SUSE-SU-2022:2892-1

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

• CVE-2022-2639: Fixed integer underflow that could lead to out-of-bounds write in reservesfasize() (bsc#1202154).
• CVE-2020-36516: Fixed TCP session data injection vulnerability via the mixed IPID assignment method (bnc#1196616).
• CVE-2022-36946: Fixed an incorrect packet trucation operation which could lead to denial of service (bnc#1201940).
• CVE-2022-29581: Fixed improper update of Reference Count in net/sched that could cause root privilege escalation (bnc#1199665).
• CVE-2022-20166: Fixed several possible memory safety issues due to unsafe operations (bsc#1200598).
• CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault (bnc#1200910).
• CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of TTYs could lead to a use-after-free (bnc#1201429).
• CVE-2022-21505: Fixed kexec lockdown bypass with IMA policy (bsc#1201458).
• CVE-2021-33656: Fixed memory out of bounds write related to ioctl cmd PIO_FONT (bnc#1201636).
• CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635).
• CVE-2022-1462: Fixed an out-of-bounds read flaw in the TTY subsystem (bnc#1198829).
• CVE-2022-1116: Fixed a integer overflow vulnerability in io_uring which allowed a local attacker to cause memory corruption and escalate privileges to root (bnc#1199647).
• CVE-2022-2318: Fixed a use-after-free vulnerability in the timer handler in Rose subsystem that allowed unprivileged attackers to crash the system (bsc#1201251).
• CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762).

The following non-security bugs were fixed:

• Fix bsc#1201644, bsc#1201664, bsc#1201672, bsc#1201673, bsc#1201676 All are reports of the same problem - the IBRS* regs push/popping was wrong but it needs 1b331eeea7b8 ('x86/entry: Remove skipr11rcx') too.
• ACPI: APEI: Better fix to avoid spamming the console with old error logs (git-fixes).
• ACPI: CPPC: Do not prevent CPPC from working in the future (git-fixes).
• ACPI: video: Shortening quirk list by identifying Clevo by board_name only (git-fixes).
• ALSA: hda - Add fixup for Dell Latitidue E5430 (git-fixes).
• ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model (git-fixes).
• ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop (git-fixes).
• ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 (git-fixes).
• ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes).
• ASoC: Intel: Skylake: Correct the handling of fmt_config flexible array (git-fixes).
• ASoC: Intel: Skylake: Correct the ssp rate discovery in sklgetssp_clks() (git-fixes).
• ASoC: Remove unused hwwritet type (git-fixes).
• ASoC: cs47l15: Fix event generation for low power mux control (git-fixes).
• ASoC: madera: Fix event generation for OUT1 demux (git-fixes).
• ASoC: madera: Fix event generation for rate controls (git-fixes).
• ASoC: ops: Fix off by one in range control validation (git-fixes).
• ASoC: sgtl5000: Fix noise on shutdown/remove (git-fixes).
• ASoC: wm5110: Fix DRE control (git-fixes).
• Bluetooth: L2CAP: Fix use-after-free caused by l2capchanput (git-fixes).
• Bluetooth: hciintel: Add check for platformdriver_register (git-fixes).
• Fixed a regression where smart batteries would not be detected on Mac (bsc#1201206).
• Fixed an issue where qla2xxx would prevent nvme port discovery (bsc#1200651 bsc#1200644 bsc#1201954 bsc#1201958).
• FDDI: defxx: Bail out gracefully with unassigned PCI resource for CSR (git-fixes).
• FDDI: defxx: Make MMIO the configuration default except for EISA (git-fixes).
• Fix 1201644, 1201664, 1201672, 1201673, 1201676 All are reports of the same problem - the IBRS* regs push/popping was wrong but it needs 1b331eeea7b8 ('x86/entry: Remove skipr11rcx') too.
• HID: cp2112: prevent a buffer overflow in cp2112_xfer() (git-fixes).
• KVM: VMX: Add non-canonical check on writes to RTIT address MSRs (git-fixes).
• KVM: VMX: Do not freeze guest when event delivery causes an APIC-access exit (git-fixes).
• KVM: apic: avoid calculating pending eoi from an uninitialized val (git-fixes).
• KVM: arm64: Avoid setting the upper 32 bits of TCREL2 and CPTREL2 (bsc#1201442)
• KVM: arm64: Fix definition of PAGEHYPDEVICE (git-fixes)
• KVM: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930).
• KVM: nVMX: avoid NULL pointer dereference with incorrect EVMCS GPAs (git-fixes).
• KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 (git-fixes).
• KVM: x86: Do not let userspace set host-reserved cr4 bits (git-fixes).
• KVM: x86: Fix split-irqchip vs interrupt injection window request (git-fixes).
• KVM: x86: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks (git-fixes).
• KVM: x86: handle !lapicinkernel case in kvmcpu*_extint (git-fixes).
• NFC: nxp-nci: do not print header length mismatch on i2c error (git-fixes).
• PCI/portdrv: Do not disable AER reporting in getportdevice_capability() (git-fixes).
• PCI: dwc: Add unroll iATU space support to dwpciedisable_atu() (git-fixes).
• PCI: dwc: Always enable CDM check if 'snps,enable-cdm-check' exists (git-fixes).
• PCI: dwc: Deallocate EPC memory on dwpcieep_init() errors (git-fixes).
• PCI: dwc: Disable outbound windows only for controllers using iATU (git-fixes).
• PCI: dwc: Stop link on host_init errors and de-initialization (git-fixes).
• PCI: qcom: Power on PHY before IPQ8074 DBI register accesses (git-fixes).
• PCI: qcom: Set up rev 2.1.0 PARF_PHY before enabling clocks (git-fixes).
• PCI: tegra194: Fix PM error handling in tegrapcieconfig_ep() (git-fixes).
• PCI: tegra194: Fix Root Port interrupt handling (git-fixes).
• PCI: tegra194: Fix link up retry sequence (git-fixes).
• PM: runtime: Remove link state checks in rpmget/putsupplier() (git-fixes).
• USB: Follow-up to SPDX identifiers addition - remove now useless comments (git-fixes).
• USB: serial: fix tty-port initialized comments (git-fixes).
• USB: serial: ftdi_sio: add Belimo device ids (git-fixes).
• arm64 module: set plt* section addresses to 0x0 (git-fixes)
• arm64: asm: Add new-style position independent function annotations (git-fixes)
• arm64: compat: Ensure upper 32 bits of x0 are zero on syscall return (git-fixes)
• arm64: dts: marvell: armada-37xx: Set pcieresetpin to gpio function (git-fixes)
• arm64: dts: marvell: espressobin: Add ethernet switch aliases (git-fixes)
• arm64: dts: marvell: espressobin: add ethernet alias (git-fixes)
• arm64: dts: mcbin: support 2W SFP modules (git-fixes)
• arm64: fix compat syscall return truncation (git-fixes)
• arm64: fix inline asm in loadunalignedzeropad() (git-fixes)
• arm64: mm: Do not invalidate FROM_DEVICE buffers at start of DMA (git-fixes)
• arm64: module: remove (NOLOAD) from linker script (git-fixes)
• arm64: module: rework special section handling (git-fixes)
• arm64: perf: Report the PC value in REGSABI32 mode (git-fixes)
• arm64: ptrace: Consistently use pseudo-singlestep exceptions (git-fixes)
• arm64: ptrace: Override SPSR.SS when single-stepping is enabled (git-fixes)
• arm64: stackleak: fix currenttopof_stack() (git-fixes)
• arm64: uprobe: Return EOPNOTSUPP for AARCH32 instruction probing (git-fixes)
• arm64: vdso: Avoid ISB after reading from cntvct_el0 (git-fixes)
• ath10k: Fix error handling in ath10ksetupmsa_resources (git-fixes).
• ath10k: do not enforce interrupt trigger type (git-fixes).
• ax88179178a: add ethtoolopgetts_info() (git-fixes).
• blk-zoned: allow BLKREPORTZONE without CAPSYSADMIN (git-fixes).
• blk-zoned: allow zone management send operations without CAPSYSADMIN (git-fixes).
• block/compat_ioctl: fix range check in BLKGETSIZE (git-fixes).
• block: Fix fsync always failed if once failed (git-fixes).
• block: Fix wrong offset in bio_truncate() (git-fixes).
• block: bio-integrity: Advance seed correctly for larger interval sizes (git-fixes).
• block: drbd: drbdnl: Make conversion to 'enum drbdret_code' explicit (git-fixes).
• bpf, cpumap: Remove rcpu pointer from cpumapbuild_skb signature (bsc#1199364).
• bpf: enable BPF type format (BTF) (jsc#SLE-24559).
• bus: hisilpc: fix missing platformdeviceput() in hisilpcacpiprobe() (git-fixes).
• can: Break loopback loop on loopback documentation (git-fixes).
• can: error: specify the values of data[5..7] of CAN error frames (git-fixes).
• can: gsusb: gsusb_open/close(): fix memory leak (git-fixes).
• can: hi311x: do not report txerr and rxerr during bus-off (git-fixes).
• can: kvaserusbhydra: do not report txerr and rxerr during bus-off (git-fixes).
• can: kvaserusbleaf: do not report txerr and rxerr during bus-off (git-fixes).
• can: m_can: process interrupt only when not runtime suspended (git-fixes).
• can: pch_can: do not report txerr and rxerr during bus-off (git-fixes).
• can: pchcan: pchcan_error(): initialize errc before using it (git-fixes).
• can: rcar_can: do not report txerr and rxerr during bus-off (git-fixes).
• can: sja1000: do not report txerr and rxerr during bus-off (git-fixes).
• can: sun4i_can: do not report txerr and rxerr during bus-off (git-fixes).
• can: usb_8dev: do not report txerr and rxerr during bus-off (git-fixes).
• clk: qcom: camcc-sdm845: Fix topology around titan_top power domain (git-fixes).
• clk: qcom: clk-krait: unlock spin after mux completion (git-fixes).
• clk: qcom: ipq8074: SW workaround for UBI32 PLL lock (git-fixes).
• clk: qcom: ipq8074: fix NSS core PLL-s (git-fixes).
• clk: qcom: ipq8074: fix NSS port frequency tables (git-fixes).
• clk: qcom: ipq8074: set BRANCHHALTDELAY flag for UBI clocks (git-fixes).
• clk: renesas: r9a06g032: Fix UART clkgrp bitsel (git-fixes).
• cpuidle: PSCI: Move the has_lpi check to the beginning of the (git-fixes)
• crypto: qat - disable registration of algorithms (git-fixes).
• crypto: qat - fix memory leak in RSA (git-fixes).
• crypto: qat - remove dmafreecoherent() for DH (git-fixes).
• crypto: qat - remove dmafreecoherent() for RSA (git-fixes).
• crypto: qat - set to zero DH parameters before free (git-fixes).
• cxgb4: Fix the -Wmisleading-indentation warning (git-fixes).
• dm btree remove: assign new_root only when removal succeeds (git-fixes).
• dm btree remove: fix use after free in rebalance_children() (git-fixes).
• dm bufio: subtract the number of initial sectors in dmbufiogetdevicesize (git-fixes).
• dm crypt: Avoid percpucounter spinlock contention in cryptpage_alloc() (git-fixes).
• dm crypt: fix getkeysize compiler warning if !CONFIG_KEYS (git-fixes).
• dm crypt: make printing of the key constant-time (git-fixes).
• dm integrity: conditionally disable 'recalculate' feature (git-fixes).
• dm integrity: fix a crash if 'recalculate' used without 'internal_hash' (git-fixes).
• dm integrity: fix error code in dmintegrityctr() (git-fixes).
• dm integrity: fix memory corruption when tag_size is less than digest size (git-fixes).
• dm integrity: fix the maximum number of arguments (git-fixes).
• dm mirror log: round up region bitmap size to BITSPERLONG (git-fixes).
• dm persistent data: packed struct should have an aligned() attribute too (git-fixes).
• dm raid: fix inconclusive reshape layout on fast raid4/5/6 table reload sequences (git-fixes).
• dm snapshot: fix crash with transient storage and zero chunk size (git-fixes).
• dm snapshot: flush merged data before committing metadata (git-fixes).
• dm snapshot: properly fix a crash when an origin has no snapshots (git-fixes).
• dm space map common: fix division bug in smllfindfreeblock() (git-fixes).
• dm stats: add cond_resched when looping over entries (git-fixes).
• dm verity: fix FEC for RS roots unaligned to block size (git-fixes).
• dm: fix mempool NULL pointer race when completing IO (git-fixes).
• dmaengine: atxdma: handle errors of atxdmacallocdesc() correctly (git-fixes).
• dmaengine: imx-sdma: Allow imx8m for imx7 FW revs (git-fixes).
• dmaengine: pl330: Fix lockdep warning about non-static key (git-fixes).
• dmaengine: ti: Add missing putdevice in tidra7xbarroute_allocate (git-fixes).
• dmaengine: ti: Fix refcount leak in tidra7xbarrouteallocate (git-fixes).
• do not call utsname() after ->nsproxy is NULL (bsc#1201196).
• drbd: fix potential silent data corruption (git-fixes).
• driver core: fix potential deadlock in _driverattach (git-fixes).
• drivers/net: Fix kABI in tun.c (git-fixes).
• drivers: net: fix memory leak in atusb_probe (git-fixes).
• drivers: net: fix memory leak in peakusbcreate_dev (git-fixes).
• drm/amd/display: Enable building new display engine with KCOV enabled (git-fixes).
• drm/bridge: tc358767: Make sure Refclk clock are enabled (git-fixes).
• drm/doc: Fix comment typo (git-fixes).
• drm/exynos/exynos7drmdecon: free resources when clksetparent() failed (git-fixes).
• drm/i915/gt: Serialize TLB invalidates with GT resets (git-fixes).
• drm/i915/selftests: fix a couple IS_ERR() vs NULL tests (git-fixes).
• drm/i915: fix a possible refcount leak in inteldpaddmstconnector() (git-fixes).
• drm/mcde: Fix refcount leak in mcdedsibind (git-fixes).
• drm/mediatek: Add pull-down MIPI operation in mtkdsipoweroff function (git-fixes).
• drm/mediatek: dpi: Only enable dpi after the bridge is enabled (git-fixes).
• drm/mediatek: dpi: Remove output format of YUV (git-fixes).
• drm/mipi-dbi: align maxchunk to 2 in spitransfer (git-fixes).
• drm/msm/hdmi: enable core-vcc/core-vdda-supply for 8996 platform (git-fixes).
• drm/msm/mdp5: Fix global state lock backoff (git-fixes).
• drm/nouveau: fix another off-by-one in nvbios_addr (git-fixes).
• drm/panfrost: Fix shrinker list corruption by madvise IOCTL (git-fixes).
• drm/panfrost: Put mapping instead of shmem obj on panfrostmmumapfaultaddr() error (git-fixes).
• drm/radeon: fix incorrrect SPDX-License-Identifiers (git-fixes).
• drm/radeon: fix potential buffer overflow in nisetmcspecialregisters() (git-fixes).
• drm/rockchip: Fix an error handling path rockchipdpprobe() (git-fixes).
• drm/rockchip: vop: Do not crash for invalid duplicate_state() (git-fixes).
• drm/st7735r: Fix module autoloading for Okaya RH128128T (git-fixes).
• drm/vc4: dsi: Add correct stop condition to vc4dsiencoder_disable iteration (git-fixes).
• drm/vc4: dsi: Correct DSI divider calculations (git-fixes).
• drm/vc4: dsi: Correct pixel order for DSI0 (git-fixes).
• drm/vc4: hdmi: Correct HDMI timing registers for interlaced modes (git-fixes).
• drm/vc4: hdmi: Fix timings for interlaced modes (git-fixes).
• drm/vc4: plane: Fix margin calculations for the right/bottom edges (git-fixes).
• drm/vc4: plane: Remove subpixel positioning check (git-fixes).
• drm: adv7511: override i2c address of cec before accessing it (git-fixes).
• drm: bridge: adv7511: Add check for mipidsidriver_register (git-fixes).
• drm: bridge: sii8620: fix possible off-by-one (git-fixes).
• fbcon: Disallow setting font bigger than screen size (git-fixes).
• fbcon: Prevent that screen size is smaller than font size (git-fixes).
• fbdev: fbmem: Fix logo center image dx issue (git-fixes).
• fbmem: Check virtual screen sizes in fbsetvar() (git-fixes).
• fpga: altera-pr-ip: fix unsigned comparison with less than zero (git-fixes).
• ftgmac100: Restart MAC HW once (git-fixes).
• gpio: gpiolib-of: Fix refcount bugs in ofmmgpiochipadddata() (git-fixes).
• gpio: pca953x: only use single read/write for No AI mode (git-fixes).
• gpio: pca953x: use the correct range when do regmap sync (git-fixes).
• gpio: pca953x: use the correct register address when regcache sync during init (git-fixes).
• hex2bin: make the function hextobin constant-time (git-fixes).
• hv_netvsc: Add (more) validation for untrusted Hyper-V values (bsc#1199364).
• hvnetvsc: Add comment of netvscxdp_xmit() (bsc#1199364).
• hvnetvsc: Add support for XDPREDIRECT (bsc#1199364).
• hv_netvsc: Copy packets sent by Hyper-V out of the receive buffer (bsc#1199364).
• hvnetvsc: Fix validation in netvsclinkstatus_callback() (bsc#1199364).
• i2c: Fix a potential use after free (git-fixes).
• i2c: cadence: Change large transfer count reset logic to be unconditional (git-fixes).
• i2c: cadence: Support PEC for SMBus block read (git-fixes).
• i2c: cadence: Unregister the clk notifier in error path (git-fixes).
• i2c: mux-gpmux: Add ofnodeput() when breaking out of loop (git-fixes).
• ida: do not use BUG_ON() for debugging (git-fixes).
• igb: Enable RSS for Intel I211 Ethernet Controller (git-fixes).
• iio: accel: bma220: Fix alignment for DMA safety (git-fixes).
• iio: accel: sca3000: Fix alignment for DMA safety (git-fixes).
• iio: adc: ad7266: Fix alignment for DMA safety (git-fixes).
• iio: adc: ad7298: Fix alignment for DMA safety (git-fixes).
• iio: adc: ad7476: Fix alignment for DMA safety (git-fixes).
• iio: adc: ad7766: Fix alignment for DMA safety (git-fixes).
• iio: adc: ad7768-1: Fix alignment for DMA safety (git-fixes).
• iio: adc: ad7887: Fix alignment for DMA safety (git-fixes).
• iio: adc: hi8435: Fix alignment for DMA safety (git-fixes).
• iio: adc: ltc2497: Fix alignment for DMA safety (git-fixes).
• iio: adc: max1027: Fix alignment for DMA safety (git-fixes).
• iio: adc: max11100: Fix alignment for DMA safety (git-fixes).
• iio: adc: max1118: Fix alignment for DMA safety (git-fixes).
• iio: adc: mcp320x: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-adc0832: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-adc084s021: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-adc12138: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-adc128s052: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-adc161s626: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-ads124s08: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-ads7950: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-ads8344: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-ads8688: Fix alignment for DMA safety (git-fixes).
• iio: adc: ti-tlc4541: Fix alignment for DMA safety (git-fixes).
• iio: amplifiers: ad8366: Fix alignment for DMA safety (git-fixes).
• iio: core: Fix IIO_ALIGN and rename as it was not sufficiently large (git-fixes).
• iio: dac: ad5064: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5360: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5421: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5449: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5504: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5755: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5761: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5764: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad5791: Fix alignment for DMA saftey (git-fixes).
• iio: dac: ad7303: Fix alignment for DMA safety (git-fixes).
• iio: dac: ad8801: Fix alignment for DMA safety (git-fixes).
• iio: dac: mcp4922: Fix alignment for DMA safety (git-fixes).
• iio: dac: ti-dac082s085: Fix alignment for DMA safety (git-fixes).
• iio: dac: ti-dac5571: Fix alignment for DMA safety (git-fixes).
• iio: dac: ti-dac7311: Fix alignment for DMA safety (git-fixes).
• iio: dac: ti-dac7612: Fix alignment for DMA safety (git-fixes).
• iio: frequency: ad9523: Fix alignment for DMA safety (git-fixes).
• iio: frequency: adf4350: Fix alignment for DMA safety (git-fixes).
• iio: frequency: adf4371: Fix alignment for DMA safety (git-fixes).
• iio: gyro: adis16080: Fix alignment for DMA safety (git-fixes).
• iio: gyro: adis16130: Fix alignment for DMA safety (git-fixes).
• iio: gyro: adxrs450: Fix alignment for DMA safety (git-fixes).
• iio: gyro: fxas210002c: Fix alignment for DMA safety (git-fixes).
• iio: light: isl29028: Fix the warning in isl29028_remove() (git-fixes).
• iio: potentiometer: ad5272: Fix alignment for DMA safety (git-fixes).
• iio: potentiometer: max5481: Fix alignment for DMA safety (git-fixes).
• iio: potentiometer: mcp41010: Fix alignment for DMA safety (git-fixes).
• iio: potentiometer: mcp4131: Fix alignment for DMA safety (git-fixes).
• iio: proximity: as3935: Fix alignment for DMA safety (git-fixes).
• iio: resolver: ad2s1200: Fix alignment for DMA safety (git-fixes).
• iio: resolver: ad2s90: Fix alignment for DMA safety (git-fixes).
• ima: Fix a potential integer overflow in imaappraisemeasurement (git-fixes).
• ima: Fix potential memory leak in imainitcrypto() (git-fixes).
• intel_th: Fix a resource leak in an error handling path (git-fixes).
• intel_th: msu-sink: Potential dereference of null pointer (git-fixes).
• intel_th: msu: Fix vmalloced buffers (git-fixes).
• kABI workaround for rtsx_usb (git-fixes).
• kvm/emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930).
• lib/string.c: implement stpcpy (git-fixes).
• linux/random.h: Mark CONFIGARCHRANDOM functions _mustcheck (git-fixes).
• linux/random.h: Remove archhasrandom, archhasrandom_seed (git-fixes).
• linux/random.h: Use false with bool (git-fixes).
• lkdtm: Disable return thunks in rodata.c (bsc#1178134).
• macvlan: remove redundant null check on data (git-fixes).
• md/bitmap: wait for external bitmap writes to complete during tear down (git-fixes).
• md/raid0: Ignore RAID0 layout if the second zone has only one device (git-fixes).
• md: Set prevflushstart and flush_bio in an atomic way (git-fixes).
• md: bcache: check the return value of kzalloc() in detacheddevdo_request() (git-fixes).
• media: hdpvr: fix error value returns in hdpvr_read (git-fixes).
• media: rc: increase rc-mm tolerance and add debug message (git-fixes).
• media: rtl28xxu: Add support for PROlectrix DV107669 DVB-T dongle (git-fixes).
• media: rtl28xxu: add missing sleep before probing slave demod (git-fixes).
• media: rtl28xxu: set keymap for Astrometa DVB-T2 (git-fixes).
• media: smipcie: fix interrupt handling and IR timeout (git-fixes).
• media: tw686x: Register the irq at the end of probe (git-fixes).
• media: usb: dvb-usb-v2: rtl28xxu: convert to use i2cnewclient_device() (git-fixes).
• media: v4l2-mem2mem: always consider OUTPUT queue during poll (git-fixes).
• media: v4l2-mem2mem: reorder checks in v4l2m2mpoll() (git-fixes).
• mediatek: mt76: mac80211: Fix missing ofnodeput() in mt76ledinit() (git-fixes).
• memregion: Fix memregion_free() fallback definition (git-fixes).
• memstick/ms_block: Fix a memory leak (git-fixes).
• memstick/ms_block: Fix some incorrect memory allocation (git-fixes).
• meson-mx-socinfo: Fix refcount leak in mesonmxsocinfo_init (git-fixes).
• misc: rtsx: Fix an error handling path in rtsxpciprobe() (git-fixes).
• misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer (git-fixes).
• misc: rtsxusb: set return value in rspbuf alloc err path (git-fixes).
• misc: rtsx_usb: use separate command and response buffers (git-fixes).
• mm: fix page reference leak in softofflinepage() (git fixes (mm/memory-failure)).
• mmc: cavium-octeon: Add ofnodeput() when breaking out of loop (git-fixes).
• mmc: cavium-thunderx: Add ofnodeput() when breaking out of loop (git-fixes).
• mmc: sdhci-of-at91: fix setuhssignaling rewriting of MC1R (git-fixes).
• mmc: sdhci-of-esdhc: Fix refcount leak in esdhcsignalvoltage_switch (git-fixes).
• mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle (git-fixes).
• mt76: mt76x02u: fix possible memory leak in _mt76x02umcusendmsg (git-fixes).
• net, xdp: Introduce _xdpbuildskbfrom_frame utility routine (bsc#1199364).
• net, xdp: Introduce xdpbuildskbfromframe utility routine (bsc#1199364).
• net/mlx5e: When changing XDP program without reset, take refs for XSK RQs (git-fixes).
• net/sonic: Fix a resource leak in an error handling path in 'jazzsonicprobe()' (git-fixes).
• net/sonic: Fix some resource leaks in error handling paths (git-fixes).
• net: ag71xx: remove unnecessary MTU reservation (git-fixes).
• net: allwinner: Fix some resources leak in the error handling path of the probe and in the remove function (git-fixes).
• net: amd-xgbe: Fix NETDEV WATCHDOG transmit queue timeout warning (git-fixes).
• net: amd-xgbe: Fix network fluctuations when using 1G BELFUSE SFP (git-fixes).
• net: amd-xgbe: Reset link when the link never comes back (git-fixes).
• net: amd-xgbe: Reset the PHY rx data path when mailbox command timeout (git-fixes).
• net: axienet: Handle deferred probe on clock properly (git-fixes).
• net: dsa: b53: fix an off by one in checking 'vlan->vid' (git-fixes).
• net: dsa: bcmsf2: Qualify phydev->devflags based on port (git-fixes).
• net: dsa: bcm_sf2: put device node before return (git-fixes).
• net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE (git-fixes).
• net: dsa: lantiq_gswip: Let GSWIP automatically set the xMII clock (git-fixes).
• net: enetc: fix incorrect TPID when receiving 802.1ad tagged packets (git-fixes).
• net: enetc: keep RX ring consumer index in sync with hardware (git-fixes).
• net: evaluate net.ipv4.conf.all.proxyarppvlan (git-fixes).
• net: evaluate net.ipvX.conf.all.ignorerouteswith_linkdown (git-fixes).
• net: ftgmac100: Fix crash when removing driver (git-fixes).
• net: hdlcx25: Return meaningful error code in x25open (git-fixes).
• net: hns3: fix error mask definition of flow director (git-fixes).
• net: hso: bail out on interrupt URB allocation failure (git-fixes).
• net: lapbether: Prevent racing when checking whether the netif is running (git-fixes).
• net: lapbether: Remove netifstartqueue / netifstopqueue (git-fixes).
• net: lltemac: Fix potential NULL dereference in temacprobe() (git-fixes).
• net: lltemac: Use devmplatformioremapresource_byname() (git-fixes).
• net: macb: add function to disable all macb clocks (git-fixes).
• net: macb: restore cmp registers on resume path (git-fixes).
• net: macb: unprepare clocks in case of failure (git-fixes).
• net: mscc: Fix OF_MDIO config check (git-fixes).
• net: mvneta: Remove per-cpu queue mapping for Armada 3700 (git-fixes).
• net: mvpp2: fix interrupt mask/unmask skip condition (git-fixes).
• net: rose: fix UAF bug caused by roset0timerexpiry (git-fixes).
• net: stmmac: Modify configuration method of EEE timers (git-fixes).
• net: stmmac: Use resolved link config in maclinkup() (git-fixes).
• net: stmmac: dwmac-sun8i: Provide TX and RX fifo sizes (git-fixes).
• net: stmmac: dwmac1000: provide multicast filter fallback (git-fixes).
• net: stmmac: fix CBS idleslope and sendslope calculation (git-fixes).
• net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10 (git-fixes).
• net: stmmac: fix watchdog timeout during suspend/resume stress test (git-fixes).
• net: stmmac: stop each tx channel independently (git-fixes).
• net: tun: set tun->dev->addr_len during TUNSETLINK processing (git-fixes).
• net: usb: ax88179_178a: add Allied Telesis AT-UMCs (git-fixes).
• net: usb: ax88179_178a: add MCT usb 3.0 adapter (git-fixes).
• net: usb: ax88179_178a: add Toshiba usb 3.0 adapter (git-fixes).
• net: usb: ax88179_178a: remove redundant assignment to variable ret (git-fixes).
• net: usb: ax88179178a: write mac to hardware in getmac_addr (git-fixes).
• net: usb: qmi_wwan: add Telit 0x1060 composition (git-fixes).
• net: usb: qmi_wwan: add Telit 0x1070 composition (git-fixes).
• net: usb: use ethhwaddr_set() (git-fixes).
• nvme: consider also host_iface when checking ip options (bsc#1199670).
• octeontx2-af: fix infinite loop in unmapping NPC counter (git-fixes).
• octeontx2-af: fix memory leak of lmac and lmac->name (git-fixes).
• pinctrl: sunxi: a83t: Fix NAND function name for some pins (git-fixes).
• pinctrl: sunxi: sunxipconfset: use correct offset (git-fixes).
• platform/olpc: Fix uninitialized data in debugfs write (git-fixes).
• platform/x86: hp-wmi: Ignore Sanitization Mode event (git-fixes).
• power/reset: arm-versatile: Fix refcount leak in versatilerebootprobe (git-fixes).
• powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761).
• powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761).
• powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761).
• profiling: fix shift-out-of-bounds bugs (git fixes).
• r8169: fix accessing unset transport header (git-fixes).
• random: document addhwgeneratorrandomness() with other input functions (git-fixes).
• random: fix typo in comments (git-fixes).
• random: remove useless header comment (git fixes).
• raw: Fix a data-race around sysctlrawl3mdev_accept (git-fixes).
• regulator: of: Fix refcount leak bug in ofgetregulation_constraints() (git-fixes).
• sched/debug: Remove mpolget/put and tasklock/unlock from (git-fixes)
• sched/fair: Revise comment about lb decision matrix (git fixes (sched/fair)).
• sched/membarrier: fix missing local execution of ipisyncrq_state() (git fixes (sched/membarrier)).
• scsi: core: Fix error handling of scsihostalloc() (git-fixes).
• scsi: core: Fix failure handling of scsiaddhostwithdma() (git-fixes).
• scsi: core: Only put parent device if host state differs from SHOST_CREATED (git-fixes).
• scsi: core: Put .shost_dev in failure path if host state changes to RUNNING (git-fixes).
• scsi: core: Put LLD module refcnt after SCSI device is released (git-fixes).
• scsi: core: Retry I/O for Notify (Enable Spinup) Required error (git-fixes).
• scsi: lpfc: Copyright updates for 14.2.0.5 patches (bsc#1201956).
• scsi: lpfc: Fix attempted FA-PWWN usage after feature disable (bsc#1201956).
• scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test (bsc#1201956 bsc#1200521).
• scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE (bsc#1201956).
• scsi: lpfc: Fix uninitialized cqe field in lpfcnvmecancel_iocb() (bsc#1201956).
• scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input (bsc#1201956).
• scsi: lpfc: Refactor lpfcnvmetprepabortwqe() into lpfcsliprepabortxri() (bsc#1201956).
• scsi: lpfc: Remove Menlo/Hornet related code (bsc#1201956).
• scsi: lpfc: Remove extra atomicinc on cmdpending in queuecommand after VMID (bsc#1201956).
• scsi: lpfc: Revert RSCN_MEMENTO workaround for misbehaved configuration (bsc#1201956).
• scsi: lpfc: Set PU field when providing DID in XMITELSRSP64CX iocb (bsc#1201956).
• scsi: lpfc: Update lpfc version to 14.2.0.5 (bsc#1201956).
• scsi: qla2xxx: Check correct variable in qla24xxasyncgffid() (bsc#1201958).
• scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201958).
• scsi: qla2xxx: Fix imbalance vha->vref_count (bsc#1201958).
• scsi: qla2xxx: Fix incorrect display of max frame size (bsc#1201958).
• scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1201958).
• scsi: qla2xxx: Fix sparse warning for dport_data (bsc#1201958).
• scsi: qla2xxx: Update manufacturer details (bsc#1201958).
• scsi: qla2xxx: Update version to 10.02.07.800-k (bsc#1201958).
• scsi: qla2xxx: Zero undefined mailbox IN registers (bsc#1201958).
• scsi: qla2xxx: edif: Fix dropped IKE message (bsc#1201958).
• scsi: scsidebug: Sanity check block descriptor length in respmode_select() (git-fixes).
• scsi: sd: Fix potential NULL pointer dereference (git-fixes).
• scsi: ufs: Release clock if DMA map fails (git-fixes).
• scsi: ufs: handle cleanup correctly on devmresetcontrol_get error (git-fixes).
• serial: 8250: fix return error code in serial8250requeststd_resource() (git-fixes).
• serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle (git-fixes).
• serial: stm32: Clear prev values before setting RTS delays (git-fixes).
• soc: fsl: guts: machine variable might be unset (git-fixes).
• soc: ixp4xx/npe: Fix unused match warning (git-fixes).
• soundwire: bus_type: fix remove and shutdown support (git-fixes).
• spi: <linux/spi/spi.h>: add missing struct kernel-doc entry (git-fixes).
• spi: amd: Limit max transfer and message size (git-fixes).
• staging: rtl8192u: Fix sleep in atomic context bug in dmfsynctimer_callback (git-fixes).
• sysctl: Fix data races in proc_dointvec() (git-fixes).
• sysctl: Fix data races in procdointvecjiffies() (git-fixes).
• sysctl: Fix data races in procdointvecminmax() (git-fixes).
• sysctl: Fix data races in proc_douintvec() (git-fixes).
• sysctl: Fix data races in procdouintvecminmax() (git-fixes).
• sysctl: Fix data-races in procdointvecms_jiffies() (git-fixes).
• thermal/tools/tmon: Include pthread and time headers in tmon.h (git-fixes).
• tick/nohz: Use WARNONONCE() to prevent console saturation (git fixes (kernel/time)).
• usb: dwc3: add cancelled reasons for dwc3 requests (git-fixes).
• usb: dwc3: gadget: Fix event pending check (git-fixes).
• usb: gadget: udc: amd5536 depends on HAS_DMA (git-fixes).
• usb: host: Fix refcount leak in ehcihcdppcofprobe (git-fixes).
• usb: host: xhci: use snprintf() in xhcidecodetrb() (git-fixes).
• usb: ohci-nxp: Fix refcount leak in ohcihcdnxp_probe (git-fixes).
• usb: typec: add missing uevent when partner support PD (git-fixes).
• usb: typec: ucsi: Acknowledge the GETERRORSTATUS command completion (git-fixes).
• usb: xhci: tegra: Fix error check (git-fixes).
• usbnet: fix memory leak in error case (git-fixes).
• video: ofdisplaytiming.h: include errno.h (git-fixes).
• virtio-gpu: fix a missing check to avoid NULL dereference (git-fixes).
• virtio-net: fix the race between refill work and close (git-fixes).
• virtio_mmio: Add missing PM calls to freeze/restore (git-fixes).
• virtio_mmio: Restore guest page size on resume (git-fixes).
• watchdog: export lockupdetectorreconfigure (bsc#1201846 ltc#198761).
• wifi: iwlegacy: 4965: fix potential off-by-one overflow in il4965rsfilllinkcmd() (git-fixes).
• wifi: iwlwifi: mvm: fix double listadd at iwlmvmmacwaketxqueue (git-fixes).
• wifi: libertas: Fix possible refcount leak in ifusbprobe() (git-fixes).
• wifi: mac80211: fix queue selection for mesh/OCB interfaces (git-fixes).
• wifi: p54: Fix an error handling path in p54spi_probe() (git-fixes).
• wifi: p54: add missing parentheses in p54_flush() (git-fixes).
• wifi: rtlwifi: fix error codes in rtldebugfssetwriteh2c() (git-fixes).
• wifi: wil6210: debugfs: fix info leak in wilwritefile_wmi() (git-fixes).
• wifi: wil6210: debugfs: fix uninitialized variable use in wil_write_file_wmi() (git-fixes).
• x86/bugs: Remove apostrophe typo (bsc#1178134).
• x86/entry: Remove skip_r11rcx (bsc#1201644).
• x86/kvmclock: Move thiscpupvti into kvmclock.h (git-fixes).
• x86/retbleed: Add fine grained Kconfig knobs (bsc#1178134).
• xen/netback: avoid entering xenvifrxnext_skb() with an empty rx queue (bsc#1201381).
• xen: detect uninitialized xenbus in xenbus_init (git-fixes).
• xen: do not continue xenstore initialization in case of errors (git-fixes).