summaryrefslogtreecommitdiffstats
path: root/meta
Commit message (Collapse)AuthorAgeFilesLines
...
* ffmpeg: fix CVE-2024-36618Archana Polampalli2025-02-282-0/+37
| | | | | | | | | | FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition. (From OE-Core rev: 46680bed23ef6f529c7e554b5611a7c098fce8a9) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gstreamer1.0-rtsp-server: fix CVE-2024-44331Archana Polampalli2025-02-282-1/+47
| | | | | | | | | | | Incorrect Access Control in GStreamer RTSP server 1.25.0 in gst-rtsp-server/rtsp-media.c allows remote attackers to cause a denial of service via a series of specially crafted hexstream requests. (From OE-Core rev: ce328462a12eeaa59994e2236071aa17a083c263) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ffmpeg: ignore CVE-2024-7272Peter Marko2025-02-281-0/+5
| | | | | | | | | This vulnerability was introduced in 5.1, so 5.0.1 is not affected. (From OE-Core rev: ea6e581067cafd5f367c68871bc312d3ba11b4da) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ffmpeg: ignore 5 CVEsPeter Marko2025-02-281-0/+18
| | | | | | | | | | | | | | There is no release which is vulnerable to these CVEs. These vulnerabilities are in new features being developed and were fixed before release. NVD most likely does not accept CVE rejection from a non-maintainer and non-reporter, so ignoring this CVE should be acceptable solution. (From OE-Core rev: 220a05e27913bf838881c3f22a17d0409c5154a9) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libcap: fix CVE-2025-1390Hitendra Prajapati2025-02-282-0/+37
| | | | | | | | | Upstream-Status: Backport from https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=1ad42b66c3567481cc5fa22fc1ba1556a316d878 (From OE-Core rev: 142715b83fb2c5f4dfeeab2c6e7feccecd1ca46f) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libxml2: patch CVE-2025-24928Peter Marko2025-02-282-0/+59
| | | | | | | | | Pick commit fomr 2.12 branch. (From OE-Core rev: 3ccd936adb928612c9721768708534350aeee351) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libxml2: patch CVE-2024-56171Peter Marko2025-02-282-0/+43
| | | | | | | | | Pick commit from 2.12 branch. (From OE-Core rev: ab804cd27ecf7ee65a9feea477140502ecbc0d73) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libxml2: fix compilation of explicit child axis in patternPeter Marko2025-02-282-0/+32
| | | | | | | | | | | This was reported as sucurity fix in https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.10 https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.6 (From OE-Core rev: 0dc99e25c16a1e74aa80ca20132609990bb9dff7) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* Revert "ovmf: Fix CVE-2023-45236"Kai Kang2025-02-282-830/+0
| | | | | | | | | | | | This reverts commit a9cd3321558e95f61ed4c5eca0dcf5a3f4704925. The fix for CVE-2023-45237 has been reverted. And the fix for CVE-2023-45236 depends on it. So revert it too. (From OE-Core rev: c61e31f192837b05bc309a05aef95c3be5b44997) Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* Revert "ovmf: Fix CVE-2023-45237"Kai Kang2025-02-283-1368/+0
| | | | | | | | | | | | | | | | | | | | | | This reverts commit 6f8bdaad9d22e65108f859a695277ce1b20ef7c6. his reverts commit 4c2d3e37308cac98614dfafed79b7323423af8bc. The fix for CVE-2023-45237 causes ovmf firmware not support pxe boot any more and no boot item in OVMF menu such as UEFI PXEv4 (MAC address) It has not been fixed by ovmf upstream and an issue has been created on https://github.com/tianocore/tianocore.github.io/issues/82 Revert the fixes for now. (From OE-Core rev: d3f399f54042efc6f4ca2092dd11819ae1f7c51f) Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2024-57259Hongxu Jia2025-02-282-0/+42
| | | | | | | | | | | | | sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation. https://nvd.nist.gov/vuln/detail/CVE-2024-57259 (From OE-Core rev: e4b713ff07695487cc9307ffc3576a11775cde4d) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2024-57258Hongxu Jia2025-02-284-0/+133
| | | | | | | | | | | | | Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64. https://nvd.nist.gov/vuln/detail/CVE-2024-57258 (From OE-Core rev: b4bf3ba66052db7a311ac696563a8a0f9c585600) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2024-57257Hongxu Jia2025-02-282-0/+229
| | | | | | | | | | | | A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with deep symlink nesting. https://nvd.nist.gov/vuln/detail/CVE-2024-57257 (From OE-Core rev: 5ed8ad78bcce836aa8894de7a1d7fdf719e5bbca) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2024-57256Hongxu Jia2025-02-282-0/+52
| | | | | | | | | | | | | | An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite. https://nvd.nist.gov/vuln/detail/CVE-2024-57256 (From OE-Core rev: 534aa63726f31241e3a9d4aa70d4005fa0300133) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2024-57255Hongxu Jia2025-02-282-0/+54
| | | | | | | | | | | | | An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite. https://nvd.nist.gov/vuln/detail/CVE-2024-57255 (From OE-Core rev: 687b6e0a166d7dc999b7d226a9bd68155f59a03a) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2024-57254Hongxu Jia2025-02-282-0/+48
| | | | | | | | | | | | | An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem. https://nvd.nist.gov/vuln/detail/CVE-2024-57254 (From OE-Core rev: 956836ab347e9112be0f8892b1b82c4bcb17990c) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: fix CVE-2022-2347 and CVE-2022-30790Sakib Sajal2025-02-284-0/+347
| | | | | | | | | Backport appropriate patches to fix CVE-2022-2347 and CVE-2022-30790. (From OE-Core rev: 7a5220a4877cd4d3766728e8a3525c157b6167fb) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* u-boot: Fix CVE-2022-30767Carlos Dominguez2025-02-282-0/+45
| | | | | | | | | | | | | | | | | This patch mitigates the vulnerability identified via CVE-2019-14196. The previous patch was bypassed/ineffective, and now the vulnerability is identified via CVE-2022-30767. The patch removes the sanity check introduced to mitigate CVE-2019-14196 since it's ineffective. filefh3_length is changed to unsigned type integer, preventing negative numbers from being used during comparison with positive values during size sanity checks. (From OE-Core rev: b7072637ba110718714745a01d67e1b6b0096165) Signed-off-by: Carlos Dominguez <carlos.dominguez@windriver.com> Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* procps: replaced one use of fputs(3) with a write(2) callMingli Yu2025-02-243-0/+110
| | | | | | | | | | | | | | | | | | | | | | | | | This patch is ported from a merge request shown below, and the following represents the original commit text. ------------------------------------------------------ top: In the bye_bye function, replace fputs with the write interface. When top calls malloc, if a signal is received, it will call sig_endpgm to process the signal. In the bye_bye function, if the -b option is enable, the Batch variable is set, the fputs function will calls malloc at the same time. The malloc function is not reentrant, so it will cause the program to crash. (From OE-Core rev: 573f5b2d8fec9f8a4ed17e836ef3feeb6de62e5a) Signed-off-by: Shaohua Zhan <shaohua.zhan@windriver.com> ------------------------------------------------------ Reference(s): https://gitlab.com/procps-ng/procps/-/merge_requests/127 Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ffmpeg: fix CVE-2024-36617Archana Polampalli2025-02-242-0/+39
| | | | | | | | | FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder. (From OE-Core rev: aec2ad743893d72d46c79701a0dac982931e3171) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ffmpeg: fix CVE-2024-36616Archana Polampalli2025-02-242-0/+38
| | | | | | | | | | An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows attackers to cause a denial of service in the application via a crafted VQA file. (From OE-Core rev: 93a1e2fd2bb42977339510ef7d71288a88a34ab8) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ffmpeg: fix CVE-2024-36613Archana Polampalli2025-02-242-0/+39
| | | | | | | | | | | FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behavior. (From OE-Core rev: 1af53c8dd20662e720ac4dad31833a9d776b795a) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ffmpeg: CVE-2025-0518Archana Polampalli2025-02-242-0/+35
| | | | | | | | | | | | | | | Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows Read Sensitive Constants Within an Executable. This vulnerability is associated with program files https://github.Com/FFmpeg/FFmpeg/blob/master/libavfilter/af_pan.C . This issue affects FFmpeg: 7.1. Issue was fixed: https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a This issue was discovered by: Simcha Kosman (From OE-Core rev: 52cbeaa086d2cc0c0aae46deb4193ccb5427ecdc) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gnutls: fix CVE-2024-12243Archana Polampalli2025-02-242-0/+1161
| | | | | | | | | | | | | A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition. (From OE-Core rev: 5fbe46de6d2e3862316cf486503f18e616c3c0a7) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ruby: fix CVE-2024-41946Divya Chellam2025-02-242-0/+118
| | | | | | | | | | | | | | | | | | REXML is an XML toolkit for Ruby. The REXML gem 3.3.2 has a DoS vulnerability when it parses an XML that has many entity expansions with SAX2 or pull parser API. The REXML gem 3.3.3 or later include the patch to fix the vulnerability. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-41946 Upstream-patch: https://github.com/ruby/rexml/commit/033d1909a8f259d5a7c53681bcaf14f13bcf0368 (From OE-Core rev: b0e74fd8922bba8e954a223ec46de5c33d2ff743) Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libxml2: Fix for CVE-2022-49043Vijay Anusuri2025-02-242-0/+39
| | | | | | | | | | | | Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/-/commit/5a19e21605398cef6a8b1452477a8705cb41562b] Reference: https://access.redhat.com/security/cve/cve-2022-49043 (From OE-Core rev: 82b6c943bb6435171d1924cbebe794b901eb3705) Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* libpcre2: ignore CVE-2022-1586Peter Marko2025-02-241-0/+4
| | | | | | | | | | | | | This CVE is fixed in 10.40 NVD wrongly changed <10.40 to =10.40 when adding debian_linux=10.0 Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-1586#VulnChangeHistorySection (From OE-Core rev: 63cbfcd0262d65c66762aa6a8b17b8e8b809737f) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* subversion: ignore CVE-2024-45720Peter Marko2025-02-241-0/+3
| | | | | | | | | | | | | Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-45720 This CVE is relevant only for subversion running on Windows. (From OE-Core rev: 52cbf6b96952896b16dad34d9eb215fcab88ded2) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Reviewed-by: Sofiane Hamam <sofiane.hamam@smile.fr> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* build-appliance-image: Update to kirkstone head revisionyocto-4.0.25kirkstone-4.0.25Steve Sakoman2025-02-151-1/+1
| | | | | | (From OE-Core rev: 5a794fd244f7fdeb426bd5e3def6b4effc0e8c62) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* classes-global/insane: Look up all runtime providers for file-rdepsJoshua Watt2025-02-151-18/+12
| | | | | | | | | | | | | | | Uses the new foreach_runtime_provider_pkgdata() API to look up all possible runtime providers of a given dependency when resolving file-rdeps. This allows the check to correctly handle RPROVIDES for non-virtual dependencies (From OE-Core rev: 018fa1b7cb5e6a362ebb45b93e52b0909a782ac9) (From OE-Core rev: 0ff31972b60dda5d8bada2ffb428cc54bb49e8cf) Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* lib/packagedata.py: Add API to iterate over rprovidesJoshua Watt2025-02-151-0/+15
| | | | | | | | | | | | | Adds an API that makes it easier to iterate over the package data for a all providers of a runtime dependency. (From OE-Core rev: 68bdc219a4a819e83217f5b54c463624af8d3b9e) (From OE-Core rev: 579717212ba2892e32315788ccd65320556d32a3) Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* openssl: upgrade 3.0.15 -> 3.0.16Peter Marko2025-02-153-330/+1
| | | | | | | | | | | | | | Release information: https://github.com/openssl/openssl/blob/openssl-3.0/NEWS.md#major-changes-between-openssl-3015-and-openssl-3016-11-feb-2025 All CVEs were already patched, so this upgrade fixes only minor bugs. Remove CVE patches included in the new version. (From OE-Core rev: 68c01710e3522af317f8fe09465b56e6aca01615) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* cmake: apply parallel build settings to ptest tasksPeter Marko2025-02-151-0/+2
| | | | | | | | | | | | | | | | | | ptest compile and install tasks do not have parallel build settings for cmake. On powerful build machines this can cause overload situations and oomkills. Observed when building qtgrpc with ptest generally enabled in distro. Having this in ptest class is suboptimal, but creating ptest-cmake class just for these two variables is probably overkill. (From OE-Core rev: 3c311fbf0c2090268e9b83123d762b05b61b4074) (From OE-Core rev: bd12abeff6ee14385fba63fa5ba15d9fadec4d0e) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* python3: Treat UID/GID overflow as failureKhem Raj2025-02-152-0/+41
| | | | | | | | | | | | | | | | | | | | | | | | This fixes ptest failures on 32bit architectures AssertionError: Failed ptests: {'python3': ['test_extractall_none_gid', 'test_extractall_none_gname', 'test_extractall_none_mode', 'test_extractall_none_mtime', 'test_extractall_none_uid', 'test_extractall_none_uname', 'setUpClass', 'python3']} (From OE-Core rev: 838f3cff2a123fb7d5833b6760772ded6efb60bd) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 43104b547cb79693c83df0882773ae8dd74b1d35) Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* rust-common.bbclass: soft assignment for RUSTLIB pathPedro Ferreira2025-02-151-1/+1
| | | | | | | | | | | | | | | | | | | | | | As a user i want to override `RUSTLIB` path on a bbclass, lets call it `XYZ.bbclass`. If a certain recipe inherits `cargo.bbclass` and `XYZ.bbclass` the value of `RUSTLIB` is dependent on the order of the inherit. If `cargo.bbclass` is inherit before `XYZ.bbclass` this will reflect the desired value of `RUSTLIB`, on the oposite, if the `XYZ.bbclass` is inherit before `cargo.bbclass` then the `RUSTLIB` defined on `rust-common.bbclass` will prevail. Changed definition of `RUSTLIB` to soft assignment to make it overridable. (From OE-Core rev: d8ccc3ad338a8020c998566249af2019baaa6e44) Signed-off-by: Pedro Silva Ferreira <Pedro.Silva.Ferreira@criticaltechworks.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> (cherry picked from commit 6eeb832f73ffb48f5f05dc47191f60e4599e640f) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* glibc: Suppress GCC -Os warning on user2netname for sunrpcNikhil R2025-02-152-0/+62
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | When building with GCC -Os, a warning is triggered indicating that sprintf might overflow. Error: netname.c: In function 'user2netname': netname.c:51:28: error: '%s' directive writing up to 255 bytes into a region of size between 239 and 249 [-Werror=format-overflow=] 51 | sprintf (netname, "%s.%d@%s", OPSYS, uid, dfltdom); | ^~ ~~~~~~~ netname.c:51:3: note: 'sprintf' output between 8 and 273 bytes into a destination of size 256 51 | sprintf (netname, "%s.%d@%s", OPSYS, uid, dfltdom); | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ cc1: all warnings being treated as errors However the code does test prior the sprintf call that dfltdom plus the required extra space for OPSYS, uid, and extra character will not overflow and return 0 instead. Upstream-patch: https://github.com/bminor/glibc/commit/6128e82ebe973163d2dd614d31753c88c0c4d645 Reviewed-by: Carlos O'Donell <carlos@redhat.com> Tested-by: Carlos O'Donell <carlos@redhat.com> (From OE-Core rev: 78fac0f623e01bd52b2ea3a597d056726deca8a4) Signed-off-by: Nikhil R <nikhilr5@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* linux-yocto/5.15: update to v5.15.178Bruce Ashfield2025-02-153-19/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating linux-yocto/5.15 to the latest korg -stable release that comprises the following commits: c16c81c81336 Linux 5.15.178 6cfafcad46e9 drm/v3d: Assign job pointer to NULL before signaling the fence 8b74aa1e1c08 Input: xpad - add support for wooting two he (arm) c9d4d5785f2d Input: xpad - add unofficial Xbox 360 wireless receiver clone 1475c07bf30f Input: atkbd - map F23 key to support default copilot shortcut 66453ea6ed0a ALSA: usb-audio: Add delay quirk for USB Audio Device 20ce02f2f73a Revert "usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null" 6068dcff7f19 USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() 091a023cf2ae wifi: iwlwifi: add a few rate index validity checks 81d4dd05c412 scsi: storvsc: Ratelimit warning logs to prevent VM denial of service 6ac5dfa57513 ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find() 84adb88c8027 platform/chrome: cros_ec_typec: Check for EC driver 542532afe249 fs/ntfs3: Additional check in ntfs_file_release 00767fbd67af Bluetooth: RFCOMM: Fix not validating setsockopt user input 2c2dc87cdebe Bluetooth: SCO: Fix not validating setsockopt user input 92340e6c5122 vfio/platform: check the bounds of read/write syscalls bcf0d815e728 net: sched: fix ets qdisc OOB Indexing 4e3ded34f3f3 gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag 322948a57582 mptcp: don't always assume copied data in mptcp_cleanup_rbuf() 2c3524a308b2 regmap: detach regmap from dev on regmap_exit df560e90a4d6 ASoC: samsung: Add missing depends on I2C 72370a2bc2e6 irqchip/sunxi-nmi: Add missing SKIP_WAKE flag 46bdd737a16b scsi: iscsi: Fix redundant response for ISCSI_UEVENT_GET_HOST_STATS request 318ebf851143 seccomp: Stub for !CONFIG_SECCOMP 42b4b670bd23 ASoC: samsung: Add missing selects for MFD_WM8994 0783cd485b4a ASoC: wm8994: Add depends on MFD core 003148680b79 Linux 5.15.177 448fe5a1a4b5 Partial revert of xhci: use pm_ptr() instead #ifdef for CONFIG_PM conditionals 0bd4efe3226d xhci: use pm_ptr() instead of #ifdef for CONFIG_PM conditionals c3d052cae566 net: fix data-races around sk->sk_forward_alloc 198b89dd5a59 scsi: sg: Fix slab-use-after-free read in sg_release() 9a4d196e8a5e x86/xen: fix SLS mitigation in xen_hypercall_iret() 167cbd3e5268 nfsd: add list_head nf_gc to struct nfsd_file e43dd28405e6 ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() 6486915fa661 vsock/virtio: discard packets if the transport changes 8a07350fe070 blk-cgroup: Fix UAF in blkcg_unpin_online() e667d5d566a2 Revert "regmap: detach regmap from dev on regmap_exit" d8ebb991790f Revert "drm/amdgpu: rework resume handling for display (v2)" 7a07fb80ea88 iio: adc: rockchip_saradc: fix information leak in triggered buffer b5c2c988cb6a iio: imu: inv_icm42600: fix timestamps after suspend if sensor is on 96ac1454f343 iio: imu: inv_icm42600: fix spi burst write not supported 39f320df3537 Revert "PCI: Use preserve_config in place of pci_flags" ac3dd2497e6e drm/i915/fb: Relax clear color alignment to 64 bytes 15b453db41d3 hrtimers: Handle CPU state correctly on hotplug 59472bf85a3c irqchip/gic-v3: Handle CPU_PM_ENTER_FAILED correctly 2d008d4961b0 gpiolib: cdev: Fix use after free in lineinfo_changed_notify 649b266606bc fs/proc: fix softlockup in __read_vmcore (part 2) 64e5fd96330d filemap: avoid truncating 64-bit offset to 32 bits 9e5fed46ccd2 vsock: prevent null-ptr-deref in vsock_*[has_data|has_space] a4606b774de2 vsock: reset socket state when de-assigning the transport 048dbd2b5b85 vsock/virtio: cancel close work in the destructor 92f1b7930f13 net: ethernet: xgbe: re-add aneg to supported features in PHY quirks aba13043e628 x86/asm: Make serialize() always_inline 612269eb3f8f nvmet: propagate npwg topology 7df94f7f9e22 poll_wait: add mb() to fix theoretical race between waitqueue_active() and .poll() 1c878c5527e1 ACPI: resource: acpi_dev_irq_override(): Check DMI match last a592ce58ca78 kheaders: Ignore silly-rename files 2d1a5a595bf2 fs: fix missing declaration of init_files 87e207b6aa93 hfs: Sanity check the root record 80aee0bc0dbe mac802154: check local interfaces before deleting sdata list c5f1bc1d2324 i2c: rcar: fix NACK handling when being a target 6c6e0961ccfd i2c: mux: demux-pinctrl: check initial mux selection, too 37c63955ca68 Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" 2f176c0ec9f5 hwmon: (tmp513) Fix division of negative numbers 14e0a874488e drm/v3d: Ensure job pointer is set to NULL after job completion 83775c9a9a65 net/mlx5: Fix RDMA TX steering prio a04effa1b79f net/mlx5: Refactor mlx5_get_flow_namespace ef6bb594598b net/mlx5: Add priorities for counters in RDMA namespaces 3cc3575223c6 net: xilinx: axienet: Fix IRQ coalescing packet count overflow fdfe7ef525ad nfp: bpf: prevent integer overflow in nfp_bpf_event_output() 036f8d814a2c gtp: Destroy device along with udp socket's netns dismantle. ed8be92df48d gtp: Use for_each_netdev_rcu() in gtp_genl_dump_pdp(). a111a7487f65 gtp: use exit_batch_rtnl() method 041325b73abc net: add exit_batch_rtnl() method 3450092cc2d1 pktgen: Avoid out-of-bounds access in get_imix_entries 0ab52a8ca6e1 bpf: Fix bpf_sk_select_reuseport() memory leak 9bb26176fba5 net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field() 9f15cd4174d0 phy: usb: Fix clock imbalance for suspend/resume 795537eb2af1 phy: usb: Use slow clock for wake enabled suspend 88b01048f286 mptcp: fix TCP options overflow. 05ba00d97bb4 mptcp: drop port parameter of mptcp_pm_add_addr_signal f44e6d70c100 ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv 86f8046aa649 ocfs2: correct return value of ocfs2_local_free_info() 0552befaccd8 phy: usb: Toggle the PHY power during init d0178cb2ccea phy: usb: Add "wake on" functionality for newer Synopsis XHCI controllers b2cec0d8f676 of: address: Preserve the flags portion on 1:1 dma-ranges mapping 6a7832e332d9 of: address: Store number of bus flag cells rather than bool 1b868ff7950b of: address: Remove duplicated functions 19ec883a51bd of: address: Fix address translation when address-size is greater than 2 b3f6bed9bf61 of/address: Add support for 3 address cell bus bce3629a9e53 of: unittest: Add bus address range parsing tests 437b875e7389 arm64: dts: rockchip: add hevc power domain clock to rk3328 f587c1ac6895 block, bfq: fix waker_bfqq UAF after bfq_split_bfqq() e43dfc4a9c15 iio: adc: ad7124: Disable all channels at probe time d83ccca9e17e iio: inkern: call iio_device_put() only on mapped devices 028a1ba8e3ba iio: adc: at91: call input_free_device() on allocated iio_dev 060214459b63 iio: adc: ti-ads124s08: Use gpiod_set_value_cansleep() c31009d2bd49 iio: gyro: fxas21002c: Fix missing data update in trigger handler aae967380068 iio: adc: ti-ads8688: fix information leak in triggered buffer a07f69808441 iio: imu: kmx61: fix information leak in triggered buffer cb488706cdec iio: light: vcnl4035: fix information leak in triggered buffer 006073761888 iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer 64a989aa7475 iio: pressure: zpa2326: fix information leak in triggered buffer 19fc1c83454c usb: gadget: f_fs: Remove WARN_ON in functionfs_bind d9d18e2011c1 usb: gadget: f_uac2: Fix incorrect setting of bNumEndpoints 7cdb2d0f1af9 usb: fix reference leak in usb_new_device() 162428a00a0c USB: core: Disable LPM only for non-suspended ports 8309c947b208 USB: usblp: return error when setting unsupported protocol d2de56cc45ee usb: gadget: u_serial: Disable ep before setting port to null to fix the crash caused by port being null 1c7818e2746e topology: Keep the cpumask unchanged when printing cpumap 85b8a1a3176d usb: dwc3: gadget: fix writing NYET threshold 7f626e8e148c USB: serial: cp210x: add Phoenix Contact UPS Device 2165ef034891 usb-storage: Add max sectors quirk for Nokia 208 2748a203e098 staging: iio: ad9832: Correct phase range check e299dcbfc039 staging: iio: ad9834: Correct phase range check 98645eac8ed4 USB: serial: option: add Neoway N723-EA support f072315c5d41 USB: serial: option: add MeiG Smart SRM815 203f38eb72f2 md/raid5: fix atomicity violation in raid5_cache_count 3b930badf88d scripts/sorttable: fix orc_sort_cmp() to maintain symmetry and transitivity 1e5cc8d5b121 drm/amd/display: increase MAX_SURFACES to the value supported by hw dd3f23919b4d ACPI: resource: Add Asus Vivobook X1504VAP to irq1_level_low_skip_override[] 21db38809fb8 ACPI: resource: Add TongFang GM5HG0A to irq1_edge_low_force_override[] 10c24df2e303 riscv: Fix sleeping in invalid context in die() 95793f9684e5 drm/amd/display: Add check for granularity in dml ceil/floor helpers 1dc5da6c4178 sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy 0a0966312ac3 sctp: sysctl: udp_port: avoid using current->nsproxy bd2a29394235 sctp: sysctl: auth_enable: avoid using current->nsproxy 0f78f0946674 sctp: sysctl: rto_min/max: avoid using current->nsproxy 86ddf8118123 sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy e52a55ec2d1f dm-ebs: don't set the flag DM_TARGET_PASSES_INTEGRITY 802666a40c71 dm thin: make get_first_thin use rcu-safe list first function 7cb3e77e9b4e afs: Fix the maximum cell name length 781c743e18bf ksmbd: fix a missing return value check bug e719611285cd drm/mediatek: Add support for 180-degree rotation in the display driver b1b2353d768f netfilter: conntrack: clamp maximum hashtable size to INT_MAX 2f2c1ce86708 netfilter: nf_tables: imbalance in flowtable binding 6d6ce5f75d0e tls: Fix tls_sw_sendmsg error handling 8fe5fcf25438 cxgb4: Avoid removal of uninserted tid 0cfe1297df07 bnxt_en: Fix possible memory leak when hwrm_req_replace fails a313d6e6d5f3 net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute 10923508eb77 tcp/dccp: allow a connection when sk_max_ack_backlog is zero bcd1557f1d38 tcp/dccp: complete lockless accesses to sk->sk_max_ack_backlog e67fff8fd12c net: 802: LLC+SNAP OID:PID lookup on start of skb data 8cc8bdfbe065 ieee802154: ca8210: Add missing check for kfifo_alloc() in ca8210_probe() 294b9826da0e ASoC: mediatek: disable buffer pre-allocation 1f94fe692b7e exfat: fix the infinite loop in __exfat_free_cluster() 28c21f0ac529 exfat: fix the infinite loop in exfat_readdir() 3995b25d000c dm array: fix cursor index when skipping across block boundaries c850ddd1e1d8 dm array: fix unreleased btree blocks on closing a faulty array cursor 738994872d77 dm array: fix releasing a faulty array block twice in dm_array_cursor_end 6029c4240529 jbd2: flush filesystem device before updating tail sequence d42ad3f161a5 ceph: give up on paths longer than PATH_MAX b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request 6f0605db50e2 clk: imx: Add check for kcalloc 5b837b9e1543 bpf: Fix the indention issue in grow_stack_state() 42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size() b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub 7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr() 81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ] c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail() 299ef3b5b00b of: module: add buffer overflow check in of_modalias() b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change ea091017ef62 ipv6: Fix data races around sk->sk_prot. ff8710da80ee ipv6: annotate some data-races around sk->sk_prot e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops. 8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock 7c82dac02886 block, loop: support partitions without scanning 45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded 1f24338cb789 jbd2: Drop the merge conflicted hunk e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes 1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes 6224acfc1d56 tpm: Add flag to use default cancellation policy 1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops 1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13 24615a3b932a ata: ahci: fix enum constants for gcc-13 5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf 130f9da78406 tools/resolve_btfids: Build with host flags 00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang 17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building 7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated 37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy da5513f30187 libbpf: Fix build warning on ref_ctr_off 4c5a089621a8 perf python: Account for multiple words in CC 1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers 838f5d0701d8 fs: add mode_strip_sgid() helper d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack 1363bd7dbde3 ixgbevf: add disable link state e5601ae2bd24 ixgbe: add improvement for MDD response functionality caa57cd80575 ixgbe: add the ability for the PF to disable VF link state 16a77bfcc7df Check /dev/console using init_stat() 04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data 0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully 1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES 493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition 04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered 6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve 1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field 6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash a40d2daf2795 pnmtologo: use relocatable file name 3b40d5b41155 of: configfs: remove unused variable overlay_lock 6c085baf1838 tools: use basename to identify file in gen-mach-types 2fca0fd71981 lib/build_OID_registry: fix reproducibility issues 0f586f4ee8ad vt/conmakehash: improve reproducibility a75774679f28 OF: DT-Overlay configfs interface (v8) d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer() 856ec356cf91 ACPI: thermal: drop an always true check 7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC 41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o 44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs() 77aa9e489eaf bpf: Disallow unprivileged bpf by default ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups 4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal"" 5df6d1b00f95 jbd2: fix use-after-free of transaction_t race 2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function 07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction 4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal" 7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack f78574dee71e kasan: test: silence intentional read overflow warnings d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC 5e279d5647cc arm64: support page mapping percpu first chunk allocator e5bf16752dca vmalloc: choose a better start address in vm_area_register_early() 660b3d21b46f kasan: test: bypass __alloc_size checks 00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write 67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack 7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc() bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack() 51423ebb36ad lib/stackdepot: introduce __stack_depot_save() 85373e66d847 lib/stackdepot: remove unused function argument 5b6cc9b251f3 lib/stackdepot: include gfp.h c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case. b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic() 13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence 21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221 6199fd896645 aufs: tiny, headers after fs_context 8ddb40e31c29 aufs: fs_context 7/7, finally remount 69035f71c6fd aufs: fs_context 6/7, now mount bc841b970697 aufs: fs_context 5/7, parse all other mount options 435188053da2 aufs: fs_context 4/7, parse xino options 9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options 1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option a8488f603134 aufs: fs_context 1/7, skelton of the new shceme 8e32e0015564 aufs: pre fs_context, convert a static flag to a macro f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case 948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo() 77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117 2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129 7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone 66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl() 69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018 b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes" 81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation 97c963889222 sched/isolation: really align nohz_full with rcu_nocbs 871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards" ffad0783dd5b ARM: config: multi v7: Regenerate defconifg 5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols badaf96564fe ARM: config: multi v7: Clean up enabled by default options 34996040fc9b ARM: config: multi v7: Drop unavailable options 7f685244afb3 powerpc/mm: Switch obsolete dssall to .long 20301aeb1a64 riscv: fix build with binutils 2.38 9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error 720b61fc400b x86_64_defconfig: Fix warnings 02bf23d26bc4 arm64: defconfig: cleanup config options 05914e2c87e5 arm: defconfig: drop unused POWER_AVS option ffb532fa19b9 aufs5: fix build against v5.15.3+ a4b3abf4d96d qemux86: add configuration symbol to select values fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter 3d8762d900d9 clear_warn_once: bind a timer to written reset value 95faacac47e8 clear_warn_once: expand debugfs to include read support de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel. 0e4aacead9c1 perf: x86-32: explicitly include <errno.h> 9ad92c11468e perf: mips64: Convert __u64 to unsigned long long 09e7efe3e68a perf: fix bench numa compilation e79becc44fa6 perf: add SLANG_INC for slang.h b1033b588681 perf: add sgidefs.h to for mips builds cf9db484ac0b perf: change --root to --prefix for python install 7fd052c2c562 perf: add 'libperl not found' warning 27a437cdd469 perf: force include of <stdbool.h> 3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat a7e9293b506b FAT: Added FAT_NO_83NAME 6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option 538be0fdb124 aufs: adjust to v5.15 fs changes f45da75c8759 aufs5: core 047f57e07e01 aufs5: standalone 029fc15574c8 aufs5: mmap 610d0192ee94 aufs5: base d4e428d0ec5f aufs5: kbuild eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL 286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name 24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested) 22c73536d5d7 yaffs: include blkdev.h 506b7251bfb8 yaffs: fix misplaced variable declaration a0e26ff364dc yaffs2: v5.6 build fixups b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super 2e3c3aec8279 yaffs: repair yaffs_get_mtd_device d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API 70a6113ee2c7 yaffs2: fix memory leak in mount/umount 3378e4a9e404 yaffs: Avoid setting any ACL releated xattr ec2284edddef Yaffs:check oob size before auto selecting Yaffs1 c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY 608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020) 89e660ece42c initramfs: allow an optional wrapper script around initramfs generation b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally 3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119) d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation d202fb2caf33 defconfigs: drop obselete options 9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled e20d8cf019b4 linux-yocto: Handle /bin/awk issues b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion adb40f1e6a1a uvesafb: print error message when task timeout occurs f280a1ed0962 compiler.h: Undef before redefining __attribute_const__ 4352732f268c vmware: include jiffies.h 7954a677968d Resolve jiffies wrapping about arp 5f28a1035d95 nfs: Allow default io size to be configured. 0d7260ad7106 check console device file on fs when booting 900a12e37e0a mount_root: clarify error messages for when no rootfs found 7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location 6604fc1763b3 modpost: mask trivial warnings 0d294adb09cb kbuild: exclude meta directory from distclean processing a097cdd95a9e powerpc: serialize image targets 5db6ec39a0a3 arm: serialize build targets cbabca27905e crtsavres: fixups for 5.4+ 7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8 a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8 186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild d1ea862964ca powerpc: kexec fix for powerpc64 2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core 2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code ec57870b303a mips: Kconfig: add QEMUMIPS64 option 6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency 74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c 22e65b63d3b4 arm/Makefile: Fix systemtap b7f1ab59f19e vexpress: Pass LOADADDR to Makefile ce2800c73bf7 arm: ARM EABI socketcall 019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault (From OE-Core rev: 709bfb0e600148d65018db450a69de220c874efd) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* linux-yocto/5.15: update to v5.15.176Bruce Ashfield2025-02-153-19/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Updating linux-yocto/5.15 to the latest korg -stable release that comprises the following commits: 4735586da88e Linux 5.15.176 63eac98d6f08 mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() 5c4eb5401d7e dt-bindings: display: adi,adv7533: Drop single lane support 0f51034bb813 drm: adv7511: Drop dsi single lane support f9c3adb083d3 net/sctp: Prevent autoclose integer overflow in sctp_association_init() d809d1aabec8 sky2: Add device ID 11ab:4373 for Marvell 88E8075 9372e160d821 pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking c2f961c46ea0 RDMA/uverbs: Prevent integer overflow issue 9aeece68684c kcov: mark in_softirq_really() as __always_inline 362f86f3ee45 modpost: fix the missed iteration for the max bit in do_input() 3b5efbf000d5 modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host ef26e5bb560b usb: xhci: Avoid queuing redundant Stop Endpoint commands f4539c3cab44 ARC: build: Try to guess GCC variant of cross compiler 84142875b293 irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base faab60ed274d net: usb: qmi_wwan: add Telit FE910C04 compositions cc63b8c102c4 bpf: fix potential error return 2dedcab091f2 sound: usb: format: don't warn that raw DSD is unsupported 01b3661663c5 sound: usb: enable DSD output for ddHiFi TC44C 63f4b594a688 btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount 22d36ad92e57 drm/amdkfd: Correct the migration DMA map direction bd3eca303b3f wifi: mac80211: wake the queues in case of failure in resume efbdbf36c338 btrfs: sysfs: fix direct super block member reads 0efdc0606fc8 btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit 526ff5b27f09 btrfs: fix use-after-free when COWing tree bock and tracing is enabled d4a7270b37d0 btrfs: rename and export __btrfs_cow_block() ad0677c37c14 ila: serialize calls to nf_register_net_hooks() de4f8d477c67 af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK 65c67049e9ed af_packet: fix vlan_get_tci() vs MSG_PEEK 0caa776f2829 net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() 579cfa595af1 net: restrict SO_REUSEPORT to inet sockets 143378075904 RDMA/rtrs: Ensure 'ib_sge list' is accessible 91a1adab5669 net: mv643xx_eth: fix an OF node reference leak 36c95bbd4eb1 eth: bcmsysport: fix call balance of priv->clk handling routines d27088892b40 ALSA: usb-audio: US16x08: Initialize array before use c8187a378380 net: llc: reset skb->transport_header 277f00b0c2dc netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext 215c687344d5 drm/i915/dg1: Fix power gate sequence. 769e36c2119a netrom: check buffer length before accessing it 9d3895967729 net: fix memory leak in tcp_conn_request() 4261fc54ca77 net: stmmac: restructure the error path of stmmac_probe_config_dt() f0da70367048 net: stmmac: don't create a MDIO bus if unnecessary 860279ff72fe net: stmmac: platform: provide devm_stmmac_probe_config_dt() a68ec6380f2f RDMA/hns: Fix missing flush CQE for DWQE 06e2d3ec7a7d RDMA/hns: Fix warning storm caused by invalid input in IO path 3146512f40bb RDMA/hns: Fix mapping error of zero-hop WQE buffer bc509159a223 RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() 5e7c02730cce RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() a03b9689e4e5 drm/bridge: adv7511_audio: Update Audio InfoFrame properly 33df6f747501 RDMA/bnxt_re: Fix the locking while accessing the QP table 802be99bc7bb RDMA/bnxt_re: Fix max_qp_wrs reported 6da018852c42 RDMA/bnxt_re: Fix reporting hw_ver in query_device faf879baed95 RDMA/bnxt_re: Add check for path mtu in modify_qp 2e4a9a22b7f9 RDMA/mlx5: Enforce same type port association for multiport RoCE 590bd0f9148f xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic 62756ca746e2 usb: xhci: Limit Stop Endpoint retries 28fcf6c7a1ef xhci: retry Stop Endpoint on buggy NEC controllers 8f4871abf04f thunderbolt: Add support for Intel Panther Lake-M/P 6cf75f685667 thunderbolt: Add support for Intel Lunar Lake c4c06c199410 thunderbolt: Add Intel Barlow Ridge PCI ID 6c03ec8a0791 thunderbolt: Add support for Intel Meteor Lake c5c059d6bb77 thunderbolt: Add support for Intel Raptor Lake 3bcdc9039a6e tracing: Have process_string() also allow arrays f70e4b9ec69d selinux: ignore unknown extended permissions 0a2d26bf27c9 x86/hyperv: Fix hv tsc page based sched_clock for hibernation 87bd909a7014 net: dsa: improve shutdown sequence 5ade4382de16 nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net 214d92f0a465 btrfs: avoid monopolizing a core when activating a swap file c3703d9340ca power: supply: gpio-charger: Fix set charge current limits f60172b44731 tracing: Prevent bad count for tracing_cpumask_write c5a28af78555 tracing: Constify string literal data member in struct trace_event_call 2107ab40629a ksmbd: fix racy issue from session lookup and expire 2461ffdc7725 lib: stackinit: hide never-taken branch from compiler 002668bfd416 drm/dp_mst: Verify request type in the corresponding down message reply 3bc0d0831777 arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs 082e68b9a714 arm64: mm: Rename asid2idx() to ctxid2asid() 1aea5c9470be ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write 6bd1bf0e8c42 ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read 70e7166612f4 drm/dp_mst: Fix MST sideband message body length check 24fec234d2ba bpf: Check validity of link->type in bpf_link_show_fdinfo() edcc68974580 MIPS: Probe toolchain support of -msym32 5728a1d6247d vmalloc: fix accounting with i915 6dea8e3de599 virtio-blk: don't keep queue frozen during system suspend a47235354ac4 scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error 0d591e92c076 scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time 7efc3fa902ce platform/x86: asus-nb-wmi: Ignore unknown event 0xCF b09527799946 regmap: Use correct format specifier for logging range errors 7574cf3c8bf1 ALSA: hda/conexant: fix Z60MR100 startup pop issue 3c654998a3e8 scsi: megaraid_sas: Fix for a potential deadlock ce697618e34f scsi: qla1280: Fix hw revision numbering for ISP1020/1040 08a78ff9bf29 watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 325c0e27668d tracing/kprobe: Make trace_kprobe's module callback called after jump_label update 3d825a241e65 mtd: rawnand: fix double free in atmel_pmecc_create_user() 8d364597de9c dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset 7c99b3c60cac dmaengine: dw: Select only supported masters for ACPI devices 3e9968660c26 dmaengine: mv_xor: fix child node refcount handling in early exit e0c101361c1e phy: core: Fix that API devm_phy_destroy() fails to destroy the phy 6bf2aba838b2 phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider 3a22224a443b phy: core: Fix that API devm_phy_put() fails to release the phy 5d1a41420ed4 phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() 9d2916bb1276 phy: core: Fix an OF node refcount leakage in _of_phy_get() 4f8a50745358 mtd: rawnand: arasan: Fix missing de-registration of NAND 326d7fb3e4f1 mtd: rawnand: arasan: Fix double assertion of chip-select 4b13d0d186df mtd: diskonchip: Cast an operand to prevent potential overflow 804d55e92b7a nfsd: restore callback functionality for NFSv4.0 e2373eea347e bpf: Check negative offsets in __bpf_skb_min_len() 323bab15ff7c tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection 38150bb4e3be tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() c3ab56e1b434 mm/vmstat: fix a W=1 clang compiler warning 53106510736e media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg c72057c4865c drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update dccf5138ad56 epoll: Add synchronous wakeup support for ep_poll_callback 888dd1909559 ceph: validate snapdirname option length when mounting 38a2a383a019 of: Fix refcount leakage for OF node returned by __of_get_dma_parent() a579b0b6a82f of: Fix error path in of_parse_phandle_with_args_map() 0227594be815 udmabuf: also check for F_SEAL_FUTURE_WRITE 912188316a8c nilfs2: prevent use of deleted inode a793e5c35722 of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() abc874634c16 NFS/pnfs: Fix a live lock between recalled layouts and layoutget 85d7635d54d7 tracing: Add "%s" check in test_event_printk() 6cacfb59a7cc tracing: Add missing helper functions in event pointer dereference check 3a41815771c4 tracing: Fix test_event_printk() to process entire print argument 0840d360a890 KVM: x86: Play nice with protected guests in complete_hypercall_exit() 042253c57be9 Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet 0bef13423bb4 btrfs: tree-checker: reject inline extent items with 0 ref count 6aa65cda937f zram: refuse to use zero sized block device as backing device 2d3cde3aeb73 sh: clk: Fix clk_enable() to return 0 on NULL clk 5049a45bc23b hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers de4fa408d68b hwmon: (tmp513) Fix Current Register value interpretation 447d1430aa6c hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers b382e808e342 hwmon: (tmp513) Use SI constants from units.h e9668ba824c1 hwmon: (tmp513) Simplify with dev_err_probe() 9a2cf6d4a616 hwmon: (tmp513) Don't use "proxy" headers e7c7b48a0fc5 drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() d4ca3bf078cb USB: serial: option: add Telit FE910C04 rmnet compositions adeae07da972 USB: serial: option: add MediaTek T7XX compositions cf4df6f3f539 USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready 6ccb85602c14 USB: serial: option: add MeiG Smart SLM770A 7e25a9031004 USB: serial: option: add TCL IK512 MBIM & ECM 68578224365a efivarfs: Fix error on non-existent file f2c15056b312 i2c: riic: Always round-up when calculating bus period 16e1c1156674 chelsio/chtls: prevent potential integer overflow on 32bit f4780fedeb65 mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk 9d120788418d net: mdiobus: fix an OF node reference leak c4f20ad100da netfilter: ipset: Fix for recursive locking warning 24b6b9d6b21b net: ethernet: bgmac-platform: fix an OF node reference leak f9bad9428723 net: hinic: Fix cleanup in create_rxqs/txqs() 48cc5df7757b ionic: use ee->offset when returning sprom data 87847938f570 ionic: Fix netdev notifier unregister on failure b3a6daaf7cfb netdevsim: prevent bad user input in nsim_dev_health_break_write() 6b80924af621 net/smc: check return value of sock_recvmsg when draining clc data a36364d8d4fa net/smc: check smcd_v2_ext_offset when receiving proposal msg f10635268a0a net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg 0b86e31b6bbb net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll 27d6adbb3ec4 erofs: fix incorrect symlink detection in fast symlink 7e5fc0da0b76 i2c: pnx: Fix timeout in wait functions cff037a22793 usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled 676cec3ad096 MIPS: Loongson64: DTS: Fix msi node for ls7a 848257f4f9ef PCI: Add ACS quirk for Broadcom BCM5760X NIC c3119c7bab90 PCI: vmd: Create domain symlink before pci_bus_add_devices() 82f635733337 ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP 6eb9609c8bf0 usb: cdns3: Add quirk flag to enable suspend residency a19c6a484417 ALSA: usb: Fix UBSAN warning in parse_audio_unit() 02052d22de91 PCI/AER: Disable AER service on suspend c1a1393f7844 PCI: Use preserve_config in place of pci_flags 33db36b3c53d net: sched: fix ordering of qlen adjustment b5d500042eb3 usb: hcd-pci: remove the action of faking interrupt request 6f0605db50e2 clk: imx: Add check for kcalloc 5b837b9e1543 bpf: Fix the indention issue in grow_stack_state() 42b62697634d cifs: Fix the calling of smb_version_operations::calc_smb_size() b14acf729e9d f2fs: Add inline to f2fs_build_fault_attr() stub 7c317bec311f f2fs: check validation of fault attrs in f2fs_build_fault_attr() 81c12119c23f bpf: Fix accesses to uninit stack slots [ Upstream commit 6b4a64bafd107e521c01eec3453ce94a3fb38529 ] c4fa05422d87 smb: client: fix potential OOB in smb2_dump_detail() 299ef3b5b00b of: module: add buffer overflow check in of_modalias() b8086c3c1548 reiserfs: Avoid touching renamed directory if parent does not change ea091017ef62 ipv6: Fix data races around sk->sk_prot. ff8710da80ee ipv6: annotate some data-races around sk->sk_prot e8c2eafaaa6a tcp: Fix data races around icsk->icsk_af_ops. 8d1bab770956 locking/rwsem: Disable preemption while trying for rwsem lock 7c82dac02886 block, loop: support partitions without scanning 45f504f301d4 bpftool: Fix pretty print dump for maps without BTF loaded 1f24338cb789 jbd2: Drop the merge conflicted hunk e1d0e3c51bde tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes 1abe841fe331 tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes 6224acfc1d56 tpm: Add flag to use default cancellation policy 1cd19d48fb90 tpm: tis_i2c: Fix sanity check interrupt enable mask a883da132fa8 tpm: Add tpm_tis_i2c backend for tpm_tis_core a742ac8a1c51 tpm: Add tpm_tis_verify_crc to the tpm_tis_phy_ops protocol layer ef495c5f45f2 tpm: Remove read16/read32/write32 calls from tpm_tis_phy_ops 1f3be2e23aa6 gcc-plugins: Reorganize gimple includes for GCC 13 24615a3b932a ata: ahci: fix enum constants for gcc-13 5d6cb145541a net: stmmac: Enable mac_managed_pm phylink config fd93aabb4287 tools/resolve_btfids: Use pkg-config to locate libelf 130f9da78406 tools/resolve_btfids: Build with host flags 00f2f1a782f9 tools/resolve_btfids: Support cross-building the kernel with clang 17776a4ba9c2 tools/resolve_btfids: Install libbpf headers when building 7c9808380d70 libbpf: Make libbpf_version.h non-auto-generated 37ae1ba791ac libbpf: Add LIBBPF_DEPRECATED_SINCE macro for scheduling API deprecations a2667e6d7314 drm/radeon: free iio for atombios when driver shutdown f100c753aa1f powerpc: Fix reschedule bug in KUAP-unlocked user copy da5513f30187 libbpf: Fix build warning on ref_ctr_off 4c5a089621a8 perf python: Account for multiple words in CC 1c5699ee85d4 fs: move S_ISGID stripping into the vfs_*() helpers 838f5d0701d8 fs: add mode_strip_sgid() helper d97172683641 squashfs: provide backing_dev_info in order to disable read-ahead ed037d7be40c irq_work: use kasan_record_aux_stack_noalloc() record callstack 1363bd7dbde3 ixgbevf: add disable link state e5601ae2bd24 ixgbe: add improvement for MDD response functionality caa57cd80575 ixgbe: add the ability for the PF to disable VF link state 16a77bfcc7df Check /dev/console using init_stat() 04574fd5579a tracing/arm: Have max stack tracer handle the case of return address after data 0e51e5717018 gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully 1e6b7da6ddba drivers/base: Fix unsigned comparison to -1 in CPUMAP_FILE_MAX_BYTES 493160901320 mtd_blkdevs: add mtd_table_mutex lock back to blktrans_{open, release} to avoid race condition 04224f725aa3 irqchip/gic-v3-its: Skip HP notifier when no ITS is registered 6f6c2996a81c irqchip/gic-v3-its: Postpone LPI pending table freeing and memreserve 1fa94473423f irqchip/gic-v3-its: Give the percpu rdist struct its own flags field 6013d1ae5feb cert host tools: Stop complaining about deprecated OpenSSL functions efe20512212b init/Kconfig: fix CC_HAS_ASM_GOTO_TIED_OUTPUT test with dash a40d2daf2795 pnmtologo: use relocatable file name 3b40d5b41155 of: configfs: remove unused variable overlay_lock 6c085baf1838 tools: use basename to identify file in gen-mach-types 2fca0fd71981 lib/build_OID_registry: fix reproducibility issues 0f586f4ee8ad vt/conmakehash: improve reproducibility a75774679f28 OF: DT-Overlay configfs interface (v8) d179c639b30b x86/boot: Wrap literal addresses in absolute_pointer() 856ec356cf91 ACPI: thermal: drop an always true check 7614af249993 xfs: Fix -Werror=dangling-pointer work-around for older GCC 41470215f97e xfs: Work around GCC 12 -Werror=dangling-pointer for xfs_attr_remote.o 44a445c1922d virtio-pci: Remove wrong address verification in vp_del_vqs() 77aa9e489eaf bpf: Disallow unprivileged bpf by default ebfb1822e9f9 fs/aufs: fixup 5.15.36 fixups 4eba9348d3e2 Revert "Revert "fbdev: Hot-unplug firmware fb devices on forced removal"" 5df6d1b00f95 jbd2: fix use-after-free of transaction_t race 2d83e8196487 jbd2: refactor wait logic for transaction updates into a common function 07a63f760793 netfilter: conntrack: avoid useless indirection during conntrack destruction 4e7122625996 Revert "fbdev: Hot-unplug firmware fb devices on forced removal" 7ba4cb36fd4f rcu: Avoid alloc_pages() when recording stack f78574dee71e kasan: test: silence intentional read overflow warnings d313cb89b6b1 kasan: arm64: fix pcpu_page_first_chunk crash with KASAN_VMALLOC 5e279d5647cc arm64: support page mapping percpu first chunk allocator e5bf16752dca vmalloc: choose a better start address in vm_area_register_early() 660b3d21b46f kasan: test: bypass __alloc_size checks 00aa7573e53a kasan: test: add memcpy test that avoids out-of-bounds write 67becf0b1bd4 kasan: fix tag for large allocations when using CONFIG_SLAB bedf1e033213 workqueue, kasan: avoid alloc_pages() when recording stack 7195b67ce69b kasan: generic: introduce kasan_record_aux_stack_noalloc() bdff763f0e29 kasan: common: provide can_alloc in kasan_save_stack() 51423ebb36ad lib/stackdepot: introduce __stack_depot_save() 85373e66d847 lib/stackdepot: remove unused function argument 5b6cc9b251f3 lib/stackdepot: include gfp.h c9f3902d8069 aufs: reduce overhead for "code present but disabled" use case. b98d189df02c aufs: bugfix, umount passes NULL to ->parse_monolithic() 13b883cbbbd9 aufs standalone: cosmetic, missing copyright sentence 21f8b0d81898 aufs: 5.15.5-20220117 ---> 5.15.5-20220221 6199fd896645 aufs: tiny, headers after fs_context 8ddb40e31c29 aufs: fs_context 7/7, finally remount 69035f71c6fd aufs: fs_context 6/7, now mount bc841b970697 aufs: fs_context 5/7, parse all other mount options 435188053da2 aufs: fs_context 4/7, parse xino options 9af1f1825cbd aufs: fs_context 3/7, parse the branch-management options 1c05eb767f8c aufs: fs_context 2/7, parse "br" mount option a8488f603134 aufs: fs_context 1/7, skelton of the new shceme 8e32e0015564 aufs: pre fs_context, convert a static flag to a macro f90cb4144aec aufs: pre fs_context, support the incomplete sb and sbinfo case 948762ef859c aufs: pre fs_context, convert the type of alloc_sbinfo() 77151a08776b aufs: 5.15.5-20211129 ---> 5.15.5-20220117 2539adbbbe1e aufs: 5.14-20211018 ---> 5.15.5-20211129 7d32b25193c4 aufs: for v5.15-rc1, sync_inode() is gone 66ec0c509225 aufs: for v5.15-rc1, new param 'rcu' for ->get_acl() 69709dc518cd aufs: for v5.15-rc1, no mand-lock anymore ada8fe9543e5 aufs: 5.14-20210906 ---> 5.14-20211018 b77f7f3f394a Revert "aufs: adjust to v5.15 fs changes" 81bdce5b5876 tick/nohz: WARN_ON --> WARN_ON_ONCE to prevent console saturation 97c963889222 sched/isolation: really align nohz_full with rcu_nocbs 871f23ad3627 Revert "ARM: defconfig: Enable ax88796c driver for Exynos boards" ffad0783dd5b ARM: config: multi v7: Regenerate defconifg 5c1e1a1ff2d3 ARM: config: multi v7: Add renamed symbols badaf96564fe ARM: config: multi v7: Clean up enabled by default options 34996040fc9b ARM: config: multi v7: Drop unavailable options 7f685244afb3 powerpc/mm: Switch obsolete dssall to .long 20301aeb1a64 riscv: fix build with binutils 2.38 9df58d070506 powerpc/lib/sstep: fix 'ptesync' build error 720b61fc400b x86_64_defconfig: Fix warnings 02bf23d26bc4 arm64: defconfig: cleanup config options 05914e2c87e5 arm: defconfig: drop unused POWER_AVS option ffb532fa19b9 aufs5: fix build against v5.15.3+ a4b3abf4d96d qemux86: add configuration symbol to select values fee94ee09154 clear_warn_once: add a clear_warn_once= boot parameter 3d8762d900d9 clear_warn_once: bind a timer to written reset value 95faacac47e8 clear_warn_once: expand debugfs to include read support de20c4240018 perf: perf can not parser the backtrace of app in the 32bit system and 64bit kernel. 0e4aacead9c1 perf: x86-32: explicitly include <errno.h> 9ad92c11468e perf: mips64: Convert __u64 to unsigned long long 09e7efe3e68a perf: fix bench numa compilation e79becc44fa6 perf: add SLANG_INC for slang.h b1033b588681 perf: add sgidefs.h to for mips builds cf9db484ac0b perf: change --root to --prefix for python install 7fd052c2c562 perf: add 'libperl not found' warning 27a437cdd469 perf: force include of <stdbool.h> 3b99d21bec2f fat: don't use obsolete random32 call in namei_vfat a7e9293b506b FAT: Added FAT_NO_83NAME 6fd0e71d9e5c FAT: Add CONFIG_VFAT_NO_CREATE_WITH_LONGNAMES option c379b0d324ae FAT: Add CONFIG_VFAT_FS_NO_DUALNAMES option 538be0fdb124 aufs: adjust to v5.15 fs changes f45da75c8759 aufs5: core 047f57e07e01 aufs5: standalone 029fc15574c8 aufs5: mmap 610d0192ee94 aufs5: base d4e428d0ec5f aufs5: kbuild eb067eca251a yaffs: replace IS_ERR with IS_ERR_OR_NULL to check both ERR and NULL 286af18d0875 yaffs: fix -Wstringop-overread compile warning in yaffs_fix_null_name 24d59a4e26a6 yaffs2: v5.12+ build fixups (not runtime tested) 22c73536d5d7 yaffs: include blkdev.h 506b7251bfb8 yaffs: fix misplaced variable declaration a0e26ff364dc yaffs2: v5.6 build fixups b10b1b2d169e yaffs2: fix memory leak when /proc/yaffs is read ad9adccbb214 yaffs: add strict check when call yaffs_internal_read_super 2e3c3aec8279 yaffs: repair yaffs_get_mtd_device d662538516a7 yaffs: Fix build failure by handling inode i_version with proper atomic API 70a6113ee2c7 yaffs2: fix memory leak in mount/umount 3378e4a9e404 yaffs: Avoid setting any ACL releated xattr ec2284edddef Yaffs:check oob size before auto selecting Yaffs1 c2a49874051c fs: yaffs2: replace CURRENT_TIME by other appropriate apis e9a5105a3e73 yaffs2: adjust to proper location of MS_RDONLY 608807406f13 yaffs2: import git revision b4ce1bb (jan, 2020) 89e660ece42c initramfs: allow an optional wrapper script around initramfs generation b179dbc9aa10 iwlwifi: select MAC80211_LEDS conditionally 3fd5ca3673d0 net/dccp: make it depend on CONFIG_BROKEN (CVE-2020-16119) d1f6edbf0188 arm64/perf: Fix wrong cast that may cause wrong truncation d202fb2caf33 defconfigs: drop obselete options 9a27e3b5f4e7 arm64/perf: fix backtrace for AAPCS with FP enabled e20d8cf019b4 linux-yocto: Handle /bin/awk issues b6d2a3dbbd3a uvesafb: provide option to specify timeout for task completion adb40f1e6a1a uvesafb: print error message when task timeout occurs f280a1ed0962 compiler.h: Undef before redefining __attribute_const__ 4352732f268c vmware: include jiffies.h 7954a677968d Resolve jiffies wrapping about arp 5f28a1035d95 nfs: Allow default io size to be configured. 0d7260ad7106 check console device file on fs when booting 900a12e37e0a mount_root: clarify error messages for when no rootfs found 7b878cbea726 menuconfig,mconf-cfg: Allow specification of ncurses location 6604fc1763b3 modpost: mask trivial warnings 0d294adb09cb kbuild: exclude meta directory from distclean processing a097cdd95a9e powerpc: serialize image targets 5db6ec39a0a3 arm: serialize build targets cbabca27905e crtsavres: fixups for 5.4+ 7fc7656ed403 powerpc/ptrace: Disable array-bounds warning with gcc8 a5faac5a19a2 powerpc: Disable attribute-alias warnings from gcc8 186c54665b67 powerpc: add crtsavres.o to archprepare for kbuild d1ea862964ca powerpc: kexec fix for powerpc64 2ac35b89a0f9 powerpc: Add unwind information for SPE registers of E500 core 2e1c348a28bb mips: vdso: fix 'jalr $t9' crash in vdso code ec57870b303a mips: Kconfig: add QEMUMIPS64 option 6a81b3c08107 4kc cache tlb hazard: tlbp cache coherency 74e3b2a21e54 malta uhci quirks: make allowance for slow 4k(e)c 22e65b63d3b4 arm/Makefile: Fix systemtap b7f1ab59f19e vexpress: Pass LOADADDR to Makefile ce2800c73bf7 arm: ARM EABI socketcall 019d142fd956 ARM: LPAE: Invalidate the TLB for module addresses during translation fault (From OE-Core rev: b39adc1b4d9e705b1801684020a0bc12217f6db8) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* go: Fix CVE-2024-45336Praveen Kumar2025-02-152-0/+395
| | | | | | | | | | | | | | | | | | | | The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to b.com. In the event that the client received a subsequent same-domain redirect, however, the sensitive headers would be restored. For example, a chain of redirects from a.com/, to b.com/1, and finally to b.com/2 would incorrectly send the Authorization header to b.com/2. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-45336 Upstream-patch: https://github.com/golang/go/commit/b72d56f98d6620ebe07626dca4bb67ea8e185379 (From OE-Core rev: 63e84b64f055ad7c91de67194e6739c96fb95496) Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* glibc: stable 2.35 branch updatesDeepesh Varatharajan2025-02-051-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | 549d831579 stdlib: Test using setenv with updated environ [BZ #32588] 8b5d4be762 Fix underallocation of abort_msg_s struct (CVE-2025-0395) 525e5f13de stdlib: Simplify buffer management in canonicalize 5eae275400 realpath: Bring back GNU extension on ENOENT and EACCES [BZ #28996] 8a82a76a42 realpath: Do not copy result on failure (BZ #28815) e369114462 misc: Add support for Linux uio.h RWF_NOAPPEND flag 3f1ab0ed66 nptl: Convert tst-setuid2 to test-driver 76adee6e0f support: Add xpthread_cond_signal wrapper c3beedeb70 elf: Support recursive use of dynamic TLS in interposed malloc f48d763ab8 elf: Avoid some free (NULL) calls in _dl_update_slotinfo 710057676d sysdeps/x86/Makefile: Split and sort tests a4207d4e83 x86: Only align destination to 1x VEC_SIZE in memset 4x loop 889f99c149 elf: Fix slow tls access after dlopen [BZ #19924] 543efedcb3 x86: Check the lower byte of EAX of CPUID leaf 2 [BZ #30643] 41a3e51233 x86_64: Add log1p with FMA 0d1c70aa4c x86_64: Add expm1 with FMA 516180d399 x86_64: Add log2 with FMA 30384b91ad x86_64: Sort fpu/multiarch/Makefile d626c31ce5 x86: Avoid integer truncation with large cache sizes (bug 32470) 7ea35e28b4 nptl: initialize cpu_id_start prior to rseq registration 47d70ca8d9 nptl: initialize rseq area prior to registration (From OE-Core rev: a397c152abf4f3da1323594e79ebac844a2c9f45) Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* gdb: Fix CVE-2024-53589Yash Shinde2025-02-052-0/+93
| | | | | | | | | CVE: CVE-2024-53589 (From OE-Core rev: 4ddd1e5aea1c4b84a6c4e1db5ded4938c4a35393) Signed-off-by: Yash Shinde <Yash.Shinde@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* binutils: internal gdb: Fix CVE-2024-53589Yash Shinde2025-02-052-0/+93
| | | | | | | | | CVE: CVE-2024-53589 (From OE-Core rev: 2d6df18f4a694d6499b337bbbab10ba8bb6e3fe4) Signed-off-by: Yash Shinde <Yash.Shinde@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* openssl: patch CVE-2024-13176Peter Marko2025-02-052-0/+126
| | | | | | | | | | | | Picked [1] per link in [2]. [1] https://github.com/openssl/openssl/commit/07272b05b04836a762b4baa874958af51d513844 [2] https://nvd.nist.gov/vuln/detail/CVE-2024-13176 (From OE-Core rev: cb18163c11d7f8b62b829f203b00a4e14513c6cf) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* classes/qemu: use tune to select QEMU_EXTRAOPTIONS, not package architectureRoss Burton2025-01-242-8/+6
| | | | | | | | | | | | | | | | | | | | | | | | Using the package architecture to select the right qemu options to pass to qemu-user is incorrect, and fails for recipes that set PACKAGE_ARCH to MACHINE_ARCH (as the qemuppc workarounds suggest) because there are not typically any options set for the machine name. Solve this by using TUNE_PKGARCH instead: for the majority of recipes this is the same value, but for machine-specific recipes it remains the same instead of changing to the machine name. This means we can remove the qemuppc workarounds, as they're obsolete. Also update the gcc-testsuite recipe which uses the same pattern to use TUNE_PKGARCH, and generalise the else codepath to avoid needing to update the list of architectures. [ YOCTO #15647 ] (From OE-Core rev: 077aab43f2c928eb8da71934405c62327010f552) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* classes/nativesdk: also override TUNE_PKGARCHRoss Burton2025-01-241-0/+1
| | | | | | | | | | | | | | | | The nativesdk class overrides PACKAGE_ARCH and unsets TUNE_FEATURES, but as recipes might want to look at TUNE_PKGARCH too (for example, when setting QEMU_EXTRAOPTIONS) we should also override that variable. Otherwise, a nativesdk recipe will have the TUNE_PKGARCH of the target, which leads to errors (eg passing mips arguments to an arm qemu). (From OE-Core rev: 38b4992329459f2200817a848e8888b9284b4917) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 05322beb290e1db30bef49b4364f8a8e6e9f7408) Signed-off-by: Steve Sakoman <steve@sakoman.com>
* ofono: patch CVE-2024-7540, CVE-2024-7541, CVE-2024-7542Peter Marko2025-01-242-0/+53
| | | | | | | | | | Cherry-pick commit https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=29ff6334b492504ace101be748b256e6953d2c2f (From OE-Core rev: f76c9f6940df64654710a83a6f3c6168b63fc611) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* rsync: fix CVE-2024-12747Archana Polampalli2025-01-242-0/+193
| | | | | | | | | | | | | | A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation. (From OE-Core rev: c0905ffb2f1aa3bc4c6187ff4860dcc8d3dbfb01) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* rsync: fix CVE-2024-12088Archana Polampalli2025-01-242-0/+142
| | | | | | | | | | | | A flaw was found in rsync. When using the `--safe-links` option, rsync fails to properly verify if a symbolic link destination contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory (From OE-Core rev: 741200c41a19ef5b4876d9a80667dfde2e5f4a9d) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* rsync: fix CVE-2024-12087Archana Polampalli2025-01-244-0/+123
| | | | | | | | | | | | | | | | A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client. (From OE-Core rev: 12328df8dfcdc73ef70af299e9ebdc1d8ae73f37) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* rsync: fix CVE-2024-12086Archana Polampalli2025-01-245-0/+303
| | | | | | | | | | | | | | | A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare with in order to determine what data needs to be sent to the server. By sending specially constructed checksum values for arbitrary files, an attacker may be able to reconstruct the data of those files byte-by-byte based on the responses from the client. (From OE-Core rev: b49c8f58c20d7deb354a86a34488cb798c49eba3) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>