Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
16ad71c250c1 Linux 5.10.209
66e4f4a84791 arm64: dts: armada-3720-turris-mox: set irq type for RTC
2e23761beb90 i2c: s3c24xx: fix transferring more than one message in polling mode
da60686bab6b i2c: s3c24xx: fix read transfers in polling mode
8ba74e90162e selftests: mlxsw: qos_pfc: Adjust the test to support 8 lanes
3e1ca8065926 selftests: mlxsw: qos_pfc: Convert to iproute2 dcb
56750ea5d154 mlxsw: spectrum_acl_tcam: Fix stack corruption
a9b233b287aa mlxsw: spectrum_acl_tcam: Reorder functions to avoid forward declarations
d3669ebc4c2a mlxsw: spectrum_acl_tcam: Make fini symmetric to init
a557dbda6407 mlxsw: spectrum_acl_tcam: Add missing mutex_destroy()
936d06d699c3 mlxsw: spectrum: Use 'bitmap_zalloc()' when applicable
e8bfdf630142 mlxsw: spectrum_acl_erp: Fix error flow of pool allocation failure
f90b1cebc442 ethtool: netlink: Add missing ethnl_ops_begin/complete
b44e1aec8038 kdb: Fix a potential buffer overflow in kdb_local()
977c2cf5637a ipvs: avoid stat macros calls from preemptible context
00a86f81c80e netfilter: nf_tables: reject NFT_SET_CONCAT with not field length description
9a4d25267d50 netfilter: nf_tables: skip dead set elements in netlink dump
2d4c0798a1ef netfilter: nf_tables: do not allow mismatch field size and set key length
b099b495e1da net: dsa: vsc73xx: Add null pointer check to vsc73xx_gpio_probe
6c8a5bbca6e6 net: ravb: Fix dma_addr_t truncation in error case
ba77c8b4e106 net: phy: micrel: populate .soft_reset for KSZ9131
1658d7a7a207 net: ethernet: ti: am65-cpsw: Fix max mtu to fit ethernet frames
2295c22348fa net: qualcomm: rmnet: fix global oob in rmnet_policy
b55808b96e63 s390/pci: fix max size calculation in zpci_memcpy_toio()
178b4373446d PCI: keystone: Fix race condition when initializing PHYs
0de2e62067d2 nvmet-tcp: Fix the H2C expected PDU len calculation
172276460ab5 serial: imx: Correct clock error message in function probe()
5ff00408e502 apparmor: avoid crash when parsed profile name is empty
866d32bff035 perf env: Avoid recursively taking env->bpf_progs.lock
39669fae69f3 nvmet-tcp: fix a crash in nvmet_req_complete()
f775f2621c2a nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length
1550b870ae9c usb: cdc-acm: return correct error code on unsupported break
d7c74b010aae tty: use 'if' in send_break() instead of 'goto'
3483ca0390c1 tty: don't check for signal_pending() in send_break()
2cf81d344032 tty: early return from send_break() on TTY_DRIVER_HARDWARE_BREAK
4e76dbd7c360 tty: change tty_write_lock()'s ndelay parameter to bool
abcc25a23731 perf genelf: Set ELF program header addresses properly
1e17feb4ada9 iio: adc: ad9467: fix scale setting
a3167e5ab5b8 iio: adc: ad9467: don't ignore error codes
00e916d9985f iio: adc: ad9467: fix reset gpio handling
8083d6840179 iio: adc: ad9467: Benefit from devm_clk_get_enabled() to simplify
6e04a9d30509 serial: imx: fix tx statemachine deadlock
6746f3e8939d software node: Let args be NULL in software_node_get_reference_args
381bea33a86e acpi: property: Let args be NULL in __acpi_node_get_property_reference
7166e8e9135e libapi: Add missing linux/types.h header to get the __u64 type on io.h
bc57f3ef8a9e serial: 8250: omap: Don't skip resource freeing if pm_runtime_resume_and_get() failed
89b97e6b19a8 power: supply: cw2015: correct time_to_empty units in sysfs
5e3995ec39c4 MIPS: Alchemy: Fix an out-of-bound access in db1550_dev_setup()
c3ed63f6a1c2 MIPS: Alchemy: Fix an out-of-bound access in db1200_dev_setup()
9995dee8b952 mips: Fix incorrect max_low_pfn adjustment
5cdda6239ce6 mips: dmi: Fix early remap on MIPS32
b1528687739b leds: aw2013: Select missing dependency REGMAP_I2C
927626a20738 mfd: syscon: Fix null pointer dereference in of_syscon_register()
c964a0597b50 HID: wacom: Correct behavior when processing some confidence == false touches
c7883c9f83e6 iio: adc: ad7091r: Pass iio_dev to event handler
ba7be6667408 KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache
9b5a278594b9 KVM: arm64: vgic-v4: Restore pending state on host userspace write
7521ea8f62b2 x86/kvm: Do not try to disable kvmclock if it was not enabled
322c5fe40f7f wifi: mwifiex: configure BSSID consistently when starting AP
ba8a4fba622a wifi: rtlwifi: Convert LNKCTL change to PCIe cap RMW accessors
3dc3122b0be3 wifi: rtlwifi: Remove bogus and dangerous ASPM disable/enable code
5e9142b6a200 iommu/arm-smmu-qcom: Add missing GMU entry to match table
394c6c0b6d9b Bluetooth: Fix atomicity violation in {min,max}_key_size_set
3b8d7a1b8519 rootfs: Fix support for rootfstype= when root= is given
8c0b563e9b4d io_uring/rw: ensure io->bytes_done is always initialized
daa61bacd3b9 pwm: jz4740: Don't use dev_err_probe() in .request()
a7d4ec5672b5 fbdev: flush deferred work in fb_deferred_io_fsync()
ff2d54d9ccb4 ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq2xxx
b5c2a32621ae ALSA: oxygen: Fix right channel of capture volume mixer
57f34589e954 serial: imx: Ensure that imx_uart_rs485_config() is called with enabled clock
b7747ca58e85 usb: mon: Fix atomicity violation in mon_bin_vma_fault
5e5ab50effb5 usb: typec: class: fix typec_altmode_put_partner to put plugs
baaa6d8e3f72 Revert "usb: typec: class: fix typec_altmode_put_partner to put plugs"
f5c09e1d6e33 usb: chipidea: wait controller resume finished for wakeup irq
084de4c659bb Revert "usb: dwc3: don't reset device side if dwc3 was configured as host-only"
1af042358781 Revert "usb: dwc3: Soft reset phy on probe for host"
325388866014 usb: dwc: ep0: Update request status in dwc3_ep0_stall_restart
e70b17282a5c usb: phy: mxs: remove CONFIG_USB_OTG condition for mxs_phy_is_otg_host()
d65cade544de tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug
7e7a0d86542b binder: fix race between mmput() and do_exit()
cce8ba6fa4ec xen-netback: don't produce zero-size SKB frags
d1e68ad27901 net: ethernet: mtk_eth_soc: remove duplicate if statements
8a2946391531 kprobes: Fix to handle forcibly unoptimized kprobes on freeing_list
c02cdc2c5e87 Revert "ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek"
79026a2d0a1b virtio-crypto: fix memory leak in virtio_crypto_alg_skcipher_close_session()
dfdb686d1b43 virtio-crypto: fix memory-leak
c3b3389ad046 dma-mapping: Fix build error unused-value
0dfe57f1f237 Input: atkbd - use ab83 as id when skipping the getid command
c8c1158ffb00 binder: fix use-after-free in shinker's callback
abbb90928719 binder: fix unused alloc->free_async_space
fa62c9050e9d binder: fix async space check for 0-sized buffers
4533e7623e6d keys, dns: Fix size check of V1 server-list header
9e8a31c1aa4a of: unittest: Fix of_count_phandle_with_args() expected value message
d5f490343c77 of: Fix double free in of_parse_phandle_with_args_map
c9ee325baed1 IB/iser: Prevent invalidating wrong MR
bedecbb5a5fc mmc: sdhci_omap: Fix TI SoC dependencies
613af7d57622 mmc: sdhci_am654: Fix TI SoC dependencies
8da3a51f74e1 pwm: stm32: Fix enable count for clk in .probe()
e33e1bdbe66a pwm: stm32: Use hweight32 in stm32_pwm_detect_channels
5af4ce2a543d pwm: stm32: Use regmap_clear_bits and regmap_set_bits where applicable
bed5ec2a5984 clk: fixed-rate: fix clk_hw_register_fixed_rate_with_accuracy_parent_hw
764b78b927e7 clk: fixed-rate: add devm_clk_hw_register_fixed_rate
e5236e58cc65 clk: si5341: fix an error code problem in si5341_output_clk_set_rate
428381fbcb1f watchdog: rti_wdt: Drop runtime pm reference count when watchdog is unused
d83662bb9079 watchdog: bcm2835_wdt: Fix WDIOC_SETTIMEOUT handling
6c93290da90b watchdog/hpwdt: Only claim UNKNOWN NMI if from iLO
cbc15095d1ff watchdog: set cdev owner before adding
e4f4a2cb7447 drivers: clk: zynqmp: update divider round rate logic
af0b86199b6c clk: zynqmp: Add a check for NULL pointer
45b4ea38c93c clk: zynqmp: make bestdiv unsigned
7fdcd873c047 drivers: clk: zynqmp: calculate closest mux rate
6cccbfafc0d3 clk: qcom: videocc-sm8150: Add missing PLL config property
84ee04572faa clk: qcom: videocc-sm8150: Update the videocc resets
74bbdacf1bc9 dt-bindings: clock: Update the videocc resets for sm8150
0c8ba6937a8c gpu/drm/radeon: fix two memleaks in radeon_vm_init
520e213a0b97 drivers/amd/pm: fix a use-after-free in kv_parse_power_table
aeed2b4e4a70 drm/amd/pm: fix a double-free in si_dpm_init
d53fee9e34f6 drm/amdgpu/debugfs: fix error code when smc register accessors are NULL
56a79c68b5e3 media: dvb-frontends: m88ds3103: Fix a memory leak in an error handling path of m88ds3103_probe()
b5ebb9b4c1da media: dvbdev: drop refcount on error path in dvb_device_open()
9284f409e407 f2fs: fix to update iostat correctly in f2fs_filemap_fault()
40d36882c7dc f2fs: fix to check compress file in f2fs_move_file_range()
b864287581c5 media: rkisp1: Disable runtime PM in probe error path
962b35733b46 clk: qcom: gpucc-sm8150: Update the gpu_cc_pll1 config
21a30b59693a media: cx231xx: fix a memleak in cx231xx_init_isoc
abd50cebf9c7 drm/bridge: tc358767: Fix return value on error case
3f6932b5baa1 drm/radeon/trinity_dpm: fix a memleak in trinity_parse_power_table
e646308eda40 drm/radeon/dpm: fix a memleak in sumo_parse_power_table
57ca7984806d drm/radeon: check the alloc_workqueue return value in radeon_crtc_init()
c20a6aa0a3f3 drm/drv: propagate errors from drm_modeset_register_all()
da5e0feb12f2 drm/msm/dsi: Use pm_runtime_resume_and_get to prevent refcnt leaks
b704eabe8780 drm/msm/mdp4: flush vblank event on disable
96f5856867f8 ASoC: cs35l34: Fix GPIO name and drop legacy include
defe0327f555 ASoC: cs35l33: Fix GPIO name and drop legacy include
1421b06618f7 drm/radeon: check return value of radeon_ring_lock()
99244692122c drm/radeon/r100: Fix integer overflow issues in r100_cs_track_check()
ca267f79a578 drm/radeon/r600_cs: Fix possible int overflows in r600_cs_check_reg()
6f866885e147 f2fs: fix to avoid dirent corruption
13ea8af95768 drm/bridge: Fix typo in post_disable() description
3233d8bf7893 media: pvrusb2: fix use after free on context disconnection
53926e2a3962 drm/bridge: tpd12s015: Drop buggy __exit annotation for remove function
1eb7ceae4887 drm/nouveau/fence:: fix warning directly dereferencing a rcu pointer
b1a07165be21 rcu: Create an unrcu_pointer() to remove __rcu from a pointer
1d1d5b90ea01 drm/panel-elida-kd35t133: hold panel in reset for unprepare
7794c1481233 RDMA/usnic: Silence uninitialized symbol smatch warnings
d807f4ef22de ARM: davinci: always select CONFIG_CPU_ARM926T
da23bd709b46 ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()
4e09df9b24b1 Bluetooth: btmtkuart: fix recv_buf() return value
fd54d16613cf Bluetooth: Fix bogus check for re-auth no supported with non-ssp
15be96e1a628 netfilter: nf_tables: mark newset as dead on transaction abort
6f39bea6629a wifi: rtlwifi: rtl8192se: using calculate_bit_shift()
c7138266538e wifi: rtlwifi: rtl8192ee: using calculate_bit_shift()
99f56c3f7c56 wifi: rtlwifi: rtl8192de: using calculate_bit_shift()
b75b68dde5c1 rtlwifi: rtl8192de: make arrays static const, makes object smaller
df14e4321997 wifi: rtlwifi: rtl8192ce: using calculate_bit_shift()
016781c16e96 wifi: rtlwifi: rtl8192cu: using calculate_bit_shift()
bf277a76d31a wifi: rtlwifi: rtl8192c: using calculate_bit_shift()
483c975e4094 wifi: rtlwifi: rtl8188ee: phy: using calculate_bit_shift()
31b651a7a17d wifi: rtlwifi: add calculate_bit_shift()
64299791d070 dma-mapping: clear dev->dma_mem to NULL after freeing it
a6dd1095640b dma-mapping: Add dma_release_coherent_memory to DMA API
ad43344ab432 virtio/vsock: fix logic which reduces credit update messages
30ae0c663141 selftests/net: fix grep checking for fib_nexthop_multiprefix
7a0f8295e7e1 scsi: hisi_sas: Replace with standard error code return value
afea95d319cc bpf: Fix verification of indirect var-off stack access
419ab8f74a4b arm64: dts: qcom: sdm845-db845c: correct LED panic indicator
812cebdc5f7b arm64: dts: qcom: qrb5165-rb5: correct LED panic indicator
ba31bb08c15c scsi: fnic: Return error if vmalloc() failed
2757f17972d8 bpf: fix check for attempt to corrupt spilled pointer
7e98bbeb0708 arm64: dts: ti: k3-am65-main: Fix DSS irq trigger type
d49863ed285d wifi: rtlwifi: rtl8821ae: phy: fix an undefined bitwise shift behavior
2799324d92a6 firmware: meson_sm: populate platform devices from sm device tree data
3959dbb37595 firmware: ti_sci: Fix an off-by-one in ti_sci_debugfs_create()
01f9feb5edc5 net/ncsi: Fix netlink major/minor version numbers
7bcddd12a947 ncsi: internal.h: Fix a spello
ae98b7f7bbfb ARM: dts: qcom: apq8064: correct XOADC register address
4675cacd6b02 wifi: libertas: stop selecting wext
24d8aef5d93b wifi: ath11k: Defer on rproc_get failure
91f311155884 bpf: Add crosstask check to __bpf_get_stack
d5d181df8d75 bpf, lpm: Fix check prefixlen before walking trie
eb0eac573646 wifi: rtw88: fix RX filter in FIF_ALLMULTI flag
d8caf15ab156 NFSv4.1/pnfs: Ensure we handle the error NFS4ERR_RETURNCONFLICT
722c700dd87a blocklayoutdriver: Fix reference leak of pnfs_device_node
4518dc468cdd crypto: scomp - fix req->dst buffer overflow
1798c8fd0093 crypto: sahara - do not resize req->src when doing hash operations
67ae336f3b83 crypto: sahara - fix processing hash requests with req->nbytes < sg->length
b3287c8a7eab crypto: sahara - improve error handling in sahara_sha_process()
98985edab61f crypto: sahara - fix wait_for_completion_timeout() error handling
69451bf97c83 crypto: sahara - fix ahash reqsize
d8d9580831ea crypto: sahara - handle zero-length aes requests
b839648d0585 crypto: sahara - avoid skcipher fallback code duplication
14f57a013a95 crypto: virtio - Wait for tasklet to complete on device remove
5c28478af371 gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump
57c7b331f0e5 gfs2: Also reflect single-block allocations in rgd->rd_extfail_pt
22f63f9bc851 Revert "gfs2: Don't reject a supposedly full bitmap if we have blocks reserved"
cd48d2a8e6ba fs: indicate request originates from old mount API
acd413da3e1f pstore: ram_core: fix possible overflow in persistent_ram_init_ecc()
c60fd7a66366 crypto: sahara - fix error handling in sahara_hw_descriptor_create()
25b7ca747b0c crypto: sahara - fix processing requests with cryptlen < sg->length
fc91d32c7ded crypto: sahara - fix ahash selftest failure
4f4786b81845 crypto: sahara - fix cbc selftest failure
ccdb86c339d5 crypto: sahara - remove FLAGS_NEW_KEY logic
7f807dc07341 crypto: af_alg - Disallow multiple in-flight AIO requests
97f9d0455bd4 crypto: ccp - fix memleak in ccp_init_dm_workarea
95586bb74bf4 crypto: sa2ul - Return crypto_aead_setkey to transfer the error
0eb69890e867 crypto: virtio - Handle dataq logic with tasklet
0dee72f9b7ba virtio-crypto: wait ctrl queue instead of busy polling
4ee475e76b5e virtio-crypto: use private buffer for control request
7d386768ef66 virtio-crypto: change code style
1ff57428894f virtio-crypto: implement RSA algorithm
f32dfee5a6a6 virtio-crypto: introduce akcipher service
b2092cdcdabc virtio_crypto: Introduce VIRTIO_CRYPTO_NOSPC
1bc7a682edea selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socket
001a3f59d8c9 mtd: Fix gluebi NULL pointer dereference caused by ftl notifier
1d7b39c842c8 ACPI: extlog: Clear Extended Error Log status when RAS_CEC handled the error
46e3dc02a4ae spi: sh-msiof: Enforce fixed DTDL for R-Car H3
94c742324ed7 efivarfs: force RO when remounting if SetVariable is not supported
44a88650ba55 calipso: fix memory leak in netlbl_calipso_add_pass()
5ac84b01a09b netlabel: remove unused parameter in netlbl_netlink_auditinfo()
47210a5754ba net: netlabel: Fix kerneldoc warnings
d5ce66bdf6e4 cpufreq: scmi: process the result of devm_of_clk_add_hw_provider()
fda130920584 cpufreq: Use of_property_present() for testing DT property presence
ba7c7e353041 of: Add of_property_present() helper
ded221bf4c74 of: property: define of_property_read_u{8,16,32,64}_array() unconditionally
f39c3d578c7d ACPI: LPIT: Avoid u32 multiplication overflow
c4e1a0ef0b47 ACPI: video: check for error while searching for backlight device parent
11ac297aba78 mtd: rawnand: Increment IFC_TIMEOUT_MSECS for nand controller response
f8df7c9886db spi: spi-zynqmp-gqspi: fix driver kconfig dependencies
5a669f3511d2 powerpc/imc-pmu: Add a null pointer check in update_events_in_group()
a67a04ad05ac powerpc/powernv: Add a null pointer check in opal_powercap_init()
e6ad05e3ae9c powerpc/powernv: Add a null pointer check in opal_event_init()
1eefa93faf69 powerpc/powernv: Add a null pointer check to scom_debug_init_one()
428ab6a9dda5 selftests/powerpc: Fix error handling in FPU/VMX preemption tests
b582aa1f6641 powerpc/pseries/memhp: Fix access beyond end of drmem array
f2ec41874b65 powerpc/pseries/memhotplug: Quieten some DLPAR operations
81dce186f1dd powerpc/44x: select I2C for CURRITUCK
d67339e9c81e powerpc: Remove in_kernel_text()
ecbbd90e7046 powerpc: add crtsavres.o to always-y instead of extra-y
6aa7865ba7ff EDAC/thunderx: Fix possible out-of-bounds string access
36dbbfff2823 x86/lib: Fix overflow when counting digits
83da4fc5aa5c coresight: etm4x: Fix width of CCITMIN field
67d3d17e3166 PCI: Add ACS quirk for more Zhaoxin Root Ports
e5457b54add0 parport: parport_serial: Add Brainboxes device IDs and geometry
937293ff64f4 parport: parport_serial: Add Brainboxes BAR details
5e0be1229ae1 uio: Fix use-after-free in uio_open
214aac202d97 binder: fix comment on binder_alloc_new_buf() return value
689f13128fbc binder: fix trivial typo of binder_free_buf_locked()
e18d60757bca binder: use EPOLLERR from eventpoll.h
19d949b37e4a ACPI: resource: Add another DMI match for the TongFang GMxXGxx
f138fb6e640b drm/crtc: fix uninitialized variable use
7ba78e08238b ARM: sun9i: smp: fix return code check of of_property_match_string
01d89184152f net: qrtr: ns: Return 0 if server port is not present
dbf8b0d9387f ida: Fix crash in ida_free when the bitmap is empty
d8a07ba130da i2c: rk3x: fix potential spinlock recursion on poll
a57c59c85c5a Input: xpad - add Razer Wolverine V2 support
86e4e2eea4ea ARC: fix spare error
9700ff5a4f77 s390/scm: fix virtual vs physical address confusion
6e17155869fb Input: i8042 - add nomux quirk for Acer P459-G2-M
b0e82ef61153 Input: atkbd - skip ATKBD_CMD_GETID in translated mode
6f1614080fc6 reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
8d6913d05025 ring-buffer: Do not record in NMI if the arch does not support cmpxchg in NMI
439f3bbf7554 tracing: Add size check when printing trace_marker output
bc6619c9aa91 tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
c0f1db7380aa jbd2: fix soft lockup in journal_finish_inode_data_buffers()
cd94f81f7752 neighbour: Don't let neigh_forced_gc() disable preemption for long
3887ba719800 drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
956b740f3e46 jbd2: correct the printing of write_flags in jbd2_write_superblock()
656d684109c6 clk: rockchip: rk3128: Fix HCLK_OTG gate register
05644e636541 drm/exynos: fix a wrong error checking
0fc35b0d9f94 drm/exynos: fix a potential error pointer dereference
fb2f34d93992 nvme: introduce helper function to get ctrl state
a8b1ddeeacd9 ASoC: da7219: Support low DC impedance headset
1059aa41c5a8 net/tg3: fix race condition in tg3_reset_task()
44ad1b9eb37f nouveau/tu102: flush all pdbs on vmm flush
ffe13302b8fd ASoC: rt5650: add mutex to avoid the jack detection failure
8b50b177bf98 ASoC: cs43130: Fix incorrect frame delay configuration
921ff9f2b19e ASoC: cs43130: Fix the position of const qualifier
304529d56449 ASoC: Intel: Skylake: mem leak in skl register function
1e31b47b2e57 ASoC: nau8822: Fix incorrect type in assignment and cast to restricted __be16
9c89777c7dcc ASoC: Intel: Skylake: Fix mem leak in few functions
c78083013bef ASoC: wm8974: Correct boost mixer inputs
06a33eec1dc2 nvme-core: check for too small lba shift
974f127fcf65 drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
52a33dbeacc8 debugfs: fix automount d_fsdata usage
65bde47aaddc mptcp: fix uninit-value in mptcp_incoming_options
6b00598b64dd ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
94e192054fac pinctrl: lochnagar: Don't build on MIPS
3e47740091b0 f2fs: explicitly null-terminate the xattr list
3fee45ee557a Linux 5.10.208
929ba86476b3 Revert "nvme: use command_id instead of req->tag in trace_nvme_complete_rq()"
8a10841c1a9c PCI: Disable ATS for specific Intel IPU E2000 devices
b74a0c4ddf57 PCI: Extract ATS disabling to a helper function
25d1e7be85cf netfilter: nf_tables: Reject tables of unsupported family
03585b18b715 drm/qxl: fix UAF on handle creation
dd56c5790dc3 ipv6: remove max_size check inline with ipv4
c6b2a6b827d4 net: tls, update curr on splice as well
d36b6b152f47 powerpc: update ppc_save_regs to save current r1 in pt_regs
ae64985e0e9c mmc: sdhci-sprd: Fix eMMC init failure after hw reset
f7796d76bddd mmc: core: Cancel delayed work before releasing host
c29da60e1f6b mmc: rpmb: fixes pause retune on all RPMB partitions.
c82efcaad2a4 mmc: meson-mx-sdhc: Fix initialization frozen issue
73704c6b35c7 mm: fix unmap_mapping_range high bits shift bug
4aca0af44721 i2c: core: Fix atomic xfer check for non-preempt config
0ba8c7ef197c x86/kprobes: fix incorrect return address calculation in kprobe_emulate_call_indirect
23c006a760a7 firewire: ohci: suppress unexpected system reboot in AMD Ryzen machines and ASM108x/VT630x PCIe cards
70168fdc743b mm/memory-failure: check the mapcount of the precise page
18203c4484d5 net: Implement missing SO_TIMESTAMPING_NEW cmsg support
701b03fc14f7 bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters()
cfbf618e9a21 asix: Add check for usbnet_get_endpoints
0fc5fe6e4134 net/qla3xxx: fix potential memleak in ql_alloc_buffer_queues
c492f9c7d313 net/qla3xxx: switch from 'pci_' to 'dma_' API
53e92564c56a i40e: Restore VF MSI-X state during PCI reset
6d3465c3dd53 ASoC: meson: g12a-tohdmitx: Fix event generation for S/PDIF mux
e08399e81210 ASoC: meson: g12a-toacodec: Fix event generation
51e88b2cef12 ASoC: meson: g12a-tohdmitx: Validate written enum values
85f8d007deab ASoC: meson: g12a-toacodec: Validate written enum values
21ecce245624 i40e: fix use-after-free in i40e_aqc_add_filters()
f8c03fd8262e net: Save and restore msg_namelen in sock_sendmsg
06ce3b8ec444 netfilter: nft_immediate: drop chain reference counter on error
cf3c516dec82 netfilter: nftables: add loop check helper function
4366b7e1f541 net: bcmgenet: Fix FCS generation for fragmented skbuffs
d1eb795385e1 sfc: fix a double-free bug in efx_probe_filters
cb69cad457fa ARM: sun9i: smp: Fix array-index-out-of-bounds read in sunxi_mc_smp_init
8abb7ab7cf2f net: sched: em_text: fix possible memory leak in em_text_destroy()
ecdfb0970c09 i40e: Fix filter input checks to prevent config with invalid values
8d4ae760c793 drm/i915/dp: Fix passing the correct DPCD_REV for drm_dp_set_phy_test_pattern
3ff482518b8e octeontx2-af: Fix marking couple of structure as __packed
6adeb15cb6ad nfc: llcp_core: Hold a ref to llcp_local->dev when holding a ref to llcp_local
74c9135d1659 ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP ProBook 440 G6
132ba71b4e81 block: Don't invalidate pagecache for invalid falloc modes
ef1d1d7c1048 keys, dns: Fix missing size check of V1 server-list header
03a0e87f70e8 Linux 5.10.207
a7fd5c7ba4b9 scsi: core: Always send batch on reset or error handling command
e30419672e3a Revert "scsi: core: Add scsi_prot_ref_tag() helper"
f60f60e1deca Revert "scsi: core: Introduce scsi_get_sector()"
a5edb4070293 Revert "scsi: core: Make scsi_get_lba() return the LBA"
212929776027 Revert "scsi: core: Use scsi_cmd_to_rq() instead of scsi_cmnd.request"
cea19678bf55 Revert "scsi: core: Use a structure member to track the SCSI command submitter"
6963d049a422 Revert "scsi: core: Always send batch on reset or error handling command"
(From OE-Core rev: bc5c1a8631e65a2e6715987f67b8957b41da5dcc)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating linux-yocto/5.10 to the latest korg -stable release that comprises
the following commits:
cf13ba74e8eb Linux 5.10.206
2df1e1887c68 spi: atmel: Fix PDC transfer setup bug
2a0a658ed6ef Bluetooth: SMP: Fix crash when receiving new connection when debug is enabled
ecd50f820d86 Revert "MIPS: Loongson64: Enable DMA noncoherent support"
9175341bd80b dm-integrity: don't modify bio's immutable bio_vec in integrity_metadata()
73117ea03363 netfilter: nf_tables: skip set commit for deleted/destroyed sets
8bf79dec73fe tracing: Fix blocked reader of snapshot buffer
0afe42022865 ring-buffer: Fix wake ups when buffer_percent is set to 100
9db5239d7533 scsi: core: Always send batch on reset or error handling command
f2d30198c053 scsi: core: Use a structure member to track the SCSI command submitter
df83ca8e986d scsi: core: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
d054858a9c9e scsi: core: Make scsi_get_lba() return the LBA
f230e6d4249b scsi: core: Introduce scsi_get_sector()
294d66c35a4e scsi: core: Add scsi_prot_ref_tag() helper
929f475ebaf0 spi: atmel: Fix CS and initialization bug
23d9267c548b spi: atmel: Switch to transfer_one transfer method
db1b14eec8c6 Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
0c54b79d1d9b smb: client: fix OOB in smbCalcSize()
203a412e52b5 smb: client: fix OOB in SMB2_query_info_init()
79e158ddc3c7 usb: fotg210-hcd: delete an incorrect bounds test
da448f145f8d Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE
4bc912140b1c Bluetooth: use inclusive language in SMP
e219c3110a16 Bluetooth: SMP: Convert BT_ERR/BT_DBG to bt_dev_err/bt_dev_dbg
cdbc4a1115a5 ARM: dts: Fix occasional boot hang for am3 usb
1e2db0124c69 9p/net: fix possible memory leak in p9_check_errors()
c4a22227f7eb x86/alternatives: Sync core before enabling interrupts
7d407ef18327 lib/vsprintf: Fix %pfwf when current node refcount == 0
565fadc3ea91 bus: ti-sysc: Flush posted write only after srst_udelay
e50cfb544742 tracing / synthetic: Disable events after testing in synth_event_gen_test_init()
cd6e41593ed7 dt-bindings: nvmem: mxs-ocotp: Document fsl,ocotp
786788bb1396 net: ks8851: Fix TX stall caused by TX buffer overrun
391c1019a005 net: rfkill: gpio: set GPIO direction
6d7b8e5a6d91 net: 9p: avoid freeing uninit memory in p9pdu_vreadf
45b63f09ba89 Input: soc_button_array - add mapping for airplane mode button
2aa744ad0e9e Bluetooth: L2CAP: Send reject on command corrupted request
25a6fdd26d13 Bluetooth: hci_event: Fix not checking if HCI_OP_INQUIRY has been sent
71e1c7654010 USB: serial: option: add Quectel RM500Q R13 firmware support
d521896bcc0b USB: serial: option: add Foxconn T99W265 with new baseline
d0cf8a4bee42 USB: serial: option: add Quectel EG912Y module support
f41f44cea9eb USB: serial: ftdi_sio: update Actisense PIDs constant names
20d84a19466f wifi: cfg80211: fix certs build to not depend on file order
7a0a5cbfea34 wifi: cfg80211: Add my certificate
9dcf50da596d iio: adc: ti_am335x_adc: Fix return value check of tiadc_request_dma()
abbebddb19ac iio: common: ms_sensors: ms_sensors_i2c: fix humidity conversion time table
c40db29812f9 scsi: bnx2fc: Fix skb double free in bnx2fc_rcv()
e3749f85fddc Input: ipaq-micro-keys - add error handling for devm_kmemdup
b5f67cea27fa iio: imu: inv_mpu6050: fix an error code problem in inv_mpu6050_read_raw
505df1c0abe6 interconnect: Treat xlate() returning NULL node as an error
cc5eec86a4ff btrfs: do not allow non subvolume root targets for snapshot
bd267af18f7b smb: client: fix NULL deref in asn1_ber_decoder()
41350e813acf ALSA: hda/hdmi: add force-connect quirk for NUC5CPYB
a4692c38cd57 ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10
e032ddb0e387 pinctrl: at91-pio4: use dedicated lock class for IRQ
0b85149a9dc1 i2c: aspeed: Handle the coalesced stop conditions with the start conditions.
3dce7a52b2fa afs: Fix overwriting of result of DNS query
97be1e865e70 keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry
9e0d18f946b2 net: check dev->gso_max_size in gso_features_check()
59dc16ce095d net: warn if gso_type isn't set for a GSO SKB
63ad66d4844b afs: Fix dynamic root lookup DNS check
65d2c287fc00 afs: Fix the dynamic root's d_delete to always delete unused dentries
a3218319ee86 net: check vlan filter feature in vlan_vids_add_by_dev() and vlan_vids_del_by_dev()
12e5a4719c99 net/rose: fix races in rose_kill_by_device()
be0988c9b075 ethernet: atheros: fix a memleak in atl1e_setup_ring_resources
8b6f8bfe3a3a net: sched: ife: fix potential use-after-free
f245312e9f4f net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors
e8ba688a64f9 net/mlx5: Fix fw tracer first block check
fc4c53f8e929 net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list()
50aa92e6999d Revert "net/mlx5e: fix double free of encap_header"
b851889e9184 wifi: mac80211: mesh_plink: fix matches_local logic
717f08fb5140 s390/vx: fix save/restore of fpu kernel context
c48219fad182 reset: Fix crash when freeing non-existent optional resets
c999682ce8de ARM: OMAP2+: Fix null pointer dereference and memory leak in omap_soc_device_init
dbc8edb80f05 smb: client: fix OOB in smb2_query_reparse_point()
bc3c57493b20 ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE
(From OE-Core rev: 28b884d3ba7854fbddd353f57214a4a24799f29c)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Updating to the latest korg -stable release that comprises
the following commits:
d330ef1d295d Linux 5.10.203
9c957e2b5254 driver core: Release all resources during unbind before updating device links
2325d3b6b10f r8169: fix deadlock on RTL8125 in jumbo mtu mode
b29e6055db1e r8169: disable ASPM in case of tx timeout
8b76708eb9f1 mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
b532bc9b73e6 mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
376fabe3677a mmc: block: Retry commands in CQE error recovery
bf62a283a779 mmc: core: convert comma to semicolon
bb785011843e mmc: cqhci: Fix task clearing in CQE error recovery
cb9ca7cc273b mmc: cqhci: Warn of halt or task clear failure
e94ededefc42 mmc: cqhci: Increase recovery halt timeout
2011f06e32ab cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
6b35f36ff8f0 cpufreq: imx6q: don't warn for disabling a non-existing frequency
910566a789a2 scsi: qla2xxx: Fix system crash due to bad pointer access
46a4bf13502f scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request
b19fe82b4b92 scsi: core: Introduce the scsi_cmd_to_rq() function
c2b6f7e48e38 smb3: fix caching of ctime on setxattr
f9aa2857c6e6 fs: add ctime accessors infrastructure
8d4237a149e3 drm/amdgpu: don't use ATRM for external devices
2df04d76c97d driver core: Move the "removable" attribute from USB to core
01fbfcd8105c ima: annotate iint mutex to avoid lockdep false positive warnings
8a3322a35f74 fbdev: stifb: Make the STI next font pointer a 32-bit signed offset
15bc430fc176 misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
a6128ad78771 misc: pci_endpoint_test: Add deviceID for AM64 and J7200
c922282d11b3 s390/cmma: fix detection of DAT pages
03e07092c6ce s390/mm: fix phys vs virt confusion in mark_kernel_pXd() functions family
cb420e35571c ASoC: SOF: sof-pci-dev: Fix community key quirk detection
b37e1fbe6d30 ASoC: SOF: sof-pci-dev: don't use the community key on APL Chromebooks
3a79fcb743f7 ASoC: SOF: sof-pci-dev: add parameter to override topology filename
4aeb3320d70e ASoC: SOF: sof-pci-dev: use community key on all Up boards
6368a32d26a3 ASoC: Intel: Move soc_intel_is_foo() helpers to a generic header
8e52b19d92e1 smb3: fix touch -h of symlink
889c84e2b200 net: ravb: Start TX queues after HW initialization succeeded
5d428cda38e8 net: ravb: Use pm_runtime_resume_and_get()
f78d0f301395 ravb: Fix races between ravb_tx_timeout_work() and net related ops
a36e00e957a2 r8169: prevent potential deadlock in rtl8169_close
8a909c119827 Revert "workqueue: remove unused cancel_work()"
72ce3379cd5e octeontx2-pf: Fix adding mbox work queue entry when num_vfs > 64
ef7af2105a25 net: stmmac: xgmac: Disable FPE MMC interrupts
f18bcace1294 selftests/net: mptcp: fix uninitialized variable warnings
cb1644f9f005 selftests/net: ipsec: fix constant out of range
fe7fd9c209e8 dpaa2-eth: increase the needed headroom to account for alignment
772fe1da9a8d ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
9ef94ec8e52e usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
713530d3c8f1 USB: core: Change configuration warnings to notices
ae6e41066e6e hv_netvsc: fix race of netvsc and VF register_netdevice
4937fb36bbb8 Input: xpad - add HyperX Clutch Gladiate Support
5c4d5c8556ee btrfs: make error messages more clear when getting a chunk map
74ff16c84433 btrfs: send: ensure send_fd is writable
12a0ec5ed7cf btrfs: fix off-by-one when checking chunk map includes logical address
baaab02a8c0b btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
2d6c2238acf8 btrfs: add dmesg output for first mount and last unmount of a filesystem
bab9cec493b6 parisc: Drop the HP-UX ENOSYM and EREMOTERELEASE error codes
b53dc7c766ae powerpc: Don't clobber f0/vs0 during fp|altivec register save
b5cbbc2b2da9 iommu/vt-d: Add MTL to quirk list to skip TE disabling
f62ceb880a71 bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
18ac427906af dm verity: don't perform FEC for failed readahead IO
c3c9f9273822 dm-verity: align struct dm_verity_fec_io properly
5de40a7ffaa0 ALSA: hda/realtek: Add supported ALC257 for ChromeOS
cf80c538061e ALSA: hda/realtek: Headset Mic VREF to 100%
f338f738d7bd ALSA: hda: Disable power-save on KONTRON SinglePC
b02b66194d54 mmc: block: Do not lose cache flush during CQE error recovery
71c9fb31e18b firewire: core: fix possible memory leak in create_units()
d6bac7048f28 pinctrl: avoid reload of p state in list iteration
8fb79be6e980 io_uring: fix off-by one bvec index
f5f85ea5bb6a USB: dwc3: qcom: fix wakeup after probe deferral
5ac96667ea32 usb: dwc3: set the dma max_seg_size
2620c5977f49 usb: dwc3: Fix default mode initialization
d5325ed6eb7c USB: dwc2: write HCINT with INTMASK applied
5d7a5e63dc3b USB: serial: option: don't claim interface 4 for ZTE MF290
f1432dff5dd6 USB: serial: option: fix FM101R-GL defines
14a6e089d610 USB: serial: option: add Fibocom L7xx modules
f49ad460a2c8 bcache: fixup lock c->root error
be327b8f76c2 bcache: fixup init dirty data errors
3ebf83df623a bcache: prevent potential division by zero error
e74c2e6fecb7 bcache: check return value from btree_node_alloc_replacement()
c73dd8f4b476 dm-delay: fix a race between delay_presuspend and delay_bio
a70b6da7c640 hv_netvsc: Mark VF as slave before exposing it to user-mode
ff6c130e48a7 hv_netvsc: Fix race of register_netdevice_notifier and VF register
518ef825016d USB: serial: option: add Luat Air72*U series products
c841de6247e9 s390/dasd: protect device queue against concurrent access
89f9ba7ee702 bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
cd7a0695906d bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in btree_gc_coalesce()
be8af3b6c80d swiotlb-xen: provide the "max_mapping_size" method
8c4b5cc90843 ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
0f312dc1eb2f ASoC: simple-card: fixup asoc_simple_probe() error handling
fcc60c0a1870 nfsd: lock_rename() needs both directories to live on the same fs
ec75d1d0cd2c ext4: make sure allocate pending entry not fail
10341e77e49f ext4: fix slab-use-after-free in ext4_es_insert_extent()
5527898c6a9f ext4: using nofail preallocation in ext4_es_insert_extent()
2ae2be6e7cd7 ext4: using nofail preallocation in ext4_es_insert_delayed_block()
aa6568033cfb ext4: using nofail preallocation in ext4_es_remove_extent()
608758ef8670 ext4: use pre-allocated es in __es_remove_extent()
fcb07d8ea363 ext4: use pre-allocated es in __es_insert_extent()
0cc7653887b0 ext4: factor out __es_alloc_extent() and __es_free_extent()
8234c1c690a3 ext4: add a new helper to check if es must be kept
62526a55fee7 MIPS: KVM: Fix a build warning about variable set but not used
3b2e8b30b0d7 media: ccs: Correctly initialise try compose rectangle
1301467cbe4c lockdep: Fix block chain corruption
cbfa5aadd650 USB: dwc3: qcom: fix ACPI platform device leak
68fe711312f1 USB: dwc3: qcom: fix resource leaks on probe deferral
2be451e7a2f1 nvmet: nul-terminate the NQNs passed in the connect command
86a7f67d7605 nvmet: remove unnecessary ctrl parameter
d24a18cb51bf afs: Fix file locking on R/O volumes to operate in local mode
6e48c3175d0b afs: Return ENOENT if no cell DNS record can be found
497e9b0b21a6 net: axienet: Fix check for partial TX checksum
8fb804dabdda amd-xgbe: propagate the correct speed and duplex status
b7c9e8c038f5 amd-xgbe: handle the corner-case during tx completion
a2e868ad07eb amd-xgbe: handle corner-case during sfp hotplug
ebc7fbd15a64 arm/xen: fix xen_vcpu_info allocation alignment
5ada292b5c50 net/smc: avoid data corruption caused by decline
3ae55e3a3734 net: usb: ax88179_178a: fix failed operations during ax88179_reset
27914bff9602 ipv4: Correct/silence an endian warning in __ip_do_redirect
f8467afa754d HID: fix HID device resource race between HID core and debugging support
2f0ea5e0944a HID: core: store the unique system identifier in hid_device
650e43dfe7d2 drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP full
cc3b63c089e7 ata: pata_isapnp: Add missing error check for devm_ioport_map()
9942c1948346 wireguard: use DEV_STATS_INC()
939352ad6502 drm/panel: simple: Fix Innolux G101ICE-L01 timings
a5e82e345f4a drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
60660af9577a drm/panel: auo,b101uan08.3: Fine tune the panel power sequence
2c688ae2dd78 drm/panel: boe-tv101wum-nl6: Fine tune the panel power sequence
3b797242d178 afs: Make error on cell lookup failure consistent with OpenAFS
dbc1929a5214 afs: Fix afs_server_list to be cleaned up with RCU
c3bead2f8fca PCI: keystone: Drop __init from ks_pcie_add_pcie_{ep,port}()
ac65f8979b0e RDMA/irdma: Prevent zero-length STAG registration
(From OE-Core rev: 501af4c5f91746f934083178efdb1a59ff82ff51)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The original CVE-2023-29406.patch is not complete, causing docker
failures at runtime, backport a complementary fix from golang upstream.
(From OE-Core rev: 973901530c98bc3f1b10d8bb89d55decf6848713)
Signed-off-by: Ming Liu <liu.ming50@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This reverts commit d9273edae80978c34f8426f34f991b9598828aa9.
This commit is causing breakage for some vendor kernel builds.
(From OE-Core rev: 59cc2e75c15f8c6371a4c4a3b7bd2e6c3f145fbc)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The license of ghostscript has switched to Affero GPL since version 9.07
via commit:
* 3cc5318 Switch Ghostscript/GhostPDL to Affero GPL
https://github.com/ArtifexSoftware/ghostpdl/commit/3cc5318
Correct it with `AGPL-3.0-or-later`.
(From OE-Core rev: 8e192a2e0c2fdad18ea4c08774493225f31931a0)
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
During testing of the v6.4 reference kernel, it was noticed that
on-target modules no longer matched the magic value of the running
kernel.
This was due to a different localversion in the cross built kernel
and the scripts / resources created on target.
This was due to changes in the setlocalversion script introduced
in the v6.3 series.
The .scmversion file is no longer used (or packaged) to inhibit
the addition of a "+" (through querying of the git status of the
kernel) or the setting of a local version.
We recently introduced the KERNEL_LOCALVERSION variable to allow
recipes to place a value in .scmversion, so we extend the use of
that variable to kernel-arch.bbclass and use it to set the
exported variable LOCALVERSION.
We must do it at the kernel-arch level, as the variable must be
exported in any kernel build to ensure that setlocalversion always
correctly sets the localversion.
(From OE-Core rev: d9273edae80978c34f8426f34f991b9598828aa9)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Cherry-picked from master 765b13b7305c8d2f222cfc66d77c02e6a088c691
Signed-off-by: Andreas Helbech Kleist <andreaskleist@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Currently myhostname is always added to nsswitch.conf even if it is
not included in PACKAGECONFIG.
This is based on changes made in OE-core rev:
ba3a78c08cb0ce08afde049610d3172b9e3b0695
Cc: Chen Qi <Qi.Chen@windriver.com>
(From OE-Core rev: 17e20ce90b5b3abb5a597d4a5b470c8eaa3fd296)
Signed-off-by: Jermain Horsman <jermain.horsman@nedap.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-24575:
libgit2 is a portable C implementation of the Git core methods provided
as a linkable library with a solid API, allowing to build Git functionality
into your application. Using well-crafted inputs to `git_revparse_single`
can cause the function to enter an infinite loop, potentially causing a
Denial of Service attack in the calling application. The revparse function
in `src/libgit2/revparse.c` uses a loop to parse the user-provided spec
string. There is an edge-case during parsing that allows a bad actor to
force the loop conditions to access arbitrary memory. Potentially, this
could also leak memory if the extracted rev spec is reflected back to the
attacker. As such, libgit2 versions before 1.4.0 are not affected. Users
should upgrade to version 1.6.5 or 1.7.2.
CVE-2024-24577:
libgit2 is a portable C implementation of the Git core methods provided
as a linkable library with a solid API, allowing to build Git functionality
into your application. Using well-crafted inputs to `git_index_add` can
cause heap corruption that could be leveraged for arbitrary code execution.
There is an issue in the `has_dir_name` function in `src/libgit2/index.c`,
which frees an entry that should not be freed. The freed entry is later
used and overwritten with potentially bad actor-controlled data leading to
controlled heap corruption. Depending on the application that uses libgit2,
this could lead to arbitrary code execution. This issue has been patched
in version 1.6.5 and 1.7.2.
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-24575https://security-tracker.debian.org/tracker/CVE-2024-24575https://nvd.nist.gov/vuln/detail/CVE-2024-24577https://security-tracker.debian.org/tracker/CVE-2024-24577
(From OE-Core rev: 942254eb3ef29c8672a35015c086721c4fbe5a4f)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
When saving HSTS data to an excessively long file name, curl could end up
removing all contents, making subsequent requests using that file unaware
of the HSTS status they should otherwise use.
(From OE-Core rev: e0f503594e7bc0da9771b69ca7243a34dcadbdde)
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2023-45285:
Using go get to fetch a module with the ".git" suffix may unexpectedly
fallback to the insecure "git://" protocol if the module is unavailable
via the secure "https://" and "git+ssh://" protocols, even if GOINSECURE
is not set for said module. This only affects users who are not using
the module proxy and are fetching modules directly (i.e. GOPROXY=off).
CVE-2023-45287:
Before Go 1.20, the RSA based TLS key exchanges used the math/big
library, which is not constant time. RSA blinding was applied to prevent
timing attacks, but analysis shows this may not have been fully effective.
In particular it appears as if the removal of PKCS#1 padding may leak
timing information, which in turn could be used to recover session key
bits. In Go 1.20, the crypto/tls library switched to a fully constant
time RSA implementation, which we do not believe exhibits any timing
side channels.
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-45285https://nvd.nist.gov/vuln/detail/CVE-2023-45287https://security-tracker.debian.org/tracker/CVE-2023-45285https://security-tracker.debian.org/tracker/CVE-2023-45287
(From OE-Core rev: 616857b9918e8d2e576239b3db2f9f077d1a7222)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Align with text in the other branches.
(From yocto-docs rev: 394ccddfa357d186006439600833fce917a1ffac)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Add the hint to the test setup that runqemu-gen-tapdevs will need the
iptables package installed.
(From yocto-docs rev: ca4c984006972d34aa51f05797ec8bd47dc675bb)
Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Concept of gcc-source prevents cve-check to detect existing
CVE patch file.
So ignore this CVE in all recipes using gcc-source via this
include file.
(From OE-Core rev: 04511734c6dc8c7dda3a943b385cd273d012d8c7)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This CVE reports that apple had to upgrade curl because of other
already reported CVEs:
* CVE-2023-38039: not affected, introduced in 7.84.0
* CVE-2023-38545: patch already backported
* CVE-2023-38546: patch already backported
* CVE-2023-42915: reference to itself
(From OE-Core rev: 2771a1248a251650f6e2e64731f56ed928c29ce5)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The task for fstypes with compression is the same as the task for the
uncompressed fstypes, e.g. when adding tar.xz to `IMAGE_FSTYPES`, it will
be included into the do_image_tar task and not creating a separate
do_image_tar.xz task.
This commit fixes `LIVE_ROOTFS_TYPE` with compressed fstypes by
depending on the actual task instead of the non-existent
do_image_<fstype>.<compression> task.
Fixes [YOCTO #15331]
(From OE-Core rev: 60d88989698968c13f8e641f0ba1a82fcf700fb7)
Signed-off-by: Ludovic Jozeau <ludovic.jozeau@smile.fr>
Reviewed-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 67c507e3d42e52a6d452c4a453eeaf7f2e2d68d6)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Changelog:
==========
-Fix compiler error when checking if required blocks in parent templates are empty.
-xmlattr filter does not allow keys with spaces.
-Make error messages stemming from invalid nesting of {% trans %} blocks more helpful
(cherry picked from OE-Core rev: 8a0524464583d69df7746253f5020c2c125a8e1f)
(From OE-Core rev: 0f0dcf520505d809599a63961ecb5b1e74053b24)
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(From OE-Core rev: 89974b7fa33f3e9d3e3a4df7ad219898fe400d3a)
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
UBOOT_CONFIG accepts a third parameter for the UBOOT_BINARY that isn't
documented. To show its usage another example from the meta-freescale layer
was picked.
(From yocto-docs rev: aba67b58711019a6ba439b2b77337f813ed799ac)
Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The VSCode extension is now officially maintained and published by the
Yocto Project so it should be referenced in the manuals to help users
discover it.
I located the most relevant places to reference the extension by looking
at how the old Eclipse plugin was documented in the 2.6 manuals as well
as the current Toaster references.
(From yocto-docs rev: 21ec0d3b52069dfc85ff47fb4f913a26a092c480)
Signed-off-by: Enguerrand de Ribaucourt <enguerrand.de-ribaucourt@savoirfairelinux.com>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
The yocto website has changed its structure. Update the section for
Accessing the Downloads page to match the new structure.
(From yocto-docs rev: c67d471145cf09162059368ffd99f0c80df92520)
Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com>
Reviewed-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
As used in the rest of the manual.
(From yocto-docs rev: c68954d905f01f6cc4f7c8ceb90e77cf9068e639)
Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-0553
A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981.
CVE-2024-0567
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.
Upstream-Status: Backport
[40dbbd8de4
&
9edbdaa84e]
Reference: https://ubuntu.com/security/CVE-2024-0553https://ubuntu.com/security/CVE-2024-0567
(From OE-Core rev: de74fd5dea8cc71af1d457b4e688cfbe0f39e4d8)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Documentation for this patch is under
66bc1fcdee
(From OE-Core rev: 626711a95f387090a4705401d2f9406909821f95)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
scripts/pybootchartgui/pybootchartgui/draw.py:820: SyntaxWarning: "is not" with a literal. Did you mean "!="?
if (OPTIONS.show_pid or OPTIONS.show_all) and ipid is not 0:
scripts/pybootchartgui/pybootchartgui/draw.py:918: SyntaxWarning: "is not" with a literal. Did you mean "!="?
if i is not 0:
(From OE-Core rev: ebd61290a644a6d9f2b3701e0e7ea050636da76c)
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit 8d996616f0ca57220d939a41ca9ba6d696ea2a4f)
Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This includes fix for CVE-2023-7207.
Drop all submitted patches.
Apply a patch from git to fix the build with clang.
[ YOCTO #11674 ]
$git log --oneline release_2_13..v2.14
4a41909 (HEAD, tag: v2.14) Version 2.14
6f9e5d3 Update NEWS
807b3ea Use GNU ls algorithm for deciding timestamp format
19219d1 Fix integer overflows in timestamp output
ed28f14 Whitespace cleanup
4ab2813 Update version of gnulib
0987d63 Fix appending to archives bigger than 2G
1df0062 Fix combination of --create, --append, --directory
6a94d5e New option --ignore-dirnlink
376d663 Fix 45b0ee2b407913c533f7ded8d6f8cbeec16ff6ca.
beba8c0 Require automake 1.16.5
70fffa7 Update for newer autotools
a1b2f78 Fix calculation of CRC in copy-out mode.
18ea636 Upgrade gnulib
1a61f62 Update copyright years
a1c97c8 Fix wording in the manpage
97fab48 Update copyright years
86dacfe Remove redundant condition check
4d16930 Use inttostr to represent integer values as strings
236684f Fix dynamic string reallocations
dfc801c Fix previous commit
dd96882 Rewrite dynamic string support.
269d204 Improve online version of the documentation.
7dd8ba9 Update gnulib
905907c Update copyright years
4a78d77 Formatting changes in the documentation.
9fe8494 Update copyright years
641d3f4 Minor fix * src/global.c: Remove superfluous declaration of program_name
0c4ffde Fix handling of device numbers (part 2)
df55fb1 Fix handling of device numbers on copy out.
b1c8583 Improve 684b7ac5
684b7ac Fix cpio header verification.
(From OE-Core rev: 203804370997eeb015ef9da90b567ea2c2f9f3a6)
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
