The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read . - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent . - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure . - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status . - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size . - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly . - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled . - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service . - CVE-2021-28688: Fixed an issue introduced by XSA-365 . - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan . - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages . - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations . - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message . - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages . - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure . - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind . - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code . - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory . - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory . - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function . - CVE-2019-18814: Fixed a use-after-free when aa_label_parse fails in aa_audit_rule_init . - CVE-2021-3483: Fixed a use-after-free in nosy.c . - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy . - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution . - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode . - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure . - CVE-2020-36311: Fixed a denial of service by triggering destruction of a large SEV VM . - CVE-2020-36310: Fixed infinite loop for certain nested page faults . - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem . - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash . The following non-security bugs were fixed: - 0007-block-add-docs-for-gendisk-request_queue-refcount-he.patch: . - 0008-block-revert-back-to-synchronous-request_queue-remov.patch: . - 0009-blktrace-fix-debugfs-use-after-free.patch: . - ACPI: bus: Constify is_acpi_node and friends . - ACPICA: Always create namespace nodes using acpi_ns_create_node . - ACPICA: Enable sleep button on ACPI legacy wake . - ACPICA: Fix race in generic_serial_bus and GPIO op_region parameter handling . - ACPI: scan: Rearrange memory allocation in acpi_device_add . - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 . - ACPI: video: Add missing callback back for Sony VPCEH3U1E . - ALSA: aloop: Fix initialization of controls . - ALSA: ctxfi: cthw20k2: fix mask on conf to allow 4 bits . - ALSA: hda: Avoid spurious unsol event handling during S3/S4 . - ALSA: hda: Drop the BATCH workaround for AMD controllers . - ALSA: hda: generic: Fix the micmute led init state . - ALSA: hda/hdmi: Cancel pending works before suspend . - ALSA: hda/realtek: Add quirk for Clevo NH55RZQ . - ALSA: hda/realtek: Add quirk for Intel NUC 10 . - ALSA: hda/realtek: Apply dual codec quirks for MSI Godlike X570 board . - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air . - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro . - ALSA: hda/realtek: Enable headset mic of Acer SWIFT with ALC256 . - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO . - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 . - ALSA: usb: Add Plantronics C320-M USB ctrl msg delay quirk . - ALSA: usb-audio: Allow modifying parameters with succeeding hw_params calls . - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect . - ALSA: usb-audio: Apply the control quirk to Plantronics headsets . - ALSA: usb-audio: Disable USB autosuspend properly in setup_disable_autosuspend . - ALSA: usb-audio: Do not abort even if the clock rate differs . - ALSA: usb-audio: Drop bogus dB range in too low level . - ALSA: usb-audio: Fix cannot get freq eq errors on Dell AE515 sound bar . - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe . - ALSA: usb-audio: Fix RANGE setting not yet supported errors . - ALSA: usb-audio: fix use after free in usb_audio_disconnect . - ALSA: usb-audio: Skip the clock selector inquiry for single connections . - ALSA: usb: Use DIV_ROUND_UP instead of open-coding it . - amd/amdgpu: Disable VCN DPG mode for Picasso . - apparmor: check/put label on apparmor_sk_clone_security . - appletalk: Fix skb allocation size in loopback case . - arm64: make STACKPROTECTOR_PER_TASK configurable . - ASoC: ak4458: Add MODULE_DEVICE_TABLE . - ASoC: ak5558: Add MODULE_DEVICE_TABLE . - ASoC: cs42l42: Always wait at least 3ms after reset . - ASoC: cs42l42: Do not enable/disable regulator at Bias Level . - ASoC: cs42l42: Fix Bitclock polarity inversion . - ASoC: cs42l42: Fix channel width support . - ASoC: cs42l42: Fix mixer volume control . - ASoC: cygnus: fix for_each_child.cocci warnings . - ASoC: es8316: Simplify adc_pga_gain_tlv table . - ASoC: fsl_esai: Fix TDM slot setup for I2S mode . - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode . - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr . - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions . - ASoC: intel: atom: Stop advertising non working S24LE support . - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 . - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet . - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet . - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet . - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold . - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet . - ASoC: max98373: Added 30ms turn on/off time delay . - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 . - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 . - ASoC: rt5670: Add emulated "DAC1 Playback Switch" control . - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings . - ASoC: rt5670: Remove "HP Playback Switch" control . - ASoC: rt5670: Remove "OUT Channel Switch" control . - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe . - ASoC: simple-card-utils: Do not handle device clock . - ASoC: sunxi: sun4i-codec: fill ASoC card owner . - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips . - ath10k: fix wmi mgmt tx queue full due to race condition . - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr . - ath9k: fix transmitting to stations in dynamic SMPS mode . - atl1c: fix error return code in atl1c_probe . - atl1e: fix error return code in atl1e_probe . - batman-adv: initialize struct batadv_tvlv_tt_vlan_data- greater than reserved field . - binfmt_misc: fix possible deadlock in bm_register_write . - binfmt_misc: fix possible deadlock in bm_register_write . - blktrace-annotate-required-lock-on-do_blk_trace_setu.patch: . - blktrace-Avoid-sparse-warnings-when-assigning-q-blk_.patch: . - blktrace-break-out-of-blktrace-setup-on-concurrent-c.patch: . - block-clarify-context-for-refcount-increment-helpers.patch: . - block: rsxx: fix error return code of rsxx_pci_probe . - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data . - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl . - bnxt_en: reliably allocate IRQ table on reset to avoid crash . - bpf: Add sanity check for upper ptr_limit . - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args . - bpf: Declare __bpf_free_used_maps unconditionally . - bpf: Do not do bpf_cgroup_storage_set for kuprobe/tp programs . - bpf: Fix 32 bit src register truncation on div/mod . - bpf: Fix verifier jsgt branch analysis on max bound . - bpf_lru_list: Read double-checked variable once without lock . - bpf: Remove MTU check in __bpf_skb_max_len . - bpf: Simplify alu_limit masking for pointer arithmetic . - bpf, sockmap: Fix sk- greater than prot unhash op reset . - bpf,x64: Pad NOPs to make images converge more easily . - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet . - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet . - brcmfmac: clear EAP/association status bits on linkdown events . - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root . - btrfs: always pin deleted leaves when there are active tree mod log users . - btrfs: fix exhaustion of the system chunk array due to concurrent allocations . - btrfs: fix extent buffer leak on failure to copy root . - btrfs: fix race when cloning extent buffer during rewind of an old root . - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled . - btrfs: fix subvolume/snapshot deletion not triggered on mount . - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD . - bus: ti-sysc: Fix warning on unbind if reset is not deasserted . - can: c_can: move runtime PM enable/disable to c_can_platform . - can: c_can_pci: c_can_pci_remove: fix use-after-free . - can: flexcan: assert FRZ bit in flexcan_chip_freeze . - can: flexcan: enable RX FIFO after FRZ/HALT valid . - can: flexcan: flexcan_chip_freeze: fix chip freeze for missing bitrate . - can: flexcan: invoke flexcan_chip_freeze to enter freeze mode . - can: m_can: m_can_do_rx_poll: fix extraneous msg loss warning . - can: peak_usb: add forgotten supported devices . - can: peak_usb: Revert can: peak_usb: add forgotten supported devices . - can: skb: can_skb_set_owner: fix ref counting if socket was closed before setting skb ownership . - cdc-acm: fix BREAK rx code path adding necessary calls . - cifs: change noisy error message to FYI . - cifs: check pointer before freeing . - cifs_debug: use %pd instead of messing with - greater than d_name . - cifs: do not send close in compound create+close requests . - cifs: New optype for session operations . - cifs: print MIDs in decimal notation . - cifs: return proper error code in statfs . - cifs: Tracepoints and logs for tracing credit changes . - clk: fix invalid usage of list cursor in register . - clk: fix invalid usage of list cursor in unregister . - clk: socfpga: fix iomem pointer cast on 64-bit . - completion: Drop init_completion define . - configfs: fix a use-after-free in __configfs_open_file . - config: net: freescale: change xgmac-mdio to built-in References: bsc#1183015,bsc#1182595 - crypto: aesni - prevent misaligned buffers on the stack . - crypto: arm64/sha - add missing module aliases . - crypto: bcm - Rename struct device_private to bcm_device_private . - crypto: Kconfig - CRYPTO_MANAGER_EXTRA_TESTS requires the manager . - crypto: tcrypt - avoid signed overflow in byte count . - Delete patches.suse/sched-Reenable-interrupts-in-do_sched_yield.patch - dm mpath: switch paths in dm_blk_ioctl code path . - drivers/misc/vmw_vmci: restrict too big queue size in qp_host_alloc_queue . - drivers: video: fbcon: fix NULL dereference in fbcon_cursor . - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails . - drm/amdgpu: Add check to prevent IH overflow . - drm/amdgpu: check alignment on CPU page for bo map . - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings . - drm/amdgpu: fix parameter error of RREG32_PCIE in amdgpu_regs_pcie . - drm/amdkfd: Put ACPI table after using it - drm/amd/powerplay: fix spelling mistake smu_state_memroy_block - greater than - drm/compat: Clear bounce structures . - drm/hisilicon: Fix use-after-free . - drm/i915: Fix invalid access to ACPI _DSM objects . - drm/i915: Reject 446-480MHz HDMI clock on GLK . - drm/mediatek: Fix aal size config - drm: meson_drv add shutdown function . - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register . - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs . - drm/msm/dsi: Correct io_start for MSM8994 . - drm/msm: Fix races managing the OOB state for timestamp vs - drm/msm: fix shutdown hook in case GPU components failed to bind . - drm/msm: Fix use-after-free in msm_gem with carveout - drm/msm: Fix WARN_ON splat in _free_object - drm/msm/gem: Add obj- greater than lock wrappers - drm/msm: Ratelimit invalid-fence message . - drm/msm: Set drvdata to NULL when msm_drm_init fails . - drm/nouveau: bail out of nouveau_channel_new if channel init fails - drm/nouveau/kms: handle mDP connectors . - drm/panfrost: Do not corrupt the queue mutex on open/close - drm/panfrost: Fix job timeout handling - drm/panfrost: Remove unused variables in panfrost_job_close - drm/radeon: fix AGP dependency . - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC - drm/sched: Cancel and flush all outstanding jobs before finish . - drm/sun4i: tcon: fix inverted DCLK polarity - drm/tegra: sor: Grab runtime PM reference across reset . - drm/vc4: hdmi: Restore cec physical address on reconnect - efi: use 32-bit alignment for efi_guid_t literals . - enetc: Fix reporting of h/w packet counters . - epoll: check for events when removing a timed out thread from the wait queue . - ethernet: alx: fix order of calls on resume . - exec: Move would_dump into flush_old_exec . - exfat: add missing MODULE_ALIAS_FS . - exfat: add the dummy mount options to be backward compatible with staging/exfat . - extcon: Add stubs for extcon_register_notifier_all functions . - extcon: Fix error handling in extcon_dev_register . - fbdev: aty: SPARC64 requires FB_ATY_CT . - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent . - flow_dissector: fix byteorder of dissected ICMP ID . - fsl/fman: check dereferencing null pointer . - fsl/fman: fix dereference null return value . - fsl/fman: fix eth hash table allocation . - fsl/fman: fix unreachable code . - fsl/fman: use 32-bit unsigned integer . - fuse: fix bad inode . - fuse: fix live lock in fuse_iget . - fuse: verify write return . - gcc-plugins: drop support for GCC less than= 4.7 . - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again . - gcc-plugins: simplify GCC plugin-dev capability test . - gianfar: Account for Tx PTP timestamp in the skb headroom . - gianfar: Fix TX timestamping with a stacked DSA driver . - gianfar: Handle error code at MAC address change . - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP . - Goodix Fingerprint device is not a modem . - gpiolib: acpi: Add missing IRQF_ONESHOT . - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 . - gpio: zynq: fix reference leak in zynq_gpio functions . - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 . - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter . - HSI: Fix PM usage counter unbalance in ssi_hw_init . - hwmon: Fix PM usage counter unbalance in ina3221_write_enable . - i2c: rcar: faster irq code to minimize HW race condition . - i2c: rcar: optimize cacheline to minimize HW race condition . - i40e: Fix parameters in aq_get_phy_register . - i40e: Fix sparse error: "vsi- greater than netdev" could be null . - iavf: Fix incorrect adapter get in iavf_resume . - iavf: use generic power management . - ibmvnic: add comments for spinlock_t definitions . - ibmvnic: always store valid MAC address . - ibmvnic: avoid multiple line dereference . - ibmvnic: fix block comments . - ibmvnic: fix braces . - ibmvnic: fix miscellaneous checks . - ibmvnic: Fix possibly uninitialized old_num_tx_queues variable warning . - ibmvnic: merge do_change_param_reset into do_reset . - ibmvnic: prefer strscpy over strlcpy . - ibmvnic: prefer "unsigned long" over "unsigned long int" . - ibmvnic: remove excessive irqsave . - ibmvnic: remove unnecessary rmb inside ibmvnic_poll . - ibmvnic: remove unused spinlock_t stats_lock definition . - ibmvnic: rework to ensure SCRQ entry reads are properly ordered . - ibmvnic: simplify reset_long_term_buff function . - ibmvnic: substitute mb with dma_wmb for send_*crq* functions . - ice: fix memory leak if register_netdev_fails . - ice: fix memory leak in ice_vsi_setup . - ice: Fix state bits on LLDP mode switch . - ice: remove DCBNL_DEVRESET bit from PF state . - ice: renegotiate link after FW DCB on . - ice: report correct max number of TCs . - ice: update the number of available RSS queues . - igc: Fix igc_ptp_rx_pktstamp . - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask . - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel . - iio: adis16400: Fix an error code in adis16400_initial_setup . - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler . - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel . - iio: hid-sensor-prox: Fix scale not correct issue . - iio: hid-sensor-temperature: Fix issues of timestamp channel . - include/linux/sched/mm.h: use rcu_dereference in in_vfork . - Input: applespi - do not wait for responses to commands indefinitely . - Input: elantech - fix protocol errors for some trackpoints in SMBus mode . - Input: i8042 - add ASUS Zenbook Flip to noselftest list . - Input: raydium_ts_i2c - do not send zero length . - Input: xpad - add support for PowerA Enhanced Wired Controller for Xbox Series X|S . - iommu/amd: Fix sleeping in atomic in increase_address_space . - iommu/intel: Fix memleak in intel_irq_remapping_alloc . - iommu/qcom: add missing put_device call in qcom_iommu_of_xlate . - iommu/vt-d: Add get_domain_info helper . - iommu/vt-d: Avoid panic if iommu init fails in tboot system . - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid . - iommu/vt-d: Do not use flush-queue when caching-mode is on . - iommu/vt-d: Fix general protection fault in aux_detach_device . - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices . - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev . - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev . - iommu/vt-d: Use device numa domain if RHSA is missing . - ionic: linearize tso skb with too many frags . - kABI: powerpc/pmem: Include pmem prototypes . - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig . - kbuild: change *FLAGS_less thanbasetarget greater than .o to take the path relative to $ . - kbuild: dummy-tools, fix inverted tests for gcc . - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc . - kbuild: Fail if gold linker is detected . - kbuild: improve cc-option to clean up all temporary files . - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled . - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc . - kbuild: stop filtering out $ from cc-option base . - kbuild: use -S instead of -E for precise cc-option test in Kconfig . - kconfig: introduce m32-flag and m64-flag . - KVM: nVMX: Properly handle userspace interrupt window request . - KVM: SVM: Clear the CR4 register on reset . - KVM: x86: Add helpers to perform CPUID-based guest vendor check . - KVM: x86: Add RIP to the kvm_entry, i.e. VM-Enter, tracepoint Needed as a dependency of 0b40723a827 . - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off . - KVM: x86: do not reset microcode version on INIT or RESET . - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs . - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR . - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries . - KVM: x86: Set so called "reserved CR3 bits in LM mask" at vCPU reset . - libbpf: Clear map_info before each bpf_obj_get_info_by_fd . - libbpf: Fix BTF dump of pointer-to-array-of-struct . - libbpf: Fix INSTALL flag order . - libbpf: Only create rx and tx XDP rings when necessary . - libbpf: Use SOCK_CLOEXEC when opening the netlink socket . - lib/syscall: fix syscall registers retrieval on 32-bit platforms . - locking/mutex: Fix non debug version of mutex_lock_io_nested . - loop-be-paranoid-on-exit-and-prevent-new-additions-r.patch: . - mac80211: choose first enabled channel for monitor . - mac80211: fix double free in ibss_leave . - mac80211: fix rate mask reset . - mac80211: fix TXQ AC confusion . - mdio: fix mdio-thunder.c dependency build error . - media: cros-ec-cec: do not bail on device_init_wakeup failure . - media: cx23885: add more quirks for reset DMA on some AMD IOMMU . - media: mceusb: Fix potential out-of-bounds shift . - media: mceusb: sanity check for prescaler value . - media: rc: compile rc-cec.c into rc-core . - media: usbtv: Fix deadlock on suspend . - media: uvcvideo: Allow entities with no pads . - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate . - media: v4l: vsp1: Fix bru null pointer access . - media: v4l: vsp1: Fix uif null pointer access . - media: vicodec: add missing v4l2_ctrl_request_hdl_put . - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom . - misc: fastrpc: restrict user apps from sending kernel RPC messages . - misc/pvpanic: Export module FDT device table . - misc: rtsx: init of rts522a add OCP power off when no card is present . - mISDN: fix crash in fritzpci . - mmc: core: Fix partition switch time for eMMC . - mmc: cqhci: Fix random crash when remove mmc module/card . - mmc: mxs-mmc: Fix a resource leak in an error handling path in "mxs_mmc_probe" . - mmc: sdhci-esdhc-imx: fix kernel panic when remove module . - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN . - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page . - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa . - mount: fix mounting of detached mounts onto targets that reside on shared mounts . - mt76: dma: do not report truncated frames to mac80211 . - mwifiex: pcie: skip cancel_work_sync on reset failure path . - net: arc_emac: Fix memleak in arc_mdio_probe . - net: atheros: switch from "pci_" to "dma_" API . - net: b44: fix error return code in b44_init_one . - net: bonding: fix error return code of bond_neigh_init . - net: cdc-phonet: fix data-interface release on probe failure . - net: core: introduce __netdev_notify_peers . - netdevsim: init u64 stats for 32bit hardware . - net: dsa: rtl8366: Fix VLAN semantics . - net: dsa: rtl8366: Fix VLAN set-up . - net: dsa: rtl8366rb: Support all 4096 VLANs . - net: enic: Cure the enic api locking trainwreck . - net: ethernet: aquantia: Fix wrong return value . - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop . - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours . - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port . - net: ethernet: ti: cpsw: fix error return code in cpsw_probe . - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable . - net: fec: Fix PHY init after phy_reset_after_clk_enable . - net: fec: Fix reference count leak in fec series ops . - net: gemini: Fix another missing clk_disable_unprepare in probe . - net: gemini: Fix missing free_netdev in error path of gemini_ethernet_port_probe . - net: gianfar: Add of_node_put before goto statement . - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device . - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup . - net: hns3: Remove the left over redundant check assignment . - net: korina: cast KSEG0 address to pointer in kfree . - net: korina: fix kfree of rx/tx descriptor array . - net: lantiq: Wait for the GPHY firmware to be ready . - net/mlx5: Disable devlink reload for lag devices . - net/mlx5: Disable devlink reload for multi port slave device . - net/mlx5: Disallow RoCE on lag device . - net/mlx5: Disallow RoCE on multi port slave device . - net/mlx5e: E-switch, Fix rate calculation division . - net/mlx5e: E-switch, Fix rate calculation for overflow . - net/mlx5: Fix PPLM register mapping . - net: mvneta: fix double free of txq- greater than buf . - net: mvneta: make tx buffer array agnostic . - net: pasemi: fix error return code in pasemi_mac_open . - net: phy: broadcom: Only advertise EEE for supported modes . - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init . - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup . - net: sched: disable TCQ_F_NOLOCK for pfifo_fast - netsec: restore phy power state after controller reset . - net: spider_net: Fix the size used in a "dma_free_coherent" call . - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues . - net: stmmac: removed enabling eee in EEE set callback . - net: stmmac: use netif_tx_start|stop_all_queues function . - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues call . - net: usb: ax88179_178a: fix missing stop entry in driver_info . - net: usb: qmi_wwan: allow qmimux add/del with master up . - net: usb: qmi_wwan: support ZTE P685M modem . - net: wan/lmc: unregister device when no matching device is found . - nfp: flower: fix pre_tun mask id allocation . - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT . - nvme-fabrics: fix kato initialization . - nvme-fabrics: only reserve a single tag . - nvme-fc: fix racing controller reset and create association . - nvme-hwmon: Return error code when registration fails . - nvme: merge nvme_keep_alive into nvme_keep_alive_work . - nvme: return an error if nvme_set_queue_count fails . - nvmet-rdma: Fix list_del corruption on queue establishment failure . - objtool: Fix .cold section suffix check for newer versions of GCC . - objtool: Fix error handling for STD/CLD warnings . - objtool: Fix retpoline detection in asm code . - ovl: fix dentry leak in ovl_get_redirect . - ovl: fix out of date comment and unreachable code . - ovl: fix regression with re-formatted lower squashfs . - ovl: fix unneeded call to ovl_change_flags . - ovl: fix value of i_ino for lower hardlink corner case . - ovl: initialize error in ovl_copy_xattr . - ovl: relax WARN_ON when decoding lower directory file handle . - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse . - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller . - PCI: Align checking of syscall user config accessors . - PCI: Decline to resize resources if boot config must be preserved . - PCI: Fix pci_register_io_range memory leak . - PCI: mediatek: Add missing of_node_put to fix reference leak . - PCI: qcom: Use PHY_REFCLK_USE_PAD only for ipq8064 . - PCI: xgene-msi: Fix race in installing chained irq handler . - pinctrl: rockchip: fix restore error in resume . - Platform: OLPC: Fix probe error handling . - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 . - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag . - platform/x86: acer-wmi: Add new force_caps module parameter . - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices . - platform/x86: acer-wmi: Cleanup accelerometer device handling . - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines . - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 . - platform/x86: intel-vbtn: Stop reporting SW_DOCK events . - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state . - PM: EM: postpone creating the debugfs dir till fs_initcall . - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter . - PM: runtime: Fix ordering in pm_runtime_get_suppliers . - PM: runtime: Fix race getting/putting suppliers at probe . - post.sh: Return an error when module update fails . - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry . - powerpc/book3s64/radix: Remove WARN_ON in destroy_context . - powerpc/pmem: Include pmem prototypes . - powerpc/pseries/mobility: handle premature return from H_JOIN . - powerpc/pseries/mobility: use struct for shared state . - powerpc/pseries/ras: Remove unused variable "status" . - powerpc/sstep: Check instruction validity against ISA version before emulation . - powerpc/sstep: Fix darn emulation . - powerpc/sstep: Fix incorrect return from analyze_instr . - powerpc/sstep: Fix load-store and update emulation . - printk: fix deadlock when kernel panic . - proc: fix lookup in /proc/net subdirectories after setns . - pwm: rockchip: rockchip_pwm_probe: Remove superfluous clk_unprepare . - qlcnic: fix error return code in qlcnic_83xx_restart_hw . - qxl: Fix uninitialised struct field head.surface_id . - random: fix the RNDRESEEDCRNG ioctl . - RAS/CEC: Correct ce_add_elem"s returned values . - RDMA/hns: Disable RQ inline by default . - RDMA/hns: Fix type of sq_signal_bits . - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes - regulator: bd9571mwv: Fix AVS and DVFS voltage range . - Revert net: bonding: fix error return code of bond_neigh_init . - rpadlpar: fix potential drc_name corruption in store functions . - rpm/check-for-config-changes: add -mrecord-mcount ignore Added by 3b15cdc15956 upstream. - rpm/check-for-config-changes: Also ignore AS_VERSION added in 5.12. - rpm/check-for-config-changes: comment on the list To explain what it actually is. - rpm/check-for-config-changes: declare sed args as an array So that we can reuse it in both seds. This also introduces IGNORED_CONFIGS_RE array which can be easily extended. - rpm/check-for-config-changes: define ignores more strictly * search for whole words, so make wildcards explicit * use " for quoting * prepend CONFIG_ dynamically, so it need not be in the list - rpm/check-for-config-changes: sort the ignores They are growing so to make them searchable by humans. - rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package The devel package requires the kernel binary package itself for building modules externally. - rsi: Fix TX EAPOL packet handling against iwlwifi AP . - rsi: Move card interrupt handling to RX thread . - rsxx: Return -EFAULT if copy_to_user fails . - s390/cio: return -EFAULT if copy_to_user fails . - s390/cio: return -EFAULT if copy_to_user fails . - s390/crypto: return -EFAULT if copy_to_user fails . - s390/dasd: fix hanging IO request during DASD driver unbind . - s390/qeth: fix memory leak after failed TX Buffer allocation . - s390/qeth: fix notification for pending buffers during teardown . - s390/qeth: improve completion of pending TX buffers . - s390/qeth: schedule TX NAPI on QAOB completion . - s390/vtime: fix increased steal time accounting . - samples, bpf: Add missing munmap in xdpsock . - samples/bpf: Fix possible hang in xdpsock with multiple threads . - scsi: ibmvfc: Fix invalid state machine BUG_ON . - scsi: lpfc: Change wording of invalid pci reset log message . - scsi: lpfc: Correct function header comments related to ndlp reference counting . - scsi: lpfc: Fix ADISC handling that never frees nodes . - scsi: lpfc: Fix crash caused by switch reboot . - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery . - scsi: lpfc: Fix FLOGI failure due to accessing a freed node . - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe . - scsi: lpfc: Fix lpfc_els_retry possible null pointer dereference . - scsi: lpfc: Fix nodeinfo debugfs output . - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb . - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN . - scsi: lpfc: Fix pt2pt connection does not recover after LOGO . - scsi: lpfc: Fix pt2pt state transition causing rmmod hang . - scsi: lpfc: Fix reftag generation sizing errors . - scsi: lpfc: Fix stale node accesses on stale RRQ request . - scsi: lpfc: Fix status returned in lpfc_els_retry error exit path . - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf . - scsi: lpfc: Fix use after free in lpfc_els_free_iocb . - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid . - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports . - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes . - scsi: lpfc: Update lpfc version to 12.8.0.8 . - scsi: target: pscsi: Avoid OOM in pscsi_map_sg . - scsi: target: pscsi: Clean up after failure in pscsi_map_sg . - selftests/bpf: Mask bpf_csum_diff return value to 16 bits in test_verifier . - selftests/bpf: No need to drop the packet when there is no geneve opt . - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed . - selinux: fix error initialization in inode_doinit_with_dentry . - selinux: Fix error return code in sel_ib_pkey_sid_slow . - selinux: fix inode_doinit_with_dentry LABEL_INVALID error handling . - smb3: add dynamic trace point to trace when credits obtained . - smb3: fix crediting for compounding when only one request in flight . - smb3: Fix out-of-bounds bug in SMB2_negotiate . - soc/fsl: qbman: fix conflicting alignment attributes . - software node: Fix node registration . - spi: stm32: make spurious and overrun interrupts visible . - squashfs: fix inode lookup sanity checks . - squashfs: fix xattr id and id lookup sanity checks . - stop_machine: mark helpers __always_inline . - thermal/core: Add NULL pointer check before using cooling device stats . - udlfb: Fix memory leak in dlfb_usb_probe . - Update bug reference for USB-audio fixes - USB: cdc-acm: downgrade message to debug . - USB: cdc-acm: fix double free on probe failure . - USB: cdc-acm: fix use-after-free after probe failure . - USB: cdc-acm: untangle a circular dependency between callback and softint . - USB: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board . - USB: dwc2: Prevent core suspend when port connection flag is 0 . - USB: dwc3: gadget: Fix dep- greater than interval for fullspeed interrupt . - USB: dwc3: gadget: Fix setting of DEPCFG.bInterval_m1 . - USB: dwc3: qcom: Add missing DWC3 OF node refcount decrement . - USB: dwc3: qcom: Honor wakeup enabled/disabled state . - USB: gadget: configfs: Fix KASAN use-after-free . - USB: gadget: f_uac1: stop playback on function disable . - USB: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot . - USB: gadget: udc: amd5536udc_pci fix null-ptr-dereference . - USB: gadget: u_ether: Fix a configfs return code . - USBip: Fix incorrect double assignment to udc- greater than ud.tcp_rx . - USBip: fix stub_dev to check for stream socket . - USBip: fix stub_dev usbip_sockfd_store races leading to gpf . - USBip: fix vhci_hcd attach_store races leading to gpf . - USBip: fix vhci_hcd to check for stream socket . - USBip: fix vudc to check for stream socket . - USBip: fix vudc usbip_sockfd_store races leading to gpf . - USBip: tools: fix build error for multiple definition . - USBip: vhci_hcd fix shift out-of-bounds in vhci_hub_control . - USB: musb: Fix suspend with devices connected for a64 . - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem . - USB: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM . - USB: replace hardcode maximum usb string length by definition . - USB: serial: ch341: add new Product ID . - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter . - USB: serial: cp210x: add some more GE USB IDs . - USB: serial: ftdi_sio: fix FTX sub-integer prescaler . - USB: serial: io_edgeport: fix memory leak in edge_startup . - USB-storage: Add quirk to defeat Kindle"s automatic unload . - USB: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- . - USB: usblp: fix a hang in poll if disconnected . - USB: xhci: do not perform Soft Retry for some xHCI hosts . - USB: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing . - USB: xhci-mtk: fix broken streams issue on 0.96 xHCI . - use __netdev_notify_peers in ibmvnic . - video: fbdev: acornfb: remove free_unused_pages - video: hyperv_fb: Fix a double free in hvfb_probe . - VMCI: Use set_page_dirty_lock when unregistering guest memory . - vt/consolemap: do font sum unsigned . - watchdog: mei_wdt: request stop on unregister . - wireguard: device: do not generate ICMP for non-IP packets . - wireguard: kconfig: use arm chacha even with no neon . - wireguard: selftests: test multiple parallel streams . - wlcore: Fix command execute failure 19 for wl12xx . - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task . - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall . - x86/ioapic: Ignore IRQ2 again . - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc . - xen/events: avoid handling the same event on two cpus at the same time . - xen/events: do not unmask an event channel when an eoi is pending . - xen/events: fix setting irq affinity . - xen/events: reset affinity of 2-level event when tearing it down . - Xen/gnttab: handle p2m update errors on a per-slot basis . - xen-netback: respect gnttab_map_refs"s return value . - xfs: group quota should return EDQUOT when prj quota enabled . - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state . - xhci: Improve detection of device initiated wake signal . Special Instructions and Notes: Please reboot the system after installing this update.