The default CONNECTIVITY_CHECK_URIS uses "https://yoctoproject.org/connectivity.html"
which redirect to "https://www.yoctoproject.org/connectivity.html".
Some network configurations with proxies or restricted internet access
don't handle HTTP redirects properly during the sanity check phase,
causing build failures with:
ERROR: OE-core's config sanity checker detected a potential misconfiguration.
Either fix the cause of this error or at your own risk disable the checker (see sanity.conf).
Following is the list of potential problems / advisories:
Fetcher failure for URL: 'https://yoctoproject.org/connectivity.html'. URL doesn't work.
Updated the default URL to use the final destination directly to avoid
redirect-related connectivity check failures.
Also updated SDK test cases in https.py to use the corrected URL for
consistency.
Signed-off-by: Deepak Rathore <deeratho@cisco.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 60cdf960a3560f391babd559737f1afb31fb2c5c) Signed-off-by: Deepak Rathore <deeratho@cisco.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Hongxu Jia [Thu, 28 Aug 2025 10:32:10 +0000 (03:32 -0700)]
rpm: keep leading `/' from sed operation
For /usr/lib/rpm/macros, Yocto explicitly set OECMAKE_FIND_ROOT_PATH_MODE_PROGRAM
= "ONLY" [1][2] to search tools from CMAKE_FIND_ROOT_PATH [5] which locates in
native recipe sysroot or HOSTTOOLS_DIR. If found in native recipe sysroot or
HOSTTOOLS_DIR, the sed operation removed leading `/'
Jiaying Song [Wed, 27 Aug 2025 02:38:28 +0000 (10:38 +0800)]
ruby-ptest : some ptest fixes
- Skip the test_rm_r_no_permissions test under the root user, as
deletion always succeeds.
- Filter out tests under the -ext- directory in run-ptest. Due to the
commit [1],the packaging of .so test files under the .ext directory
was removed. As a result, adjust the test filtering rules to avoid
test failures caused by missing files.
- Add installation of rdoc.rb and did_you_mean.rb files in
do_install_ptest to ensure complete test dependencies.
- Add init.rb file to PTEST installation path.
Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Michael Halstead [Thu, 21 Aug 2025 22:43:09 +0000 (00:43 +0200)]
yocto-uninative: Update to 4.9 for glibc 2.42
Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Michael Halstead [Thu, 21 Aug 2025 22:43:08 +0000 (00:43 +0200)]
yocto-uninative: Update to 4.8 for GCC 15.1
Signed-off-by: Michael Halstead <mhalstead@linuxfoundation.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Martin Jansa [Thu, 21 Aug 2025 22:43:01 +0000 (00:43 +0200)]
pkgconfig: fix build with gcc-15
* on hosts with gcc-15 or whenever glib PACKAGECONFIG isn't enabled
and pkgconfig uses own old bundled glib
* fixes:
http://errors.yoctoproject.org/Errors/Details/853015/
../../../git/glib/glib/goption.c:169:14: error: two or more data types in declaration specifiers
169 | gboolean bool;
| ^~~~
../../../git/glib/glib/goption.c:169:18: warning: declaration does not declare anything
169 | gboolean bool;
| ^
Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Khem Raj [Thu, 21 Aug 2025 22:42:56 +0000 (00:42 +0200)]
m4: Stick to C17 standard
GCC15 imposes C23 by default and 1.4.19 release has gnulib version which
can not be compiled without errors, while new release of m4 is in progress
we might use C17 until then and use GCC15 to compile it
For scarthgap also add it in BUILD_CFLAGS.
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Changes between 9.1.1198 -> 9.1.1652
====================================
https://github.com/vim/vim/compare/v9.1.1198...v9.1.1652
Refresh patches.
Disable newly introduced wayland support (in patch version 1485).
To this belongs also adding recursion in delete command for dir auto
which was newly failing as there is wayland directory inside now.
If someone is interested, this can be probably enabled, but without
additional work it results in compilation error due to function
redefinition conflicts.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Khem Raj [Thu, 21 Aug 2025 10:58:38 +0000 (12:58 +0200)]
ncurses: Pin to C17 standard
Newer snapshots of ncurses have the fixes but they are many needed to get
C23 going. Until next release lets stick with C17 even while GCC 15 switches
to C23 defaults.
For scarthgap also add it in BUILD_CFLAGS.
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Praveen Kumar [Tue, 26 Aug 2025 03:57:43 +0000 (09:27 +0530)]
go: fix CVE-2025-47907
Cancelling a query (e.g. by cancelling the context passed to one of
the query methods) during a call to the Scan method of the returned
Rows can result in unexpected results if other queries are being made
in parallel. This can result in a race condition that may overwrite
the expected results with those of another query, causing the call to
Scan to return either unexpected results from the other query or an
error.
A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1.
This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c
of the component AAC Encoder. The manipulation leads to stack-based buffer overflow.
It is possible to initiate the attack remotely. The exploit has been disclosed to the
public and may be used.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
The go command may execute unexpected commands when operating in untrusted VCS repositories.
This occurs when possibly dangerous VCS configuration is present in repositories.
This can happen when a repository was fetched via one VCS (e.g. Git), but contains metadata
for another VCS (e.g. Mercurial). Modules which are retrieved using the go command line,
i.e. via "go get", are not affected.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Martin Jansa [Sun, 17 Aug 2025 22:58:16 +0000 (00:58 +0200)]
bash: use -std=gnu17 also for native CFLAGS
* fixes builds on host with gcc-15:
http://errors.yoctoproject.org/Errors/Details/853016/
../../bash-5.2.37/builtins/mkbuiltins.c:268:29: error: too many arguments to function ‘xmalloc’; expected 0, have 1
268 | error_directory = xmalloc (2 + strlen (argv[arg_index]));
| ^~~~~~~ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
* fixes build on hosts with gcc-15 (e.g. ubuntu-25.10)
../cairo-1.18.0/test/pdiff/pdiff.h:22:13: error: â\80\98boolâ\80\99 cannot be defined via â\80\98typedefâ\80\99
22 | typedef int bool;
| ^~~~
../cairo-1.18.0/test/pdiff/pdiff.h:22:13: note: â\80\98boolâ\80\99 is a keyword with â\80\98-std=c23â\80\99 onwards
../cairo-1.18.0/test/pdiff/pdiff.h:22:1: warning: useless type name in empty declaration
22 | typedef int bool;
| ^~~~~~~
Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Daniel Turull [Tue, 19 Aug 2025 10:47:24 +0000 (12:47 +0200)]
libxml2: ignore CVE-2025-8732
The code maintainer disputes the CVE as the issue can only be triggered with
untrusted SGML catalogs and it makes absolutely no sense to use untrusted
catalogs.
The issue triggers a crash if an invalid file is provided.
Source: https://gitlab.gnome.org/GNOME/libxml2/-/issues/958"
Signed-off-by: Daniel Turull <daniel.turull@ericsson.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Mon, 18 Aug 2025 18:10:48 +0000 (20:10 +0200)]
glib-2.0: ignore CVE-2025-4056
NVD report [1] says:
A flaw was found in GLib. A denial of service on **Windows platforms**
may occur if an application attempts to spawn a program using long
command lines.
The fix [3] (linked from [2]) also changes only files
glib/gspawn-win32-helper.c
glib/gspawn-win32.c
Philip Lorenz [Fri, 15 Aug 2025 09:53:06 +0000 (11:53 +0200)]
cve-check: Add missing call to exit_if_errors
check_cves may raise the cve_status_not_in_db QA check. Call
exit_if_errors to make sure that the task is marked as failed when the
check is categorized as an error.
Quentin Schulz [Tue, 12 Aug 2025 10:46:05 +0000 (12:46 +0200)]
go-helloworld: fix license
The example repo doesn't seem to have ever been under MIT to begin with
but rather Apache-2.0. It was then changed to the license used by the
goland projectm that is BSD-3-Clause, 2 years ago in commit 00c7068f9d83
("all: update to Go license").
The license file exists in the sources, so use that one instead of
taking it from the OE-Core license directory.
License-Update: Incorrect license is now proper
Signed-off-by: Quentin Schulz <quentin.schulz@cherry.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Nikhil R [Mon, 11 Aug 2025 04:58:02 +0000 (10:28 +0530)]
cmake: Add PACKAGECONFIG option for debugger support
Starting from CMake version 2.27 support for interactive debugging of CMake
scripts and configurations was added. However, by default the `nativesdk-cmake`
is compiled with debugger support turned off.
../../../Linux-PAM-1.5.3/modules/pam_namespace/pam_namespace.c:326:11: error: call to undeclared function 'dirname'; ISO C99 and later do not support implicit function declarations [-Wimplicit-function-declaration]
326 | parent = dirname(buf);
| ^
../../../Linux-PAM-1.5.3/modules/pam_namespace/pam_namespace.c:326:9: error: incompatible integer to pointer conversion assigning to 'char*' from 'int' [-Wint-conversion]
326 | parent = dirname(buf);
| ^ ~~~~~~~~~~~~
Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-52615:
A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area
DNS queries. This issue simplifies attacks where malicious DNS responses are injected.
xorg-server 21.1.17
This release contains the fixes for the issues reported in today's security
advisory: https://lists.x.org/archives/xorg/2025-June/062055.html
xorg-server 21.1.18
This release contains an additional fix for CVE-2025-49176 from June 17
security advisory: https://lists.x.org/archives/xorg/2025-June/062055.html
cff1042cce Fix error reporting (false negatives) in SGID tests
Improved SGID test handling by unifying error reporting and using secure temporary directories.
Replaced non-standard exit codes and fixed premature exits to avoid masking failures.
These changes reduced false negatives, increasing overall test pass rates
As discussed in [1], this commit fixes CVE-2024-41996.
Although openssl project does not consider this a vulnerability, it got
CVE number assigned so it deserves attention.
[1] https://github.com/openssl/openssl/pull/25088
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 20 Jul 2025 21:10:38 +0000 (23:10 +0200)]
orc: set CVE_PRODUCT
There are new CVEs reported for this recipe which are not for this
componene, but for a component with same name from apache.
sqlite> select vendor, product, id, count(*) from products where product like 'orc' group by vendor, product, id;
apache|orc|CVE-2018-8015|1
apache|orc|CVE-2025-47436|4
gstreamer|orc|CVE-2024-40897|1
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Roland Kovacs [Thu, 24 Jul 2025 12:40:14 +0000 (14:40 +0200)]
sqlite3: fix CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the
number of aggregate terms could exceed the number of columns available.
This could lead to a memory corruption issue.
Signed-off-by: Roland Kovacs <roland.kovacs@est.tech> Signed-off-by: Steve Sakoman <steve@sakoman.com>
objcopy: Don't extend the output section size
Since the output section contents are copied from the input, don't
extend the output section size beyond the input section size.
Backport a patch from upstream to fix CVE-2025-7545
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=08c3cbe5926e4d355b5cb70bbec2b1eeb40c2944]
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Roland Kovacs [Thu, 17 Jul 2025 11:44:13 +0000 (13:44 +0200)]
libxml2: fix CVE-2025-49795
A NULL pointer dereference vulnerability was found in libxml2 when processing
XPath XML expressions. This flaw allows an attacker to craft a malicious XML
input to libxml2, leading to a denial of service.
Signed-off-by: Roland Kovacs <roland.kovacs@est.tech> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Joe Slater [Wed, 16 Jul 2025 09:01:02 +0000 (02:01 -0700)]
oe-debuginfod: add option for data storage
Storing the data files under $HOME can be unreliable if debuginfod
is used for several projects, especially if $HOME is shared
between machines. We provide an option to save files under the
project directory. The default behavior is unchanged.
Yi Zhao [Wed, 9 Jul 2025 03:03:40 +0000 (11:03 +0800)]
kea: set correct permissions for /var/run/kea
Set the permissions of /var/run/kea to 750 to fix kea server startup
error:
ERROR [kea-dhcp4.dhcp4/445.140718820303936] DHCP4_INIT_FAIL failed to
initialize Kea server: configuration error using file
'/etc/kea/kea-dhcp4.conf': 'socket-name' is invalid: socket
path:/var/run/kea does not exist or does not have permssions = 750
This permission check was introduced by commit[1] in kea 2.4.2.
Below commit on binutils-2.42 stable branch are updated.
x86: Check MODRM for call and jmp in binutils older than 2.45
Test Results:
Before After Diff
No. of expected passes 302 302 0
No. of unexpected failures 2 2 0
No. of untested testcases 1 1 0
No. of unsupported tests 7 7 0
Testing was done and there were no regressions found
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Changelog:
===========
* Fixed CVE-2025-32462. Sudo's -h (--host) option could be specified
when running a command or editing a file. This could enable a
local privilege escalation attack if the sudoers file allows the
user to run commands on a different host.
* Fixed CVE-2025-32463. An attacker can leverage sudo's -R
(--chroot) option to run arbitrary commands as root, even if
they are not listed in the sudoers file. The chroot support has
been deprecated an will be removed entirely in a future release.
License-Update: Copyright updated to 2025
0001-sudo.conf.in-fix-conflict-with-multilib.patch refreshed for 1.9.17
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function
(io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing
maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding,
allowing out-of-bounds reads from heap memory, potentially causing application crashes or
arbitrary code execution.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sat, 12 Jul 2025 16:08:27 +0000 (18:08 +0200)]
busybox: apply patch for CVE-2023-39810
Backport patch referencing this CVE.
Note that the hardening is not activated by default, it adds defconfig
option to enable it.
Since it introduces a breaking change, it shouldn't be enabled in LTS
release by default.
This patch makes busybox cpio equivalent in this release to what is
currently in master and in kirkstone.
Also note that gnu cpio also does not have this hardening, but the CVE
is created only against busybox.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Wed, 9 Jul 2025 18:53:21 +0000 (20:53 +0200)]
python3: update CVE product
There are two "new" CVEs reported for python3, their CPEs are:
* CVE-2020-1171: cpe:2.3:a:microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
* CVE-2020-1192: cpe:2.3:a:microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
These are for "Visual Studio Code Python extension".
Solve this by addding CVE vendor to python CVE product to avoid
confusion with Microsoft as vendor.
Examining CVE DB for historical python entries shows:
sqlite> select vendor, product, count(*) from products where product = 'python' or product = 'cpython'
...> or product like 'python%3' group by vendor, product;
microsoft|python|2
python|python|1054
python_software_foundation|python|2
Note that this already shows that cpython product is not used, so
CVE-2023-33595 mentioned in 62598e1138f21a16d8b1cdd1cfe902aeed854c5c
was updated.
But let's keep it for future in case new CVE starts with that again.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 8 Jul 2025 14:40:32 +0000 (10:40 -0400)]
linux-yocto/6.6: update to v6.6.96
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
a5df3a702b2c Linux 6.6.96 18d3f9b8e4b9 ARM: 9354/1: ptrace: Use bitfield helpers f9917821c527 firmware: arm_scmi: Ensure that the message-id supports fastchannel 67a50f572178 firmware: arm_scmi: Add a common helper to check if a message is supported 6f27bbf3de0d nvme: always punt polled uring_cmd end_io work to task_work cdfb20e4b34a spi: spi-cadence-quadspi: Fix pm runtime unbalance c46358d02759 Revert "ipv6: save dontfrag in cork" 1583d908cc77 x86/tools: Drop duplicate unlikely() definition in insn_decoder_test.c ed1f395ea5c0 Kunit to check the longest symbol length 5f4787834cb7 s390/entry: Fix last breaking event handling in case of stack corruption 56aa7679c9f3 media: uvcvideo: Rollback non processed entities on error f165d04c41a3 kbuild: rpm-pkg: simplify installkernel %post cca5bb42b736 scripts: clean up IA-64 code b90dc5d67b68 ksmbd: remove unsafe_memcpy use in session setup 107a48df3f94 ksmbd: Use unsafe_memcpy() for ntlm_negotiate 8302adf60aba drm/amdgpu: switch job hw_fence to amdgpu_fence a5d7cc1647f9 drm/amdgpu: Add kicker device detection f640d011080d drm/i915/gem: Allow EXEC_CAPTURE on recoverable contexts on DG1 a8ceffaeb780 drm/amdgpu: amdgpu_vram_mgr_new(): Clamp lpfn to total vram 5148c7ea69e9 drm/amd/display: Add null pointer check for get_first_active_display() ede04b471596 drm/bridge: cdns-dsi: Wait for Clk and Data Lanes to be ready 252e6e96f9b6 drm/bridge: cdns-dsi: Check return value when getting default PHY config c4ee1b31a540 drm/bridge: cdns-dsi: Fix connecting to next bridge f9b819c39d13 drm/bridge: cdns-dsi: Fix phy de-init and flag it so 2565ff3ac3f5 drm/bridge: cdns-dsi: Fix the clock variable for mode_valid() 76115eafad12 drm/amdkfd: Fix race in GWS queue scheduling 7946a10f8da7 drm/msm/gpu: Fix crash when throttling GPU immediately during boot 50e48e940329 drm/udl: Unregister device before cleaning up on disconnect 5ff3636bcc32 drm/tegra: Fix a possible null pointer dereference 23134a522758 drm/tegra: Assign plane type before registration 9ec447c23753 drm/etnaviv: Protect the scheduler's pending list with its lock 6d7b814c527c drm/cirrus-qemu: Fix pitch programming 66f122e67261 drm/ast: Fix comment on modeset lock bf2c1643abc3 scsi: megaraid_sas: Fix invalid node index 42cf4f016173 HID: wacom: fix kobject reference count leak f531651c394e HID: wacom: fix memory leak on sysfs attribute creation failure 33acbeeb5ad6 HID: wacom: fix memory leak on kobject creation failure f0ffc8076d39 HID: lenovo: Restrict F7/9/11 mode to compact keyboards only 8a89e9c27b77 net: libwx: fix the creation of page_pool 9052c7bca391 btrfs: update superblock's device bytes_used when dropping chunk aeeae8feeaae btrfs: fix a race between renames and directory logging 6ad80378f928 dm-raid: fix variable in journal device check e395e34b0652 Bluetooth: L2CAP: Fix L2CAP MTU negotiation f90d78d65ccc serial: imx: Restore original RXTL for console to fix data loss 40f62f8cf854 dt-bindings: serial: 8250: Make clocks and clock-frequency exclusive f89c40520fa1 staging: rtl8723bs: Avoid memset() in aes_cipher() and aes_decipher() e5e6a5aa3915 EDAC/amd64: Fix size calculation for Non-Power-of-Two DIMMs c82c7041258d smb: client: fix potential deadlock when reconnecting channels ced8eff11a4f drm/bridge: ti-sn65dsi86: Add HPD for DisplayPort connector type 1c9a8a84c5a8 drm/bridge: ti-sn65dsi86: make use of debugfs_init callback ee800ff711c9 drm/i915: fix build error some more 0804d77fd6e6 net: selftests: fix TCP packet checksum 5b63793da82a ALSA: hda/realtek: Fix built-in mic on ASUS VivoBook X507UAR cabed6ba92a9 atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister(). 63528d60673a net: enetc: Correct endianness handling in _enetc_rd_reg64 ad9c4941d32e libbpf: Fix possible use-after-free for externs c61e284d72d6 um: ubd: Add missing error check in start_io_thread() 8f96a2ae16b5 vsock/uapi: fix linux/vm_sockets.h userspace compilation errors d58343f81354 af_unix: Don't set -ECONNRESET for consumed OOB skb. 86136c670569 wifi: mac80211: fix beacon interval calculation overflow 9b9a87f0bd18 libbpf: Fix null pointer dereference in btf_dump__free on allocation failure 591f79625702 attach_recursive_mnt(): do not lock the covering tree when sliding something under it 74fcb3852a2f ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3() 3c709dce1699 atm: clip: prevent NULL deref in clip_push() 64a99eff8dcf lib/group_cpus: fix NULL pointer dereference from group_cpus_evenly() 88f3869649ed s390/pkey: Prevent overflow in size calculation for memdup_user() db33aa6c5c93 ASoC: amd: yc: Add DMI quirk for Lenovo IdeaPad Slim 5 15 490a43d07f16 mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on write c9036b6390af i2c: robotfuzz-osif: disable zero-length read messages 4841060d2e7a i2c: tiny-usb: disable zero-length read messages fad0a2c16062 af_unix: Don't leave consecutive consumed OOB skbs. aabb458c33d9 af_unix: Don't call skb_get() for OOB skb. 0919388ac44f af_unix: Define locking order for U_RECVQ_LOCK_EMBRYO in unix_collect_skb(). fd3af69c14ed af_unix: Define locking order for U_LOCK_SECOND in unix_state_double_lock(). b7904e2fccd0 af_unix: Define locking order for unix_table_double_lock(). 47847495a6ea platform/x86: ideapad-laptop: use usleep_range() for EC polling 6e7af3d4f67f platform/x86: ideapad-laptop: move ACPI helpers from header to source file f8761b11f1c0 platform/x86: ideapad-laptop: move ymc_trigger_ec from lenovo-ymc d19ae7b033b2 platform/x86: ideapad-laptop: introduce a generic notification chain b6b5bcae7aa5 dummycon: Trigger redraw when switching consoles with deferred takeover 8853bad7634f tty: vt: make consw::con_switch() return a bool e9ba8c528b8f tty: vt: sanitize arguments of consw::con_clear() 0b10b5ab7d1d tty: vt: make init parameter of consw::con_init() a bool 7bf946a284c3 PCI: apple: Set only available ports up b8704eef56c5 PCI: apple: Use helper function for_each_child_of_node_scoped() df1d7e879edd uio_hv_generic: Align ring size to system page ca0198894bf9 uio_hv_generic: Query the ringbuffer size for device ebba6cc0781c Drivers: hv: vmbus: Add utility function for querying ring size 3bc5abf8e75a f2fs: don't over-report free space or inodes in statvfs 9830ef1803a5 ASoC: codecs: wcd9335: Fix missing free of regulator supplies 28b6ef1ab65d ASoC: codec: wcd9335: Convert to GPIO descriptors 99d696842287 ASoC: codecs: wcd9335: Handle nicer probe deferral and simplify with dev_err_probe() 0c40fa81f850 jfs: validate AG parameters in dbMount() to prevent crashes 7747d3f9a506 fs/jfs: consolidate sanity checking in dbMount fc97a116dc49 btrfs: handle csum tree error with rescue=ibadroots correctly 2cbeb47ea983 ovl: Check for NULL d_inode() in ovl_dentry_upper() d120737a6da7 scsi: ufs: core: Don't perform UFS clkscaling during host async scan acc1d4cc47f1 ceph: fix possible integer overflow in ceph_zero_objects() f3465bb32050 ALSA: usb-audio: Add a quirk for Lenovo Thinkpad Thunderbolt 3 dock 789a3f63bd60 ALSA: hda: Add new pci id for AMD GPU display HD audio controller b8cd384c53ae ALSA: hda: Ignore unsol events for cards being shut down 23fe269bfab3 usb: typec: mux: do not return on EOPNOTSUPP in {mux, switch}_set 8851e4058701 usb: typec: displayport: Receive DP Status Update NAK request exit dp altmode 00626325dba7 usb: cdc-wdm: avoid setting WDM_READ for ZLP-s 433cb3e70dc9 usb: Add checks for snprintf() calls in usb_alloc_dev() 0aaf810416c9 usb: common: usb-conn-gpio: use a unique name for usb connector device 8e958d10dd0c tty: serial: uartlite: register uart driver in init a33f507f36d5 usb: potential integer overflow in usbg_make_tpg() a8d1b4f219e8 misc: tps6594-pfsm: Add NULL pointer check in tps6594_pfsm_probe() 1063c586a35c iio: adc: ad_sigma_delta: Fix use of uninitialized status_pos 41732f9febdc usb: dwc2: also exit clock_gating when stopping udc while suspended 8217fa7d92f0 coresight: Only check bottom two claim bits 8dbc01f09cad um: use proper care when taking mmap lock during segfault 265ca1741075 um: Add cmpxchg8b_emu and checksum functions to asm-prototypes.h 462215a2a3f4 iio: pressure: zpa2326: Use aligned_s64 for the timestamp c5734f9bab6f drm/scheduler: signal scheduled fence when kill job 553f560e0a74 bcache: fix NULL pointer in cache_set_flush() 9d578589e3ec amd/amdkfd: fix a kfd_process ref leak 2fb2470bc683 md/md-bitmap: fix dm-raid max_write_behind setting aaef4f1f44b3 PCI: apple: Fix missing OF node reference in apple_pcie_setup_port 969c9646f0d0 PCI: dwc: Make link training more robust by setting PORT_LOGIC_LINK_WIDTH to one lane 7d942dbcd155 dmaengine: xilinx_dma: Set dma_device directions e0051a3daa8b dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using c765f592adc7 rust: module: place cleanup_module() in .exit.text section efe5db9d98b1 ksmbd: provide zero as a unique ID to the Mac client f72093f270ea ksmbd: allow a filename to contain special characters on SMB3.1.1 posix extension ad804e3648d3 hwmon: (pmbus/max34440) Fix support for max34451 2d8b3898caf5 NFSv4: xattr handlers should check for absent nfs filehandles 9d90ab45d3d3 cxl/region: Add a dev_err() on missing target list entries 96715eb1a120 fuse: fix race between concurrent setattrs from multiple nodes a13b2634dd66 leds: multicolor: Fix intensity setting while SW blinking c3616dfddf1d sunrpc: don't immediately retransmit on seqno miss f0ba7e6d06f2 mfd: max14577: Fix wakeup source leaks on device unbind 35cda8619d97 mailbox: Not protect module_put with spin_lock_irqsave 7d03b140af33 NFSv4.2: fix listxattr to return selinux security label cad6f283f6a6 NFSv4: Always set NLINK even if the server doesn't support it 670c1c546cda cifs: Fix encoding of SMB1 Session Setup NTLMSSP Request in non-UNICODE mode 0e7f0e6e14ba cifs: Fix cifs_query_path_info() for Windows NT servers 4a6499ffc84c cifs: Correctly set SMB1 SessionKey field in Session Setup Request 3f5b4c104b7d Linux 6.6.95 218c3629fb8f cifs: Remove duplicate fattr->cf_dtype assignment from wsl_to_fattr() function 6b4311f78a13 gpio: mlxbf3: only get IRQ for device instance 0 f6071c3cfe3a perf evsel: Missed close() when probing hybrid core PMUs 2a673aca82fe RISC-V: KVM: Don't treat SBI HFENCE calls as NOPs e20f0f44ec59 RISC-V: KVM: Fix the size parameter check in SBI SFENCE calls a77d0a14ed47 scsi: elx: efct: Fix memory leak in efct_hw_parse_filter() 21da6d3561f3 arm64/ptrace: Fix stack-out-of-bounds read in regs_get_kernel_stack_nth() 7c631e5cd38e perf/core: Fix WARN in perf_cgroup_switch() bddec730501b perf: Fix cgroup state vs ERROR 2ee6044a6937 perf: Fix sample vs do_exit() 4ca4f418b761 s390/pci: Fix __pcilg_mio_inuser() inline assembly d7094ad35104 platform/loongarch: laptop: Add backlight power control support 7b47919aff63 smb: client: fix first command failure during re-negotiation cc77844d61f7 Revert "cpufreq: tegra186: Share policy per cluster" eb74c6f1b209 ARM: dts: am335x-bone-common: Increase MDIO reset deassert delay to 50ms 94ec33e9600b ARM: dts: am335x-bone-common: Increase MDIO reset deassert time 2f38986e93d3 platform/x86: ideapad-laptop: add missing Ideapad Pro 5 fn keys e9a011fc6b04 serial: sh-sci: Increment the runtime usage counter for the earlycon device cfa7fa02078d net: make for_each_netdev_dump() a little more bug-proof b8ced2b9a23a smb: Log an error when close_all_cached_dirs fails aaaa689aa29d dt-bindings: i2c: nvidia,tegra20-i2c: Specify the required properties 6377977485f7 EDAC/amd64: Correct number of UMCs for family 19h models 70h-7fh a5e3a1442688 net: atm: fix /proc/net/atm/lec handling dffd03422ae6 net: atm: add lec_mutex bde8833eb075 calipso: Fix null-ptr-deref in calipso_req_{set,del}attr(). 3162d8235c8c ublk: santizize the arguments from userspace when adding a device 66bba1fd5bad net: lan743x: fix potential out-of-bounds write in lan743x_ptp_io_event_clock_get() 7382b6f7d102 net: microchip: lan743x: Reduce PTP timeout on HW failure 235aa081e2d9 tcp: fix passive TFO socket having invalid NAPI ID d3dfe821dfe0 tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer 9d0ddfb574a2 tcp: fix tcp_packet_delayed() for tcp_is_non_sack_preventing_reopen() behavior 3261c017a7c5 atm: atmtcp: Free invalid length skb in atmtcp_c_send(). a06078164001 mpls: Use rcu_dereference_rtnl() in mpls_route_input_rcu(). 4e9ab5c48ad5 wifi: carl9170: do not ping device which has failed to load firmware 43e3433a48c3 ptp: allow reading of currently dialed frequency to succeed on free-running clocks a8c669bbc831 ptp: fix breakage after ptp_vclock_in_use() rework aaef8e3a54b9 e1000e: set fixed clock frequency indication for Nahum 11 and Nahum 13 f4c19a8e51ee net: ice: Perform accurate aRFS flow match 8662ac79a634 aoe: clean device rq_list in aoedev_downdev() 9311d6d1a54f pldmfw: Select CRC32 when PLDMFW is selected 4c8f5b0483ac hwmon: (occ) fix unaligned accesses 1312d9bf88be hwmon: (occ) Rework attribute registration for stack usage ff3dcf7f8184 drm/i915/pmu: Fix build error with GCOV and AutoFDO enabled af2f5f21599a drm/nouveau/bl: increase buffer size to avoid truncate warning b599b310380a ionic: Prevent driver/fw getting out of sync on devcmd(s) 002aa3ed19f3 drm/msm/dsi/dsi_phy_10nm: Fix missing initial VCO rate 77087a79779c drm/msm/disp: Correct porch timing for SDM845 7e6980c225c1 smb: fix secondary channel creation issue with kerberos by populating hostname when adding channels 599c489eea79 sunrpc: handle SVC_GARBAGE during svc auth processing as auth error 5e5d2ad9765a erofs: remove unused trace event erofs_destroy_inode 2536810df13f bpf: Fix L4 csum update on IPv6 in CHECKSUM_COMPLETE f6393e5cb913 net: Fix checksum update for ILA adj-transport 3977946f61cd mm/huge_memory: fix dereferencing invalid pmd migration entry af6cfcd0efb7 mm/hugetlb: unshare page tables during VMA split, not before 39c86833f973 iio: accel: fxls8962af: Fix temperature calculation 3d849cc3dfd3 ALSA: hda/realtek: enable headset mic on Latitude 5420 Rugged f80e551050e4 ALSA: hda/intel: Add Thinkpad E15 to PM deny list d61975567d9d ALSA: usb-audio: Rename ALSA kcontrol PCM and PCM1 for the KTMicro sound card 6562806f3200 arm64: Restrict pagetable teardown to avoid false warning 66bde385a1d3 wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE eeacfbab9842 wifi: cfg80211: init wiphy_work before allocating rfkill fails 6d60d822809b Input: sparcspkr - avoid unannotated fall-through 3902205eadf3 atm: Revert atm_account_tx() if copy_from_iter_full() fails. c1a2081f0347 platform/x86/intel-uncore-freq: Fail module load when plat_info is NULL 2753481c40af selinux: fix selinux_xfrm_alloc_user() to set correct ctx_len 0902625a24ee ksmbd: fix null pointer dereference in destroy_previous_session 2a03531c00b2 selftests/x86: Add a test to detect infinite SIGTRAP handler loop 372b511e9345 udmabuf: use sgtable-based scatterlist wrappers bfa4d86e130a net: clear the dst when changing skb protocol 0357da9149ea net_sched: sch_sfq: reject invalid perturb period bb9d4ffff6d8 scsi: s390: zfcp: Ensure synchronous unit_add 8d60df50e62f scsi: storvsc: Increase the timeouts to storvsc_timeout a504536c2923 smb: improve directory cache reuse for readdir operations 202d7e838967 cifs: do not disable interface polling on failure 58021a32f25e cifs: serialize other channels when query server interfaces is pending b530c44e1f38 cifs: deal with the channel loading lag while picking channels cd42ddddd70a jffs2: check jffs2_prealloc_raw_node_refs() result in few other places 3f46644a5131 jffs2: check that raw node were preallocated before writing summary b427d98d5521 LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset() 099cfcb98fb4 LoongArch: Avoid using $r0/$r1 as "mask" for csrxchg 782baee5d917 platform/loongarch: laptop: Unregister generic_sub_drivers on exit 3bce9e6be030 platform/loongarch: laptop: Get brightness setting from EC on probe 1921781ec4a8 drivers/rapidio/rio_cm.c: prevent possible heap overwrite 675d90ee874c io_uring: fix task leak issue in io_wq_create() 3c3c7c66bdfa Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older af4ed5262d30 powerpc/eeh: Fix missing PE bridge reconfiguration during VFIO EEH recovery a7f3cfc1eb99 powerpc/vdso: Fix build of VDSO32 with pcrel dd95b3e00346 platform/x86: dell_rbu: Stop overwriting data buffer f3b840fb1508 platform/x86: dell_rbu: Fix list usage 523e2f8a7f83 platform/x86/amd: pmc: Clear metrics table at start of cycle 7d71ba5b0a01 fs/xattr.c: fix simple_xattr_list() 897e6d88f0e3 Revert "bus: ti-sysc: Probe for l4_wkup and l4_cfg interconnect devices first" cdc1b9b47bc5 tee: Prevent size calculation wraparound on 32-bit kernels 59b7304d0dff ARM: OMAP2+: Fix l4ls clk domain handling in STANDBY bca6fe52bd95 bus: fsl-mc: increase MC_CMD_COMPLETION_TIMEOUT_MS value c85311a73d74 watchdog: da9052_wdt: respect TWDMIN 519ba75728ee fbcon: Make sure modelist not set on unregistered console 8df53ee74cac wifi: ath12k: Pass correct values of center freq1 and center freq2 for 160 MHz 2304e2b5e470 wifi: ath12k: fix incorrect CE addresses 9db1bf90147c wifi: ath12k: fix link valid field initialization in the monitor Rx 6bd0f2e71b15 wifi: ath11k: determine PM policy based on machine model 42d0bfbe0296 octeontx2-pf: Add error log forcn10k_map_unmap_rq_policer() a37888a435b0 net: ethernet: cortina: Use TOE/TSO on all TCP 38c4106cb4e9 bpf, sockmap: Fix data lost during EAGAIN retries bdb4da9e1921 f2fs: fix to set atomic write status more clear a3c32f17acbf usbnet: asix AX88772: leave the carrier control to phylink e036d648773c ice: fix check for existing switch rule 8cde755f5616 i40e: fix MMIO write access to an invalid page in i40e_clear_hw 52a16bafda0e sock: Correct error checking condition for (assign|release)_proto_idx() 34c0a670556b scsi: lpfc: Use memcpy() for BIOS version 79dc5e78d13d wifi: ath12k: fix failed to set mhi state error during reboot with hardware grouping 5cf32cef3a38 pinctrl: mcp23s08: Reset all pins to input at probe f9397cf7bfb6 software node: Correct a OOB check in software_node_get_reference_args() 03545901ec09 net: ethernet: ti: am65-cpsw: handle -EPROBE_DEFER c0d8c14d9bf2 vxlan: Do not treat dst cache initialization errors as fatal b4c83b37490d net: bridge: mcast: re-implement br_multicast_{enable, disable}_port functions cd97899361bc net: bridge: mcast: update multicast contex when vlan state is changed a0ab9e9148dd wifi: iwlwifi: Add missing MODULE_FIRMWARE for Qu-c0-jf-b0 172d1e4a6804 wifi: mac80211: VLAN traffic in multicast path 4fc2b3c0657b wifi: mac80211_hwsim: Prevent tsf from setting if beacon is disabled 2077cef44d33 wifi: iwlwifi: pcie: make sure to lock rxq->read 920fcc7adc73 iommu/amd: Ensure GA log notifier callbacks finish running before module unload 32f25633f366 scsi: lpfc: Fix lpfc_check_sli_ndlp() handling for GEN_REQUEST64 commands c697dac96937 libbpf: Add identical pointer detection to btf_dedup_is_equiv() f11cfb48f2d2 clk: rockchip: rk3036: mark ddrphy as critical dfec43c50376 wifi: mac80211: do not offer a mesh path if forwarding is disabled efa7997ce846 wireless: purelifi: plfxlc: fix memory leak in plfxlc_usb_wreq_asyn() 187829fb0c35 net: vertexcom: mse102x: Return code for mse102x_rx_pkt_spi 84d34bd55d6a net: mlx4: add SOF_TIMESTAMPING_TX_SOFTWARE flag when getting ts info ae48bc0b8be8 pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get() 8a15a5438c58 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_gpio_set_direction() 02c966a8869b pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get_direction() 14a26f669206 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_set_by_name() 79f3e44df6e6 net: atlantic: generate software timestamp just before the doorbell 9121c2ddd177 ipv4/route: Use this_cpu_inc() for stats on PREEMPT_RT 62b62a2a6dc5 x86/sgx: Prevent attempts to reclaim poisoned pages c1025a54289b tcp: fix initial tp->rcvq_space.space value for passive TS enabled flows 156b6bac7645 tcp: always seek for minimal rtt in tcp_rcv_rtt_update() 969d61aa168c wifi: rtw89: leave idle mode when setting WEP encryption for AP mode f11520c6174c wifi: ath11k: Fix QMI memory reuse logic dcf7bb4397de wifi: ath12k: fix a possible dead lock caused by ab->base_lock 7c4b6d8bd72d wifi: ath12k: fix macro definition HAL_RX_MSDU_PKT_LENGTH_GET 6f79eb2e6816 net: dlink: add synchronization for stats update 04fa1bef29d5 i2c: npcm: Add clock toggle recovery be5f6a65509c i2c: tegra: check msg length in SMBUS block read 762325441e3a cpufreq: scmi: Skip SCMI devices that aren't used by the CPUs a620f66675e5 sctp: Do not wake readers in __sctp_write_space() a0b91fa813d4 wifi: mt76: mt7921: add 160 MHz AP for mt7922 device bf3dcb53ba32 wifi: mt76: mt76x2: Add support for LiteOn WN4516R,WN4519R 2c1a2d863b24 emulex/benet: correct command version selection in be_cmd_get_stats() 24900688ee47 wifi: mt76: mt7996: drop fragments with multicast or broadcast RA 775fdb4042b2 i2c: designware: Invoke runtime suspend on quick slave re-registration 7bf4461f1c97 bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem() 61fc32485d64 f2fs: use vmalloc instead of kvmalloc in .init_{,de}compress_ctx 92dbc2a2e2ec tipc: use kfree_sensitive() for aead cleanup 088279ff18cd net: lan743x: Modify the EEPROM and OTP size for PCI1xxxx devices d2a25ca4134c net: macb: Check return value of dma_set_mask_and_coherent() c148af1f398b ACPI: battery: negate current when discharging 6635356483b8 PM: runtime: fix denying of auto suspend in pm_suspend_timer_fn() 6a7c583f56b9 gpiolib: of: Add polarity quirk for s5m8767 5505ec191f77 ASoC: tegra210_ahub: Add check to of_device_get_match_data() cf961a38e450 ACPICA: utilities: Fix overflow check in vsnprintf() 558ba4afdfe5 power: supply: bq27xxx: Retrieve again when busy 1fee4324b566 ACPICA: fix acpi parse and parseext cache leaks 8621fbeb4db9 ACPI: Add missing prototype for non CONFIG_SUSPEND/CONFIG_X86 case 0ab90839bf6c ACPI: bus: Bail out if acpi_kobj registration fails 7d346ca11a6e ASoC: tas2770: Power cycle amp on ISENSE/VSENSE change 30e11a8cff73 ACPICA: Avoid sequence overread in call to strncmp() 58cf7ba36b94 mmc: Add quirk to disable DDR50 tuning 74f765e85d4b power: supply: collie: Fix wakeup source leaks on device unbind 1c24a738971c clocksource: Fix the CPUs' choice in the watchdog per CPU verification 28ecaebbed55 ASoC: amd: yc: Add quirk for Lenovo Yoga Pro 7 14ASP9 755a8006b767 ACPICA: fix acpi operand cache leak in dswstate.c 3175377e8ee1 iio: adc: ad7606_spi: fix reg write value mask f6a5b84f450b iio: imu: inv_icm42600: Fix temperature calculation fe684290418e mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race 6a860536306e iio: accel: fxls8962af: Fix temperature scan element sign a9f6c1ad6c93 PCI: dw-rockchip: Fix PHY function call sequence in rockchip_pcie_phy_deinit() 0b522796a80f PCI: Fix lock symmetry in pci_slot_unlock() 7f6a2d378425 PCI: Add ACS quirk for Loongson PCIe 9895f9d9b515 PCI: cadence-ep: Correct PBA offset in .set_msix() callback 7ca06d696a2f uio_hv_generic: Use correct size for interrupt and monitor pages 6f824cdd8209 Drivers: hv: Allocate interrupt and monitor pages aligned to system page boundary 37166d63e42c smb: client: add NULL check in automount_fullpath 39ff3774693f cifs: dns resolution is needed only for primary channel 5713127da855 cifs: update dstaddr whenever channel iface is updated 9d80e1d37e85 cifs: reset connections for all channels when reconnect requested 3ee979709e16 remoteproc: core: Release rproc->clean_table after rproc_attach() fails 9515d74c9d1a remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach() a4df96e2e81c regulator: max14577: Add error check for max14577_read_reg() 231f6a1de15b mips: Add -std= flag specified in KBUILD_CFLAGS to vdso CFLAGS dfa9ef978d9c staging: iio: ad5933: Correct settling cycles encoding per datasheet cc3cc41ed670 video: screen_info: Relocate framebuffers behind PCI bridges fa2118e9e233 KVM: s390: rename PROT_NONE to PROT_TYPE_DUMMY 6bd2569d0b2f net: ch9200: fix uninitialised access during mii_nway_restart b1bf167f46dd phy: fsl-imx8mq-usb: fix phy_tx_vboost_level_from_property() 83a692a9792a ftrace: Fix UAF when lookup kallsym after ftrace disabled 6737c4551d2b mtd: rawnand: qcom: Fix read len for onfi param page df4918c0bb49 dm-verity: fix a memory leak if some arguments are specified multiple times 61850a1b2673 dm-mirror: fix a tiny race condition fe0ff7d801fb KVM: VMX: Flush shadow VMCS on emergency reboot 0d7a2ea4351b KVM: SVM: Clear current_vmcb during vCPU free for all *possible* CPUs 7775ab2d53b3 mtd: nand: sunxi: Add randomizer configuration before randomizer enable e06a1dadc481 mtd: rawnand: sunxi: Add randomizer configuration in sunxi_nfc_hw_ecc_write_chunk d3abf0066b5e mm: fix ratelimit_pages update error in dirty_ratio_handler() 23a707bbcbea RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction 442e80dcf6fe watchdog: fix watchdog may detect false positive of softlockup 5180561afff8 ipc: fix to protect IPCS lookups using RCU f24d42245239 clk: meson-g12a: add missing fclk_div2 to spicc ebb8060561d5 parisc: fix building with gcc-15 2f4040a5855a vgacon: Add check for vc_origin address range in vgacon_scroll() 7f27859721ae parisc/unaligned: Fix hex output to show 8 hex chars 3ca78032a388 fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var e32a40db6796 EDAC/altera: Use correct write width with the INTTEST register 0909b2b49c45 fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var 061a5dd66608 net: ftgmac100: select FIXED_PHY 8c5713ce1ced net/sched: fix use-after-free in taprio_dev_notifier a8acc7080ad5 NFC: nci: uart: Set tty->disc_data only in success path d95d87841d2a hwmon: (ftsteutates) Fix TOCTOU race in fts_read() 79ef8a6c4ec5 f2fs: fix to do sanity check on sit_bitmap_size a87cbcc909cc f2fs: prevent kernel warning due to negative i_nlink from corrupted image aaddc6c696bd f2fs: fix to do sanity check on ino and xnid 0f7100e8d9f0 Input: gpio-keys - fix possible concurrent access in gpio_keys_irq_timer() 17474a56acf7 Input: ims-pcu - check record size in ims_pcu_flash_firmware() cf6a4c4ac7b6 ext4: only dirty folios when data journaling regular files 3e8a5163bcd3 ext4: ensure i_size is smaller than maxbytes 68cea04f1fb2 ext4: factor out ext4_get_maxbytes() 223091c9897c ext4: fix calculation of credits for extent tree modification 26e09d18599d ext4: inline: fix len overflow in ext4_prepare_inline_data 55995f172598 bus: fsl-mc: fix GET/SET_TAILDROP command ids 1e474b5fab51 bus: fsl-mc: do not add a device-link for the UAPI used DPMCP device 8edfed4439b1 ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330 48f35a32947b cgroup,freezer: fix incomplete freezing when attaching tasks 96707ff5818f ceph: set superblock s_magic for IMA fsmagic matching 636391e8c98c can: tcan4x5x: fix power regulator retrieval during probe d5d4be47e06c bus: mhi: host: Fix conflict between power_up and SYSERR 44b9620e82bb bus: mhi: ep: Update read pointer only after buffer is written 838d63de34a9 ARM: omap: pmic-cpcap: do not mess around without CPCAP or OMAP4 c592d3ceca1a ARM: 9447/1: arm/memremap: fix arch_memremap_can_ram_remap() 12cffd5bd1da arm64/mm: Close theoretical race where stale TLB entry remains valid a31dce9b561d media: uvcvideo: Fix deferred probing error c51c0a0be239 media: uvcvideo: Send control events for partial succeeds d314f99b6f19 media: uvcvideo: Return the number of processed controls ec26be7d6355 media: imx-jpeg: Cleanup after an allocation error 20a6db0ef356 media: imx-jpeg: Reset slot data pointers when freed 683a1db6800e media: imx-jpeg: Move mxc_jpeg_free_slot_data() ahead 350d4af0493a media: imx-jpeg: Drop the first error frames f6b1b0f8ba0b media: vivid: Change the siize of the composing 9824e1732a16 media: vidtv: Terminating the subsequent process of initialization failure 17cb043ea133 media: videobuf2: use sgtable-based scatterlist wrappers 36318ff3d6bf media: venus: Fix probe error handling ae7b143e05b3 media: v4l2-dev: fix error handling in __video_register_device() dfb2add0baa7 media: omap3isp: use sgtable-based scatterlist wrappers ac3a8e37cb8e media: mediatek: vcodec: Correct vsi_core framebuffer size 025a943c49c7 media: gspca: Add error handling for stv06xx_read_sensor() ec5c328606ba media: davinci: vpif: Fix memory leak in probe error path 04354c529c82 media: cxusb: no longer judge rbuf when the write fails 4425db511b9d media: ccs-pll: Check for too high VT PLL multiplier in dual PLL case 1e4b3f166795 media: ccs-pll: Correct the upper limit of maximum op_pre_pll_clk_div b9e314231ffc media: ccs-pll: Start OP pre-PLL multiplier search from correct value ae2fe6606511 media: ccs-pll: Start VT pre-PLL multiplier search from correct value eb7a4ea0a18c media: i2c: ds90ub913: Fix returned fmt from .set_fmt() ecaf904a55c1 media: nxp: imx8-isi: better handle the m2m usage_count 585acb354977 media: ov5675: suppress probe deferral errors ce4a5a34a2bf media: ov8856: suppress probe deferral errors aaf516bb732c wifi: rtlwifi: disable ASPM for RTL8723BE with subsystem ID 11ad:1723 d4356ce8f826 wifi: rtw88: usb: Reduce control message timeout to 500 ms 2e7c64d7a92c jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata() 1eeecd9be9fe wifi: ath12k: fix ring-buffer corruption 14f5549ad163 fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio() 5ee9a07b456d SUNRPC: Prevent hang on NFS mount with xprtsec=[m]tls 5060e1a5fef1 nfsd: Initialize ssc before laundromat_work to prevent NULL dereference e7e943ddd1c6 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request f08689fe3153 wifi: ath11k: fix ring-buffer corruption 68b29235778b wifi: ath11k: fix rx completion meta data corruption 0e4dc150423b wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback() 782b3aff6763 net/mlx5: Add error handling in mlx5_query_nic_vport_node_guid() 477e4319c371 net/mlx5_core: Add error handling inmlx5_query_nic_vport_qkey_viol_cntr() 278a92b87463 regulator: max20086: Change enable gpio to optional 420f6942f109 regulator: max20086: Fix MAX200086 chip id bf70b3c3df5f powerpc/pseries/msi: Avoid reading PCI device registers in reduced power states 0257c26bbca5 io_uring/kbuf: account ring io_buffer_list memory a8b5ef355477 io_uring: account drain memory to cgroup abf80985f4d6 ASoC: meson: meson-card-utils: use of_property_present() for DT parsing 3895a7590e6e ASoC: qcom: sdm845: Add error handling in sdm845_slim_snd_hw_params() 40aefac870c1 gfs2: move msleep to sleepable context f5b9144715da crypto: marvell/cesa - Do not chain submitted requests 0df5e4c7de27 configfs: Do not override creating attribute file failure in populate_attrs()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
projects / thirdparty / openembedded / openembedded-core-contrib.git / log
