Bug #2073092 “net/sched: Fix conntrack use-after-free” : Bugs : linux package : Ubuntu

gerald.yang (gerald-yang-tw) on 2024-07-15

Changed in linux (Ubuntu):
status:	New → In Progress
assignee:	nobody → gerald.yang (gerald-yang-tw)
summary:	- [SRU] Fix conntrack use-after-free + net/sched: Fix conntrack use-after-free
description:	updated
Changed in linux (Ubuntu Jammy):
status:	New → In Progress
Changed in linux (Ubuntu Noble):
status:	New → In Progress
assignee:	nobody → gerald.yang (gerald-yang-tw)
Changed in linux (Ubuntu Jammy):
assignee:	nobody → gerald.yang (gerald-yang-tw)

gerald.yang (gerald-yang-tw) on 2024-07-15

description:	updated
description:	updated

gerald.yang (gerald-yang-tw) on 2024-07-15

description:	updated
description:	updated

gerald.yang (gerald-yang-tw) on 2024-07-15

Changed in linux (Ubuntu Oracular):
status:	In Progress → Invalid

gerald.yang (gerald-yang-tw) on 2024-07-16

description:	updated
description:	updated

Stefan Bader (smb) on 2024-07-18

Changed in linux-hwe-6.8 (Ubuntu Noble):
status:	New → Invalid
Changed in linux-hwe-6.8 (Ubuntu Oracular):
status:	New → Invalid
Changed in linux-hwe-6.8 (Ubuntu Jammy):
importance:	Undecided → High
status:	New → Triaged
Changed in linux (Ubuntu Noble):
importance:	Undecided → High
Changed in linux (Ubuntu Jammy):
importance:	Undecided → High

Stefan Bader (smb) on 2024-07-18

Changed in linux-hwe-6.8 (Ubuntu Jammy):
status:	Triaged → Fix Committed

Stefan Bader (smb) on 2024-07-19

Changed in linux (Ubuntu Noble):
status:	In Progress → Fix Committed
Changed in linux (Ubuntu Jammy):
status:	In Progress → Fix Committed

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-07-22:

#1

This bug is awaiting verification that the linux-hwe-6.8/6.8.0-40.40~22.04.2 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-hwe-6.8' to 'verification-done-jammy-linux-hwe-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-hwe-6.8' to 'verification-failed-jammy-linux-hwe-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-hwe-6.8-v2 verification-needed-jammy-linux-hwe-6.8

gerald.yang (gerald-yang-tw) on 2024-07-27

tags:

added: verification-done-jammy-linux-hwe-6.8
removed: verification-needed-jammy-linux-hwe-6.8

gerald.yang (gerald-yang-tw) on 2024-07-29

Changed in linux-hwe-6.8 (Ubuntu Jammy):
assignee:	nobody → gerald.yang (gerald-yang-tw)

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-08-08:

#2

This bug is awaiting verification that the linux/6.8.0-43.43 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-noble-linux' to 'verification-done-noble-linux'. If the problem still exists, change the tag 'verification-needed-noble-linux' to 'verification-failed-noble-linux'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-noble-linux-v2 verification-needed-noble-linux

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-08-09:

#3

This bug is awaiting verification that the linux/5.15.0-120.130 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux' to 'verification-done-jammy-linux'. If the problem still exists, change the tag 'verification-needed-jammy-linux' to 'verification-failed-jammy-linux'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-v2 verification-needed-jammy-linux

Revision history for this message

gerald.yang (gerald-yang-tw) wrote on 2024-08-09:

#4

This patch has been verified on PS6 for few weeks

tags:

added: verification-done-jammy-linux verification-done-noble-linux
removed: verification-needed-jammy-linux verification-needed-noble-linux

Revision history for this message

Launchpad Janitor (janitor) wrote on 2024-08-13:

#5

Download full text (73.3 KiB)

This bug was fixed in the package linux-hwe-6.8 - 6.8.0-40.40~22.04.3

---------------
linux-hwe-6.8 (6.8.0-40.40~22.04.3) jammy; urgency=medium

* jammy/linux-hwe-6.8: 6.8.0-40.40~22.04.3 -proposed tracker (LP: #2075181)

  * Packaging resync (LP: #1786013)
    - [Packaging] debian.hwe-6.8/dkms-versions -- update from kernel-versions
      (main/2024.07.08)

  * Linux 6.8 fails to boot on ARM64 if any param is more than 146 chars
    (LP: #2069534)
    - SAUCE: arm64: v6.8: cmdline param >= 146 chars kills kernel

  * revert support for arbitrary symbol length in modversion in hwe kernels
    (LP: #2039010)
    - Revert "UBUNTU: SAUCE: modpost: Replace 0-length array with flex-array
      member"
    - Revert "UBUNTU: SAUCE: allows to enable Rust with modversions"
    - Revert "UBUNTU: SAUCE: modpost: support arbitrary symbol length in
      modversion"

linux-hwe-6.8 (6.8.0-40.40~22.04.2) jammy; urgency=medium

* jammy/linux-hwe-6.8: 6.8.0-40.40~22.04.2 -proposed tracker (LP: #2073455)

* net/sched: Fix conntrack use-after-free (LP: #2073092)
- net/sched: Fix UAF when resolving a clash

linux-hwe-6.8 (6.8.0-40.40~22.04.1) jammy; urgency=medium

* jammy/linux-hwe-6.8: 6.8.0-40.40~22.04.1 -proposed tracker (LP: #2072200)

  * Packaging resync (LP: #1786013)
    - [Packaging] Include parent config for HWE-6.5
    - [Packaging] update variants

[ Ubuntu: 6.8.0-40.40 ]

  * noble/linux: 6.8.0-40.40 -proposed tracker (LP: #2072201)
  * FPS of glxgear with fullscreen is too low on MTL platform (LP: #2069380)
    - drm/i915: Bypass LMEMBAR/GTTMMADR for MTL stolen memory access
  * a critical typo in the code managing the ASPM settings for PCI Express
    devices (LP: #2071889)
    - PCI/ASPM: Restore parent state to parent, child state to child
  * [UBUNTU 24.04] IOMMU DMA mode changed in kernel config causes massive
    throughput degradation for PCI-related network workloads (LP: #2071471)
    - [Config] Set IOMMU_DEFAULT_DMA_STRICT=n and IOMMU_DEFAULT_DMA_LAZY=yes for
      s390x
  * UBSAN: array-index-out-of-bounds in
    /build/linux-D15vQj/linux-6.5.0/drivers/md/bcache/bset.c:1098:3
    (LP: #2039368)
    - bcache: fix variable length array abuse in btree_iter
  * Mute/mic LEDs and speaker no function on EliteBook 645/665 G11
    (LP: #2071296)
    - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook 645/665
      G11.
  * failed to enable IPU6 camera sensor on kernel >= 6.8: ivsc_ace
    intel_vsc-5db76cf6-0a68-4ed6-9b78-0361635e2447: switch camera to host
    failed: -110 (LP: #2067364)
    - mei: vsc: Don't stop/restart mei device during system suspend/resume
    - SAUCE: media: ivsc: csi: don't count privacy on as error
    - SAUCE: media: ivsc: csi: add separate lock for v4l2 control handler
    - SAUCE: media: ivsc: csi: remove privacy status in struct mei_csi
    - SAUCE: mei: vsc: Enhance IVSC chipset stability during warm reboot
    - SAUCE: mei: vsc: Enhance SPI transfer of IVSC rom
    - SAUCE: mei: vsc: Utilize the appropriate byte order swap function
    - SAUCE: mei: vsc: Prevent timeout error with added delay post-firmware
      download
  * failed to probe camera sensor on Dell XPS 9315: ov01a10 i...

This bug was fixed in the package linux-hwe-6.8 - 6.8.0-40.40~22.04.3

---------------
linux-hwe-6.8 (6.8.0-40.40~22.04.3) jammy; urgency=medium

* jammy/linux-hwe-6.8: 6.8.0-40.40~22.04.3 -proposed tracker (LP: #2075181)

* Packaging resync (LP: #1786013)
    - [Packaging] debian.hwe-6.8/dkms-versions -- update from kernel-versions
      (main/2024.07.08)

* Linux 6.8 fails to boot on ARM64 if any param is more than 146 chars
    (LP: #2069534)
    - SAUCE: arm64: v6.8: cmdline param >= 146 chars kills kernel

* revert support for arbitrary symbol length in modversion in hwe kernels
    (LP: #2039010)
    - Revert "UBUNTU: SAUCE: modpost: Replace 0-length array with flex-array
      member"
    - Revert "UBUNTU: SAUCE: allows to enable Rust with modversions"
    - Revert "UBUNTU: SAUCE: modpost: support arbitrary symbol length in
      modversion"

linux-hwe-6.8 (6.8.0-40.40~22.04.2) jammy; urgency=medium

* jammy/linux-hwe-6.8: 6.8.0-40.40~22.04.2 -proposed tracker (LP: #2073455)

* net/sched: Fix conntrack use-after-free (LP: #2073092)
    - net/sched: Fix UAF when resolving a clash

linux-hwe-6.8 (6.8.0-40.40~22.04.1) jammy; urgency=medium

* jammy/linux-hwe-6.8: 6.8.0-40.40~22.04.1 -proposed tracker (LP: #2072200)

* Packaging resync (LP: #1786013)
    - [Packaging] Include parent config for HWE-6.5
    - [Packaging] update variants

[ Ubuntu: 6.8.0-40.40 ]

* noble/linux: 6.8.0-40.40 -proposed tracker (LP: #2072201)
  * FPS of glxgear with fullscreen is too low on MTL platform (LP: #2069380)
    - drm/i915: Bypass LMEMBAR/GTTMMADR for MTL stolen memory access
  * a critical typo in the code managing the ASPM  settings for PCI Express
    devices (LP: #2071889)
    - PCI/ASPM: Restore parent state to parent, child state to child
  * [UBUNTU 24.04] IOMMU DMA mode changed in kernel config causes massive
    throughput degradation for PCI-related network workloads (LP: #2071471)
    - [Config] Set IOMMU_DEFAULT_DMA_STRICT=n and IOMMU_DEFAULT_DMA_LAZY=yes for
      s390x
  * UBSAN: array-index-out-of-bounds in
    /build/linux-D15vQj/linux-6.5.0/drivers/md/bcache/bset.c:1098:3
    (LP: #2039368)
    - bcache: fix variable length array abuse in btree_iter
  * Mute/mic LEDs and speaker no function on EliteBook 645/665 G11
    (LP: #2071296)
    - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook 645/665
      G11.
  * failed to enable IPU6 camera sensor on kernel >= 6.8: ivsc_ace
    intel_vsc-5db76cf6-0a68-4ed6-9b78-0361635e2447: switch camera to host
    failed: -110 (LP: #2067364)
    - mei: vsc: Don't stop/restart mei device during system suspend/resume
    - SAUCE: media: ivsc: csi: don't count privacy on as error
    - SAUCE: media: ivsc: csi: add separate lock for v4l2 control handler
    - SAUCE: media: ivsc: csi: remove privacy status in struct mei_csi
    - SAUCE: mei: vsc: Enhance IVSC chipset stability during warm reboot
    - SAUCE: mei: vsc: Enhance SPI transfer of IVSC rom
    - SAUCE: mei: vsc: Utilize the appropriate byte order swap function
    - SAUCE: mei: vsc: Prevent timeout error with added delay post-firmware
      download
  * failed to probe camera sensor on Dell XPS 9315: ov01a10 i2c-OVTI01A0:00:
    failed to check hwcfg: -22 (LP: #2070251)
    - ACPI: utils: Make acpi_handle_path() not static
    - ACPI: property: Ignore bad graph port nodes on Dell XPS 9315
    - ACPI: property: Polish ignoring bad data nodes
    - ACPI: scan: Ignore camera graph port nodes on all Dell Tiger, Alder and
      Raptor Lake models
  * Update amd_sfh for AMD strix series (LP: #2058331)
    - HID: amd_sfh: Increase sensor command timeout
    - HID: amd_sfh: Improve boot time when SFH is available
    - HID: amd_sfh: Extend MP2 register access to SFH
    - HID: amd_sfh: Set the AMD SFH driver to depend on x86
  * RFIM and SAGV Linux Support for G10 models (LP: #2070158)
    - drm/i915/display: Add meaningful traces for QGV point info error handling
    - drm/i915/display: Extract code required to calculate max qgv/psf gv point
    - drm/i915/display: extract code to prepare qgv points mask
    - drm/i915/display: Disable SAGV on bw init, to force QGV point recalculation
    - drm/i915/display: handle systems with duplicate psf gv points
    - drm/i915/display: force qgv check after the hw state readout
  * Update amd-pmf for AMD strix series (LP: #2058330)
    - platform/x86/amd/pmf: Differentiate PMF ACPI versions
    - platform/x86/amd/pmf: Disable debugfs support for querying power thermals
    - platform/x86/amd/pmf: Add support to get sbios requests in PMF driver
    - platform/x86/amd/pmf: Add support to notify sbios heart beat event
    - platform/x86/amd/pmf: Add support to get APTS index numbers for static
      slider
    - platform/x86/amd/pmf: Add support to get sps default APTS index values
    - platform/x86/amd/pmf: Update sps power thermals according to the platform-
      profiles
  * noble:linux: ADT ubuntu-regression-suite misses fakeroot dependency
    (LP: #2070042)
    - [DEP-8] Add missing fakeroot dependency
  * Noble update: v6.8.12 upstream stable release (LP: #2071621)
    - sunrpc: use the struct net as the svc proc private
    - x86/tsc: Trust initial offset in architectural TSC-adjust MSRs
    - selftests/ftrace: Fix BTFARG testcase to check fprobe is enabled correctly
    - ftrace: Fix possible use-after-free issue in ftrace_location()
    - Revert "arm64: fpsimd: Implement lazy restore for kernel mode FPSIMD"
    - arm64/fpsimd: Avoid erroneous elide of user state reload
    - Reapply "arm64: fpsimd: Implement lazy restore for kernel mode FPSIMD"
    - tty: n_gsm: fix missing receive state reset after mode switch
    - speakup: Fix sizeof() vs ARRAY_SIZE() bug
    - serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler
    - serial: 8250_bcm7271: use default_mux_rate if possible
    - serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup
    - Input: try trimming too long modalias strings
    - io_uring: fail NOP if non-zero op flags is passed in
    - Revert "r8169: don't try to disable interrupts if NAPI is, scheduled
      already"
    - r8169: Fix possible ring buffer corruption on fragmented Tx packets.
    - ring-buffer: Fix a race between readers and resize checks
    - net: mana: Fix the extra HZ in mana_hwc_send_request
    - tools/latency-collector: Fix -Wformat-security compile warns
    - tools/nolibc/stdlib: fix memory error in realloc()
    - net: ti: icssg_prueth: Fix NULL pointer dereference in prueth_probe()
    - net: lan966x: remove debugfs directory in probe() error path
    - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
    - nilfs2: fix use-after-free of timer for log writer thread
    - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
    - nilfs2: fix potential hang in nilfs_detach_log_writer()
    - fs/ntfs3: Remove max link count info display during driver init
    - fs/ntfs3: Taking DOS names into account during link counting
    - fs/ntfs3: Fix case when index is reused during tree transformation
    - fs/ntfs3: Break dir enumeration if directory contents error
    - ksmbd: avoid to send duplicate oplock break notifications
    - ksmbd: ignore trailing slashes in share paths
    - ALSA: core: Fix NULL module pointer assignment at card init
    - ALSA: Fix deadlocks with kctl removals at disconnection
    - KEYS: asymmetric: Add missing dependency on CRYPTO_SIG
    - [Config] updateconfigs for CRYPTO_SIG
    - KEYS: asymmetric: Add missing dependencies of FIPS_SIGNATURE_SELFTEST
    - HID: nintendo: Fix N64 controller being identified as mouse
    - dmaengine: xilinx: xdma: Clarify kdoc in XDMA driver
    - wifi: mac80211: don't use rate mask for scanning
    - wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon
      timestamp field
    - wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt
      class
    - dt-bindings: rockchip: grf: Add missing type to 'pcie-phy' node
    - HID: mcp-2221: cancel delayed_work only when CONFIG_IIO is enabled
    - net: usb: qmi_wwan: add Telit FN920C04 compositions
    - drm/amd/display: Set color_mgmt_changed to true on unsuspend
    - drm/amdgpu: Update BO eviction priorities
    - drm/amd/pm: Restore config space after reset
    - drm/amdkfd: Add VRAM accounting for SVM migration
    - drm/amdgpu: Fix the ring buffer size for queue VM flush
    - Revert "net: txgbe: fix i2c dev name cannot match clkdev"
    - Revert "net: txgbe: fix clk_name exceed MAX_DEV_ID limits"
    - cpu: Ignore "mitigations" kernel parameter if CPU_MITIGATIONS=n
    - LoongArch: Lately init pmu after smp is online
    - drm/etnaviv: fix tx clock gating on some GC7000 variants
    - selftests: sud_test: return correct emulated syscall value on RISC-V
    - riscv: thead: Rename T-Head PBMT to MAE
    - [Config] updateconfigs for ERRATA_THEAD_MAE
    - riscv: T-Head: Test availability bit before enabling MAE errata
    - sched/isolation: Fix boot crash when maxcpus < first housekeeping CPU
    - ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM too
    - regulator: irq_helpers: duplicate IRQ name
    - ALSA: hda: cs35l56: Exit cache-only after cs35l56_wait_for_firmware_boot()
    - ASoC: SOF: ipc4-pcm: Use consistent name for snd_sof_pcm_stream pointer
    - ASoC: SOF: ipc4-pcm: Use consistent name for sof_ipc4_timestamp_info pointer
    - ASoC: SOF: ipc4-pcm: Introduce generic sof_ipc4_pcm_stream_priv
    - ASoC: SOF: pcm: Restrict DSP D0i3 during S0ix to IPC3
    - ASoC: acp: Support microphone from device Acer 315-24p
    - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
    - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
    - ASoC: rt722-sdca: modify channel number to support 4 channels
    - ASoC: rt722-sdca: add headset microphone vrefo setting
    - regulator: qcom-refgen: fix module autoloading
    - regulator: vqmmc-ipq4019: fix module autoloading
    - ASoC: cs35l41: Update DSP1RX5/6 Sources for DSP config
    - ASoC: rt715: add vendor clear control register
    - ASoC: rt715-sdca: volume step modification
    - KVM: selftests: Add test for uaccesses to non-existent vgic-v2 CPUIF
    - Input: xpad - add support for ASUS ROG RAIKIRI
    - btrfs: take the cleaner_mutex earlier in qgroup disable
    - EDAC/versal: Do not register for NOC errors
    - fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card
    - bpf, x86: Fix PROBE_MEM runtime load check
    - ALSA: emu10k1: make E-MU FPGA writes potentially more reliable
    - softirq: Fix suspicious RCU usage in __do_softirq()
    - platform/x86: ISST: Add Grand Ridge to HPM CPU list
    - ASoC: da7219-aad: fix usage of device_get_named_child_node()
    - ASoC: cs35l56: fix usages of device_get_named_child_node()
    - ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection
    - Input: amimouse - mark driver struct with __refdata to prevent section
      mismatch
    - drm/amdgpu: Fix VRAM memory accounting
    - drm/amd/display: Ensure that dmcub support flag is set for DCN20
    - drm/amd/display: Add dtbclk access to dcn315
    - drm/amd/display: Allocate zero bw after bw alloc enable
    - drm/amd/display: Add VCO speed parameter for DCN31 FPU
    - drm/amd/display: Fix DC mode screen flickering on DCN321
    - drm/amd/display: Disable seamless boot on 128b/132b encoding
    - drm/amdkfd: Flush the process wq before creating a kfd_process
    - x86/mm: Remove broken vsyscall emulation code from the page fault code
    - nvme: find numa distance only if controller has valid numa id
    - nvmet-auth: return the error code to the nvmet_auth_host_hash() callers
    - nvmet-auth: replace pr_debug() with pr_err() to report an error.
    - nvme: cancel pending I/O if nvme controller is in terminal state
    - nvmet-tcp: fix possible memory leak when tearing down a controller
    - nvmet: fix nvme status code when namespace is disabled
    - nvme-tcp: strict pdu pacing to avoid send stalls on TLS
    - epoll: be better about file lifetimes
    - nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()
    - openpromfs: finish conversion to the new mount API
    - crypto: bcm - Fix pointer arithmetic
    - firmware: qcom: qcm: fix unused qcom_scm_qseecom_allowlist
    - mm/slub, kunit: Use inverted data to corrupt kmem cache
    - firmware: raspberrypi: Use correct device for DMA mappings
    - ecryptfs: Fix buffer size for tag 66 packet
    - nilfs2: fix out-of-range warning
    - parisc: add missing export of __cmpxchg_u8()
    - crypto: ccp - drop platform ifdef checks
    - crypto: x86/nh-avx2 - add missing vzeroupper
    - crypto: x86/sha256-avx2 - add missing vzeroupper
    - crypto: x86/sha512-avx2 - add missing vzeroupper
    - s390/cio: fix tracepoint subchannel type field
    - io_uring: use the right type for work_llist empty check
    - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow
    - rcu: Fix buffer overflow in print_cpu_stall_info()
    - ARM: configs: sunxi: Enable DRM_DW_HDMI
    - jffs2: prevent xattr node from overflowing the eraseblock
    - libfs: Re-arrange locking in offset_iterate_dir()
    - libfs: Define a minimum directory offset
    - libfs: Add simple_offset_empty()
    - maple_tree: Add mtree_alloc_cyclic()
    - libfs: Convert simple directory offsets to use a Maple Tree
    - libfs: Fix simple_offset_rename_exchange()
    - libfs: Add simple_offset_rename() API
    - shmem: Fix shmem_rename2()
    - io-wq: write next_work before dropping acct_lock
    - mm/userfaultfd: Do not place zeropages when zeropages are disallowed
    - s390/mm: Re-enable the shared zeropage for !PV and !skeys KVM guests
    - crypto: octeontx2 - add missing check for dma_map_single
    - crypto: qat - improve error message in adf_get_arbiter_mapping()
    - crypto: qat - improve error logging to be consistent across features
    - soc: qcom: pmic_glink: don't traverse clients list without a lock
    - soc: qcom: pmic_glink: notify clients about the current state
    - firmware: qcom: scm: Fix __scm and waitq completion variable initialization
    - soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE
    - null_blk: Fix missing mutex_destroy() at module removal
    - crypto: qat - validate slices count returned by FW
    - hwrng: stm32 - use logical OR in conditional
    - hwrng: stm32 - put IP into RPM suspend on failure
    - hwrng: stm32 - repair clock handling
    - kunit/fortify: Fix mismatched kvalloc()/vfree() usage
    - io_uring/net: remove dependency on REQ_F_PARTIAL_IO for sr->done_io
    - io_uring/net: fix sendzc lazy wake polling
    - soc: qcom: pmic_glink: Make client-lock non-sleeping
    - lkdtm: Disable CFI checking for perms functions
    - md: fix resync softlockup when bitmap size is less than array size
    - crypto: qat - specify firmware files for 402xx
    - block: refine the EOF check in blkdev_iomap_begin
    - block: fix and simplify blkdevparts= cmdline parsing
    - block: support to account io_ticks precisely
    - wifi: ath10k: poll service ready message before failing
    - wifi: brcmfmac: pcie: handle randbuf allocation failure
    - wifi: ath11k: don't force enable power save on non-running vdevs
    - bpftool: Fix missing pids during link show
    - libbpf: Prevent null-pointer dereference when prog to load has no BTF
    - wifi: ath12k: use correct flag field for 320 MHz channels
    - wifi: mt76: mt7915: workaround too long expansion sparse warnings
    - x86/boot: Ignore relocations in .notes sections in walk_relocs() too
    - wifi: ieee80211: fix ieee80211_mle_basic_sta_prof_size_ok()
    - wifi: iwlwifi: mvm: Do not warn on invalid link on scan complete
    - wifi: iwlwifi: mvm: allocate STA links only for active links
    - wifi: mac80211: don't select link ID if not provided in scan request
    - wifi: iwlwifi: implement can_activate_links callback
    - wifi: iwlwifi: mvm: fix active link counting during recovery
    - wifi: iwlwifi: mvm: select STA mask only for active links
    - wifi: iwlwifi: reconfigure TLC during HW restart
    - wifi: iwlwifi: mvm: fix check in iwl_mvm_sta_fw_id_mask
    - sched/fair: Add EAS checks before updating root_domain::overutilized
    - ACPI: bus: Indicate support for _TFP thru _OSC
    - ACPI: bus: Indicate support for more than 16 p-states thru _OSC
    - ACPI: bus: Indicate support for the Generic Event Device thru _OSC
    - ACPI: Fix Generic Initiator Affinity _OSC bit
    - ACPI: bus: Indicate support for IRQ ResourceSource thru _OSC
    - enetc: avoid truncating error message
    - qed: avoid truncating work queue length
    - mlx5: avoid truncating error message
    - mlx5: stop warning for 64KB pages
    - bitops: add missing prototype check
    - dlm: fix user space lock decision to copy lvb
    - wifi: carl9170: re-fix fortified-memset warning
    - bpftool: Mount bpffs on provided dir instead of parent dir
    - bpf: Pack struct bpf_fib_lookup
    - bpf: prevent r10 register from being marked as precise
    - x86/microcode/AMD: Avoid -Wformat warning with clang-15
    - scsi: ufs: qcom: Perform read back after writing reset bit
    - scsi: ufs: qcom: Perform read back after writing REG_UFS_SYS1CLK_1US
    - scsi: ufs: qcom: Perform read back after writing unipro mode
    - scsi: ufs: qcom: Perform read back after writing CGC enable
    - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
    - scsi: ufs: core: Perform read back after writing UTP_TASK_REQ_LIST_BASE_H
    - scsi: ufs: core: Perform read back after disabling interrupts
    - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
    - ACPI: LPSS: Advertise number of chip selects via property
    - EDAC/skx_common: Allow decoding of SGX addresses
    - locking/atomic/x86: Correct the definition of __arch_try_cmpxchg128()
    - irqchip/alpine-msi: Fix off-by-one in allocation error path
    - irqchip/loongson-pch-msi: Fix off-by-one on allocation error path
    - ACPI: disable -Wstringop-truncation
    - gfs2: Don't forget to complete delayed withdraw
    - gfs2: Fix "ignore unlock failures after withdraw"
    - arm64: Remove unnecessary irqflags alternative.h include
    - x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57
    - selftests/bpf: Fix umount cgroup2 error in test_sockmap
    - tcp: increase the default TCP scaling ratio
    - cpufreq: exit() callback is optional
    - x86/pat: Introduce lookup_address_in_pgd_attr()
    - x86/pat: Restructure _lookup_address_cpa()
    - x86/pat: Fix W^X violation false-positives when running as Xen PV guest
    - udp: Avoid call to compute_score on multiple sites
    - openrisc: traps: Don't send signals to kernel mode threads
    - cppc_cpufreq: Fix possible null pointer dereference
    - wifi: iwlwifi: mvm: init vif works only once
    - scsi: libsas: Fix the failure of adding phy with zero-address to port
    - scsi: hpsa: Fix allocation size for Scsi_Host private data
    - x86/purgatory: Switch to the position-independent small code model
    - wifi: ath12k: fix out-of-bound access of qmi_invoke_handler()
    - thermal/drivers/mediatek/lvts_thermal: Add coeff for mt8192
    - thermal/drivers/tsens: Fix null pointer dereference
    - dt-bindings: thermal: loongson,ls2k-thermal: Add Loongson-2K0500 compatible
    - dt-bindings: thermal: loongson,ls2k-thermal: Fix incorrect compatible
      definition
    - wifi: ath10k: Fix an error code problem in
      ath10k_dbg_sta_write_peer_debug_trigger()
    - gfs2: Remove ill-placed consistency check
    - gfs2: Fix potential glock use-after-free on unmount
    - gfs2: finish_xmote cleanup
    - gfs2: do_xmote fixes
    - thermal/debugfs: Avoid excessive updates of trip point statistics
    - selftests/bpf: Fix a fd leak in error paths in open_netns
    - scsi: ufs: core: mcq: Fix ufshcd_mcq_sqe_search()
    - cpufreq: brcmstb-avs-cpufreq: ISO C90 forbids mixed declarations
    - wifi: ath10k: populate board data for WCN3990
    - net: dsa: mv88e6xxx: Add support for model-specific pre- and post-reset
      handlers
    - net: dsa: mv88e6xxx: Avoid EEPROM timeout without EEPROM on 88E6250-family
      switches
    - tcp: avoid premature drops in tcp_add_backlog()
    - thermal/debugfs: Create records for cdev states as they get used
    - thermal/debugfs: Pass cooling device state to thermal_debug_cdev_add()
    - pwm: sti: Prepare removing pwm_chip from driver data
    - pwm: sti: Simplify probe function using devm functions
    - drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group
    - drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group
    - drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset()
    - net: give more chances to rcu in netdev_wait_allrefs_any()
    - macintosh/via-macii: Fix "BUG: sleeping function called from invalid
      context"
    - wifi: carl9170: add a proper sanity check for endpoints
    - bpf: Fix verifier assumptions about socket->sk
    - selftests/bpf: Run cgroup1_hierarchy test in own mount namespace
    - wifi: ar5523: enable proper endpoint verification
    - pwm: Drop useless member .of_pwm_n_cells of struct pwm_chip
    - pwm: Let the of_xlate callbacks accept references without period
    - pwm: Drop duplicate check against chip->npwm in of_pwm_xlate_with_flags()
    - pwm: Reorder symbols in core.c
    - pwm: Provide an inline function to get the parent device of a given chip
    - pwm: meson: Change prototype of a few helpers to prepare further changes
    - pwm: meson: Make use of pwmchip_parent() accessor
    - pwm: meson: Add check for error from clk_round_rate()
    - pwm: meson: Use mul_u64_u64_div_u64() for frequency calculating
    - bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE
    - sh: kprobes: Merge arch_copy_kprobe() into arch_prepare_kprobe()
    - Revert "sh: Handle calling csum_partial with misaligned data"
    - wifi: mt76: mt7603: fix tx queue of loopback packets
    - wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset
    - wifi: mt76: mt7996: fix size of txpower MCU command
    - wifi: mt76: mt7925: ensure 4-byte alignment for suspend & wow command
    - wifi: mt76: mt7996: fix uninitialized variable in mt7996_irq_tasklet()
    - wifi: mt76: mt7996: fix potential memory leakage when reading chip
      temperature
    - libbpf: Fix error message in attach_kprobe_multi
    - wifi: nl80211: Avoid address calculations via out of bounds array indexing
    - wifi: rtw89: wow: refine WoWLAN flows of HCI interrupts and low power mode
    - selftests/binderfs: use the Makefile's rules, not Make's implicit rules
    - selftests/resctrl: fix clang build failure: use LOCAL_HDRS
    - selftests: default to host arch for LLVM builds
    - kunit: Fix kthread reference
    - kunit: unregister the device on error
    - kunit: bail out early in __kunit_test_suites_init() if there are no suites
      to test
    - selftests/bpf: Fix pointer arithmetic in test_xdp_do_redirect
    - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
    - scsi: bfa: Ensure the copied buf is NUL terminated
    - scsi: qedf: Ensure the copied buf is NUL terminated
    - scsi: qla2xxx: Fix debugfs output for fw_resource_count
    - gpio: nuvoton: Fix sgpio irq handle error
    - x86/numa: Fix SRAT lookup of CFMWS ranges with numa_fill_memblks()
    - wifi: mwl8k: initialize cmd->addr[] properly
    - HID: amd_sfh: Handle "no sensors" in PM operations
    - usb: aqc111: stop lying about skb->truesize
    - net: usb: sr9700: stop lying about skb->truesize
    - m68k: Fix spinlock race in kernel thread creation
    - m68k: mac: Fix reboot hang on Mac IIci
    - dm-delay: fix workqueue delay_timer race
    - dm-delay: fix hung task introduced by kthread mode
    - dm-delay: fix max_delay calculations
    - ptp: ocp: fix DPLL functions
    - net: ipv6: fix wrong start position when receive hop-by-hop fragment
    - eth: sungem: remove .ndo_poll_controller to avoid deadlocks
    - selftests: net: add missing config for amt.sh
    - selftests: net: move amt to socat for better compatibility
    - net: ethernet: mediatek: split tx and rx fields in mtk_soc_data struct
    - net: ethernet: mediatek: use ADMAv1 instead of ADMAv2.0 on MT7981 and MT7986
    - ice: Fix package download algorithm
    - net: ethernet: cortina: Locking fixes
    - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
    - net: usb: smsc95xx: stop lying about skb->truesize
    - net: openvswitch: fix overwriting ct original tuple for ICMPv6
    - ipv6: sr: add missing seg6_local_exit
    - ipv6: sr: fix incorrect unregister order
    - ipv6: sr: fix invalid unregister error path
    - net/mlx5: Fix peer devlink set for SF representor devlink port
    - net/mlx5: Reload only IB representors upon lag disable/enable
    - net/mlx5: Add a timeout to acquire the command queue semaphore
    - net/mlx5: Discard command completions in internal error
    - s390/bpf: Emit a barrier for BPF_FETCH instructions
    - riscv, bpf: make some atomic operations fully ordered
    - ax25: Use kernel universal linked list to implement ax25_dev_list
    - ax25: Fix reference count leak issues of ax25_dev
    - ax25: Fix reference count leak issue of net_device
    - dpll: fix return value check for kmemdup
    - net: fec: remove .ndo_poll_controller to avoid deadlocks
    - mptcp: SO_KEEPALIVE: fix getsockopt support
    - mptcp: cleanup writer wake-up
    - mptcp: avoid some duplicate code in socket option handling
    - mptcp: implement TCP_NOTSENT_LOWAT support
    - mptcp: cleanup SOL_TCP handling
    - mptcp: fix full TCP keep-alive support
    - net: stmmac: Offload queueMaxSDU from tc-taprio
    - net: stmmac: est: Per Tx-queue error count for HLBF
    - net: stmmac: Report taprio offload status
    - net: stmmac: move the EST lock to struct stmmac_priv
    - net: micrel: Fix receiving the timestamp in the frame for lan8841
    - Bluetooth: compute LE flow credits based on recvbuf space
    - Bluetooth: qca: Fix error code in qca_read_fw_build_info()
    - Bluetooth: ISO: Add hcon for listening bis sk
    - Bluetooth: ISO: Clean up returns values in iso_connect_ind()
    - Bluetooth: ISO: Make iso_get_sock_listen generic
    - Bluetooth: Remove usage of the deprecated ida_simple_xx() API
    - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
    - Bluetooth: HCI: Remove HCI_AMP support
    - ice: make ice_vsi_cfg_rxq() static
    - ice: make ice_vsi_cfg_txq() static
    - overflow: Change DEFINE_FLEX to take __counted_by member
    - Bluetooth: hci_conn, hci_sync: Use __counted_by() to avoid -Wfamnae warnings
    - Bluetooth: hci_core: Fix not handling hdev->le_num_of_adv_sets=1
    - drm/bridge: Fix improper bridge init order with pre_enable_prev_first
    - drm/ci: update device type for volteer devices
    - drm/nouveau/dp: Fix incorrect return code in r535_dp_aux_xfer()
    - drm/omapdrm: Fix console by implementing fb_dirty
    - drm/omapdrm: Fix console with deferred ops
    - printk: Let no_printk() use _printk()
    - dev_printk: Add and use dev_no_printk()
    - drm/lcdif: Do not disable clocks on already suspended hardware
    - drm/dp: Don't attempt AUX transfers when eDP panels are not powered
    - drm/panel: atna33xc20: Fix unbalanced regulator in the case HPD doesn't
      assert
    - drm/amd/display: Fix potential index out of bounds in color transformation
      function
    - drm/amd/display: Remove redundant condition in dcn35_calc_blocks_to_gate()
    - ASoC: Intel: Disable route checks for Skylake boards
    - ASoC: Intel: avs: ssm4567: Do not ignore route checks
    - mtd: core: Report error if first mtd_otp_size() call fails in
      mtd_otp_nvmem_add()
    - mtd: rawnand: hynix: fixed typo
    - drm/imagination: avoid -Woverflow warning
    - ASoC: mediatek: Assign dummy when codec not specified for a DAI link
    - drm/panel: ltk050h3146w: add MIPI_DSI_MODE_VIDEO to LTK050H3148W flags
    - drm/panel: ltk050h3146w: drop duplicate commands from LTK050H3148W init
    - fbdev: shmobile: fix snprintf truncation
    - ASoC: kirkwood: Fix potential NULL dereference
    - drm/meson: vclk: fix calculation of 59.94 fractional rates
    - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
    - drm/mediatek: Init `ddp_comp` with devm_kcalloc()
    - ASoC: SOF: Intel: hda-dai: fix channel map configuration for aggregated
      dailink
    - powerpc/fsl-soc: hide unused const variable
    - ASoC: SOF: Intel: mtl: Correct rom_status_reg
    - ASoC: SOF: Intel: lnl: Correct rom_status_reg
    - ASoC: SOF: Intel: mtl: Disable interrupts when firmware boot failed
    - ASoC: SOF: Intel: mtl: Implement firmware boot state check
    - fbdev: sisfb: hide unused variables
    - selftests: cgroup: skip test_cgcore_lesser_ns_open when cgroup2 mounted
      without nsdelegate
    - ASoC: Intel: avs: Restore stream decoupling on prepare
    - ASoC: Intel: avs: Fix ASRC module initialization
    - ASoC: Intel: avs: Fix potential integer overflow
    - ASoC: Intel: avs: Test result of avs_get_module_entry()
    - media: ngene: Add dvb_ca_en50221_init return value check
    - staging: media: starfive: Remove links when unregistering devices
    - media: rcar-vin: work around -Wenum-compare-conditional warning
    - media: radio-shark2: Avoid led_names truncations
    - drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference
    - platform/x86: xiaomi-wmi: Fix race condition when reporting key events
    - drm/msm/dp: allow voltage swing / pre emphasis of 3
    - drm/msm/dp: Avoid a long timeout for AUX transfer if nothing connected
    - media: ipu3-cio2: Request IRQ earlier
    - media: dt-bindings: ovti,ov2680: Fix the power supply names
    - media: i2c: et8ek8: Don't strip remove function when driver is builtin
    - media: v4l2-subdev: Fix stream handling for crop API
    - fbdev: sh7760fb: allow modular build
    - media: atomisp: ssh_css: Fix a null-pointer dereference in
      load_video_binaries
    - drm/arm/malidp: fix a possible null pointer dereference
    - drm: vc4: Fix possible null pointer dereference
    - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
    - drm/bridge: anx7625: Don't log an error when DSI host can't be found
    - drm/bridge: icn6211: Don't log an error when DSI host can't be found
    - drm/bridge: lt8912b: Don't log an error when DSI host can't be found
    - drm/bridge: lt9611: Don't log an error when DSI host can't be found
    - drm/bridge: lt9611uxc: Don't log an error when DSI host can't be found
    - drm/bridge: tc358775: Don't log an error when DSI host can't be found
    - drm/bridge: dpc3433: Don't log an error when DSI host can't be found
    - drm/panel: novatek-nt35950: Don't log an error when DSI host can't be found
    - drm/bridge: anx7625: Update audio status while detecting
    - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
    - ALSA: hda: cs35l41: Remove Speaker ID for Lenovo Legion slim 7 16ARHA7
    - drm/mipi-dsi: use correct return type for the DSC functions
    - media: uvcvideo: Add quirk for Logitech Rally Bar
    - drm/rockchip: vop2: Do not divide height twice for YUV
    - drm/edid: Parse topology block for all DispID structure v1.x
    - media: cadence: csi2rx: configure DPHY before starting source stream
    - clk: samsung: exynosautov9: fix wrong pll clock id value
    - RDMA/mlx5: Uncacheable mkey has neither rb_key or cache_ent
    - RDMA/mlx5: Change check for cacheable mkeys
    - RDMA/mlx5: Adding remote atomic access flag to updatable flags
    - clk: mediatek: pllfh: Don't log error for missing fhctl node
    - iommu: Undo pasid attachment only for the devices that have succeeded
    - RDMA/hns: Fix return value in hns_roce_map_mr_sg
    - RDMA/hns: Fix deadlock on SRQ async events.
    - RDMA/hns: Fix UAF for cq async event
    - RDMA/hns: Fix GMV table pagesize
    - RDMA/hns: Use complete parentheses in macros
    - RDMA/hns: Modify the print level of CQE error
    - clk: mediatek: mt8365-mm: fix DPI0 parent
    - clk: rs9: fix wrong default value for clock amplitude
    - clk: qcom: clk-alpha-pll: remove invalid Stromer register offset
    - RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt
    - RDMA/rxe: Allow good work requests to be executed
    - RDMA/rxe: Fix incorrect rxe_put in error path
    - IB/mlx5: Use __iowrite64_copy() for write combining stores
    - clk: renesas: r8a779a0: Fix CANFD parent clock
    - clk: renesas: r9a07g043: Add clock and reset entry for PLIC
    - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure
    - mm/ksm: fix ksm exec support for prctl
    - clk: qcom: dispcc-sm8450: fix DisplayPort clocks
    - clk: qcom: dispcc-sm6350: fix DisplayPort clocks
    - clk: qcom: dispcc-sm8550: fix DisplayPort clocks
    - clk: qcom: dispcc-sm8650: fix DisplayPort clocks
    - clk: qcom: mmcc-msm8998: fix venus clock issue
    - x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map
    - x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS
    - ext4: avoid excessive credit estimate in ext4_tmpfile()
    - RDMA/mana_ib: Introduce helpers to create and destroy mana queues
    - RDMA/mana_ib: Use struct mana_ib_queue for CQs
    - RDMA/mana_ib: boundary check before installing cq callbacks
    - virt: acrn: stop using follow_pfn
    - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()
    - sunrpc: removed redundant procp check
    - nfsd: don't create nfsv4recoverydir in nfsdfs when not used.
    - ext4: fix potential unnitialized variable
    - ext4: remove the redundant folio_wait_stable()
    - clk: qcom: Fix SC_CAMCC_8280XP dependencies
    - [Config] updateconfigs for SC_CAMCC_8280XP
    - clk: qcom: Fix SM_GPUCC_8650 dependencies
    - [Config] updateconfigs for SM_GPUCC_8650
    - clk: qcom: apss-ipq-pll: fix PLL rate for IPQ5018
    - of: module: add buffer overflow check in of_modalias()
    - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
    - SUNRPC: Fix gss_free_in_token_pages()
    - selftests/damon/_damon_sysfs: check errors from nr_schemes file reads
    - selftests/kcmp: remove unused open mode
    - RDMA/IPoIB: Fix format truncation compilation errors
    - RDMA/cma: Fix kmemleak in rdma_core observed during blktests nvme/rdma use
      siw
    - samples/landlock: Fix incorrect free in populate_ruleset_net
    - tracing/user_events: Prepare find/delete for same name events
    - tracing/user_events: Fix non-spaced field matching
    - modules: Drop the .export_symbol section from the final modules
    - net: bridge: xmit: make sure we have at least eth header len bytes
    - selftests: net: bridge: increase IGMP/MLD exclude timeout membership
      interval
    - net: bridge: mst: fix vlan use-after-free
    - net: qrtr: ns: Fix module refcnt
    - selftests/net/lib: no need to record ns name if it already exist
    - idpf: don't skip over ethtool tcp-data-split setting
    - netrom: fix possible dead-lock in nr_rt_ioctl()
    - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
    - sched/fair: Allow disabling sched_balance_newidle with
      sched_relax_domain_level
    - sched/core: Fix incorrect initialization of the 'burst' parameter in
      cpu_max_write()
    - net: wangxun: fix to change Rx features
    - net: wangxun: match VLAN CTAG and STAG features
    - net: txgbe: move interrupt codes to a separate file
    - net: txgbe: use irq_domain for interrupt controller
    - net: txgbe: fix to control VLAN strip
    - l2tp: fix ICMP error handling for UDP-encap sockets
    - io_uring/net: ensure async prep handlers always initialize ->done_io
    - pwm: Fix setting period with #pwm-cells = <1> and of_pwm_single_xlate()
    - net: txgbe: fix to clear interrupt status after handling IRQ
    - net: txgbe: fix GPIO interrupt blocking
    - Linux 6.8.12
  * Noble update: v6.8.11 upstream stable release (LP: #2070355)
    - drm/amd/display: Fix division by zero in setup_dsc_config
    - net: ks8851: Fix another TX stall caused by wrong ISR flag handling
    - ice: pass VSI pointer into ice_vc_isvalid_q_id
    - ice: remove unnecessary duplicate checks for VF VSI ID
    - Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect()
    - Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()
    - KEYS: trusted: Fix memory leak in tpm2_key_encode()
    - erofs: get rid of erofs_fs_context
    - erofs: reliably distinguish block based and fscache mode
    - binder: fix max_thread type inconsistency
    - usb: dwc3: Wait unconditionally after issuing EndXfer command
    - net: usb: ax88179_178a: fix link status when link is set to down/up
    - usb: typec: ucsi: displayport: Fix potential deadlock
    - usb: typec: tipd: fix event checking for tps25750
    - usb: typec: tipd: fix event checking for tps6598x
    - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
    - remoteproc: mediatek: Make sure IPI buffer fits in L2TCM
    - KEYS: trusted: Do not use WARN when encode fails
    - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
    - docs: kernel_include.py: Cope with docutils 0.21
    - Docs/admin-guide/mm/damon/usage: fix wrong example of DAMOS filter matching
      sysfs file
    - block: add a disk_has_partscan helper
    - block: add a partscan sysfs attribute for disks
    - Linux 6.8.11
  * Noble update: v6.8.10 upstream stable release (LP: #2070349)
    - rust: module: place generated init_module() function in .init.text
    - rust: macros: fix soundness issue in `module!` macro
    - wifi: nl80211: don't free NULL coalescing rule
    - pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T
    - pinctrl/meson: fix typo in PDM's pin name
    - pinctrl: core: delete incorrect free in pinctrl_enable()
    - pinctrl: mediatek: paris: Fix PIN_CONFIG_INPUT_SCHMITT_ENABLE readback
    - pinctrl: mediatek: paris: Rework support for
      PIN_CONFIG_{INPUT,OUTPUT}_ENABLE
    - sunrpc: add a struct rpc_stats arg to rpc_create_args
    - nfs: expose /proc/net/sunrpc/nfs in net namespaces
    - nfs: make the rpc_stat per net namespace
    - nfs: Handle error of rpc_proc_register() in nfs_net_init().
    - pinctrl: baytrail: Fix selecting gpio pinctrl state
    - power: rt9455: hide unused rt9455_boost_voltage_values
    - power: supply: mt6360_charger: Fix of_match for usb-otg-vbus regulator
    - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
    - nfsd: rename NFSD_NET_* to NFSD_STATS_*
    - nfsd: expose /proc/net/sunrpc/nfsd in net namespaces
    - nfsd: make all of the nfsd stats per-network namespace
    - NFSD: add support for CB_GETATTR callback
    - NFSD: Fix nfsd4_encode_fattr4() crasher
    - regulator: mt6360: De-capitalize devicetree regulator subnodes
    - regulator: change stubbed devm_regulator_get_enable to return Ok
    - regulator: change devm_regulator_get_enable_optional() stub to return Ok
    - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
    - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
    - regmap: Add regmap_read_bypassed()
    - ASoC: SOF: Intel: add default firmware library path for LNL
    - nvme: fix warn output about shared namespaces without CONFIG_NVME_MULTIPATH
    - bpf: Fix a verifier verbose message
    - spi: axi-spi-engine: use common AXI macros
    - spi: axi-spi-engine: fix version format string
    - spi: hisi-kunpeng: Delete the dump interface of data registers in debugfs
    - bpf, arm64: Fix incorrect runtime stats
    - riscv, bpf: Fix incorrect runtime stats
    - ASoC: Intel: avs: Set name of control as in topology
    - ASoC: codecs: wsa881x: set clk_stop_mode1 flag
    - s390/mm: Fix storage key clearing for guest huge pages
    - s390/mm: Fix clearing storage keys for huge pages
    - arm32, bpf: Reimplement sign-extension mov instruction
    - xdp: use flags field to disambiguate broadcast redirect
    - efi/unaccepted: touch soft lockup during memory accept
    - ice: ensure the copied buf is NUL terminated
    - bna: ensure the copied buf is NUL terminated
    - octeontx2-af: avoid off-by-one read from userspace
    - thermal/debugfs: Free all thermal zone debug memory on zone removal
    - thermal/debugfs: Fix two locking issues with thermal zone debug
    - nsh: Restore skb->{protocol,data,mac_header} for outer header in
      nsh_gso_segment().
    - net l2tp: drop flow hash on forward
    - thermal/debugfs: Prevent use-after-free from occurring after cdev removal
    - s390/vdso: Add CFI for RA register to asm macro vdso_func
    - Fix a potential infinite loop in extract_user_to_sg()
    - ALSA: emu10k1: fix E-MU card dock presence monitoring
    - ALSA: emu10k1: factor out snd_emu1010_load_dock_firmware()
    - ALSA: emu10k1: move the whole GPIO event handling to the workqueue
    - ALSA: emu10k1: fix E-MU dock initialization
    - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
    - net: qede: use return from qede_parse_flow_attr() for flower
    - net: qede: use return from qede_parse_flow_attr() for flow_spec
    - net: qede: use return from qede_parse_actions()
    - vxlan: Fix racy device stats updates.
    - vxlan: Add missing VNI filter counter update in arp_reduce().
    - ASoC: meson: axg-fifo: use FIELD helpers
    - ASoC: meson: axg-fifo: use threaded irq to check periods
    - ASoC: meson: axg-card: make links nonatomic
    - ASoC: meson: axg-tdm-interface: manage formatters in trigger
    - ASoC: meson: cards: select SND_DYNAMIC_MINORS
    - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
    - s390/cio: Ensure the copied buf is NUL terminated
    - cxgb4: Properly lock TX queue for the selftest.
    - net: dsa: mv88e6xxx: Fix number of databases for 88E6141 / 88E6341
    - drm/amdgpu: fix doorbell regression
    - spi: fix null pointer dereference within spi_sync
    - net: bridge: fix multicast-to-unicast with fraglist GSO
    - net: core: reject skb_copy(_expand) for fraglist GSO skbs
    - rxrpc: Clients must accept conn from any address
    - tipc: fix a possible memleak in tipc_buf_append
    - vxlan: Pull inner IP header in vxlan_rcv().
    - s390/qeth: Fix kernel panic after setting hsuid
    - drm/panel: ili9341: Correct use of device property APIs
    - [Config] updateconfigs for DRM_PANEL_ILITEK_ILI9341
    - drm/panel: ili9341: Respect deferred probe
    - drm/panel: ili9341: Use predefined error codes
    - ipv4: Fix uninit-value access in __ip_make_skb()
    - net: gro: fix udp bad offset in socket lookup by adding
      {inner_}network_offset to napi_gro_cb
    - net: gro: add flush check in udp_gro_receive_segment
    - drm/xe/display: Fix ADL-N detection
    - clk: qcom: smd-rpm: Restore msm8976 num_clk
    - clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
    - powerpc/pseries: make max polling consistent for longer H_CALLs
    - powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE
    - EDAC/versal: Do not log total error counts
    - swiotlb: initialise restricted pool list_head when SWIOTLB_DYNAMIC=y
    - KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()
    - exfat: fix timing of synchronizing bitmap and inode
    - firmware: microchip: don't unconditionally print validation success
    - scsi: ufs: core: Fix MCQ MAC configuration
    - scsi: lpfc: Move NPIV's transport unregistration to after resource clean up
    - scsi: lpfc: Remove IRQF_ONESHOT flag from threaded IRQ handling
    - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
    - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port()
    - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()
    - scsi: lpfc: Use a dedicated lock for ras_fwlog state
    - gfs2: Fix invalid metadata access in punch_hole
    - fs/9p: fix uninitialized values during inode evict
    - wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc
    - wifi: cfg80211: fix rdev_dump_mpp() arguments order
    - wifi: mac80211: fix prep_connection error path
    - wifi: iwlwifi: read txq->read_ptr under lock
    - wifi: iwlwifi: mvm: guard against invalid STA ID on removal
    - net: mark racy access on sk->sk_rcvbuf
    - drm/xe: Fix END redefinition
    - scsi: mpi3mr: Avoid memcpy field-spanning write WARNING
    - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
    - btrfs: return accurate error code on open failure in open_fs_devices()
    - drm/amdkfd: Check cgroup when returning DMABuf info
    - drm/amdkfd: range check cp bad op exception interrupts
    - bpf: Check bloom filter map value size
    - selftests/ftrace: Fix event filter target_func selection
    - kbuild: Disable KCSAN for autogenerated *.mod.c intermediaries
    - ASoC: SOF: Intel: hda-dsp: Skip IMR boot on ACE platforms in case of S3
      suspend
    - regulator: tps65132: Add of_match table
    - OSS: dmasound/paula: Mark driver struct with __refdata to prevent section
      mismatch
    - scsi: ufs: core: WLUN suspend dev/link state error recovery
    - scsi: libsas: Align SMP request allocation to ARCH_DMA_MINALIGN
    - scsi: ufs: core: Fix MCQ mode dev command timeout
    - ALSA: line6: Zero-initialize message buffers
    - block: fix overflow in blk_ioctl_discard()
    - ASoC: codecs: ES8326: Solve error interruption issue
    - ASoC: codecs: ES8326: modify clock table
    - net: bcmgenet: Reset RBUF on first open
    - vboxsf: explicitly deny setlease attempts
    - ata: sata_gemini: Check clk_enable() result
    - firewire: ohci: mask bus reset interrupts between ISR and bottom half
    - tools/power turbostat: Fix added raw MSR output
    - tools/power turbostat: Increase the limit for fd opened
    - tools/power turbostat: Fix Bzy_MHz documentation typo
    - tools/power turbostat: Do not print negative LPI residency
    - tools/power turbostat: Expand probe_intel_uncore_frequency()
    - tools/power turbostat: Print ucode revision only if valid
    - tools/power turbostat: Fix warning upon failed /dev/cpu_dma_latency read
    - btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve
    - btrfs: always clear PERTRANS metadata during commit
    - memblock tests: fix undefined reference to `early_pfn_to_nid'
    - memblock tests: fix undefined reference to `panic'
    - memblock tests: fix undefined reference to `BIT'
    - nouveau/gsp: Avoid addressing beyond end of rpc->entries
    - scsi: target: Fix SELinux error when systemd-modules loads the target module
    - scsi: hisi_sas: Handle the NCQ error returned by D2H frame
    - blk-iocost: avoid out of bounds shift
    - accel/ivpu: Remove d3hot_after_power_off WA
    - accel/ivpu: Improve clarity of MMU error messages
    - accel/ivpu: Fix missed error message after VPU rename
    - platform/x86: acer-wmi: Add support for Acer PH18-71
    - gpu: host1x: Do not setup DMA for virtual devices
    - MIPS: scall: Save thread_info.syscall unconditionally on entry
    - tools/power/turbostat: Fix uncore frequency file string
    - net: add copy_safe_from_sockptr() helper
    - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
    - drm/amdgpu: Refine IB schedule error logging
    - drm/amd/display: add DCN 351 version for microcode load
    - drm/amdgpu: add smu 14.0.1 discovery support
    - drm/amdgpu: implement IRQ_STATE_ENABLE for SDMA v4.4.2
    - drm/amd/display: Skip on writeback when it's not applicable
    - drm/amd/pm: fix the high voltage issue after unload
    - drm/amdgpu: Fix VCN allocation in CPX partition
    - amd/amdkfd: sync all devices to wait all processes being evicted
    - selftests: timers: Fix valid-adjtimex signed left-shift undefined behavior
    - Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails
    - Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl
    - hv_netvsc: Don't free decrypted memory
    - uio_hv_generic: Don't free decrypted memory
    - Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted
    - drm/xe/xe_migrate: Cast to output precision before multiplying operands
    - drm/xe: Label RING_CONTEXT_CONTROL as masked
    - smb3: fix broken reconnect when password changing on the server by allowing
      password rotation
    - iommu: mtk: fix module autoloading
    - fs/9p: only translate RWX permissions for plain 9P2000
    - fs/9p: translate O_TRUNC into OTRUNC
    - fs/9p: fix the cache always being enabled on files with qid flags
    - 9p: explicitly deny setlease attempts
    - powerpc/crypto/chacha-p10: Fix failure on non Power10
    - gpio: wcove: Use -ENOTSUPP consistently
    - gpio: crystalcove: Use -ENOTSUPP consistently
    - clk: Don't hold prepare_lock when calling kref_put()
    - fs/9p: remove erroneous nlink init from legacy stat2inode
    - fs/9p: drop inodes immediately on non-.L too
    - gpio: lpc32xx: fix module autoloading
    - drm/nouveau/dp: Don't probe eDP ports twice harder
    - platform/x86/amd: pmf: Decrease error message to debug
    - platform/x86: ISST: Add Granite Rapids-D to HPM CPU list
    - drm/radeon: silence UBSAN warning (v3)
    - net:usb:qmi_wwan: support Rolling modules
    - blk-iocost: do not WARN if iocg was already offlined
    - SUNRPC: add a missing rpc_stat for TCP TLS
    - qibfs: fix dentry leak
    - xfrm: Preserve vlan tags for transport mode software GRO
    - ARM: 9381/1: kasan: clear stale stack poison
    - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets
    - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique().
    - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
    - Bluetooth: msft: fix slab-use-after-free in msft_do_close()
    - arm64: dts: mediatek: mt8183-pico6: Fix bluetooth node
    - Bluetooth: HCI: Fix potential null-ptr-deref
    - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
    - net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs
    - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
    - hwmon: (corsair-cpro) Use a separate buffer for sending commands
    - hwmon: (corsair-cpro) Use complete_all() instead of complete() in
      ccp_raw_event()
    - hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock
    - phonet: fix rtm_phonet_notify() skb allocation
    - netlink: specs: Add missing bridge linkinfo attrs
    - nfc: nci: Fix kcov check in nci_rx_work()
    - net: bridge: fix corrupted ethernet header on multicast-to-unicast
    - ipv6: Fix potential uninit-value access in __ip6_make_skb()
    - selftests: test_bridge_neigh_suppress.sh: Fix failures due to duplicate MAC
    - rxrpc: Fix the names of the fields in the ACK trailer struct
    - rxrpc: Fix congestion control algorithm
    - rxrpc: Only transmit one ACK per jumbo packet received
    - dt-bindings: net: mediatek: remove wrongly added clocks and SerDes
    - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()
    - net-sysfs: convert dev->operstate reads to lockless ones
    - hsr: Simplify code for announcing HSR nodes timer setup
    - ipv6: annotate data-races around cnf.disable_ipv6
    - ipv6: prevent NULL dereference in ip6_output()
    - net/smc: fix neighbour and rtable leak in smc_ib_find_route()
    - net: hns3: using user configure after hardware reset
    - net: hns3: direct return when receive a unknown mailbox message
    - net: hns3: change type of numa_node_mask as nodemask_t
    - net: hns3: release PTP resources if pf initialization failed
    - net: hns3: use appropriate barrier function after setting a bit value
    - net: hns3: fix port vlan filter not disabled issue
    - net: hns3: fix kernel crash when devlink reload during initialization
    - net: dsa: mv88e6xxx: add phylink_get_caps for the mv88e6320/21 family
    - drm/meson: dw-hdmi: power up phy on device init
    - drm/meson: dw-hdmi: add bandgap setting for g12
    - drm/connector: Add \n to message about demoting connector force-probes
    - dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11
      users
    - gpiolib: cdev: Fix use after free in lineinfo_changed_notify
    - gpiolib: cdev: fix uninitialised kfifo
    - drm/amdgpu: Fix comparison in amdgpu_res_cpu_visible
    - drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2
    - firewire: nosy: ensure user_length is taken into account when fetching
      packet contents
    - Reapply "drm/qxl: simplify qxl_fence_wait"
    - usb: typec: ucsi: Check for notifications after init
    - usb: typec: ucsi: Fix connector check on init
    - usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed
      device
    - usb: ohci: Prevent missed ohci interrupts
    - USB: core: Fix access violation during port device removal
    - usb: gadget: composite: fix OS descriptors w_value logic
    - usb: gadget: uvc: use correct buffer size when parsing configfs lists
    - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete
    - usb: gadget: f_fs: Fix a race condition when processing setup packets.
    - usb: xhci-plat: Don't include xhci.h
    - usb: dwc3: core: Prevent phy suspend during init
    - usb: typec: tcpm: clear pd_event queue in PORT_RESET
    - usb: typec: tcpm: unregister existing source caps before re-registration
    - usb: typec: tcpm: Check for port partner validity before consuming it
    - ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU
    - ALSA: hda/realtek: Fix conflicting PCI SSID 17aa:386f for Lenovo Legion
      models
    - firewire: ohci: fulfill timestamp for some local asynchronous transaction
    - mm/slub: avoid zeroing outside-object freepointer for single free
    - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks()
    - btrfs: set correct ram_bytes when splitting ordered extent
    - btrfs: qgroup: do not check qgroup inherit if qgroup is disabled
    - btrfs: make sure that WRITTEN is set on all metadata blocks
    - maple_tree: fix mas_empty_area_rev() null pointer dereference
    - mm/slab: make __free(kfree) accept error pointers
    - mptcp: ensure snd_nxt is properly initialized on connect
    - mptcp: only allow set existing scheduler for net.mptcp.scheduler
    - workqueue: Fix selection of wake_cpu in kick_pool()
    - dt-bindings: iio: health: maxim,max30102: fix compatible check
    - iio:imu: adis16475: Fix sync mode setting
    - iio: pressure: Fixes BME280 SPI driver data
    - iio: pressure: Fixes SPI support for BMP3xx devices
    - iio: accel: mxc4005: Interrupt handling fixes
    - iio: accel: mxc4005: Reset chip on probe() and resume()
    - kmsan: compiler_types: declare __no_sanitize_or_inline
    - e1000e: change usleep_range to udelay in PHY mdic access
    - tipc: fix UAF in error path
    - xtensa: fix MAKE_PC_FROM_RA second argument
    - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
    - net: bcmgenet: synchronize use of bcmgenet_set_rx_mode()
    - net: bcmgenet: synchronize UMAC_CMD access
    - ASoC: tegra: Fix DSPK 16-bit playback
    - ASoC: ti: davinci-mcasp: Fix race condition during probe
    - dyndbg: fix old BUG_ON in >control parser
    - slimbus: qcom-ngd-ctrl: Add timeout for wait operation
    - clk: samsung: Revert "clk: Use device_get_match_data()"
    - clk: sunxi-ng: common: Support minimum and maximum rate
    - clk: sunxi-ng: a64: Set minimum and maximum rate for PLL-MIPI
    - mei: me: add lunar lake point M DID
    - drm/nouveau/firmware: Fix SG_DEBUG error with nvkm_firmware_ctor()
    - Revert "drm/nouveau/firmware: Fix SG_DEBUG error with nvkm_firmware_ctor()"
    - drm/amdkfd: don't allow mapping the MMIO HDP page with large pages
    - drm/ttm: Print the memory decryption status just once
    - drm/vmwgfx: Fix Legacy Display Unit
    - drm/vmwgfx: Fix invalid reads in fence signaled events
    - drm/imagination: Ensure PVR_MIPS_PT_PAGE_COUNT is never zero
    - drm/amd/display: Fix idle optimization checks for multi-display and dual eDP
    - drm/nouveau/gsp: Use the sg allocator for level 2 of radix3
    - drm/i915/gt: Automate CCS Mode setting during engine resets
    - drm/i915/bios: Fix parsing backlight BDB data
    - drm/amd/display: Handle Y carry-over in VCP X.Y calculation
    - drm/amd/display: Fix incorrect DSC instance for MST
    - arm64: dts: qcom: sa8155p-adp: fix SDHC2 CD pin configuration
    - iommu/arm-smmu: Use the correct type in nvidia_smmu_context_fault()
    - net: fix out-of-bounds access in ops_init
    - hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us
    - misc/pvpanic-pci: register attributes via pci_driver
    - x86/apic: Don't access the APIC when disabling x2APIC
    - selftests/mm: fix powerpc ARCH check
    - mm: use memalloc_nofs_save() in page_cache_ra_order()
    - mm/userfaultfd: reset ptes when close() for wr-protected ones
    - iommu/amd: Enhance def_domain_type to handle untrusted device
    - fs/proc/task_mmu: fix loss of young/dirty bits during pagemap scan
    - fs/proc/task_mmu: fix uffd-wp confusion in pagemap_scan_pmd_entry()
    - nvme-pci: Add quirk for broken MSIs
    - regulator: core: fix debugfs creation regression
    - spi: microchip-core-qspi: fix setting spi bus clock rate
    - ksmbd: off ipv6only for both ipv4/ipv6 binding
    - ksmbd: avoid to send duplicate lease break notifications
    - ksmbd: do not grant v2 lease if parent lease key and epoch are not set
    - tracefs: Reset permissions on remount if permissions are options
    - tracefs: Still use mount point as default permissions for instances
    - eventfs: Do not treat events directory different than other directories
    - Bluetooth: qca: fix invalid device address check
    - Bluetooth: qca: fix wcn3991 device address check
    - Bluetooth: qca: add missing firmware sanity checks
    - Bluetooth: qca: fix NVM configuration parsing
    - Bluetooth: qca: generalise device address check
    - Bluetooth: qca: fix info leak when fetching board id
    - Bluetooth: qca: fix info leak when fetching fw build id
    - Bluetooth: qca: fix firmware check error path
    - keys: Fix overwrite of key expiration on instantiation
    - Linux 6.8.10
  * Noble update: v6.8.9 upstream stable release (LP: #2070337)
    - cifs: Fix reacquisition of volume cookie on still-live connection
    - smb: client: fix rename(2) regression against samba
    - cifs: reinstate original behavior again for forceuid/forcegid
    - HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc
    - HID: logitech-dj: allow mice to use all types of reports
    - arm64: dts: rockchip: set PHY address of MT7531 switch to 0x1f
    - arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 Puma
    - arm64: dts: rockchip: fix alphabetical ordering RK3399 puma
    - arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for RK3399 Puma
    - arm64: dts: rockchip: Fix the i2c address of es8316 on Cool Pi CM5
    - arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro dts
    - arm64: dts: mediatek: mt8183: Add power-domains properity to mfgcfg
    - arm64: dts: mediatek: mt8192: Add missing gce-client-reg to mutex
    - arm64: dts: mediatek: mt8195: Add missing gce-client-reg to vpp/vdosys
    - arm64: dts: mediatek: mt8195: Add missing gce-client-reg to mutex
    - arm64: dts: mediatek: mt8195: Add missing gce-client-reg to mutex1
    - arm64: dts: mediatek: cherry: Describe CPU supplies
    - arm64: dts: mediatek: mt8192-asurada: Update min voltage constraint for
      MT6315
    - arm64: dts: mediatek: mt8195-cherry: Update min voltage constraint for
      MT6315
    - arm64: dts: mediatek: mt8183-kukui: Use default min voltage for MT6358
    - arm64: dts: mediatek: mt7622: fix clock controllers
    - arm64: dts: mediatek: mt7622: fix IR nodename
    - arm64: dts: mediatek: mt7622: fix ethernet controller "compatible"
    - arm64: dts: mediatek: mt7622: drop "reset-names" from thermal block
    - arm64: dts: mediatek: mt7986: reorder properties
    - arm64: dts: mediatek: mt7986: drop invalid properties from ethsys
    - arm64: dts: mediatek: mt7986: drop "#reset-cells" from Ethernet controller
    - arm64: dts: mediatek: mt7986: reorder nodes
    - arm64: dts: mediatek: mt7986: drop invalid thermal block clock
    - arm64: dts: mediatek: mt7986: prefix BPI-R3 cooling maps with "map-"
    - arm64: dts: mediatek: mt2712: fix validation errors
    - arm64: dts: rockchip: mark system power controller and fix typo on
      orangepi-5-plus
    - arm64: dts: rockchip: regulator for sd needs to be always on for BPI-R2Pro
    - block: fix module reference leakage from bdev_open_by_dev error path
    - arm64: dts: qcom: Fix type of "wdog" IRQs for remoteprocs
    - arm64: dts: qcom: x1e80100: Fix the compatible for cluster idle states
    - arm64: dts: qcom: sc8180x: Fix ss_phy_irq for secondary USB controller
    - gpio: tangier: Use correct type for the IRQ chip data
    - ARC: [plat-hsdk]: Remove misplaced interrupt-cells property
    - wifi: mac80211: clean up assignments to pointer cache.
    - wifi: mac80211: split mesh fast tx cache into local/proxied/forwarded
    - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
    - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
    - drm/gma500: Remove lid code
    - wifi: mac80211_hwsim: init peer measurement result
    - wifi: mac80211: remove link before AP
    - wifi: mac80211: fix unaligned le16 access
    - net: libwx: fix alloc msix vectors failed
    - vxlan: drop packets from invalid src-address
    - net: bcmasp: fix memory leak when bringing down interface
    - mlxsw: core: Unregister EMAD trap using FORWARD action
    - mlxsw: core_env: Fix driver initialization with old firmware
    - mlxsw: pci: Fix driver initialization with old firmware
    - ARM: dts: microchip: at91-sama7g5ek: Replace regulator-suspend-voltage with
      the valid property
    - icmp: prevent possible NULL dereferences from icmp_build_probe()
    - bridge/br_netlink.c: no need to return void function
    - bnxt_en: refactor reset close code
    - bnxt_en: Fix the PCI-AER routines
    - bnxt_en: Fix error recovery for 5760X (P7) chips
    - cxl/core: Fix potential payload size confusion in cxl_mem_get_poison()
    - net: dsa: mv88e6xx: fix supported_interfaces setup in
      mv88e6250_phylink_get_caps()
    - NFC: trf7970a: disable all regulators on removal
    - netfs: Fix writethrough-mode error handling
    - ax25: Fix netdev refcount issue
    - soc: mediatek: mtk-svs: Append "-thermal" to thermal zone names
    - tools: ynl: don't ignore errors in NLMSG_DONE messages
    - net: usb: ax88179_178a: stop lying about skb->truesize
    - tcp: Fix Use-After-Free in tcp_ao_connect_init
    - net: gtp: Fix Use-After-Free in gtp_dellink
    - net: phy: mediatek-ge-soc: follow netdev LED trigger semantics
    - gpio: tegra186: Fix tegra186_gpio_is_accessible() check
    - drm/xe: Remove sysfs only once on action add failure
    - drm/xe: call free_gsc_pkt only once on action add failure
    - Bluetooth: hci_event: Use HCI error defines instead of magic values
    - Bluetooth: hci_conn: Only do ACL connections sequentially
    - Bluetooth: Remove pending ACL connection attempts
    - Bluetooth: hci_conn: Always use sk_timeo as conn_timeout
    - Bluetooth: hci_conn: Fix UAF Write in __hci_acl_create_connection_sync
    - Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue
    - Bluetooth: hci_sync: Attempt to dequeue connection attempt
    - Bluetooth: ISO: Reassemble PA data for bcast sink
    - Bluetooth: hci_sync: Use advertised PHYs on hci_le_ext_create_conn_sync
    - Bluetooth: btusb: Fix triggering coredump implementation for QCA
    - Bluetooth: hci_event: Fix sending HCI_OP_READ_ENC_KEY_SIZE
    - Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID
    - Bluetooth: btusb: mediatek: Fix double free of skb in coredump
    - Bluetooth: hci_sync: Using hci_cmd_sync_submit when removing Adv Monitor
    - Bluetooth: qca: set power_ctrl_enabled on NULL returned by
      gpiod_get_optional()
    - ipvs: Fix checksumming on GSO of SCTP packets
    - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
    - mlxsw: Use refcount_t for reference counting
    - mlxsw: spectrum_acl_tcam: Fix race in region ID allocation
    - mlxsw: spectrum_acl_tcam: Fix race during rehash delayed work
    - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update
    - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash
    - mlxsw: spectrum_acl_tcam: Rate limit error message
    - mlxsw: spectrum_acl_tcam: Fix memory leak during rehash
    - mlxsw: spectrum_acl_tcam: Fix warning during rehash
    - mlxsw: spectrum_acl_tcam: Fix incorrect list API usage
    - mlxsw: spectrum_acl_tcam: Fix memory leak when canceling rehash work
    - eth: bnxt: fix counting packets discarded due to OOM and netpoll
    - ARM: dts: imx6ull-tarragon: fix USB over-current polarity
    - netfilter: nf_tables: honor table dormant flag from netdev release event
      path
    - net: phy: dp83869: Fix MII mode failure
    - net: ti: icssg-prueth: Fix signedness bug in prueth_init_rx_chns()
    - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
    - i40e: Report MFS in decimal base instead of hex
    - iavf: Fix TC config comparison with existing adapter TC config
    - ice: fix LAG and VF lock dependency in ice_reset_vf()
    - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
    - octeontx2-af: fix the double free in rvu_npc_freemem()
    - dpll: check that pin is registered in __dpll_pin_unregister()
    - dpll: fix dpll_pin_on_pin_register() for multiple parent pins
    - tls: fix lockless read of strp->msg_ready in ->poll
    - af_unix: Suppress false-positive lockdep splat for spin_lock() in
      __unix_gc().
    - netfs: Fix the pre-flush when appending to a file in writethrough mode
    - drm/amd/display: Check DP Alt mode DPCS state via DMUB
    - Revert "drm/amd/display: fix USB-C flag update after enc10 feature init"
    - xhci: move event processing for one interrupter to a separate function
    - usb: xhci: correct return value in case of STS_HCE
    - KVM: x86/pmu: Zero out PMU metadata on AMD if PMU is disabled
    - KVM: x86/pmu: Set enable bits for GP counters in PERF_GLOBAL_CTRL at "RESET"
    - drm: add drm_gem_object_is_shared_for_memory_stats() helper
    - drm/amdgpu: add shared fdinfo stats
    - drm/amdgpu: fix visible VRAM handling during faults
    - Revert "UBUNTU: SAUCE: selftests/seccomp: fix check of fds being assigned"
    - selftests/seccomp: user_notification_addfd check nextfd is available
    - selftests/seccomp: Change the syscall used in KILL_THREAD test
    - selftests/seccomp: Handle EINVAL on unshare(CLONE_NEWPID)
    - x86/CPU/AMD: Add models 0x10-0x1f to the Zen5 range
    - x86/cpu: Fix check for RDPKRU in __show_regs()
    - rust: phy: implement `Send` for `Registration`
    - rust: kernel: require `Send` for `Module` implementations
    - rust: don't select CONSTRUCTORS
    - [Config] updateconfigs to drop CONSTRUCTORS for rust
    - rust: init: remove impl Zeroable for Infallible
    - rust: make mutually exclusive with CFI_CLANG
    - kbuild: rust: remove unneeded `@rustc_cfg` to avoid ICE
    - kbuild: rust: force `alloc` extern to allow "empty" Rust files
    - rust: remove `params` from `module` macro example
    - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
    - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
    - Bluetooth: qca: fix NULL-deref on non-serdev suspend
    - Bluetooth: qca: fix NULL-deref on non-serdev setup
    - mtd: rawnand: qcom: Fix broken OP_RESET_DEVICE command in
      qcom_misc_cmd_type_exec()
    - mm/hugetlb: fix missing hugetlb_lock for resv uncharge
    - mmc: sdhci-msm: pervent access to suspended controller
    - mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128
    - mm: create FOLIO_FLAG_FALSE and FOLIO_TYPE_OPS macros
    - mm: support page_mapcount() on page_has_type() pages
    - mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio()
    - smb: client: Fix struct_group() usage in __packed structs
    - smb3: missing lock when picking channel
    - smb3: fix lock ordering potential deadlock in cifs_sync_mid_result
    - btrfs: fallback if compressed IO fails for ENOSPC
    - btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range()
    - btrfs: scrub: run relocation repair when/only needed
    - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
    - x86/tdx: Preserve shared bit on mprotect()
    - cpu: Re-enable CPU mitigations by default for !X86 architectures
    - [Config] updateconfigs for CPU_MITIGATIONS
    - eeprom: at24: fix memory corruption race condition
    - LoongArch: Fix callchain parse error with kernel tracepoint events
    - LoongArch: Fix access error when read fault on a write-only VMA
    - arm64: dts: qcom: sc8280xp: add missing PCIe minimum OPP
    - arm64: dts: qcom: sm8450: Fix the msi-map entries
    - arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 Puma
    - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
    - dmaengine: xilinx: xdma: Fix wrong offsets in the buffers addresses in dma
      descriptor
    - dmaengine: xilinx: xdma: Fix synchronization issue
    - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
    - drm/amdgpu: Assign correct bits for SDMA HDP flush
    - drm/atomic-helper: fix parameter order in drm_format_conv_state_copy() call
    - drm/amdgpu/pm: Remove gpu_od if it's an empty directory
    - drm/amdgpu/umsch: don't execute umsch test when GPU is in reset/suspend
    - drm/amdgpu: Fix leak when GPU memory allocation fails
    - drm/amdkfd: Fix rescheduling of restore worker
    - drm/amdkfd: Fix eviction fence handling
    - irqchip/gic-v3-its: Prevent double free on error
    - ACPI: CPPC: Use access_width over bit_width for system memory accesses
    - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro
    - ACPI: CPPC: Fix access width used for PCC registers
    - net/mlx5e: Advertise mlx5 ethernet driver updates sk_buff md_dst for MACsec
    - ethernet: Add helper for assigning packet type when dest address does not
      match device address
    - net: b44: set pause params only when interface is up
    - macsec: Enable devices to advertise whether they update sk_buff md_dst
      during offloads
    - macsec: Detect if Rx skb is macsec-related for offloading devices that
      update md_dst
    - stackdepot: respect __GFP_NOLOCKDEP allocation flag
    - fbdev: fix incorrect address computation in deferred IO
    - udp: preserve the connected status if only UDP cmsg
    - mtd: limit OTP NVMEM cell parse to non-NAND devices
    - mtd: diskonchip: work around ubsan link failure
    - firmware: qcom: uefisecapp: Fix memory related IO errors and crashes
    - phy: qcom: qmp-combo: Fix register base for QSERDES_DP_PHY_MODE
    - phy: qcom: qmp-combo: Fix VCO div offset on v3
    - mm: turn folio_test_hugetlb into a PageType
    - mm: zswap: fix shrinker NULL crash with cgroup_disable=memory
    - dmaengine: owl: fix register access functions
    - dmaengine: tegra186: Fix residual calculation
    - idma64: Don't try to serve interrupts when device is powered off
    - soundwire: amd: fix for wake interrupt handling for clockstop mode
    - phy: marvell: a3700-comphy: Fix hardcoded array size
    - phy: freescale: imx8m-pcie: fix pcie link-up instability
    - phy: rockchip-snps-pcie3: fix bifurcation on rk3588
    - phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits
    - phy: rockchip: naneng-combphy: Fix mux on rk3588
    - phy: qcom: m31: match requested regulator name with dt schema
    - dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue
    - dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
    - riscv: Fix TASK_SIZE on 64-bit NOMMU
    - riscv: Fix loading 64-bit NOMMU kernels past the start of RAM
    - phy: ti: tusb1210: Resolve charger-det crash if charger psy is unregistered
    - dt-bindings: eeprom: at24: Fix ST M24C64-D compatible schema
    - sched/eevdf: Always update V if se->on_rq when reweighting
    - sched/eevdf: Fix miscalculation in reweight_entity() when se is not curr
    - riscv: hwprobe: fix invalid sign extension for RISCV_HWPROBE_EXT_ZVFHMIN
    - RISC-V: selftests: cbo: Ensure asm operands match constraints, take 2
    - phy: qcom: qmp-combo: fix VCO div offset on v5_5nm and v6
    - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
    - Bluetooth: hci_sync: Fix UAF in hci_acl_create_conn_sync
    - Bluetooth: hci_sync: Fix UAF on create_le_conn_complete
    - Bluetooth: hci_sync: Fix UAF on hci_abort_conn_sync
    - Linux 6.8.9
  * amdgpu hangs on DCN 3.5 at bootup: RIP:
    0010:dcn35_clk_mgr_construct+0x183/0x2210 [amdgpu] (LP: #2066233)
    - drm/amd/display: Atom Integrated System Info v2_2 for DCN35
  * [MTL] ACPI: PM: s2idle: Backport Linux ACPI s2idle patches to fix
    suspend/resume issue (LP: #2069231)
    - ACPI: PM: s2idle: Enable Low-Power S0 Idle MSFT UUID for non-AMD systems
    - ACPI: PM: s2idle: Evaluate all Low-Power S0 Idle _DSM functions
  * Removing legacy virtio-pci devices causes kernel panic (LP: #2067862)
    - virtio-pci: Check if is_avq is NULL
  * Mute/mic LEDs no function on ProBook 445/465 G11 (LP: #2069664)
    - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 445/465 G11.
  * Mute/mic LEDs no function on  ProBook 440/460 G11 (LP: #2067669)
    - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 440/460 G11.
  * rtw89_8852ce - Lost WIFI connection after suspend  (LP: #2065128)
    - wifi: rtw89: reset AFEDIG register in power off sequence
    - wifi: rtw89: 8852c: refine power sequence to imporve power consumption
  * CVE-2024-25742
    - x86/sev: Harden #VC instruction emulation somewhat
    - x86/sev: Check for MWAITX and MONITORX opcodes in the #VC handler
  * Noble update: v6.8.9 upstream stable release (LP: #2070337) //
    CVE-2024-35984
    - i2c: smbus: fix NULL function pointer dereference
  * Noble update: v6.8.9 upstream stable release (LP: #2070337) //
    CVE-2024-35990
    - dma: xilinx_dpdma: Fix locking
  * Noble update: v6.8.9 upstream stable release (LP: #2070337) //
    CVE-2024-35997
    - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
  * CVE-2024-36016
    - tty: n_gsm: fix possible out-of-bounds in gsm0_receive()
  * CVE-2024-36008
    - ipv4: check for NULL idev in ip_route_use_hint()
  * CVE-2024-35992
    - phy: marvell: a3700-comphy: Fix out of bounds read

-- Stefan Bader <stefan.bader@canonical.com>  Tue, 30 Jul 2024 16:33:58 +0200

Changed in linux-hwe-6.8 (Ubuntu Jammy):
status:	Fix Committed → Fix Released

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-08-26:

#6

This bug is awaiting verification that the linux-nvidia-tegra/5.15.0-1028.28 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-nvidia-tegra' to 'verification-done-jammy-linux-nvidia-tegra'. If the problem still exists, change the tag 'verification-needed-jammy-linux-nvidia-tegra' to 'verification-failed-jammy-linux-nvidia-tegra'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-nvidia-tegra-v2 verification-needed-jammy-linux-nvidia-tegra

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-08-26:

#7

This bug is awaiting verification that the linux-gcp-6.8/6.8.0-1014.15~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-gcp-6.8' to 'verification-done-jammy-linux-gcp-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-gcp-6.8' to 'verification-failed-jammy-linux-gcp-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-gcp-6.8-v2 verification-needed-jammy-linux-gcp-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-08-27:

#8

This bug is awaiting verification that the linux-nvidia-tegra-igx/5.15.0-1016.16 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-nvidia-tegra-igx' to 'verification-done-jammy-linux-nvidia-tegra-igx'. If the problem still exists, change the tag 'verification-needed-jammy-linux-nvidia-tegra-igx' to 'verification-failed-jammy-linux-nvidia-tegra-igx'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-nvidia-tegra-igx-v2 verification-needed-jammy-linux-nvidia-tegra-igx

Revision history for this message

Launchpad Janitor (janitor) wrote on 2024-09-10:

#9

Download full text (69.7 KiB)

This bug was fixed in the package linux - 6.8.0-44.44

---------------
linux (6.8.0-44.44) noble; urgency=medium

* noble/linux: 6.8.0-44.44 -proposed tracker (LP: #2076647)

  * Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.08.05)

* Disable PCI_DYNAMIC_OF_NODES in Ubuntu (LP: #2074376)
- [Config] Disable PCI_DYNAMIC_OF_NODES

  * [SRU] Turbostat support for Arrow Lake H (LP: #2074372)
    - tools/power turbostat: Enhance ARL/LNL support
    - x86/cpu: Add model number for another Intel Arrow Lake mobile processor
    - tools/power turbostat: Add ARL-H support

  * Noble update: upstream stable patchset 2024-07-30 (LP: #2075154)
    - fs/writeback: bail out if there is no more inodes for IO and queued once
    - padata: Disable BH when taking works lock on MT path
    - crypto: hisilicon/sec - Fix memory leak for sec resource release
    - crypto: hisilicon/qm - Add the err memory release process to qm uninit
    - io_uring/sqpoll: work around a potential audit memory leak
    - rcutorture: Fix rcu_torture_one_read() pipe_count overflow comment
    - rcutorture: Make stall-tasks directly exit when rcutorture tests end
    - rcutorture: Fix invalid context warning when enable srcu barrier testing
    - block/ioctl: prefer different overflow check
    - ssb: Fix potential NULL pointer dereference in ssb_device_uevent()
    - selftests/bpf: Prevent client connect before server bind in
      test_tc_tunnel.sh
    - selftests/bpf: Fix flaky test btf_map_in_map/lookup_update
    - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
    - wifi: ath9k: work around memset overflow warning
    - af_packet: avoid a false positive warning in packet_setsockopt()
    - ACPI: x86: Add PNP_UART1_SKIP quirk for Lenovo Blade2 tablets
    - drop_monitor: replace spin_lock by raw_spin_lock
    - scsi: qedi: Fix crash while reading debugfs attribute
    - net: sfp: add quirk for ATS SFP-GE-T 1000Base-TX module
    - net/sched: fix false lockdep warning on qdisc root lock
    - kselftest: arm64: Add a null pointer check
    - net: dsa: realtek: keep default LED state in rtl8366rb
    - netpoll: Fix race condition in netpoll_owner_active
    - wifi: mt76: mt7921s: fix potential hung tasks during chip recovery
    - HID: Add quirk for Logitech Casa touchpad
    - HID: asus: fix more n-key report descriptors if n-key quirked
    - ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7
    - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
    - drm/amd/display: Exit idle optimizations before HDCP execution
    - platform/x86: toshiba_acpi: Add quirk for buttons on Z830
    - ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14
    - ASoC: Intel: sof_sdw: add quirk for Dell SKU 0C0F
    - drm/lima: add mask irq callback to gp and pp
    - drm/lima: mask irqs in timeout path before hard reset
    - ALSA: hda/realtek: Add quirks for Lenovo 13X
    - powerpc/pseries: Enforce hcall result buffer validity and size
    - media: intel/ipu6: Fix build with !ACPI
    - media: mtk-vcodec: potential null pointer deference in SCP
    - powerpc/io: Avoid clang nu...

This bug was fixed in the package linux - 6.8.0-44.44

---------------
linux (6.8.0-44.44) noble; urgency=medium

* noble/linux: 6.8.0-44.44 -proposed tracker (LP: #2076647)

* Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.08.05)

* Disable PCI_DYNAMIC_OF_NODES in Ubuntu (LP: #2074376)
    - [Config] Disable PCI_DYNAMIC_OF_NODES

* [SRU] Turbostat support for Arrow Lake H (LP: #2074372)
    - tools/power turbostat: Enhance ARL/LNL support
    - x86/cpu: Add model number for another Intel Arrow Lake mobile processor
    - tools/power turbostat: Add ARL-H support

* Noble update: upstream stable patchset 2024-07-30 (LP: #2075154)
    - fs/writeback: bail out if there is no more inodes for IO and queued once
    - padata: Disable BH when taking works lock on MT path
    - crypto: hisilicon/sec - Fix memory leak for sec resource release
    - crypto: hisilicon/qm - Add the err memory release process to qm uninit
    - io_uring/sqpoll: work around a potential audit memory leak
    - rcutorture: Fix rcu_torture_one_read() pipe_count overflow comment
    - rcutorture: Make stall-tasks directly exit when rcutorture tests end
    - rcutorture: Fix invalid context warning when enable srcu barrier testing
    - block/ioctl: prefer different overflow check
    - ssb: Fix potential NULL pointer dereference in ssb_device_uevent()
    - selftests/bpf: Prevent client connect before server bind in
      test_tc_tunnel.sh
    - selftests/bpf: Fix flaky test btf_map_in_map/lookup_update
    - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
    - wifi: ath9k: work around memset overflow warning
    - af_packet: avoid a false positive warning in packet_setsockopt()
    - ACPI: x86: Add PNP_UART1_SKIP quirk for Lenovo Blade2 tablets
    - drop_monitor: replace spin_lock by raw_spin_lock
    - scsi: qedi: Fix crash while reading debugfs attribute
    - net: sfp: add quirk for ATS SFP-GE-T 1000Base-TX module
    - net/sched: fix false lockdep warning on qdisc root lock
    - kselftest: arm64: Add a null pointer check
    - net: dsa: realtek: keep default LED state in rtl8366rb
    - netpoll: Fix race condition in netpoll_owner_active
    - wifi: mt76: mt7921s: fix potential hung tasks during chip recovery
    - HID: Add quirk for Logitech Casa touchpad
    - HID: asus: fix more n-key report descriptors if n-key quirked
    - ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7
    - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
    - drm/amd/display: Exit idle optimizations before HDCP execution
    - platform/x86: toshiba_acpi: Add quirk for buttons on Z830
    - ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14
    - ASoC: Intel: sof_sdw: add quirk for Dell SKU 0C0F
    - drm/lima: add mask irq callback to gp and pp
    - drm/lima: mask irqs in timeout path before hard reset
    - ALSA: hda/realtek: Add quirks for Lenovo 13X
    - powerpc/pseries: Enforce hcall result buffer validity and size
    - media: intel/ipu6: Fix build with !ACPI
    - media: mtk-vcodec: potential null pointer deference in SCP
    - powerpc/io: Avoid clang null pointer arithmetic warnings
    - platform/x86: p2sb: Don't init until unassigned resources have been assigned
    - power: supply: cros_usbpd: provide ID table for avoiding fallback match
    - iommu/arm-smmu-v3: Free MSIs in case of ENOMEM
    - ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super()
    - kprobe/ftrace: bail out if ftrace was killed
    - usb: gadget: uvc: configfs: ensure guid to be valid before set
    - f2fs: remove clear SB_INLINECRYPT flag in default_options
    - usb: misc: uss720: check for incompatible versions of the Belkin F5U002
    - Avoid hw_desc array overrun in dw-axi-dmac
    - usb: dwc3: pci: Don't set "linux,phy_charger_detect" property on Lenovo Yoga
      Tab2 1380
    - usb: typec: ucsi_glink: drop special handling for CCI_BUSY
    - udf: udftime: prevent overflow in udf_disk_stamp_to_time()
    - PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports
    - f2fs: don't set RO when shutting down f2fs
    - MIPS: Octeon: Add PCIe link status check
    - serial: imx: Introduce timeout when waiting on transmitter empty
    - serial: exar: adding missing CTI and Exar PCI ids
    - usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API
    - tty: add the option to have a tty reject a new ldisc
    - vfio/pci: Collect hot-reset devices to local buffer
    - cpufreq: amd-pstate: fix memory leak on CPU EPP exit
    - ACPI: EC: Install address space handler at the namespace root
    - PCI: Do not wait for disconnected devices when resuming
    - ALSA: hda: cs35l41: Possible null pointer dereference in
      cs35l41_hda_unbind()
    - ALSA: seq: ump: Fix missing System Reset message handling
    - MIPS: Routerboard 532: Fix vendor retry check code
    - mips: bmips: BCM6358: make sure CBR is correctly set
    - tracing: Build event generation tests only as modules
    - ALSA: hda/realtek: Remove Framework Laptop 16 from quirks
    - ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option
    - ice: avoid IRQ collision to fix init failure on ACPI S3 resume
    - btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes
    - net: mvpp2: use slab_build_skb for oversized frames
    - cipso: fix total option length computation
    - ALSA: hda: cs35l56: Component should be unbound before deconstruction
    - ALSA: hda: tas2781: Component should be unbound before deconstruction
    - bpf: Avoid splat in pskb_pull_reason
    - ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM
    - netrom: Fix a memory leak in nr_heartbeat_expiry()
    - ipv6: prevent possible NULL deref in fib6_nh_init()
    - ipv6: prevent possible NULL dereference in rt6_probe()
    - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
    - netns: Make get_net_ns() handle zero refcount net
    - qca_spi: Make interrupt remembering atomic
    - net: lan743x: disable WOL upon resume to restore full data path operation
    - net: lan743x: Support WOL at both the PHY and MAC appropriately
    - net: phy: mxl-gpy: Remove interrupt mask clearing from config_init
    - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
    - tipc: force a dst refcount before doing decryption
    - sched: act_ct: add netns into the key of tcf_ct_flow_table
    - ptp: fix integer overflow in max_vclocks_store
    - selftests: openvswitch: Use bash as interpreter
    - net: stmmac: No need to calculate speed divider when offload is disabled
    - virtio_net: checksum offloading handling fix
    - virtio_net: fixing XDP for fully checksummed packets handling
    - octeontx2-pf: Add error handling to VLAN unoffload handling
    - octeontx2-pf: Fix linking objects into multiple modules
    - netfilter: ipset: Fix suspicious rcu_dereference_protected()
    - seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6
      behaviors
    - netfilter: move the sysctl nf_hooks_lwtunnel into the netfilter core
    - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type
    - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error
    - net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings
    - RDMA/bnxt_re: Fix the max msix vectors macro
    - spi: cs42l43: Correct SPI root clock speed
    - RDMA/rxe: Fix responder length checking for UD request packets
    - regulator: core: Fix modpost error "regulator_get_regmap" undefined
    - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list
    - dmaengine: ioatdma: Fix leaking on version mismatch
    - dmaengine: ioatdma: Fix error path in ioat3_dma_probe()
    - dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe()
    - dmaengine: fsl-edma: avoid linking both modules
    - dmaengine: ioatdma: Fix missing kmem_cache_destroy()
    - regulator: bd71815: fix ramp values
    - thermal/drivers/mediatek/lvts_thermal: Return error in case of invalid efuse
      data
    - arm64: dts: imx8mp: Fix TC9595 input clock on DH i.MX8M Plus DHCOM SoM
    - arm64: dts: freescale: imx8mp-venice-gw73xx-2x: fix BT shutdown GPIO
    - arm64: dts: imx93-11x11-evk: Remove the 'no-sdio' property
    - arm64: dts: freescale: imx8mm-verdin: enable hysteresis on slow input pin
    - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
      fine."
    - spi: spi-imx: imx51: revert burst length calculation back to bits_per_word
    - io_uring/rsrc: fix incorrect assignment of iter->nr_segs in io_import_fixed
    - firmware: psci: Fix return value from psci_system_suspend()
    - RDMA/mlx5: Fix unwind flow as part of mlx5_ib_stage_init_init
    - RDMA/mlx5: Add check for srq max_sge attribute
    - RDMA/mana_ib: Ignore optional access flags for MRs
    - ACPI: EC: Evaluate orphan _REG under EC device
    - arm64: defconfig: enable the vf610 gpio driver
    - ext4: avoid overflow when setting values via sysfs
    - ext4: fix slab-out-of-bounds in ext4_mb_find_good_group_avg_frag_lists()
    - net: stmmac: Assign configured channel value to EXTTS event
    - net: usb: ax88179_178a: improve reset check
    - net: do not leave a dangling sk pointer, when socket creation fails
    - btrfs: retry block group reclaim without infinite loop
    - scsi: ufs: core: Free memory allocated for model before reinit
    - cifs: fix typo in module parameter enable_gcm_256
    - LoongArch: Fix watchpoint setting error
    - LoongArch: Trigger user-space watchpoints correctly
    - LoongArch: Fix multiple hardware watchpoint issues
    - KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
    - KVM: arm64: Disassociate vcpus from redistributor region on teardown
    - KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes
    - RDMA/rxe: Fix data copy for IB_SEND_INLINE
    - RDMA/mlx5: Remove extra unlock on error path
    - RDMA/mlx5: Follow rb_key.ats when creating new mkeys
    - ovl: fix encoding fid for lower only root
    - ALSA: hda/realtek: Limit mic boost on N14AP7
    - ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14AHP9
    - drm/i915/mso: using joiner is not possible with eDP MSO
    - drm/radeon: fix UBSAN warning in kv_dpm.c
    - drm/amdgpu: fix UBSAN warning in kv_dpm.c
    - dt-bindings: dma: fsl-edma: fix dma-channels constraints
    - ocfs2: fix NULL pointer dereference in ocfs2_journal_dirty()
    - ocfs2: fix NULL pointer dereference in ocfs2_abort_trigger()
    - gcov: add support for GCC 14
    - kcov: don't lose track of remote references during softirqs
    - efi/x86: Free EFI memory map only when installing a new one.
    - serial: 8250_dw: Revert "Move definitions to the shared header"
    - mm: mmap: allow for the maximum number of bits for randomizing mmap_base by
      default
    - tcp: clear tp->retrans_stamp in tcp_rcv_fastopen_synack()
    - mm/page_table_check: fix crash on ZONE_DEVICE
    - i2c: ocores: set IACK bit after core is enabled
    - dt-bindings: i2c: atmel,at91sam: correct path to i2c-controller schema
    - dt-bindings: i2c: google,cros-ec-i2c-tunnel: correct path to i2c-controller
      schema
    - spi: stm32: qspi: Fix dual flash mode sanity test in stm32_qspi_setup()
    - arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc
    - spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to CCR_BUSWIDTH_4
    - perf: script: add raw|disasm arguments to --insn-trace option
    - nbd: Improve the documentation of the locking assumptions
    - nbd: Fix signal handling
    - tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test
    - x86/cpu/vfm: Add new macros to work with (vendor/family/model) values
    - x86/cpu: Fix x86_match_cpu() to match just X86_VENDOR_INTEL
    - drm/amd/display: revert Exit idle optimizations before HDCP execution
    - ASoC: Intel: sof-sdw: really remove FOUR_SPEAKER quirk
    - net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc error path
    - kprobe/ftrace: fix build error due to bad function definition
    - hid: asus: asus_report_fixup: fix potential read out of bounds
    - Revert "mm: mmap: allow for the maximum number of bits for randomizing
      mmap_base by default"
    - platform/chrome: cros_usbpd_logger: provide ID table for avoiding fallback
      match
    - platform/chrome: cros_usbpd_notify: provide ID table for avoiding fallback
      match
    - ubsan: Avoid i386 UBSAN handler crashes with Clang
    - arm64: defconfig: select INTERCONNECT_QCOM_SM6115 as built-in
    - bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
    - devlink: use kvzalloc() to allocate devlink instance resources
    - wifi: rtw89: 8852c: add quirk to set PCI BER for certain platforms
    - clocksource: Make watchdog and suspend-timing multiplication overflow safe
    - ACPI: resource: Do IRQ override on GMxBGxx (XMG APEX 17 M23)
    - wifi: ath12k: add string type to search board data in board-2.bin for
      WCN7850
    - wifi: ath12k: add firmware-2.bin support
    - wifi: ath12k: fix kernel crash during resume
    - arm64/sysreg: Update PIE permission encodings
    - ACPI: resource: Skip IRQ override on Asus Vivobook Pro N6506MV
    - wifi: ath12k: fix the problem that down grade phy mode operation
    - bpf: avoid uninitialized warnings in verifier_global_subprogs.c
    - selftests: net: fix timestamp not arriving in cmsg_time.sh
    - net: ena: Add validation for completion descriptors consistency
    - drm/amd/display: Workaround register access in idle race with cursor
    - cgroup/cpuset: Make cpuset hotplug processing synchronous
    - platform/x86: x86-android-tablets: Unregister devices in reverse order
    - platform/x86: x86-android-tablets: Add Lenovo Yoga Tablet 2 Pro 1380F/L data
    - ALSA: hda/realtek: Add quirks for HP Omen models using CS35L41
    - ext4: fold quota accounting into ext4_xattr_inode_lookup_create()
    - ext4: do not create EA inode under buffer lock
    - f2fs: fix to detect inconsistent nat entry during truncation
    - usb: typec: ucsi_glink: rework quirks implementation
    - xhci: remove XHCI_TRUST_TX_LENGTH quirk
    - clk: Add a devm variant of clk_rate_exclusive_get()
    - clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get()
    - i2c: lpi2c: Avoid calling clk_get_rate during transfer
    - cxl: Add post-reset warning if reset results in loss of previously committed
      HDM decoders
    - OPP: Fix required_opp_tables for multiple genpds using same table
    - wifi: iwlwifi: mvm: fix ROC version check
    - wifi: mac80211: Recalc offload when monitor stop
    - ice: fix 200G link speed message log
    - ice: implement AQ download pkg retry
    - bpf: Fix reg_set_min_max corruption of fake_reg
    - ALSA: hda: cs35l41: Component should be unbound before deconstruction
    - netdev-genl: fix error codes when outputting XDP features
    - arm64: dts: freescale: imx8mm-verdin: Fix GPU speed
    - phy: qcom-qmp: qserdes-txrx: Add missing registers offsets
    - phy: qcom-qmp: pcs: Add missing v6 N4 register offsets
    - phy: qcom: qmp-combo: Switch from V6 to V6 N4 register offsets
    - powerpc/crypto: Add generated P8 asm to .gitignore
    - spi: Exctract spi_dev_check_cs() helper
    - spi: Fix SPI slave probe failure
    - net: phy: dp83tg720: wake up PHYs in managed mode
    - net: phy: dp83tg720: get master/slave configuration in link down state
    - RDMA/mlx5: Ensure created mkeys always have a populated rb_key
    - drm/amdgpu: fix locking scope when flushing tlb
    - drm/amd/display: Remove redundant idle optimization check
    - drm/amd/display: Attempt to avoid empty TUs when endpoint is DPIA
    - ata: ahci: Do not enable LPM if no LPM states are supported by the HBA
    - dmaengine: xilinx: xdma: Fix data synchronisation in xdma_channel_isr()
    - net/tcp_ao: Don't leak ao_info on error-path
    - mm: shmem: fix getting incorrect lruvec when replacing a shmem folio
    - selftests: mptcp: print_test out of verify_listener_events
    - selftests: mptcp: userspace_pm: fixed subtest names
    - ima: Avoid blocking in RCU read-side critical section
    - virt: guest_memfd: fix reference leak on hwpoisoned page
    - thermal: int340x: processor_thermal: Support shared interrupts
    - thermal: core: Change PM notifier priority to the minimum
    - wifi: ath12k: check M3 buffer size as well whey trying to reuse it
    - Upstream stable to v6.6.36, v6.9.7

* [SRU] Add Dynamic Tuning Technology (DTT)  support for Lunar Lake
    (LP: #2073961)
    - thermal: int340x: processor_thermal: Add Lunar Lake-M PCI ID

* Kubuntu 24.04 freezes after plugging in ethernet cable (LP: #2073358)
    - e1000e: move force SMBUS near the end of enable_ulp function
    - e1000e: fix force smbus during suspend flow

* Noble update: upstream stable patchset 2024-07-25 (LP: #2074091)
    - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects
    - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
    - wifi: cfg80211: fully move wiphy work to unbound workqueue
    - wifi: cfg80211: Lock wiphy in cfg80211_get_station
    - wifi: cfg80211: pmsr: use correct nla_get_uX functions
    - wifi: iwlwifi: mvm: don't initialize csa_work twice
    - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64
    - wifi: iwlwifi: mvm: set properly mac header
    - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef
    - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids
    - wifi: iwlwifi: mvm: don't read past the mfuart notifcation
    - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element
    - scsi: ufs: mcq: Fix error output and clean up ufshcd_mcq_abort()
    - RISC-V: KVM: No need to use mask when hart-index-bit is 0
    - RISC-V: KVM: Fix incorrect reg_subtype labels in
      kvm_riscv_vcpu_set_reg_isa_ext function
    - ax25: Fix refcount imbalance on inbound connections
    - ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
    - net/ncsi: Fix the multi thread manner of NCSI driver
    - net: phy: micrel: fix KSZ9477 PHY issues after suspend/resume
    - bpf: Fix a potential use-after-free in bpf_link_free()
    - KVM: SEV-ES: Disallow SEV-ES guests when X86_FEATURE_LBRV is absent
    - KVM: SEV-ES: Delegate LBR virtualization to the processor
    - vmxnet3: disable rx data ring on dma allocation failure
    - ipv6: ioam: block BH from ioam6_output()
    - ipv6: sr: block BH in seg6_output_core() and seg6_input_core()
    - net: tls: fix marking packets as decrypted
    - bpf: Set run context for rawtp test_run callback
    - octeontx2-af: Always allocate PF entries from low prioriy zone
    - net/smc: avoid overwriting when adjusting sock bufsizes
    - net: phy: Micrel KSZ8061: fix errata solution not taking effect problem
    - net: sched: sch_multiq: fix possible OOB write in multiq_tune()
    - vxlan: Fix regression when dropping packets due to invalid src addresses
    - tcp: count CLOSE-WAIT sockets for TCP_MIB_CURRESTAB
    - mptcp: count CLOSE-WAIT sockets for MPTCP_MIB_CURRESTAB
    - net/mlx5: Stop waiting for PCI if pci channel is offline
    - net/mlx5: Always stop health timer during driver removal
    - net/mlx5: Fix tainted pointer delete is case of flow rules creation fail
    - net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP
    - ptp: Fix error message on failed pin verification
    - ice: fix iteration of TLVs in Preserved Fields Area
    - ice: remove af_xdp_zc_qps bitmap
    - ice: add flag to distinguish reset from .ndo_bpf in XDP rings config
    - net: wwan: iosm: Fix tainted pointer delete is case of region creation fail
    - af_unix: Set sk->sk_state under unix_state_lock() for truly disconencted
      peer.
    - af_unix: Annodate data-races around sk->sk_state for writers.
    - af_unix: Annotate data-race of sk->sk_state in unix_inq_len().
    - af_unix: Annotate data-races around sk->sk_state in unix_write_space() and
      poll().
    - af_unix: Annotate data-race of sk->sk_state in unix_stream_connect().
    - af_unix: Annotate data-races around sk->sk_state in sendmsg() and recvmsg().
    - af_unix: Annotate data-race of sk->sk_state in unix_stream_read_skb().
    - af_unix: Annotate data-races around sk->sk_state in UNIX_DIAG.
    - af_unix: Annotate data-races around sk->sk_sndbuf.
    - af_unix: Annotate data-race of net->unx.sysctl_max_dgram_qlen.
    - af_unix: Use unix_recvq_full_lockless() in unix_stream_connect().
    - af_unix: Use skb_queue_empty_lockless() in unix_release_sock().
    - af_unix: Use skb_queue_len_lockless() in sk_diag_show_rqlen().
    - af_unix: Annotate data-race of sk->sk_shutdown in sk_diag_fill().
    - ipv6: fix possible race in __fib6_drop_pcpu_from()
    - net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool()
    - selftests/mm: log a consistent test name for check_compaction
    - irqchip/riscv-intc: Allow large non-standard interrupt number
    - irqchip/riscv-intc: Introduce Andes hart-level interrupt controller
    - eventfs: Update all the eventfs_inodes from the events descriptor
    - io_uring/rsrc: don't lock while !TASK_RUNNING
    - io_uring: check for non-NULL file pointer in io_file_can_poll()
    - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages
    - USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected
    - usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps
    - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state
    - mei: me: release irq in mei_me_pci_resume error path
    - tty: n_tty: Fix buffer offsets when lookahead is used
    - serial: port: Don't block system suspend even if bytes are left to xmit
    - landlock: Fix d_parent walk
    - jfs: xattr: fix buffer overflow for invalid xattr
    - xhci: Set correct transferred length for cancelled bulk transfers
    - xhci: Apply reset resume quirk to Etron EJ188 xHCI host
    - xhci: Handle TD clearing for multiple streams case
    - xhci: Apply broken streams quirk to Etron EJ188 xHCI host
    - thunderbolt: debugfs: Fix margin debugfs node creation condition
    - scsi: core: Disable CDL by default
    - scsi: mpi3mr: Fix ATA NCQ priority support
    - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory
    - scsi: sd: Use READ(16) when reading block zero on large capacity disks
    - gve: Clear napi->skb before dev_kfree_skb_any()
    - powerpc/uaccess: Fix build errors seen with GCC 13/14
    - HID: nvidia-shield: Add missing check for input_ff_create_memless
    - cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c
    - cxl/region: Fix memregion leaks in devm_cxl_add_region()
    - cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd
    - cachefiles: remove requests from xarray during flushing requests
    - cachefiles: add spin_lock for cachefiles_ondemand_info
    - cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()
    - cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()
    - cachefiles: remove err_put_fd label in cachefiles_ondemand_daemon_read()
    - cachefiles: never get a new anonymous fd if ondemand_id is valid
    - cachefiles: defer exposing anon_fd until after copy_to_user() succeeds
    - cachefiles: flush all requests after setting CACHEFILES_DEAD
    - selftests/ftrace: Fix to check required event file
    - clk: sifive: Do not register clkdevs for PRCI clocks
    - NFSv4.1 enforce rootpath check in fs_location query
    - SUNRPC: return proper error from gss_wrap_req_priv
    - NFS: add barriers when testing for NFS_FSDATA_BLOCKED
    - selftests/tracing: Fix event filter test to retry up to 10 times
    - nvme: fix nvme_pr_* status code parsing
    - drm/panel: sitronix-st7789v: Add check for of_drm_get_panel_orientation
    - platform/x86: dell-smbios: Fix wrong token data in sysfs
    - gpio: tqmx86: fix typo in Kconfig label
    - gpio: tqmx86: introduce shadow register for GPIO output value
    - gpio: tqmx86: store IRQ trigger type and unmask status separately
    - gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type
    - HID: core: remove unnecessary WARN_ON() in implement()
    - iommu/amd: Fix sysfs leak in iommu init
    - iommu: Return right value in iommu_sva_bind_device()
    - io_uring/io-wq: Use set_bit() and test_bit() at worker->flags
    - io_uring/io-wq: avoid garbage value of 'match' in io_wq_enqueue()
    - HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()
    - drm/vmwgfx: Refactor drm connector probing for display modes
    - drm/vmwgfx: Filter modes which exceed graphics memory
    - drm/vmwgfx: 3D disabled should not effect STDU memory limits
    - drm/vmwgfx: Remove STDU logic from generic mode_valid function
    - drm/vmwgfx: Don't memcmp equivalent pointers
    - af_unix: Annotate data-race of sk->sk_state in unix_accept().
    - modpost: do not warn about missing MODULE_DESCRIPTION() for vmlinux.o
    - net: sfp: Always call `sfp_sm_mod_remove()` on remove
    - net: hns3: fix kernel crash problem in concurrent scenario
    - net: hns3: add cond_resched() to hns3 ring buffer init process
    - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet
    - net: stmmac: dwmac-qcom-ethqos: Configure host DMA width
    - drm/komeda: check for error-valued pointer
    - drm/bridge/panel: Fix runtime warning on panel bridge release
    - tcp: fix race in tcp_v6_syn_recv_sock()
    - net dsa: qca8k: fix usages of device_get_named_child_node()
    - geneve: Fix incorrect inner network header offset when innerprotoinherit is
      set
    - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN)
      packets
    - Bluetooth: fix connection setup in l2cap_connect
    - netfilter: nft_inner: validate mandatory meta and payload
    - netfilter: ipset: Fix race between namespace cleanup and gc in the list:set
      type
    - x86/asm: Use %c/%n instead of %P operand modifier in asm templates
    - x86/uaccess: Fix missed zeroing of ia32 u64 get_user() range checking
    - scsi: ufs: core: Quiesce request queues before checking pending cmds
    - net: pse-pd: Use EOPNOTSUPP error code instead of ENOTSUPP
    - gve: ignore nonrelevant GSO type bits when processing TSO headers
    - net: stmmac: replace priv->speed with the portTransmitRate from the tc-cbs
      parameters
    - block: sed-opal: avoid possible wrong address reference in
      read_sed_opal_key()
    - block: fix request.queuelist usage in flush
    - nvmet-passthru: propagate status from id override functions
    - net/ipv6: Fix the RT cache flush via sysctl using a previous delay
    - net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state
    - net: bridge: mst: fix suspicious rcu usage in br_mst_set_state
    - ionic: fix use after netif_napi_del()
    - af_unix: Read with MSG_PEEK loops if the first unread byte is OOB
    - bnxt_en: Adjust logging of firmware messages in case of released token in
      __hwrm_send()
    - misc: microchip: pci1xxxx: fix double free in the error handling of
      gp_aux_bus_probe()
    - ksmbd: move leading slash check to smb2_get_name()
    - ksmbd: fix missing use of get_write in in smb2_set_ea()
    - x86/boot: Don't add the EFI stub to targets, again
    - iio: adc: ad9467: fix scan type sign
    - iio: dac: ad5592r: fix temperature channel scaling value
    - iio: invensense: fix odr switching to same value
    - iio: imu: inv_icm42600: delete unneeded update watermark call
    - drivers: core: synchronize really_probe() and dev_uevent()
    - parisc: Try to fix random segmentation faults in package builds
    - ACPI: x86: Force StorageD3Enable on more products
    - drm/exynos/vidi: fix memory leak in .get_modes()
    - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found
    - mptcp: ensure snd_una is properly initialized on connect
    - mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID
    - mptcp: pm: update add_addr counters after connect
    - clkdev: Update clkdev id usage to allow for longer names
    - irqchip/gic-v3-its: Fix potential race condition in its_vlpi_prop_update()
    - x86/kexec: Fix bug with call depth tracking
    - x86/amd_nb: Check for invalid SMN reads
    - perf/core: Fix missing wakeup when waiting for context reference
    - perf auxtrace: Fix multiple use of --itrace option
    - riscv: fix overlap of allocated page and PTR_ERR
    - tracing/selftests: Fix kprobe event name test for .isra. functions
    - kheaders: explicitly define file modes for archived headers
    - null_blk: Print correct max open zones limit in null_init_zoned_dev()
    - sock_map: avoid race between sock_map_close and sk_psock_put
    - dma-buf: handle testing kthreads creation failure
    - vmci: prevent speculation leaks by sanitizing event in event_deliver()
    - spmi: hisi-spmi-controller: Do not override device identifier
    - knfsd: LOOKUP can return an illegal error value
    - fs/proc: fix softlockup in __read_vmcore
    - ocfs2: use coarse time for new created files
    - ocfs2: fix races between hole punching and AIO+DIO
    - PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id
    - dmaengine: axi-dmac: fix possible race in remove()
    - remoteproc: k3-r5: Wait for core0 power-up before powering up core1
    - remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs
    - iio: adc: axi-adc: make sure AXI clock is enabled
    - iio: invensense: fix interrupt timestamp alignment
    - riscv: rewrite __kernel_map_pages() to fix sleeping in invalid context
    - rtla/timerlat: Simplify "no value" printing on top
    - rtla/auto-analysis: Replace \t with spaces
    - drm/i915/gt: Disarm breadcrumbs if engines are already idle
    - drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
    - drm/i915/dpt: Make DPT object unshrinkable
    - drm/i915: Fix audio component initialization
    - intel_th: pci: Add Meteor Lake-S support
    - pmdomain: ti-sci: Fix duplicate PD referrals
    - btrfs: zoned: fix use-after-free due to race with dev replace
    - xfs: fix imprecise logic in xchk_btree_check_block_owner
    - xfs: fix scrub stats file permissions
    - xfs: fix SEEK_HOLE/DATA for regions with active COW extents
    - xfs: shrink failure needs to hold AGI buffer
    - xfs: ensure submit buffers on LSN boundaries in error handlers
    - xfs: allow sunit mount option to repair bad primary sb stripe values
    - xfs: don't use current->journal_info
    - xfs: allow cross-linking special files without project quota
    - swiotlb: Enforce page alignment in swiotlb_alloc()
    - swiotlb: Reinstate page-alignment for mappings >= PAGE_SIZE
    - swiotlb: extend buffer pre-padding to alloc_align_mask if necessary
    - tick/nohz_full: Don't abuse smp_call_function_single() in
      tick_setup_device()
    - mm/huge_memory: don't unpoison huge_zero_folio
    - serial: 8250_pxa: Configure tx_loadsz to match FIFO IRQ level
    - Revert "fork: defer linking file vma until vma is fully initialized"
    - remoteproc: k3-r5: Jump to error handling labels in start/stop errors
    - greybus: Fix use-after-free bug in gb_interface_release due to race
      condition.
    - ima: Fix use-after-free on a dentry's dname.name
    - serial: core: Add UPIO_UNKNOWN constant for unknown port type
    - serial: port: Introduce a common helper to read properties
    - serial: 8250_dw: Switch to use uart_read_port_properties()
    - serial: 8250_dw: Replace ACPI device check by a quirk
    - serial: 8250_dw: Don't use struct dw8250_data outside of 8250_dw
    - usb-storage: alauda: Check whether the media is initialized
    - misc: microchip: pci1xxxx: Fix a memory leak in the error handling of
      gp_aux_bus_probe()
    - i2c: at91: Fix the functionality flags of the slave-only interface
    - i2c: designware: Fix the functionality flags of the slave-only interface
    - zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING
    - wifi: ath11k: fix WCN6750 firmware crash caused by 17 num_vdevs
    - cpufreq: amd-pstate: Unify computation of
      {max,min,nominal,lowest_nonlinear}_freq
    - cpufreq: amd-pstate: Add quirk for the pstate CPPC capabilities missing
    - cpufreq: amd-pstate: remove global header file
    - virtio_net: fix possible dim status unrecoverable
    - net: ethernet: mtk_eth_soc: handle dma buffer size soc specific
    - ice: fix reads from NVM Shadow RAM on E830 and E825-C devices
    - ice: map XDP queues to vectors in ice_vsi_map_rings_to_vectors()
    - x86/cpu: Get rid of an unnecessary local variable in get_cpu_address_sizes()
    - x86/cpu: Provide default cache line size if not enumerated
    - selftests/mm: ksft_exit functions do not return
    - selftests/mm: compaction_test: fix bogus test success and reduce probability
      of OOM-killer invocation
    - .editorconfig: remove trim_trailing_whitespace option
    - kcov, usb: disable interrupts in kcov_remote_start_usb_softirq
    - ata: libata-scsi: Set the RMB bit only for removable media devices
    - powerpc/85xx: fix compile error without CONFIG_CRASH_DUMP
    - kselftest/alsa: Ensure _GNU_SOURCE is defined
    - thermal: core: Do not fail cdev registration because of invalid initial
      state
    - Bluetooth: hci_sync: Fix not using correct handle
    - net/sched: initialize noop_qdisc owner
    - tcp: use signed arithmetic in tcp_rtx_probe0_timed_out()
    - drm/nouveau: don't attempt to schedule hpd_work on headless cards
    - drm/xe/xe_gt_idle: use GT forcewake domain assertion
    - drm/xe: flush engine buffers before signalling user fence on all engines
    - drm/xe: Remove mem_access from guc_pc calls
    - drm/xe: move disable_c6 call
    - bnxt_en: Cap the size of HWRM_PORT_PHY_QCFG forwarded response
    - iio: imu: bmi323: Fix trigger notification in case of error
    - iio: pressure: bmp280: Fix BMP580 temperature reading
    - iio: temperature: mlx90635: Fix ERR_PTR dereference in mlx90635_probe()
    - thermal: ACPI: Invalidate trip points with temperature of 0 or below
    - x86/mm/numa: Use NUMA_NO_NODE when calling memblock_set_node()
    - memblock: make memblock_set_node() also warn about use of MAX_NUMNODES
    - perf script: Show also errors for --insn-trace option
    - wifi: cfg80211: validate HE operation element parsing
    - wifi: rtlwifi: Ignore IEEE80211_CONF_CHANGE_RETRY_LIMITS
    - locking/atomic: scripts: fix ${atomic}_sub_and_test() kerneldoc
    - ata: ahci: Do not apply Intel PCS quirk on Intel Alder Lake
    - ata: libata-core: Add ATA_HORKAGE_NOLPM for Apacer AS340
    - ata: libata-core: Add ATA_HORKAGE_NOLPM for Crucial CT240BX500SSD1
    - ata: libata-core: Add ATA_HORKAGE_NOLPM for AMD Radeon S3 SSD
    - kexec: fix the unexpected kexec_dprintk() macro
    - ocfs2: update inode fsync transaction id in ocfs2_unlink and ocfs2_link
    - dm-integrity: set discard_granularity to logical block size
    - drm/bridge: aux-hpd-bridge: correct devm_drm_dp_hpd_bridge_add() stub
    - iio: temperature: mcp9600: Fix temperature reading for negative values
    - drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2
    - riscv: force PAGE_SIZE linear mapping if debug_pagealloc is enabled
    - drm/xe: Properly handle alloc_guc_id() failure
    - wifi: iwlwifi: mvm: support iwl_dev_tx_power_cmd_v8
    - wifi: iwlwifi: mvm: fix a crash on 7265
    - mei: vsc: Fix wrong invocation of ACPI SID method
    - Upstream stable to v6.6.35, v6.9.6

* [SRU] Add support for intel trace hub for last platforms (LP: #2073926) //
    Noble update: upstream stable patchset 2024-07-25 (LP: #2074091)
    - intel_th: pci: Add Granite Rapids support
    - intel_th: pci: Add Granite Rapids SOC support
    - intel_th: pci: Add Sapphire Rapids SOC support
    - intel_th: pci: Add Lunar Lake support

* Fix L2CAP/LE/CPU/BV-02-C bluetooth certification failure (LP: #2072858) //
    Noble update: upstream stable patchset 2024-07-25 (LP: #2074091)
    - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ

* Noble update: upstream stable patchset 2024-07-22 (LP: #2073788)
    - drm/i915/hwmon: Get rid of devm
    - afs: Don't cross .backup mountpoint from backup volume
    - erofs: avoid allocating DEFLATE streams before mounting
    - vxlan: Fix regression when dropping packets due to invalid src addresses
    - drm/sun4i: hdmi: Convert encoder to atomic
    - drm/sun4i: hdmi: Move mode_set into enable
    - f2fs: fix to do sanity check on i_xattr_nid in sanity_check_inode()
    - media: lgdt3306a: Add a check against null-pointer-def
    - drm/amdgpu: add error handle to avoid out-of-bounds
    - wifi: rtw89: correct aSIFSTime for 6GHz band
    - ata: pata_legacy: make legacy_exit() work again
    - fsverity: use register_sysctl_init() to avoid kmemleak warning
    - proc: Move fdinfo PTRACE_MODE_READ check into the inode .permission
      operation
    - platform/chrome: cros_ec: Handle events during suspend after resume
      completion
    - thermal/drivers/qcom/lmh: Check for SCM availability at probe
    - soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request
    - ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx
    - arm64: tegra: Correct Tegra132 I2C alias
    - arm64: dts: qcom: qcs404: fix bluetooth device address
    - md/raid5: fix deadlock that raid5d() wait for itself to clear
      MD_SB_CHANGE_PENDING
    - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU
    - wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power
    - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE
    - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path
    - arm64: dts: qcom: sc8280xp: add missing PCIe minimum OPP
    - arm64: dts: hi3798cv200: fix the size of GICR
    - arm64: dts: ti: verdin-am62: Set memory size to 2gb
    - media: mc: Fix graph walk in media_pipeline_start
    - media: mc: mark the media devnode as registered from the, start
    - media: mxl5xx: Move xpt structures off stack
    - media: v4l2-core: hold videodev_lock until dev reg, finishes
    - media: v4l: async: Properly re-initialise notifier entry in unregister
    - media: v4l: async: Don't set notifier's V4L2 device if registering fails
    - media: v4l: async: Fix notifier list entry init
    - mmc: core: Add mmc_gpiod_set_cd_config() function
    - mmc: sdhci: Add support for "Tuning Error" interrupts
    - mmc: sdhci-acpi: Sort DMI quirks alphabetically
    - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working
    - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A
    - mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on Asus
      T100TA
    - drm/fbdev-generic: Do not set physical framebuffer address
    - fbdev: savage: Handle err return when savagefb_check_var failed
    - drm/amdgpu/atomfirmware: add intergrated info v2.3 table
    - 9p: add missing locking around taking dentry fid list
    - drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms
    - Revert "drm/amdkfd: fix gfx_target_version for certain 11.0.3 devices"
    - KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked
    - KVM: arm64: Fix AArch32 register narrowing on userspace write
    - KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode
    - KVM: arm64: AArch32: Fix spurious trapping of conditional instructions
    - LoongArch: Add all CPUs enabled by fdt to NUMA node 0
    - LoongArch: Override higher address bits in JUMP_VIRT_ADDR
    - clk: bcm: dvp: Assign ->num before accessing ->hws
    - clk: bcm: rpi: Assign ->num before accessing ->hws
    - clk: qcom: clk-alpha-pll: fix rate setting for Stromer PLLs
    - crypto: ecdsa - Fix module auto-load on add-key
    - crypto: ecrdsa - Fix module auto-load on add_key
    - crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak
    - kbuild: Remove support for Clang's ThinLTO caching
    - mm: fix race between __split_huge_pmd_locked() and GUP-fast
    - filemap: add helper mapping_max_folio_size()
    - iomap: fault in smaller chunks for non-large folio mappings
    - i2c: acpi: Unbind mux adapters before delete
    - HID: i2c-hid: elan: fix reset suspend current leakage
    - scsi: core: Handle devices which return an unusually large VPD page count
    - net/ipv6: Fix route deleting failure when metric equals 0
    - net/9p: fix uninit-value in p9_client_rpc()
    - mm/ksm: fix ksm_pages_scanned accounting
    - mm/ksm: fix ksm_zero_pages accounting
    - kmsan: do not wipe out origin when doing partial unpoisoning
    - tpm_tis: Do *not* flush uninitialized work
    - intel_th: pci: Add Meteor Lake-S CPU support
    - rtla/timerlat: Fix histogram report when a cpu count is 0
    - sparc64: Fix number of online CPUs
    - mm/cma: drop incorrect alignment check in cma_init_reserved_mem
    - mm/hugetlb: pass correct order_per_bit to cma_declare_contiguous_nid
    - mm: /proc/pid/smaps_rollup: avoid skipping vma after getting mmap_lock again
    - mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL
    - selftests/mm: compaction_test: fix incorrect write of zero to nr_hugepages
    - selftests/mm: fix build warnings on ppc64
    - watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin
    - bonding: fix oops during rmmod
    - wifi: ath10k: fix QCOM_RPROC_COMMON dependency
    - kdb: Fix buffer overflow during tab-complete
    - kdb: Use format-strings rather than '\0' injection in kdb_read()
    - kdb: Fix console handling when editing and tab-completing commands
    - kdb: Merge identical case statements in kdb_read()
    - kdb: Use format-specifiers rather than memset() for padding in kdb_read()
    - sparc: move struct termio to asm/termios.h
    - drm/amdkfd: handle duplicate BOs in reserve_bo_and_cond_vms
    - ext4: Fixes len calculation in mpage_journal_page_buffers
    - ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow
    - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
    - riscv: dts: starfive: Remove PMIC interrupt info for Visionfive 2 board
    - ARM: dts: samsung: smdkv310: fix keypad no-autorepeat
    - ARM: dts: samsung: smdk4412: fix keypad no-autorepeat
    - ARM: dts: samsung: exynos4412-origen: fix keypad no-autorepeat
    - parisc: Define HAVE_ARCH_HUGETLB_UNMAPPED_AREA
    - parisc: Define sigset_t in parisc uapi header
    - s390/ap: Fix crash in AP internal function modify_bitmap()
    - s390/cpacf: Split and rework cpacf query functions
    - s390/cpacf: Make use of invalid opcode produce a link error
    - i3c: master: svc: fix invalidate IBI type and miss call client IBI handler
    - genirq/irqdesc: Prevent use-after-free in irq_find_at_or_after()
    - ASoC: SOF: ipc4-topology: Fix input format query of process modules without
      base extension
    - ALSA: ump: Don't clear bank selection after sending a program change
    - ALSA: ump: Don't accept an invalid UMP protocol number
    - EDAC/amd64: Convert PCIBIOS_* return codes to errnos
    - EDAC/igen6: Convert PCIBIOS_* return codes to errnos
    - nfs: fix undefined behavior in nfs_block_bits()
    - NFS: Fix READ_PLUS when server doesn't support OP_READ_PLUS
    - eventfs: Fix a possible null pointer dereference in eventfs_find_events()
    - eventfs: Keep the directories from having the same inode number as files
    - tracefs: Clear EVENT_INODE flag in tracefs_drop_inode()
    - btrfs: fix crash on racing fsync and size-extending write into prealloc
    - btrfs: fix leak of qgroup extent records after transaction abort
    - ALSA: seq: Fix incorrect UMP type for system messages
    - powerpc/bpf: enforce full ordering for ATOMIC operations with BPF_FETCH
    - smb: client: fix deadlock in smb2_find_smb_tcon()
    - smp: Provide 'setup_max_cpus' definition on UP too
    - drm/xe/bb: assert width in xe_bb_create_job()
    - crypto: starfive - Do not free stack buffer
    - btrfs: qgroup: fix initialization of auto inherit array
    - wifi: rtl8xxxu: enable MFP support with security flag of RX descriptor
    - media: mgb4: Fix double debugfs remove
    - media: ov2740: Fix LINK_FREQ and PIXEL_RATE control value reporting
    - firmware: qcom_scm: disable clocks if qcom_scm_bw_enable() fails
    - LoongArch: Fix built-in DTB detection
    - LoongArch: Fix entry point in kernel image header
    - clk: qcom: apss-ipq-pll: use stromer ops for IPQ5018 to fix boot failure
    - net/tcp: Don't consider TCP_CLOSE in TCP_AO_ESTABLISHED
    - selftests: net: lib: support errexit with busywait
    - selftests: net: lib: avoid error removing empty netns name
    - cpufreq: amd-pstate: Fix the inconsistency in max frequency units
    - mm/memory-failure: fix handling of dissolved but not taken off from buddy
      pages
    - selftests/mm: compaction_test: fix bogus test success on Aarch64
    - irqchip/riscv-intc: Prevent memory leak when riscv_intc_init_common() fails
    - Revert "perf record: Reduce memory for recording PERF_RECORD_LOST_SAMPLES
      event"
    - hwmon: (ltc2992) Fix memory leak in ltc2992_parse_dt()
    - riscv: enable HAVE_ARCH_HUGE_VMAP for XIP kernel
    - btrfs: qgroup: update rescan message levels and error codes
    - btrfs: qgroup: fix qgroup id collision across mounts
    - btrfs: cache folio size and shift in extent_buffer
    - btrfs: protect folio::private when attaching extent buffer folios
    - bpf: fix multi-uprobe PID filtering logic
    - powerpc/64/bpf: fix tail calls for PCREL addressing
    - nilfs2: fix potential kernel bug due to lack of writeback flag waiting
    - nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors
    - Upstream stable to v6.6.34, v6.9.5

* Noble update: upstream stable patchset 2024-07-19 (LP: #2073603)
    - perf record: Delete session after stopping sideband thread
    - perf probe: Add missing libgen.h header needed for using basename()
    - iio: core: Leave private pointer NULL when no private data supplied
    - greybus: lights: check return of get_channel_from_mode
    - phy: qcom: qmp-combo: fix duplicate return in qmp_v4_configure_dp_phy
    - f2fs: multidev: fix to recognize valid zero block address
    - f2fs: fix to wait on page writeback in __clone_blkaddrs()
    - fpga: manager: add owner module and take its refcount
    - fpga: bridge: add owner module and take its refcount
    - counter: linux/counter.h: fix Excess kernel-doc description warning
    - perf annotate: Get rid of duplicate --group option item
    - usb: typec: ucsi: always register a link to USB PD device
    - usb: typec: ucsi: simplify partner's PD caps registration
    - perf stat: Do not fail on metrics on s390 z/VM systems
    - soundwire: cadence: fix invalid PDI offset
    - dmaengine: idma64: Add check for dma_set_max_seg_size
    - firmware: dmi-id: add a release callback function
    - perf annotate: Fix annotation_calc_lines() to pass correct address to
      get_srcline()
    - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
    - serial: max3100: Update uart_driver_registered on driver removal
    - serial: max3100: Fix bitwise types
    - greybus: arche-ctrl: move device table to its right location
    - PCI: tegra194: Fix probe path for Endpoint mode
    - serial: sc16is7xx: add proper sched.h include for sched_set_fifo()
    - module: don't ignore sysfs_create_link() failures
    - interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment
    - arm64: dts: meson: fix S4 power-controller node
    - perf tests: Make "test data symbol" more robust on Neoverse N1
    - perf tests: Apply attributes to all events in object code reading test
    - perf record: Fix debug message placement for test consumption
    - dt-bindings: PCI: rcar-pci-host: Add missing IOMMU properties
    - perf bench uprobe: Remove lib64 from libc.so.6 binary path
    - f2fs: compress: fix to relocate check condition in
      f2fs_{release,reserve}_compress_blocks()
    - f2fs: compress: fix to relocate check condition in
      f2fs_ioc_{,de}compress_file()
    - f2fs: fix to relocate check condition in f2fs_fallocate()
    - f2fs: fix to check pinfile flag in f2fs_move_file_range()
    - iio: adc: stm32: Fixing err code to not indicate success
    - riscv: dts: starfive: visionfive 2: Remove non-existing TDM hardware
    - coresight: etm4x: Fix unbalanced pm_runtime_enable()
    - perf docs: Document bpf event modifier
    - perf test shell arm_coresight: Increase buffer size for Coresight basic
      tests
    - iio: pressure: dps310: support negative temperature values
    - iio: buffer-dmaengine: export buffer alloc and free functions
    - iio: add the IIO backend framework
    - [CONFIG] Update CONFIG_IIO_BACKEND
    - iio: adc: ad9467: convert to backend framework
    - [Config] Update CONFIG_AD9467
    - iio: adc: adi-axi-adc: move to backend framework
    - [Config] Update CONFIG_ADI_AXI_ADC
    - iio: adc: adi-axi-adc: only error out in major version mismatch
    - coresight: etm4x: Do not hardcode IOMEM access for register restore
    - coresight: etm4x: Do not save/restore Data trace control registers
    - coresight: etm4x: Safe access for TRCQCLTR
    - coresight: etm4x: Fix access to resource selector registers
    - vfio/pci: fix potential memory leak in vfio_intx_enable()
    - fpga: region: add owner module and take its refcount
    - udf: Remove GFP_NOFS allocation in udf_expand_file_adinicb()
    - udf: Convert udf_expand_file_adinicb() to use a folio
    - microblaze: Remove gcc flag for non existing early_printk.c file
    - microblaze: Remove early printk call from cpuinfo-static.c
    - PCI: Wait for Link Training==0 before starting Link retrain
    - perf intel-pt: Fix unassigned instruction op (discovered by MemorySanitizer)
    - leds: pwm: Disable PWM when going to suspend
    - ovl: remove upper umask handling from ovl_create_upper()
    - PCI: of_property: Return error for int_map allocation failure
    - VMCI: Fix an error handling path in vmci_guest_probe_device()
    - dt-bindings: pinctrl: mediatek: mt7622: fix array properties
    - pinctrl: qcom: pinctrl-sm7150: Fix sdc1 and ufs special pins regs
    - watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdt_trigger
    - watchdog: bd9576: Drop "always-running" property
    - watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe()
    - dt-bindings: phy: qcom,sc8280xp-qmp-ufs-phy: fix msm899[68] power-domains
    - dt-bindings: phy: qcom,usb-snps-femto-v2: use correct fallback for sc8180x
    - dmaengine: idxd: Avoid unnecessary destruction of file_ida
    - usb: gadget: u_audio: Fix race condition use of controls after free during
      gadget unbind.
    - usb: gadget: u_audio: Clear uac pointer when freed.
    - stm class: Fix a double free in stm_register_device()
    - ppdev: Add an error check in register_device
    - i2c: cadence: Avoid fifo clear after start
    - i2c: synquacer: Fix an error handling path in synquacer_i2c_probe()
    - perf bench internals inject-build-id: Fix trap divide when collecting just
      one DSO
    - perf ui browser: Don't save pointer to stack memory
    - extcon: max8997: select IRQ_DOMAIN instead of depending on it
    - dt-bindings: spmi: hisilicon,hisi-spmi-controller: fix binding references
    - PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3
    - PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3
    - f2fs: support printk_ratelimited() in f2fs_printk()
    - f2fs: use BLKS_PER_SEG, BLKS_PER_SEC, and SEGS_PER_SEC
    - f2fs: separate f2fs_gc_range() to use GC for a range
    - f2fs: kill heap-based allocation
    - f2fs: support file pinning for zoned devices
    - f2fs: fix block migration when section is not aligned to pow2
    - perf ui browser: Avoid SEGV on title
    - perf report: Avoid SEGV in report__setup_sample_type()
    - perf thread: Fixes to thread__new() related to initializing comm
    - perf symbols: Fix ownership of string in dso__load_vmlinux()
    - f2fs: compress: fix to update i_compr_blocks correctly
    - f2fs: deprecate io_bits
    - f2fs: introduce get_available_block_count() for cleanup
    - f2fs: compress: fix error path of inc_valid_block_count()
    - f2fs: compress: fix to cover {reserve,release}_compress_blocks() w/ cp_rwsem
      lock
    - f2fs: fix to release node block count in error path of f2fs_new_node_page()
    - f2fs: compress: don't allow unaligned truncation on released compress inode
    - serial: sh-sci: protect invalidating RXDMA on shutdown
    - libsubcmd: Fix parse-options memory leak
    - perf daemon: Fix file leak in daemon_session__control
    - f2fs: fix to add missing iput() in gc_data_segment()
    - usb: fotg210: Add missing kernel doc description
    - perf stat: Don't display metric header for non-leader uncore events
    - perf tools: Use pmus to describe type from attribute
    - perf tools: Add/use PMU reverse lookup from config to name
    - perf pmu: Assume sysfs events are always the same case
    - perf pmu: Count sys and cpuid JSON events separately
    - LoongArch: Fix callchain parse error with kernel tracepoint events again
    - s390/vdso64: filter out munaligned-symbols flag for vdso
    - s390/vdso: Generate unwind information for C modules
    - s390/vdso: Create .build-id links for unstripped vdso files
    - s390/vdso: Use standard stack frame layout
    - s390/ipl: Fix incorrect initialization of len fields in nvme reipl block
    - s390/ipl: Fix incorrect initialization of nvme dump block
    - s390/boot: Remove alt_stfle_fac_list from decompressor
    - dt-bindings: PCI: rockchip,rk3399-pcie: Add missing maxItems to ep-gpios
    - gpiolib: acpi: Fix failed in acpi_gpiochip_find() by adding parent node
      match
    - eventfs: Do not differentiate the toplevel events directory
    - eventfs: Create eventfs_root_inode to store dentry
    - eventfs/tracing: Add callback for release of an eventfs_inode
    - eventfs: Free all of the eventfs_inode after RCU
    - eventfs: Have "events" directory get permissions from its parent
    - dt-bindings: adc: axi-adc: update bindings for backend framework
    - dt-bindings: adc: axi-adc: add clocks property
    - Input: ims-pcu - fix printf string overflow
    - mmc: sdhci_am654: Add tuning algorithm for delay chain
    - mmc: sdhci_am654: Write ITAPDLY for DDR52 timing
    - mmc: sdhci_am654: Add OTAP/ITAP delay enable
    - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock
    - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing
    - Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation
    - media: v4l: Don't turn on privacy LED if streamon fails
    - media: ov2680: Clear the 'ret' variable on success
    - media: ov2680: Allow probing if link-frequencies is absent
    - media: ov2680: Do not fail if data-lanes property is absent
    - drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode pclk
    - drm/msm/dpu: Always flush the slave INTF on the CTL
    - drm/mediatek: dp: Fix mtk_dp_aux_transfer return value
    - drm/meson: gate px_clk when setting rate
    - um: Fix return value in ubd_init()
    - um: vector: fix bpfflash parameter evaluation
    - fs/ntfs3: Check 'folio' pointer for NULL
    - fs/ntfs3: Use 64 bit variable to avoid 32 bit overflow
    - fs/ntfs3: Use variable length array instead of fixed size
    - drm/msm/dpu: Add callback function pointer check before its call
    - drm/bridge: tc358775: fix support for jeida-18 and jeida-24
    - media: stk1160: fix bounds checking in stk1160_copy_video()
    - Input: cyapa - add missing input core locking to suspend/resume functions
    - drm/amdgpu: init microcode chip name from ip versions
    - drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and
      rlc_microcode()
    - media: mediatek: vcodec: fix possible unbalanced PM counter
    - tools/arch/x86/intel_sdsi: Fix maximum meter bundle length
    - tools/arch/x86/intel_sdsi: Fix meter_show display
    - tools/arch/x86/intel_sdsi: Fix meter_certificate decoding
    - platform/x86: thinkpad_acpi: Take hotkey_mutex during hotkey_exit()
    - media: flexcop-usb: fix sanity check of bNumEndpoints
    - powerpc/pseries: Add failure related checks for h_get_mpp and h_get_ppp
    - um: Fix the -Wmissing-prototypes warning for __switch_mm
    - um: Fix the -Wmissing-prototypes warning for get_thread_reg
    - um: Fix the declaration of kasan_map_memory
    - cxl/trace: Correct DPA field masks for general_media & dram events
    - cxl/region: Fix cxlr_pmem leaks
    - media: sunxi: a83-mips-csi2: also select GENERIC_PHY
    - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh
    - media: cec: cec-api: add locking in cec_release()
    - media: cec: core: avoid recursive cec_claim_log_addrs
    - media: cec: core: avoid confusing "transmit timed out" message
    - Revert "drm/bridge: ti-sn65dsi83: Fix enable error path"
    - drm: zynqmp_dpsub: Always register bridge
    - selftests/powerpc/dexcr: Add -no-pie to hashchk tests
    - drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails
    - ASoC: tas2781: Fix a warning reported by robot kernel test
    - null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION()
    - ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup
    - ALSA: hda: cs35l56: Fix lifetime of cs_dsp instance
    - ASoC: mediatek: mt8192: fix register configuration for tdm
    - drm/nouveau: use tile_mode and pte_kind for VM_BIND bo allocations
    - blk-cgroup: fix list corruption from resetting io stat
    - blk-cgroup: fix list corruption from reorder of WRITE ->lqueued
    - blk-cgroup: Properly propagate the iostat update up the hierarchy
    - regulator: bd71828: Don't overwrite runtime voltages
    - xen/x86: add extra pages to unpopulated-alloc if available
    - perf/arm-dmc620: Fix lockdep assert in ->event_init()
    - x86/kconfig: Select ARCH_WANT_FRAME_POINTERS again when
      UNWINDER_FRAME_POINTER=y
    - [Config] Update CONFIG_ARCH_WANT_FRAME_POINTERS
    - net: Always descend into dsa/ folder with CONFIG_NET_DSA enabled
    - ipv6: sr: fix missing sk_buff release in seg6_input_core
    - selftests: net: kill smcrouted in the cleanup logic in amt.sh
    - nfc: nci: Fix uninit-value in nci_rx_work
    - ASoC: tas2552: Add TX path for capturing AUDIO-OUT data
    - ASoC: tas2781: Fix wrong loading calibrated data sequence
    - NFSv4: Fixup smatch warning for ambiguous return
    - nfs: keep server info for remounts
    - sunrpc: fix NFSACL RPC retry on soft mount
    - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL
    - regulator: pickable ranges: don't always cache vsel
    - regulator: tps6287x: Force writing VSEL bit
    - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.
    - ipv6: sr: fix memleak in seg6_hmac_init_algo
    - regulator: tps6594-regulator: Correct multi-phase configuration
    - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
    - pNFS/filelayout: fixup pNfs allocation modes
    - openvswitch: Set the skbuff pkt_type for proper pmtud support.
    - arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY
    - rv: Update rv_en(dis)able_monitor doc to match kernel-doc
    - net: lan966x: Remove ptp traps in case the ptp is not enabled.
    - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails
    - i3c: master: svc: change ENXIO to EAGAIN when IBI occurs during start frame
    - Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI"
    - net: fec: avoid lock evasion when reading pps_enable
    - tls: fix missing memory barrier in tls_init
    - net: relax socket state check at accept time.
    - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work()
    - drivers/xen: Improve the late XenStore init protocol
    - ice: Interpret .set_channels() input differently
    - kasan, fortify: properly rename memintrinsics
    - tracing/probes: fix error check in parse_btf_field()
    - tpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer
    - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
      instance_destroy_rcu()
    - netfilter: ipset: Add list flush to cancel_gc
    - netfilter: nft_payload: restore vlan q-in-q match support
    - spi: Don't mark message DMA mapped when no transfer in it is
    - dma-mapping: benchmark: fix up kthread-related error handling
    - dma-mapping: benchmark: fix node id validation
    - dma-mapping: benchmark: handle NUMA_NO_NODE correctly
    - nvme-multipath: fix io accounting on failover
    - nvmet: fix ns enable/disable possible hang
    - drm/amd/display: Enable colorspace property for MST connectors
    - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061
    - net/mlx5: Lag, do bond only if slaves agree on roce state
    - net/mlx5: Fix MTMP register capability offset in MCAM register
    - net/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules
    - net/mlx5e: Fix IPsec tunnel mode offload feature check
    - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer
      exhaustion
    - net/mlx5e: Fix UDP GSO for encapsulated packets
    - dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
    - bpf: Fix potential integer overflow in resolve_btfids
    - ALSA: jack: Use guard() for locking
    - ALSA: core: Remove debugfs at disconnection
    - ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp
    - enic: Validate length of nl attributes in enic_set_vf_port
    - af_unix: Annotate data-race around unix_sk(sk)->addr.
    - af_unix: Read sk->sk_hash under bindlock during bind().
    - Octeontx2-pf: Free send queue buffers incase of leaf to inner
    - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM
    - ASoC: cs42l43: Only restrict 44.1kHz for the ASP
    - bpf: Allow delete from sockmap/sockhash only if update is allowed
    - net:fec: Add fec_enet_deinit()
    - net: micrel: Fix lan8841_config_intr after getting out of sleep mode
    - ice: fix accounting if a VLAN already exists
    - selftests: mptcp: simult flows: mark 'unbalanced' tests as flaky
    - selftests: mptcp: add ms units for tc-netem delay
    - selftests: mptcp: join: mark 'fail' tests as flaky
    - ALSA: seq: Fix missing bank setup between MIDI1/MIDI2 UMP conversion
    - ALSA: seq: Don't clear bank selection at event -> UMP MIDI2 conversion
    - net: ti: icssg-prueth: Fix start counter for ft1 filter
    - netfilter: nft_payload: skbuff vlan metadata mangle support
    - netfilter: tproxy: bail out if IP has been disabled on the device
    - netfilter: nft_fib: allow from forward/input without iif selector
    - net/sched: taprio: make q->picos_per_byte available to fill_sched_entry()
    - net/sched: taprio: extend minimum interval restriction to entire cycle too
    - kconfig: fix comparison to constant symbols, 'm', 'n'
    - drm/i915/guc: avoid FIELD_PREP warning
    - kheaders: use `command -v` to test for existence of `cpio`
    - spi: stm32: Don't warn about spurious interrupts
    - net: dsa: microchip: fix RGMII error in KSZ DSA driver
    - net: ena: Reduce lines with longer column width boundary
    - net: ena: Fix redundant device NUMA node override
    - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
    - ALSA: seq: Fix yet another spot for system message conversion
    - powerpc/pseries/lparcfg: drop error message from guest name lookup
    - drm/panel: sitronix-st7789v: fix timing for jt240mhqs_hwt_ek_e3 panel
    - drm/panel: sitronix-st7789v: tweak timing for jt240mhqs_hwt_ek_e3 panel
    - drm/panel: sitronix-st7789v: fix display size for jt240mhqs_hwt_ek_e3 panel
    - hwmon: (intel-m10-bmc-hwmon) Fix multiplier for N6000 board power sensor
    - hwmon: (shtc1) Fix property misspelling
    - ALSA: seq: ump: Fix swapped song position pointer data
    - ALSA: timer: Set lower bound of start tick time
    - x86/efistub: Omit physical KASLR when memory reservations exist
    - efi: libstub: only free priv.runtime_map when allocated
    - x86/pci: Skip early E820 check for ECAM region
    - KVM: x86: Don't advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID
    - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline
    - platform/x86/intel/tpmi: Handle error from tpmi_process_info()
    - platform/x86/intel-uncore-freq: Don't present root domain on error
    - perf sched timehist: Fix -g/--call-graph option failure
    - f2fs: write missing last sum blk of file pinning section
    - f2fs: use f2fs_{err,info}_ratelimited() for cleanup
    - SUNRPC: Fix loop termination condition in gss_free_in_token_pages()
    - riscv: prevent pt_regs corruption for secondary idle threads
    - riscv: stacktrace: fixed walk_stackframe()
    - perf build: Fix out of tree build related to installation of sysreg-defs
    - dt-bindings: pinctrl: qcom: update functions to match with driver
    - usb: typec: ucsi: allow non-partner GET_PDOS for Qualcomm devices
    - perf report: Fix PAI counter names for s390 virtual machines
    - PCI: dwc: ep: Fix DBI access failure for drivers requiring refclk from host
    - perf map: Remove kernel map before updating start and end addresses
    - riscv: dts: starfive: visionfive 2: Remove non-existing I2S hardware
    - pinctrl: renesas: rzg2l: Limit 2.5V power supply to Ethernet interfaces
    - riscv: Flush the instruction cache during SMP bringup
    - usb: xhci: check if 'requested segments' exceeds ERST capacity
    - spmi: pmic-arb: Replace three IS_ERR() calls by null pointer checks in
      spmi_pmic_arb_probe()
    - perf symbols: Remove map from list before updating addresses
    - perf symbols: Update kcore map before merging in remaining symbols
    - s390/ftrace: Use unwinder instead of __builtin_return_address()
    - s390/stacktrace: Merge perf_callchain_user() and arch_stack_walk_user()
    - s390/stacktrace: Skip first user stack frame
    - s390/stacktrace: Improve detection of invalid instruction pointers
    - s390/vdso: Introduce and use struct stack_frame_vdso_wrapper
    - s390/stackstrace: Detect vdso stack frames
    - s390/ap: Fix bind complete udev event sent after each AP bus scan
    - ocfs2: correctly use ocfs2_find_next_zero_bit()
    - mailbox: mtk-cmdq: Fix pm_runtime_get_sync() warning in mbox shutdown
    - Input: ioc3kbd - add device table
    - phy: qcom: qmp-combo: fix sm8650 voltage swing table
    - media: ti: j721e-csi2rx: Fix races while restarting DMA
    - drm/msm/dpu: Allow configuring multiple active DSC blocks
    - drm: Make drivers depends on DRM_DW_HDMI
    - [Config] Drivers now depend on DRM_DW_HDMI
    - string: Prepare to merge strscpy_kunit.c into string_kunit.c
    - string: Prepare to merge strcat KUnit tests into string_kunit.c
    - drm/msm/adreno: fix CP cycles stat retrieval on a7xx
    - printk: Fix LOG_CPU_MAX_BUF_SHIFT when BASE_SMALL is enabled
    - powerpc/bpf/32: Fix failing test_bpf tests
    - KVM: PPC: Book3S HV nestedv2: Cancel pending DEC exception
    - KVM: PPC: Book3S HV nestedv2: Fix an error handling path in
      gs_msg_ops_kvmhv_nestedv2_config_fill_info()
    - KVM: arm64: Destroy mpidr_data for 'late' vCPU creation
    - Bluetooth: ISO: Handle PA sync when no BIGInfo reports are generated
    - Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()
    - ubsan: Restore dependency on ARCH_HAS_UBSAN
    - selftests: forwarding: Have RET track kselftest framework constants
    - selftests: forwarding: Convert log_test() to recognize RET values
    - selftests: net: Unify code of busywait() and slowwait()
    - selftests/net: use tc rule to filter the na packet
    - virtio_balloon: Give the balloon its own wakeup source
    - riscv: cpufeature: Fix thead vector hwcap removal
    - riscv: cpufeature: Fix extension subset checking
    - riscv: selftests: Add hwprobe binaries to .gitignore
    - idpf: Interpret .set_channels() input differently
    - null_blk: fix null-ptr-dereference while configuring 'power' and
      'submit_queues'
    - netfs: Fix setting of BDP_ASYNC from iocb flags
    - cifs: Set zero_point in the copy_file_range() and remap_file_range()
    - cifs: Fix missing set of remote_i_size
    - selftests: net: lib: set 'i' as local
    - nvme: fix multipath batched completion accounting
    - netkit: Fix setting mac address in l2 mode
    - netkit: Fix pkt_type override upon netkit pass verdict
    - null_blk: Fix return value of nullb_device_power_store()
    - idpf: don't enable NAPI and interrupts prior to allocating Rx buffers
    - selftests: mptcp: join: mark 'fastclose' tests as flaky
    - drm/xe: Add dbg messages on the suspend resume functions.
    - drm/xe: check pcode init status only on root gt of root tile
    - drm/xe: Change pcode timeout to 50msec while polling again
    - drm/xe: Only use reserved BCS instances for usm migrate exec queue
    - sd: also set max_user_sectors when setting max_sectors
    - block: stack max_user_sectors
    - ipv6: introduce dst_rt6_info() helper
    - inet: introduce dst_rtable() helper
    - net: fix __dst_negative_advice() race
    - ice: fix 200G PHY types to link speed mapping
    - x86/topology/intel: Unlock CPUID before evaluating anything
    - Upstream stable to v6.6.33, v6.9.4

* Reenable CONFIG_UBSAN for noble (LP: #2076650)
    - ubsan: Remove CONFIG_UBSAN_SANITIZE_ALL
    - [Config] Remove CONFIG_UBSAN_SANITIZE_ALL

* Dangling symlink to linux-lib-rust when Rust is disabled (LP: #2072592)
    - [Packaging] Check do_lib_rust before linking Rust lib files

* kdump doesn't work with UEFI secure boot and kernel lockdown enabled on
    ARM64 (LP: #2033007)
    - [Config]: Enable CONFIG_KEXEC_IMAGE_VERIFY_SIG on arm64

* net/sched: Fix conntrack use-after-free (LP: #2073092)
    - net/sched: Fix UAF when resolving a clash

* No sound on Huawei Matebook D14  AMD since Linux 6.8.0-38 [regression]
    (LP: #2073049)
    - ASoC: amd: acp: fix for acp platform device creation failure

* i915: Fixup regressions introduced with enabling single CCS engine
    (LP: #2072755)
    - drm/i915/gt: Fix CCS id's calculation for CCS mode setting

* [Ubuntu 24.04] FW1060.00 (NH1060_026) sosreport is running to Kernel OOPS
    crash (LP: #2070358)
    - nfsd: initialise nfsd_info.mutex early.

* 6.8 generic & amdpgu / polaris (LP: #2072428)
    - drm/amdgpu: Adjust logic in amdgpu_device_partner_bandwidth()

* md: nvme over tcp with a striped underlying md raid device leads to data
    corruption (LP: #2075110)
    - md/md-bitmap: fix writing non bitmap pages

* Linux 6.8 fails to boot on ARM64 if any param is more than 146 chars
    (LP: #2069534)
    - SAUCE: arm64: v6.8: cmdline param >= 146 chars kills kernel

* CVE-2024-39484
    - mmc: davinci: Don't strip remove function when driver is builtin

* CVE-2024-39292
    - um: Add winch to winch_handlers before registering winch IRQ

* Miscellaneous upstream changes
    - bnx2x: Fix multiple UBSAN array-index-out-of-bounds

-- Roxana Nicolescu <roxana.nicolescu@canonical.com>  Tue, 13 Aug 2024 12:20:36 +0200

Changed in linux (Ubuntu Noble):
status:	Fix Committed → Fix Released

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#10

This bug is awaiting verification that the linux-raspi/6.8.0-1011.12 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-noble-linux-raspi' to 'verification-done-noble-linux-raspi'. If the problem still exists, change the tag 'verification-needed-noble-linux-raspi' to 'verification-failed-noble-linux-raspi'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-noble-linux-raspi-v2 verification-needed-noble-linux-raspi

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#11

This bug is awaiting verification that the linux-aws-6.8/6.8.0-1015.16~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-aws-6.8' to 'verification-done-jammy-linux-aws-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-aws-6.8' to 'verification-failed-jammy-linux-aws-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-aws-6.8-v2 verification-needed-jammy-linux-aws-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#12

This bug is awaiting verification that the linux-azure-6.8/6.8.0-1014.16~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-azure-6.8' to 'verification-done-jammy-linux-azure-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-azure-6.8' to 'verification-failed-jammy-linux-azure-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-azure-6.8-v2 verification-needed-jammy-linux-azure-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#13

This bug is awaiting verification that the linux-ibm-6.8/6.8.0-1012.12~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-ibm-6.8' to 'verification-done-jammy-linux-ibm-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-ibm-6.8' to 'verification-failed-jammy-linux-ibm-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-ibm-6.8-v2 verification-needed-jammy-linux-ibm-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#14

This bug is awaiting verification that the linux-lowlatency-hwe-6.8/6.8.0-44.44.1~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-lowlatency-hwe-6.8' to 'verification-done-jammy-linux-lowlatency-hwe-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-lowlatency-hwe-6.8' to 'verification-failed-jammy-linux-lowlatency-hwe-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-lowlatency-hwe-6.8-v2 verification-needed-jammy-linux-lowlatency-hwe-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#15

This bug is awaiting verification that the linux-oracle-6.8/6.8.0-1012.12~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-oracle-6.8' to 'verification-done-jammy-linux-oracle-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-oracle-6.8' to 'verification-failed-jammy-linux-oracle-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-oracle-6.8-v2 verification-needed-jammy-linux-oracle-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#16

This bug is awaiting verification that the linux-riscv-6.8/6.8.0-44.44.1~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-riscv-6.8' to 'verification-done-jammy-linux-riscv-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-riscv-6.8' to 'verification-failed-jammy-linux-riscv-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-riscv-6.8-v2 verification-needed-jammy-linux-riscv-6.8

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-09-10:

#17

This bug is awaiting verification that the linux-realtime-6.8/6.8.1-1008.8~22.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-realtime-6.8' to 'verification-done-jammy-linux-realtime-6.8'. If the problem still exists, change the tag 'verification-needed-jammy-linux-realtime-6.8' to 'verification-failed-jammy-linux-realtime-6.8'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-realtime-6.8-v2 verification-needed-jammy-linux-realtime-6.8

Revision history for this message

Launchpad Janitor (janitor) wrote on 2024-09-12:

#18

Download full text (55.9 KiB)

This bug was fixed in the package linux - 5.15.0-121.131

---------------
linux (5.15.0-121.131) jammy; urgency=medium

* jammy/linux: 5.15.0-121.131 -proposed tracker (LP: #2076347)

* jammy:linux bpf selftest do not build (LP: #2076334)
- SAUCE: Revert "bpf: Allow reads from uninit stack"

linux (5.15.0-120.130) jammy; urgency=medium

* jammy/linux: 5.15.0-120.130 -proposed tracker (LP: #2075903)

  * Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.08.05)

  * Jammy update: v5.15.163 upstream stable release (LP: #2075170)
    - Compiler Attributes: Add __uninitialized macro
    - locking/mutex: Introduce devm_mutex_init()
    - drm/lima: fix shared irq handling on driver remove
    - media: dvb: as102-fe: Fix as10x_register_addr packing
    - media: dvb-usb: dib0700_devices: Add missing release_firmware()
    - IB/core: Implement a limit on UMAD receive List
    - scsi: qedf: Make qedf_execute_tmf() non-preemptible
    - crypto: aead,cipher - zeroize key buffer after use
    - drm/amdgpu: Initialize timestamp for some legacy SOCs
    - drm/amd/display: Check index msg_id before read or write
    - drm/amd/display: Check pipe offset before setting vblank
    - drm/amd/display: Skip finding free audio for unknown engine_id
    - media: dw2102: Don't translate i2c read into write
    - sctp: prefer struct_size over open coded arithmetic
    - firmware: dmi: Stop decoding on broken entry
    - Input: ff-core - prefer struct_size over open coded arithmetic
    - wifi: mt76: replace skb_put with skb_put_zero
    - net: dsa: mv88e6xxx: Correct check for empty list
    - media: dvb-frontends: tda18271c2dd: Remove casting during div
    - media: s2255: Use refcount_t instead of atomic_t for num_channels
    - media: dvb-frontends: tda10048: Fix integer overflow
    - i2c: i801: Annotate apanel_addr as __ro_after_init
    - powerpc/64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
    - orangefs: fix out-of-bounds fsid access
    - kunit: Fix timeout message
    - powerpc/xmon: Check cpu id in commands "c#", "dp#" and "dx#"
    - igc: fix a log entry using uninitialized netdev
    - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
    - jffs2: Fix potential illegal address access in jffs2_free_inode
    - s390/pkey: Wipe sensitive data on failure
    - tools/power turbostat: Remember global max_die_id
    - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
    - tcp_metrics: validate source addr length
    - KVM: s390: fix LPSWEY handling
    - e1000e: Fix S0ix residency on corporate systems
    - net: allow skb_datagram_iter to be called from any context
    - wifi: wilc1000: fix ies_len type in connect path
    - riscv: kexec: Avoid deadlock in kexec crash path
    - netfilter: nf_tables: unconditionally flush pending work before notifier
    - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
    - selftests: fix OOM in msg_zerocopy selftest
    - selftests: make order checking verbose in msg_zerocopy selftest
    - inet_diag: Initialize pad field in struct inet_diag_req_v2
    - gpiolib: of: factor...

This bug was fixed in the package linux - 5.15.0-121.131

---------------
linux (5.15.0-121.131) jammy; urgency=medium

* jammy/linux: 5.15.0-121.131 -proposed tracker (LP: #2076347)

* jammy:linux bpf selftest do not build (LP: #2076334)
    - SAUCE: Revert "bpf: Allow reads from uninit stack"

linux (5.15.0-120.130) jammy; urgency=medium

* jammy/linux: 5.15.0-120.130 -proposed tracker (LP: #2075903)

* Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.08.05)

* Jammy update: v5.15.163 upstream stable release (LP: #2075170)
    - Compiler Attributes: Add __uninitialized macro
    - locking/mutex: Introduce devm_mutex_init()
    - drm/lima: fix shared irq handling on driver remove
    - media: dvb: as102-fe: Fix as10x_register_addr packing
    - media: dvb-usb: dib0700_devices: Add missing release_firmware()
    - IB/core: Implement a limit on UMAD receive List
    - scsi: qedf: Make qedf_execute_tmf() non-preemptible
    - crypto: aead,cipher - zeroize key buffer after use
    - drm/amdgpu: Initialize timestamp for some legacy SOCs
    - drm/amd/display: Check index msg_id before read or write
    - drm/amd/display: Check pipe offset before setting vblank
    - drm/amd/display: Skip finding free audio for unknown engine_id
    - media: dw2102: Don't translate i2c read into write
    - sctp: prefer struct_size over open coded arithmetic
    - firmware: dmi: Stop decoding on broken entry
    - Input: ff-core - prefer struct_size over open coded arithmetic
    - wifi: mt76: replace skb_put with skb_put_zero
    - net: dsa: mv88e6xxx: Correct check for empty list
    - media: dvb-frontends: tda18271c2dd: Remove casting during div
    - media: s2255: Use refcount_t instead of atomic_t for num_channels
    - media: dvb-frontends: tda10048: Fix integer overflow
    - i2c: i801: Annotate apanel_addr as __ro_after_init
    - powerpc/64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
    - orangefs: fix out-of-bounds fsid access
    - kunit: Fix timeout message
    - powerpc/xmon: Check cpu id in commands "c#", "dp#" and "dx#"
    - igc: fix a log entry using uninitialized netdev
    - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
    - jffs2: Fix potential illegal address access in jffs2_free_inode
    - s390/pkey: Wipe sensitive data on failure
    - tools/power turbostat: Remember global max_die_id
    - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
    - tcp_metrics: validate source addr length
    - KVM: s390: fix LPSWEY handling
    - e1000e: Fix S0ix residency on corporate systems
    - net: allow skb_datagram_iter to be called from any context
    - wifi: wilc1000: fix ies_len type in connect path
    - riscv: kexec: Avoid deadlock in kexec crash path
    - netfilter: nf_tables: unconditionally flush pending work before notifier
    - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
    - selftests: fix OOM in msg_zerocopy selftest
    - selftests: make order checking verbose in msg_zerocopy selftest
    - inet_diag: Initialize pad field in struct inet_diag_req_v2
    - gpiolib: of: factor out code overriding gpio line polarity
    - gpiolib: of: add a quirk for reset line polarity for Himax LCDs
    - gpiolib: of: add polarity quirk for TSC2005
    - Revert "igc: fix a log entry using uninitialized netdev"
    - nilfs2: fix inode number range checks
    - nilfs2: add missing check for inode numbers on directory entries
    - mm: optimize the redundant loop of mm_update_owner_next()
    - mm: avoid overflows in dirty throttling logic
    - btrfs: fix adding block group to a reclaim list and the unused list during
      reclaim
    - Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot
    - can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct
    - fsnotify: Do not generate events for O_PATH file descriptors
    - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(),
      again"
    - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes
    - drm/amdgpu/atomfirmware: silence UBSAN warning
    - mtd: rawnand: Ensure ECC configuration is propagated to upper layers
    - mtd: rawnand: Bypass a couple of sanity checks during NAND identification
    - mtd: rawnand: rockchip: ensure NVDDR timings are rejected
    - ima: Avoid blocking in RCU read-side critical section
    - media: dw2102: fix a potential buffer overflow
    - clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents
    - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr
    - fs/ntfs3: Mark volume as dirty if xattr is broken
    - ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897
    - nvme-multipath: find NUMA path only for online numa-node
    - dma-mapping: benchmark: avoid needless copy_to_user if benchmark fails
    - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset
    - regmap-i2c: Subtract reg size from max_write
    - platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6"
      tablet
    - platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro
    - nvmet: fix a possible leak when destroy a ctrl during qp establishment
    - kbuild: fix short log for AS in link-vmlinux.sh
    - nfc/nci: Add the inconsistency check between the input data length and count
    - null_blk: Do not allow runt zone with zone capacity smaller then zone size
    - nilfs2: fix incorrect inode allocation from reserved inodes
    - mm: prevent derefencing NULL ptr in pfn_section_valid()
    - filelock: fix potential use-after-free in posix_lock_inode
    - fs/dcache: Re-use value stored to dentry->d_flags instead of re-reading
    - vfs: don't mod negative dentry count when on shrinker list
    - tcp: fix incorrect undo caused by DSACK of TLP retransmit
    - skmsg: Skip zero length skb in sk_msg_recvmsg
    - octeontx2-af: Fix incorrect value output on error path in
      rvu_check_rsrc_availability()
    - net: fix rc7's __skb_datagram_iter()
    - i40e: Fix XDP program unloading while removing the driver
    - net: lantiq_etop: add blank line after declaration
    - net: ethernet: lantiq_etop: fix double free in detach
    - net: ethernet: mtk-star-emac: set mac_managed_pm when probing
    - ppp: reject claimed-as-LCP but actually malformed packets
    - ethtool: netlink: do not return SQI value if link is down
    - udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port().
    - s390: Mark psw in __load_psw_mask() as __unitialized
    - ARM: davinci: Convert comma to semicolon
    - octeontx2-af: replace cpt slot with lf id on reg write
    - octeontx2-af: update cpt lf alloc mailbox
    - octeontx2-af: fix a issue with cpt_lf_alloc mailbox
    - octeontx2-af: fix detection of IP layer
    - octeontx2-af: extend RSS supported offload types
    - octeontx2-af: fix issue with IPv6 ext match for RSS
    - octeontx2-af: fix issue with IPv4 match for RSS
    - tcp: use signed arithmetic in tcp_rtx_probe0_timed_out()
    - tcp: avoid too many retransmit packets
    - net: ks8851: Fix potential TX stall after interface reopen
    - USB: serial: option: add Telit generic core-dump composition
    - USB: serial: option: add Telit FN912 rmnet compositions
    - USB: serial: option: add Fibocom FM350-GL
    - USB: serial: option: add support for Foxconn T99W651
    - USB: serial: option: add Netprisma LCUK54 series modules
    - USB: serial: option: add Rolling RW350-GL variants
    - USB: serial: mos7840: fix crash on resume
    - USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k
    - usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()
    - USB: core: Fix duplicate endpoint bug by clearing reserved bits in the
      descriptor
    - hpet: Support 32-bit userspace
    - nvmem: rmem: Fix return value of rmem_read()
    - nvmem: meson-efuse: Fix return value of nvmem callbacks
    - nvmem: core: only change name to fram for current attribute
    - ALSA: hda/realtek: add quirk for Clevo V5[46]0TU
    - ALSA: hda/realtek: Enable Mute LED on HP 250 G7
    - ALSA: hda/realtek: Limit mic boost on VAIO PRO PX
    - Fix userfaultfd_api to return EINVAL as expected
    - libceph: fix race between delayed_work() and ceph_monc_stop()
    - wireguard: allowedips: avoid unaligned 64-bit memory accesses
    - wireguard: queueing: annotate intentional data race in cpu round robin
    - wireguard: send: annotate intentional data race in checking empty queue
    - ipv6: annotate data-races around cnf.disable_ipv6
    - bpf: Allow reads from uninit stack
    - nilfs2: fix kernel bug on rename operation of broken directory
    - i2c: rcar: bring hardware to known state when probing
    - i2c: mark HostNotify target address as used
    - i2c: rcar: Add R-Car Gen4 support
    - i2c: rcar: reset controller is mandatory for Gen3+
    - i2c: rcar: introduce Gen4 devices
    - i2c: rcar: ensure Gen3+ reset does not disturb local targets
    - i2c: testunit: avoid re-issued work after read message
    - i2c: rcar: clear NO_RXDMA flag after resetting
    - x86/entry/64: Remove obsolete comment on tracing vs. SYSRET
    - x86/bhi: Avoid warning in #DB handler due to BHI mitigation
    - kbuild: Make ld-version.sh more robust against version string changes
    - i2c: rcar: fix error code in probe()
    - Linux 5.15.163

* [SRU] UBSAN warnings in bnx2x kernel driver (LP: #2074215) // Jammy update:
    v5.15.163 upstream stable release (LP: #2075170)
    - bnx2x: Fix multiple UBSAN array-index-out-of-bounds

* Jammy update: v5.15.162 upstream stable release (LP: #2073765)
    - mmc: davinci_mmc: Convert to platform remove callback returning void
    - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects
    - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
    - wifi: cfg80211: Lock wiphy in cfg80211_get_station
    - wifi: cfg80211: pmsr: use correct nla_get_uX functions
    - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64
    - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef
    - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids
    - wifi: iwlwifi: mvm: don't read past the mfuart notifcation
    - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element
    - net/ncsi: Simplify Kconfig/dts control flow
    - net/ncsi: Fix the multi thread manner of NCSI driver
    - ipv6: sr: block BH in seg6_output_core() and seg6_input_core()
    - bpf: Set run context for rawtp test_run callback
    - octeontx2-af: Always allocate PF entries from low prioriy zone
    - net: sched: sch_multiq: fix possible OOB write in multiq_tune()
    - vxlan: Fix regression when dropping packets due to invalid src addresses
    - tcp: count CLOSE-WAIT sockets for TCP_MIB_CURRESTAB
    - net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP
    - ptp: Fix error message on failed pin verification
    - af_unix: Set sk->sk_state under unix_state_lock() for truly disconencted
      peer.
    - af_unix: Annodate data-races around sk->sk_state for writers.
    - af_unix: Annotate data-race of sk->sk_state in unix_inq_len().
    - af_unix: Annotate data-races around sk->sk_state in unix_write_space() and
      poll().
    - net: inline sock_prot_inuse_add()
    - net: drop nopreempt requirement on sock_prot_inuse_add()
    - af_unix: Annotate data-race of sk->sk_state in unix_stream_connect().
    - af_unix: Annotate data-races around sk->sk_state in sendmsg() and recvmsg().
    - af_unix: Annotate data-race of sk->sk_state in unix_stream_read_skb().
    - af_unix: Annotate data-races around sk->sk_state in UNIX_DIAG.
    - af_unix: Annotate data-race of net->unx.sysctl_max_dgram_qlen.
    - af_unix: Use unix_recvq_full_lockless() in unix_stream_connect().
    - af_unix: annotate lockless accesses to sk->sk_err
    - af_unix: Use skb_queue_empty_lockless() in unix_release_sock().
    - af_unix: Use skb_queue_len_lockless() in sk_diag_show_rqlen().
    - af_unix: Annotate data-race of sk->sk_shutdown in sk_diag_fill().
    - ipv6: fix possible race in __fib6_drop_pcpu_from()
    - usb: gadget: f_fs: use io_data->status consistently
    - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete
    - iio: accel: mxc4005: Reset chip on probe() and resume()
    - drm/amd/display: Handle Y carry-over in VCP X.Y calculation
    - drm/amd/display: Clean up some inconsistent indenting
    - drm/amd/display: drop unnecessary NULL checks in debugfs
    - drm/amd/display: Fix incorrect DSC instance for MST
    - pvpanic: Keep single style across modules
    - pvpanic: Indentation fixes here and there
    - misc/pvpanic: deduplicate common code
    - misc/pvpanic-pci: register attributes via pci_driver
    - skbuff: introduce skb_pull_data
    - Bluetooth: hci_qca: mark OF related data as maybe unused
    - Bluetooth: btqca: use le32_to_cpu for ver.soc_id
    - Bluetooth: btqca: Add WCN3988 support
    - Bluetooth: qca: use switch case for soc type behavior
    - Bluetooth: qca: add support for QCA2066
    - Bluetooth: qca: fix info leak when fetching fw build id
    - serial: sc16is7xx: replace hardcoded divisor value with BIT() macro
    - serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler
    - x86/ibt,ftrace: Search for __fentry__ location
    - ftrace: Fix possible use-after-free issue in ftrace_location()
    - i2c: add fwnode APIs
    - i2c: acpi: Unbind mux adapters before delete
    - cma: factor out minimum alignment requirement
    - mm/cma: drop incorrect alignment check in cma_init_reserved_mem
    - selftests/mm: compaction_test: fix incorrect write of zero to nr_hugepages
    - selftests/mm: conform test to TAP format output
    - selftests/mm: compaction_test: fix bogus test success on Aarch64
    - wifi: ath10k: fix QCOM_RPROC_COMMON dependency
    - btrfs: fix leak of qgroup extent records after transaction abort
    - nilfs2: Remove check for PageError
    - nilfs2: return the mapped address from nilfs_get_page()
    - nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors
    - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages
    - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state
    - mei: me: release irq in mei_me_pci_resume error path
    - jfs: xattr: fix buffer overflow for invalid xattr
    - xhci: Set correct transferred length for cancelled bulk transfers
    - xhci: Apply reset resume quirk to Etron EJ188 xHCI host
    - xhci: Handle TD clearing for multiple streams case
    - xhci: Apply broken streams quirk to Etron EJ188 xHCI host
    - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory
    - powerpc/uaccess: Fix build errors seen with GCC 13/14
    - Input: try trimming too long modalias strings
    - clk: sifive: Do not register clkdevs for PRCI clocks
    - SUNRPC: return proper error from gss_wrap_req_priv
    - platform/x86: dell-smbios-base: Use sysfs_emit()
    - platform/x86: dell-smbios: Fix wrong token data in sysfs
    - gpio: tqmx86: fix typo in Kconfig label
    - gpio: tqmx86: store IRQ trigger type and unmask status separately
    - HID: core: remove unnecessary WARN_ON() in implement()
    - iommu/amd: Introduce pci segment structure
    - iommu/amd: Fix sysfs leak in iommu init
    - iommu: Return right value in iommu_sva_bind_device()
    - HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()
    - drm/vmwgfx: 3D disabled should not effect STDU memory limits
    - net: sfp: Always call `sfp_sm_mod_remove()` on remove
    - net: hns3: fix kernel crash problem in concurrent scenario
    - net: hns3: add cond_resched() to hns3 ring buffer init process
    - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet
    - drm/komeda: check for error-valued pointer
    - drm/bridge/panel: Fix runtime warning on panel bridge release
    - tcp: fix race in tcp_v6_syn_recv_sock()
    - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN)
      packets
    - netfilter: ipset: Fix race between namespace cleanup and gc in the list:set
      type
    - net: stmmac: replace priv->speed with the portTransmitRate from the tc-cbs
      parameters
    - net/ipv6: Fix the RT cache flush via sysctl using a previous delay
    - ionic: fix use after netif_napi_del()
    - af_unix: Read with MSG_PEEK loops if the first unread byte is OOB
    - iio: adc: ad9467: fix scan type sign
    - iio: dac: ad5592r: fix temperature channel scaling value
    - iio: imu: inv_icm42600: delete unneeded update watermark call
    - drivers: core: synchronize really_probe() and dev_uevent()
    - drm/exynos/vidi: fix memory leak in .get_modes()
    - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found
    - mptcp: ensure snd_una is properly initialized on connect
    - tracing/selftests: Fix kprobe event name test for .isra. functions
    - null_blk: Print correct max open zones limit in null_init_zoned_dev()
    - sock_map: avoid race between sock_map_close and sk_psock_put
    - vmci: prevent speculation leaks by sanitizing event in event_deliver()
    - spmi: hisi-spmi-controller: Do not override device identifier
    - knfsd: LOOKUP can return an illegal error value
    - fs/proc: fix softlockup in __read_vmcore
    - ocfs2: use coarse time for new created files
    - ocfs2: fix races between hole punching and AIO+DIO
    - PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id
    - dmaengine: axi-dmac: fix possible race in remove()
    - intel_th: pci: Add Granite Rapids support
    - intel_th: pci: Add Granite Rapids SOC support
    - intel_th: pci: Add Sapphire Rapids SOC support
    - intel_th: pci: Add Meteor Lake-S support
    - intel_th: pci: Add Lunar Lake support
    - nilfs2: fix potential kernel bug due to lack of writeback flag waiting
    - tick/nohz_full: Don't abuse smp_call_function_single() in
      tick_setup_device()
    - scsi: mpi3mr: Fix ATA NCQ priority support
    - mm/huge_memory: don't unpoison huge_zero_folio
    - serial: 8250_pxa: Configure tx_loadsz to match FIFO IRQ level
    - hugetlb_encode.h: fix undefined behaviour (34 << 26)
    - mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID
    - mptcp: pm: update add_addr counters after connect
    - kbuild: Remove support for Clang's ThinLTO caching
    - greybus: Fix use-after-free bug in gb_interface_release due to race
      condition.
    - usb-storage: alauda: Check whether the media is initialized
    - i2c: at91: Fix the functionality flags of the slave-only interface
    - i2c: designware: Fix the functionality flags of the slave-only interface
    - zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING
    - Bluetooth: qca: Fix error code in qca_read_fw_build_info()
    - Bluetooth: qca: fix info leak when fetching board id
    - padata: Disable BH when taking works lock on MT path
    - crypto: hisilicon/sec - Fix memory leak for sec resource release
    - rcutorture: Fix rcu_torture_one_read() pipe_count overflow comment
    - rcutorture: Make stall-tasks directly exit when rcutorture tests end
    - rcutorture: Fix invalid context warning when enable srcu barrier testing
    - block/ioctl: prefer different overflow check
    - selftests/bpf: Prevent client connect before server bind in
      test_tc_tunnel.sh
    - selftests/bpf: Fix flaky test btf_map_in_map/lookup_update
    - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
    - wifi: ath9k: work around memset overflow warning
    - af_packet: avoid a false positive warning in packet_setsockopt()
    - drop_monitor: replace spin_lock by raw_spin_lock
    - scsi: qedi: Fix crash while reading debugfs attribute
    - kselftest: arm64: Add a null pointer check
    - netpoll: Fix race condition in netpoll_owner_active
    - HID: Add quirk for Logitech Casa touchpad
    - ACPI: video: Add backlight=native quirk for Lenovo Slim 7 16ARH7
    - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
    - drm/amd/display: Exit idle optimizations before HDCP execution
    - drm/lima: add mask irq callback to gp and pp
    - drm/lima: mask irqs in timeout path before hard reset
    - powerpc/pseries: Enforce hcall result buffer validity and size
    - powerpc/io: Avoid clang null pointer arithmetic warnings
    - power: supply: cros_usbpd: provide ID table for avoiding fallback match
    - iommu/arm-smmu-v3: Free MSIs in case of ENOMEM
    - f2fs: remove clear SB_INLINECRYPT flag in default_options
    - usb: misc: uss720: check for incompatible versions of the Belkin F5U002
    - Avoid hw_desc array overrun in dw-axi-dmac
    - udf: udftime: prevent overflow in udf_disk_stamp_to_time()
    - PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports
    - MIPS: Octeon: Add PCIe link status check
    - serial: imx: Introduce timeout when waiting on transmitter empty
    - serial: exar: adding missing CTI and Exar PCI ids
    - MIPS: Routerboard 532: Fix vendor retry check code
    - mips: bmips: BCM6358: make sure CBR is correctly set
    - tracing: Build event generation tests only as modules
    - cipso: fix total option length computation
    - netrom: Fix a memory leak in nr_heartbeat_expiry()
    - ipv6: prevent possible NULL deref in fib6_nh_init()
    - ipv6: prevent possible NULL dereference in rt6_probe()
    - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
    - netns: Make get_net_ns() handle zero refcount net
    - qca_spi: Make interrupt remembering atomic
    - net/sched: act_api: rely on rcu in tcf_idr_check_alloc
    - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
    - tipc: force a dst refcount before doing decryption
    - net/sched: act_ct: set 'net' pointer when creating new nf_flow_table
    - sched: act_ct: add netns into the key of tcf_ct_flow_table
    - ptp: fix integer overflow in max_vclocks_store
    - net: stmmac: No need to calculate speed divider when offload is disabled
    - virtio_net: checksum offloading handling fix
    - octeontx2-pf: Add error handling to VLAN unoffload handling
    - netfilter: ipset: Fix suspicious rcu_dereference_protected()
    - seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6
      behaviors
    - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error
    - net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings
    - regulator: core: Fix modpost error "regulator_get_regmap" undefined
    - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list
    - dmaengine: ioat: switch from 'pci_' to 'dma_' API
    - dmaengine: ioat: Drop redundant pci_enable_pcie_error_reporting()
    - dmaengine: ioatdma: Fix leaking on version mismatch
    - dmaengine: ioat: use PCI core macros for PCIe Capability
    - dmaengine: ioatdma: Fix error path in ioat3_dma_probe()
    - dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe()
    - dmaengine: ioatdma: Fix missing kmem_cache_destroy()
    - regulator: bd71815: fix ramp values
    - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
      fine."
    - RDMA/mlx5: Add check for srq max_sge attribute
    - serial: stm32: rework RX over DMA
    - net: do not leave a dangling sk pointer, when socket creation fails
    - btrfs: retry block group reclaim without infinite loop
    - KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes
    - ALSA: hda/realtek: Limit mic boost on N14AP7
    - drm/i915/mso: using joiner is not possible with eDP MSO
    - drm/radeon: fix UBSAN warning in kv_dpm.c
    - gcov: add support for GCC 14
    - kcov: don't lose track of remote references during softirqs
    - tcp: clear tp->retrans_stamp in tcp_rcv_fastopen_synack()
    - i2c: ocores: set IACK bit after core is enabled
    - dt-bindings: i2c: google,cros-ec-i2c-tunnel: correct path to i2c-controller
      schema
    - arm64: dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc
    - drm/amd/display: revert Exit idle optimizations before HDCP execution
    - perf: script: add raw|disasm arguments to --insn-trace option
    - perf script: Show also errors for --insn-trace option
    - ARM: dts: samsung: smdkv310: fix keypad no-autorepeat
    - ARM: dts: samsung: exynos4412-origen: fix keypad no-autorepeat
    - ARM: dts: samsung: smdk4412: fix keypad no-autorepeat
    - rtlwifi: rtl8192de: Style clean-ups
    - wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power
    - pmdomain: ti-sci: Fix duplicate PD referrals
    - bcache: fix variable length array abuse in btree_iter
    - tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test
    - x86/cpu/vfm: Add new macros to work with (vendor/family/model) values
    - x86/cpu: Fix x86_match_cpu() to match just X86_VENDOR_INTEL
    - ksmbd: ignore trailing slashes in share paths
    - drm/i915/gt: Only kick the signal worker if there's been an update
    - drm/i915/gt: Disarm breadcrumbs if engines are already idle
    - Revert "kheaders: substituting --sort in archive creation"
    - kheaders: explicitly define file modes for archived headers
    - riscv: mm: init: try best to use IS_ENABLED(CONFIG_64BIT) instead of #ifdef
    - riscv: fix overlap of allocated page and PTR_ERR
    - perf/core: Fix missing wakeup when waiting for context reference
    - PCI: Add PCI_ERROR_RESPONSE and related definitions
    - x86/amd_nb: Check for invalid SMN reads
    - smb: client: fix deadlock in smb2_find_smb_tcon()
    - ACPI: x86: utils: Add Picasso to the list for forcing StorageD3Enable
    - ACPI: x86: Force StorageD3Enable on more products
    - gve: Add RX context.
    - gve: Clear napi->skb before dev_kfree_skb_any()
    - Input: ili210x - fix ili251x_read_touch_data() return value
    - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER
    - pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins
    - pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins
    - pinctrl: rockchip: use dedicated pinctrl type for RK3328
    - pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set
    - cifs: fix typo in module parameter enable_gcm_256
    - drm/amdgpu: fix UBSAN warning in kv_dpm.c
    - net: mdio: add helpers to extract clause 45 regad and devad fields
    - net: stmmac: Assign configured channel value to EXTTS event
    - ASoC: fsl-asoc-card: set priv->pdev before using it
    - net: dsa: microchip: fix initial port flush problem
    - ibmvnic: Free any outstanding tx skbs during scrq reset
    - net: phy: micrel: add Microchip KSZ 9477 to the device table
    - xdp: Remove WARN() from __xdp_reg_mem_model()
    - tcp: Use BPF timeout setting for SYN ACK RTO
    - Fix race for duplicate reqsk on identical SYN
    - sparc: fix old compat_sys_select()
    - sparc: fix compat recv/recvfrom syscalls
    - parisc: use correct compat recv/recvfrom syscalls
    - tcp: fix tcp_rcv_fastopen_synack() to enter TCP_CA_Loss for failed TFO
    - netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data
      registers
    - bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()
    - drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep
    - vduse: validate block features only with block devices
    - vduse: Temporarily fail if control queue feature requested
    - x86/fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup
    - mtd: partitions: redboot: Added conversion of operands to a larger type
    - bpf: Add a check for struct bpf_fib_lookup size
    - RDMA/restrack: Fix potential invalid address access
    - net/iucv: Avoid explicit cpumask var allocation on stack
    - net/dpaa2: Avoid explicit cpumask var allocation on stack
    - crypto: ecdh - explicitly zeroize private_key
    - ALSA: emux: improve patch ioctl data validation
    - media: dvbdev: Initialize sbuf
    - soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message
    - drm/radeon/radeon_display: Decrease the size of allocated memory
    - nvme: fixup comment for nvme RDMA Provider Type
    - drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA
    - gpio: davinci: Validate the obtained number of IRQs
    - gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1)
    - x86: stop playing stack games in profile_pc()
    - parisc: use generic sys_fanotify_mark implementation
    - ocfs2: fix DIO failure due to insufficient transaction credits
    - mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos
    - mmc: sdhci: Do not invert write-protect twice
    - mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro()
    - i2c: testunit: don't erase registers after STOP
    - i2c: testunit: discard write requests while old command is running
    - iio: adc: ad7266: Fix variable checking bug
    - iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF
    - iio: chemical: bme680: Fix pressure value output
    - iio: chemical: bme680: Fix calibration data variable
    - iio: chemical: bme680: Fix overflows in compensate() functions
    - iio: chemical: bme680: Fix sensor data read operation
    - net: usb: ax88179_178a: improve link status logs
    - usb: gadget: printer: SS+ support
    - usb: gadget: printer: fix races against disable
    - usb: musb: da8xx: fix a resource leak in probe()
    - usb: atm: cxacru: fix endpoint checking in cxacru_bind()
    - usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to
      avoid deadlock
    - serial: 8250_omap: Implementation of Errata i2310
    - tty: mcf: MCF54418 has 10 UARTS
    - net: can: j1939: Initialize unused data in j1939_send_one()
    - net: can: j1939: recover socket queue on CAN bus error during BAM
      transmission
    - net: can: j1939: enhanced error handling for tightly received RTS messages
      in xtp_rx_rts_session_new
    - cpu/hotplug: Fix dynstate assignment in __cpuhp_setup_state_cpuslocked()
    - kbuild: Install dtb files as 0644 in Makefile.dtbinst
    - sh: rework sync_file_range ABI
    - csky, hexagon: fix broken sys_sync_file_range
    - hexagon: fix fadvise64_64 calling conventions
    - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes
    - drm/amdgpu: avoid using null object of framebuffer
    - drm/i915/gt: Fix potential UAF by revoke of fence registers
    - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes
    - batman-adv: Don't accept TT entries for out-of-spec VIDs
    - ata: ahci: Clean up sysfs file on error
    - ata: libata-core: Fix double free on error
    - ftruncate: pass a signed offset
    - syscalls: fix compat_sys_io_pgetevents_time64 usage
    - syscalls: fix sys_fanotify_mark prototype
    - pwm: stm32: Refuse too small period requests
    - nfs: Leave pages in the pagecache if readpage failed
    - drivers: fix typo in firmware/efi/memmap.c
    - efi: Correct comment on efi_memmap_alloc
    - efi: memmap: Move manipulation routines into x86 arch tree
    - efi: xen: Set EFI_PARAVIRT for Xen dom0 boot on all architectures
    - efi/x86: Free EFI memory map only when installing a new one.
    - KVM: arm64: vgic-v4: Make the doorbell request robust w.r.t preemption
    - ARM: dts: rockchip: rk3066a: add #sound-dai-cells to hdmi node
    - arm64: dts: rockchip: fix PMIC interrupt pin on ROCK Pi E
    - arm64: dts: rockchip: Add sound-dai-cells for RK3368
    - serial: 8250_omap: Fix Errata i2310 with RX FIFO level check
    - tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset()
    - Linux 5.15.162

* Fix L2CAP/LE/CPU/BI-02-C bluetooth certification failure  (LP: #2072858) //
    Jammy update: v5.15.162 upstream stable release (LP: #2073765)
    - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ

* net/sched: Fix conntrack use-after-free (LP: #2073092)
    - net/sched: Fix UAF when resolving a clash

* Jammy update: v5.15.161 upstream stable release (LP: #2072617)
    - x86/tsc: Trust initial offset in architectural TSC-adjust MSRs
    - tty: n_gsm: fix missing receive state reset after mode switch
    - speakup: Fix sizeof() vs ARRAY_SIZE() bug
    - serial: 8250_bcm7271: use default_mux_rate if possible
    - Revert "r8169: don't try to disable interrupts if NAPI is, scheduled
      already"
    - r8169: Fix possible ring buffer corruption on fragmented Tx packets.
    - ring-buffer: Fix a race between readers and resize checks
    - tools/latency-collector: Fix -Wformat-security compile warns
    - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
    - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
    - nilfs2: fix potential hang in nilfs_detach_log_writer()
    - fs/ntfs3: Remove max link count info display during driver init
    - fs/ntfs3: Taking DOS names into account during link counting
    - fs/ntfs3: Fix case when index is reused during tree transformation
    - fs/ntfs3: Break dir enumeration if directory contents error
    - ALSA: core: Fix NULL module pointer assignment at card init
    - wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt
      class
    - dt-bindings: rockchip: grf: Add missing type to 'pcie-phy' node
    - net: usb: qmi_wwan: add Telit FN920C04 compositions
    - drm/amd/display: Set color_mgmt_changed to true on unsuspend
    - selftests: sud_test: return correct emulated syscall value on RISC-V
    - regulator: irq_helpers: duplicate IRQ name
    - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
    - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
    - regulator: vqmmc-ipq4019: fix module autoloading
    - ASoC: rt715: add vendor clear control register
    - ASoC: rt715-sdca: volume step modification
    - softirq: Fix suspicious RCU usage in __do_softirq()
    - ASoC: da7219-aad: fix usage of device_get_named_child_node()
    - drm/amdkfd: Flush the process wq before creating a kfd_process
    - x86/mm: Remove broken vsyscall emulation code from the page fault code
    - nvme: find numa distance only if controller has valid numa id
    - epoll: be better about file lifetimes
    - openpromfs: finish conversion to the new mount API
    - crypto: bcm - Fix pointer arithmetic
    - mm/slub, kunit: Use inverted data to corrupt kmem cache
    - firmware: raspberrypi: Use correct device for DMA mappings
    - ecryptfs: Fix buffer size for tag 66 packet
    - nilfs2: fix out-of-range warning
    - parisc: add missing export of __cmpxchg_u8()
    - crypto: ccp - drop platform ifdef checks
    - crypto: x86/nh-avx2 - add missing vzeroupper
    - crypto: x86/sha256-avx2 - add missing vzeroupper
    - crypto: x86/sha512-avx2 - add missing vzeroupper
    - s390/cio: fix tracepoint subchannel type field
    - jffs2: prevent xattr node from overflowing the eraseblock
    - soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE
    - null_blk: Fix missing mutex_destroy() at module removal
    - md: fix resync softlockup when bitmap size is less than array size
    - wifi: ath10k: poll service ready message before failing
    - x86/boot: Ignore relocations in .notes sections in walk_relocs() too
    - sched/fair: Add EAS checks before updating root_domain::overutilized
    - qed: avoid truncating work queue length
    - bpf: Pack struct bpf_fib_lookup
    - scsi: ufs: qcom: Perform read back after writing reset bit
    - scsi: ufs: qcom: Perform read back after writing REG_UFS_SYS1CLK_1US
    - scsi: ufs: ufs-qcom: Fix the Qcom register name for offset 0xD0
    - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW version major 5
    - scsi: ufs: qcom: Perform read back after writing unipro mode
    - scsi: ufs: qcom: Perform read back after writing CGC enable
    - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
    - scsi: ufs: core: Perform read back after disabling interrupts
    - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
    - irqchip/alpine-msi: Fix off-by-one in allocation error path
    - irqchip/loongson-pch-msi: Fix off-by-one on allocation error path
    - ACPI: disable -Wstringop-truncation
    - gfs2: Don't forget to complete delayed withdraw
    - gfs2: Fix "ignore unlock failures after withdraw"
    - selftests/bpf: Fix umount cgroup2 error in test_sockmap
    - cpufreq: Reorganize checks in cpufreq_offline()
    - cpufreq: Split cpufreq_offline()
    - cpufreq: Rearrange locking in cpufreq_remove_dev()
    - cpufreq: exit() callback is optional
    - net: export inet_lookup_reuseport and inet6_lookup_reuseport
    - net: remove duplicate reuseport_lookup functions
    - udp: Avoid call to compute_score on multiple sites
    - cppc_cpufreq: Fix possible null pointer dereference
    - scsi: libsas: Fix the failure of adding phy with zero-address to port
    - scsi: hpsa: Fix allocation size for Scsi_Host private data
    - x86/purgatory: Switch to the position-independent small code model
    - thermal/drivers/tsens: Fix null pointer dereference
    - wifi: ath10k: Fix an error code problem in
      ath10k_dbg_sta_write_peer_debug_trigger()
    - wifi: ath10k: populate board data for WCN3990
    - net: dsa: mv88e6xxx: Add support for model-specific pre- and post-reset
      handlers
    - net: dsa: mv88e6xxx: Avoid EEPROM timeout without EEPROM on 88E6250-family
      switches
    - tcp: avoid premature drops in tcp_add_backlog()
    - pwm: sti: Convert to platform remove callback returning void
    - pwm: sti: Prepare removing pwm_chip from driver data
    - pwm: sti: Simplify probe function using devm functions
    - net: give more chances to rcu in netdev_wait_allrefs_any()
    - macintosh/via-macii: Fix "BUG: sleeping function called from invalid
      context"
    - wifi: carl9170: add a proper sanity check for endpoints
    - wifi: ar5523: enable proper endpoint verification
    - sh: kprobes: Merge arch_copy_kprobe() into arch_prepare_kprobe()
    - Revert "sh: Handle calling csum_partial with misaligned data"
    - selftests/binderfs: use the Makefile's rules, not Make's implicit rules
    - selftests/resctrl: fix clang build failure: use LOCAL_HDRS
    - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
    - scsi: bfa: Ensure the copied buf is NUL terminated
    - scsi: qedf: Ensure the copied buf is NUL terminated
    - scsi: qla2xxx: Fix debugfs output for fw_resource_count
    - wifi: mwl8k: initialize cmd->addr[] properly
    - usb: aqc111: stop lying about skb->truesize
    - net: usb: sr9700: stop lying about skb->truesize
    - m68k: Fix spinlock race in kernel thread creation
    - m68k: mac: Fix reboot hang on Mac IIci
    - net: ipv6: fix wrong start position when receive hop-by-hop fragment
    - eth: sungem: remove .ndo_poll_controller to avoid deadlocks
    - net: ethernet: cortina: Locking fixes
    - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
    - net: usb: smsc95xx: stop lying about skb->truesize
    - net: openvswitch: fix overwriting ct original tuple for ICMPv6
    - ipv6: sr: add missing seg6_local_exit
    - ipv6: sr: fix incorrect unregister order
    - ipv6: sr: fix invalid unregister error path
    - net/mlx5: Discard command completions in internal error
    - s390/bpf: Emit a barrier for BPF_FETCH instructions
    - mptcp: SO_KEEPALIVE: fix getsockopt support
    - printk: Let no_printk() use _printk()
    - dev_printk: Add and use dev_no_printk()
    - drm/amd/display: Fix potential index out of bounds in color transformation
      function
    - ASoC: Intel: Disable route checks for Skylake boards
    - mtd: core: Report error if first mtd_otp_size() call fails in
      mtd_otp_nvmem_add()
    - mtd: rawnand: hynix: fixed typo
    - fbdev: shmobile: fix snprintf truncation
    - ASoC: kirkwood: Fix potential NULL dereference
    - drm/meson: vclk: fix calculation of 59.94 fractional rates
    - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
    - powerpc/fsl-soc: hide unused const variable
    - fbdev: sisfb: hide unused variables
    - media: ngene: Add dvb_ca_en50221_init return value check
    - media: radio-shark2: Avoid led_names truncations
    - drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference
    - media: ipu3-cio2: Use temporary storage for struct device pointer
    - media: ipu3-cio2: Request IRQ earlier
    - media: dt-bindings: ovti,ov2680: Fix the power supply names
    - fbdev: sh7760fb: allow modular build
    - media: atomisp: ssh_css: Fix a null-pointer dereference in
      load_video_binaries
    - drm/arm/malidp: fix a possible null pointer dereference
    - drm: vc4: Fix possible null pointer dereference
    - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
    - drm/bridge: lt8912b: Don't log an error when DSI host can't be found
    - drm/bridge: lt9611: Don't log an error when DSI host can't be found
    - drm/bridge: tc358775: Don't log an error when DSI host can't be found
    - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
    - drm/mipi-dsi: use correct return type for the DSC functions
    - RDMA/mlx5: Adding remote atomic access flag to updatable flags
    - RDMA/hns: Fix return value in hns_roce_map_mr_sg
    - RDMA/hns: Fix deadlock on SRQ async events.
    - RDMA/hns: Fix GMV table pagesize
    - RDMA/hns: Use complete parentheses in macros
    - RDMA/hns: Modify the print level of CQE error
    - clk: qcom: mmcc-msm8998: fix venus clock issue
    - x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map
    - ext4: avoid excessive credit estimate in ext4_tmpfile()
    - virt: acrn: Prefer array_size and struct_size over open coded arithmetic
    - virt: acrn: stop using follow_pfn
    - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()
    - sunrpc: removed redundant procp check
    - ext4: simplify calculation of blkoff in ext4_mb_new_blocks_simple
    - ext4: fix unit mismatch in ext4_mb_new_blocks_simple
    - ext4: try all groups in ext4_mb_new_blocks_simple
    - ext4: remove unused parameter from ext4_mb_new_blocks_simple()
    - ext4: fix potential unnitialized variable
    - SUNRPC: Fix gss_free_in_token_pages()
    - selftests/kcmp: Make the test output consistent and clear
    - selftests/kcmp: remove unused open mode
    - RDMA/IPoIB: Fix format truncation compilation errors
    - selftests: net: bridge: increase IGMP/MLD exclude timeout membership
      interval
    - net: qrtr: ns: Fix module refcnt
    - netrom: fix possible dead-lock in nr_rt_ioctl()
    - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
    - sched/fair: Allow disabling sched_balance_newidle with
      sched_relax_domain_level
    - sched/core: Fix incorrect initialization of the 'burst' parameter in
      cpu_max_write()
    - greybus: lights: check return of get_channel_from_mode
    - f2fs: Delete f2fs_copy_page() and replace with memcpy_page()
    - f2fs: fix to wait on page writeback in __clone_blkaddrs()
    - soundwire: cadence: fix invalid PDI offset
    - dmaengine: idma64: Add check for dma_set_max_seg_size
    - firmware: dmi-id: add a release callback function
    - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
    - serial: max3100: Update uart_driver_registered on driver removal
    - serial: max3100: Fix bitwise types
    - greybus: arche-ctrl: move device table to its right location
    - PCI: tegra194: Fix probe path for Endpoint mode
    - serial: sc16is7xx: add proper sched.h include for sched_set_fifo()
    - dt-bindings: PCI: rcar-pci-host: Add optional regulators
    - dt-bindings: PCI: rcar-pci-host: Add missing IOMMU properties
    - f2fs: compress: fix to relocate check condition in
      f2fs_{release,reserve}_compress_blocks()
    - f2fs: convert to use sbi directly
    - f2fs: compress: fix to relocate check condition in
      f2fs_ioc_{,de}compress_file()
    - f2fs: do not allow partial truncation on pinned file
    - f2fs: fix typos in comments
    - f2fs: fix to relocate check condition in f2fs_fallocate()
    - f2fs: fix to check pinfile flag in f2fs_move_file_range()
    - coresight: etm4x: Fix unbalanced pm_runtime_enable()
    - iio: pressure: dps310: support negative temperature values
    - coresight: etm4x: Do not hardcode IOMEM access for register restore
    - coresight: etm4x: Do not save/restore Data trace control registers
    - coresight: no-op refactor to make INSTP0 check more idiomatic
    - coresight: etm4x: Cleanup TRCIDR0 register accesses
    - coresight: etm4x: Safe access for TRCQCLTR
    - coresight: etm4x: Fix access to resource selector registers
    - fpga: region: Use standard dev_release for class driver
    - fpga: region: add owner module and take its refcount
    - microblaze: Remove gcc flag for non existing early_printk.c file
    - microblaze: Remove early printk call from cpuinfo-static.c
    - dt-bindings: pinctrl: mediatek: mt7622: fix array properties
    - watchdog: bd9576_wdt: switch to using devm_fwnode_gpiod_get()
    - watchdog: bd9576: Drop "always-running" property
    - usb: gadget: u_audio: Clear uac pointer when freed.
    - stm class: Fix a double free in stm_register_device()
    - ppdev: Remove usage of the deprecated ida_simple_xx() API
    - ppdev: Add an error check in register_device
    - extcon: max8997: select IRQ_DOMAIN instead of depending on it
    - PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3
    - PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3
    - f2fs: compress: fix to cover {reserve,release}_compress_blocks() w/ cp_rwsem
      lock
    - f2fs: fix to release node block count in error path of f2fs_new_node_page()
    - f2fs: compress: don't allow unaligned truncation on released compress inode
    - serial: sh-sci: protect invalidating RXDMA on shutdown
    - libsubcmd: Fix parse-options memory leak
    - s390/vdso: filter out mno-pic-data-is-text-relative cflag
    - s390/vdso64: filter out munaligned-symbols flag for vdso
    - s390/vdso: Generate unwind information for C modules
    - s390/vdso: Use standard stack frame layout
    - s390/ipl: Fix incorrect initialization of len fields in nvme reipl block
    - s390/ipl: Fix incorrect initialization of nvme dump block
    - s390/boot: Remove alt_stfle_fac_list from decompressor
    - Input: ims-pcu - fix printf string overflow
    - Input: ioc3kbd - convert to platform remove callback returning void
    - Input: ioc3kbd - add device table
    - mmc: sdhci_am654: Add tuning algorithm for delay chain
    - mmc: sdhci_am654: Write ITAPDLY for DDR52 timing
    - mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel
    - mmc: sdhci_am654: Add OTAP/ITAP delay enable
    - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock
    - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing
    - Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation
    - drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode pclk
    - drm/msm/dpu: Always flush the slave INTF on the CTL
    - um: Fix return value in ubd_init()
    - um: vector: fix bpfflash parameter evaluation
    - fs/ntfs3: Use 64 bit variable to avoid 32 bit overflow
    - fs/ntfs3: Use variable length array instead of fixed size
    - drm/bridge: tc358775: fix support for jeida-18 and jeida-24
    - media: stk1160: fix bounds checking in stk1160_copy_video()
    - scsi: qla2xxx: Replace all non-returning strlcpy() with strscpy()
    - Input: cyapa - add missing input core locking to suspend/resume functions
    - media: flexcop-usb: clean up endpoint sanity checks
    - media: flexcop-usb: fix sanity check of bNumEndpoints
    - powerpc/pseries: Add failure related checks for h_get_mpp and h_get_ppp
    - um: Fix the -Wmissing-prototypes warning for __switch_mm
    - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh
    - media: cec: cec-api: add locking in cec_release()
    - media: cec: call enable_adap on s_log_addrs
    - media: cec: abort if the current transmit was canceled
    - media: cec: correctly pass on reply results
    - media: cec: use call_op and check for !unregistered
    - media: cec-adap.c: drop activate_cnt, use state info instead
    - media: cec: core: avoid recursive cec_claim_log_addrs
    - media: cec: core: avoid confusing "transmit timed out" message
    - null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION()
    - ASoC: mediatek: mt8192: fix register configuration for tdm
    - regulator: bd71828: Don't overwrite runtime voltages
    - x86/kconfig: Select ARCH_WANT_FRAME_POINTERS again when
      UNWINDER_FRAME_POINTER=y
    - [Config] Update CONFIG_ARCH_WANT_FRAME_POINTERS
    - net: Always descend into dsa/ folder with CONFIG_NET_DSA enabled
    - ipv6: sr: fix missing sk_buff release in seg6_input_core
    - nfc: nci: Fix uninit-value in nci_rx_work
    - ASoC: tas2552: Add TX path for capturing AUDIO-OUT data
    - NFSv4: Fixup smatch warning for ambiguous return
    - sunrpc: fix NFSACL RPC retry on soft mount
    - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL
    - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.
    - ipv6: sr: fix memleak in seg6_hmac_init_algo
    - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
    - openvswitch: Set the skbuff pkt_type for proper pmtud support.
    - arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY
    - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails
    - riscv: stacktrace: Make walk_stackframe cross pt_regs frame
    - riscv: stacktrace: fixed walk_stackframe()
    - net: fec: avoid lock evasion when reading pps_enable
    - tls: fix missing memory barrier in tls_init
    - nfc: nci: Fix kcov check in nci_rx_work()
    - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work()
    - ice: Interpret .set_channels() input differently
    - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
      instance_destroy_rcu()
    - netfilter: nft_payload: restore vlan q-in-q match support
    - spi: Don't mark message DMA mapped when no transfer in it is
    - dma-mapping: benchmark: fix node id validation
    - dma-mapping: benchmark: handle NUMA_NO_NODE correctly
    - nvmet: fix ns enable/disable possible hang
    - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061
    - net/mlx5e: Fix IPsec tunnel mode offload feature check
    - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer
      exhaustion
    - dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
    - bpf: Fix potential integer overflow in resolve_btfids
    - enic: Validate length of nl attributes in enic_set_vf_port
    - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM
    - bpf: Allow delete from sockmap/sockhash only if update is allowed
    - net:fec: Add fec_enet_deinit()
    - netfilter: nft_payload: move struct nft_payload_set definition where it
      belongs
    - netfilter: nft_payload: rebuild vlan header when needed
    - netfilter: nft_payload: rebuild vlan header on h_proto access
    - netfilter: nft_payload: skbuff vlan metadata mangle support
    - netfilter: tproxy: bail out if IP has been disabled on the device
    - kconfig: fix comparison to constant symbols, 'm', 'n'
    - spi: stm32: Don't warn about spurious interrupts
    - net: ena: Add capabilities field with support for ENI stats capability
    - net: ena: Extract recurring driver reset code into a function
    - net: ena: Do not waste napi skb cache
    - net: ena: Add dynamic recycling mechanism for rx buffers
    - net: ena: Reduce lines with longer column width boundary
    - net: ena: Fix redundant device NUMA node override
    - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
    - hwmon: (shtc1) Fix property misspelling
    - ALSA: timer: Set lower bound of start tick time
    - KVM: x86: Don't advertise guest.MAXPHYADDR as host.MAXPHYADDR in CPUID
    - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline
    - net: ena: Fix DMA syncing in XDP path when SWIOTLB is on
    - media: cec: core: add adap_nb_transmit_canceled() callback
    - SUNRPC: Fix loop termination condition in gss_free_in_token_pages()
    - drm: Check output polling initialized before disabling
    - drm: Check polling initialized before enabling in
      drm_helper_probe_single_connector_modes
    - mmc: core: Do not force a retune before RPMB switch
    - io_uring: fail NOP if non-zero op flags is passed in
    - afs: Don't cross .backup mountpoint from backup volume
    - nilfs2: fix use-after-free of timer for log writer thread
    - mptcp: fix full TCP keep-alive support
    - vxlan: Fix regression when dropping packets due to invalid src addresses
    - net: dsa: sja1105: always enable the INCL_SRCPT option
    - net: dsa: tag_sja1105: always prefer source port information from INCL_SRCPT
    - scripts/gdb: fix SB_* constants parsing
    - sunrpc: exclude from freezer when waiting for requests:
    - f2fs: fix to do sanity check on i_xattr_nid in sanity_check_inode()
    - media: lgdt3306a: Add a check against null-pointer-def
    - drm/amdgpu: add error handle to avoid out-of-bounds
    - ata: pata_legacy: make legacy_exit() work again
    - thermal/drivers/qcom/lmh: Check for SCM availability at probe
    - soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request
    - ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx
    - arm64: tegra: Correct Tegra132 I2C alias
    - arm64: dts: qcom: qcs404: fix bluetooth device address
    - md/raid5: fix deadlock that raid5d() wait for itself to clear
      MD_SB_CHANGE_PENDING
    - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU
    - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE
    - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path
    - arm64: dts: hi3798cv200: fix the size of GICR
    - media: mc: mark the media devnode as registered from the, start
    - media: mxl5xx: Move xpt structures off stack
    - media: v4l2-core: hold videodev_lock until dev reg, finishes
    - mmc: core: Add mmc_gpiod_set_cd_config() function
    - mmc: sdhci-acpi: Sort DMI quirks alphabetically
    - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working
    - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A
    - fbdev: savage: Handle err return when savagefb_check_var failed
    - drm/amdgpu/atomfirmware: add intergrated info v2.3 table
    - KVM: arm64: Fix AArch32 register narrowing on userspace write
    - KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode
    - crypto: ecdsa - Fix module auto-load on add-key
    - crypto: ecrdsa - Fix module auto-load on add_key
    - crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak
    - net/ipv6: Fix route deleting failure when metric equals 0
    - net/9p: fix uninit-value in p9_client_rpc()
    - intel_th: pci: Add Meteor Lake-S CPU support
    - sparc64: Fix number of online CPUs
    - watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin
    - kdb: Fix buffer overflow during tab-complete
    - kdb: Use format-strings rather than '\0' injection in kdb_read()
    - kdb: Fix console handling when editing and tab-completing commands
    - kdb: Merge identical case statements in kdb_read()
    - kdb: Use format-specifiers rather than memset() for padding in kdb_read()
    - net: fix __dst_negative_advice() race
    - sparc: move struct termio to asm/termios.h
    - ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow
    - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
    - s390/ap: Fix crash in AP internal function modify_bitmap()
    - s390/cpacf: Split and rework cpacf query functions
    - s390/cpacf: Make use of invalid opcode produce a link error
    - i3c: master: svc: fix invalidate IBI type and miss call client IBI handler
    - EDAC/igen6: Convert PCIBIOS_* return codes to errnos
    - nfs: fix undefined behavior in nfs_block_bits()
    - NFS: Fix READ_PLUS when server doesn't support OP_READ_PLUS
    - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW major version > 5
    - Linux 5.15.161

* Virtualbox Guru meditation on VM start caused by kernel commit in v6.9-rc4
    (LP: #2073267)
    - SAUCE: Revert "randomize_kstack: Improve entropy diffusion"

* CVE-2024-26921
    - inet: inet_defrag: prevent sk release while still in use

* Jammy update: v5.15.162 upstream stable release (LP: #2073765) //
    CVE-2024-39484
    - mmc: davinci: Don't strip remove function when driver is builtin

* CVE-2024-39292
    - um: Add winch to winch_handlers before registering winch IRQ

* CVE-2024-36901
    - ipv6: prevent NULL dereference in ip6_output()

* CVE-2024-26830
    - i40e: Do not allow untrusted VF to remove administratively set MAC

* CVE-2024-26680
    - net: atlantic: Fix DMA mapping for PTP hwts ring

* CVE-2023-52760
    - gfs2: Fix slab-use-after-free in gfs2_qd_dealloc

* CVE-2023-52629
    - sh: push-switch: Reorder cleanup operations to avoid use-after-free bug

-- Roxana Nicolescu <roxana.nicolescu@canonical.com>  Fri, 09 Aug 2024 10:15:16 +0200

Changed in linux (Ubuntu Jammy):
status:	Fix Committed → Fix Released

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-10-22:

#19

This bug is awaiting verification that the linux-mtk/5.15.0-1035.41 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-jammy-linux-mtk' to 'verification-done-jammy-linux-mtk'. If the problem still exists, change the tag 'verification-needed-jammy-linux-mtk' to 'verification-failed-jammy-linux-mtk'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-jammy-linux-mtk-v2 verification-needed-jammy-linux-mtk

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-10-23:

#20

This bug is awaiting verification that the linux-ibm-gt-tdx/6.8.0-1014.15+tdx1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-noble-linux-ibm-gt-tdx' to 'verification-done-noble-linux-ibm-gt-tdx'. If the problem still exists, change the tag 'verification-needed-noble-linux-ibm-gt-tdx' to 'verification-failed-noble-linux-ibm-gt-tdx'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-noble-linux-ibm-gt-tdx-v2 verification-needed-noble-linux-ibm-gt-tdx

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-10-25:

#21

This bug is awaiting verification that the linux-nvidia-tegra/6.8.0-1001.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-noble-linux-nvidia-tegra' to 'verification-done-noble-linux-nvidia-tegra'. If the problem still exists, change the tag 'verification-needed-noble-linux-nvidia-tegra' to 'verification-failed-noble-linux-nvidia-tegra'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-noble-linux-nvidia-tegra-v2 verification-needed-noble-linux-nvidia-tegra

Revision history for this message

Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote on 2024-11-11:

#22

This bug is awaiting verification that the linux-nvidia-tegra-5.15/5.15.0-1030.30~20.04.1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-focal-linux-nvidia-tegra-5.15' to 'verification-done-focal-linux-nvidia-tegra-5.15'. If the problem still exists, change the tag 'verification-needed-focal-linux-nvidia-tegra-5.15' to 'verification-failed-focal-linux-nvidia-tegra-5.15'.

If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.

See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you!

tags:

added: kernel-spammed-focal-linux-nvidia-tegra-5.15-v2 verification-needed-focal-linux-nvidia-tegra-5.15

Juerg Haefliger (juergh) on 2025-04-18

tags:

added: kernel-daily-bug

Ubuntu
linux package

net/sched: Fix conntrack use-after-free

Bug Description

CVE References

Other bug subscribers

Remote bug watches

	Status	Importance	Assigned to
linux (Ubuntu)	Invalid	Undecided	gerald.yang
Jammy	Fix Released	High	gerald.yang
Noble	Fix Released	High	gerald.yang
Oracular	Invalid	Undecided	gerald.yang
linux-hwe-6.8 (Ubuntu)	Invalid	Undecided	Unassigned
Jammy	Fix Released	High	gerald.yang
Noble	Invalid	Undecided	Unassigned
Oracular	Invalid	Undecided	Unassigned

Ubuntulinux package

net/sched: Fix conntrack use-after-free

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
linux package