The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2023-2235: A use-after-free vulnerability in the Performance Events system can be exploited to achieve local privilege escalation . * CVE-2022-2196: Fixed a regression related to KVM that allowed for speculative execution attacks . * CVE-2023-23006: Fixed NULL checking against IS_ERR in dr_domain_init_resources . * CVE-2023-1670: Fixed a use after free in the Xircom 16-bit PCMCIA Ethernet driver. A local user could use this flaw to crash the system or potentially escalate their privileges on the system . * CVE-2023-2176: A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA. The improper cleanup results in out- of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege . * CVE-2023-0386: A flaw was found where unauthorized access to the execution of the setuid file with capabilities was found in the OverlayFS subsystem, when a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allowed a local user to escalate their privileges on the system . * CVE-2023-1998: Fixed a use after free during login when accessing the shost ipaddress . * CVE-2023-1855: Fixed a use after free in xgene_hwmon_remove . * CVE-2023-30772: Fixed a race condition and resultant use-after-free in da9150_charger_remove . * CVE-2023-2019: A flaw was found in the netdevsim device driver, more specifically within the scheduling of events. This issue results from the improper management of a reference count and may lead to a denial of service . * CVE-2023-2008: A flaw was found in the fault handler of the udmabuf device driver. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code . * CVE-2023-1989: Fixed a use after free in btsdio_remove . * CVE-2023-1990: Fixed a use after free in ndlc_remove . The following non-security bugs were fixed: * ACPI: CPPC: Disable FIE if registers in PCC regions . * ACPI: VIOT: Initialize the correct IOMMU fwspec . * ACPI: resource: Add Medion S17413 to IRQ override quirk . * ALSA: emu10k1: do not create old pass-through playback device on Audigy . * ALSA: emu10k1: fix capture interrupt handler unlinking . * ALSA: firewire-tascam: add missing unwind goto in snd_tscm_stream_start_duplex . * ALSA: hda/cirrus: Add extra 10 ms delay to allow PLL settle and lock . * ALSA: hda/realtek: Add quirks for Lenovo Z13/Z16 Gen2 . * ALSA: hda/realtek: Enable mute/micmute LEDs and speaker support for HP Laptops . * ALSA: hda/realtek: Remove specific patch for Dell Precision 3260 . * ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook . * ALSA: hda/realtek: fix speaker, mute/micmute LEDs not work on a HP platform . * ALSA: hda/sigmatel: add pin overrides for Intel DP45SG motherboard . * ALSA: hda/sigmatel: fix S/PDIF out on Intel D _45_ motherboards . * ALSA: hda: cs35l41: Enable Amp High Pass Filter . * ALSA: hda: patch_realtek: add quirk for Asus N7601ZM . * ALSA: i2c/cs8427: fix iec958 mixer control deactivation . * ARM: 9290/1: uaccess: Fix KASAN false-positives . * ARM: dts: exynos: fix WM8960 clock name in Itop Elite . * ARM: dts: gta04: fix excess dma channel usage . * ARM: dts: qcom: ipq4019: Fix the PCI I/O port range . * ARM: dts: rockchip: fix a typo error for rk3288 spdif node . * ARM: dts: s5pv210: correct MIPI CSIS clock name . * ASN.1: Fix check for strdup success . * ASoC: cs35l41: Only disable internal boost . * ASoC: es8316: Handle optional IRQ assignment . * ASoC: fsl_asrc_dma: fix potential null-ptr-deref . * ASoC: fsl_mqs: move of_node_put to the correct location . * Bluetooth: Fix race condition in hidp_session_thread . * Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} . * Drivers: vmbus: Check for channel allocation before looking up relids . * IB/mlx5: Add support for 400G_8X lane speed * Input: hp_sdc_rtc - mark an unused function as __maybe_unused . * Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe . * KEYS: Add missing function documentation . * KEYS: Create static version of public_key_verify_signature . * NFS: Cleanup unused rpc_clnt variable . * NFSD: Avoid calling OPDESC with ops- greater than opnum == OP_ILLEGAL . * NFSD: callback request does not use correct credential for AUTH_SYS . * PCI/EDR: Clear Device Status after EDR error recovery . * PCI: dwc: Fix PORT_LINK_CONTROL update when CDM check enabled . * PCI: imx6: Install the fault handler only on compatible match . * PCI: loongson: Add more devices that need MRRS quirk . * PCI: loongson: Prevent LS7A MRRS increases . * PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock . * PCI: qcom: Fix the incorrect register usage in v2.7.0 config . * RDMA/cma: Allow UD qp_type to join multicast only * RDMA/core: Fix GID entry ref leak when create_ah fails * RDMA/irdma: Add ipv4 check to irdma_find_listener * RDMA/irdma: Fix memory leak of PBLE objects * RDMA/irdma: Increase iWARP CM default rexmit count * Remove obsolete KMP obsoletes . * Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work" . * Revert "pinctrl: amd: Disable and mask interrupts on resume" . * USB: dwc3: fix runtime pm imbalance on probe errors . * USB: dwc3: fix runtime pm imbalance on unbind . * USB: serial: cp210x: add Silicon Labs IFS-USB-DATACABLE IDs . * USB: serial: option: add Quectel RM500U-CN modem . * USB: serial: option: add Telit FE990 compositions . * USB: serial: option: add UNISOC vendor and TOZED LT70C product . * amdgpu: disable powerpc support for the newer display engine . * arm64: dts: imx8mm-evk: correct pmic clock source . * arm64: dts: meson-g12-common: specify full DMC range . * arm64: dts: qcom: ipq8074-hk01: enable QMP device, not the PHY node . * arm64: dts: qcom: ipq8074: Fix the PCI I/O port range . * arm64: dts: qcom: msm8994-kitakami: drop unit address from PMI8994 regulator . * arm64: dts: qcom: msm8994-msft-lumia-octagon: drop unit address from PMI8994 regulator . * arm64: dts: qcom: msm8996: Fix the PCI I/O port range . * arm64: dts: qcom: msm8998: Fix stm-stimulus-base reg name . * arm64: dts: qcom: msm8998: Fix the PCI I/O port range . * arm64: dts: qcom: sc7180-trogdor-lazor: correct trackpad supply . * arm64: dts: qcom: sdm845: Fix the PCI I/O port range . * arm64: dts: qcom: sm8250: Fix the PCI I/O port range . * arm64: dts: renesas: r8a774c0: Remove bogus voltages from OPP table . * arm64: dts: renesas: r8a77990: Remove bogus voltages from OPP table . * arm64: dts: ti: k3-j721e-main: Remove ti,strobe-sel property . * bluetooth: Perform careful capability checks in hci_sock_ioctl . * cgroup/cpuset: Add cpuset_can_fork and cpuset_cancel_fork methods * cgroup/cpuset: Make cpuset_fork handle CLONE_INTO_CGROUP properly * cgroup/cpuset: Wake up cpuset_attach_wq tasks in cpuset_cancel_attach . * cifs: fix negotiate context parsing . * clk: add missing of_node_put in "assigned-clocks" property parsing . * clk: at91: clk-sam9x60-pll: fix return value check . * clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to reparent . * clk: sprd: set max_register according to mapping range . * clocksource/drivers/davinci: Fix memory leak in davinci_timer_register when init fails . * cpufreq: CPPC: Fix build error without CONFIG_ACPI_CPPC_CPUFREQ_FIE . * cpufreq: CPPC: Fix performance/frequency conversion . * cpumask: fix incorrect cpumask scanning result checks . * crypto: caam - Clear some memory in instantiate_rng . * crypto: drbg - Only fail when jent is unavailable in FIPS mode . * crypto: sa2ul - Select CRYPTO_DES . * crypto: safexcel - Cleanup ring IRQ workqueues on load failure . * driver core: Do not require dynamic_debug for initcall_debug probe timing . * drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler . * drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler . * drm/amd/display/dc/dce60/Makefile: Fix previous attempt to silence known override-init warnings . * drm/amd/display: Fix potential null dereference . * drm/amdgpu: Re-enable DCN for 64-bit powerpc . * drm/armada: Fix a potential double free in an error handling path . * drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and adv7535 . * drm/bridge: lt8912b: Fix DSI Video Mode . * drm/bridge: lt9611: Fix PLL being unable to lock . * drm/fb-helper: set x/yres_virtual in drm_fb_helper_check_var . * drm/i915/dsi: fix DSS CTL register offsets for TGL+ . * drm/i915: Fix fast wake AUX sync len . * drm/i915: Make intel_get_crtc_new_encoder less oopsy . * drm/i915: fix race condition UAF in i915_perf_add_config_ioctl . * drm/lima/lima_drv: Add missing unwind goto in lima_pdev_probe . * drm/msm/adreno: drop bogus pm_runtime_set_active . * drm/msm/disp/dpu: check for crtc enable rather than crtc active to release shared resources . * drm/msm: fix NULL-deref on snapshot tear down . * drm/nouveau/disp: Support more modes by checking with lower bpc . * drm/panel: otm8009a: Set backlight parent to panel device . * drm/probe-helper: Cancel previous job before starting new one . * drm/rockchip: Drop unbalanced obj unref . * drm/vgem: add missing mutex_destroy . * drm: msm: adreno: Disable preemption on Adreno 510 . * drm: panel-orientation-quirks: Add quirk for Lenovo Yoga Book X90F . * drm: rcar-du: Fix a NULL vs IS_ERR bug . * dt-bindings: arm: fsl: Fix copy-paste error in comment . * dt-bindings: iio: ti,tmp117: fix documentation link . * dt-bindings: mailbox: qcom,apcs-kpss-global: fix SDX55 "if" match . * dt-bindings: nvmem: qcom,spmi-sdam: fix example "reg" property . * dt-bindings: remoteproc: stm32-rproc: Typo fix . * dt-bindings: soc: qcom: smd-rpm: re-add missing qcom,rpm-msm8994 . * e1000e: Disable TSO on i219-LM card to increase speed . * efi: sysfb_efi: Add quirk for Lenovo Yoga Book X91F/L . * ext4: Fix deadlock during directory rename . * ext4: Fix possible corruption when moving a directory . * ext4: fix RENAME_WHITEOUT handling for inline directories . * ext4: fix another off-by-one fsmap error on 1k block filesystems . * ext4: fix bad checksum after online resize . * ext4: fix cgroup writeback accounting with fs-layer encryption . * ext4: fix corruption when online resizing a 1K bigalloc fs . * ext4: fix incorrect options show of original mount_opt and extend mount_opt2 . * ext4: fix possible double unlock when moving a directory . * ext4: use ext4_journal_start/stop for fast commit transactions . * fbmem: Reject FB_ACTIVATE_KD_TEXT from userspace . * firmware: qcom_scm: Clear download bit during reboot . * firmware: stratix10-svc: Fix an NULL vs IS_ERR bug in probe . * fpga: bridge: fix kernel-doc parameter description . * hwmon: Use device_property APIs when configuring polarity . * hwmon: Check range scale when CUR_TEMP register is read-write . * hwmon: Fix functionality bitmask in FSP-3Y YM-2151E . * i2c: cadence: cdns_i2c_master_xfer: Fix runtime PM leak on error path . * i2c: hisi: Avoid redundant interrupts . * i2c: imx-lpi2c: clean rx/tx buffers upon new message . * i2c: ocores: generate stop condition after timeout in polling mode . * i915/perf: Replace DRM_DEBUG with driver specific drm_dbg call . * ice: avoid bonding causing auxiliary plug/unplug under RTNL lock . * iio: adc: at91-sama5d2_adc: fix an error code in at91_adc_allocate_trigger . * iio: light: tsl2772: fix reading proximity-diodes from device tree . * ipmi: fix SSIF not responding under certain cond . * ipmi:ssif: Add send_retries increment . * k-m-s: Drop Linux 2.6 support * kABI: PCI: loongson: Prevent LS7A MRRS increases . * kABI: x86/msi: Fix msi message data shadow struct . * kabi/severities: ignore KABI for NVMe target . * keys: Fix linking a duplicate key to a keyring"s assoc_array . * locking/rwbase: Mitigate indefinite writer starvation. * media: av7110: prevent underflow in write_ts_to_decoder . * media: dm1105: Fix use after free bug in dm1105_remove due to race condition . * media: max9286: Free control handler . * media: rc: gpio-ir-recv: Fix support for wake-up . * media: rkvdec: fix use after free bug in rkvdec_remove . * media: saa7134: fix use after free bug in saa7134_finidev due to race condition . * media: venus: dec: Fix handling of the start cmd . * memstick: fix memory leak if card device is never registered . * mm/filemap: fix page end in filemap_get_read_batch . * mm: page_alloc: skip regions with hugetlbfs pages when allocating 1G pages . * mm: take a page reference when removing device exclusive entries . * mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data . * mmc: sdhci_am654: Set HIGH_SPEED_ENA for SDR12 and SDR25 . * mtd: core: fix error path for nvmem provider . * mtd: core: fix nvmem error reporting . * mtd: core: provide unique name for nvmem device, take two . * mtd: spi-nor: Fix a trivial typo . * net: phy: nxp-c45-tja11xx: add remove callback . * net: phy: nxp-c45-tja11xx: fix unsigned long multiplication overflow . * nfsd: call op_release, even when op_func returns an error . * nilfs2: fix potential UAF of struct nilfs_sc_info in nilfs_segctor_thread . * nilfs2: initialize unused bytes in segment summary blocks . * nvme initialize core quirks before calling nvme_init_subsystem . * nvme-auth: uninitialized variable in nvme_auth_transform_key . * nvme-fcloop: fix "inconsistent {IN-HARDIRQ-W} - greater than {HARDIRQ-ON-W} usage" . * nvme-hwmon: consistently ignore errors from nvme_hwmon_init . * nvme-hwmon: kmalloc the NVME SMART log buffer . * nvme-multipath: fix possible hang in live ns resize with ANA access . * nvme-pci: fix doorbell buffer value endianness . * nvme-pci: fix mempool alloc size . * nvme-pci: fix page size checks . * nvme-pci: fix timeout request state check . * nvme-rdma: fix possible hang caused during ctrl deletion . * nvme-tcp: fix possible circular locking when deleting a controller under memory pressure . * nvme-tcp: fix possible hang caused during ctrl deletion . * nvme-tcp: fix regression that causes sporadic requests to time out . * nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices . * nvme: add device name to warning in uuid_show . * nvme: catch -ENODEV from nvme_revalidate_zones again . * nvme: copy firmware_rev on each init . * nvme: define compat_ioctl again to unbreak 32-bit userspace . * nvme: fix async event trace event . * nvme: fix handling single range discard request . * nvme: fix per-namespace chardev deletion . * nvme: fix the NVME_CMD_EFFECTS_CSE_MASK definition . * nvme: fix the read-only state for zoned namespaces with unsupposed features . * nvme: improve the NVME_CONNECT_AUTHREQ* definitions . * nvme: move nvme_multi_css into nvme.h . * nvme: return err on nvme_init_non_mdts_limits fail . * nvme: send Identify with CNS 06h only to I/O controllers . * nvme: set dma alignment to dword . * nvme: use command_id instead of req- greater than tag in trace_nvme_complete_rq . * nvmet-auth: do not try to cancel a non-initialized work_struct . * nvmet-tcp: fix incomplete data digest send . * nvmet-tcp: fix regression in data_digest calculation . * nvmet: add helpers to set the result field for connect commands . * nvmet: avoid potential UAF in nvmet_req_complete . * nvmet: do not defer passthrough commands with trivial effects to the workqueue . * nvmet: fix I/O Command Set specific Identify Controller . * nvmet: fix Identify Active Namespace ID list handling . * nvmet: fix Identify Controller handling . * nvmet: fix Identify Namespace handling . * nvmet: fix a memory leak . * nvmet: fix a memory leak in nvmet_auth_set_key . * nvmet: fix a use-after-free . * nvmet: fix invalid memory reference in nvmet_subsys_attr_qid_max_show . * nvmet: force reconnect when number of queue changes . * nvmet: looks at the passthrough controller when initializing CAP . * nvmet: only allocate a single slab for bvecs . * nvmet: use IOCB_NOWAIT only if the filesystem supports it . * perf/core: Fix perf_output_begin parameter is incorrectly invoked in perf_event_bpf_output . * perf/core: Fix the same task check in perf_event_set_output . * perf: Fix check before add_event_to_groups in perf_group_detach . * perf: fix perf_event_context- greater than time . * platform/x86 : Add support for A320M-S2H V2 . * platform/x86: gigabyte-wmi: add support for X570S AORUS ELITE . * power: supply: cros_usbpd: reclassify "default case!" as debug . * power: supply: generic-adc-battery: fix unit scaling . * powerpc/64: Always build with 128-bit long double . * powerpc/64e: Fix amdgpu build on Book3E w/o AltiVec . * powerpc/hv-gpci: Fix hv_gpci event list . * powerpc/papr_scm: Update the NUMA distance table for the target node . * powerpc/perf/hv-24x7: add missing RTAS retry status handling . * powerpc/pseries: Consolidate different NUMA distance update code paths . * powerpc: declare unmodified attribute_group usages const . * regulator: core: Avoid lockdep reports when resolving supplies . * regulator: core: Consistently set mutex_owner when using ww_mutex_lock_slow . * regulator: core: Shorten off-on-delay-us for always-on/boot-on by time since booted . * regulator: fan53555: Explicitly include bits header . * regulator: fan53555: Fix wrong TCS_SLEW_MASK . * regulator: stm32-pwr: fix of_iomap leak . * remoteproc: Harden rproc_handle_vdev against integer overflow . * remoteproc: imx_rproc: Call of_node_put on iteration error . * remoteproc: st: Call of_node_put on iteration error . * remoteproc: stm32: Call of_node_put on iteration error . * rtc: meson-vrtc: Use ktime_get_real_ts64 to get the current time . * rtc: omap: include header for omap_rtc_power_off_program prototype . * sched/fair: Fix imbalance overflow . * sched/fair: Limit sched slice duration . * sched/fair: Move calculate of avg_load to a better location . * sched/fair: Sanitize vruntime of entity being migrated . * sched/fair: sanitize vruntime of entity being placed . * sched/numa: Stop an exhastive search if an idle core is found . * sched_getaffinity: do not assume "cpumask_size" is fully initialized . * scsi: aic94xx: Add missing check for dma_map_single . * scsi: core: Add BLIST_NO_VPD_SIZE for some VDASD . * scsi: core: Add BLIST_SKIP_VPD_PAGES for SKhynix H28U74301AMR . * scsi: core: Fix a procfs host directory removal regression . * scsi: core: Fix a source code comment . * scsi: core: Remove the /proc/scsi/${proc_name} directory earlier . * scsi: hisi_sas: Check devm_add_action return value . * scsi: hisi_sas: Set a port invalid only if there are no devices attached when refreshing port id . * scsi: ipr: Work around fortify-string warning . * scsi: iscsi_tcp: Check that sock is valid before iscsi_set_param . * scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress . * scsi: iscsi_tcp: Fix UAF during logout when accessing the shost ipaddress . * scsi: kABI workaround for fc_host_fpin_rcv . * scsi: libsas: Remove useless dev_list delete in sas_ex_discover_end_dev . * scsi: lpfc: Avoid usage of list iterator variable after loop . * scsi: lpfc: Check kzalloc in lpfc_sli4_cgn_params_read . * scsi: lpfc: Copyright updates for 14.2.0.11 patches . * scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery . * scsi: lpfc: Defer issuing new PLOGI if received RSCN before completing REG_LOGIN . * scsi: lpfc: Drop redundant pci_enable_pcie_error_reporting . * scsi: lpfc: Fix double word in comments . * scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup . * scsi: lpfc: Fix lockdep warning for rx_monitor lock when unloading driver . * scsi: lpfc: Prevent lpfc_debugfs_lockstat_write buffer overflow . * scsi: lpfc: Record LOGO state with discovery engine even if aborted . * scsi: lpfc: Reorder freeing of various DMA buffers and their list removal . * scsi: lpfc: Revise lpfc_error_lost_link reason code evaluation logic . * scsi: lpfc: Silence an incorrect device output . * scsi: lpfc: Skip waiting for register ready bits when in unrecoverable state . * scsi: lpfc: Update lpfc version to 14.2.0.11 . * scsi: megaraid_sas: Fix crash after a double completion . * scsi: megaraid_sas: Update max supported LD IDs to 240 . * scsi: mpt3sas: Do not print sense pool info twice . * scsi: mpt3sas: Fix NULL pointer access in mpt3sas_transport_port_add . * scsi: mpt3sas: Fix a memory leak . * scsi: qla2xxx: Fix memory leak in qla2x00_probe_one . * scsi: qla2xxx: Perform lockless command completion in abort path . * scsi: scsi_dh_alua: Fix memleak for "qdata" in alua_activate . * scsi: scsi_transport_fc: Add an additional flag to fc_host_fpin_rcv . * scsi: sd: Fix wrong zone_write_granularity value during revalidate . * scsi: ses: Do not attach if enclosure has no components . * scsi: ses: Fix possible addl_desc_ptr out-of-bounds accesses . * scsi: ses: Fix possible desc_ptr out-of-bounds accesses . * scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process . * scsi: ses: Fix slab-out-of-bounds in ses_intf_remove . * scsi: snic: Fix memory leak with using debugfs_lookup . * seccomp: Move copy_seccomp to no failure path . * selftests/kselftest/runner/run_one: allow running non-executable files . * selftests: sigaltstack: fix -Wuninitialized . * selinux: ensure av_permissions.h is built when needed . * selinux: fix Makefile dependencies of flask.h . * serial: 8250: Add missing wakeup event reporting . * serial: 8250_bcm7271: Fix arbitration handling . * serial: 8250_exar: derive nr_ports from PCI ID for Acces I/O cards . * serial: exar: Add support for Sealevel 7xxxC serial cards . * signal handling: do not use BUG_ON for debugging . * signal: Add SA_IMMUTABLE to ensure forced siganls do not get changed . * signal: Do not always set SA_IMMUTABLE for forced signals . * signal: HANDLER_EXIT should clear SIGNAL_UNKILLABLE . * soc: ti: pm33xx: Fix refcount leak in am33xx_pm_probe . * spi: cadence-quadspi: fix suspend-resume implementations . * spi: fsl-spi: Fix CPM/QE mode Litte Endian . * spi: qup: Do not skip cleanup in remove"s error path . * staging: iio: resolver: ads1210: fix config mode . * staging: rtl8192e: Fix W_DISABLE# does not work after stop/start . * stat: fix inconsistency between struct stat and struct compat_stat . * sunrpc: only free unix grouplist after RCU settles . * tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH . * tty: serial: fsl_lpuart: adjust buffer length to the intended size . * udf: Check consistency of Space Bitmap Descriptor . * udf: Fix a slab-out-of-bounds write bug in udf_find_entry . * udf: Support splicing to file . * usb: chipidea: fix missing goto in `ci_hdrc_probe` . * usb: chipidea: imx: avoid unnecessary probe defer . * usb: dwc3: gadget: Change condition for processing suspend event . * usb: dwc3: pci: add support for the Intel Meteor Lake-S . * usb: gadget: tegra-xudc: Fix crash in vbus_draw . * usb: gadget: udc: renesas_usb3: Fix use after free bug in renesas_usb3_remove due to race condition . * usb: host: xhci-rcar: remove leftover quirk handling . * virt/coco/sev-guest: Add throttling awareness . * virt/coco/sev-guest: Carve out the request issuing logic into a helper . * virt/coco/sev-guest: Check SEV_SNP attribute at probe time . * virt/coco/sev-guest: Convert the sw_exit_info_2 checking to a switch-case . * virt/coco/sev-guest: Do some code style cleanups . * virt/coco/sev-guest: Remove the disable_vmpck label in handle_guest_request . * virt/coco/sev-guest: Simplify extended guest request handling . * virt/sev-guest: Return -EIO if certificate buffer is not large enough . * virtio_ring: do not update event idx on get_buf . * vmci_host: fix a race condition in vmci_host_poll causing GPF . * vmxnet3: use gro callback when UPT is enabled . * wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list . * wifi: ath6kl: minor fix for allocation size . * wifi: ath6kl: reduce WARN to dev_dbg in callback . * wifi: ath9k: hif_usb: fix memory leak of remain_skbs . * wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies . * wifi: brcmfmac: support CQM RSSI notification with older firmware . * wifi: iwlwifi: debug: fix crash in __iwl_err . * wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table . * wifi: iwlwifi: fw: fix memory leak in debugfs . * wifi: iwlwifi: fw: move memset before early return . * wifi: iwlwifi: make the loop for card preparation effective . * wifi: iwlwifi: mvm: check firmware response size . * wifi: iwlwifi: mvm: do not set CHECKSUM_COMPLETE for unsupported protocols . * wifi: iwlwifi: mvm: fix mvmtxq- greater than stopped handling . * wifi: iwlwifi: mvm: initialize seq variable . * wifi: iwlwifi: trans: do not trigger d3 interrupt twice . * wifi: iwlwifi: yoyo: Fix possible division by zero . * wifi: iwlwifi: yoyo: skip dump correctly on hw error . * wifi: mac80211: adjust scan cancel comment/check . * wifi: mt76: add missing locking to protect against concurrent rx/status calls . * wifi: mt76: fix 6GHz high channel not be scanned . * wifi: mt76: handle failure of vzalloc in mt7615_coredump_work . * wifi: mwifiex: mark OF related data as maybe unused . * wifi: rt2x00: Fix memory leak when handling surveys . * wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg . * wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg . * wifi: rtw88: mac: Return the original error from rtw_mac_power_switch . * wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser . * wifi: rtw89: fix potential race condition between napi_init and napi_enable . * writeback, cgroup: fix null-ptr-deref write in bdi_split_work_to_wbs . * x86/MCE/AMD: Fix memory leak when threshold_create_bank fails . * x86/PCI: Add quirk for AMD XHCI controller that loses MSI-X state in D3hot . * x86/bug: Prevent shadowing in __WARN_FLAGS . * x86/bugs: Enable STIBP for IBPB mitigated RETBleed . * x86/entry: Avoid very early RET . * x86/entry: Do not call error_entry for XENPV . * x86/entry: Move CLD to the start of the idtentry macro . * x86/entry: Move PUSH_AND_CLEAR_REGS out of error_entry . * x86/entry: Switch the stack after error_entry returns . * x86/fpu: Prevent FPU state corruption . * x86/kvm: Preserve BSP MSR_KVM_POLL_CONTROL across suspend/resume . * x86/msi: Fix msi message data shadow struct . * x86/pci/xen: Disable PCI/MSI masking for XEN_HVM guests . * x86/traps: Use pt_regs directly in fixup_bad_iret . * x86/tsx: Disable TSX development mode at boot . * x86: __memcpy_flushcache: fix wrong alignment if size greater than 2^32 . * xhci: fix debugfs register accesses while suspended . kernel-default-base changed: * Do not ship on s390x * Add exfat * Add _diag modules for included socket types ## Special Instructions and Notes: * Please reboot the system after installing this update.