Peter Marko [Sat, 13 Jan 2024 18:08:48 +0000 (19:08 +0100)]
zlib: ignore CVE-2023-6992
This CVE is for iCPE cloudflare:zlib.
Alternative to ignoring would be to limit CVE_PRODUCT, but
historic CVEs already have two - gnu:zlib and zlib:zlib.
So limiting it could miss future CVEs.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Vijay Anusuri [Fri, 12 Jan 2024 03:04:06 +0000 (08:34 +0530)]
libxml2: Fix for CVE-2023-45322
Backport patch for gitlab issue mentioned in NVD CVE report.
* https://gitlab.gnome.org/GNOME/libxml2/-/issues/583
Backport also one of 14 patches for older issue with similar errors
to have clean cherry-pick without patch fuzz.
* https://gitlab.gnome.org/GNOME/libxml2/-/issues/344
The CVE is disputed because the maintainer does not think that
errors after memory allocation failures are not critical enough
to warrant a CVE ID.
This patch will formally fix reported error case, trying to backport
another 13 patches and resolve conflicts would be probably overkill
due to disputed state.
This CVE was ignored on master branch (as diputed).
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Dhairya Nagodra [Mon, 11 Dec 2023 10:05:00 +0000 (02:05 -0800)]
cve-update-nvd2-native: increase the delay between subsequent request failures
Sometimes NVD servers are unstable and return too many errors.
There is an option to have higher fetch attempts to increase the chances
of successfully fetching the CVE data.
Additionally, it also makes sense to progressively increase the delay
after a failed request to an already unstable or busy server.
The increase in delay is reset after every successful request and
the maximum delay is limited to 30 seconds.
Also, the logs are improved to give more clarity.
Signed-off-by: Dhairya Nagodra <dnagodra@cisco.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 7101d654635b707e56b0dbae8c2146b312d211ea) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Dhairya Nagodra [Mon, 11 Dec 2023 10:04:59 +0000 (02:04 -0800)]
cve-update-nvd2-native: faster requests with API keys
As per NVD, the public rate limit is 5 requests in 30s (6s delay).
Using an API key increases the limit to 50 requests in 30s (0.6s delay).
However, NVD still recommends sleeping for several seconds so that the
other legitimate requests are serviced without denial or interruption.
Keeping the default sleep at 6 seconds and 2 seconds with an API key.
For failures, the wait time is unchanged (6 seconds).
Peter Marko [Mon, 27 Nov 2023 19:55:36 +0000 (20:55 +0100)]
cve-update-nvd2-native: make number of fetch attemtps configurable
Sometimes NVD servers are unstable and return too many errors.
Last time we increased number of attempts from 3 to 5, but
further increasing is not reasonable as in normal case
too many retries is just abusive.
Keep retries low as default and allow to increase as needed.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6b6fd8043d83b99000054ab6ad2c745d07c6bcc1) Signed-off-by: Steve Sakoman <steve@sakoman.com>
This variable is not referenced in oe-core anymore.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 905b45a814cb33327503b793741c19b44c8550b3) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Vijay Anusuri [Fri, 29 Dec 2023 03:57:41 +0000 (09:27 +0530)]
qemu: Fix CVE-2023-5088
A bug in QEMU could cause a guest I/O operation otherwise
addressed to an arbitrary disk offset to be targeted to
offset 0 instead (potentially overwriting the VM's boot code).
Vijay Anusuri [Wed, 27 Dec 2023 01:44:26 +0000 (07:14 +0530)]
go: Fix CVE-2023-39326
A malicious HTTP sender can use chunk extensions to cause a receiver
reading from a request or response body to read many more bytes from
the network than are in the body. A malicious HTTP client can further
exploit this to cause a server to automatically read a large amount
of data (up to about 1GiB) when a handler fails to read the entire
body of a request. Chunk extensions are a little-used HTTP feature
which permit including additional metadata in a request or response
body sent using the chunked encoding. The net/http chunked encoding
reader discards this metadata. A sender can exploit this by inserting
a large metadata segment with each byte transferred. The chunk reader
now produces an error if the ratio of real body to encoded bytes grows
too small.
Steve Sakoman [Thu, 21 Dec 2023 17:49:26 +0000 (07:49 -1000)]
testimage: drop target_dumper and host_dumper
The target_dumper code is basically broken. It has been reading binary files
over the text base serial communication and runs at every command failure which
makes no sense. Each run might overwrite files from the previous run and the
output appears corrupted due to confusion from the binary data.
It isn't possible to cherry-pick "testimage: Drop target_dumper and most of monitor_dumper"
from master, so just make target_dumper and host_dumper empty functions.
Richard Purdie [Tue, 19 Dec 2023 14:29:32 +0000 (14:29 +0000)]
testimage: Exclude wtmp from target-dumper commands
wtmp is filled with binary data which the run_serial command can't cope with.
Catting this results in confusion of the serial interface and potentially large
backlogs of data in the buffers which can hang qemu.
Exclude the problematic files from the command.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 599ac08a6f6fb3f6a89a897c8e06367c63c2f979) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 5 Dec 2023 18:25:55 +0000 (13:25 -0500)]
linux-yocto/5.4: update to v5.4.262
Updating to the latest korg -stable release that comprises
the following commits:
8e221b47173d Linux 5.4.262 b053223b7cf4 netfilter: nf_tables: bogus EBUSY when deleting flowtable after flush (for 5.4) c35df8b8c572 netfilter: nf_tables: disable toggling dormant table state more than once e10f661adc55 netfilter: nf_tables: fix table flag updates 46c2947fcd71 netfilter: nftables: update table flags from the commit phase b09e6ccf0d12 netfilter: nf_tables: double hook unregistration in netns path b05a24cc453e netfilter: nf_tables: unregister flowtable hooks on netns exit a995a68e8a3b netfilter: nf_tables: fix memleak when more than 255 elements expired b95d7af657a8 netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration 61a7b3de20e2 netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention 03caf75da105 netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction 021d734c7eaa netfilter: nf_tables: defer gc run if previous batch is still pending 38ed6a5f836f netfilter: nf_tables: use correct lock to protect gc_list 4b6346dc1edf netfilter: nf_tables: GC transaction race with abort path b76dcf466223 netfilter: nf_tables: GC transaction race with netns dismantle 29ff9b8efb84 netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path 1398a0eee290 netfilter: nf_tables: remove busy mark and gc batch API 85520a1f1d87 netfilter: nft_set_hash: mark set element as dead when deleting from packet path c357648929c8 netfilter: nf_tables: adapt set backend to use GC transaction API bbdb3b65aa91 netfilter: nf_tables: GC transaction API to avoid race with control plane 1da4874d05da netfilter: nf_tables: don't skip expired elements during walk acaee227cf79 netfilter: nft_set_rbtree: fix overlap expiration walk 899aa5638568 netfilter: nft_set_rbtree: fix null deref on element insertion 181859bdfb97 netfilter: nft_set_rbtree: Switch to node list walk for overlap detection 3c7ec098e3b5 netfilter: nf_tables: drop map element references from preparation phase 6b880f3b2c04 netfilter: nftables: rename set element data activation/deactivation functions e1eed9e0b5e8 netfilter: nf_tables: pass context to nft_set_destroy() 961c4511c757 tracing: Have trace_event_file have ref counters 7676a41d90c5 drm/amdgpu: fix error handling in amdgpu_bo_list_get() 36383005f1db ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks e95f74653dff ext4: correct the start block of counting reserved clusters 1fbfdcc3d65e ext4: correct return value of ext4_convert_meta_bg dfdfd3f21830 ext4: correct offset of gdb backup in non meta_bg group to update_backups 85c12e80c474 ext4: apply umask if ACL support is disabled d2aed8814f02 Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E" b9e5f633b35d nfsd: fix file memleak on client_opens_release 339d7d40d3dc media: venus: hfi: add checks to handle capabilities from firmware cab97cdd409a media: venus: hfi: fix the check to handle session buffer requirement 5d39d0c1f43f media: venus: hfi_parser: Add check to keep the number of codecs within range 497b12d47cc6 media: sharp: fix sharp encoding 92d8a0478fb3 media: lirc: drop trailing space from scancode transmit cac054d10324 i2c: i801: fix potential race in i801_block_transaction_byte_by_byte b132e462363f net: dsa: lan9303: consequently nested-lock physical MDIO 229738d71702 Revert ncsi: Propagate carrier gain/loss events to the NCSI controller 4074957ec6bb Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE 356a2ee5fc36 Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables afe92b66a5d8 bluetooth: Add device 13d3:3571 to device tables dc073a2626d3 bluetooth: Add device 0bda:887b to device tables 75d26f7f6118 Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559 323710a6b4c6 Bluetooth: btusb: add Realtek 8822CE to usb_device_id table 981ee23b8d48 Bluetooth: btusb: Add flag to define wideband speech capability 0fe69c99cc13 tty: serial: meson: fix hard LOCKUP on crtscts mode 8f40bbf7dc01 serial: meson: Use platform_get_irq() to get the interrupt a1113f2c9b2c tty: serial: meson: retrieve port FIFO size from DT 13391526d817 serial: meson: remove redundant initialization of variable id 6245d0d70fe8 ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC 4ef452297de4 ALSA: info: Fix potential deadlock at disconnection c7df9523fed2 parisc/pgtable: Do not drop upper 5 address bits of physical address c32dfec86714 parisc: Prevent booting 64-bit kernels on PA1.x machines d570d139cb38 i3c: master: cdns: Fix reading status register ad6941b192ca mm/cma: use nth_page() in place of direct struct page manipulation 36512866607e dmaengine: stm32-mdma: correct desc prep when channel running 4a5c267d5700 mcb: fix error handling for different scenarios when parsing 25eb381a736e i2c: core: Run atomic i2c xfer when !preemptible 975b5ff33f9a kernel/reboot: emergency_restart: Set correct system_state 421f9ccc75c5 quota: explicitly forbid quota files from being encrypted 7d0c36cd2e65 jbd2: fix potential data lost in recovering journal raced with synchronizing fs bdev 665c2f186b8c btrfs: don't arbitrarily slow down delalloc if we're committing b5a8382cf829 PM: hibernate: Clean up sync_read handling in snapshot_write_next() 2b3cfdaa8833 PM: hibernate: Use __get_safe_page() rather than touching the list 612c17a90fce mmc: vub300: fix an error code 398940412e8d clk: qcom: ipq8074: drop the CLK_SET_RATE_PARENT flag from PLL clocks 0b2b22b706ec parisc/pdc: Add width field to struct pdc_model 012dba0ab814 PCI: keystone: Don't discard .probe() callback 9988c9dc3c8b PCI: keystone: Don't discard .remove() callback a438322e0078 genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware 683c562c434d mmc: meson-gx: Remove setting of CMD_CFG_ERROR d894f9288cff ACPI: resource: Do IRQ override on TongFang GMxXGxx 7b15bc9b753f PCI/sysfs: Protect driver's D3cold preference from user space 78d3487b5b87 hvc/xen: fix error path in xen_hvc_init() to always register frontend driver 6b21ae025b82 audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare() c0d01f03aaac audit: don't take task_lock() in audit_exe_compare() code path 4d0a828775f0 KVM: x86: Ignore MSR_AMD64_TW_CFG access 5066faedd2f7 KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space 268d17ab637a x86/cpu/hygon: Fix the CPU topology evaluation for real acbc12b0b348 scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers bae690510316 bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END 6933bc9a5f77 randstruct: Fix gcc-plugin performance mode to stay in group c94d05ac6937 media: venus: hfi: add checks to perform sanity on queue pointers 6d028ade9db7 cifs: spnego: add ';' in HOST_KEY_LEN 26415e35f669 tools/power/turbostat: Fix a knl bug a49786297b83 macvlan: Don't propagate promisc change to lower dev in passthru 04cb9ab8ebc5 net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors c740f4716a44 net/mlx5_core: Clean driver version and name e4bdbcce8e02 net/mlx5e: fix double free of encap_header 5cc1f24f7333 net: stmmac: fix rx budget limit check c4b712d1a814 net: stmmac: Rework stmmac_rx() b2762d13dfae netfilter: nf_conntrack_bridge: initialize err to 0 fd51e7541ff6 net: ethernet: cortina: Fix MTU max setting 823bffdaac39 net: ethernet: cortina: Handle large frames f5055d7345d6 net: ethernet: cortina: Fix max RX frame define b4f0e605a508 bonding: stop the device in bond_setup_by_slave() 7ea0a719e578 ptp: annotate data-race around q->head and q->tail 89af55e0fa13 xen/events: fix delayed eoi list handling db957a2f5481 ppp: limit MRU to 64K f3b250d91993 tipc: Fix kernel-infoleak due to uninitialized TLV value 77236275d4cd net: hns3: fix variable may not initialized problem in hns3_init_mac_addr() 14c6cd41c851 tty: Fix uninit-value access in ppp_sync_receive() 4d2d30f0792b ipvlan: add ipvlan_route_v6_outbound() helper ed53c1518811 NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO fe449f8b9727 wifi: iwlwifi: Use FW rate for non-data frames eca19db60f99 pwm: Fix double shift bug d996530ba92c ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings 6d703922bc9e kgdb: Flush console before entering kgdb on panic eac3e4760aa1 drm/amd/display: Avoid NULL dereference of timing generator 514565ff7fce media: cobalt: Use FIELD_GET() to extract Link Width 2bb42a27a92f gfs2: ignore negated quota changes a251e20a2cbe media: vivid: avoid integer overflow 8f83c85ee882 media: gspca: cpia1: shift-out-of-bounds in set_flicker a8f829886d47 i2c: sun6i-p2wi: Prevent potential division by zero 80876a07ca3b usb: gadget: f_ncm: Always set current gadget in ncm_bind() 460284dfb10b tty: vcc: Add check for kstrdup() in vcc_probe() 35b9435123ef HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W b549acf99982 scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() 33906b36b15d atm: iphase: Do PCI error checks on own line 54f4dde8fa0c PCI: tegra194: Use FIELD_GET()/FIELD_PREP() with Link Width fields 2527775616f3 ALSA: hda: Fix possible null-ptr-deref when assigning a stream 953ed26a77c6 ARM: 9320/1: fix stack depot IRQ stack filter 7467ca10a5ff jfs: fix array-index-out-of-bounds in diAlloc ecfb47f13b08 jfs: fix array-index-out-of-bounds in dbFindLeaf 32bd8f1cbcf8 fs/jfs: Add validity check for db_maxag and db_agpref a81a56b4cbe3 fs/jfs: Add check for negative db_l2nbperpage e18d266fb3f1 RDMA/hfi1: Use FIELD_GET() to extract Link Width c9c133469730 crypto: pcrypt - Fix hungtask for PADATA_RESET ddd6e5266343 selftests/efivarfs: create-read: fix a resource leak 437e0fa907ba drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL d50a56749e5a drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga c847379a5d00 drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 1f24c286f4a4 drm/komeda: drop all currently held locks if deadlock happens 5305ae0d4ad8 platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e 3c4236f1b2a7 Bluetooth: Fix double free in hci_conn_cleanup 3cf391e4174a wifi: ath10k: Don't touch the CE interrupt registers after power up 252bde6b17b8 net: annotate data-races around sk->sk_dst_pending_confirm 73909810ac27 net: annotate data-races around sk->sk_tx_queue_mapping bd653b07095a wifi: ath10k: fix clang-specific fortify warning 32cc96dc5f4e wifi: ath9k: fix clang-specific fortify warnings efeae5f4972f wifi: mac80211: don't return unset power in ieee80211_get_tx_power() 770da15be321 wifi: mac80211_hwsim: fix clang-specific fortify warning cfe13e1486d4 x86/mm: Drop the 4 MB restriction on minimal NUMA node memory size 91f7467ac96a clocksource/drivers/timer-atmel-tcb: Fix initialization on SAM9 hardware da667a3f8e23 clocksource/drivers/timer-imx-gpt: Fix potential memory leak 788c0b3442ea perf/core: Bail out early if the request AUX area is out of bound dcd85e3c9293 locking/ww_mutex/test: Fix potential workqueue corruption ef379773e2e7 Linux 5.4.261 3542ef5c3748 btrfs: use u64 for buffer sizes in the tree search ioctls 7868e6151a6d Revert "mmc: core: Capture correct oemid-bits for eMMC cards" 7be3aca8d73d fbdev: fsl-diu-fb: mark wr_reg_wa() static 6c66d737b272 fbdev: imsttfb: fix a resource leak in probe b90c8dfd715f fbdev: imsttfb: Fix error path of imsttfb_probe() 4a6a3f1b3840 spi: spi-zynq-qspi: add spi-mem to driver kconfig dependencies 157333513d14 drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE 21858a75dc78 netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses ae99c5e16a83 netfilter: nft_redir: use `struct nf_nat_range2` throughout and deduplicate eval call-backs 11380557c236 netfilter: xt_recent: fix (increase) ipv6 literal buffer length cce1d4668191 r8169: respect userspace disabling IFF_MULTICAST e820e23338d1 tg3: power down device only on SYSTEM_POWER_OFF f8065cde49b2 net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT 592f934b7a22 net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs 85513df59a3e Fix termination state for idr_for_each_entry_ul() 56cddb5e657f net: r8169: Disable multicast filter for RTL8168H and RTL8107E e5a664ef4928 dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses. 3af0af2f98f3 dccp: Call security_inet_conn_request() after setting IPv4 addresses. afa49774d812 inet: shrink struct flowi_common 2199260c42e6 tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING cbdcdf42d15d llc: verify mac len before reading mac header 50d122536661 Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() e3677bfcbbcb pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume 6e9b5295892e pwm: sti: Reduce number of allocations and drop usage of chip_data 19e45307f71f pwm: sti: Avoid conditional gotos c4d5179e42b4 regmap: prevent noinc writes from clobbering cache d62d868b30b8 media: dvb-usb-v2: af9035: fix missing unlock 7843a9bfbe13 media: s3c-camif: Avoid inappropriate kfree() b35fdade92c5 media: bttv: fix use after free error due to btv->timeout timer 0bc0e36fccc2 pcmcia: ds: fix possible name leak in error path in pcmcia_device_add() 1502edd4a014 pcmcia: ds: fix refcount leak in pcmcia_device_add() 58d6fb6a933c pcmcia: cs: fix possible hung task and memory leak pccardd() 37212eede637 rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call 204beeb509d3 i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs 247ed618f534 powerpc/pseries: fix potential memory leak in init_cpu_associativity() cee681d4b22b powerpc/imc-pmu: Use the correct spinlock initializer. dc5804b47b66 powerpc/xive: Fix endian conversion size b6cffe8dd7cd modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host 90ab33735e2e f2fs: fix to initialize map.m_pblk in f2fs_precache_extents() 9f20b06214dc dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc() 688326e2cf9e USB: usbip: fix stub_dev hub disconnect b003b7a7d42e tools: iio: iio_generic_buffer ensure alignment 7a64d15db7aa tools: iio: iio_generic_buffer: Fix some integer type and calculation db6d5b9ff6e8 tools: iio: privatize globals and functions in iio_generic_buffer.c file 55b90e4c406a misc: st_core: Do not call kfree_skb() under spin_lock_irqsave() ed9b2ad3b9ca dmaengine: ti: edma: handle irq_of_parse_and_map() errors 64c47749fc75 usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency 4050f13f71f2 tty: tty_jobctrl: fix pid memleak in disassociate_ctty() ba46faaa49c5 leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu' abfd682fc5f0 ledtrig-cpu: Limit to 8 CPUs f6c3b7a4ce51 leds: pwm: Don't disable the PWM when the LED should be off cd6f50115fab leds: pwm: convert to atomic PWM API 9686f771c096 leds: pwm: simplify if condition 87b1ee831ddf mfd: dln2: Fix double put in dln2_probe b843d2cd134b ASoC: ams-delta.c: use component after check 4634c9cc726d ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails 66888e6953f8 sh: bios: Revive earlyprintk support fdcbe9ce7bf3 RDMA/hfi1: Workaround truncation compilation error 01698922f5d3 scsi: ufs: core: Leave space for '\0' in utf8 desc string 3c61391a31a6 ext4: move 'ix' sanity check to corrent position 454e6493bbda ARM: 9321/1: memset: cast the constant byte to unsigned char 727203e6e7e7 hid: cp2112: Fix duplicate workqueue initialization 48bb2931f24c HID: cp2112: Use irqchip template 7b62cf90d0ea crypto: caam/jr - fix Chacha20 + Poly1305 self test failure 090e89c71620 crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure 40ba3fa21250 nd_btt: Make BTT lanes preemptible 68655462f8be sched/rt: Provide migrate_disable/enable() inlines d14a373fe559 libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its return value f5d95a39683e hwrng: geode - fix accessing registers e4e4d4abb82b clk: scmi: Free scmi_clk allocated when the clocks with invalid info are skipped ce11e445d0ae firmware: ti_sci: Mark driver as non removable 5d97cc0b491e firmware: ti_sci: Replace HTTP links with HTTPS ones cc1a1dcb411f soc: qcom: llcc: Handle a second device without data corruption 813fdddde20f soc: qcom: Rename llcc-slice to llcc-qcom 077010717b52 soc: qcom: llcc cleanup to get rid of sdm845 specific driver file 3da50ee512e2 ARM: dts: qcom: mdm9615: populate vsdcc fixed regulator 6b464d9414e3 arm64: dts: qcom: sdm845-mtp: fix WiFi configuration 64d990086065 drm/rockchip: cdn-dp: Fix some error handling paths in cdn_dp_probe() ddc42881f170 drm/radeon: possible buffer overflow 4a29f0f7a1b7 drm/rockchip: vop: Fix call to crtc reset helper 824f0f4f93c6 drm/rockchip: vop: Fix reset of state in duplicate state crtc funcs eaf62ea6504f hwmon: (coretemp) Fix potentially truncated sysfs attribute name 9fb0eed09e14 platform/x86: wmi: Fix opening of char device 22117b77eecb platform/x86: wmi: remove unnecessary initializations 1607ea8a8161 platform/x86: wmi: Fix probe failure when failing to register WMI devices d1461f0c9ca0 clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data e8ae4b49dd9c clk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data cfa68e0ac5dc clk: mediatek: clk-mt7629-eth: Add check for mtk_alloc_clk_data 2705c5b97f50 clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data fbe466f06d4e clk: mediatek: clk-mt6779: Add check for mtk_alloc_clk_data 8ae911637b0b clk: npcm7xx: Fix incorrect kfree cbcf67b0bc5d clk: keystone: pll: fix a couple NULL vs IS_ERR() checks 3d38bc4bab88 clk: imx: Select MXC_CLK for CLK_IMX8QXP ae98b5ef991a clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src 15f335494bb3 clk: qcom: gcc-sm8150: use ARRAY_SIZE instead of specifying num_parents 141ccc127230 clk: qcom: clk-rcg2: Fix clock rate overflow for high parent frequencies dbf13624b2de regmap: debugfs: Fix a erroneous check after snprintf() af50165c1218 ipvlan: properly track tx_errors 76304c749e05 net: add DEV_STATS_READ() helper 4482b250c895 ipv6: avoid atomic fragment on GSO packets 19d527337870 ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias() 5105d46146f2 tcp: fix cookie_init_timestamp() overflows e4e819bdc8f3 tcp: Remove one extra ktime_get_ns() from cookie_init_timestamp 7ab8aa73002c chtls: fix tp->rcv_tstamp initialization 75bbf6e93462 r8169: fix rare issue with broken rx after link-down on RTL8125 282342bc47c6 r8169: use tp_to_dev instead of open code 3091ab943dfc thermal: core: prevent potential string overflow 35854733ae67 can: dev: can_restart(): fix race condition between controller restart and netif_carrier_on() b53be254d30f can: dev: can_restart(): don't crash kernel if carrier is OK a29f012a27cf wifi: rtlwifi: fix EDCA limit set by BT coexistence bed72a332f02 tcp_metrics: do not create an entry from tcp_init_metrics() f3902c0e6f08 tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics() b78f2b7774a0 tcp_metrics: add missing barriers on delete af0fe2c2ff4d wifi: mt76: mt7603: rework/fix rx pse hang check a2e99dbdc127 wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file() c9b929f7932b tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed 25eaef1d0d0e i40e: fix potential memory leaks in i40e_remove() 09ce728c9e27 genirq/matrix: Exclude managed interrupts in irq_matrix_allocated() 3718a48ef495 vfs: fix readahead(2) on block devices
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 5 Dec 2023 04:42:56 +0000 (23:42 -0500)]
linux-yocto/5.4: update to v5.4.260
Updating to the latest korg -stable release that comprises
the following commits:
87e8e7a7aa1f Linux 5.4.260 8b0ecf2167a0 tty: 8250: Add support for Intashield IS-100 6dd5561b2385 tty: 8250: Add support for Brainboxes UP cards 03145e0ff8ab tty: 8250: Add support for additional Brainboxes UC cards 5a6471372f9b tty: 8250: Remove UC-257 and UC-431 72f236b57f1c usb: storage: set 1.50 as the lower bcdDevice for older "Super Top" compatibility 792a91fcd20d PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device 4b865e0d78a0 Revert "ARM: dts: Move am33xx and am43xx mmc nodes to sdhci-omap driver" 4e53bab11f01 nvmet-tcp: Fix a possible UAF in queue intialization setup 2c9415ec8ea9 nvmet-tcp: move send/recv error handling in the send/recv methods instead of call-sites 784ef618b2cc remove the sx8 block driver a31f8222a74c ata: ahci: fix enum constants for gcc-13 cc1afa62e231 net: chelsio: cxgb4: add an error code check in t4_load_phy_fw 7e429d1f3994 platform/mellanox: mlxbf-tmfifo: Fix a warning message 5f4f58eac361 platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to 0x2e 88d1aa03eb16 scsi: mpt3sas: Fix in error path b1f62e3ef90c fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit() fb02de64791c ASoC: rt5650: fix the wrong result of key button b6c09ff5eada netfilter: nfnetlink_log: silence bogus compiler warning 6c23b6d308af spi: npcm-fiu: Fix UMA reads when dummy.nbytes == 0 788b308340ef fbdev: atyfb: only use ioremap_uc() on i386 and ia64 848b9c688865 Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport a0bf183db438 dmaengine: ste_dma40: Fix PM disable depth imbalance in d40_probe 39ae053abbad irqchip/stm32-exti: add missing DT IRQ flag translation fbcd05a0dbda Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table cda248f16924 x86: Fix .brk attribute in linker script 01e6885b75e2 rpmsg: Fix possible refcount leak in rpmsg_register_device_override() cff56d7a9274 rpmsg: glink: Release driver_override 3d1478598057 rpmsg: Fix calling device_lock() on non-initialized device e70898ae1a42 rpmsg: Fix kfree() of static memory on setting driver_override 0df5d801359e rpmsg: Constify local variable in field store macro 063444d66f90 driver: platform: Add helper for safer setting of driver_override 83ecffd40c65 ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow 66cfd4cf6ac8 ext4: avoid overlapping preallocations due to overflow 1e0a5dec2638 ext4: add two helper functions extent_logical_end() and pa_logical_end() c2102ac1033f x86/mm: Fix RESERVE_BRK() for older binutils ced79d864bfd x86/mm: Simplify RESERVE_BRK() 5fc242c11804 nfsd: lock_rename() needs both directories to live on the same fs e9a988cd4c8b f2fs: fix to do sanity check on inode type during garbage collection 750de03de7e1 smbdirect: missing rc checks while waiting for rdma events 5776aeee2a60 kobject: Fix slab-out-of-bounds in fill_kobj_path() 0a45e0e5dd8d arm64: fix a concurrency issue in emulation_proc_handler() 6ba2ffe3cb1c drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper() 9d29933f36e1 x86/i8259: Skip probing when ACPI/MADT advertises PCAT compatibility 1ed21b207ece i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR f48670c3b089 clk: Sanitize possible_parent_show to Handle Return Value of of_clk_get_parent_name 511f3e9bbb0a perf/core: Fix potential NULL deref 8de78231cba9 nvmem: imx: correct nregs for i.MX6UL 0b2c3a8601cc nvmem: imx: correct nregs for i.MX6SLL 6063678df7fa nvmem: imx: correct nregs for i.MX6ULL 12337d3e8819 i2c: aspeed: Fix i2c bus hang in slave read e3d8ef87a9b1 i2c: stm32f7: Fix PEC handling in case of SMBUS transfers 5764f6e546a9 i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node() a3b9bcedd7ad i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node() 07ec3d952a4a i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node() 519ff2d9fecf iio: exynos-adc: request second interupt only when touchscreen mode is used 2bf9fbd13635 gtp: fix fragmentation needed check with gso 2ab1b7ad5046 gtp: uapi: fix GTPA_MAX 54ba3b8267b0 tcp: fix wrong RTO timeout when received SACK reneging 29cb3f81bc71 r8152: Cancel hw_phy_work if we have an error in probe 6124d0b100bf r8152: Run the unload routine if we have errors during probe 1d3cb4aa9388 r8152: Increase USB control msg timeout to 5000ms as per spec 2f8da9511607 net: ieee802154: adf7242: Fix some potential buffer overflow in adf7242_stats_show() ec885679fa9a igc: Fix ambiguity in the ethtool advertising 3b098edafefa neighbour: fix various data-races 418ca6e63e06 igb: Fix potential memory leak in igb_add_ethtool_nfc_entry 00ef4a7de62c treewide: Spelling fix in comment e44e78ff44e5 r8169: fix the KCSAN reported data race in rtl_rx while reading desc->opts1 b9ba50fc18d7 r8169: fix the KCSAN reported data-race in rtl_tx while reading TxDescArray[entry].opts1 a27c6bfc5287 virtio-mmio: fix memory leak of vm_dev 8d394fcb0398 virtio_balloon: Fix endless deflation and inflation on arm64 be84e96426ed mcb-lpc: Reallocate memory region to avoid memory overlapping 3235094d55de mcb: Return actual parsed size when reading chameleon table fbe17a8be10a selftests/ftrace: Add new test case which checks non unique symbol 4d057ca86eaa mtd: rawnand: marvell: Ensure program page operations are successful 86ea40e6ad22 Linux 5.4.259 c01ac092d97c xfrm6: fix inet6_dev refcount underflow problem b849a38e187d Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name 4d161e18b1c4 Bluetooth: hci_sock: fix slab oob read in create_monitor_event a0f0e43128f3 phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins d1618b922347 phy: mapphone-mdm6600: Fix runtime PM for remove 4db06513a0ee phy: mapphone-mdm6600: Fix runtime disable on probe 083ff5b50cf8 ASoC: pxa: fix a memory leak in probe() 27a17a259005 gpio: vf610: set value before the direction to avoid a glitch 664aad86e5e8 s390/pci: fix iommu bitmap allocation 7252c8b98185 perf: Disallow mis-matched inherited group reads 32279bbbd811 USB: serial: option: add Fibocom to DELL custom modem FM101R-GL 1ff2a7fa0cc0 USB: serial: option: add entry for Sierra EM9191 with new firmware eb8f5e40cbe6 USB: serial: option: add Telit LE910C4-WWX 0x1035 composition b43a412aa1ef ACPI: irq: Fix incorrect return value in acpi_register_gsi() 3189d2d58728 Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" 690eb3772f97 mmc: core: Capture correct oemid-bits for eMMC cards 894b678d865b mmc: core: sdio: hold retuning if sdio in 1-bit mode 37ae7c493a07 mtd: physmap-core: Restore map_rom fallback de28fa53318e mtd: spinand: micron: correct bitmask for ecc status bd68f5068401 mtd: rawnand: qcom: Unmap the right resource upon probe failure a787e07755b6 Bluetooth: hci_event: Fix using memcmp when comparing keys 897d6aee8fb4 HID: multitouch: Add required quirk for Synaptics 0xcd7e device 9cae05233b44 btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c 693ecef54334 drm: panel-orientation-quirks: Add quirk for One Mix 2S 4030effab831 sky2: Make sure there is at least one frag_addr available 340bb4b71661 regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" d7604e819aa6 wifi: cfg80211: avoid leaking stack data into trace 139234011fde wifi: mac80211: allow transmitting EAPOL frames with tainted key b48595f5b1c6 Bluetooth: hci_core: Fix build warnings 16e36cde2738 Bluetooth: Avoid redundant authentication fa83d852e987 HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event 981dfec995a6 tracing: relax trace_event_eval_update() execution with cond_resched() b5d9f34f38ba ata: libata-eh: Fix compilation warning in ata_eh_link_report() 392f597eadd7 gpio: timberdale: Fix potential deadlock on &tgpio->lock 91ae08dc3033 overlayfs: set ctime when setting mtime and atime 01a4e9bc63b7 i2c: mux: Avoid potential false error message in i2c_mux_add_adapter 97cb55f41e2a btrfs: initialize start_slot in btrfs_log_prealloc_extents a055d9d4dd78 btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 d65dbb2aa4f3 ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone 611c991b9e5f ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA b2d0649c8edf ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA 8c0982fc4b72 ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA 0818716a9012 ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks c6f7b3358640 ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA b1f5f4720f52 ACPI: resource: Add ASUS model S5402ZA to quirks fdcd669371da ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA cd202a9f88f1 ACPI: resources: Add DMI-based legacy IRQ override quirk 26b2bc9bdcde ACPI: Drop acpi_dev_irqresource_disabled() 583913b1a667 resource: Add irqresource_disabled() d6878d39b675 net: pktgen: Fix interface flags printing cee9ea14c8c7 netfilter: nft_set_rbtree: .deactivate fails if element has expired 863acae0b83a neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section f34916502d91 net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve b1ad377bbaf7 i40e: prevent crash on probe if hw registers have invalid values c813d17660f8 net: usb: smsc95xx: Fix an error code in smsc95xx_reset() 47419f2aefb3 ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr 00a251ea4507 tun: prevent negative ifindex 8710dbe09e46 tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb 1ae2c7d44e7e tcp: fix excessive TLP and RACK timeouts from HZ rounding eb1a33195a30 net: rfkill: gpio: prevent value glitch during probe cd44e14573c4 net: ipv6: fix return value check in esp_remove_trailer 03b88b7d2a13 net: ipv4: fix return value check in esp_remove_trailer 0cb7b894e47b xfrm: interface: use DEV_STATS_INC() bcacdf4debe5 xfrm: fix a data-race in xfrm_gen_index() 639e979a7d15 qed: fix LL2 RX buffer allocation 1cb76fec3ed6 netfilter: nft_payload: fix wrong mac header matching 6b2875b52746 KVM: x86: Mask LVTPC when handling a PMI 1d434d83136e regmap: fix NULL deref on lookup 76050b0cc5a7 nfc: nci: fix possible NULL pointer dereference in send_acknowledge() 80ce32ab9bee ice: fix over-shifted variable ec8f0d0fe6a7 Bluetooth: avoid memcmp() out of bounds warning 1a00e3544b28 Bluetooth: hci_event: Fix coding style 84598a339bf9 Bluetooth: vhci: Fix race when opening vhci device 1769ac55dbf3 Bluetooth: Fix a refcnt underflow problem for hci_conn 97ce8eca07c9 Bluetooth: Reject connection with the device which has same BD_ADDR 6ce347833612 Bluetooth: hci_event: Ignore NULL link key 6ad3e9fd3632 usb: hub: Guard against accesses to uninitialized BOS descriptors 57e83c2445cd Documentation: sysctl: align cells in second content column 947cd2fba15e dev_forward_skb: do not scrub skb mark within the same name space 65d34cfd4e34 ravb: Fix use-after-free issue in ravb_tx_timeout_work() de6e271338c1 powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() 85ae11da8504 powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE 077fdae908e2 dmaengine: mediatek: Fix deadlock caused by synchronize_irq() 6ea15d9f7ac2 x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs e7ca00f35d8a usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call 1e4414c3870e usb: gadget: udc-xilinx: replace memcpy with memcpy_toio 2a433d325563 pinctrl: avoid unsafe code pattern in find_pinctrl() d5b11bd89377 cgroup: Remove duplicates in cgroup v1 tasks file 1e59ebed9cf3 Input: xpad - add PXN V900 support 8664fa7fbbbf Input: psmouse - fix fast_reconnect function for PS/2 mode 5aa514100aaf Input: powermate - fix use-after-free in powermate_config_complete 3cdce751b026 ceph: fix incorrect revoked caps assert in ceph_fill_file_size() 92cd1635c685 libceph: use kernel_connect() 5704225cdd87 mcb: remove is_added flag from mcb_device struct 2bf6c93e17c4 iio: pressure: ms5611: ms5611_prom_is_valid false negative bug 84af249e48c5 iio: pressure: dps310: Adjust Timeout Settings 00cd9d9c12f4 iio: pressure: bmp280: Fix NULL pointer exception f4c11b2ea0f9 usb: musb: Modify the "HWVers" register address fc1ecea726ec usb: musb: Get the musb_qh poniter after musb_giveback c0fb0419c1ad usb: dwc3: Soft reset phy on probe for host 7efac5b4c209 net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read 57942b0763cf usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer e39710084664 dmaengine: stm32-mdma: abort resume if no ongoing transfer 3345799c4f2e workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() 95733ea130e3 nfc: nci: assert requested protocol is valid 7adcf014bda1 net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() 22ca282ea00b ixgbe: fix crash with empty VF macvlan list 0cc6c070d926 drm/vmwgfx: fix typo of sizeof argument 80a3c0068471 xen-netback: use default TX queue size for vifs 332587dc7fed mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type 85c2857ef900 ieee802154: ca8210: Fix a potential UAF in ca8210_probe daff72af3ff1 ravb: Fix up dma_free_coherent() call in ravb_remove() d3d2aecc1ffe drm/msm/dsi: skip the wait for video mode done if not applicable a0c24f802da7 drm: etvnaviv: fix bad backport leading to warning 907a380eb3a1 net: prevent address rewrite in kernel_bind() 061a18239ced quota: Fix slow quotaoff cd0e2bf7fb22 HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect 8e39b5fb834f pwm: hibvt: Explicitly set .polarity in .get_state() c4eff809d622 lib/test_meminit: fix off-by-one error in test_pages() ffdd8f56a46b RDMA/cxgb4: Check skb value for failure to allocate
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 5 Dec 2023 04:42:55 +0000 (23:42 -0500)]
linux-yocto/5.4: update to v5.4.258
Updating to the latest korg -stable release that comprises
the following commits:
02f78c59a0ed Linux 5.4.258 f70c285cf02c xen/events: replace evtchn_rwlock with RCU e2614ab16a7e ima: rework CONFIG_IMA dependency block b5c3bc4b8104 NFS: Fix a race in __nfs_list_for_each_server() f0ea421fa2f7 parisc: Restore __ldcw_align for PA-RISC 2.0 processors 14e5d94d5c86 RDMA/mlx5: Fix NULL string error 6e26812e289b RDMA/siw: Fix connection failure handling 8ab1fb16dce0 RDMA/uverbs: Fix typo of sizeof argument 26d48f7090b8 RDMA/cma: Fix truncation compilation warning in make_cma_ports f102dd8a1795 gpio: pxa: disable pinctrl calls for MMP_GPIO e38aceeadb4b gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() 8584ee20a56c IB/mlx4: Fix the size of a buffer in add_port_entries() 35b689ee4b57 RDMA/core: Require admin capabilities to set system parameters 1047ca5bae20 cpupower: add Makefile dependencies for install targets 3c2f536c3d32 sctp: update hb timer immediately after users change hb_interval caf0c61f14e7 sctp: update transport state when processing a dupcook packet 14fc22c92937 tcp: fix delayed ACKs for MSS boundary condition 2791d64e6607 tcp: fix quick-ack counting to count actual ACKs of new data 7fbce1e46b41 net: stmmac: dwmac-stm32: fix resume on STM32 MCU f110aa377ddc netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp 191d87a19cf1 net: nfc: llcp: Add lock when modifying device list 310f1c92f65a net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg 899205521005 net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent 1fc793d68d50 ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() 95eabb075a59 net: fix possible store tearing in neigh_periodic_work() 10a301c83a3d modpost: add missing else to the "of" check 5e1c1bf53e5f NFSv4: Fix a nfs4_state_manager() race f90821f66727 NFS: Add a helper nfs_client_for_each_server() e2d4fc53e9f7 NFS4: Trace state recovery operation c87f66c43c1b scsi: target: core: Fix deadlock due to recursive locking 8a1fa738b491 ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig 442e50393a29 regmap: rbtree: Fix wrong register marked as in-cache when creating new node 52008a5e22ac wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling 31b27776905a drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() b8e260654a29 wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet 1b67be400a96 wifi: iwlwifi: dbg_ini: fix structure packing c6d358387632 ubi: Refuse attaching if mtd's erasesize is 0 b4ec10b962f7 net: prevent rewrite of msg_name in sock_sendmsg() 53b700b41a06 net: replace calls to sock->ops->connect() with kernel_connect() 3c4bfa7a56c8 wifi: mwifiex: Fix tlv_buf_left calculation 2e608cede0ae qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info 810248a12999 scsi: zfcp: Fix a double put in zfcp_port_enqueue() e60272ab021c Revert "PCI: qcom: Disable write access to read only registers for IP v2.3.3" 6e37de4a1407 rbd: take header_rwsem in rbd_dev_refresh() only when updating bc2a3044015f rbd: decouple parent info read-in from updating rbd_dev 2e0114edeb47 rbd: decouple header read-in from updating rbd_dev->header 32a59639c551 rbd: move rbd_dev_refresh() definition ff10b1fad581 fs: binfmt_elf_efpic: fix personality for ELF-FDPIC 43e5dc1ee2ea ata: libata-sata: increase PMP SRST timeout to 10s ac1aebd4e3b8 ata: libata-core: Do not register PM operations for SAS ports 9313aab5f649 ata: libata-core: Fix port and device removal 9207666f166c ata: libata-core: Fix ata_port_request_pm() locking d9483f5aecf4 net: thunderbolt: Fix TCPv6 GSO checksum calculation 47062af85961 btrfs: properly report 0 avail for very full file systems cf221a7880ea ring-buffer: Update "shortest_full" in polling ec7b2e7b365c i2c: i801: unregister tco_pdev in i801_probe() error path a4ecd8562c0e ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES ec1df5d37d59 ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q 193b5a1c6c67 nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() bf3c728e3692 serial: 8250_port: Check IRQ data before use 76ffbd900b6a Smack:- Use overlay inode label in smack_inode_copy_up() 957a9916db5b smack: Retrieve transmuting information in smack_inode_getsecurity() c9ce9bab2301 smack: Record transmuting in smk_transmuted d037d8964fb8 i40e: fix return of uninitialized aq_ret in i40e_set_vsi_promisc 2d78e2d3e31f i40e: always propagate error value in i40e_set_vsi_promisc() 8ed4b5d710b0 i40e: improve locking of mac_filter_hash 30055e020ab2 watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running c54a392fc79e watchdog: iTCO_wdt: No need to stop the timer in probe d68c61092c3d nvme-pci: do not set the NUMA node of device if it has none 283f24df8303 fbdev/sh7760fb: Depend on FB=y ee1f5c63e919 ncsi: Propagate carrier gain/loss events to the NCSI controller b42eac146247 powerpc/watchpoints: Annotate atomic context in more places 723904ce853e bpf: Clarify error expectations from bpf_clone_redirect db4afbc6c1a1 spi: nxp-fspi: reset the FLSHxCR1 registers 3502dd803138 ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() 05264d6551e1 ring-buffer: Avoid softlockup in ring_buffer_resize() 1d28224d49f3 selftests/ftrace: Correctly enable event in instance-event.tc ded3551163fc parisc: irq: Make irq_stack_union static to avoid sparse warning a721e5788aca parisc: drivers: Fix sparse warning 2569e0ceff8a parisc: iosapic.c: Fix sparse warnings f1a0dd9243f0 parisc: sba: Fix compile warning wrt list of SBA devices 6db9cdfdc3c5 gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip 4a62d23eba66 xtensa: boot/lib: fix function prototypes e11fa78a3722 xtensa: boot: don't add include-dirs 5ed83a0a3953 xtensa: iss/network: make functions static b821e6a8b2f5 xtensa: add default definition for XCHAL_HAVE_DIV32 49dc6fcd4b6a bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up 841733189b2e ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot 3468fa39d898 clk: tegra: fix error return case for recalc_rate 6938a6cbe651 MIPS: Alchemy: only build mmc support helpers if au1xmmc is enabled 5b0d13e2d9f6 ata: libata: disallow dev-initiated LPM transitions to unsupported states 617a89ff55e3 drm/amd/display: prevent potential division by zero errors 07b63a3dcfef drm/amd/display: Fix LFC multiplier changing erratically 11e3f781f6e3 drm/amd/display: Reinstate LFC optimization a4628a5b98e4 scsi: qla2xxx: Fix deletion race condition 0a51c838c58f scsi: qla2xxx: Fix update_fcport for current_topology ecdf4c658b6e Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN 0926a2b7cb60 i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() e09db461f258 gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() 02a233986c9e netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP 812da2a08dc5 net: rds: Fix possible NULL-pointer dereference c5f6478686bb team: fix null-ptr-deref when team device type is changed ad8d39c7b437 net: bridge: use DEV_STATS_INC() 121a7c474ce0 net: hns3: add 5ms delay before clear firmware reset irq source a6f4d582e25d dccp: fix dccp_v4_err()/dccp_v6_err() again 16b88d7a1436 powerpc/perf/hv-24x7: Update domain value check 810fd23d9715 ipv4: fix null-deref in ipv4_link_failure 8f228c326d68 i40e: Fix VF VLAN offloading when port VLAN is configured 8b835db2793a i40e: Fix warning message and call stack during rmmod i40e driver 9cbec71a5721 i40e: Remove scheduling while atomic possibility 0988fc499f67 i40e: Fix for persistent lldp support 09475d647670 ASoC: imx-audmix: Fix return error with devm_clk_get() ca1d4e3c4dba selftests: tls: swap the TX and RX sockets in some tests b9eb384fd4fd selftests/tls: Add {} to avoid static checker warning 40e34ea01748 bpf: Avoid deadlock when using queue and stack maps from NMI eec981349b03 netfilter: nf_tables: disallow element removal on anonymous sets d2a6844be5bd ASoC: meson: spdifin: start hw on dai probe 0c908e159588 ext4: do not let fstrim block system suspend 4db34feaf297 ext4: move setting of trimmed bit into ext4_try_to_trim_range() 767a50bef2aa ext4: replace the traditional ternary conditional operator with with max()/min() 2fd502f53bf4 ext4: mark group as trimmed only if it was fully scanned 635901bdbd7e ext4: change s_last_trim_minblks type to unsigned long 2d874151584d ext4: scope ret locally in ext4_try_to_trim_range() c71cb46affe9 ext4: add new helper interface ext4_try_to_trim_range() b0dcbd4bb957 ext4: remove the 'group' parameter of ext4_trim_extent bf0660756510 ata: libahci: clear pending interrupt status e6807c873d87 tracing: Increase trace array ref count on enable and filter files 7d3f6612e90b SUNRPC: Mark the cred for revalidation if the server rejects it 321c75b01cc8 NFS/pNFS: Report EINVAL errors from connect() to the server
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Steve Sakoman [Fri, 17 Nov 2023 15:51:43 +0000 (05:51 -1000)]
vim: use upstream generated .po files
A previous commit attempted to fix reproducibility errors by forcing
regeneration of .po files. Unfortunately this triggered a different
type of reproducibility issue.
Work around this by adjusting the timestamps of the troublesome .po
files so they are not regenerated and we use the shipped upstream
versions of the files.
The shipped version of ru.cp1251.po doesn't seem to have been created
with the vim tooling and specifies CP1251 instead of cp1251, fix that.
vim 8.3 has been out for a long time, so this comment is obsolete.
However we still need UPSTREAM_VERSION_UNKNOWN, since we ignore
the last digit of the upstream version number.
Richard Purdie [Mon, 13 Nov 2023 16:44:00 +0000 (16:44 +0000)]
vim: Improve locale handling
When making checkouts from git, the timestamps can vary and occasionally two files
can end up with the same stamp. This triggers make to regenerate ru.cp1251.po from
ru.po for example. If it isn't regenerated, the output isn't quite the same leading
to reproducibility issues (CP1251 vs cp1251).
Since we added all locales to buildtools tarball now, we can drop the locale
restrictions too. We need to generate a native binary for the sjis conversion
tool so also tweak that.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Vijay Anusuri [Thu, 23 Nov 2023 03:37:05 +0000 (09:07 +0530)]
shadow: backport patch to fix CVE-2023-29383
The fix of CVE-2023-29383.patch contains a bug that it rejects all
characters that are not control ones, so backup another patch named
"0001-Overhaul-valid_field.patch" from upstream to fix it.
Mikko Rapeli [Thu, 22 Apr 2021 14:41:52 +0000 (17:41 +0300)]
lz4: use CFLAGS from bitbake
Currently lz4 uses it's own defaults which include O3 optimization.
Switch from O3 to bitbake default O2 reduces binary package size
from 467056 to 331888 bytes. Enables also building with Os if needed.
Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit abaaf8c6bcd368728d298937a9406eb2aebc7a7d) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Naveen Saini [Mon, 6 Nov 2023 06:30:46 +0000 (14:30 +0800)]
assimp: Explicitly use nobranch=1 in SRC_URI
Branch 'assimp_5.0_release' is not present in repo.
Error:
assimp-5.0.1-r0 do_fetch: Fetcher failure: Unable to find revision 8f0c6b04b2257a520aaab38421b2e090204b69df in branch assimp_5.0_release even from upstream
Set nobranch=1, to fetch from v5.0.1 tag.
Signed-off-by: Naveen Saini <naveen.kumar.saini@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Fri, 3 Nov 2023 13:28:11 +0000 (13:28 +0000)]
cve-check: don't warn if a patch is remote
We don't make do_cve_check depend on do_unpack because that would be a
waste of time 99% of the time. The compromise here is that we can't
scan remote patches for issues, but this isn't a problem so downgrade
the warning to a note.
Also move the check for CVEs in the filename before the local file check
so that even with remote patches, we still check for CVE references in
the name.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0251cad677579f5b4dcc25fa2f8552c6040ac2cf) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 23 Oct 2023 17:38:22 +0000 (18:38 +0100)]
cve-check: slightly more verbose warning when adding the same package twice
Occasionally the cve-check tool will warn that it is adding the same
package twice. Knowing what this package is might be the first step
towards understanding where this message comes from.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c1179faec8583a8b7df192cf1cbf221f0e3001fc) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 23 Oct 2023 17:38:21 +0000 (18:38 +0100)]
cve-check: sort the package list in the JSON report
The JSON report generated by the cve-check class is basically a huge
list of packages. This list of packages is, however, unsorted.
To make things easier for people comparing the JSON, or more
specifically for git when archiving the JSON over time in a git
repository, we can sort the list by package name.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e9861be0e5020830c2ecc24fd091f4f5b05da036) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Soumya Sambu [Fri, 3 Nov 2023 08:55:47 +0000 (08:55 +0000)]
libwebp: Fix CVE-2023-4863
Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187
allowed a remote attacker to perform an out of bounds memory write via
a crafted HTML page.
Removed CVE-2023-5129.patch as CVE-2023-5129 is duplicate of CVE-2023-4863.
Steve Sakoman [Tue, 24 Oct 2023 14:25:53 +0000 (04:25 -1000)]
patch.py: Use shlex instead of deprecated pipe
The pipe library is deprecated in Python 3.11 and will be removed in
Python 3.13. pipe.quote is just an import of shlex.quote anyway.
Clean up imports while we're at it.
Signed-off-by: Ola x Nilsson <olani@axis.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit 5f33c7b99a991c380d1813da8248ba5470ca4d4e) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Sun, 13 Aug 2023 09:09:14 +0000 (10:09 +0100)]
resulttool/report: Avoid divide by zero
Avoid a divide by zero traceback if unfortunate test counts are encountered.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c5aeea53dfacb53dedb8445cb3523dc3a8cb6dca) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marek Vasut [Tue, 10 Oct 2023 22:47:48 +0000 (00:47 +0200)]
systemd: Backport systemd-resolved: use hostname for certificate validation in DoT
Widely accepted certificates for IP addresses are expensive and only
affordable for larger organizations. Therefore if the user provides
the hostname in the DNS= option, we should use it instead of the IP
address.
This fixes https://nvd.nist.gov/vuln/detail/CVE-2018-21029 per
suggestion https://github.com/systemd/systemd-stable/issues/72 .
CVE: CVE-2018-21029 Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ryan Eatmon [Tue, 10 Oct 2023 08:26:23 +0000 (09:26 +0100)]
kernel.bbclass: Add force flag to rm calls
The latest 6.5 kernels do not appear to create the source file in
${D}${nonarch_base_libdir}/modules/${KERNEL_VERSION}/source so the
recipe errors out when trying to remove it. Simple fix is to add the
-f (force) flag to the call.
Signed-off-by: Ryan Eatmon <reatmon@ti.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Alexander Sverdlin <alexander.sverdlin@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Backported from kirkstone commit 7e177848f97e. Signed-off-by: Paul Barker <paul.barker.ct@bp.renesas.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Siddharth Doshi [Mon, 16 Oct 2023 14:43:50 +0000 (20:13 +0530)]
libxpm: upgrade to 3.5.17
- This upgrade includes multiple security fixes.
CVE-2022-4883
CVE-2022-44617
CVE-2022-46285
CVE-2022-44617
CVE-2023-43788
CVE-2023-43789
- Removed CVE-2022-46285 as it is already fixed by this upgrade.
- License-update: additional copyright holders f0857c0 man pages: Correct Copyright/License notices
Due to this commit LIC_FILES_CHKSUM is changed
- Disable reading compressed files as that requires compress/uncompress executables.
Following the approach in oe-core/master: 7de4084634 libxpm: upgrade 3.5.14 -> 3.5.15
- Add XORG_EXT to specify tar.xz as upstream has switched from bz2 to xz compression.
Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Siddharth Doshi [Mon, 16 Oct 2023 14:43:49 +0000 (20:13 +0530)]
xorg-lib-common: Add variable to set tarball type
Upstream has switched some new releases from bz2 to xz compression. Add
an XORG_EXT variable so recipes can set the file name extension needed
for the compression type.
Following the approach in oe-core/master: 6a8068e036b4b2a40b38896275b936916b4db76e
xorg-lib-common: Add variable to set tarball type use a variable for the tarball suffix/compression format.
Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Pawan [Mon, 16 Oct 2023 08:21:23 +0000 (13:51 +0530)]
libwebp: Update CVE ID CVE-2023-4863
Notice that it references different CVE id:
https://nvd.nist.gov/vuln/detail/CVE-2023-5129
which was marked as a rejected duplicate of:
https://nvd.nist.gov/vuln/detail/CVE-2023-4863
but it's the same issue. Hence update CVE ID CVE-2023-4863
to CVE-2023-5129.patch.
Signed-off-by: Pawan <badganchipv@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Siddharth Doshi [Sun, 15 Oct 2023 15:30:39 +0000 (21:00 +0530)]
glib-2.0: Fix multiple vulnerabilities
CVE's Fixed:
CVE-2023-29499: glib: GVariant offset table entry size is not checked in is_normal()
CVE-2023-32611: glib: g_variant_byteswap() can take a long time with some non-normal inputs
CVE-2023-32636: glib: Timeout in fuzz_variant_text
CVE-2023-32643: glib: Heap-buffer-overflow in g_variant_serialised_get_child
CVE-2023-32665: glib: GVariant deserialisation does not match spec for non-normal data
Signed-off-by: Siddharth Doshi <sdoshi@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Mike Crowe [Thu, 12 Oct 2023 20:55:19 +0000 (21:55 +0100)]
curl: Backport fix for CVE-2023-38545
Backporting this change required tweaking the error value since the
two-level CURLE_PROXY error reporting was introduced after curl
7.69.1. The test required some tweaks to not rely on more-recent
improvements to the test infrastructure too.
Signed-off-by: Mike Crowe <mac@mcrowe.com>
CVE: CVE-2023-38545 Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marek Vasut [Thu, 12 Oct 2023 01:16:43 +0000 (03:16 +0200)]
libtiff: Add fix for tiffcrop CVE-2023-1916
Add fix for tiffcrop tool CVE-2023-1916 [1].
A flaw was found in tiffcrop, a program distributed by the libtiff
package. A specially crafted tiff file can lead to an out-of-bounds
read in the extractImageSection function in tools/tiffcrop.c, resulting
in a denial of service and limited information disclosure. This issue
affects libtiff versions 4.x.
The tool is no longer part of newer libtiff distributions, hence the
fix is rejected by upstream in [2]. The backport is still applicable
to older versions of libtiff, pick the CVE fix from ubuntu 20.04 [3].
Marek Vasut [Mon, 9 Oct 2023 16:25:43 +0000 (18:25 +0200)]
cpio: Replace fix wrong CRC with ASCII CRC for large files with upstream backport
Replace the original "Wrong CRC with ASCII CRC for large files"
patch with upstream backport, and add additional fix on top of
the same problem which upstream detected and fixed.
Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Marek Vasut [Mon, 9 Oct 2023 16:26:22 +0000 (18:26 +0200)]
busybox: Backport CVE-2022-48174 fix
There is a stack overflow vulnerability in ash.c:6030 in busybox before
1.35. In the environment of Internet of Vehicles, this vulnerability can
be executed from command to arbitrary code execution.
https://nvd.nist.gov/vuln/detail/CVE-2022-48174
CVE: CVE-2022-48174 Signed-off-by: Marek Vasut <marex@denx.de> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Vijay Anusuri [Mon, 9 Oct 2023 04:18:05 +0000 (09:48 +0530)]
ghostscript: Backport fix CVE-2023-43115
In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote
code execution via crafted PostScript documents because they can switch to the
IJS device, or change the IjsServer parameter, after SAFER has been activated.
NOTE: it is a documented risk that the IJS server can be specified on a gs
command line (the IJS device inherently must execute a command to start the IJS server).
Shinu Chandran [Fri, 6 Oct 2023 19:13:45 +0000 (00:43 +0530)]
libpcre2 : Follow up fix CVE-2022-1586
CVE-2022-1586 was originally fixed by OE commit
https://github.com/openembedded/openembedded-core/commit/7f4daf88b71f
through libpcre2 commit
https://github.com/PCRE2Project/pcre2/commit/50a51cb7e672
The follow up patch is required to resolve a bug in the initial fix[50a51cb7e672]
https://github.com/PCRE2Project/pcre2/commit/d4fa336fbcc3
Julian Haller [Wed, 4 Oct 2023 10:04:10 +0000 (12:04 +0200)]
dbus: Add missing CVE_PRODUCT
The current dunfell CVE scans report 0 CVEs for our dbus version. This
is not correct, though, as we use the wrong product name to query it.
Fix this to get a proper CVE list.
Signed-off-by: Julian Haller <julian.haller@philips.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
projects / thirdparty / openembedded / openembedded-core.git / log
