Vijay Anusuri [Fri, 19 Jan 2024 02:53:15 +0000 (08:23 +0530)]
gnutls: Fix for CVE-2024-0553 and CVE-2024-0567
CVE-2024-0553
A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981.
CVE-2024-0567
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.
Yogita Urade [Thu, 18 Jan 2024 10:54:02 +0000 (10:54 +0000)]
tiff: fix CVE-2023-6228
CVE-2023-6228:
An issue was found in the tiffcp utility distributed by the
libtiff package where a crafted TIFF file on processing may
cause a heap-based buffer overflow leads to an application
crash.
Martin Jansa [Tue, 9 Jan 2024 15:44:49 +0000 (15:44 +0000)]
pybootchartgui: fix 2 SyntaxWarnings
scripts/pybootchartgui/pybootchartgui/draw.py:820: SyntaxWarning: "is not" with a literal. Did you mean "!="?
if (OPTIONS.show_pid or OPTIONS.show_all) and ipid is not 0:
scripts/pybootchartgui/pybootchartgui/draw.py:918: SyntaxWarning: "is not" with a literal. Did you mean "!="?
if i is not 0:
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com>
(cherry picked from commit 8d996616f0ca57220d939a41ca9ba6d696ea2a4f) Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sat, 13 Jan 2024 18:07:52 +0000 (19:07 +0100)]
zlib: ignore CVE-2023-6992
This CVE is for iCPE cloudflare:zlib.
Alternative to ignoring would be to limit CVE_PRODUCT, but
historic CVEs already have two - gnu:zlib and zlib:zlib.
So limiting it could miss future CVEs.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2023-32001 has been marked "REJECT" in the NVD CVE List as
there is no safe measure against it.
These CVEs are stored in the NVD, but do not show up in search results. Link: https://nvd.nist.gov/vuln/detail/CVE-2023-32001 Signed-off-by: Poonam Jadhav poonam.jadhav@kpit.com Signed-off-by: Steve Sakoman <steve@sakoman.com>
Dhairya Nagodra [Mon, 11 Dec 2023 10:05:00 +0000 (02:05 -0800)]
cve-update-nvd2-native: increase the delay between subsequent request failures
Sometimes NVD servers are unstable and return too many errors.
There is an option to have higher fetch attempts to increase the chances
of successfully fetching the CVE data.
Additionally, it also makes sense to progressively increase the delay
after a failed request to an already unstable or busy server.
The increase in delay is reset after every successful request and
the maximum delay is limited to 30 seconds.
Also, the logs are improved to give more clarity.
Signed-off-by: Dhairya Nagodra <dnagodra@cisco.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 7101d654635b707e56b0dbae8c2146b312d211ea) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Dhairya Nagodra [Mon, 11 Dec 2023 10:04:59 +0000 (02:04 -0800)]
cve-update-nvd2-native: faster requests with API keys
As per NVD, the public rate limit is 5 requests in 30s (6s delay).
Using an API key increases the limit to 50 requests in 30s (0.6s delay).
However, NVD still recommends sleeping for several seconds so that the
other legitimate requests are serviced without denial or interruption.
Keeping the default sleep at 6 seconds and 2 seconds with an API key.
For failures, the wait time is unchanged (6 seconds).
Peter Marko [Mon, 27 Nov 2023 19:55:36 +0000 (20:55 +0100)]
cve-update-nvd2-native: make number of fetch attemtps configurable
Sometimes NVD servers are unstable and return too many errors.
Last time we increased number of attempts from 3 to 5, but
further increasing is not reasonable as in normal case
too many retries is just abusive.
Keep retries low as default and allow to increase as needed.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 6b6fd8043d83b99000054ab6ad2c745d07c6bcc1) Signed-off-by: Steve Sakoman <steve@sakoman.com>
This variable is not referenced in oe-core anymore.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 905b45a814cb33327503b793741c19b44c8550b3) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Steve Sakoman [Thu, 21 Dec 2023 17:49:26 +0000 (07:49 -1000)]
testimage: drop target_dumper, host_dumper, and monitor_dumper
The target_dumper code is basically broken. It has been reading binary files
over the text base serial communication and runs at every command failure which
makes no sense. Each run might overwrite files from the previous run and the
output appears corrupted due to confusion from the binary data.
It isn't possible to cherry-pick "testimage: Drop target_dumper and most of monitor_dumper"
from master, so just make target_dumper, host_dumper, and monitor_dumper empty
functions.
Khem Raj [Sat, 23 Dec 2023 19:51:48 +0000 (20:51 +0100)]
elfutils: Disable stringop-overflow warning for build host
Some distributions shipping gcc12 end up with stringop-overflow warnings
e.g.
/usr/include/bits/unistd.h:74:10: error: ‘__pread_alias’ specified size between 9223372036854775813 and 18446744073709551615 exceeds maximum object size 9223372036854775807 [-Werror=stringop-overflow=]
74 | return __glibc_fortify (pread, __nbytes, sizeof (char),
| ^~~~~~~~~~~~~~~
Until fixed, lets not treat this warning as hard error
MJ: this is needed e.g. on ubuntu 24.04 after gcc was upgraded
from 13.2.0-8ubuntu1 to 13.2.0-9ubuntu1 which includes
switch _FORTIFY_SOURCE to 3:
https://changelogs.ubuntu.com/changelogs/pool/main/g/gcc-13/gcc-13_13.2.0-9ubuntu1/changelog
elfutils config.log then shows:
configure:6762: checking whether to add -D_FORTIFY_SOURCE=2 to CFLAGS
configure:6779: gcc -c -D_FORTIFY_SOURCE=2 -isystem/work/x86_64-linux/elfutils-native/0.186-r0/recipe-sysroot-native/usr/include -O2 -pipe -Werror -isystem/work/x86_64-linux/elfutils-native/0.186-r0/recipe-sysroot-native/usr/include conftest.c >&5
<command-line>: error: "_FORTIFY_SOURCE" redefined [-Werror]
<built-in>: note: this is the location of the previous definition
cc1: all warnings being treated as errors
configure:6786: result: no
and -D_FORTIFY_SOURCE=2 missing in CFLAGS later causes the above error
in do_compile
Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or
host name has shell metacharacters, and this name is referenced by an expansion
token in certain situations. For example, an untrusted Git repository can have a
submodule with shell metacharacters in a user name or host name.
In ssh-agent in OpenSSH before 9.6, certain destination constraints can be
incompletely applied. When destination constraints are specified during
addition of PKCS#11-hosted private keys, these constraints are only applied
to the first key, even if a PKCS#11 token returns multiple keys.
Richard Purdie [Tue, 19 Dec 2023 14:29:32 +0000 (14:29 +0000)]
testimage: Exclude wtmp from target-dumper commands
wtmp is filled with binary data which the run_serial command can't cope with.
Catting this results in confusion of the serial interface and potentially large
backlogs of data in the buffers which can hang qemu.
Exclude the problematic files from the command.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 599ac08a6f6fb3f6a89a897c8e06367c63c2f979) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Yoann Congal [Fri, 15 Dec 2023 21:21:51 +0000 (22:21 +0100)]
externalsrc: Ensure SRCREV is processed before accessing SRC_URI
When SRCREV is used, call bb.fetch.get_srcrev() before accessing
SRC_URI. Without this new bb.fetch.get_srcrev() call, SRC_URI might be
accessed before SRCREV had a chance to be processed.
In master, this is fixed by https://git.yoctoproject.org/poky/commit/?id=62afa02d01794376efab75623f42e7e08af08526
However, this commit is not suited for backport since it is quite invasive.
The part of the commit that fix the bug is:
--- a/meta/classes/externalsrc.bbclass
+++ b/meta/classes/externalsrc.bbclass
@@ -63,6 +63,7 @@ python () {
else:
d.setVar('B', '${WORKDIR}/${BPN}-${PV}')
+ bb.fetch.get_hashvalue(d)
local_srcuri = []
fetch = bb.fetch2.Fetch((d.getVar('SRC_URI') or '').split(), d)
for url in fetch.urls:
NB: bb.fetch.get_hashvalue() does not exist in kirkstone but is
equivalent to bb.fetch.get_srcrev().
Fixes [YOCTO #14918]
Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Suggested-by: Chris Wyse <chris.wyse@wysechoice.net> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Soumya Sambu [Wed, 20 Dec 2023 12:03:38 +0000 (12:03 +0000)]
go: Fix CVE-2023-39326
A malicious HTTP sender can use chunk extensions to cause a receiver
reading from a request or response body to read many more bytes from
the network than are in the body. A malicious HTTP client can further
exploit this to cause a server to automatically read a large amount
of data (up to about 1GiB) when a handler fails to read the entire
body of a request. Chunk extensions are a little-used HTTP feature
which permit including additional metadata in a request or response
body sent using the chunked encoding. The net/http chunked encoding
reader discards this metadata. A sender can exploit this by inserting
a large metadata segment with each byte transferred. The chunk reader
now produces an error if the ratio of real body to encoded bytes grows
too small.
Sourav Pramanik [Mon, 18 Dec 2023 06:47:24 +0000 (12:17 +0530)]
qemu: Fix CVE-2023-5088
A bug in QEMU could cause a guest I/O operation otherwise
addressed to an arbitrary disk offset to be targeted to
offset 0 instead (potentially overwriting the VM's boot code).
Mikko Rapeli [Tue, 12 Dec 2023 14:11:01 +0000 (16:11 +0200)]
openssh: drop sudo from ptest dependencies
The tests don't actually need sudo on core-image-ptest-openssh.
Based on logs seen in
https://bugzilla.yoctoproject.org/show_bug.cgi?id=15178 it seems
that socket errors from sudo are creeping into stderr which are failing
the banner ptest from openssh. Removing sudo should help removing
the stderr messages and possibly cure the banner test failures.
Signed-off-by: Mikko Rapeli <mikko.rapeli@linaro.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role
HID Device to initiate and establish an encrypted connection, and accept HID
keyboard reports,potentially permitting injection of HID messages when no user
interaction has occurred in the Central role to authorize such access. An example
affected package is bluez 5.64-0ubuntu1 in Ubuntu 22.04LTS. NOTE: in some cases,
a CVE-2020-0556 mitigation would have already addressed this Bluetooth HID Hosts issue.
Richard Purdie [Tue, 5 Dec 2023 14:27:20 +0000 (15:27 +0100)]
native: Clear TUNE_FEATURES/ABIEXTENSION
Some recipes reference these. Rather than continually trying to chase down the references
and taskhash issues, clear the variables for an easier life and simpler code. These
wouldn't convey anything useful in a native build.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit f8edeead263708889d31a7ff578ef8274cb678b4) Signed-off-by: Jermain Horsman <jermain.horsman@nedap.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Tue, 5 Dec 2023 14:27:18 +0000 (15:27 +0100)]
rust-cross/rust-common: Merge arm target handling code to fix cross-canadian
rust-cross had special handling for armv7 targets but we also need this
for cross-canadian. Merge the code into the main function so everything is
consistent.
Also then fix the arm definition to be arm-eabi since ABI is correctly
being looked up.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit ff3c3dbbd2bf1bb7bb70b55cca203e9eedcf14a8) Signed-off-by: Jermain Horsman <jermain.horsman@nedap.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Tue, 5 Dec 2023 14:27:17 +0000 (15:27 +0100)]
rust-cross-canadian: Fix ordering of target json config generation
Based upon a patch from Otavio Salvador <otavio@ossystems.com.br>,
ensure the target json files are written in the correct order with
the most specific last incase it overwrites earlier files if the prefixes
match.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 1912c4e9e0ecf9655f3b3a41588b54d7956f5899) Signed-off-by: Jermain Horsman <jermain.horsman@nedap.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Tue, 5 Dec 2023 14:27:16 +0000 (15:27 +0100)]
rust-common: Set llvm-target correctly for cross SDK targets
When a 'BUILD' target is requested we shouldn't be looking at TARGET_SYS but
at BUILD_SYS. Due to the way rust mangles triplets, we need the HOST_SYS triplet
to work with existing code - fixing that issue is a separate patch.
Also drop the arch_abi argument, it doens't make any sense to a getVar() call
and was a copy and paste error.
Based on a patch from Otavio Salvador <otavio@ossystems.com.br> but separated out
and tweaked.
Fixes: bd36593ba3 ("rust-common: Drop LLVM_TARGET and simplify") Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit d554161a045d12411f288394e253c54aa4c1257c) Signed-off-by: Jermain Horsman <jermain.horsman@nedap.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 5 Dec 2023 04:40:35 +0000 (23:40 -0500)]
linux-yocto/5.10: update to v5.10.202
Updating to the latest korg -stable release that comprises
the following commits:
479e8b892541 Linux 5.10.202 610057f4f6e0 interconnect: qcom: Add support for mask-based BCMs 7ce66afcaaf6 netfilter: nf_tables: disable toggling dormant table state more than once d9c4da8cb74e netfilter: nf_tables: fix table flag updates 7d1d3f113425 netfilter: nftables: update table flags from the commit phase a98172e36e5f tracing: Have trace_event_file have ref counters c6e8af2a8a63 io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid aeeb1ad2dd4e drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox e2bdd437886c drm/amdgpu: fix error handling in amdgpu_bo_list_get() dfa8e63ca527 drm/amd/pm: Handle non-terminated overdrive commands. 7dc933b4b498 ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks 0932764fb54a ext4: correct the start block of counting reserved clusters 3c1ad03a5ff2 ext4: correct return value of ext4_convert_meta_bg d739a7e38944 ext4: correct offset of gdb backup in non meta_bg group to update_backups c878db71edc0 ext4: apply umask if ACL support is disabled 3a51aee542b0 Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E" f6e014b5eb1d media: qcom: camss: Fix vfe_get() error jump e2d2e266089d mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors 6875820f36bf nfsd: fix file memleak on client_opens_release b51b20c018c6 media: venus: hfi: add checks to handle capabilities from firmware bcee276a1e02 media: venus: hfi: fix the check to handle session buffer requirement da240b7bada2 media: venus: hfi_parser: Add check to keep the number of codecs within range 0f887306bd8b media: sharp: fix sharp encoding dfa9f4ea6502 media: lirc: drop trailing space from scancode transmit c041f5ddef00 f2fs: avoid format-overflow warning 829f0d5231b7 i2c: i801: fix potential race in i801_block_transaction_byte_by_byte 430603f6de33 net: phylink: initialize carrier state at creation 4dc0484e90a3 net: dsa: lan9303: consequently nested-lock physical MDIO cb1006640cb3 i2c: designware: Disable TX_EMPTY irq while waiting for block length byte 8e29eebe4c39 lsm: fix default return value for inode_getsecctx 8327f50442d2 lsm: fix default return value for vm_enough_memory a011391f019c Revert ncsi: Propagate carrier gain/loss events to the NCSI controller 969d994612ff arm64: dts: qcom: ipq6018: Fix tcsr_mutex register size 2b3931eb8e9c arm64: dts: qcom: ipq6018: switch TCSR mutex to MMIO bdda1c356d58 PCI: exynos: Don't discard .remove() callback 62d15b6a6ec9 Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE dbbf3c456002 Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables 990d4c76d254 bluetooth: Add device 13d3:3571 to device tables 3aba34baa4fb bluetooth: Add device 0bda:887b to device tables 0952747362c1 Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559 8617305611c1 cpufreq: stats: Fix buffer overflow detection in trans_stats() 2ed25af15b32 tty: serial: meson: fix hard LOCKUP on crtscts mode 07c61839582d serial: meson: Use platform_get_irq() to get the interrupt 980c3135f1ae tty: serial: meson: retrieve port FIFO size from DT 1e66cd408353 serial: meson: remove redundant initialization of variable id ba30578def84 ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC ddd47d8d1ba6 ALSA: hda/realtek - Add Dell ALC295 to pin fall back table a681d28b973f ALSA: info: Fix potential deadlock at disconnection f04fa1e1997f xhci: Enable RPM on controllers that support low-power states 5e34fe50a976 parisc/pgtable: Do not drop upper 5 address bits of physical address 064c697cac4b parisc: Prevent booting 64-bit kernels on PA1.x machines c6effcdd7dd0 i3c: master: cdns: Fix reading status register 76320f05b99d mtd: cfi_cmdset_0001: Byte swap OTP info dce3e7c40055 mm/memory_hotplug: use pfn math in place of direct struct page manipulation 63d2023fbbe1 mm/cma: use nth_page() in place of direct struct page manipulation d24340f08104 dmaengine: stm32-mdma: correct desc prep when channel running 788322e1ede6 mcb: fix error handling for different scenarios when parsing 25284c46b657 i2c: core: Run atomic i2c xfer when !preemptible 8f8fc95b3a7f kernel/reboot: emergency_restart: Set correct system_state 9386f59759b4 quota: explicitly forbid quota files from being encrypted f729cf6f3217 jbd2: fix potential data lost in recovering journal raced with synchronizing fs bdev db5ebaeb8fda PCI: keystone: Don't discard .probe() callback 2bcdc1b6b61e PCI: keystone: Don't discard .remove() callback 943347e53a75 genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware b2c194fe8f31 mmc: meson-gx: Remove setting of CMD_CFG_ERROR 03ed26935beb wifi: ath11k: fix htt pktlog locking f882f5190551 wifi: ath11k: fix dfs radar event locking c3f61ca48612 wifi: ath11k: fix temperature event locking cd5a262a07a5 ima: detect changes to the backing overlay file df4133ebc86a firmware: qcom_scm: use 64-bit calling convention only when client is 64-bit 76211f1dd91d btrfs: don't arbitrarily slow down delalloc if we're committing 175f4b062f69 rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects 3c1c1af25d45 PM: hibernate: Clean up sync_read handling in snapshot_write_next() df8363e468f2 PM: hibernate: Use __get_safe_page() rather than touching the list 21bc829337ca arm64: dts: qcom: ipq6018: Fix hwlock index for SMEM 1fd46d32772d PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common() e3ed58ee4e4a mmc: sdhci_am654: fix start loop index for TAP value parsing 198366a5ffe6 mmc: vub300: fix an error code 3a4431014cfb clk: qcom: ipq6018: drop the CLK_SET_RATE_PARENT flag from PLL clocks 30af31fc002e clk: qcom: ipq8074: drop the CLK_SET_RATE_PARENT flag from PLL clocks 8dc83cf76290 parisc/pdc: Add width field to struct pdc_model d08a1e75253b arm64: Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer 61695b9aecfe ACPI: resource: Do IRQ override on TongFang GMxXGxx 6edbd6b4811f watchdog: move softlockup_panic back to early_param 85fe64c8dcce PCI/sysfs: Protect driver's D3cold preference from user space 1b0836242900 hvc/xen: fix error path in xen_hvc_init() to always register frontend driver d5455c421fad hvc/xen: fix console unplug a158a74e701b tty/sysrq: replace smp_processor_id() with get_cpu() fc557bcfd7ff audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare() 121973ef1ad7 audit: don't take task_lock() in audit_exe_compare() code path 910caee34640 KVM: x86: Ignore MSR_AMD64_TW_CFG access 66406d49ac14 KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space 8cf6b6658541 x86/cpu/hygon: Fix the CPU topology evaluation for real 243c4833f345 scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers 697bc325b977 scsi: mpt3sas: Fix loop logic 5fb8ec5943b1 bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END 9617a9fe4f41 bpf: Fix check_stack_write_fixed_off() to correctly spill imm 7975f7b2a6fc randstruct: Fix gcc-plugin performance mode to stay in group d83f4bc0a4db powerpc/perf: Fix disabling BHRB and instruction sampling e7de8ffbbbc7 media: venus: hfi: add checks to perform sanity on queue pointers 99dbc39c22ce cifs: fix check of rc in function generate_smb3signingkey e5a0ef02829d cifs: spnego: add ';' in HOST_KEY_LEN 6d388b641c8f tools/power/turbostat: Fix a knl bug f56e228d67fc macvlan: Don't propagate promisc change to lower dev in passthru ac4979dbd9b6 net/mlx5e: Check return value of snprintf writing to fw_version buffer for representors a3ce491b1738 net/mlx5_core: Clean driver version and name 0eaec8126b46 net/mlx5e: fix double free of encap_header 541fece7caa4 net: stmmac: fix rx budget limit check 66dbaa2eecf1 netfilter: nf_conntrack_bridge: initialize err to 0 3f643150563c net: ethernet: cortina: Fix MTU max setting eac9ef50d6f3 net: ethernet: cortina: Handle large frames f0d9b80f7624 net: ethernet: cortina: Fix max RX frame define 396baca6683f bonding: stop the device in bond_setup_by_slave() 1f368fd61223 ptp: annotate data-race around q->head and q->tail ecc74e7acb6d xen/events: fix delayed eoi list handling 144a80ef40a6 ppp: limit MRU to 64K 3ee249a3b993 tipc: Fix kernel-infoleak due to uninitialized TLV value 072f0eb962c9 net: hns3: fix VF reset fail issue b0eac93bae42 net: hns3: fix variable may not initialized problem in hns3_init_mac_addr() 48fa8a85f8f5 tty: Fix uninit-value access in ppp_sync_receive() 43b781e7cb5c ipvlan: add ipvlan_route_v6_outbound() helper 59fadfa99bcb gfs2: Silence "suspicious RCU usage in gfs2_permission" warning dedf2a0eb944 SUNRPC: Fix RPC client cleaned up the freed pipefs dentries 39b2bf040510 NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO 37f3aaf7945e SUNRPC: Add an IS_ERR() check back to where it was c7eacf01ddb1 SUNRPC: ECONNRESET might require a rebind 4ea3b98fa6a1 xhci: turn cancelled td cleanup to its own function 6ebd42a7b713 wifi: iwlwifi: Use FW rate for non-data frames e52518b9cb9f pwm: Fix double shift bug 53b2393eeba7 drm/amdgpu: fix software pci_unplug on some chips f1ea84696ea5 ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings 3cfacacb9caa kgdb: Flush console before entering kgdb on panic 79b6a90f4f24 drm/amd/display: Avoid NULL dereference of timing generator 0f5068519f89 media: imon: fix access to invalid resource for the second interface cf8519f40ce3 media: cobalt: Use FIELD_GET() to extract Link Width 5f8d51a04baf gfs2: fix an oops in gfs2_permission 2a054b87a1b7 gfs2: ignore negated quota changes 0ac2652b9674 media: vivid: avoid integer overflow c6b6b8692218 media: gspca: cpia1: shift-out-of-bounds in set_flicker 90e3c3dd9306 i2c: sun6i-p2wi: Prevent potential division by zero 18fa7a30cd0c 9p/trans_fd: Annotate data-racy writes to file::f_flags 76716a7604b2 usb: gadget: f_ncm: Always set current gadget in ncm_bind() 4ef41a7f33ff tty: vcc: Add check for kstrdup() in vcc_probe() 484cc536a3a2 exfat: support handle zero-size directory 491529d383b7 HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W 65d78d54e4e5 misc: pci_endpoint_test: Add Device ID for R-Car S4-8 PCIe controller bb83f79f90e9 scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() 5cebe796eaaa atm: iphase: Do PCI error checks on own line 65491968365c PCI: tegra194: Use FIELD_GET()/FIELD_PREP() with Link Width fields 25354bae4fc3 ALSA: hda: Fix possible null-ptr-deref when assigning a stream e0d739e66bc1 ARM: 9320/1: fix stack depot IRQ stack filter 62d21f9df46d HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround 1ba7df5457dc jfs: fix array-index-out-of-bounds in diAlloc 81aa58cd8495 jfs: fix array-index-out-of-bounds in dbFindLeaf c6c8863fb3f5 fs/jfs: Add validity check for db_maxag and db_agpref 524b4f203afc fs/jfs: Add check for negative db_l2nbperpage 885824a44d35 RDMA/hfi1: Use FIELD_GET() to extract Link Width e97bf4ada7dd crypto: pcrypt - Fix hungtask for PADATA_RESET 98fa52d89a4f ASoC: soc-card: Add storage for PCI SSID f161a6b11ae7 selftests/efivarfs: create-read: fix a resource leak f475d5502f33 drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL da1409ea0845 drm/panel: st7703: Pick different reset sequence 9acc2bc00135 drm/panel/panel-tpo-tpg110: fix a possible null pointer dereference c7dc0aca5962 drm/panel: fix a possible null pointer dereference b93a25de28af drm/amdgpu: Fix potential null pointer derefernce 8c1dbddbfcb0 drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga 8af28ae3acb7 drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 4ffb2b0e48c0 drm/msm/dp: skip validity check for DP CTS EDID checksum 2810a9c40b6f drm/komeda: drop all currently held locks if deadlock happens a70457f181d6 platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e 53d61daf35b1 Bluetooth: Fix double free in hci_conn_cleanup 9f8e4d1a4ca1 Bluetooth: btusb: Add date->evt_skb is NULL check bba97f5e8ff3 wifi: ath10k: Don't touch the CE interrupt registers after power up 22fa35ded3ec net: annotate data-races around sk->sk_dst_pending_confirm 67b7de95d1e3 net: annotate data-races around sk->sk_tx_queue_mapping beb75dccba9d wifi: ath10k: fix clang-specific fortify warning 2d6303cafb7c wifi: ath9k: fix clang-specific fortify warnings 6058e4829696 bpf: Detect IP == ksym.end as part of BPF program 717de20abdcd wifi: mac80211: don't return unset power in ieee80211_get_tx_power() cdfc689e10e6 wifi: mac80211_hwsim: fix clang-specific fortify warning a7aa2f1ca855 x86/mm: Drop the 4 MB restriction on minimal NUMA node memory size 89356bee8eda clocksource/drivers/timer-atmel-tcb: Fix initialization on SAM9 hardware 1b8687ed3cf3 clocksource/drivers/timer-imx-gpt: Fix potential memory leak 1a2a4202c60f perf/core: Bail out early if the request AUX area is out of bound 9ed2d68b3925 locking/ww_mutex/test: Fix potential workqueue corruption 6db6caba87ef Linux 5.10.201 4be0407ffcf6 btrfs: use u64 for buffer sizes in the tree search ioctls 2bbbb976faa1 Revert "mmc: core: Capture correct oemid-bits for eMMC cards" 3b092dfdabf2 tracing/kprobes: Fix the order of argument descriptions 3697fda1c671 fbdev: fsl-diu-fb: mark wr_reg_wa() static a4dfebec32ec fbdev: imsttfb: fix a resource leak in probe 9e8e731571e6 fbdev: imsttfb: Fix error path of imsttfb_probe() de721d7ef7ac spi: spi-zynq-qspi: add spi-mem to driver kconfig dependencies 876a119790e5 drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE b9bc1806b907 x86/sev-es: Allow copy_from_kernel_nofault() in earlier boot 14042d6d80db x86: Share definition of __is_canonical_address() bc794a667b1e netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses b65d851b2eb0 netfilter: nft_redir: use `struct nf_nat_range2` throughout and deduplicate eval call-backs 7764290452d1 netfilter: xt_recent: fix (increase) ipv6 literal buffer length 00b188209196 r8169: respect userspace disabling IFF_MULTICAST e02824db7c43 tg3: power down device only on SYSTEM_POWER_OFF 34c5a24633bc net/smc: put sk reference if close work was canceled f652ab15af0a net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc 4e7bad730160 net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT 13d6bc35deb1 net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs eafacef7eeef Fix termination state for idr_for_each_entry_ul() 0a84ffc72f1e net: r8169: Disable multicast filter for RTL8168H and RTL8107E 4969fcebe76d dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses. 7827667989e1 dccp: Call security_inet_conn_request() after setting IPv4 addresses. f830d4f69835 inet: shrink struct flowi_common b33d130f07f1 tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING ddf4e04e946a hsr: Prevent use after free in prp_create_tagged_frame() 3a2653828ffc llc: verify mac len before reading mac header 6c71e065befb Input: synaptics-rmi4 - fix use after free in rmi_unregister_function() e5d481d9b6cf pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume 005965cab108 pwm: sti: Reduce number of allocations and drop usage of chip_data ce5e0a3c9d39 pwm: sti: Avoid conditional gotos 0bc796e66b5d regmap: prevent noinc writes from clobbering cache 1b86938925bd media: dvb-usb-v2: af9035: fix missing unlock 2e2efaed79c0 media: cedrus: Fix clock/reset sequence 64863ba8e6b7 media: vidtv: mux: Add check and kfree for kstrdup 3387490c89b1 media: vidtv: psi: Add check for kstrdup 62557ab73d3a media: s3c-camif: Avoid inappropriate kfree() 2f3d9198cdae media: bttv: fix use after free error due to btv->timeout timer 0627e8623eb5 media: i2c: max9286: Fix some redundant of_node_put() calls c3e148aba95a pcmcia: ds: fix possible name leak in error path in pcmcia_device_add() 84540ef92434 pcmcia: ds: fix refcount leak in pcmcia_device_add() cd154225d419 pcmcia: cs: fix possible hung task and memory leak pccardd() 5e3c75158642 rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call 1832ed55df45 i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs a83fc293acd5 perf hist: Add missing puts to hist__account_cycles 4e66bde5c7d1 perf machine: Avoid out of bounds LBR memory read 188425eb2da2 usb: host: xhci-plat: fix possible kernel oops while resuming ba894bd2737c xhci: Loosen RPM as default policy to cover for AMD xHC 1.1 ad0370c41a19 powerpc/pseries: fix potential memory leak in init_cpu_associativity() d12372af8955 powerpc/imc-pmu: Use the correct spinlock initializer. c75707293dcf powerpc/xive: Fix endian conversion size f95f5512fdcb powerpc/40x: Remove stale PTE_ATOMIC_UPDATES macro b54a4c8ca1c8 modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host 362f0241dbe9 interconnect: qcom: sc7180: Set ACV enable_mask 08588fac00b1 interconnect: qcom: sc7180: Retire DEFINE_QBCM ebaf7a73f634 f2fs: fix to initialize map.m_pblk in f2fs_precache_extents() 758f735604f8 dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc() 5fe228041c51 USB: usbip: fix stub_dev hub disconnect 798692e48c0a tools: iio: iio_generic_buffer ensure alignment 3eadba058276 tools: iio: iio_generic_buffer: Fix some integer type and calculation a0a41991ddf2 tools: iio: privatize globals and functions in iio_generic_buffer.c file d046e3f8de1d misc: st_core: Do not call kfree_skb() under spin_lock_irqsave() c53cfe99c2aa dmaengine: ti: edma: handle irq_of_parse_and_map() errors bdb3dd409630 usb: dwc2: fix possible NULL pointer dereference caused by driver concurrency 05de1536d052 livepatch: Fix missing newline character in klp_resolve_symbols() 3ebf42fe8cc7 tty: tty_jobctrl: fix pid memleak in disassociate_ctty() 380837052669 leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu' 23eb8629c22f leds: pwm: Don't disable the PWM when the LED should be off c2766ed2b7af mfd: dln2: Fix double put in dln2_probe b708eb26b560 mfd: core: Ensure disabled devices are skipped without aborting 9f831533d2d0 mfd: core: Un-constify mfd_cell.of_reg b7b4851e630d ASoC: ams-delta.c: use component after check 41aad9d69539 padata: Fix refcnt handling in padata_free_shell() 7606807bd6d0 padata: Convert from atomic_t to refcount_t on parallel_data->refcnt 2de16f6169a2 ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails 6fd432f392a7 HID: logitech-hidpp: Move get_wireless_feature_index() check to hidpp_connect_event() 7581eef4aef2 HID: logitech-hidpp: Revert "Don't restart communication if not necessary" c82e376bc24e HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only 0fe443314cf6 HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk 8337286600cd Revert "HID: logitech-hidpp: add a module parameter to keep firmware gestures" 6d2de161cdc6 sh: bios: Revive earlyprintk support 2ca51477c6da hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip 9c895d20f8ee RDMA/hfi1: Workaround truncation compilation error cd268264f594 scsi: ufs: core: Leave space for '\0' in utf8 desc string cded69a7f8b3 ASoC: fsl: Fix PM disable depth imbalance in fsl_easrc_probe 159639486834 RDMA/hns: Fix signed-unsigned mixed comparisons 8018a3444e39 RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common() 08a246064def IB/mlx5: Fix rdma counter binding for RAW QP 53067926cd83 ASoC: fsl: mpc5200_dma.c: Fix warning of Function parameter or member not described 83eee515e415 ext4: move 'ix' sanity check to corrent position 67959b362687 ARM: 9321/1: memset: cast the constant byte to unsigned char 3d959406c8ff hid: cp2112: Fix duplicate workqueue initialization 63e8e2ee5815 crypto: qat - increase size of buffers a921d6b795a0 crypto: qat - mask device capabilities with soft straps 16f2033de013 crypto: caam/jr - fix Chacha20 + Poly1305 self test failure 727ba935d906 crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure b0e7a935739f nd_btt: Make BTT lanes preemptible efeaa2396e3b libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its return value ffb3483c4b0b hwrng: geode - fix accessing registers 02db438311f8 crypto: hisilicon/hpre - Fix a erroneous check after snprintf() 5176ebe6aa2b selftests/resctrl: Ensure the benchmark commands fits to its array b3768f089210 selftests/pidfd: Fix ksft print formats a0846b4c8e74 clk: scmi: Free scmi_clk allocated when the clocks with invalid info are skipped bcc7d46fa4dd firmware: ti_sci: Mark driver as non removable 5e5b85ea0f4b soc: qcom: llcc: Handle a second device without data corruption a44aa8d8a532 ARM: dts: qcom: mdm9615: populate vsdcc fixed regulator 8bd7c8a9b838 arm64: dts: qcom: sdm845-mtp: fix WiFi configuration 4df18b233ef2 arm64: dts: qcom: msm8916: Fix iommu local address range 1e17eab1a49a xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled bc714abe7dc0 drm/rockchip: Fix type promotion bug in rockchip_gem_iommu_map() 666a4120dcf6 arm64/arm: xen: enlighten: Fix KPTI checks 0dd40dca1ebb drm/rockchip: cdn-dp: Fix some error handling paths in cdn_dp_probe() 6f710918df7d drm/mediatek: Fix iommu fault during crtc enabling c12f2eaeb38b drm/bridge: tc358768: Fix bit updates 1133e72cd82b drm/bridge: tc358768: Disable non-continuous clock mode c0d25ef81a11 drm/bridge: tc358768: Fix use of uninitialized variable 7b063c93bece drm/radeon: possible buffer overflow a6d6769e2db6 drm/rockchip: vop: Fix call to crtc reset helper bb8143016130 drm/rockchip: vop: Fix reset of state in duplicate state crtc funcs 9899097b1fcf hwmon: (coretemp) Fix potentially truncated sysfs attribute name 7d870088db48 hwmon: (axi-fan-control) Fix possible NULL pointer dereference 060d54f09004 hwmon: (axi-fan-control) Support temperature vs pwm points d426a2955e45 platform/x86: wmi: Fix opening of char device d2220737330b platform/x86: wmi: remove unnecessary initializations 3433a69c00ee platform/x86: wmi: Fix probe failure when failing to register WMI devices b16622d304e7 clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM 001e5def774f clk: mediatek: clk-mt2701: Add check for mtk_alloc_clk_data 4f861b63945e clk: mediatek: clk-mt7629: Add check for mtk_alloc_clk_data 96e9544a0c4f clk: mediatek: clk-mt7629-eth: Add check for mtk_alloc_clk_data 81b162861107 clk: mediatek: clk-mt6797: Add check for mtk_alloc_clk_data 3994387ba356 clk: mediatek: clk-mt6779: Add check for mtk_alloc_clk_data 2617aa8ceaf3 clk: mediatek: clk-mt6765: Add check for mtk_alloc_clk_data 55e5fd11a21d clk: npcm7xx: Fix incorrect kfree 0beaefa9885f clk: ti: fix double free in of_ti_divider_clk_setup() acb535d75077 clk: ti: change ti_clk_register[_omap_hw]() API 98c5012c11a1 clk: ti: Update component clocks to use ti_dt_clk_name() 1c4253252c7f clk: ti: Update pll and clockdomain clocks to use ti_dt_clk_name() 00c67e0aa7e4 clk: ti: Add ti_dt_clk_name() helper to use clock-output-names de33b367f80d clk: keystone: pll: fix a couple NULL vs IS_ERR() checks c07a0e2e93b6 spi: nxp-fspi: use the correct ioremap function d459cb424483 clk: linux/clk-provider.h: fix kernel-doc warnings and typos f28709097db4 clk: asm9260: use parent index to link the reference clock 8d03f7c5800d clk: imx: imx8mq: correct error handling path c1bacea8a64b clk: imx: Select MXC_CLK for CLK_IMX8QXP a52c963d8d7b clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src c6919a1576bc clk: qcom: gcc-sm8150: use ARRAY_SIZE instead of specifying num_parents 355a12fa1c50 clk: qcom: mmcc-msm8998: Fix the SMMU GDSC ba7f9695d545 clk: qcom: mmcc-msm8998: Set bimc_smmu_gdsc always on 97a671174433 clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks 05eebcd4bc5b clk: qcom: mmcc-msm8998: Add hardware clockgating registers to some clks 3181168e61f4 clk: qcom: clk-rcg2: Fix clock rate overflow for high parent frequencies 80836b5859b7 regmap: debugfs: Fix a erroneous check after snprintf() 9954a7f3808b ipvlan: properly track tx_errors e897dcbd5fbc net: add DEV_STATS_READ() helper 98e8a5a370da ipv6: avoid atomic fragment on GSO packets dea8d9e571ee ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias() 88be6453d7c9 tcp: fix cookie_init_timestamp() overflows 76894f305c96 chtls: fix tp->rcv_tstamp initialization d104f6cb41e8 r8169: fix rare issue with broken rx after link-down on RTL8125 fdd4a3c20ad5 r8169: use tp_to_dev instead of open code 3f795fb35c2d thermal: core: prevent potential string overflow ae681e5eff0c PM / devfreq: rockchip-dfi: Make pmu regmap mandatory d7a220bf6bd6 can: dev: can_restart(): fix race condition between controller restart and netif_carrier_on() 040f65c2821f can: dev: can_restart(): don't crash kernel if carrier is OK 03d138b6b243 wifi: rtlwifi: fix EDCA limit set by BT coexistence d8f2e18d1dcf tcp_metrics: do not create an entry from tcp_init_metrics() 73999f29ab19 tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics() 37308a39262b tcp_metrics: add missing barriers on delete d203f9921ac0 wifi: mt76: mt7603: rework/fix rx pse hang check 3068527d17e8 wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file() d44f88b20d44 net: spider_net: Use size_add() in call to struct_size() 9b8486fdad65 tipc: Use size_add() in calls to struct_size() 5f5aabbdc27f mlxsw: Use size_mul() in call to struct_size() f927d4469632 gve: Use size_add() in call to struct_size() 2b46db3bb73d overflow: Implement size_t saturating arithmetic helpers 2f4b4eb58fc0 tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed 0ca9fc8200d4 udp: add missing WRITE_ONCE() around up->encap_rcv 61e7961ff33d i40e: fix potential memory leaks in i40e_remove() 47479ed7fcf7 genirq/matrix: Exclude managed interrupts in irq_matrix_allocated() bb166bdae1a7 pstore/platform: Add check for kstrdup 66f9969141c0 x86/boot: Fix incorrect startup_gdt_descr.size ffa4cc86e959 futex: Don't include process MM in futex key on no-MMU f52587051637 x86/srso: Fix SBPB enablement for (possible) future fixed HW f49926b8d2a5 vfs: fix readahead(2) on block devices 9fe0f6b5720e sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max = 0 bdb7de7ed5ba iov_iter, x86: Be consistent about the __user tag on copy_mc_to_user()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 5 Dec 2023 04:40:34 +0000 (23:40 -0500)]
linux-yocto/5.10: update to v5.10.200
Updating to the latest korg -stable release that comprises
the following commits:
3e55583405ac Linux 5.10.200 a5feaf765935 ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection 9109649559f9 tty: 8250: Add support for Intashield IS-100 73bcb4d44988 tty: 8250: Add support for Brainboxes UP cards 119f38e8ca16 tty: 8250: Add support for additional Brainboxes UC cards a8bf6f62187f tty: 8250: Remove UC-257 and UC-431 e705aee2a657 usb: raw-gadget: properly handle interrupted requests 8e0324f2cbb7 usb: storage: set 1.50 as the lower bcdDevice for older "Super Top" compatibility 747b8f877998 PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device deddf60c271f can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior 8716c28f695c can: isotp: isotp_bind(): do not validate unused address information e4c4e0e1b29c can: isotp: add local echo tx processing and tx without FC 569c95b7ece0 can: isotp: handle wait_event_interruptible() return values de3c02383aa6 can: isotp: check CAN address family in isotp_bind() 0386f3704789 can: isotp: isotp_bind(): return -EINVAL on incorrect CAN ID formatting 93b1e3f3a263 can: isotp: set max PDU size to 64 kByte 7adbc048d84b can: isotp: Add error message if txqueuelen is too small 57798a2cfe15 can: isotp: add symbolic error message to isotp_module_init() 186ab5645199 can: isotp: change error format from decimal to symbolic error names b881ce6c7d10 powerpc/mm: Fix boot crash with FLATMEM 1b285a1bfb0d net: chelsio: cxgb4: add an error code check in t4_load_phy_fw 955a1105eec2 platform/mellanox: mlxbf-tmfifo: Fix a warning message 268ec38b797b scsi: mpt3sas: Fix in error path abf9c7811836 fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit() ec45886637ee ASoC: rt5650: fix the wrong result of key button c683d8b6417c netfilter: nfnetlink_log: silence bogus compiler warning 66cc633fc6e1 spi: npcm-fiu: Fix UMA reads when dummy.nbytes == 0 6f9093b6f8f7 fbdev: atyfb: only use ioremap_uc() on i386 and ia64 ead3c123a753 Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport fb8f253b9532 dmaengine: ste_dma40: Fix PM disable depth imbalance in d40_probe e619b38a873f irqchip/stm32-exti: add missing DT IRQ flag translation d151fb801957 net: sched: cls_u32: Fix allocation size in u32_init() 9ade01b2949b x86: Fix .brk attribute in linker script 3fdd5b2bb09f rpmsg: Fix possible refcount leak in rpmsg_register_device_override() 41c13a571de4 rpmsg: glink: Release driver_override 5f1bb9f4d4b5 rpmsg: Fix calling device_lock() on non-initialized device 5bbd3469a4b6 rpmsg: Fix kfree() of static memory on setting driver_override d0208fb38f43 rpmsg: Constify local variable in field store macro da369d3996cc driver: platform: Add helper for safer setting of driver_override 4a20f5ea62db objtool/x86: add missing embedded_insn check 6b977a7323f7 ext4: avoid overlapping preallocations due to overflow 58fe961c606c ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow c0db17e55ff6 ext4: add two helper functions extent_logical_end() and pa_logical_end() c761d34a7ec0 x86/mm: Fix RESERVE_BRK() for older binutils 01a5e17e3ef3 x86/mm: Simplify RESERVE_BRK() 571ce7d944cd f2fs: fix to do sanity check on inode type during garbage collection d1c37e849f37 smbdirect: missing rc checks while waiting for rdma events b2e62728b106 kobject: Fix slab-out-of-bounds in fill_kobj_path() b9b197f65904 x86/i8259: Skip probing when ACPI/MADT advertises PCAT compatibility 62184eb77821 iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds e96eb8853f33 iio: adc: xilinx: use more devres helpers and remove remove() 0eb1198fe4d6 iio: adc: xilinx: use devm_krealloc() instead of kfree() + kcalloc() c4b496c9f772 iio: adc: xilinx: use helper variable for &pdev->dev d8928befffe5 clk: Sanitize possible_parent_show to Handle Return Value of of_clk_get_parent_name 09ce0d85cc00 sparc32: fix a braino in fault handling in csum_and_copy_..._user() 0258ca32b0ea perf/core: Fix potential NULL deref 4e3c606afa25 nvmem: imx: correct nregs for i.MX6UL 37ccf15ebeec nvmem: imx: correct nregs for i.MX6SLL 7a1c29e93c25 nvmem: imx: correct nregs for i.MX6ULL d44166341f4b misc: fastrpc: Clean buffers on remote invocation failures 866838eb8ee9 tracing/kprobes: Fix the description of variable length arguments ca764116b5c1 i2c: aspeed: Fix i2c bus hang in slave read 18c5167d0460 i2c: stm32f7: Fix PEC handling in case of SMBUS transfers 80416f6ba002 i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node() 9a9ead53e72f i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node() 3cb69f1dbc86 i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node() 0c8587fec9d5 iio: exynos-adc: request second interupt only when touchscreen mode is used 632c2199e52d kasan: print the original fault addr when access invalid shadow be9e6f51ba7b i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR fe65fc90e9f2 gtp: fix fragmentation needed check with gso 3ae8b75fce05 gtp: uapi: fix GTPA_MAX 4d0d5e54b590 tcp: fix wrong RTO timeout when received SACK reneging e0308c793943 r8152: Release firmware if we have an error in probe 17b455747bc6 r8152: Cancel hw_phy_work if we have an error in probe 7dc907d855df r8152: Run the unload routine if we have errors during probe 704c25fc6abd r8152: Increase USB control msg timeout to 5000ms as per spec 79e2610efc94 net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg d9864e589f0e net: ieee802154: adf7242: Fix some potential buffer overflow in adf7242_stats_show() 634c72adc864 igc: Fix ambiguity in the ethtool advertising 1e628189a21b neighbour: fix various data-races 77c4f14f952e igb: Fix potential memory leak in igb_add_ethtool_nfc_entry 1ac4f8e5553c treewide: Spelling fix in comment 5eab293b1cbf r8169: fix the KCSAN reported data race in rtl_rx while reading desc->opts1 13d357d9f226 r8169: fix the KCSAN reported data-race in rtl_tx while reading TxDescArray[entry].opts1 31c31a78dccf drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper() 957ec0823a5a mmc: renesas_sdhi: use custom mask for TMIO_MASK_ALL 3ab81820bf92 mm/page_alloc: correct start page when guard page debug is enabled f2c0b571a5fc virtio-mmio: fix memory leak of vm_dev 8b857a93d6be virtio_balloon: Fix endless deflation and inflation on arm64 c88dd2aebf0c mcb-lpc: Reallocate memory region to avoid memory overlapping 6976459c6439 mcb: Return actual parsed size when reading chameleon table 09bcf9254838 selftests/ftrace: Add new test case which checks non unique symbol cb49f0e441ce Linux 5.10.199 657a3ca8236c xfrm6: fix inet6_dev refcount underflow problem 5d5680755bce Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name b423509bc99c Bluetooth: hci_sock: fix slab oob read in create_monitor_event 653c808023cd phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins e9c20d3078cc phy: mapphone-mdm6600: Fix runtime PM for remove f42634685ee5 phy: mapphone-mdm6600: Fix runtime disable on probe 05e06fb6a642 ASoC: pxa: fix a memory leak in probe() 7e29dadf265d gpio: vf610: set value before the direction to avoid a glitch 6c3a72d4ae24 platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events 8fece0081b64 platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to 0x2e 3be044840e8e s390/pci: fix iommu bitmap allocation 487a8e24643a perf: Disallow mis-matched inherited group reads 550c70f72a1b USB: serial: option: add Fibocom to DELL custom modem FM101R-GL a39ea926ff6d USB: serial: option: add entry for Sierra EM9191 with new firmware 3fb223086de9 USB: serial: option: add Telit LE910C4-WWX 0x1035 composition d78d3e0d8462 nvme-rdma: do not try to stop unallocated queues 6238faecf88a nvme-pci: add BOGUS_NID for Intel 0a54 device 9efa38fdca2c ACPI: irq: Fix incorrect return value in acpi_register_gsi() 9df654268aec pNFS: Fix a hang in nfs4_evict_inode() c44e09a89ad2 Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()" b26b0b8757c6 mmc: core: Capture correct oemid-bits for eMMC cards f4771efb0683 mmc: core: sdio: hold retuning if sdio in 1-bit mode 2312fb7f3b20 mtd: physmap-core: Restore map_rom fallback 3a141424f8fe mtd: spinand: micron: correct bitmask for ecc status 7682dae0a607 mtd: rawnand: arasan: Ensure program page operations are successful 875d17e4524b mtd: rawnand: marvell: Ensure program page operations are successful 6224890ad0b4 mtd: rawnand: qcom: Unmap the right resource upon probe failure f707bc0a55b7 Bluetooth: hci_event: Fix using memcmp when comparing keys 3b6aa631df0c net/mlx5: Handle fw tracer change ownership event based on MTRC ead8131372af platform/x86: touchscreen_dmi: Add info for the Positivo C4128B fd1271632769 HID: multitouch: Add required quirk for Synaptics 0xcd7e device 4e71ae53f121 btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c 661b4ce3b54a drm: panel-orientation-quirks: Add quirk for One Mix 2S 5b7cae7c35dd ipv4/fib: send notify when delete source address routes 21f85b026dfe sky2: Make sure there is at least one frag_addr available f06c3a50ef2b regulator/core: Revert "fix kobject release warning and memory leak in regulator_register()" 461341412960 wifi: cfg80211: avoid leaking stack data into trace fde6d84daa0f wifi: mac80211: allow transmitting EAPOL frames with tainted key 8de7f7058314 wifi: cfg80211: Fix 6GHz scan configuration ffb060b136dd Bluetooth: hci_core: Fix build warnings 65f5da6df897 Bluetooth: Avoid redundant authentication 115f2c88fde3 HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event a59636cdd84a tracing: relax trace_event_eval_update() execution with cond_resched() fb60e9c00042 ata: libata-eh: Fix compilation warning in ata_eh_link_report() 22c3641bef9c gpio: timberdale: Fix potential deadlock on &tgpio->lock b4fcf1a0bbd0 overlayfs: set ctime when setting mtime and atime 4b472c25a597 i2c: mux: Avoid potential false error message in i2c_mux_add_adapter 840b912df518 btrfs: initialize start_slot in btrfs_log_prealloc_extents 9801e2798b63 btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to 1 d69131b48fea ARM: dts: ti: omap: Fix noisy serial with overrun-throttle-ms for mapphone 9ed14f807f4f usb: typec: altmodes/displayport: Signal hpd low when exiting mode f25a13d318b8 usb: typec: altmodes/displayport: Notify drm subsys of hotplug events 2ea6a14e8a55 drm/connector: Add support for out-of-band hotplug notification (v3) 6e55f6a8a498 drm/connector: Add drm_connector_find_by_fwnode() function (v3) 89b1868bab48 drm/connector: Add a fwnode pointer to drm_connector and register with ACPI (v2) 86502f1b63aa drm/connector: Give connector sysfs devices there own device_type cedcbf61dfce drm/amd/display: Don't set dpms_off for seamless boot ebba01fcd562 drm/amd/display: only check available pipe to disable vbios mode. 1ac717000403 serial: 8250_omap: Fix errors with no_console_suspend be300358b55d serial: 8250: omap: Fix imprecise external abort for omap_8250_pm() fc778e9d7995 xhci: track port suspend state correctly in unsuccessful resume cases 1c034c6e224d xhci: decouple usb2 port resume and get_port_status request handling 92088dd88627 xhci: clear usb2 resume related variables in one place. e7abc4b18d1a xhci: rename resume_done to resume_timestamp d44c9285ce35 xhci: move port specific items such as state completions to port structure e2b4de13e5f9 xhci: cleanup xhci_hub_control port references 95b9f1e3927b usb: core: Track SuperSpeed Plus GenXxY d6316f592988 selftests/mm: fix awk usage in charge_reserved_hugetlb.sh and hugetlb_reparenting_test.sh that may cause error 69f40ce372b9 selftests/vm: make charge_reserved_hugetlb.sh work with existing cgroup setting cb868d8857ae ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA 7d0728e7ac04 ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA 3a58c28bff79 ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA 1b4659e283bc ACPI: resource: Add Asus ExpertBook B2502 to Asus quirks 980dd4dfb9e8 ACPI: resource: Skip IRQ override on Asus Vivobook S5602ZA e0014184cd11 ACPI: resource: Add ASUS model S5402ZA to quirks 7f26f0ac3854 ACPI: resource: Skip IRQ override on Asus Vivobook K3402ZA/K3502ZA ffcb69e923aa ACPI: resources: Add DMI-based legacy IRQ override quirk 8a8918b51080 ACPI: Drop acpi_dev_irqresource_disabled() 196896455bd1 resource: Add irqresource_disabled() faa9a9d07c06 thunderbolt: Workaround an IOMMU fault on certain systems with Intel Maple Ridge 482fa2345f03 net: pktgen: Fix interface flags printing 068e4ecea226 netfilter: nft_set_rbtree: .deactivate fails if element has expired 9cef803e9ed0 neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section 36848adbdeba net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve 923e47c0b40a net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register() a53fc0641683 i40e: prevent crash on probe if hw registers have invalid values 9b5661bda392 net: usb: smsc95xx: Fix an error code in smsc95xx_reset() 250cd610f8c4 ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr 1cef1a2d5c22 tun: prevent negative ifindex f828e15db3c7 tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single skb c39c31c5265b tcp: fix excessive TLP and RACK timeouts from HZ rounding 805b38062e28 net: rfkill: gpio: prevent value glitch during probe 8023c7e90007 net: ipv6: fix return value check in esp_remove_trailer 2ca00d93f2b1 net: ipv4: fix return value check in esp_remove_trailer 4ba4eec4f40d xfrm: interface: use DEV_STATS_INC() 4d78b9dc79d5 xfrm: fix a data-race in xfrm_gen_index() 8c6c3d0b9f2e qed: fix LL2 RX buffer allocation 88c493297e40 drm/i915: Retry gtt fault when out of fence registers e985d78bdcf3 nvmet-tcp: Fix a possible UAF in queue intialization setup 287401f92c57 netfilter: nft_payload: fix wrong mac header matching fe37e56ed47d tcp: check mptcp-level constraints for backlog coalescing 6550cbe25de1 x86/sev: Check for user-space IOIO pointing to kernel space 5bb9ba7dafbe x86/sev: Check IOBM for IOIO exceptions from user-space d78c5d8c23c3 x86/sev: Disable MMIO emulation from user mode 459af3fb81e6 KVM: x86: Mask LVTPC when handling a PMI 4cbac83549dd regmap: fix NULL deref on lookup c95fa5b20fe0 nfc: nci: fix possible NULL pointer dereference in send_acknowledge() 2e64f4c732cb ice: reset first in crash dump kernels 95d68fdc71ba ice: fix over-shifted variable a56c436b4335 Bluetooth: avoid memcmp() out of bounds warning 7e83d15e0ca2 Bluetooth: hci_event: Fix coding style c6878fa1730b Bluetooth: vhci: Fix race when opening vhci device 40a33a129d99 Bluetooth: Fix a refcnt underflow problem for hci_conn ab950561bca4 Bluetooth: Reject connection with the device which has same BD_ADDR 0e025a4528f4 Bluetooth: hci_event: Ignore NULL link key 241f23032433 usb: hub: Guard against accesses to uninitialized BOS descriptors aec24b096300 Documentation: sysctl: align cells in second content column f10690787d2c mm/memory_hotplug: rate limit page migration warnings bf97ea76eac5 lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default c44b14469af0 dev_forward_skb: do not scrub skb mark within the same name space db9aafa19547 ravb: Fix use-after-free issue in ravb_tx_timeout_work() db375fa550c0 RDMA/srp: Fix srp_abort() f022576aa03c RDMA/srp: Set scmnd->result only when scmnd is not NULL 489818719a88 arm64: armv8_deprecated: fix unused-function error da7603cedb7d arm64: armv8_deprecated: rework deprected instruction handling 45a26d2a5394 arm64: armv8_deprecated: move aarch32 helper earlier 0b6a7a9f6d94 arm64: armv8_deprecated move emulation functions 2202536144bc arm64: armv8_deprecated: fold ops into insn_emulation 5aa232345e4d arm64: rework EL0 MRS emulation 15e964971ff7 arm64: factor insn read out of call_undef_hook() 0edde7fd1c3b arm64: factor out EL1 SSBS emulation hook 7a76df1ae1b3 arm64: split EL0/EL1 UNDEF handlers 8a8d4cc303ef arm64: allow kprobes on EL0 handlers 793ed958b62a arm64: rework BTI exception handling 9113333d7c7c arm64: rework FPAC exception handling a8d7c8484ff7 arm64: consistently pass ESR_ELx to die() 004bdab6edc7 arm64: die(): pass 'err' as long 835cb1f78d74 arm64: report EL1 UNDEFs better 6788b10620ca x86/alternatives: Disable KASAN in apply_alternatives() ba4b37721096 powerpc/64e: Fix wrong test in __ptep_test_and_clear_young() dadb86fba67f powerpc/8xx: Fix pte_access_permitted() for PAGE_NONE 288a0593c798 dmaengine: mediatek: Fix deadlock caused by synchronize_irq() 17c653d4913b usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call a906f2eb675c usb: gadget: udc-xilinx: replace memcpy with memcpy_toio 7decb6515138 counter: microchip-tcb-capture: Fix the use of internal GCLK logic a177771bff63 pinctrl: avoid unsafe code pattern in find_pinctrl() 2a4a82804024 cgroup: Remove duplicates in cgroup v1 tasks file da7ce52a2f6c tee: amdtee: fix use-after-free vulnerability in amdtee_close_session 0ea0231dd1b2 Input: goodix - ensure int GPIO is in input for gpio_count == 1 && gpio_int_idx == 0 case 39fb79407e59 Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table 8d862a3dff7e Input: xpad - add PXN V900 support e8ea649fc35f Input: psmouse - fix fast_reconnect function for PS/2 mode cd2fbfd8b922 Input: powermate - fix use-after-free in powermate_config_complete 27b6c809d393 ceph: fix type promotion bug on 32bit systems 2b2bf63671cc ceph: fix incorrect revoked caps assert in ceph_fill_file_size() 62f6d24f2e7d libceph: use kernel_connect() 5850eb4df422 thunderbolt: Check that lane 1 is in CL0 before enabling lane bonding 008ba1a5ada5 mcb: remove is_added flag from mcb_device struct ec93456c0289 x86/cpu: Fix AMD erratum #1485 on Zen4-based CPUs b608f4aedc0e iio: pressure: ms5611: ms5611_prom_is_valid false negative bug 02388eaf3a15 iio: pressure: dps310: Adjust Timeout Settings 2abd2cffa1b8 iio: pressure: bmp280: Fix NULL pointer exception aadbf612f8b1 usb: musb: Modify the "HWVers" register address bc929a0052c4 usb: musb: Get the musb_qh poniter after musb_giveback 459eb7c6885f usb: dwc3: Soft reset phy on probe for host d71d0009f9e7 net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read 4bf69ee6bb41 usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer 2d30692c6c94 dmaengine: stm32-mdma: abort resume if no ongoing transfer d346a2ef6b1e media: mtk-jpeg: Fix use after free bug due to uncanceled work 014cab5329d1 net: release reference to inet6_dev pointer d491ac7aa12a net: change accept_ra_min_rtr_lft to affect all RA lifetimes 354a96770d94 net: add sysctl accept_ra_min_rtr_lft 1ceaf0d3a883 Revert "spi: spi-zynqmp-gqspi: Fix runtime PM imbalance in zynqmp_qspi_probe" 649237ccf440 Revert "spi: zynqmp-gqspi: fix clock imbalance on probe failure" ce03f0234f9d workqueue: Override implicit ordered attribute in workqueue_apply_unbound_cpumask() a424807d860b nfc: nci: assert requested protocol is valid b5b03da30bd5 pinctrl: renesas: rzn1: Enable missing PINMUX 6ac22ecdaad2 net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() 31ea13e3ff52 ixgbe: fix crash with empty VF macvlan list b24bd1277501 net: phy: mscc: macsec: reject PN update requests a848ae8b5ad7 net: macsec: indicate next pn update when offloading a629f0575c9c drm/vmwgfx: fix typo of sizeof argument d4ba78e5522e riscv, bpf: Sign-extend return values 2a8ef2234b3a riscv, bpf: Factor out emit_call for kernel and bpf context 1bf4da1818c2 xen-netback: use default TX queue size for vifs 33548a6b3c7c mlxsw: fix mlxsw_sp2_nve_vxlan_learning_set() return type 55e06850c789 ieee802154: ca8210: Fix a potential UAF in ca8210_probe ef7a0d51bfdb ravb: Fix up dma_free_coherent() call in ravb_remove() 1673841da013 drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid overflow 6004ca7ad2d0 drm/msm/dsi: skip the wait for video mode done if not applicable dbbbeaef7786 drm/msm/dp: do not reinitialize phy unless retry during link training 31e7e77b24f1 net: prevent address rewrite in kernel_bind() 22c06bf1f99e quota: Fix slow quotaoff 093af62c0235 HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect cb4a8146e3a9 lib/test_meminit: fix off-by-one error in test_pages() 06068e7f3ff8 perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7 0ed2ad00f333 RDMA/cxgb4: Check skb value for failure to allocate 26788a5b48d9 RDMA/srp: Do not call scsi_done() from srp_abort() 81982125c352 RDMA/srp: Make struct scsi_cmnd and struct srp_request adjacent
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 5 Dec 2023 04:40:33 +0000 (23:40 -0500)]
linux-yocto/5.10: update to v5.10.198
Updating to the latest korg -stable release that comprises
the following commits:
a8d812240fdd Linux 5.10.198 660627c71bc1 xen/events: replace evtchn_rwlock with RCU 1e3d016a9506 mmc: renesas_sdhi: only reset SCC when its pointer is populated a7d86a77c33b netfilter: nftables: exthdr: fix 4-byte stack OOB write 84f6b686df2d netfilter: nf_tables: fix kdoc warnings after gc rework c17446c00805 parisc: Restore __ldcw_align for PA-RISC 2.0 processors cfc333393ae6 RDMA/mlx5: Fix NULL string error 0d520cdb0cd0 RDMA/siw: Fix connection failure handling 5a4a6a47e074 RDMA/uverbs: Fix typo of sizeof argument 626868282c36 RDMA/cma: Fix truncation compilation warning in make_cma_ports 7de0e42444e9 RDMA/cma: Initialize ib_sa_multicast structure to 0 when join 36953b4da78b gpio: pxa: disable pinctrl calls for MMP_GPIO 6ad972e66870 gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config() d7d8f1a679ec IB/mlx4: Fix the size of a buffer in add_port_entries() 204c2d485f86 of: dynamic: Fix potential memory leak in of_changeset_action() b74f12f98b7f RDMA/core: Require admin capabilities to set system parameters ccd87fe7a0f6 dm zoned: free dmz->ddev array in dmz_put_zoned_devices 82d87c944ea8 cpupower: add Makefile dependencies for install targets 492241613cf4 sctp: update hb timer immediately after users change hb_interval f87658493898 sctp: update transport state when processing a dupcook packet ff346b01eba5 tcp: fix delayed ACKs for MSS boundary condition 677aaa261e7a tcp: fix quick-ack counting to count actual ACKs of new data 6a24d0661fa3 tipc: fix a potential deadlock on &tx->lock b9f1568ba37f net: stmmac: dwmac-stm32: fix resume on STM32 MCU 3a5142f01758 netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure 0ba9348532bd netfilter: handle the connecting collision properly in nf_conntrack_proto_sctp b212f361a5d1 net: ethernet: ti: am65-cpsw: Fix error code in am65_cpsw_nuss_init_tx_chns() dba849cc9811 net: nfc: llcp: Add lock when modifying device list 30bc4d7aebe3 net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg d44346dda7d4 net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent 96b2e1090397 ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() 2ea52a2fb8e8 net: fix possible store tearing in neigh_periodic_work() 6e3d9e5caba8 modpost: add missing else to the "of" check 225cd4f67bd4 NFSv4: Fix a nfs4_state_manager() race d8f2ba9ec358 ima: rework CONFIG_IMA dependency block 77f82df960cb scsi: target: core: Fix deadlock due to recursive locking a9430129d8db ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig 725fd2080559 regmap: rbtree: Fix wrong register marked as in-cache when creating new node 666cdc43df24 wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling 54a4faab2baa drivers/net: process the result of hdlc_open() and add call of hdlc_close() in uhdlc_close() 93dd471d3a2f bpf: Fix tr dereferencing 10a18c8bac7f wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet 8c15c1bcc5b5 wifi: iwlwifi: dbg_ini: fix structure packing a5f643ab1163 ubi: Refuse attaching if mtd's erasesize is 0 33420a82067b arm64: Add Cortex-A520 CPU part definition 81d03e251894 net: prevent rewrite of msg_name in sock_sendmsg() 72fc02ebfc93 net: replace calls to sock->ops->connect() with kernel_connect() 1aeff207e295 wifi: mwifiex: Fix tlv_buf_left calculation f6f25930fa34 qed/red_ll2: Fix undefined behavior bug in struct qed_ll2_info b9c4b3ca9016 scsi: zfcp: Fix a double put in zfcp_port_enqueue() 04b6b67a3e77 Revert "PCI: qcom: Disable write access to read only registers for IP v2.3.3" c2cf152e8bb8 Revert "clk: imx: pll14xx: dynamically configure PLL for 393216000/361267200Hz" f94471c0cc31 block: fix use-after-free of q->q_usage_counter 0d6987d4a34c rbd: take header_rwsem in rbd_dev_refresh() only when updating d3d170c5fc06 rbd: decouple parent info read-in from updating rbd_dev 3ceb306f9b2d rbd: decouple header read-in from updating rbd_dev->header 7c4f11d73b24 rbd: move rbd_dev_refresh() definition d0952ce316d1 drm/mediatek: Fix backport issue in mtk_drm_gem_prime_vmap() c33d75a57a81 ring-buffer: Fix bytes info in per_cpu buffer stats 0ecde7dd766f ring-buffer: remove obsolete comment for free_buffer_page() 2ad1a1d3d616 NFSv4: Fix a state manager thread deadlock regression ec4325e80633 NFS: rename nfs_client_kset to nfs_kset 598539f38c72 NFS: Cleanup unused rpc_clnt variable 19f3d5d13b75 spi: zynqmp-gqspi: fix clock imbalance on probe failure 2cdec9c13f81 spi: spi-zynqmp-gqspi: Fix runtime PM imbalance in zynqmp_qspi_probe ae03dafc3761 fs: binfmt_elf_efpic: fix personality for ELF-FDPIC 8ec1abb59a98 ata: libata-sata: increase PMP SRST timeout to 10s dc0bd0f2da5c ata: libata-core: Do not register PM operations for SAS ports 531d9f6dbfd5 ata: libata-core: Fix port and device removal 99d308c31923 ata: libata-core: Fix ata_port_request_pm() locking eaf449666221 net: thunderbolt: Fix TCPv6 GSO checksum calculation 72595dbfcae3 bpf: Fix BTF_ID symbol generation collision in tools/ 6a80578bd441 bpf: Fix BTF_ID symbol generation collision cbbfdb4bab70 btrfs: properly report 0 avail for very full file systems ef47f25e98de ring-buffer: Update "shortest_full" in polling b7a0df4c0877 proc: nommu: /proc/<pid>/maps: release mmap read lock acc7fc82d0ad Revert "SUNRPC dont update timeout value on connection reset" e3b8c9e0fc3c i2c: i801: unregister tco_pdev in i801_probe() error path b664e9db8d2c ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION CODES 25872c67de20 ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre M70q 5a03b42ae1ed netfilter: nf_tables: disallow rule removal from chain binding 7130a87ca323 nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() e14afa4450cb serial: 8250_port: Check IRQ data before use 6d5c8862932d Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux" 14443223e08c Smack:- Use overlay inode label in smack_inode_copy_up() 297c51c63fe1 smack: Retrieve transmuting information in smack_inode_getsecurity() 41de7a6b95df smack: Record transmuting in smk_transmuted 831f18c735e2 nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev fb28f89d50c0 netfilter: nft_exthdr: Fix for unsafe packet data read e18216cd0ec7 netfilter: nft_exthdr: Search chunks in SCTP packets only 152b8ac839c9 watchdog: iTCO_wdt: Set NO_REBOOT if the watchdog is not already running 13b7d49f339a watchdog: iTCO_wdt: No need to stop the timer in probe 0d599a3f57a5 nvme-pci: do not set the NUMA node of device if it has none 97e148dcb97d nvme-pci: factor out a nvme_pci_alloc_dev helper 71357c751fb2 nvme-pci: factor the iod mempool creation into a helper 38f82cf86096 ACPI: Check StorageD3Enable _DSD property in ACPI code 67025d565450 cgroup: Fix suspicious rcu_dereference_check() usage warning b2788f6d4924 sched/cpuacct: Optimize away RCU read lock 82756d8a2394 sched/cpuacct: Fix charge percpu cpuusage f8e8e72c58c7 sched/cpuacct: Fix user/system in shown cpuacct.usage* ef3c728ca0d4 perf build: Define YYNOMEM as YYNOABORT for bison < 3.81 da91481c5d2b fbdev/sh7760fb: Depend on FB=y ffc459a93065 ncsi: Propagate carrier gain/loss events to the NCSI controller 8c2500228b8f powerpc/watchpoints: Disable preemption in thread_change_pc() f5bdbed0361c media: vb2: frame_vector.c: replace WARN_ONCE with a comment ebc91848062e bpf: Clarify error expectations from bpf_clone_redirect 0118244848a5 spi: nxp-fspi: reset the FLSHxCR1 registers f6cf19c1b313 ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset() 2afd8fcee0c4 scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command 0decc581e1dc scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command f44e66447c4f platform/mellanox: mlxbf-bootctl: add NET dependency into Kconfig cee5151c5410 ring-buffer: Do not attempt to read past "commit" 2956e33fb4f8 selftests: fix dependency checker script 9ccce21bd77b ring-buffer: Avoid softlockup in ring_buffer_resize() 5dfcb92905b3 selftests/ftrace: Correctly enable event in instance-event.tc 38ef4b2e4dca scsi: qedf: Add synchronization between I/O completions and abort 2081b2a15b08 parisc: irq: Make irq_stack_union static to avoid sparse warning f47efdffdc13 parisc: drivers: Fix sparse warning d967a9472bf9 parisc: iosapic.c: Fix sparse warnings 7b2440c2d64f parisc: sba: Fix compile warning wrt list of SBA devices c79300599923 dma-debug: don't call __dma_entry_alloc_check_leak() under free_entries_lock 061f40275338 i2c: npcm7xx: Fix callback completion ordering dd81e91b2efc gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip b317f69871ef xtensa: boot/lib: fix function prototypes be17dfdcc87a xtensa: boot: don't add include-dirs a10bfbe599b7 xtensa: iss/network: make functions static 608af5511a8f xtensa: add default definition for XCHAL_HAVE_DIV32 3696261859c5 power: supply: ucs1002: fix error code in ucs1002_get_property() eff55feb8b87 bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart wake-up 1bc88671960f ARM: dts: ti: omap: motorola-mapphone: Fix abe_clkctrl warning on boot a2a592adad7c ARM: dts: Unify pwm-omap-dmtimer node names 2d9c9589da6a ARM: dts: am335x: Guardian: Update beeper label ef83f35ced40 ARM: dts: motorola-mapphone: Drop second ti,wlcore compatible value 12a28c379ef8 ARM: dts: motorola-mapphone: Add 1.2GHz OPP afdc40a74ae3 ARM: dts: motorola-mapphone: Configure lower temperature passive cooling 093a9a02d4d5 ARM: dts: ti: omap: Fix bandgap thermal cells addressing for omap3/4 28e5423ad8fb ARM: dts: omap: correct indentation 50789f37239c clk: tegra: fix error return case for recalc_rate 0fd5839e2504 bus: ti-sysc: Fix missing AM35xx SoC matching 1d4d846e2a49 bus: ti-sysc: Use fsleep() instead of usleep_range() in sysc_reset() a8ee76d72737 MIPS: Alchemy: only build mmc support helpers if au1xmmc is enabled d678c078f302 btrfs: reset destination buffer when read_extent_buffer() gets invalid range a1f85bc9bc69 ata: ahci: Add Elkhart Lake AHCI controller 51d190cc98de ata: ahci: Rename board_ahci_mobile 8061c399c83b ata: ahci: Add support for AMD A85 FCH (Hudson D4) 0156cce71f8e ata: libata: Rename link flag ATA_LFLAG_NO_DB_DELAY 9f0d34663025 netfilter: nft_exthdr: Fix non-linear header modification ed60b8014c9a netfilter: exthdr: add support for tcp option removal 10670abe1115 netfilter: nft_exthdr: break evaluation if setting TCP option fails 45b3eb6afcff netfilter: nf_tables: add and use nft_thoff helper 39546418b84d netfilter: nf_tables: add and use nft_sk helper af844ba799b5 netfilter: nft_exthdr: Support SCTP chunks 858ca1921639 netfilter: use actual socket sk for REJECT action 2d9ea86f3c4a media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking interrupts c4cc1f690f19 media: venus: hfi: Add a 6xx boot logic 4596fece3c24 media: venus: core: Add differentiator IS_V6(core) 3ed9d3dc244b media: venus: hfi: Define additional 6xx registers ebccb53232cc media: venus: hfi,pm,firmware: Convert to block relative addressing 4ccdeb68da0c media: venus: core: Add io base variables for each block 6d3745bbc334 mmc: renesas_sdhi: register irqs before registering controller 995ef65e4b5c mmc: tmio: support custom irq masks 97eb045386de mmc: renesas_sdhi: populate SCC pointer at the proper place 7217ceb61a47 mmc: renesas_sdhi: probe into TMIO after SCC parameters have been setup e492f8125133 Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN 677bff659fd3 Input: i8042 - rename i8042-x86ia64io.h to i8042-acpipnpio.h 3fac8ce48fa9 netfilter: nf_tables: double hook unregistration in netns path e51f30826bc5 netfilter: nf_tables: unregister flowtable hooks on netns exit 5e95c88e9061 i2c: mux: demux-pinctrl: check the return value of devm_kstrdup() 0a78bcc2d526 gpio: tb10x: Fix an error handling path in tb10x_gpio_probe() f515112e8337 net: rds: Fix possible NULL-pointer dereference 466e88548e19 bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI 78106529b390 locking/seqlock: Do the lockdep annotation before locking in do_write_seqcount_begin_nested() a8dd21118b0f seqlock: Prefix internal seqcount_t-only macros with a "do_" ac01a0dd7905 seqlock: Rename __seqprop() users a8460ee6c80b seqlock: avoid -Wshadow warnings f1893feb20ea netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP b44dd92e2afd team: fix null-ptr-deref when team device type is changed 04cc361f029c net: bridge: use DEV_STATS_INC() 1671dc1b25e5 net: hns3: add 5ms delay before clear firmware reset irq source 309af4a39b8e net: hns3: only enable unicast promisc when mac table full ae806c74c063 x86/srso: Fix SBPB enablement for spec_rstack_overflow=off 423ba1b3a5a7 x86/srso: Fix srso_show_state() side effect 1ec40ef6f765 platform/x86: intel_scu_ipc: Fail IPC send if still busy 4c5eaf6d8bb4 platform/x86: intel_scu_ipc: Don't override scu in intel_scu_ipc_dev_simple_command() 441b61d742ef platform/x86: intel_scu_ipc: Check status upon timeout in ipc_wait_for_interrupt() c463898b6e72 platform/x86: intel_scu_ipc: Check status after timeout in busy_loop() 60d73c62e3e4 dccp: fix dccp_v4_err()/dccp_v6_err() again 09a1c790e1b9 powerpc/perf/hv-24x7: Update domain value check 8689c9ace976 ipv4: fix null-deref in ipv4_link_failure 47907ebeb77a i40e: Fix VF VLAN offloading when port VLAN is configured a91861446f1c ASoC: imx-audmix: Fix return error with devm_clk_get() c4ecedf980b0 selftests: tls: swap the TX and RX sockets in some tests 78ef69b6e770 selftests/tls: Add {} to avoid static checker warning 388c9d3eefae bpf: Avoid deadlock when using queue and stack maps from NMI 6dc85d848c26 netfilter: nf_tables: disallow element removal on anonymous sets a45632f99713 ASoC: meson: spdifin: start hw on dai probe 09c85f2d21ab netfilter: nf_tables: fix memleak when more than 255 elements expired 4deaf1316b42 netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration 26d0e4d632f8 netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation fails b796c4e4bf29 netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention c323ed65f66e netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction 09f2dda1e576 netfilter: nf_tables: defer gc run if previous batch is still pending b71dcee2fc9c netfilter: nf_tables: use correct lock to protect gc_list 23292bdfda5f netfilter: nf_tables: GC transaction race with abort path dc0b1f019554 netfilter: nf_tables: GC transaction race with netns dismantle 4046f2b56e5a netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path 891ca5dfe3b7 netfilter: nf_tables: don't fail inserts if duplicate has expired 911dd3cdf108 netfilter: nf_tables: remove busy mark and gc batch API 77046cb00850 netfilter: nft_set_hash: mark set element as dead when deleting from packet path 146c76866795 netfilter: nf_tables: adapt set backend to use GC transaction API 448be0774882 netfilter: nf_tables: GC transaction API to avoid race with control plane b15ea4017af8 netfilter: nf_tables: don't skip expired elements during walk f8bf7706151a netfilter: nf_tables: integrate pipapo into commit protocol 9b65bff30a61 tracing: Have event inject files inc the trace array ref count f8a86ab3c4a4 ext4: do not let fstrim block system suspend c502b09d9bef ext4: move setting of trimmed bit into ext4_try_to_trim_range() e78e9f08a24e ext4: replace the traditional ternary conditional operator with with max()/min() cbf6a0f65404 ext4: mark group as trimmed only if it was fully scanned 5eaf4a1e06cf ext4: change s_last_trim_minblks type to unsigned long 24a86315a353 ext4: scope ret locally in ext4_try_to_trim_range() da1895f731f3 ext4: add new helper interface ext4_try_to_trim_range() 6f5fc957dfb7 ext4: remove the 'group' parameter of ext4_trim_extent 69c966583022 ata: libahci: clear pending interrupt status 11d15a115c90 ata: ahci: Drop pointless VPRINTK() calls and convert the remaining ones 407bf1c140f0 tracing: Increase trace array ref count on enable and filter files 3f7df02fa0d4 SUNRPC: Mark the cred for revalidation if the server rejects it 25ae2b2fdb12 NFS/pNFS: Report EINVAL errors from connect() to the server 26db22a6397b NFS: Use the correct commit info in nfs_join_page_group()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Narpat Mali [Wed, 6 Dec 2023 08:59:00 +0000 (08:59 +0000)]
python3-cryptography: fix CVE-2023-49083
cryptography is a package designed to expose cryptographic primitives
and recipes to Python developers. Calling `load_pem_pkcs7_certificates`
or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference
and segfault. Exploitation of this vulnerability poses a serious risk of
Denial of Service (DoS) for any application attempting to deserialize a
PKCS7 blob/certificate. The consequences extend to potential disruptions
in system availability and stability. This vulnerability has been patched
in version 41.0.6.
Li Wang [Mon, 27 Nov 2023 06:54:47 +0000 (14:54 +0800)]
systemtap_git: fix used uninitialized error
bpf-translate.cxx: error: 'this_column_size' may be used uninitialized in this function [-Werror=maybe-uninitialized]
bpf-translate.cxx: error: 'num' may be used uninitialized in this function [-Werror=maybe-uninitialized]
Signed-off-by: Li Wang <li.wang@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ninad Palsule [Thu, 23 Nov 2023 15:43:51 +0000 (16:43 +0100)]
kernel-fitImage: Strip path component from dtb
Machines that have added subdirectires to the KERNEL_DEVICETREE
recently, such as arm32 boards that were moved under subdirectories in
Linux 6.5, will have that subdirectory in the node name of the FIT. This
breaks existing systems that select a configuration in u-boot by it's
name.
Strip off the directory component from the device tree to preserve
compatibility.
Steve Sakoman [Tue, 21 Nov 2023 13:55:42 +0000 (03:55 -1000)]
vim: use upstream generated .po files
A previous commit attempted to fix reproducibility errors by forcing
regeneration of .po files. Unfortunately this triggered a different
type of reproducibility issue.
Work around this by adjusting the timestamps of the troublesome .po
files so they are not regenerated and we use the shipped upstream
versions of the files.
The shipped version of ru.cp1251.po doesn't seem to have been created
with the vim tooling and specifies CP1251 instead of cp1251, fix that.
Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 13d9551ba626f001c71bf908df16caf1d739cf13) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Richard Purdie [Mon, 13 Nov 2023 16:44:00 +0000 (16:44 +0000)]
vim: Improve locale handling
When making checkouts from git, the timestamps can vary and occasionally two files
can end up with the same stamp. This triggers make to regenerate ru.cp1251.po from
ru.po for example. If it isn't regenerated, the output isn't quite the same leading
to reproducibility issues (CP1251 vs cp1251).
Since we added all locales to buildtools tarball now, we can drop the locale
restrictions too. We need to generate a native binary for the sjis conversion
tool so also tweak that.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 042c1a501b1dae5ddb31307b461be02c3591c589) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Thu, 9 Nov 2023 12:36:11 +0000 (13:36 +0100)]
goarch: Move Go architecture mapping to a library
Other spaces uses the Go architecture definitions as their own (for
example, container arches are defined to be Go arches). To make it
easier for other places to use this mapping, move the code that does the
translation of OpenEmbedded arches to Go arches to a library.
This commit together with meta-virtualization commit 115f6367f37095415f289fb6981cda9608ac72ff
broke meta-virtualization master used with
meta-lts-mixins kirkstone/go which is our primary
usecase for having kirkstone/go mixin layer
Manually crafted since cherry-pick had too many conflicts:
* different path to classes
* additional architecture loongarch64
* different way how to import library
Signed-off-by: Peter Marko <peter.marko@siemens.com> Cc: Joshua Watt <JPEWhacker@gmail.com> Cc: Bruce Ashfield <bruce.ashfield@gmail.com> Cc: Jose Quaresma <jose.quaresma@foundries.io> Signed-off-by: Steve Sakoman <steve@sakoman.com>
This change adds a patch that is a partial backport of an upstream
commit[1].
It fixes a bug in go's DNS resolver that was causing a docker issue
where the first "docker pull" always fails after system boot if docker
daemon is started before networking is completely up.
Soumya Sambu [Fri, 17 Nov 2023 09:21:03 +0000 (09:21 +0000)]
sudo: upgrade 1.9.13p3 -> 1.9.15p2
License-update: file removed upstream
Drop patch as issue fixed upstream.
Changelog:
===========
1.9.15p2
* Fixed a bug on BSD systems where sudo would not restore the
terminal settings on exit if the terminal had parity enabled.
GitHub issue #326.
1.9.15p1
* Fixed a bug introduced in sudo 1.9.15 that prevented LDAP-based
sudoers from being able to read the ldap.conf file.
GitHub issue #325.
1.9.15
* Fixed an undefined symbol problem on older versions of macOS
when "intercept" or "log_subcmds" are enabled in sudoers.
GitHub issue #276.
* Fixed "make check" failure related to getpwent(3) wrapping
on NetBSD.
* Fixed the warning message for "sudo -l command" when the command
is not permitted. There was a missing space between "list" and
the actual command due to changes in sudo 1.9.14.
* Fixed a bug where output could go to the wrong terminal if
"use_pty" is enabled (the default) and the standard input, output
or error is redirected to a different terminal. Bug #1056.
* The visudo utility will no longer create an empty file when the
specified sudoers file does not exist and the user exits the
editor without making any changes. GitHub issue #294.
* The AIX and Solaris sudo packages on www.sudo.ws now support
"log_subcmds" and "intercept" with both 32-bit and 64-bit
binaries. Previously, they only worked when running binaries
with the same word size as the sudo binary. GitHub issue #289.
* The sudoers source is now logged in the JSON event log. This
makes it possible to tell which rule resulted in a match.
* Running "sudo -ll command" now produces verbose output that
includes matching rule as well as the path to the sudoers file
the matching rule came from. For LDAP sudoers, the name of the
matching sudoRole is printed instead.
* The embedded copy of zlib has been updated to version 1.3.
* The sudoers plugin has been modified to make it more resilient
to ROWHAMMER attacks on authentication and policy matching.
This addresses CVE-2023-42465.
* The sudoers plugin now constructs the user time stamp file path
name using the user-ID instead of the user name. This avoids a
potential problem with user names that contain a path separator
('/') being interpreted as part of the path name. A similar
issue in sudo-rs has been assigned CVE-2023-42456.
* A path separator ('/') in a user, group or host name is now
replaced with an underbar character ('_') when expanding escapes
in @include and @includedir directives as well as the "iolog_file"
and "iolog_dir" sudoers Default settings.
* The "intercept_verify" sudoers option is now only applied when
the "intercept" option is set in sudoers. Previously, it was
also applied when "log_subcmds" was enabled. Sudo 1.9.14
contained an incorrect fix for this. Bug #1058.
* Changes to terminal settings are now performed atomically, where
possible. If the command is being run in a pseudo-terminal and
the user's terminal is already in raw mode, sudo will not change
the user's terminal settings. This prevents concurrent sudo
processes from restoring the terminal settings to the wrong values.
GitHub issue #312.
* Reverted a change from sudo 1.9.4 that resulted in PAM session
modules being called with the environment of the command to be
run instead of the environment of the invoking user.
GitHub issue #318.
* New Indonesian translation from translationproject.org.
* The sudo_logsrvd server will now raise its open file descriptor
limit to the maximum allowed value when it starts up. Each
connection can require up to nine open file descriptors so the
default soft limit may be too low.
* Better log message when rejecting a command if the "intercept"
option is enabled and the "intercept_allow_setid" option is
disabled. Previously, "command not allowed" would be logged and
the user had no way of knowing what the actual problem was.
* Sudo will now log the invoking user's environment as "submitenv"
in the JSON logs. The command's environment ("runenv") is no
longer logged for commands rejected by the sudoers file or an
approval plugin.
1.9.14p3
* Fixed a crash with Python 3.12 when the sudo Python plugin is
unloaded. This only affects "make check" for the Python plugin.
* Adapted the sudo Python plugin test output to match Python 3.12.
1.9.14p2
* Fixed a crash on Linux systems introduced in version 1.9.14 when
running a command with a NULL argv[0] if "log_subcmds" or
"intercept" is enabled in sudoers.
* Fixed a problem with "stair-stepped" output when piping or
redirecting the output of a sudo command that takes user input.
* Fixed a bug introduced in sudo 1.9.14 that affects matching
sudoers rules containing a Runas_Spec with an empty Runas user.
These rules should only match when sudo's -g option is used but
were matching even without the -g option. GitHub issue #290.
1.9.14p1
* Fixed an invalid free bug in sudo_logsrvd that was introduced
in version 1.9.14 which could cause sudo_logsrvd to crash.
* The sudoers plugin no longer tries to send the terminal name
to the log server when no terminal is present. This bug was
introduced in version 1.9.14.
1.9.14
* Fixed a bug where if the "intercept" or "log_subcmds" sudoers
option was enabled and a sub-command was run where the first
entry of the argument vector didn't match the command being run.
This resulted in commands like "sudo su -" being killed due to
the mismatch. Bug #1050.
* The sudoers plugin now canonicalizes command path names before
matching (where possible). This fixes a bug where sudo could
execute the wrong path if there are multiple symbolic links with
the same target and the same base name in sudoers that a user is
allowed to run. GitHub issue #228.
* Improved command matching when a chroot is specified in sudoers.
The sudoers plugin will now change the root directory id needed
before performing command matching. Previously, the root directory
was simply prepended to the path that was being processed.
* When NETGROUP_BASE is set in the ldap.conf file, sudo will now
perform its own netgroup lookups of the host name instead of
using the system innetgr(3) function. This guarantees that user
and host netgroup lookups are performed using the same LDAP
server (or servers).
* Fixed a bug introduced in sudo 1.9.13 that resulted in a missing
" ; " separator between environment variables and the command
in log entries.
* The visudo utility now displays a warning when it ignores a file
in an include dir such as /etc/sudoers.d.
* When running a command in a pseudo-terminal, sudo will initialize
the terminal settings even if it is the background process.
Previously, sudo only initialized the pseudo-terminal when running
in the foreground. This fixes an issue where a program that
checks the window size would read the wrong value when sudo was
running in the background.
* Fixed a bug where only the first two digits of the TSID field
being was logged. Bug #1046.
* The "use_pty" sudoers option is now enabled by default. To
restore the historic behavior where a command is run in the
user's terminal, add "Defaults !use_pty" to the sudoers file.
GitHub issue #258.
* Sudo's "-b" option now works when the command is run in a
pseudo-terminal.
* When disabling core dumps, sudo now only modifies the soft limit
and leaves the hard limit as-is. This avoids problems on Linux
when sudo does not have CAP_SYS_RESOURCE, which may be the case
when run inside a container. GitHub issue #42.
* Sudo configuration file paths have been converted to colon-separated
lists of paths. This makes it possible to have configuration
files on a read-only file system while still allowing for local
modifications in a different (writable) directory. The new
--enable-adminconf configure option can be used to specify a
directory that is searched for configuration files in preference
to the sysconfdir (which is usually /etc).
* The NETGROUP_QUERY ldap.conf parameter can now be disabled for
LDAP servers that do not support querying the nisNetgroup object
by its nisNetgroupTriple attribute, while still allowing sudo to
query the LDAP server directly to determine netgroup membership.
* Fixed a long-standing bug where a sudoers rule without an explicit
runas list allowed the user to run a command as root and any
group instead of just one of the groups that root is a member
of. For example, a rule such as "myuser ALL = ALL" would permit
"sudo -u root -g othergroup" even if root did not belong to
"othergroup".
* Fixed a bug where a sudoers rule with an explicit runas list
allowed a user to run sudo commands as themselves. For example,
a rule such as "myuser ALL = (root) ALL", "myuser" should only
allow commands to be run as root (optionally using one of root's
groups). However, the rule also allowed the user to run
"sudo -u myuser -g myuser command".
* Fixed a bug that prevented the user from specifying a group on
the command line via "sudo -g" if the rule's Runas_Spec contained
a Runas_Alias.
* Sudo now requires a C compiler that conforms to ISO C99 or higher
to build.
Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Yogita Urade [Fri, 17 Nov 2023 11:13:49 +0000 (11:13 +0000)]
grub: fix CVE-2023-4692
An out-of-bounds write flaw was found in grub2's NTFS filesystem driver.
This issue may allow an attacker to present a specially crafted NTFS
filesystem image, leading to grub's heap metadata corruption. In some
circumstances, the attack may also corrupt the UEFI firmware heap metadata.
As a result, arbitrary code execution and secure boot protection bypass
may be achieved.
Ross Burton [Fri, 3 Nov 2023 13:28:11 +0000 (13:28 +0000)]
cve-check: don't warn if a patch is remote
We don't make do_cve_check depend on do_unpack because that would be a
waste of time 99% of the time. The compromise here is that we can't
scan remote patches for issues, but this isn't a problem so downgrade
the warning to a note.
Also move the check for CVEs in the filename before the local file check
so that even with remote patches, we still check for CVE references in
the name.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 0251cad677579f5b4dcc25fa2f8552c6040ac2cf) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 23 Oct 2023 17:38:22 +0000 (18:38 +0100)]
cve-check: slightly more verbose warning when adding the same package twice
Occasionally the cve-check tool will warn that it is adding the same
package twice. Knowing what this package is might be the first step
towards understanding where this message comes from.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c1179faec8583a8b7df192cf1cbf221f0e3001fc) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Ross Burton [Mon, 23 Oct 2023 17:38:21 +0000 (18:38 +0100)]
cve-check: sort the package list in the JSON report
The JSON report generated by the cve-check class is basically a huge
list of packages. This list of packages is, however, unsorted.
To make things easier for people comparing the JSON, or more
specifically for git when archiving the JSON over time in a git
repository, we can sort the list by package name.
Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e9861be0e5020830c2ecc24fd091f4f5b05da036) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Soumya Sambu [Fri, 3 Nov 2023 08:54:19 +0000 (08:54 +0000)]
libwebp: Fix CVE-2023-4863
Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187
allowed a remote attacker to perform an out of bounds memory write via
a crafted HTML page.
Removed CVE-2023-5129.patch as CVE-2023-5129 is duplicate of CVE-2023-4863.
Peter Marko [Sun, 29 Oct 2023 23:39:43 +0000 (00:39 +0100)]
libxml2: Patch CVE-2023-45322
Backport patch for gitlab issue mentioned in NVD CVE report.
* https://gitlab.gnome.org/GNOME/libxml2/-/issues/583
Backport also one of 14 patches for older issue with similar errors
to have clean cherry-pick without patch fuzz.
* https://gitlab.gnome.org/GNOME/libxml2/-/issues/344
The CVE is disputed because the maintainer does not think that
errors after memory allocation failures are not critical enough
to warrant a CVE ID.
This patch will formally fix reported error case, trying to backport
another 13 patches and resolve conflicts would be probably overkill
due to disputed state.
This CVE was ignored on master branch (as diputed).
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
And creates separate sub packages for firmwares corresponding to following list of
licenses:
LICENSE.amphion_vpu
LICENCE.cw1200
LICENSE.ice_enhanced
LICENCE.mediatek
LICENCE.microchip
LICENCE.moxa
LICENSE.nxp_mc_firmware
LICENCE.OLPC
LICENCE.phanfw
LICENCE.qla2xxx
LICENCE.ti-keystone
LICENCE.wl1251
LICENCE.xc4000
LICENCE.xc5000
LICENCE.xc5000c
Some licenses only allow usage of corresponding firmwares when a specific
hardware is present. This requires split of such firmwares from linux-firmware
package to firmware specific sub package. As this split is based off of
licensing, it makes sense to group firmware blobs having the same license in the
same package. This commit is a first step in this direction, and creates
separate packages for cirrus and cnm firmware.
Niko Mauno [Thu, 26 Oct 2023 16:01:44 +0000 (16:01 +0000)]
package_rpm: Allow compression mode override
Commit 4a4d5f78a6962dda5f63e9891825c80a8a87bf66 ("package_rpm: use zstd
instead of xz") changed the rpm package compressor from 'xz' to 'zstd'
which results in decompression failure with BusyBox-provided 'rpm2cpio'
applet and 'rpm' applet when given the '-i' (Install package) option:
rpm2cpio: no gzip/bzip2/xz magic
Introduce a variable which makes it possible to use a different
compression mode, making it possible to override the default value for
example like
Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Major changes between OpenSSL 3.0.11 and OpenSSL 3.0.12 [24 Oct 2023]
* Mitigate incorrect resize handling for symmetric cipher keys and IVs. (CVE-2023-5363)
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the Curl package. This flaw allows an attacker to insert
cookies into a running program using libcurl if the specific series of conditions are met.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
projects / thirdparty / openembedded / openembedded-core.git / log
