Unbreakable Enterprise kernel-container security update

[4.14.35-2047.514.3.el7]

• uek-rpm: Update OL7 SecureBoot certificate files (Saeed Mirzamohammadi) [Orabug: 34219958]
  [4.14.35-2047.514.2]
• perf: Fix sys_perf_event_open() race against self (Peter Zijlstra) [Orabug: 34207044] {CVE-2022-1729}
• debug: Lock down kgdb (Stephen Brennan) [Orabug: 34207043] {CVE-2022-21499}
  [4.14.35-2047.514.1]
• uek: kabi: Correct kABI symbols (Saeed Mirzamohammadi) [Orabug: 34162205]
• ALSA: pcm: Fix races among concurrent hw_params and hw_free calls (Takashi Iwai) [Orabug: 34007906] {CVE-2022-1048}
• ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls (Takashi Iwai) [Orabug: 34007906] {CVE-2022-1048}
• ALSA: pcm: Fix races among concurrent prealloc proc writes (Takashi Iwai) [Orabug: 34007906] {CVE-2022-1048}
• ALSA: pcm: Fix races among concurrent read/write and buffer changes (Takashi Iwai) [Orabug: 34007906] {CVE-2022-1048}
• Revert ‘net: micrel: fix KS8851_MLL Kconfig’ (Marek Vasut)
• Revert ‘net: ethernet: stmmac: fix altr_tse_pcs function when using a fixed-link’ (Greg Kroah-Hartman)
• x86/cpu: Load microcode during restore_processor_state() (Borislav Petkov)
• ASoC: dmaengine: Restore NULL prepare_slave_config() callback (Codrin Ciubotariu)
  [4.14.35-2047.514.0]
• memstick: rtsx_usb_ms: fix UAF (Tong Zhang) [Orabug: 34132125] {CVE-2022-0487}
• A/A Bonding: Allow setting rdmaip_active_bonding_failback param (Sharath Srinivasan) [Orabug: 34130294]
• drm/vgem: Close use-after-free race in vgem_gem_create (Daniel Vetter) [Orabug: 34111756]
• drm/vgem: Reclassify buffer creation debug message (Chris Wilson) [Orabug: 34111756]
• nbd: Fix NULL pointer in flush_workqueue (Sun Ke) [Orabug: 34111753]
• IB/cma: Allow XRC INI QPs to set their local ACK timeout (Hakon Bugge) [Orabug: 34094202]
• vfs: make sync_filesystem return errors from ->sync_fs (Darrick J. Wong) [Orabug: 34084997]
• xfs: prevent UAF in xfs_log_item_in_current_chkpt (Darrick J. Wong) [Orabug: 34084997]
• xfs: check sb_meta_uuid for dabuf buffer recovery (Dave Chinner) [Orabug: 34084997]
• xfs: only run COW extent recovery when there are no live extents (Darrick J. Wong) [Orabug: 34084997]
• rds/ib: Fix ib_rx_total_frags while freeing frags (Praveen Kumar Kannoju) [Orabug: 34066623]
• rds: ib: Force 16-byte alignment on rds_ib_device (Hakon Bugge) [Orabug: 34043118]
• rds: ib: INFO: trying to register non-static key during rmmod (Freddy Carrillo) [Orabug: 34041727]
• mlx4_core: calculate log_num_mtt based on total system memory (Wei Lin Guay) [Orabug: 26526968] [Orabug: 33602562]
• xen/x86: Add interface for querying amount of host memory (Boris Ostrovsky) [Orabug: 26526923] [Orabug: 33602562]
• Linux 4.14.276 (Greg Kroah-Hartman)
• i2c: pasemi: Wait for write xfers to finish (Martin Poviser)
• smp: Fix offline cpu check in flush_smp_call_function_queue() (Nadav Amit)
• ARM: davinci: da850-evm: Avoid NULL pointer dereference (Nathan Chancellor)
• ALSA: pcm: Test for ‘silence’ field in struct ‘pcm_format_data’ (Fabio M. De Francesco)
• gcc-plugins: latent_entropy: use /dev/urandom (Jason A. Donenfeld)
• mm: kmemleak: take a full lowmem check in kmemleak_*_phys() (Patrick Wang)
• mm, page_alloc: fix build_zonerefs_node() (Juergen Gross)
• drivers: net: slip: fix NPD bug in sl_tx_timeout() (Duoming Zhou)
• scsi: mvsas: Add PCI ID of RocketRaid 2640 (Alexey Galakhov)
• gpu: ipu-v3: Fix dev_dbg frequency output (Leo Ruan)
• ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs (Christian Lamparter)
• net: micrel: fix KS8851_MLL Kconfig (Randy Dunlap)
• scsi: ibmvscsis: Increase INITIAL_SRP_LIMIT to 1024 (Tyrel Datwyler)
• scsi: target: tcmu: Fix possible page UAF (Xiaoguang Wang)
• Drivers: hv: vmbus: Prevent load re-ordering when reading ring buffer (Michael Kelley)
• drm/amdkfd: Check for potential null return of kmalloc_array() (QintaoShen)
• drm/amd: Add USBC connector ID (Aurabindo Pillai)
• cifs: potential buffer overflow in handling symlinks (Harshit Mogalapalli)
• nfc: nci: add flush_workqueue to prevent uaf (Lin Ma)
• net: ethernet: stmmac: fix altr_tse_pcs function when using a fixed-link (Dinh Nguyen)
• mlxsw: i2c: Fix initialization error flow (Vadim Pasternak)
• gpiolib: acpi: use correct format characters (Linus Torvalds)
• veth: Ensure eth header is in skb’s linear part (Guillaume Nault)
• memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe (Miaoqian Lin)
• xfrm: policy: match with both mark and mask on user interfaces (Xin Long)
• cgroup: Use open-time cgroup namespace for process migration perm checks (Tejun Heo)
• cgroup: Allocate cgroup_file_ctx for kernfs_open_file->priv (Tejun Heo)
• cgroup: Use open-time credentials for process migraton perm checks (Tejun Heo)
• mm/sparsemem: fix ‘mem_section’ will never be NULL gcc 12 warning (Waiman Long)
• arm64: module: remove (NOLOAD) from linker script (Fangrui Song)
• mm: don’t skip swap entry even if zap_details specified (Peter Xu)
• dmaengine: Revert ‘dmaengine: shdma: Fix runtime PM imbalance on error’ (Vinod Koul)
• tools build: Use instead of to get embedded libperl’s ccopts (Arnaldo Carvalho de Melo)
• perf: qcom_l2_pmu: fix an incorrect NULL check on list iterator (Xiaomeng Tong)
• arm64: patch_text: Fixup last cpu should be master (Guo Ren)
• btrfs: fix qgroup reserve overflow the qgroup limit (Ethan Lien)
• x86/speculation: Restore speculation related MSRs during S3 resume (Pawan Gupta)
• x86/pm: Save the MSR validity status at context setup (Pawan Gupta)
• mm/mempolicy: fix mpol_new leak in shared_policy_replace (Miaohe Lin)
• mmmremap.c: avoid pointless invalidate_range_start/end on mremap(old_size=0) (Paolo Bonzini)
• Revert ‘mmc: sdhci-xenon: fix annoying 1.8V regulator warning’ (Pali Rohar)
• drbd: Fix five use after free bugs in get_initial_state (Lv Yunlong)
• drm/imx: Fix memory leak in imx_pd_connector_get_modes (Jose Exposito)
• net: stmmac: Fix unset max_speed difference between DT and non-DT platforms (Chen-Yu Tsai)
• scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (Christophe JAILLET)
• drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() (Dan Carpenter)
• mm: fix race between MADV_FREE reclaim and blkdev direct IO read (Mauricio Faria de Oliveira)
• net: add missing SOF_TIMESTAMPING_OPT_ID support (Willem de Bruijn)
• ipv6: add missing tx timestamping on IPPROTO_RAW (Willem de Bruijn)
• parisc: Fix CPU affinity for Lasi, WAX and Dino chips (Helge Deller)
• jfs: prevent NULL deref in diFree (Haimin Zhang)
• virtio_console: eliminate anonymous module_init & module_exit (Randy Dunlap)
• serial: samsung_tty: do not unlock port->lock for uart_write_wakeup() (Jiri Slaby)
• NFS: swap-out must always use STABLE writes. (NeilBrown)
• NFS: swap IO handling is slightly different for O_DIRECT IO (NeilBrown)
• SUNRPC/call_alloc: async tasks mustn’t block waiting for memory (NeilBrown)
• w1: w1_therm: fixes w1_seq for ds28ea00 sensors (Lucas Denefle)
• init/main.c: return 1 from handled __setup() functions (Randy Dunlap)
• Bluetooth: Fix use after free in hci_send_acl (Luiz Augusto von Dentz)
• xtensa: fix DTC warning unit_address_format (Max Filippov)
• usb: dwc3: omap: fix ‘unbalanced disables for smps10_out1’ on omap5evm (H. Nikolaus Schaller)
• scsi: libfc: Fix use after free in fc_exch_abts_resp() (Jianglei Nie)
• MIPS: fix fortify panic when copying asm exception handlers (Alexander Lobakin)
• bnxt_en: Eliminate unintended link toggle during FW reset (Michael Chan)
• macvtap: advertise link netns via netlink (Sven Eckelmann)
• net/smc: correct settings of RMB window update limit (Dust Li)
• scsi: aha152x: Fix aha152x_setup() __setup handler return value (Randy Dunlap)
• scsi: pm8001: Fix pm8001_mpi_task_abort_resp() (Damien Le Moal)
• dm ioctl: prevent potential spectre v1 gadget (Jordy Zomer)
• iommu/arm-smmu-v3: fix event handling soft lockup (Zhou Guanghui)
• PCI: aardvark: Fix support for MSI interrupts (Pali Rohar)
• powerpc: Set crashkernel offset to mid of RMA region (Sourabh Jain)
• power: supply: axp20x_battery: properly report current when discharging (Evgeny Boger)
• scsi: bfa: Replace snprintf() with sysfs_emit() (Yang Guang)
• scsi: mvsas: Replace snprintf() with sysfs_emit() (Yang Guang)
• powerpc: dts: t104xrdb: fix phy type for FMAN 4/5 (Maxim Kiselev)
• ptp: replace snprintf with sysfs_emit (Yang Guang)
• ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 (Zekun Shen)
• KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs (Jim Mattson)
• ARM: 9187/1: JIVE: fix return value of __setup handler (Randy Dunlap)
• rtc: wm8350: Handle error for wm8350_register_irq (Jiasheng Jiang)
• ubifs: Rectify space amount budget for mkdir/tmpfile operations (Zhihao Cheng)
• KVM: x86: Forbid VMM to set SYNIC/STIMER MSRs when SynIC wasn’t activated (Vitaly Kuznetsov)
• openvswitch: Fixed nd target mask field in the flow dump. (Martin Varghese)
• ARM: dts: spear13xx: Update SPI dma properties (Kuldeep Singh)
• ARM: dts: spear1340: Update serial node properties (Kuldeep Singh)
• ASoC: topology: Allow TLV control to be either read or write (Amadeusz Slawinski)
• ubi: fastmap: Return error code if memory allocation fails in add_aeb() (Zhihao Cheng)
• mm/memcontrol: return 1 from cgroup.memory __setup() handler (Randy Dunlap)
• mm/mmap: return 1 from stack_guard_gap __setup() handler (Randy Dunlap)
• ACPI: CPPC: Avoid out of bounds access when parsing _CPC data (Rafael J. Wysocki)
• ubi: Fix race condition between ctrl_cdev_ioctl and ubi_cdev_ioctl (Baokun Li)
• pinctrl: pinconf-generic: Print arguments for bias-pull-* (Chen-Yu Tsai)
• gfs2: Make sure FITRIM minlen is rounded up to fs block size (Andrew Price)
• can: mcba_usb: properly check endpoint type (Pavel Skripkin)
• can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path (Hangyu Hua)
• ubifs: rename_whiteout: correct old_dir size computing (Baokun Li)
• ubifs: setflags: Make dirtied_ino_d 8 bytes aligned (Zhihao Cheng)
• ubifs: Add missing iput if do_tmpfile() failed in rename whiteout (Zhihao Cheng)
• ubifs: rename_whiteout: Fix double free for whiteout_ui->data (Zhihao Cheng)
• KVM: Prevent module exit until all VMs are freed (David Matlack)
• scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (Saurav Kashyap)
• powerpc/lib/sstep: Fix build errors with newer binutils (Anders Roxell)
• powerpc/lib/sstep: Fix ‘sthcx’ instruction (Anders Roxell)
• mmc: host: Return an error when ->enable_sdio_irq() ops is missing (Ulf Hansson)
• media: hdpvr: initialize dev->worker at hdpvr_register_videodev (Dongliang Mu)
• video: fbdev: sm712fb: Fix crash in smtcfb_write() (Zheyu Ma)
• ARM: mmp: Fix failure to remove sram device (Uwe Kleine-Konig)
• ARM: tegra: tamonten: Fix I2C3 pad setting (Richard Leitner)
• media: cx88-mpeg: clear interrupt status register before streaming video (Daniel Gonzalez Cabanelas)
• ASoC: soc-core: skip zero num_dai component in searching dai name (Shengjiu Wang)
• video: fbdev: omapfb: panel-tpo-td043mtea1: Use sysfs_emit() instead of snprintf() (Jing Yao)
• video: fbdev: omapfb: panel-dsi-cm: Use sysfs_emit() instead of snprintf() (Jing Yao)
• ARM: dts: bcm2837: Add the missing L1/L2 cache information (Richard Schleich)
• ARM: dts: qcom: fix gic_irq_domain_translate warnings for msm8960 (David Heidelberg)
• video: fbdev: omapfb: acx565akm: replace snprintf with sysfs_emit (Yang Guang)
• video: fbdev: cirrusfb: check pixclock to avoid divide by zero (George Kennedy)
• video: fbdev: w100fb: Reset global state (Evgeny Novikov)
• video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow (Tim Gardner)
• ntfs: add sanity check on allocation size (Dongliang Mu)
• ext4: don’t BUG if someone dirty pages without asking ext4 first (Theodore Ts’o)
• spi: tegra20: Use of_device_get_match_data() (Minghao Chi)
• PM: core: keep irq flags in device_pm_check_callbacks() (Dmitry Baryshkov)
• ACPI/APEI: Limit printable size of BERT table data (Darren Hart)
• ACPICA: Avoid walking the ACPI Namespace if it is not there (Rafael J. Wysocki)
• irqchip/nvic: Release nvic_base upon failure (Souptick Joarder (HPE))
• Fix incorrect type in assignment of ipv6 port for audit (Casey Schaufler)
• loop: use sysfs_emit() in the sysfs xxx show() (Chaitanya Kulkarni)
• selinux: use correct type for context length (Christian Gottsche)
• lib/test: use after free in register_test_dev_kmod() (Dan Carpenter)
• NFSv4/pNFS: Fix another issue with a list iterator pointing to the head (Trond Myklebust)
• net/x25: Fix null-ptr-deref caused by x25_disconnect (Duoming Zhou)
• qlcnic: dcb: default to returning -EOPNOTSUPP (Tom Rix)
• net: phy: broadcom: Fix brcm_fet_config_init() (Florian Fainelli)
• xen: fix is_xen_pmu() (Juergen Gross)
• netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Pablo Neira Ayuso)
• jfs: fix divide error in dbNextAG (Pavel Skripkin)
• kgdbts: fix return value of __setup handler (Randy Dunlap)
• kgdboc: fix return value of __setup handler (Randy Dunlap)
• tty: hvc: fix return value of __setup handler (Randy Dunlap)
• pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe (Miaoqian Lin)
• pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe (Miaoqian Lin)
• pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init (Miaoqian Lin)
• NFS: remove unneeded check in decode_devicenotify_args() (Alexey Khoroshilov)
• clk: tegra: tegra124-emc: Fix missing put_device() call in emc_ensure_emc_driver (Miaoqian Lin)
• clk: clps711x: Terminate clk_div_table with sentinel element (Jonathan Neuschafer)
• clk: loongson1: Terminate clk_div_table with sentinel element (Jonathan Neuschafer)
• remoteproc: qcom_wcnss: Add missing of_node_put() in wcnss_alloc_memory_region (Miaoqian Lin)
• clk: qcom: clk-rcg2: Update the frac table for pixel clock (Taniya Das)
• iio: adc: Add check for devm_request_threaded_irq (Jiasheng Jiang)
• serial: 8250: Fix race condition in RTS-after-send handling (Uwe Kleine-Konig)
• serial: 8250_mid: Balance reference count for PCI DMA device (Andy Shevchenko)
• staging:iio:adc:ad7280a: Fix handing of device address bit reversing. (Jonathan Cameron)
• pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() (Uwe Kleine-Konig)
• mxser: fix xmit_buf leak in activate when LSR == 0xff (Jiri Slaby)
• mfd: asic3: Add missing iounmap() on error asic3_mfd_probe (Miaoqian Lin)
• tcp: ensure PMTU updates are processed during fastopen (Jakub Kicinski)
• i2c: mux: demux-pinctrl: do not deactivate a master that is not active (Peter Rosin)
• af_netlink: Fix shift out of bounds in group mask calculation (Petr Machata)
• USB: storage: ums-realtek: fix error code in rts51x_read_mem() (Dan Carpenter)
• mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init (Xin Xiong)
• MIPS: RB532: fix return value of __setup handler (Randy Dunlap)
• vxcan: enable local echo for sent CAN frames (Oliver Hartkopp)
• mfd: mc13xxx: Add check for mc13xxx_irq_request (Jiasheng Jiang)
• powerpc/sysdev: fix incorrect use to determine if list is empty (Jakob Koschel)
• power: supply: wm8350-power: Add missing free in free_charger_irq (Jiasheng Jiang)
• power: supply: wm8350-power: Handle error for wm8350_register_irq (Jiasheng Jiang)
• i2c: xiic: Make bus names unique (Robert Hancock)
• KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (Hou Wenlong)
• KVM: x86: Fix emulation in writing cr8 (Zhenzhong Duan)
• power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return (Hans de Goede)
• drm/tegra: Fix reference leak in tegra_dsi_ganged_probe (Miaoqian Lin)
• ext2: correct max file size computing (Zhang Yi)
• TOMOYO: fix __setup handlers return values (Randy Dunlap)
• scsi: pm8001: Fix abort all task initialization (Damien Le Moal)
• scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (Damien Le Moal)
• scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (Damien Le Moal)
• scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (Damien Le Moal)
• dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS (Aashish Sharma)
• iwlwifi: Fix -EIO error code that is never returned (Colin Ian King)
• HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports (Dmitry Torokhov)
• power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init (Miaoqian Lin)
• ray_cs: Check ioremap return value (Jiasheng Jiang)
• power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe (Miaoqian Lin)
• ath9k_htc: fix uninit value bugs (Pavel Skripkin)
• drm/edid: Don’t clear formats if using deep color (Maxime Ripard)
• mtd: onenand: Check for error irq (Jiasheng Jiang)
• ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in msm8916_wcd_digital_probe (Miaoqian Lin)
• ASoC: imx-es8328: Fix error return code in imx_es8328_probe() (Wang Wensheng)
• ASoC: mxs: Fix error handling in mxs_sgtl5000_probe (Miaoqian Lin)
• ASoC: dmaengine: do not use a NULL prepare_slave_config() callback (Codrin Ciubotariu)
• video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of (Miaoqian Lin)
• ASoC: fsi: Add check for clk_enable (Jiasheng Jiang)
• ASoC: wm8350: Handle error for wm8350_register_irq (Jiasheng Jiang)
• ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe (Miaoqian Lin)
• media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED (Dafna Hirschfeld)
• ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction (Takashi Sakamoto)
• memory: emif: check the pointer temp in get_device_details() (Jia-Ju Bai)
• memory: emif: Add check for setup_interrupts (Jiasheng Jiang)
• ASoC: atmel_ssc_dai: Handle errors for clk_enable (Jiasheng Jiang)
• ASoC: mxs-saif: Handle errors for clk_enable (Jiasheng Jiang)
• printk: fix return value of printk.devkmsg __setup handler (Randy Dunlap)
• arm64: dts: broadcom: Fix sata nodename (Frank Wunderlich)
• arm64: dts: ns2: Fix spi-cpol and spi-cpha property (Kuldeep Singh)
• ALSA: spi: Add check for clk_enable() (Jiasheng Jiang)
• ASoC: ti: davinci-i2s: Add check for clk_enable() (Jiasheng Jiang)
• media: usb: go7007: s2250-board: fix leak in probe() (Dan Carpenter)
• soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe (Miaoqian Lin)
• ARM: dts: qcom: ipq4019: fix sleep clock (Pavel Kubelun)
• video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name() (Dan Carpenter)
• video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() (Wang Hai)
• media: coda: Fix missing put_device() call in coda_get_vdoa_data (Miaoqian Lin)
• perf/x86/intel/pt: Fix address filter config for 32-bit kernel (Adrian Hunter)
• perf/core: Fix address filter parser for multiple filters (Adrian Hunter)
• sched/debug: Remove mpol_get/put and task_lock/unlock from sched_show_numa (Bharata B Rao)
• clocksource: acpi_pm: fix return value of __setup handler (Randy Dunlap)
• hwmon: (pmbus) Add Vin unit off handling (Brandon Wyman)
• crypto: ccp - ccp_dmaengine_unregister release dma channels (Davis Mosans)
• ACPI: APEI: fix return value of __setup handlers (Randy Dunlap)
• crypto: vmx - add missing dependencies (Petr Vorel)
• hwrng: atmel - disable trng on failure path (Claudiu Beznea)
• PM: suspend: fix return value of __setup handler (Randy Dunlap)
• PM: hibernate: fix __setup handler error handling (Randy Dunlap)
• hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING (Armin Wolf)
• hwmon: (pmbus) Add mutex to regulator ops (Patrick Rudolph)
• spi: pxa2xx-pci: Balance reference count for PCI DMA device (Andy Shevchenko)
• selftests/x86: Add validity check and allow field splitting (Muhammad Usama Anjum)
• spi: tegra114: Add missing IRQ check in tegra_spi_probe (Miaoqian Lin)
• crypto: mxs-dcp - Fix scatterlist processing (Tomas Paukrt)
• crypto: authenc - Fix sleep in atomic context in decrypt_tail (Herbert Xu)
• PCI: pciehp: Clear cmd_busy bit in polling mode (Liguang Zhang)
• brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio (Hector Martin)
• brcmfmac: firmware: Allocate space for default boardrev in nvram (Hector Martin)
• media: davinci: vpif: fix unbalanced runtime PM get (Johan Hovold)
• DEC: Limit PMAX memory probing to R3k systems (Maciej W. Rozycki)
• lib/raid6/test: fix multiple definition linking error (Dirk Muller)
• thermal: int340x: Increase bitmap size (Srinivas Pandruvada)
• carl9170: fix missing bit-wise or operator for tx_params (Colin Ian King)
• ARM: dts: exynos: add missing HDMI supplies on SMDK5420 (Krzysztof Kozlowski)
• ARM: dts: exynos: add missing HDMI supplies on SMDK5250 (Krzysztof Kozlowski)
• ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (Krzysztof Kozlowski)
• ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (Tudor Ambarus)
• video: fbdev: atari: Atari 2 bpp (STe) palette bugfix (Michael Schmitz)
• video: fbdev: sm712fb: Fix crash in smtcfb_read() (Helge Deller)
• drivers: hamradio: 6pack: fix UAF bug caused by mod_timer() (Duoming Zhou)
• ACPI: properties: Consistently return -ENOENT if there are no more references (Sakari Ailus)
• drbd: fix potential silent data corruption (Lars Ellenberg)
• ALSA: cs4236: fix an incorrect NULL check on list iterator (Xiaomeng Tong)
• Revert ‘Input: clear BTN_RIGHT/MIDDLE on buttonpads’ (Jose Exposito)
• qed: validate and restrict untrusted VFs vlan promisc mode (Manish Chopra)
• qed: display VF trust config (Manish Chopra)
• scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands (Damien Le Moal)
• mempolicy: mbind_range() set_policy() after vma_merge() (Hugh Dickins)
• mm/pages_alloc.c: don’t create ZONE_MOVABLE beyond the end of a node (Alistair Popple)
• jffs2: fix memory leak in jffs2_scan_medium (Baokun Li)
• jffs2: fix memory leak in jffs2_do_mount_fs (Baokun Li)
• jffs2: fix use-after-free in jffs2_clear_xattr_subsystem (Baokun Li)
• can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path (Hangyu Hua)
• pinctrl: samsung: drop pin banks references on error paths (Krzysztof Kozlowski)
• NFSD: prevent underflow in nfssvc_decode_writeargs() (Dan Carpenter)
• SUNRPC: avoid race between mod_timer() and del_timer_sync() (NeilBrown)
• Documentation: update stable tree link (Bagas Sanjaya)
• Documentation: add link to stable release candidate tree (Bagas Sanjaya)
• ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (Jann Horn)
• clk: uniphier: Fix fixed-rate initialization (Kunihiko Hayashi)
• iio: inkern: make a best effort on offset calculation (Liam Beguin)
• iio: inkern: apply consumer scale when no channel scale is available (Liam Beguin)
• iio: inkern: apply consumer scale on IIO_VAL_INT cases (Liam Beguin)
• coresight: Fix TRCCONFIGR.QE sysfs interface (James Clark)
• USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c (Alan Stern)
• virtio-blk: Use blk_validate_block_size() to validate block size (Xie Yongji)
• block: Add a helper to validate the block size (Xie Yongji)
• tpm: fix reference counting for struct tpm_chip (Lino Sanfilippo)
• fuse: fix pipe buffer lifetime for direct_io (Miklos Szeredi)
• af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register (Haimin Zhang)
• spi: Fix erroneous sgs value with min_t() (Biju Das)
• spi: Fix invalid sgs value (Biju Das)
• ethernet: sun: Free the coherent when failing in probing (Zheyu Ma)
• virtio_console: break out of buf poll on remove (Michael S. Tsirkin)
• netdevice: add the case if dev is NULL (Yajun Deng)
• USB: serial: simple: add Nokia phone driver (Johan Hovold)
• USB: serial: pl2303: add IBM device IDs (Eddie James)
• Linux 4.14.275 (Greg Kroah-Hartman)
• arm64: add ID_AA64ISAR2_EL1 sys register (James Morse)
• arm64: entry: Add macro for reading symbol addresses from the trampoline (James Morse)
• arm64: entry: Add vectors that have the bhb mitigation sequences (James Morse)
• arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations (James Morse)
• arm64: entry: Make the kpti trampoline’s kpti sequence optional (James Morse)
• arm64: entry: Move trampoline macros out of ifdef’d section (James Morse)
• arm64: entry: Don’t assume tramp_vectors is the start of the vectors (James Morse)
• arm64: entry: Move the trampoline data page before the text page (James Morse)
• arm64: entry: Make the trampoline cleanup optional (James Morse)
• arm64: entry.S: Add ventry overflow sanity checks (James Morse)
• arm64: Add Cortex-X2 CPU part definition (Anshuman Khandual)
• arm64: Add Neoverse-N2, Cortex-A710 CPU part definition (Suzuki K Poulose)
• arm64: Add part number for Arm Cortex-A77 (Rob Herring)
• arm64: Add part number for Neoverse N1 (Marc Zyngier)
• arm64: Make ARM64_ERRATUM_1188873 depend on COMPAT (Marc Zyngier)
• arm64: Add silicon-errata.txt entry for ARM erratum 1188873 (Marc Zyngier)
• arm64: arch_timer: avoid unused function warning (Arnd Bergmann)
• arm64: arch_timer: Add workaround for ARM erratum 1188873 (Marc Zyngier)
• Linux 4.14.274 (Greg Kroah-Hartman)
• llc: only change llc->dev when bind() succeeds (Eric Dumazet)
• mac80211: fix potential double free on mesh join (Linus Lussing)
• crypto: qat - disable registration of algorithms (Giovanni Cabiddu)
• ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU (Werner Sembach)
• ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3 (Maximilian Luz)
• ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board (Mark Cilissen)
• drivers: net: xgene: Fix regression in CRC stripping (Stephane Graber)
• ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec (Giacomo Guiduzzi)
• ALSA: cmipci: Restore aux vol on suspend/resume (Jonathan Teh)
• ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB (Lars-Peter Clausen)
• ALSA: pcm: Add stream lock during PCM reset ioctl operations (Takashi Iwai)
• llc: fix netdevice reference leaks in llc_ui_bind() (Eric Dumazet)
• thermal: int340x: fix memory leak in int3400_notify() (Chuansheng Liu)
• staging: fbtft: fb_st7789v: reset display before initialization (Oliver Graute)
• net: ipv6: fix skb_over_panic in __ip6_append_data (Tadeusz Struk)
• nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION (Jordy Zomer)
• Linux 4.14.273 (Greg Kroah-Hartman)
• perf symbols: Fix symbol size calculation condition (Michael Petlan)
• Input: aiptek - properly check endpoint type (Pavel Skripkin)
• usb: gadget: Fix use-after-free bug by not setting udc->dev.driver (Alan Stern)
• usb: gadget: rndis: prevent integer overflow in rndis_set_response() (Dan Carpenter)
• net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit() (Nicolas Dichtel)
• atm: eni: Add check for dma_map_single (Jiasheng Jiang)
• net/packet: fix slab-out-of-bounds access in packet_recvmsg() (Eric Dumazet)
• efi: fix return value of __setup handlers (Randy Dunlap)
• fs: sysfs_emit: Remove PAGE_SIZE alignment check (Lucas Wei)
• kselftest/vm: fix tests build with old libc (Chengming Zhou)
• sfc: extend the locking on mcdi->seqno (Niels Dossche)
• tcp: make tcp_read_sock() more robust (Eric Dumazet)
• nl80211: Update bss channel on channel switch for P2P_CLIENT (Sreeramya Soratkal)
• atm: firestream: check the return value of ioremap() in fs_init() (Jia-Ju Bai)
• can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when fully ready (Lad Prabhakar)
• ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE (Julian Braha)
• MIPS: smp: fill in sibling and core maps earlier (Alexander Lobakin)
• ARM: dts: rockchip: fix a typo on rk3288 crypto-controller (Corentin Labbe)
• arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity (Jakob Unterwurzacher)
• xfrm: Fix xfrm migrate issues when address family changes (Yan Yan)
• sctp: fix the processing for INIT_ACK chunk (Xin Long)
• sctp: fix the processing for INIT chunk (Xin Long)
• Linux 4.14.272 (Greg Kroah-Hartman)
• ext4: add check to prevent attempting to resize an fs with sparse_super2 (Josh Triplett)
• ARM: fix Thumb2 regression with Spectre BHB (Russell King (Oracle))
• virtio: acknowledge all features before access (Michael S. Tsirkin)
• virtio: unexport virtio_finalize_features (Michael S. Tsirkin)
• staging: gdm724x: fix use after free in gdm_lte_rx() (Dan Carpenter)
• ARM: Spectre-BHB: provide empty stub for non-config (Randy Dunlap)
• selftests/memfd: clean up mapping in mfd_fail_write (Mike Kravetz)
• tracing: Ensure trace buffer is at least 4096 bytes large (Sven Schnelle)
• Revert ‘xen-netback: Check for hotplug-status existence before watching’ (Marek Marczykowski-Gorecki)
• Revert ‘xen-netback: remove ‘hotplug-status’ once it has served its purpose’ (Marek Marczykowski-Gorecki)
• net-sysfs: add check for netdevice being present to speed_show (suresh kumar)
• sctp: fix kernel-infoleak for SCTP sockets (Eric Dumazet)
• gpio: ts4900: Do not set DAT and OE together (Mark Featherston)
• NFC: port100: fix use-after-free in port100_send_complete (Pavel Skripkin)
• net/mlx5: Fix size field in bufferx_reg struct (Mohammad Kabat)
• ax25: Fix NULL pointer dereference in ax25_kill_by_device (Duoming Zhou)
• net: ethernet: lpc_eth: Handle error for clk_enable (Jiasheng Jiang)
• net: ethernet: ti: cpts: Handle error for clk_enable (Jiasheng Jiang)
• ethernet: Fix error handling in xemaclite_of_probe (Miaoqian Lin)
• qed: return status of qed_iov_get_link (Tom Rix)
• net: qlogic: check the return value of dma_alloc_coherent() in qed_vf_hw_prepare() (Jia-Ju Bai)
• Linux 4.14.271 (Greg Kroah-Hartman)
• xen/9p: use alloc/free_pages_exact() (Juergen Gross) {CVE-2022-23041}
• xen/gntalloc: don’t use gnttab_query_foreign_access() (Juergen Gross) {CVE-2022-23039}
• xen/scsifront: don’t use gnttab_query_foreign_access() for mapped status (Juergen Gross) {CVE-2022-23038}
• xen/grant-table: add gnttab_try_end_foreign_access() (Juergen Gross) {CVE-2022-23036} {CVE-2022-23038}
• xen/xenbus: don’t let xenbus_grant_ring() remove grants in error case (Juergen Gross) {CVE-2022-23040}
• ARM: fix build warning in proc-v7-bugs.c (Russell King (Oracle))
• ARM: Do not use NOCROSSREFS directive with ld.lld (Nathan Chancellor)
• ARM: fix co-processor register typo (Russell King (Oracle))
• ARM: fix build error when BPF_SYSCALL is disabled (Emmanuel Gil Peyrot)
• ARM: include unprivileged BPF status in Spectre V2 reporting (Russell King (Oracle))
• ARM: Spectre-BHB workaround (Russell King (Oracle))
• ARM: use LOADADDR() to get load address of sections (Russell King (Oracle))
• ARM: early traps initialisation (Russell King (Oracle))
• ARM: report Spectre v2 status through sysfs (Russell King (Oracle))
• arm/arm64: smccc/psci: add arm_smccc_1_1_get_conduit() (Mark Rutland)
• arm/arm64: Provide a wrapper for SMCCC 1.1 calls (Steven Price)
• x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT (Josh Poimboeuf)
• Linux 4.14.270 (Greg Kroah-Hartman)
• hamradio: fix macro redefine warning (Huang Pei)
• net: dcb: disable softirqs in dcbnl_flush_dev() (Vladimir Oltean)
• memfd: fix F_SEAL_WRITE after shmem huge page allocated (Hugh Dickins)
• HID: add mapping for KEY_ALL_APPLICATIONS (William Mahon)
• Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (Hans de Goede)
• Input: elan_i2c - move regulator_[en|dis]able() out of elan_[en|dis]able_power() (Hans de Goede)
• nl80211: Handle nla_memdup failures in handle_nan_filter (Jiasheng Jiang)
• net: chelsio: cxgb3: check the return value of pci_find_capability() (Jia-Ju Bai)
• soc: fsl: qe: Check of ioremap return value (Jiasheng Jiang)
• ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions (Randy Dunlap)
• can: gs_usb: change active_channels’s type from atomic_t to u8 (Vincent Mailhol)
• efivars: Respect ‘block’ flag in efivar_entry_set_safe() (Jann Horn)
• net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe() (Zheyu Ma)
• net: sxgbe: fix return value of __setup handler (Randy Dunlap)
• net: stmmac: fix return value of __setup handler (Randy Dunlap)
• mac80211: fix forwarded mesh frames AC & queue selection (Nicolas Escande)
• firmware: qemu_fw_cfg: fix kobject leak in probe error path (Johan Hovold)
• firmware: Fix a reference count leak. (Qiushi Wu)
• net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server (D. Wythe)
• net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client (D. Wythe)
• net: dcb: flush lingering app table entries for unregistered devices (Vladimir Oltean)
• batman-adv: Don’t expect inter-netns unique iflink indices (Sven Eckelmann)
• batman-adv: Request iflink once in batadv_get_real_netdevice (Sven Eckelmann)
• batman-adv: Request iflink once in batadv-on-batadv check (Sven Eckelmann)
• netfilter: nf_queue: fix possible use-after-free (Florian Westphal)
• netfilter: nf_queue: don’t assume sk is full socket (Florian Westphal)
• xfrm: enforce validity of offload input flags (Leon Romanovsky)
• netfilter: fix use-after-free in __nf_register_net_hook() (Eric Dumazet)
• xfrm: fix MTU regression (Jiri Bohac)
• ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min (Marek Vasut)
• ALSA: intel_hdmi: Fix reference to PCM buffer address (Zhen Ni)
• ata: pata_hpt37x: fix PCI clock detection (Sergey Shtylyov)
• usb: gadget: clear related members when goto fail (Hangyu Hua)
• usb: gadget: don’t release an existing dev->buf (Hangyu Hua)
• net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (Daniele Palmas)
• i2c: qup: allow COMPILE_TEST (Wolfram Sang)
• i2c: cadence: allow COMPILE_TEST (Wolfram Sang)
• dmaengine: shdma: Fix runtime PM imbalance on error (Yongzhi Liu)
• cifs: fix double free race when mount fails in cifs_get_root() (Ronnie Sahlberg)
• Input: clear BTN_RIGHT/MIDDLE on buttonpads (Jose Exposito)
• i2c: bcm2835: Avoid clock stretching timeouts (Eric Anholt)
• mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work (JaeMan Park)
• mac80211_hwsim: report NOACK frames in tx_status (Benjamin Beichler)
• Linux 4.14.269 (Greg Kroah-Hartman)
• fget: clarify and improve __fget_files() implementation (Linus Torvalds)
• memblock: use kfree() to release kmalloced memblock regions (Miaohe Lin)
• Revert ‘drm/nouveau/pmu/gm200-: avoid touching PMU outside of DEVINIT/PREOS/ACR’ (Karol Herbst)
• tty: n_gsm: fix proper link termination after failed open ([email protected])
• tty: n_gsm: fix encoding of control signal octet bit DV ([email protected])
• xhci: Prevent futile URB re-submissions due to incorrect return value. (Hongyu Xie)
• xhci: re-initialize the HC during resume if HCE was set (Puma Hsu)
• usb: dwc3: gadget: Let the interrupt handler disable bottom halves. (Sebastian Andrzej Siewior)
• USB: serial: option: add Telit LE910R1 compositions (Daniele Palmas)
• USB: serial: option: add support for DW5829e (Slark Xiao)
• tracefs: Set the group ownership in apply_options() not parse_options() (Steven Rostedt (Google))
• USB: gadget: validate endpoint index for xilinx udc (Szymon Heidrich)
• usb: gadget: rndis: add spinlock for rndis response list (Daehwan Jung)
• Revert ‘USB: serial: ch341: add new Product ID for CH341A’ (Dmytro Bagrii)
• ata: pata_hpt37x: disable primary channel on HPT371 (Sergey Shtylyov)
• iio: adc: men_z188_adc: Fix a resource leak in an error handling path (Christophe JAILLET)
• RDMA/ib_srp: Fix a deadlock (Bart Van Assche)
• configfs: fix a race in configfs_{,un}register_subsystem() (ChenXiaoSong)
• net/mlx5e: Fix wrong return value on ioctl EEPROM query failure (Gal Pressman)
• drm/edid: Always set RGB444 (Maxime Ripard)
• openvswitch: Fix setting ipv6 fields causing hw csum failure (Paul Blakey)
• gso: do not skip outer ip header in case of ipip and net_failover (Tao Liu)
• net: __pskb_pull_tail() & pskb_carve_frag_list() drop_monitor friends (Eric Dumazet)
• ping: remove pr_err from ping_lookup (Xin Long)
• serial: 8250: of: Fix mapped region size when using reg-offset property (Robert Hancock)
• USB: zaurus: support another broken Zaurus (Oliver Neukum)
• parisc/unaligned: Fix ldw() and stw() unalignment handlers (Helge Deller)
• parisc/unaligned: Fix fldd and fstd unaligned handlers on 32-bit kernel (Helge Deller)
• vhost/vsock: don’t check owner in vhost_vsock_stop() while releasing (Stefano Garzarella)
• cgroup/cpuset: Fix a race between cpuset_attach() and cpu hotplug (Zhang Qiao)
• Linux 4.14.268 (Greg Kroah-Hartman)
• net: macb: Align the dma and coherent dma masks (Marc St-Amand)
• net: usb: qmi_wwan: Add support for Dell DW5829e (Slark Xiao)
• tracing: Fix tp_printk option related with tp_printk_stop_on_boot (JaeSang Yoo)
• ata: libata-core: Disable TRIM on M88V29 (Zoltan Boszormenyi)
• ARM: OMAP2+: hwmod: Add of_node_put() before break (Wan Jiabing)
• NFS: Do not report writeback errors in nfs_getattr() (Trond Myklebust)
• KVM: x86/pmu: Use AMD64_RAW_EVENT_MASK for PERF_TYPE_RAW (Jim Mattson)
• mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (david regan)
• mtd: rawnand: brcmnand: Refactored code to introduce helper functions (Kamal Dasu)
• i2c: brcmstb: fix support for DSL and CM variants (Rafal Milecki)
• dmaengine: sh: rcar-dmac: Check for error num after setting mask (Jiasheng Jiang)
• net: sched: limit TC_ACT_REPEAT loops (Eric Dumazet)
• EDAC: Fix calculation of returned address and next offset in edac_align_ptr() (Eliav Farber)
• NFS: LOOKUP_DIRECTORY is also ok with symlinks (Trond Myklebust)
• powerpc/lib/sstep: fix ‘ptesync’ build error (Anders Roxell)
• ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (Mark Brown)
• ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (Mark Brown)
• ALSA: hda: Fix missing codec probe on Shenker Dock 15 (Takashi Iwai)
• ALSA: hda: Fix regression on forced probe mask option (Takashi Iwai)
• libsubcmd: Fix use-after-free for realloc(…, 0) (Kees Cook)
• bonding: fix data-races around agg_select_timer (Eric Dumazet)
• drop_monitor: fix data-race in dropmon_net_event / trace_napi_poll_hit (Eric Dumazet)
• ping: fix the dif and sdif check in ping_lookup (Xin Long)
• net: ieee802154: ca8210: Fix lifs/sifs periods (Miquel Raynal)
• iwlwifi: pcie: gen2: fix locking when ‘HW not ready’ (Johannes Berg)
• iwlwifi: pcie: fix locking when ‘HW not ready’ (Johannes Berg)
• vsock: remove vsock from connected table when connect is interrupted by a signal (Seth Forshee)
• taskstats: Cleanup the use of task->exit_code (Eric W. Biederman)
• xfrm: Don’t accidentally set RTO_ONLINK in decode_session4() (Guillaume Nault)
• drm/radeon: Fix backlight control on iMac 12,1 (Nicholas Bishop)
• iwlwifi: fix use-after-free (Johannes Berg)
• Revert ‘module, async: async_synchronize_full() on module init iff async is used’ (Igor Pylypiv)
• quota: make dquot_quota_sync return errors from ->sync_fs (Darrick J. Wong)
• vfs: make freeze_super abort when sync_filesystem returns error (Darrick J. Wong)
• ax25: improve the incomplete fix to avoid UAF and NPD bugs (Duoming Zhou)
• selftests/zram: Adapt the situation that /dev/zram0 is being used (Yang Xu)
• selftests/zram01.sh: Fix compression ratio calculation (Yang Xu)
• selftests/zram: Skip max_comp_streams interface on newer kernel (Yang Xu)
• net: ieee802154: at86rf230: Stop leaking skb’s (Miquel Raynal)
• btrfs: send: in case of IO error log it (Davis Mosans)
• parisc: Fix sglist access in ccio-dma.c (John David Anglin)
• parisc: Fix data TLB miss in sba_unmap_sg (John David Anglin)
• serial: parisc: GSC: fix build when IOSAPIC is not set (Randy Dunlap)
• net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jann Horn)
• Makefile.extrawarn: Move -Wunaligned-access to W=1 (Nathan Chancellor)
• Linux 4.14.267 (Greg Kroah-Hartman)
• perf: Fix list corruption in perf_cgroup_switch() (Song Liu)
• hwmon: (dell-smm) Speed up setting of fan speed (Armin Wolf)
• seccomp: Invalidate seccomp mode to catch death failures (Kees Cook)
• USB: serial: cp210x: add CPI Bulk Coin Recycler id (Johan Hovold)
• USB: serial: cp210x: add NCR Retail IO box id (Johan Hovold)
• USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (Stephan Brunner)
• USB: serial: option: add ZTE MF286D modem (Pawel Dembicki)
• USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (Cameron Williams)
• usb: gadget: rndis: check size of RNDIS_MSG_SET command (Greg Kroah-Hartman)
• USB: gadget: validate interface OS descriptor requests (Szymon Heidrich)
• usb: dwc3: gadget: Prevent core from processing stale TRBs (Udipto Goswami)
• usb: ulpi: Call of_node_put correctly (Sean Anderson)
• usb: ulpi: Move of_node_put to ulpi_dev_release (Sean Anderson)
• n_tty: wake up poll(POLLRDNORM) on receiving data (TATSUKAWA KOSUKE
• vt_ioctl: add array_index_nospec to VT_ACTIVATE (Jakob Koschel)
• vt_ioctl: fix array_index_nospec in vt_setactivate (Jakob Koschel)
• net: amd-xgbe: disable interrupts during pci removal (Raju Rangoju)
• tipc: rate limit warning for received illegal binding update (Jon Maloy)
• net: fix a memleak when uncloning an skb dst and its metadata (Antoine Tenart)
• net: do not keep the dst cache when uncloning an skb dst and its metadata (Antoine Tenart)
• ipmr,ip6mr: acquire RTNL before calling ip[6]mr_free_table() on failure path (Eric Dumazet)
• bonding: pair enable_port with slave_arr_updates (Mahesh Bandewar)
• usb: f_fs: Fix use-after-free for epfile (Udipto Goswami)
• ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (Fabio Estevam)
• staging: fbtft: Fix error path in fbtft_driver_module_init() (Uwe Kleine-Konig)
• ARM: dts: meson: Fix the UART compatible strings (Martin Blumenstingl)
• ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (Fabio Estevam)
• Revert ‘net: axienet: Wait for PhyRstCmplt after core reset’ (Sasha Levin)
• net: stmmac: dwmac-sun8i: use return val of readl_poll_timeout() (Jisheng Zhang)
• usb: dwc2: gadget: don’t try to disable ep0 in dwc2_hsotg_suspend (Amelie Delaunay)
• scsi: target: iscsi: Make sure the np under each tpg is unique (ZouMingzhe)
• NFSv4 expose nfs_parse_server_name function (Olga Kornievskaia)
• NFSv4 remove zero number of fs_locations entries error check (Olga Kornievskaia)
• NFSv4.1: Fix uninitialised variable in devicenotify (Trond Myklebust)
• nfs: nfs4clinet: check the return value of kstrdup() (Xiaoke Wang)
• NFSv4 only print the label when its queried (Olga Kornievskaia)
• NFSD: Clamp WRITE offsets (Chuck Lever)
• NFS: Fix initialisation of nfs_client cl_flags field (Trond Myklebust)
• net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (Pavel Parkhomenko)
• mmc: sdhci-of-esdhc: Check for error num after setting mask (Jiasheng Jiang)
• ima: Allow template selection with ima_template[_fmt]= after ima_hash= (Roberto Sassu)
• ima: Remove ima_policy file before directory (Stefan Berger)
• integrity: check the return value of audit_log_start() (Xiaoke Wang)
• Linux 4.14.266 (Greg Kroah-Hartman)