SUSE-SU-2023:0634-1

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2021-4203: Fixed use-after-free read flaw that was found in sockgetsockopt() in net/core/sock.c due to SOPEERCRED and SO_PEERGROUPS race with listen() (bsc#1194535).
• CVE-2017-5754: Fixed speculative side channel attacks on various CPU platforms (bsc#1068032).
• CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332).
• CVE-2023-0045: Fixed missing Flush IBP in ibprctlset (bsc#1207773).
• CVE-2022-4662: Fixed incorrect access control in the USB core subsystem that could lead a local user to crash the system (bsc#1206664).
• CVE-2023-0590: Fixed race condition in qdisc_graft() (bsc#1207795).
• CVE-2022-2991: Fixed an heap-based overflow in the lightnvm implemenation (bsc#1201420).
• CVE-2023-0266: Fixed a use-after-free vulnerability inside the ALSA PCM package. SNDRVCTLIOCTLELEM{READ|WRITE}32 was missing locks that could have been used in a use-after-free that could have resulted in a priviledge escalation to gain ring0 access from the system user (bsc#1207134).
• CVE-2022-47929: Fixed NULL pointer dereference bug in the traffic control subsystem (bsc#1207237).

The following non-security bugs were fixed:

• add 00f3ca2c2d66 ('mm: memcontrol: per-lruvec stats infrastructure')
• add 0b3d6e6f2dd0 mm: writeback: use exact memcg dirty counts
• add 168e06f7937d kernel/hung_task.c: force console verbose before panic
• add 1f4aace60b0e ('fs/seqfile.c: simplify seqfile iteration code and interface')
• add 304ae42739b1 kernel/hung_task.c: break RCU locks based on jiffies
• add 401c636a0eeb kernel/hung_task.c: show all hung tasks before panic
• add Tegra repository to git_sort.
• add a1c6ca3c6de7 kernel: hung_task.c: disable on suspend
• add c3cc39118c36 mm: memcontrol: fix NR_WRITEBACK leak in memcg and system stats
• add c892fd82cc06 mm: memcg: add _GFPNOWARN in _memcgschedulekmemcache_create()
• add e27be240df53 mm: memcg: make sure memory.events is uptodate when waking pollers
• add support for enabling livepatching related packages on -RT (jsc#PED-1706)
• add suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149)
• amiflop: clean up on errors during setup (git-fixes).
• audit: ensure userspace is penalized the same as the kernel when under pressure (bsc#1204514).
• audit: improve robustness of the audit queue handling (bsc#1204514).
• bcache: fix super block seq numbers comparision in registercacheset() (git-fixes).
• blk-cgroup: Fix memleak on error path (git-fixes).
• blk-cgroup: Pre-allocate tree node on blkgconfprep (git-fixes).
• blk-cgroup: fix missing put device in error path from blkgconfpref() (git-fixes).
• blk-mq: fix possible memleak when register 'hctx' failed (git-fixes).
• blk-mq: insert request not through ->queue_rq into sw/scheduler queue (git-fixes).
• blk-mq: move cancel of requeuework into blkmq_release (git-fixes).
• blktrace: Fix output non-blktrace event when blk_classic option enabled (git-fixes).
• blktrace: break out of blktrace setup on concurrent calls (git-fixes).
• blktrace: ensure our debugfs dir exists (git-fixes).
• blktrace: fix endianness for blklogremap() (git-fixes).
• blktrace: fix endianness in getpduint() (git-fixes).
• blktrace: use errno instead of bi_status (git-fixes).
• block, bfq: fix overwrite of bfqgroup pointer in bfqfindsetgroup() (bsc#1175995,jsc#SLE-15608).
• block, bfq: fix overwrite of bfqgroup pointer in bfqfindsetgroup() (git-fixes).
• block, bfq: increase idling for weight-raised queues (git-fixes).
• block, bfq: protect 'bfqd->queued' by 'bfqd->lock' (bsc#1207102).
• block, bfq: protect 'bfqd->queued' by 'bfqd->lock' (git-fixes).
• block/bio-integrity: do not free 'buf' if biointegrityadd_page() failed (git-fixes).
• block/bio-integrity: fix a memory leak bug (git-fixes).
• block/swim: Check drive type (git-fixes).
• block/swim: Do not log an error message for an invalid ioctl (git-fixes).
• block/swim: Fix IO error at end of medium (git-fixes).
• block/swim: Rename macros to avoid inconsistent inverted logic (git-fixes).
• block/swim: Select appropriate drive on device open (git-fixes).
• block: Fix use-after-free issue accessing struct io_cq (git-fixes).
• block: add a lower-level bioaddpage interface (git-fixes).
• block: bio-integrity: Copy flags when biointegritypayload is cloned (bsc#1208541).
• block: fix memleak when _blkrqmapuser_iov() is failed (git-fixes).
• block: sed-opal: fix IOCOPALENABLEDISABLEMBR (git-fixes).
• brd: check and limit max_part par (git-fixes).
• compat_ioctl: block: handle BLKGETZONESZ/BLKGETNRZONES (git-fixes).
• constraints: increase disk space for all architectures References: bsc#1203693 aarch64 is already suffering. SLE15-SP5 x86_64 stats show that it is very close to the limit.
• cpu/hotplug: Fix 'SMT disabled by BIOS' detection for KVM (git-fixes).
• cryptoloop: add a deprecation warning (git-fixes).
• d6810d730022 ('memcg, THP, swap: make memcgroupswapout() support THP')
• dm bio record: save/restore biendio and bi_integrity (git-fixes).
• dm btree: add a defensive bounds check to insert_at() (git-fixes).
• dm cache: Fix ABBA deadlock between shrinkslab and dmcachemetadataabort (git-fixes).
• dm cache: Fix UAF in destroy() (git-fixes).
• dm cache: set needs_check flag after aborting metadata (git-fixes).
• dm crypt: use u64 instead of sectort to store ivoffset (git-fixes).
• dm flakey: Properly corrupt multi-page bios (git-fixes).
• dm ioctl: fix misbehavior if list_versions races with module loading (git-fixes).
• dm ioctl: prevent potential spectre v1 gadget (git-fixes).
• dm kcopyd: Fix bug causing workqueue stalls (git-fixes).
• dm raid: avoid bitmap with raid4/5/6 journal device (git-fixes).
• dm space map common: add bounds check to smlllookup_bitmap() (git-fixes).
• dm space maps: do not reset space map allocation cursor when committing (git-fixes).
• dm table: Remove BUGON(ininterrupt()) (git-fixes).
• dm thin: Fix ABBA deadlock between shrinkslab and dmpoolabortmetadata (git-fixes).
• dm thin: Fix UAF in runtimersoftirq() (git-fixes).
• dm thin: Use last transaction's pmd->root when commit failed (git-fixes).
• dm thin: add sanity checks to thin-pool and external snapshot creation (git-fixes).
• dm thin: resume even if in FAIL mode (git-fixes).
• dm verity: skip verity work if I/O error when system is shutting down (git-fixes).
• dm verity: use message limit for data block corruption message (git-fixes).
• dm zoned: return NULL if dmzgetzoneforreclaim() fails to find a zone (git-fixes).
• dm: Use kzalloc for all structs with embedded biosets/mempools (git-fixes).
• do not dump the threads that had been already exiting when zapped (git-fixes).
• drbd: Change drbdrequestdetach_interruptible's return type to int (git-fixes).
• drbd: destroy workqueue when drbd device was freed (git-fixes).
• drbd: do not block when adjusting 'disk-options' while IO is frozen (git-fixes).
• drbd: dynamically allocate shash descriptor (git-fixes).
• drbd: fix potential silent data corruption (git-fixes).
• drbd: fix printsterr()'s prototype to match the definition (git-fixes).
• drbd: ignore 'all zero' peer volume sizes in handshake (git-fixes).
• drbd: reject attach of unsuitable uuids even if connected (git-fixes).
• drbd: remove usage of list iterator variable after loop (git-fixes).
• drbd: use after free in drbdcreatedevice() (git-fixes).
• drivers/block/zram/zramdrv.c: fix bug storing backingdev (git-fixes).
• drivers:md:fix a potential use-after-free bug (git-fixes).
• ext4: Detect already used quota file early (bsc#1206873).
• ext4: Fixup pages without buffers (bsc#1205495).
• ext4: add EXT4INODEHASXATTRSPACE macro in xattr.h (bsc#1206878).
• ext4: add reserved GDT blocks check (bsc#1202712).
• ext4: avoid crash when inline data creation follows DIO write (bsc#1206883).
• ext4: avoid resizing to a partial cluster size (bsc#1206880).
• ext4: clear mmp sequence number when remounting read-only (bsc#1207093).
• ext4: continue to expand file system when the target size does not reach (bsc#1206882).
• ext4: correct maxinlinexattrvaluesize computing (bsc#1206878).
• ext4: correct the misjudgment in ext4igetextra_inode (bsc#1206878).
• ext4: do not BUG if someone dirty pages without asking ext4 first (bsc#1207097).
• ext4: fix a data race at inode->i_disksize (bsc#1206855).
• ext4: fix argument checking in EXT4IOCMOVE_EXT (bsc#1207092).
• ext4: fix extent status tree race in writeback error recovery path (bsc#1206877).
• ext4: fix null-ptr-deref in ext4writeinfo (bsc#1206884).
• ext4: fix race when reusing xattr blocks (bsc#1198971).
• ext4: fix undefined behavior in bit shift for ext4checkflag_values (bsc#1206890).
• ext4: fix use-after-free in ext4extshift_extents (bsc#1206888).
• ext4: fix use-after-free in ext4xattrset_entry (bsc#1206878).
• ext4: fix warning in 'ext4darelease_space' (bsc#1206887).
• ext4: make ext4lazyinitthread freezable (bsc#1206885).
• ext4: prohibit fstrim in norecovery mode (bsc#1207094).
• ext4: recover csum seed of tmp_inode after migrating to extents (bsc#1202713).
• ext4: unindent codeblock in ext4xattrblock_set() (bsc#1198971).
• ext4: update soverheadclusters in the superblock during an on-line resize (bsc#1206876).
• ext4: use matching invalidatepage in ext4_writepage (bsc#1206858).
• floppy: Add max size check for user space request (git-fixes).
• ftrace: Enable trampoline when rec count returns back to one (git-fixes).
• ftrace: Fix NULL pointer dereference in freeftracefunc_mapper() (git-fixes).
• ftrace: Fix updating FTRACEFLTRAMP (git-fixes).
• ftrace: fpid_next() should increase position index (git-fixes).
• git_sort: add usb-linus branch for gregkh/usb
• gtp: set NLMFMULTI flag in gtpgenldump_pdp() (git-fixes).
• hid: betop: check shape of output reports (git-fixes, bsc#1207186).
• hid: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes, bsc#1207186).
• hid: check empty reportlist in hidvalidate_values() (git-fixes, bsc#1206784).
• iforce: restore old iforcedumppacket (git-fixes).
• input: convert autorepeat timer to use timer_setup() (git-fixes).
• input: do not use WARN() in inputallocabsinfo() (git-fixes).
• input: i8042 - Add quirk for Fujitsu Lifebook T725 (git-fixes).
• input: iforce - reformat the packet dump output (git-fixes).
• input: iforce - wake up after clearing IFORCEXMITRUNNING flag (git-fixes). Heavily modified, as prerequisites for taking it as is would utterly ruin kABI
• input: replace hard coded string with func in pr_err() (git-fixes).
• input: switch to using sizeof(*type) when allocating memory (git-fixes).
• input: use seqputc() in inputseqprintbitmap() (git-fixes).
• input: use seqputs() in inputdevicesseqshow() (git-fixes).
• ipmi: Fix UAF when uninstall ipmisi and ipmimsghandler module (git-fixes).
• ipmi: Move remove_work to dedicated workqueue (git-fixes).
• ipmi: fix memleak when unload ipmi driver (git-fixes).
• ipmi: fix use after free in ipmidestroy_user() (git-fixes).
• isofs: reject hardware sector size > 2048 bytes (bsc#1207103).
• jbd2: use the correct print format (git-fixes).
• kABI: cpu/hotplug: reexport cpusmtcontrol (kabi).
• kbuild: clear LDFLAGS in the top Makefile (bsc#1203200).
• kernel/sys.c: avoid copying possible padding bytes in copytouser (git-fixes).
• kprobes, x86/alternatives: Use textmutex to protect smpalt_modules (git-fixes).
• kprobes, x86/ptrace.h: Make regsgetkernelstacknth() not fault on bad stack (git-fixes).
• loop: Add LOOPSETDIRECT_IO to compat ioctl (git-fixes).
• loop: use sysfs_emit() in the sysfs xxx show() (git-fixes).
• m68k/mac: Do not remap SWIM MMIO region (git-fixes).
• makefile: link with -z noexecstack --no-warn-rwx-segments (bsc#1203200).
• mbcache: add functions to delete entry if unused (bsc#1198971).
• mbcache: do not reclaim used entries (bsc#1198971).
• md/raid1: stop mdx_raid1 thread when raid1 array run failed (git-fixes).
• md/raid5: Wait for MDSBCHANGE_PENDING in raid5d (git-fixes).
• md: fix a crash in mempool_free (git-fixes).
• md: protect mdunregisterthread from reentrancy (git-fixes).
• memcg: remove memcgcgroup::id from IDR on memcgroupcssalloc() failure (bsc#1208108).
• mm/filemap.c: clear page error before actual read (bsc#1206635).
• module: Do not wait for GOING modules (bsc#1196058, bsc#1186449, bsc#1204356, bsc#1204662).
• nbd: Add the nbd NBDDISCONNECTON_CLOSE config flag (git-fixes).
• nbd: Fix NULL pointer in flush_workqueue (git-fixes).
• nbd: Fix hung when signal interrupts nbdstartdevice_ioctl() (git-fixes).
• nbd: add a flushworkqueue in nbdstart_device (git-fixes).
• nbd: add missing config put (git-fixes).
• nbd: call genlunregisterfamily() first in nbd_cleanup() (git-fixes).
• nbd: do not requeue the same request twice (git-fixes).
• nbd: fix a blockdevice refcount leak in nbdrelease (git-fixes).
• nbd: fix crash when the blksize is zero (git-fixes).
• nbd: fix io hung while disconnecting device (git-fixes).
• nbd: fix max number of supported devs (git-fixes).
• nbd: fix possible sysfs duplicate warning (git-fixes).
• nbd: fix race between nbdallocconfig() and module removal (git-fixes).
• nbd: fix shutdown and recv work deadlock v2 (git-fixes).
• nbd: handle racing with error'ed out commands (git-fixes).
• nbd: handle unexpected replies better (git-fixes).
• nbd: make the config put is called before the notifying the waiter (git-fixes).
• nbd: verify socket is supported during setup (git-fixes).
• nbd:fix memory leak in nbdgetsocket() (git-fixes).
• net/ethernet/freescale: rework quiesce/activate for ucc_geth (git-fixes).
• net/mlx5e: Set of completion request bit should not clear other adjacent bits (git-fixes).
• net/usb: kalmia: Do not pass actlen in usbbulk_msg error path (git-fixes).
• net: USB: Fix wrong-direction WARNING in plusb.c (git-fixes).
• net: allwinner: Fix use correct return type for ndostartxmit() (git-fixes).
• net: bcmgenet: suppress warnings on failed Rx SKB allocations (git-fixes).
• net: bmac: Fix read of MAC address from ROM (git-fixes).
• net: dsa: mv88e6xxx: Allow dsa and cpu ports in multiple vlans (git-fixes).
• net: mana: Fix IRQ name - add PCI and queue number (bsc#1207875).
• net: qed*: Reduce RX and TX default ring count when running inside kdump kernel (git-fixes).
• net: stmmac: Fix sub-second increment (git-fixes).
• net: systemport: suppress warnings on failed Rx SKB allocations (git-fixes).
• net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes).
• net: usb: cdc_mbim: avoid altsetting toggling for Telit LN920 (git-fixes).
• net: usb: lan78xx: do not modify phy_device state concurrently (git-fixes).
• net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes).
• net: usb: qmi_wwan: add Quectel RM520N (git-fixes).
• net: usb: sr9700: Handle negative len (git-fixes).
• nullblk: Handle nulladd_dev() failures properly (git-fixes).
• null_blk: fix spurious IO errors after failed past-wp access (git-fixes).
• panic: unset paniconwarn inside panic() (git-fixes).
• parisc: Fix HP SDC hpa address output (git-fixes).
• parisc: Fix serio address output (git-fixes).
• pci/aspm: Correct LTRL1.2THRESHOLD computation (git-fixes).
• pci/aspm: Declare threshold_ns as u32, not u64 (git-fixes).
• pci/sysfs: Fix double free in error path (git-fixes).
• pci: Check for alloc failure in pcirequestirq() (git-fixes).
• pci: Fix pcideviceis_present() for VFs by checking PF (git-fixes).
• pci: Fix usedbuses calculation in pciscanchildbus_extend() (git-fixes).
• pci: Sanitise firmware BAR assignments behind a PCI-PCI bridge (git-fixes).
• prlimit: do_prlimit needs to have a speculation check (git-fixes).
• ps3disk: use the default segment boundary (git-fixes).
• ptrace: make ptrace() fail if the tracee changed its pid unexpectedly (git-fixes).
• quota: Check next/prev free block number after reading from quota file (bsc#1206640).
• quota: Lock sumount in exclusive mode for QXQUOTA{ON,OFF} quotactls (bsc#1207104).
• revert 'blkdev: check for valid request queue before issuing flush' (git-fixes).
• revert 'dm cache: fix arm link errors with inline' (git-fixes).
• revert 'scsi: core: run queue if SCSI device queue isn't ready and queue is idle' (git-fixes).
• rpm/check-for-config-changes: add OBJTOOL and FTRACEMCOUNTUSE* Dummy gcc pretends to support -mrecord-mcount option but actual gcc on ppc64le does not. Therefore ppc64le builds of 6.2-rc1 and later in OBS enable FTRACEMCOUNTUSEOBJTOOL and OBJTOOL config options, resulting in check failure. As we already have FTRACEMCOUNTUSECC and FTRACEMCOUNTUSERECORDMCOUNT in the exception list, replace them with a general pattern. And add OBJTOOL as well.
• rpm/check-for-config-changes: loosen pattern for ASHAS* This is needed to handle CONFIGASHASNONCONST_LEB128.
• rpm/kernel-binary.spec.in: Add Enhances and Supplements tags to in-tree KMPs This makes in-tree KMPs more consistent with externally built KMPs and silences several rpmlint warnings.
• rpm/mkspec-dtb: add riscv64 dtb-renesas subpackage
• rsxx: add missed destroy_workqueue calls in remove (git-fixes).
• sbitmap: Avoid leaving waitqueue in invalid state in _sbqwake_up() (git-fixes).
• sbitmap: Avoid leaving waitqueue in invalid state in _sbqwake_up() (git-fixes).
• sbitmap: fix lockup while swapping (bsc#1206602).
• scripts/CKC: Do not use empty branches file Do not use it and do not write neither.
• scripts/CKC: Make checker more specific
• scripts/CKC: Make checker script download branches.conf Requires curl, downloads and caches the branches.conf file.
• scripts/CKC: do not output from shopt shopt outputs the status of the flag, so that git grep looks like: git grep -qi 'nocasematch off ^References:.bsc#1202195' remotes/origin/SLE15-SP2-RT -- 'patches.' I do not know how it can work (it does -- maybe thanks to ^), but it's not definitely OK. So make shopt in term2regex() quiet.
• scripts/CKC: simplify print_branch AFAIU, it's simply: printf '%-23s'
• scripts/CKC: store local branches with $USER prefix So that on shared machines, it can be overwritten when expires.
• scripts/CKC: test accepts only =, not == And put $1 into '' too.
• scripts/gitsort/gitsort.py: Add arm-soc for-next tree.
• scripts/wd-functions.sh: fix getbranchname() in worktree Instead of using a hard-coded path for the git directory, use git rev-parse with --git-dir flag, introduced since 0.99.7, to find the git directory so branch name can be correctly detected while in git worktrees.
• scsi: fcoe: Fix possible name leak when device_register() fails (git-fixes).
• scsi: fcoe: Fix transport not deattached when fcoeifinit() fails (git-fixes).
• scsi: hpsa: Fix allocation size for scsihostalloc() (git-fixes).
• scsi: hpsa: Fix error handling in hpsaaddsas_host() (git-fixes).
• scsi: hpsa: Fix possible memory leak in hpsaaddsas_device() (git-fixes).
• scsi: hpsa: Fix possible memory leak in hpsainitone() (git-fixes).
• scsi: ipr: Fix WARNING in ipr_init() (git-fixes).
• scsi: mpt3sas: Fix possible resource leaks in mpt3sastransportport_add() (git-fixes).
• scsi: qla2xxx: Check if port is online before sending ELS (bsc#1208570).
• scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests (bsc#1208570).
• scsi: qla2xxx: Fix IOCB resource check warning (bsc#1208570).
• scsi: qla2xxx: Fix erroneous link down (bsc#1208570).
• scsi: qla2xxx: Fix exchange oversubscription (bsc#1208570).
• scsi: qla2xxx: Fix exchange oversubscription for management commands (bsc#1208570).
• scsi: qla2xxx: Fix link failure in NPIV environment (bsc#1208570).
• scsi: qla2xxx: Fix printk() format string (bsc#1208570).
• scsi: qla2xxx: Fix stalled login (bsc#1208570).
• scsi: qla2xxx: Make qlatrimbuf() and _qlaadjust_buf() static (bsc#1208570).
• scsi: qla2xxx: Relocate/rename vp map (bsc#1208570).
• scsi: qla2xxx: Remove dead code (GNN ID) (bsc#1208570).
• scsi: qla2xxx: Remove dead code (GPNID) (bsc#1208570).
• scsi: qla2xxx: Remove dead code (bsc#1208570).
• scsi: qla2xxx: Remove increment of interface err cnt (bsc#1208570).
• scsi: qla2xxx: Remove the unused variable wwn (bsc#1208570).
• scsi: qla2xxx: Remove unintended flag clearing (bsc#1208570).
• scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called (bsc#1208570).
• scsi: qla2xxx: Simplify if condition evaluation (bsc#1208570).
• scsi: qla2xxx: Update version to 10.02.08.100-k (bsc#1208570).
• scsi: qla2xxx: Update version to 10.02.08.200-k (bsc#1208570).
• scsi: qla2xxx: Use a variable for repeated mem_size computation (bsc#1208570).
• scsi: qla2xxx: edif: Fix clang warning (bsc#1208570).
• scsi: qla2xxx: edif: Fix performance dip due to lock contention (bsc#1208570).
• scsi: qla2xxx: edif: Fix stall session after app start (bsc#1208570).
• scsi: qla2xxx: edif: Reduce memory usage during low I/O (bsc#1208570).
• scsi: scsidebug: Fix a warning in respwrite_scat() (git-fixes).
• scsi: scsidebug: Fix possible name leak in sdebugaddhosthelper() (git-fixes).
• scsi: smartpqi: use processor ID for hwqueue for non-mq case .
• scsi: snic: Fix possible UAF in snictgtcreate() (git-fixes).
• scsi: target: core: Add CONTROL field for trace events (git-fixes).
• sctp: fail if no bound addresses can be used for a given scope (bsc#1206677).
• signal handling: do not use BUG_ON() for debugging (git-fixes).
• struct dwc3: move new members to the end (git-fixes).
• sunrpc: make lockless test safe (bsc#1207201).
• sunvdc: Do not spin in an infinite loop when violdcsend() returns EAGAIN (git-fixes).
• swim: fix cleanup on setup error (git-fixes).
• tracing/cfi: Fix cmpentries* functions signature mismatch (git-fixes).
• tracing: Adding NULL checks for trace_array descriptor pointer (git-fixes).
• tracing: Ensure trace buffer is at least 4096 bytes large (git-fixes).
• tracing: Fix a kmemleak false positive in tracing_map (git-fixes).
• tracing: Fix infinite loop in tracingreadpipe on overflowed printtraceline (git-fixes).
• tracing: Fix sleeping function called from invalid context on RT kernel (git-fixes).
• tracing: Fix stack trace event size (git-fixes).
• tracing: Fix tpprintk option related with tpprintkstopon_boot (git-fixes).
• tracing: Make sure trace_printk() can output as soon as it can be used (git-fixes).
• tracing: Set kernel_stack's caller size properly (git-fixes).
• tracing: Use address-of operator on section symbols (git-fixes).
• tracing: incorrect isolatemotet cast in mmvmscanlru_isolate (git-fixes).
• trigger_next should increase position index (git-fixes).
• udf: Avoid accessing uninitialized data on failed inode read (bsc#1206642).
• udf: Check LVID earlier (bsc#1207108).
• udf: Fix BUG on corrupted inode (bsc#1207107).
• udf: Fix NULL pointer dereference in udf_symlink function (bsc#1206646).
• udf: Fix a slab-out-of-bounds write bug in udffindentry() (bsc#1206649).
• udf: Fix free space reporting for metadata and virtual partitions (bsc#1206641).
• udf: Limit sparing table size (bsc#1206643).
• udf: fix silent AED tagLocation corruption (bsc#1206645).
• udfgetextendedattr() had no boundary checks (bsc#1206648).
• usb: dwc3: Disable phy suspend after power-on reset (git-fixes).
• usb: dwc3: core: Call dwc3coreget_phy() before initializing phys (git-fixes).
• usb: dwc3: core: Fix ULPI PHYs and prevent phyget/ulpiinit during suspend/resume (git-fixes).
• usb: dwc3: core: initialize ULPI before trying to get the PHY (git-fixes).
• usb: dwc3: fix PHY disable sequence (git-fixes).
• usb: dwc3: gadget: Fix event pending check (git-fixes).
• usb: host: Fix refcount leak in ehcihcdppcofprobe (git-fixes).
• usb: musb: fix MUSBQUIRKBDISCONNECT99 handling (git-fixes).
• usb: ohci-nxp: Fix refcount leak in ohcihcdnxp_probe (git-fixes).
• usb: serial: ch341: fix disabled rx timer on older devices (git-fixes).
• usb: serial: console: move mutexunlock() before usbserial_put() (git-fixes).
• virtio-blk: Fix memory leak among suspend/resume procedure (git-fixes).
• virtio_console: break out of buf poll on remove (git-fixes).
• virtioconsole: eliminate anonymous moduleinit & module_exit (git-fixes).
• x86/MCE/AMD: Carve out the MC4_MISC thresholding quirk (git-fixes).
• x86/MCE/AMD: Turn off MC4_MISC thresholding on all family 0x15 models (git-fixes).
• x86/asm: Add instruction suffixes to bitops (git-fixes).
• x86/asm: Remove unnecessary \n\t in front of CC_SET() from asm templates (git-fixes).
• x86/bugs: Move the l1tf function and define pr_fmt properly (git-fixes).
• x86/earlyprintk: Add a force option for pciserial device (git-fixes).
• x86/entry/64: Add instruction suffix (git-fixes).
• x86/fpu: Add mightfault() to userinsn() (git-fixes).
• x86/hpet: Prevent potential NULL pointer dereference (git-fixes).
• x86/kexec: Do not setup EFI info if EFI runtime is not enabled (git-fixes).
• x86/mce-inject: Reset injection struct after injection (git-fixes).
• x86/mce/mce-inject: Preset the MCE injection struct (git-fixes).
• x86/mce: Fix -Wmissing-prototypes warnings (git-fixes).
• x86/mm: Do not leak kernel addresses (git-fixes).
• x86/speculation: Add support for STIBP always-on preferred mode (git-fixes).
• x86/speculation: Change misspelled STIPB to STIBP (git-fixes).
• x86: boot: Fix EFI stub alignment (git-fixes).
• x86: link vdso and boot with -z noexecstack --no-warn-rwx-segments (bsc#1203200).
• xen-netfront: Fix hang on device removal (bsc#1206698).
• xfs: Fix UBSAN null-ptr-deref in xfssysfsinit (git-fixes).
• xfs: Fix bulkstat compat ioctls on x32 userspace (git-fixes).
• xfs: Fix unreferenced object reported by kmemleak in xfssysfsinit() (git-fixes).
• xfs: fix attr leaf header freemap.size underflow (git-fixes).
• xfs: fix leaks on corruption errors in xfs_bmap.c (git-fixes).
• xfs: fix mount failure crash on invalid iclog memory access (git-fixes).
• xfs: fix partially uninitialized structure in xfsreflinkremap_extent (git-fixes).
• xfs: fix realtime bitmap/summary file truncation when growing rt volume (git-fixes).
• xfs: fix use-after-free race in xfsbufrele (git-fixes).
• xfs: initialize the shortform attr header padding entry (git-fixes).
• xfs: make sure the rt allocator does not run off the end (git-fixes).
• xfs: require both realtime inodes to mount (git-fixes).
• xhci: Do not show warning for reinit on known broken suspend (git-fixes).
• zram: fix double free backing device (git-fixes).