Unbreakable Enterprise kernel-container security update

[5.4.17-2136.323.8.el8]

• vhost-scsi: Fix alignment handling with windows (Mike Christie) [Orabug: 35769318]
• Revert ‘vhost/scsi: support non zerocopy iovecs’ (Rajan Shanmugavelu) [Orabug: 35769318]
  [5.4.17-2136.323.7.el8]
• x86: change default to spec_store_bypass_disable=prctl spectre_v2_user=prctl (Andrea Arcangeli) [Orabug: 35725160]
• KVM: SVM: Add support for Virtual SPEC_CTRL (Babu Moger) [Orabug: 35725160]
• x86/cpufeatures: Add the Virtual SPEC_CTRL feature (Babu Moger) [Orabug: 35725160]
• x86/mm: Initialize text poking earlier (Peter Zijlstra) [Orabug: 35744495]
• mm: Move mm_cachep initialization to mm_init() (Peter Zijlstra) [Orabug: 35744495]
• x86/mm: Use mm_alloc() in poking_init() (Peter Zijlstra) [Orabug: 35744495]
• mips: add support for TIF_NOTIFY_SIGNAL (Jens Axboe) [Orabug: 35749111]
  [5.4.17-2136.323.6.el8]
• ek-rpm: Update kernel’s linux-firmware dependency. (Brian Maly) [Orabug: 35742717]
• nbd: make sure request completion won’t concurrent (Yu Kuai) [Orabug: 35339589]
• nbd: don’t handle response without a corresponding request message (Yu Kuai) [Orabug: 35339589]
• nvme: handle effects after freeing the request (Alan Adamson) [Orabug: 35411534]
• x86/pkeys: Revert a5eff7259790 (‘x86/pkeys: Add PKRU value to init_fpstate’) (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• Documentation/x86: Fix backwards on/off logic about YMM support (Dave Hansen) [Orabug: 35714800] {CVE-2022-40982}
• x86/xen: Fix secondary processors’ FPU initialization (Juergen Gross) [Orabug: 35714800] {CVE-2022-40982}
• KVM: Add GDS_NO support to KVM (Daniel Sneddon) [Orabug: 35714800] {CVE-2022-40982}
• x86/speculation: Add Kconfig option for GDS (Daniel Sneddon) [Orabug: 35714800] {CVE-2022-40982}
• x86/speculation: Add force option to GDS mitigation (Daniel Sneddon) [Orabug: 35714800] {CVE-2022-40982}
• x86/speculation: Add Gather Data Sampling mitigation (Daniel Sneddon) [Orabug: 35714800] {CVE-2022-40982}
• x86/fpu: Move FPU initialization into arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• x86/fpu: Mark init functions __init (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• x86/fpu: Remove cpuinfo argument from init functions (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• init: Invoke arch_cpu_finalize_init() earlier (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• init: Remove check_bugs() leftovers (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• um/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• sparc/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• sh/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• mips/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• m68k/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• ia64/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• ARM: cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• x86/cpu: Switch to arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• init: Provide arch_cpu_finalize_init() (Thomas Gleixner) [Orabug: 35714800] {CVE-2022-40982}
• scsi: lpfc: Fix null pointer dereference due to prematurely released ndlp (Ketan Mukadam) [Orabug: 35729915]
  [5.4.17-2136.323.5.el8]
• io_uring/net: save msghdr->msg_control for retries (Jens Axboe) [Orabug: 35495339]
• io_uring/net: clear msg_controllen on partial sendmsg retry (Jens Axboe) [Orabug: 35495339]
• io_uring/net: disable partial retries for recvmsg with cmsg (Jens Axboe) [Orabug: 35495339]
• io_uring: hold uring mutex around poll removal (Jens Axboe) [Orabug: 35495339]
• io_uring: avoid null-ptr-deref in io_arm_poll_handler (Fedor Pchelkin) [Orabug: 35495339]
• io_uring/poll: allow some retries for poll triggering spuriously (Jens Axboe) [Orabug: 35495339]
• io_uring: remove MSG_NOSIGNAL from recvmsg (David Lamparter) [Orabug: 35495339]
• io_uring/rsrc: disallow multi-source reg buffers (Pavel Begunkov) [Orabug: 35495339]
• io_uring: add a conditional reschedule to the IOPOLL cancelation loop (Jens Axboe) [Orabug: 35495339]
• io_uring: mark task TASK_RUNNING before handling resume/task work (Jens Axboe) [Orabug: 35495339]
• io_uring: handle TIF_NOTIFY_RESUME when checking for task_work (Jens Axboe) [Orabug: 35495339]
• io_uring: ensure that io_init_req() passes in the right issue_flags (Jens Axboe) [Orabug: 35495339]
• io_uring: add missing lock in io_get_file_fixed (Bing-Jhong Billy Jheng) [Orabug: 35495339]
• io_uring/rw: remove leftover debug statement (Jens Axboe) [Orabug: 35495339]
• io_uring/rw: ensure kiocb_end_write() is always called (Jens Axboe) [Orabug: 35495339]
• io_uring: fix double poll leak on repolling (Pavel Begunkov) [Orabug: 35495339]
• io_uring: Clean up a false-positive warning from GCC 9.3.0 (Alviro Iskandar Setiawan) [Orabug: 35495339]
• io_uring/net: fix fast_iov assignment in io_setup_async_msg() (Stefan Metzmacher) [Orabug: 35495339]
• io_uring: io_kiocb_update_pos() should not touch file for non -1 offset (Jens Axboe) [Orabug: 35495339]
• io_uring/rw: defer fsnotify calls to task context (Jens Axboe) [Orabug: 35495339]
• io_uring: do not recalculate ppos unnecessarily (Dylan Yudaken) [Orabug: 35495339]
• io_uring: update kiocb->ki_pos at execution time (Dylan Yudaken) [Orabug: 35495339]
• io_uring: remove duplicated calls to io_kiocb_ppos (Dylan Yudaken) [Orabug: 35495339]
• io_uring: ensure that cached task references are always put on exit (Jens Axboe) [Orabug: 35495339]
• io_uring: fix CQ waiting timeout handling (Pavel Begunkov) [Orabug: 35495339]
• io_uring: lock overflowing for IOPOLL (Pavel Begunkov) [Orabug: 35495339]
• io_uring: check for valid register opcode earlier (Jens Axboe) [Orabug: 35495339]
• io_uring: fix async accept on O_NONBLOCK sockets (Dylan Yudaken) [Orabug: 35495339]
• io_uring: allow re-poll if we made progress (Jens Axboe) [Orabug: 35495339]
• io_uring: support MSG_WAITALL for IORING_OP_SEND(MSG) (Jens Axboe) [Orabug: 35495339]
• io_uring: add flag for disabling provided buffer recycling (Jens Axboe) [Orabug: 35495339]
• io_uring: ensure recv and recvmsg handle MSG_WAITALL correctly (Jens Axboe) [Orabug: 35495339]
• io_uring: improve send/recv error handling (Pavel Begunkov) [Orabug: 35495339]
• io_uring: don’t gate task_work run on TIF_NOTIFY_SIGNAL (Jens Axboe) [Orabug: 35495339]
• io_uring/io-wq: only free worker if it was allocated for creation (Jens Axboe) [Orabug: 35495339]
• io_uring/io-wq: free worker if task_work creation is canceled (Jens Axboe) [Orabug: 35495339]
• io_uring: Fix unsigned ‘res’ comparison with zero in io_fixup_rw_res() (Harshit Mogalapalli) [Orabug: 35495339]
• io_uring: pass in EPOLL_URING_WAKE for eventfd signaling and wakeups (Jens Axboe) [Orabug: 35495339]
• eventpoll: add EPOLL_URING_WAKE poll wakeup flag (Jens Axboe) [Orabug: 35495339]
• epoll: simplify ep_poll_safewake() for CONFIG_DEBUG_LOCK_ALLOC (Jason Baron) [Orabug: 35495339]
• eventfd: provide a eventfd_signal_mask() helper (Jens Axboe) [Orabug: 35495339]
• signal: kill JOBCTL_TASK_WORK (Jens Axboe) [Orabug: 35495339]
• net: remove cmsg restriction from io_uring based send/recvmsg calls (Jens Axboe) [Orabug: 35495339]
• io_uring: import 5.15-stable io_uring (Jens Axboe) [Orabug: 35495339]
• fs: provide locked helper variant of close_fd_get_file() (Jens Axboe) [Orabug: 35495339]
• file: Rename __close_fd_get_file close_fd_get_file (Eric W. Biederman) [Orabug: 35495339]
• fs: push the getname from do_rmdir into the callers (Christoph Hellwig) [Orabug: 35495339]
• task_work: unconditionally run task_work from get_signal() (Jens Axboe) [Orabug: 35495339]
• Revert ‘proc: don’t allow async path resolution of /proc/self components’ (Jens Axboe) [Orabug: 35495339]
• tools headers UAPI: Sync openat2.h with the kernel sources (Arnaldo Carvalho de Melo) [Orabug: 35495339]
• fs: expose LOOKUP_CACHED through openat2() RESOLVE_CACHED (Jens Axboe) [Orabug: 35495339]
• fix handling of nd->depth on LOOKUP_CACHED failures in try_to_unlazy* (Al Viro) [Orabug: 35495339]
• fs: add support for LOOKUP_CACHED (Jens Axboe) [Orabug: 35495339]
• x86/process: setup io_threads more like normal user space threads (Stefan Metzmacher) [Orabug: 35495339]
• arch: setup PF_IO_WORKER threads like PF_KTHREAD (Jens Axboe) [Orabug: 35495339]
• task_work: remove legacy TWA_SIGNAL path (Jens Axboe) [Orabug: 35495339]
• Make sure nd->path.mnt and nd->path.dentry are always valid pointers (Al Viro) [Orabug: 35495339]
• fs: make do_renameat2() take struct filename (Jens Axboe) [Orabug: 35495339]
• kernel: allow fork with TIF_NOTIFY_SIGNAL pending (Jens Axboe) [Orabug: 35495339]
• coredump: Limit what can interrupt coredumps (Eric W. Biederman) [Orabug: 35495339]
• arm64: add support for TIF_NOTIFY_SIGNAL (Jens Axboe) [Orabug: 35495339]
• arm: add support for TIF_NOTIFY_SIGNAL (Jens Axboe) [Orabug: 35495339]
• task_work: Use TIF_NOTIFY_SIGNAL if available (Jens Axboe) [Orabug: 35495339]
• entry: Add support for TIF_NOTIFY_SIGNAL (Jens Axboe) [Orabug: 35495339]
• x86: Wire up TIF_NOTIFY_SIGNAL (Jens Axboe) [Orabug: 35495339]
• signal: Add task_sigpending() helper (Jens Axboe) [Orabug: 35495339]
• net: add accept helper not installing fd (Pavel Begunkov) [Orabug: 35495339]
• net: provide __sys_shutdown_sock() that takes a socket (Jens Axboe) [Orabug: 35495339]
• task_work: add helper for more targeted task_work canceling (Jens Axboe) [Orabug: 35495339]
• kernel: don’t call do_exit() for PF_IO_WORKER threads (Jens Axboe) [Orabug: 35495339]
• kernel: stop masking signals in create_io_thread() (Jens Axboe) [Orabug: 35495339]
• iov_iter: add helper to save iov_iter state (Jens Axboe) [Orabug: 35495339]
• kernel: provide create_io_thread() helper (Jens Axboe) [Orabug: 35495339]
• io_uring: add missing item types for splice request (Bing-Jhong Billy Jheng) [Orabug: 35495339]
• io_uring: don’t hold uring_lock when calling io_run_task_work* (Hao Xu) [Orabug: 35495339]
• io_uring: kill goto error handling in io_sqpoll_wait_sq() (Jens Axboe) [Orabug: 35495339]
• io_uring: correct pinned_vm accounting (Pavel Begunkov) [Orabug: 35495339]
• io_uring: Use original task for req identity in io_identity_cow() (Lee Jones) [Orabug: 35495339]
• io_uring: ensure that send/sendmsg and recv/recvmsg check sqe->ioprio (Jens Axboe) [Orabug: 35495339]
• io_uring: use separate list entry for iopoll requests (Jens Axboe) [Orabug: 35495339]
• io_uring: add missing item types for various requests (Jens Axboe) [Orabug: 35495339]
• io_uring: fix using under-expanded iters (Pavel Begunkov) [Orabug: 35495339]
• io_uring: don’t re-import iovecs from callbacks (Pavel Begunkov) [Orabug: 35495339]
• arm64: Remove TIF_NOHZ (Frederic Weisbecker) [Orabug: 35495339]
• arm: Remove TIF_NOHZ (Frederic Weisbecker) [Orabug: 35495339]
• x86: Remove TIF_NOHZ (Frederic Weisbecker) [Orabug: 35495339]
• context-tracking: Introduce CONFIG_HAVE_TIF_NOHZ (Frederic Weisbecker) [Orabug: 35495339]
• x86/entry: Remove _TIF_NOHZ from _TIF_WORK_SYSCALL_ENTRY (Thomas Gleixner) [Orabug: 35495339]
• mm: allow a controlled amount of unfairness in the page lock (Linus Torvalds) [Orabug: 35565406]
  [5.4.17-2136.323.4.el8]
• uek-rpm: Disable cls_tcindex in file tcindex-disable.conf (Sherry Yang) [Orabug: 35676248]
• uek-rpm: Update kernel’s linux-firmware dependency. (Somasundaram Krishnasamy) [Orabug: 35678692]
• Revert ‘sched/fair: sanitize vruntime of entity being placed’ (Saeed Mirzamohammadi) [Orabug: 35683806]
• Revert ‘sched/fair: Sanitize vruntime of entity being migrated’ (Saeed Mirzamohammadi) [Orabug: 35683806]
  [5.4.17-2136.323.3.el8]
• LTS tag: v5.4.251 (Sherry Yang)
• tracing/histograms: Return an error if we fail to add histogram to hist_vars list (Mohamed Khalfella)
• tcp: annotate data-races around fastopenq.max_qlen (Eric Dumazet)
• tcp: annotate data-races around tp->notsent_lowat (Eric Dumazet)
• tcp: annotate data-races around rskq_defer_accept (Eric Dumazet)
• tcp: annotate data-races around tp->linger2 (Eric Dumazet)
• net: Replace the limit of TCP_LINGER2 with TCP_FIN_TIMEOUT_MAX (Cambda Zhu)
• tcp: annotate data-races around tp->tcp_tx_delay (Eric Dumazet)
• netfilter: nf_tables: can’t schedule in nft_chain_validate (Florian Westphal)
• netfilter: nf_tables: fix spurious set element insertion failure (Florian Westphal)
• llc: Don’t drop packet from non-root netns. (Kuniyuki Iwashima)
• fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe (Zhang Shurong)
• Revert ‘tcp: avoid the lookup process failing to get sk in ehash table’ (Kuniyuki Iwashima)
• net:ipv6: check return value of pskb_trim() (Yuanjun Gong)
• iavf: Fix use-after-free in free_netdev (Ding Hui)
• net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()/cpsw_ale_set_field() (Tanmay Patil)
• pinctrl: amd: Use amd_pinconf_set() for all config options (Mario Limonciello)
• fbdev: imxfb: warn about invalid left/right margin (Martin Kaiser)
• spi: bcm63xx: fix max prepend length (Jonas Gorski)
• igb: Fix igb_down hung on surprise removal (Ying Hsu)
• wifi: iwlwifi: mvm: avoid baid size integer overflow (Johannes Berg)
• wifi: wext-core: Fix -Wstringop-overflow warning in ioctl_standard_iw_point() (Gustavo A. R. Silva)
• devlink: report devlink_port_type_warn source device (Petr Oros)
• bpf: Address KCSAN report on bpf_lru_list (Martin KaFai Lau)
• sched/fair: Don’t balance task to its current running CPU (Yicong Yang)
• arm64: mm: fix VA-range sanity check (Mark Rutland)
• posix-timers: Ensure timer ID search-loop limit is valid (Thomas Gleixner)
• md/raid10: prevent soft lockup while flush writes (Yu Kuai)
• md: fix data corruption for raid456 when reshape restart while grow up (Yu Kuai)
• nbd: Add the maximum limit of allocated index in nbd_dev_add (Zhong Jinghua)
• debugobjects: Recheck debug_objects_enabled before reporting (Tetsuo Handa)
• ext4: correct inline offset when handling xattrs in inode body (Eric Whitney)
• drm/client: Fix memory leak in drm_client_modeset_probe (Jocelyn Falempe)
• drm/client: Fix memory leak in drm_client_target_cloned (Jocelyn Falempe)
• can: bcm: Fix UAF in bcm_proc_show() (YueHaibing)
• selftests: tc: set timeout to 15 minutes (Matthieu Baerts)
• fuse: revalidate: don’t invalidate if interrupted (Miklos Szeredi)
• btrfs: fix warning when putting transaction with qgroups enabled after abort (Filipe Manana)
• perf probe: Add test for regression introduced by switch to die_get_decl_file() (Georg Muller)
• drm/atomic: Fix potential use-after-free in nonblocking commits (Daniel Vetter)
• scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue (Manish Rangankar)
• scsi: qla2xxx: Pointer may be dereferenced (Shreyas Deodhar)
• scsi: qla2xxx: Correct the index of array (Bikash Hazarika)
• scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport() (Nilesh Javali)
• scsi: qla2xxx: Fix potential NULL pointer dereference (Bikash Hazarika)
• scsi: qla2xxx: Wait for io return on terminate rport (Quinn Tran)
• tracing/probes: Fix not to count error code to total length (Masami Hiramatsu (Google))
• tracing: Fix null pointer dereference in tracing_err_log_open() (Mateusz Stachyra)
• xtensa: ISS: fix call to split_if_spec (Max Filippov)
• ring-buffer: Fix deadloop issue on reading trace_pipe (Zheng Yejian)
• tracing/histograms: Add histograms to hist_vars if they have referenced variables (Mohamed Khalfella)
• tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() when iterating clk (Christophe JAILLET)
• tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in case of error (Christophe JAILLET)
• Revert ‘8250: add support for ASIX devices with a FIFO bug’ (Jiaqing Zhao)
• meson saradc: fix clock divider mask length (George Stark)
• ceph: don’t let check_caps skip sending responses for revoke msgs (Xiubo Li)
• hwrng: imx-rngc - fix the timeout for init and self check (Martin Kaiser)
• firmware: stratix10-svc: Fix a potential resource leak in svc_create_memory_pool() (Christophe JAILLET)
• serial: atmel: don’t enable IRQs prematurely (Dan Carpenter)
• drm/rockchip: vop: Leave vblank enabled in self-refresh (Brian Norris)
• drm/atomic: Allow vblank-enabled + self-refresh ‘disable’ (Brian Norris)
• fs: dlm: return positive pid value for F_GETLK (Alexander Aring)
• md/raid0: add discard support for the ‘original’ layout (Jason Baron)
• misc: pci_endpoint_test: Re-init completion for every test (Damien Le Moal)
• misc: pci_endpoint_test: Free IRQs before removing the device (Damien Le Moal)
• PCI: rockchip: Set address alignment for endpoint mode (Damien Le Moal)
• PCI: rockchip: Use u32 variable to access 32-bit registers (Rick Wertenbroek)
• PCI: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core (Rick Wertenbroek)
• PCI: rockchip: Add poll and timeout to wait for PHY PLLs to be locked (Rick Wertenbroek)
• PCI: rockchip: Write PCI Device ID to correct register (Rick Wertenbroek)
• PCI: rockchip: Assert PCI Configuration Enable bit after probe (Rick Wertenbroek)
• PCI: qcom: Disable write access to read only registers for IP v2.3.3 (Manivannan Sadhasivam)
• PCI: Add function 1 DMA alias quirk for Marvell 88SE9235 (Robin Murphy)
• PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold (Ondrej Zary)
• jfs: jfs_dmap: Validate db_l2nbperpage while mounting (Siddh Raman Pant)
• ext4: only update i_reserved_data_blocks on successful block allocation (Baokun Li)
• ext4: fix wrong unit use in ext4_mb_clear_bb (Kemeng Shi)
• erofs: fix compact 4B support for 16k block size (Gao Xiang)
• SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (Ding Hui)
• misc: fastrpc: Create fastrpc scalar with correct buffer count (Ekansh Gupta)
• powerpc: Fail build if using recordmcount with binutils v2.37 (Naveen N Rao)
• net: bcmgenet: Ensure MDIO unregistration has clocks enabled (Florian Fainelli)
• mtd: rawnand: meson: fix unaligned DMA buffers handling (Arseniy Krasnov)
• tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation (Jarkko Sakkinen)
• pinctrl: amd: Only use special debounce behavior for GPIO 0 (Mario Limonciello)
• pinctrl: amd: Detect internal GPIO0 debounce handling (Mario Limonciello)
• pinctrl: amd: Fix mistake in handling clearing pins at startup (Mario Limonciello)
• net/sched: make psched_mtu() RTNL-less safe (Pedro Tammela)
• net/sched: flower: Ensure both minimum and maximum ports are specified (Ido Schimmel)
• cls_flower: Add extack support for src and dst port range options (Guillaume Nault)
• wifi: airo: avoid uninitialized warning in airo_get_rate() (Randy Dunlap)
• erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (Chunhai Guo)
• platform/x86: wmi: Break possible infinite loop when parsing GUID (Andy Shevchenko)
• platform/x86: wmi: move variables (Barnabas Pocze)
• platform/x86: wmi: use guid_t and guid_equal() (Barnabas Pocze)
• platform/x86: wmi: remove unnecessary argument (Barnabas Pocze)
• platform/x86: wmi: Fix indentation in some cases (Andy Shevchenko)
• platform/x86: wmi: Replace UUID redefinitions by their originals (Andy Shevchenko)
• ipv6/addrconf: fix a potential refcount underflow for idev (Ziyang Xuan)
• NTB: ntb_tool: Add check for devm_kcalloc (Jiasheng Jiang)
• NTB: ntb_transport: fix possible memory leak while device_register() fails (Yang Yingliang)
• ntb: intel: Fix error handling in intel_ntb_pci_driver_init() (Yuan Can)
• NTB: amd: Fix error handling in amd_ntb_pci_driver_init() (Yuan Can)
• ntb: idt: Fix error handling in idt_pci_driver_init() (Yuan Can)
• udp6: fix udp6_ehashfn() typo (Eric Dumazet)
• icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev(). (Kuniyuki Iwashima)
• ionic: remove WARN_ON to prevent panic_on_warn (Nitya Sunkad)
• net/sched: cls_fw: Fix improper refcount update leads to use-after-free (M A Ramdhan)
• net: mvneta: fix txq_map in case of txq_number==1 (Klaus Kudielka)
• scsi: qla2xxx: Fix error code in qla2x00_start_sp() (Dan Carpenter)
• igc: set TP bit in ‘supported’ and ‘advertising’ fields of ethtool_link_ksettings (Prasad Koya)
• igc: Remove delay during TX ring configuration (Muhammad Husaini Zulkifli)
• drm/panel: simple: Add connector_type for innolux_at043tn24 (Fabio Estevam)
• drm/panel: Add and fill drm_panel type field (Laurent Pinchart)
• drm/panel: Initialise panel dev and funcs through drm_panel_init() (Laurent Pinchart)
• workqueue: clean up WORK_* constant types, clarify masking (Linus Torvalds)
• net: lan743x: Don’t sleep in atomic context (Moritz Fischer)
• block/partition: fix signedness issue for Amiga partitions (Michael Schmitz)
• tty: serial: fsl_lpuart: add earlycon for imx8ulp platform (Sherry Sun)
• netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Thadeu Lima de Souza Cascardo)
• netfilter: conntrack: Avoid nf_ct_helper_hash uses after free (Florent Revest)
• netfilter: nf_tables: fix scheduling-while-atomic splat (Florian Westphal)
• netfilter: nf_tables: unbind non-anonymous set if rule construction fails (Pablo Neira Ayuso)
• netfilter: nf_tables: reject unbound anonymous set before commit phase (Pablo Neira Ayuso)
• netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain (Pablo Neira Ayuso)
• netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE (Pablo Neira Ayuso)
• netfilter: nf_tables: add rescheduling points during loop detection walks (Florian Westphal)
• netfilter: nf_tables: use net_generic infra for transaction data (Florian Westphal)
• netfilter: add helper function to set up the nfnetlink header and use it (Pablo Neira Ayuso)
• netfilter: nftables: add helper function to set the base sequence number (Pablo Neira Ayuso)
• netfilter: nf_tables: fix nat hook table deletion (Florian Westphal)
• block: add overflow checks for Amiga partition support (Michael Schmitz)
• fanotify: disallow mount/sb marks on kernel internal pseudo fs (Amir Goldstein)
• fs: no need to check source (Jan Kara)
• ARM: orion5x: fix d2net gpio initialization (Arnd Bergmann)
• btrfs: fix race when deleting quota root from the dirty cow roots list (Filipe Manana)
• fs: Lock moved directories (Jan Kara)
• fs: Establish locking order for unrelated directories (Jan Kara)
• Revert ‘f2fs: fix potential corruption when moving a directory’ (Jan Kara)
• ext4: Remove ext4 locking of moved directory (Jan Kara)
• fs: avoid empty option when generating legacy mount string (Thomas Weissschuh)
• jffs2: reduce stack usage in jffs2_build_xattr_subsystem() (Fabian Frederick)
• integrity: Fix possible multiple allocation in integrity_inode_get() (Tianjia Zhang)
• bcache: Remove unnecessary NULL point check in node allocations (Zheng Wang)
• mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is used. (Chevron Li)
• mmc: core: disable TRIM on Micron MTFC4GACAJCN-1M (Robert Marko)
• mmc: core: disable TRIM on Kingston EMMC04G-M627 (Robert Marko)
• NFSD: add encoding of op_recall flag for write delegation (Dai Ngo)
• ALSA: jack: Fix mutex call in snd_jack_report() (Takashi Iwai)
• i2c: xiic: Don’t try to handle more interrupt events after error (Robert Hancock)
• i2c: xiic: Defer xiic_wakeup() and __xiic_start_xfer() in xiic_process() (Marek Vasut)
• sh: dma: Fix DMA channel offset calculation (Artur Rojek)
• net: dsa: tag_sja1105: fix MAC DA patching from meta frames (Vladimir Oltean)
• net/sched: act_pedit: Add size check for TCA_PEDIT_PARMS_EX (Lin Ma)
• xsk: Honor SO_BINDTODEVICE on bind (Ilya Maximets)
• xsk: Improve documentation for AF_XDP (Magnus Karlsson)
• tcp: annotate data races in __tcp_oow_rate_limited() (Eric Dumazet)
• net: bridge: keep ports without IFF_UNICAST_FLT in BR_PROMISC mode (Vladimir Oltean)
• powerpc: allow PPC_EARLY_DEBUG_CPM only when SERIAL_CPM=y (Randy Dunlap)
• f2fs: fix error path handling in truncate_dnode() (Chao Yu)
• mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0 (Nishanth Menon)
• spi: bcm-qspi: return error if neither hif_mspi nor mspi is available (Jonas Gorski)
• Add MODULE_FIRMWARE() for FIRMWARE_TG357766. (Tobias Heider)
• sctp: fix potential deadlock on &net->sctp.addr_wq_lock (Chengfeng Ye)
• rtc: st-lpc: Release some resources in st_rtc_probe() in case of error (Christophe JAILLET)
• pwm: sysfs: Do not apply state to already disabled PWMs (Marek Vasut)
• pwm: imx-tpm: force ‘real_period’ to be zero in suspend (Fancy Fang)
• mfd: stmpe: Only disable the regulators if they are enabled (Christophe JAILLET)
• KVM: s390: vsie: fix the length of APCB bitmap (Pierre Morel)
• mfd: stmfx: Fix error path in stmfx_chip_init (Amelie Delaunay)
• serial: 8250_omap: Use force_suspend and resume for system suspend (Tony Lindgren)
• mfd: intel-lpss: Add missing check for platform_get_resource (Jiasheng Jiang)
• usb: dwc3: qcom: Release the correct resources in dwc3_qcom_remove() (Christophe JAILLET)
• KVM: s390: fix KVM_S390_GET_CMMA_BITS for GFNs in memslot holes (Nico Boehr)
• mfd: rt5033: Drop rt5033-battery sub-device (Stephan Gerhold)
• usb: hide unused usbfs_notify_suspend/resume functions (Arnd Bergmann)
• usb: phy: phy-tahvo: fix memory leak in tahvo_usb_probe() (Li Yang)
• extcon: Fix kernel doc of property capability fields to avoid warnings (Andy Shevchenko)
• extcon: Fix kernel doc of property fields to avoid warnings (Andy Shevchenko)
• usb: dwc3: qcom: Fix potential memory leak (Vladislav Efanov)
• media: usb: siano: Fix warning due to null work_func_t function pointer (Duoming Zhou)
• media: videodev2.h: Fix struct v4l2_input tuner index comment (Marek Vasut)
• media: usb: Check az6007_read() return value (Daniil Dulov)
• sh: j2: Use ioremap() to translate device tree address into kernel memory (John Paul Adrian Glaubitz)
• w1: fix loop in w1_fini() (Dan Carpenter)
• block: change all __u32 annotations to __be32 in affs_hardblocks.h (Michael Schmitz)
• block: fix signed int overflow in Amiga partition support (Michael Schmitz)
• usb: dwc3: gadget: Propagate core init errors to UDC during pullup (Krishna Kurapati)
• USB: serial: option: add LARA-R6 01B PIDs (Davide Tronchin)
• hwrng: st - keep clock enabled while hwrng is registered (Martin Kaiser)
• hwrng: st - Fix W=1 unused variable warning (Herbert Xu)
• NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION (Olga Kornievskaia)
• ARC: define ASM_NL and __ALIGN(_STR) outside #ifdef ASSEMBLY guard (Masahiro Yamada)
• modpost: fix off by one in is_executable_section() (Dan Carpenter)
• crypto: marvell/cesa - Fix type mismatch warning (Arnd Bergmann)
• modpost: fix section mismatch message for R_ARM_{PC24,CALL,JUMP24} (Masahiro Yamada)
• modpost: fix section mismatch message for R_ARM_ABS32 (Masahiro Yamada)
• crypto: nx - fix build warnings when DEBUG_FS is not enabled (Randy Dunlap)
• hwrng: virtio - Fix race on data_avail and actual data (Herbert Xu)
• hwrng: virtio - always add a pending request (Laurent Vivier)
• hwrng: virtio - don’t waste entropy (Laurent Vivier)
• hwrng: virtio - don’t wait on cleanup (Laurent Vivier)
• hwrng: virtio - add an internal buffer (Laurent Vivier)
• powerpc/mm/dax: Fix the condition when checking if altmap vmemap can cross-boundary (Aneesh Kumar K.V)
• pinctrl: at91-pio4: check return value of devm_kasprintf() (Claudiu Beznea)
• perf dwarf-aux: Fix off-by-one in die_get_varname() (Namhyung Kim)
• pinctrl: cherryview: Return correct value if pin in push-pull mode (Andy Shevchenko)
• PCI: Add pci_clear_master() stub for non-CONFIG_PCI (Sui Jingfeng)
• PCI: ftpci100: Release the clock resources (Junyan Ye)
• PCI: pciehp: Cancel bringup sequence if card is not present (Rongguang Wei)
• scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe() (Yuchen Yang)
• PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free (Ding Hui)
• scsi: qedf: Fix NULL dereference in error handling (Jinhong Zhu)
• ASoC: imx-audmix: check return value of devm_kasprintf() (Claudiu Beznea)
• clk: keystone: sci-clk: check return value of kasprintf() (Claudiu Beznea)
• clk: cdce925: check return value of kasprintf() (Claudiu Beznea)
• ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer (Su Hui)
• clk: tegra: tegra124-emc: Fix potential memory leak (Yuan Can)
• drm/radeon: fix possible division-by-zero errors (Nikita Zhandarovich)
• drm/amdkfd: Fix potential deallocation of previously deallocated memory. (Daniil Dulov)
• fbdev: omapfb: lcd_mipid: Fix an error handling path in mipid_spi_probe() (Christophe JAILLET)
• arm64: dts: renesas: ulcb-kf: Remove flow control for SCIF1 (Wolfram Sang)
• IB/hfi1: Fix sdma.h tx->num_descs off-by-one errors (Patrick Kelsey)
• soc/fsl/qe: fix usb.c build errors (Randy Dunlap)
• ASoC: es8316: Do not set rate constraints for unsupported MCLKs (Cristian Ciocaltea)
• ASoC: es8316: Increment max value for ALC Capture Target Volume control (Cristian Ciocaltea)
• memory: brcmstb_dpfe: fix testing array offset after use (Krzysztof Kozlowski)
• ARM: ep93xx: fix missing-prototype warnings (Arnd Bergmann)
• drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H (Dario Binacchi)
• arm64: dts: qcom: msm8916: correct camss unit address (Krzysztof Kozlowski)
• ARM: dts: gta04: Move model property out of pinctrl node (Tony Lindgren)
• RDMA/bnxt_re: Fix to remove an unnecessary log (Kalesh AP)
• drm: sun4i_tcon: use devm_clk_get_enabled in sun4i_tcon_init_clocks (XuDong Liu)
• Input: adxl34x - do not hardcode interrupt trigger type (Marek Vasut)
• ARM: dts: BCM5301X: Drop ‘clock-names’ from the SPI node (Rafal Milecki)
• Input: drv260x - sleep between polling GO bit (Luca Weiss)
• radeon: avoid double free in ci_dpm_init() (Nikita Zhandarovich)
• netlink: Add __sock_i_ino() for __netlink_diag_dump(). (Kuniyuki Iwashima)
• ipvlan: Fix return value of ipvlan_queue_xmit() (Cambda Zhu)
• netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value. (Ilia.Gavrilov)
• netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one (Florian Westphal)
• lib/ts_bm: reset initial match offset for every block of text (Jeremy Sowden)
• net: nfc: Fix use-after-free caused by nfc_llcp_find_local (Lin Ma)
• nfc: llcp: simplify llcp_sock_connect() error paths (Krzysztof Kozlowski)
• gtp: Fix use-after-free in __gtp_encap_destroy(). (Kuniyuki Iwashima)
• selftests: rtnetlink: remove netdevsim device after ipsec offload test (Sabrina Dubroca)
• netlink: do not hard code device address lenth in fdb dumps (Eric Dumazet)
• netlink: fix potential deadlock in netlink_set_err() (Eric Dumazet)
• wifi: ath9k: convert msecs to jiffies where needed (Dmitry Antipov)
• wifi: cfg80211: rewrite merging of inherited elements (Benjamin Berg)
• wifi: iwlwifi: pull from TXQs with softirqs disabled (Johannes Berg)
• rtnetlink: extend RTEXT_FILTER_SKIP_STATS to IFLA_VF_INFO (Edwin Peer)
• wifi: ath9k: Fix possible stall on ath9k_txq_list_has_key() (Remi Pommarel)
• memstick r592: make memstick_debug_get_tpc_name() static (Arnd Bergmann)
• kexec: fix a memory leak in crash_shrink_memory() (Zhen Lei)
• watchdog/perf: more properly prevent false positives with turbo modes (Douglas Anderson)
• watchdog/perf: define dummy watchdog_update_hrtimer_threshold() on correct config (Douglas Anderson)
• wifi: rsi: Do not set MMC_PM_KEEP_POWER in shutdown (Marek Vasut)
• wifi: ath9k: don’t allow to overwrite ENDPOINT0 attributes (Fedor Pchelkin)
• wifi: ray_cs: Fix an error handling path in ray_probe() (Christophe JAILLET)
• wifi: ray_cs: Drop useless status variable in parse_addr() (Andy Shevchenko)
• wifi: ray_cs: Utilize strnlen() in parse_addr() (Andy Shevchenko)
• wifi: wl3501_cs: Fix an error handling path in wl3501_probe() (Christophe JAILLET)
• wl3501_cs: use eth_hw_addr_set() (Jakub Kicinski)
• net: create netdev->dev_addr assignment helpers (Jakub Kicinski)
• wl3501_cs: Fix misspelling and provide missing documentation (Lee Jones)
• wl3501_cs: Remove unnecessary NULL check (Alex Dewar)
• wl3501_cs: Fix a bunch of formatting issues related to function docs (Lee Jones)
• wifi: atmel: Fix an error handling path in atmel_probe() (Christophe JAILLET)
• wifi: orinoco: Fix an error handling path in orinoco_cs_probe() (Christophe JAILLET)
• wifi: orinoco: Fix an error handling path in spectrum_cs_probe() (Christophe JAILLET)
• regulator: core: Streamline debugfs operations (Geert Uytterhoeven)
• regulator: core: Fix more error checking for debugfs_create_dir() (Geert Uytterhoeven)
• nfc: llcp: fix possible use of uninitialized variable in nfc_llcp_send_connect() (Krzysztof Kozlowski)
• nfc: constify several pointers to u8, char and sk_buff (Krzysztof Kozlowski)
• wifi: mwifiex: Fix the size of a memory allocation in mwifiex_ret_802_11_scan() (Christophe JAILLET)
• spi: spi-geni-qcom: Correct CS_TOGGLE bit in SPI_TRANS_CFG (Vijaya Krishna Nivarthi)
• samples/bpf: Fix buffer overflow in tcp_basertt (Pengcheng Yang)
• wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx (Fedor Pchelkin)
• wifi: ath9k: fix AR9003 mac hardware hang check register offset calculation (Peter Seiderer)
• ima: Fix build warnings (Roberto Sassu)
• pstore/ram: Add check for kstrdup (Jiasheng Jiang)
• evm: Complete description of evm_inode_setattr() (Roberto Sassu)
• ARM: 9303/1: kprobes: avoid missing-declaration warnings (Arnd Bergmann)
• powercap: RAPL: Fix CONFIG_IOSF_MBI dependency (Zhang Rui)
• PM: domains: fix integer overflow issues in genpd_parse_state() (Nikita Zhandarovich)
• clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe (Feng Mingxi)
• clocksource/drivers/cadence-ttc: Use ttc driver as platform driver (Rajan Vaja)
• tracing/timer: Add missing hrtimer modes to decode_hrtimer_mode(). (Sebastian Andrzej Siewior)
• irqchip/jcore-aic: Fix missing allocation of IRQ descriptors (John Paul Adrian Glaubitz)
• irqchip/jcore-aic: Kill use of irq_create_strict_mappings() (Marc Zyngier)
• md/raid10: fix io loss while replacement replace rdev (Li Nan)
• md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request (Li Nan)
• md/raid10: fix wrong setting of max_corr_read_errors (Li Nan)
• md/raid10: fix overflow of md/safe_mode_delay (Li Nan)
• md/raid10: check slab-out-of-bounds in md_bitmap_get_counter (Li Nan)
• x86/resctrl: Only show tasks’ pid in current pid namespace (Shawn Wang)
• x86/resctrl: Use is_closid_match() in more places (James Morse)
• bgmac: fix initial chip reset to support BCM5358 (Rafal Milecki)
• drm/amdgpu: Validate VM ioctl flags. (Bas Nieuwenhuizen)
• scripts/tags.sh: Resolve gtags empty index generation (Ahmed S. Darwish)
• drm/i915: Initialise outparam for error return from wait_for_register (Chris Wilson)
• HID: wacom: Use ktime_t rather than int when dealing with timestamps (Jason Gerecke)
• fbdev: imsttfb: Fix use after free bug in imsttfb_probe (Zheng Wang)
• video: imsttfb: check for ioremap() failures (Greg Kroah-Hartman)
• x86/smp: Use dedicated cache-line for mwait_play_dead() (Thomas Gleixner)
• gfs2: Don’t deref jdesc in evict (Bob Peterson)
• LTS tag: v5.4.250 (Sherry Yang)
  [5.4.17-2136.323.2.el8]
• x86/cpu/amd: Add a Zenbleed fix (Borislav Petkov (AMD)) [Orabug: 35641578]
• x86/cpu/amd: Move the errata checking functionality up (Borislav Petkov (AMD)) [Orabug: 35641578]
• ocfs2: always read both high and low parts of dinode link count (Alexey Asemov) [Orabug: 35643003]
• ovl: Always reevaluate the file signature for IMA (Eric Snowberg) [Orabug: 35646439]
• bpf: fix NULL pointer dereferences when vmlinux BTF is absent (Alan Maguire) [Orabug: 35623657]
• SUNRPC: Ensure the transport backchannel association (Benjamin Coddington) [Orabug: 35643879]
  [5.4.17-2136.323.1.el8]
• uek-rpm: Change the toolchain version in OL8 (Jack Vogel) [Orabug: 35378775]
• net/rds: Allow MSG_NOSIGNAL in sendmsg (Gerd Rausch) [Orabug: 35640816]