FN990A w/audio compositions
bb3498089f86 dt-bindings: serial: brcm,bcm7271-uart: Constrain clocks
a0da801d3ea0 serial: sc16is7xx: fix bug in flow control levels init
1e92afef6061 tty: hvc_console: Call hvc_kick in hvc_write unconditionally
af253b1a5daa Revert "net: usb: asix: ax88772: drop phylink use in PM to avoid MDIO runtime PM wakeups"
7bd41f9c96dd Input: i8042 - add TUXEDO InfinityBook Pro Gen10 AMD to i8042 quirk table
27e126072ee0 Input: iqs7222 - avoid enabling unused interrupts
854baafc00c4 kernfs: Fix UAF in polling when open file is released
5de7b4141af1 cifs: fix pagecache leak when do writepages
9f4b38ad41d6 mm/khugepaged: fix the address passed to notifier on testing young
c95c22402b00 mm/khugepaged: convert hpage_collapse_scan_pmd() to use folios
394547b9113f btrfs: fix corruption reading compressed range when block size is smaller than page size
a29f891d4f37 btrfs: use readahead_expand() on compressed extents
7bb675c9f025 mm/damon/lru_sort: avoid divide-by-zero in damon_lru_sort_apply_parameters()
9fe0415156fb mm/damon/reclaim: avoid divide-by-zero in damon_reclaim_apply_parameters()
60d7a3d2b985 mm/damon/sysfs: fix use-after-free in state_show()
23538cfbeed8 libceph: fix invalid accesses to ceph_connection_v1_info
b97edd195442 mtd: nand: raw: atmel: Respect tAR, tCLR in read setup timing
252bc25d7aac mtd: nand: raw: atmel: Fix comment in timings preparation
cfdde9197ecd drm/amdgpu/vcn4: Fix IB parsing with multiple engine info packages
9adb902be26b drm/amdgpu/vcn: Allow limiting ctx to instance 0 for AV1 at any time
b2fbe0f9f80b drm/mediatek: fix potential OF node use-after-free
6632845292a4 mm/damon/core: set quota->charged_from to jiffies at first charge window
3d278e89c2ea mm/memory-failure: fix VM_BUG_ON_PAGE(PagePoisoned(page)) when unpoison memory
8577ded2ee3d fuse: prevent overflow in copy_file_range return value
01e1eba64860 fuse: check if copy_file_range() returns larger than requested size
c50336dfcb24 mtd: rawnand: stm32_fmc2: fix ECC overwrite
06d8ef8f8537 mtd: rawnand: stm32_fmc2: avoid overlapping mappings on ECC buffer
31dc1603aa43 net: usb: asix: ax88772: drop phylink use in PM to avoid MDIO runtime PM wakeups
9d55370cc4e2 i2c: i801: Hide Intel Birch Stream SoC TCO WDT
0709bc11b942 ocfs2: fix recursive semaphore deadlock in fiemap call
8345a93b9bda mptcp: sockopt: make sync_socket_options propagate SOCK_KEEPOPEN
e69f61b8c08e compiler-clang.h: define __SANITIZE_*__ macros only when undefined
deedce87471e Revert "SUNRPC: Don't allow waiting for exiting tasks"
6f628d7dd8ac EDAC/altera: Delete an inappropriate dma_free_coherent() call
2089d8a316f4 KVM: SVM: Set synthesized TSA CPUID flags
2b8a1969cae5 rcu-tasks: Maintain real-time response in rcu_tasks_postscan()
d89abc4fbee8 rcu-tasks: Eliminate deadlocks involving do_exit() and RCU tasks
4e86206b6967 rcu-tasks: Maintain lists to eliminate RCU-tasks/do_exit() deadlocks
8be3d52101b0 proc: fix type confusion in pde_set_flags()
66bcb04a441f tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork.
449682e76f32 bpf: Tell memcg to use allow_spinning=false path in bpf_timer_init()
d660c8d8142e s390/cpum_cf: Deny all sampling events by counter PMU
1262bda871da tracing: Silence warning when chunk allocation fails in trace_pid_write
69d99a936f00 NFSv4/flexfiles: Fix layout merge mirror check.
c288e4c39d21 NFSv4.2: Serialise O_DIRECT i/o and copy range
9f2fdb18d0bf NFSv4.2: Serialise O_DIRECT i/o and clone range
4089fd70a508 NFSv4.2: Serialise O_DIRECT i/o and fallocate()
320a0954e2c8 NFS: Serialise O_DIRECT i/o and truncate()
275d9fd06d96 fs/nfs/io: make nfs_start_io_*() killable
06c26a679029 ftrace/samples: Fix function size computation
f7ec68cc74d8 tracing: Fix tracing_marker may trigger page fault during preempt_disable
781ec30354e6 NFSv4: Clear the NFS_CAP_XATTR flag if not supported by the server
b39234ede545 NFSv4: Clear the NFS_CAP_FS_LOCATIONS flag if it is not set
a022c9a46455 NFSv4: Don't clear capabilities that won't be reset
9339b4e75a81 SUNRPC: call xs_sock_process_cmsg for all cmsg
fd00ae04c5aa flexfiles/pNFS: fix NULL checks on result of ff_layout_choose_ds_for_read
0214b96a6a63 ima: limit the number of ToMToU integrity violations
905d43b8ad24 net: Fix null-ptr-deref by sock_lock_init_class_and_name() and rmmod.
9da2a9d3ccd8 media: i2c: imx214: Fix link frequency validation
817a962db3f3 NFSD: nfsd_unlink() clobbers non-zero status returned from fh_fill_pre_attrs()
913ff520714f nfsd: Fix a regression in nfsd_setattr()
392260eb8e67 kasan: fix GCC mem-intrinsic prefix with sw tags
d699575d00ff mm: introduce and use {pgd,p4d}_populate_kernel()
3f8810b2d22d kunit: kasan_test: disable fortify string checker on kasan_strings() test
(From OE-Core rev: 4964bdf8bf8b4c889928478db3e0d901e748fe55)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
no ids found, dumping:
60a9e718726f Linux 6.6.106
3b9e7e5c5298 x86/vmscape: Add old Intel CPUs to affected list
1e1dc1f9edb9 x86/vmscape: Warn when STIBP is disabled with SMT
a5d029f1152a x86/bugs: Move cpu_bugs_smt_update() down
34e566704105 x86/vmscape: Enable the mitigation
f866eef8d1c6 x86/vmscape: Add conditional IBPB mitigation
813cb831439c x86/vmscape: Enumerate VMSCAPE bug
9d1677060428 Documentation/hw-vuln: Add VMSCAPE documentation
fe9731e10004 Linux 6.6.105
be4e6a221467 spi: fsl-qspi: Fix double cleanup in probe error path
054a444b4c17 dmaengine: mediatek: Fix a flag reuse error in mtk_cqdma_tx_status()
b718de5904a6 cpufreq: intel_pstate: Check turbo_is_disabled() in store_no_turbo()
d0b26a9f5742 cpufreq: intel_pstate: Read global.no_turbo under READ_ONCE()
a44d0904d673 cpufreq: intel_pstate: Rearrange show_no_turbo() and store_no_turbo()
524ee2606a30 riscv: use lw when reading int cpu in asm_per_cpu
522ffe298627 mm: slub: avoid wake up kswapd in set_track_prepare
ad2df864033e slub: Reflow ___slab_alloc()
c866c40d07c4 tools: gpio: remove the include directory on make clean
3c331f7fc5b6 tools: gpio: rm .*.cmd on make clean
7e4f8e09d577 drm/amd/amdgpu: Fix missing error return on kzalloc failure
718c248902dd drm/amdgpu: Replace DRM_* with dev_* in amdgpu_psp.c
c9c4635a6d55 perf bpf-event: Fix use-after-free in synthesis
85da7f36d9a0 drm/bridge: ti-sn65dsi86: fix REFCLK setting
1a7d3947a5dd spi: spi-fsl-lpspi: Clear status register after disabling the module
cd53048e7460 spi: spi-fsl-lpspi: Reset FIFO and disable module on transfer abort
a339956545a5 spi: spi-fsl-lpspi: Set correct chip-select polarity bit
a786ef5f693b spi: spi-fsl-lpspi: Fix transmissions when using CONT
2313baff36d0 hwmon: mlxreg-fan: Prevent fans from getting stuck at 0 RPM
8699358b6ac9 pcmcia: Add error handling for add_interval() in do_validate_mem()
3ee8f5c8938f pcmcia: omap: Add missing check for platform_get_resource
8d7ee56bf530 Revert "drm/amdgpu: Avoid extra evict-restore process."
b9cf42a8f034 ALSA: hda/realtek: Fix headset mic for TongFang X6[AF]R5xxY
5f46882be912 ALSA: hda/hdmi: Add pin fix for another HP EliteDesk 800 G4 model
7d98166183d6 drm/mediatek: Fix device/node reference count leaks in mtk_drm_get_all_drm_priv
2c6c9d319017 drm/mediatek: Fix using wrong drm private data to bind mediatek-drm
13d0854e3538 drm/mediatek: Add crtc path enum for all_drm_priv array
d5875a478b1b vmxnet3: update MTU after device quiesce
5174ea81d6ca net: dsa: microchip: linearize skb for tail-tagging switches
3b6a5df36604 net: dsa: microchip: update tag_ksz masks for KSZ9477 family
16fea5067092 dmaengine: mediatek: Fix a possible deadlock error in mtk_cqdma_tx_status()
dd2b7abd0da3 ALSA: hda/realtek - Add new HP ZBook laptop with micmute led fixup
7df63b5ddd07 ALSA: hda/realtek: Add support for HP Agusta using CS35L41 HDA
47aba94a924c iio: pressure: mprls0025pa: use aligned_s64 for timestamp
e791bf216c9e iio: light: opt3001: fix deadlock due to concurrent flag access
91da53307391 iio: chemical: pms7003: use aligned_s64 for timestamp
fb6a7c1da207 iio: imu: inv_mpu6050: align buffer for timestamp
977849e8acd2 btrfs: adjust subpage bit start based on sectorsize
b088ae4e4184 PCI/MSI: Add an option to write MSIX ENTRY_DATA before any reads
30d201ee3a37 thermal/drivers/mediatek/lvts: Disable low offset IRQ for minimum threshold
50ae352c1848 spi: fsl-qspi: use devm function instead of driver remove
0ef7058b4dc6 mm/slub: avoid accessing metadata when pointer is invalid in object_err()
ba0ccc1be52c nouveau: fix disabling the nonstall irq due to storm code
033f09b647db cpufreq: intel_pstate: Unchecked MSR aceess in legacy mode
83440514ef2a cpufreq: intel_pstate: Do not update global.turbo_disabled after initialization
86cade7791a2 cpufreq: intel_pstate: Fold intel_pstate_max_within_limits() into caller
e7f4f16ff167 cpufreq: intel_pstate: Revise global turbo disable check
de6b545bcdba Revert "spi: spi-cadence-quadspi: Fix pm runtime unbalance"
94f7d9070382 Revert "spi: cadence-quadspi: fix cleanup of rx_chan on failure paths"
f4f7cde70f59 net: pcs: rzn1-miic: Correct MODCTRL register offset
50a84d5c8140 e1000e: fix heap overflow in e1000_set_eeprom
1cfa5dd05847 cifs: prevent NULL pointer dereference in UTF16 conversion
bb37252c9af1 batman-adv: fix OOB read/write in network-coding decode
d96cc9a1b577 scsi: lpfc: Fix buffer free/clear order in deferred receive path
abab31c377cb platform/x86/amd/pmc: Add TUXEDO IB Pro Gen10 AMD to spurious 8042 quirks list
350bfdd2841f drm/amdgpu: drop hw access in non-DC audio fini
9e4293766e4f wifi: mt76: mt7996: Initialize hdr before passing to skb_put_data()
9df29aa5637d wifi: mwifiex: Initialize the chan_stats array to zero
bc983b834354 soc: qcom: mdt_loader: Deal with zero e_shentsize
698abcf08818 proc: fix missing pde_set_flags() for net proc files
e9188f66e949 ocfs2: prevent release journal inode after journal shutdown
f9b8d4dba8e7 sched: Fix sched_numa_find_nth_cpu() if mask offline
6797a8b3f71b mm: move page table sync declarations to linux/pgtable.h
26ff568f390a x86/mm/64: define ARCH_PAGE_TABLE_SYNC_MASK and arch_sync_kernel_mappings()
2ee32c4c4f63 pcmcia: Fix a NULL pointer dereference in __iodyn_find_io_region()
50f2f392eb6e arm64: ftrace: fix unreachable PLT for ftrace_caller in init_module with CONFIG_DYNAMIC_FTRACE
90e9372ec0b0 ACPI/IORT: Fix memory leak in iort_rmr_alloc_sids()
ad17940a6618 ALSA: usb-audio: Add mute TLV for playback volumes on some devices
a4e366fbec8a phy: mscc: Stop taking ts_lock for tx_queue and use its own lock
9b035445b7c9 selftest: net: Fix weird setsockopt() in bind_bhash.c.
85c1c86a67e0 ppp: fix memory leak in pad_compress_skb
01d2690c09e6 net: atm: fix memory leak in atm_register_sysfs when device_register fail
7d449b7a6c8e ax25: properly unshare skbs in ax25_kiss_rcv()
5852cee1d8f6 mctp: return -ENOPROTOOPT for unknown getsockopt options
7f8869586dd6 net/smc: Remove validation of reserved bits in CLC Decline message
90ab05ed47c1 ipv4: Fix NULL vs error pointer check in inet_blackhole_dev_init()
bee1e19cf1fa net: thunder_bgx: decrement cleanup index before use
4535729550cf net: thunder_bgx: add a missing of_node_put
e472f59d02c8 wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()
609f6debdff3 wifi: libertas: cap SSID len in lbs_associate()
ccb839602a82 wifi: cw1200: cap SSID length in cw1200_do_join()
61b80fbdc072 net: ethernet: mtk_eth_soc: fix tx vlan tag for llc packets
5d7b2d45770e wifi: ath11k: fix group data packet drops during rekey
6bf934426760 wifi: ath11k: avoid forward declaration of ath11k_mac_start_vdev_delay()
38b86b0a37df wifi: ath11k: rename ath11k_start_vdev_delay()
14ed9f84c7c0 wifi: ath11k: Introduce and use ath11k_sta_to_arsta()
fb216d980fae i40e: Fix potential invalid access when MAC list is empty
f18d9b3abf9c net/smc: fix one NULL pointer dereference in smc_ib_is_sg_need_sync()
668f4f6382c3 macsec: read MACSEC_SA_ATTR_PN with nla_get_uint
1cf0b558cbb7 netlink: add variable-length / auto integers
5430388a8111 net: macb: Fix tx_ptr_lock locking
8d09b13789ba icmp: fix icmp_ndo_send address translation for reply direction
1dda64fb3f5e mISDN: Fix memory leak in dsp_hwec_enable()
9a4abe262df9 xirc2ps_cs: fix register access when enabling FullDuplex
6077d16b5c0f Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen()
bd75eba88e88 Bluetooth: vhci: Prevent use-after-free by removing debugfs files early
2acc8d3f0a3c netfilter: conntrack: helper: Replace -EEXIST by -EBUSY
50db11e2bbb6 netfilter: br_netfilter: do not check confirmed bit in br_nf_local_in() after confirm
f1150153c4e5 wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info work
b7d08929178c wifi: cfg80211: fix use-after-free in cmp_bss()
4a05520d12a7 arm64: dts: imx8mp: Fix missing microSD slot vqmmc on Data Modul i.MX8M Plus eDM SBC
f7a48ef44576 arm64: dts: imx8mp: Fix missing microSD slot vqmmc on DH electronics i.MX8M Plus DHCOM
5b94a825945a tee: optee: ffa: fix a typo of "optee_ffa_api_is_compatible"
0383e172435f arm64: dts: rockchip: Add vcc-supply to SPI flash on rk3399-pinebook-pro
add1ecc8f3ad tee: fix NULL pointer dereference in tee_shm_put
bf89b1f87c72 fs: writeback: fix use-after-free in __mark_inode_dirty()
41e168db5942 Bluetooth: hci_sync: Avoid adding default advertising on startup
703ea9e34f96 cpupower: Fix a bug where the -t option of the set subcommand was not working.
2b21fd1cf77e drm/amd/display: Don't warn when missing DCE encoder caps
235a4c0a8aaa cdc_ncm: Flag Intel OEM version of Fibocom L850-GL as WWAN
ee58a0a35378 LoongArch: Save LBT before FPU in setup_sigcontext()
dc4a024b1990 btrfs: avoid load/store tearing races when checking if an inode was logged
48545620ca8f btrfs: fix race between setting last_dir_index_offset and inode logging
9f76a2e19baf btrfs: fix race between logging inode and checking if it was logged before
7acfa07c585e bpf: Fix oob access in cgroup local storage
dbd8ec2261b8 bpf: Move bpf map owner out of common struct
8e573ac21fcd bpf: Move cgroup iterator helpers to bpf.h
3eeefeb9d62d bpf: Add cookie object to bpf maps
355bd0b51d2f Linux 6.6.104
d3cc7476b89f xfs: do not propagate ENODATA disk errors into xattr code
0699faf70413 Revert "drm/dp: Change AUX DPCD probe address from DPCD_REV to LANE0_1_STATUS"
6c9552de7f7e HID: mcp2221: Handle reads greater than 60 bytes
5a809b34250c HID: mcp2221: Don't set bus speed on every transfer
1b3ccc394807 net/mlx5: SF, Fix add port error handling
ea687c003663 net: rose: fix a typo in rose_clear_routes()
4e86e5ba325e drm/nouveau/disp: Always accept linear modifier
1424f6132fc8 smb3 client: fix return code mapping of remap_file_range
3c3321091733 net: usb: qmi_wwan: add Telit Cinterion LE910C4-WWX new compositions
4191ea1f0bb3 fs/smb: Fix inconsistent refcnt update
4f43a6d376da dma/pool: Ensure DMA_DIRECT_REMAP allocations are decrypted
8911ec881cd7 Revert "drm/amdgpu: fix incorrect vm flags to map bo"
e422370e6ab2 HID: hid-ntrig: fix unable to handle page fault in ntrig_report_version()
b9166ea27d0a HID: wacom: Add a new Art Pen 2
88d3c2790c33 HID: logitech: Add ids for G PRO 2 LIGHTSPEED
8783b2a0b740 HID: quirks: add support for Legion Go dual dinput modes
d4e6e2680807 HID: multitouch: fix slab out-of-bounds access in mt_report_fixup()
5f3c0839b173 HID: asus: fix UAF via HID_CLAIMED_INPUT validation
c84ba4cdf4c6 x86/microcode/AMD: Handle the case of no BIOS microcode
f49161646e03 KVM: x86: use array_index_nospec with indices that come from guest
925599eba460 efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare
463aa96fca62 sctp: initialize more fields in sctp_v6_from_sk()
9c547c8eee9d net: rose: include node references in rose_neigh refcount
f8c29fc437d0 net: rose: convert 'use' field to refcount_t
4998ab3eb2b8 net: rose: split remove and free operations in rose_remove_neigh()
b0f8725196ae net: stmmac: Set CIC bit only for TX queues with COE
dc38d0111c16 net: stmmac: xgmac: Correct supported speed modes
d02d635fc03d net: stmmac: Rename phylink_get_caps() callback to update_caps()
ce006b60fc49 net: stmmac: xgmac: Do not enable RX FIFO Overflow interrupts
9b0acd3bb291 net/mlx5e: Set local Xoff after FW update
dec9d873bdf7 net/mlx5e: Update and set Xon/Xoff upon port speed set
cdd96ed12524 net/mlx5e: Update and set Xon/Xoff upon MTU set
3e07c623fbc5 net/mlx5: Nack sync reset when SFs are present
a623e80aaa85 net/mlx5: Convert SF port_indices xarray to function_ids xarray
a7e9da4d3afb net/mlx5: Use devlink port pointer to get the pointer of container SF struct
25659835c7af net/mlx5: Call mlx5_sf_id_erase() once in mlx5_sf_dealloc()
ddac9d0fe249 net/mlx5: Fix lockdep assertion on sync reset unload event
8da591ae2614 net/mlx5: Add support for sync reset using hot reset
6292688e07d0 net/mlx5: Add device cap for supporting hot reset in sync reset flow
09fd27c8621e net/mlx5: Reload auxiliary drivers on fw_activate
7acefa4c66aa phy: mscc: Fix when PTP clock is register and unregister
b3c70f6fc258 net: dlink: fix multicast stats being counted incorrectly
589edd3dc8fb dt-bindings: display/msm: qcom,mdp5: drop lut clock
dc70ea942fcd ice: fix incorrect counter for buffer allocation failures
05fc7307e352 ice: stop storing XDP verdict within ice_rx_buf
29bcd31ace16 ice: gather page_count()'s of each frag right before XDP prog call
40a9f217cde1 ice: Introduce ice_xdp_buff
4de399767ddc drm/nouveau: remove unused memory target test
32a498445641 drm/nouveau: remove unused increment in gm200_flcn_pio_imem_wr
3c80c230d6e3 atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control().
4bd2866db002 Bluetooth: hci_sync: fix set_local_name race condition
961abec8184a Bluetooth: hci_event: Detect if HCI_EV_NUM_COMP_PKTS is unbalanced
f356ed87c78c Bluetooth: hci_event: Mark connection as closed during suspend disconnect
4c549d87f016 Bluetooth: hci_event: Treat UNKNOWN_CONN_ID on disconnect as success
430786612abe HID: input: report battery status changes immediately
61d733a568d8 HID: input: rename hidinput_set_battery_charge_status()
e7d0bd359f4c powerpc/kvm: Fix ifdef to remove build warning
6de90c2a3b6c drm/msm: Defer fd_install in SUBMIT ioctl
a208d67cb44b net: ipv4: fix regression in local-broadcast routes
9b2700151660 vhost/net: Protect ubufs with rcu read lock in vhost_net_ubuf_put()
181feb41f0b2 NFS: Fix a race when updating an existing write
9a1963404cc2 nfs: fold nfs_page_group_lock_subrequests into nfs_lock_and_join_requests
b15342e09644 ACPI: EC: Add device to acpi_ec_no_wakeup[] qurik list
612527136e0c erofs: fix atomic context detection when !CONFIG_DEBUG_LOCK_ALLOC
8f8e6a781783 ASoC: codecs: tx-macro: correct tx_macro_component_drv name
24b9ed739c8c smb: client: fix race with concurrent opens in rename(2)
bc1427a48371 smb: client: fix race with concurrent opens in unlink(2)
43662b846c7a scsi: core: sysfs: Correct sysfs attributes access rights
28c8fb7ae2ad ftrace: Fix potential warning in trace_printk_seq during ftrace_dump
9e0743eb6dcf of: dynamic: Fix use after free in of_changeset_add_prop_helper()
749137b41e70 of: Add a helper to free property struct
d3be2b8cff6f mips: lantiq: xway: sysctrl: rename the etop node
e877b861dab9 mips: dts: lantiq: danube: add missing burst length property
6e59b8483e6e pinctrl: STMFX: add missing HAS_IOMEM dependency
43e3118c677a of: dynamic: Fix memleak when of_pci_add_properties() failed
(From OE-Core rev: 212df1778245f7b299b549285ea0994234e163fa)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
