Changqing Li [Mon, 15 Mar 2021 01:03:25 +0000 (18:03 -0700)]
report-error.bbclass: replace angle brackets with < and >
when we have below content in local.conf or auto.conf:
BUILDHISTORY_COMMIT_AUTHOR ?= "Khem Raj <raj.khem@gmail.com>"
send-error-report will fail with "HTTP Error 500: OK"
error-report-web do rudimentary check on all fields that are
passed to the graphs page to avoid any XSS happening, if contains
'<', the server will return error(Invalid characters in json).
fixed by use escape of <> to replace it.
NOTE: with this change, error-report-web need to add filter 'safe'
for the string wanted to display to avoid further HTML escaping
prior to output. Below is how the content displayed on webpage:
with the filter 'safe':
BUILDHISTORY_COMMIT_AUTHOR ?= "Khem Raj <raj.khem@gmail.com>"
without the filter 'safe':
BUILDHISTORY_COMMIT_AUTHOR ?= "Khem Raj <raj.khem@gmail.com>"
Another patch for error-report-web will send to yocto mail list.
[YOCTO #13252]
Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
Martin Jansa [Thu, 14 Mar 2024 07:08:58 +0000 (08:08 +0100)]
insane: add patch-status to default ERROR_QA for all layers
* it's enabled for patches in oe-core for very long time and I was using
it for many other layers as well, so most layers should be in good
shape
* it's also possible to disable it for individual layer as shown
by oe-core in:
https://git.openembedded.org/openembedded-core/commit/meta/classes-global/insane.bbclass?h=scarthgap&id=61a881fdbe8b5a21c6276b8a5d06cc30486b1eb3
Signed-off-by: Martin Jansa <martin.jansa@gmail.com>
Martin Jansa [Wed, 15 Feb 2023 15:59:58 +0000 (16:59 +0100)]
patchreview: use check_upstream_status() from oe.qa
* the idea was to reuse the same function as I've noticed that the
QA check which was added to insane.bbclass in:
https://git.openembedded.org/openembedded-core/commit/?id=76a685bfcf927593eac67157762a53259089ea8a
is in some cases more strcit than scripts/contrib/patchreview.py
To be honest I wasn't aware of scripts/contrib/patchreview.py
existence when I've asked about moving check_upstream_status()
to oe.qa in order to write standalone script just like
patchreview.py, now I don't feel strongly about sharing this
functionality (other than adjusting regexes in patchreview.py)
* it finds one "new" issue in oe-core:
Malformed Upstream-Status 'Malformed Upstream-Status in patch
meta/recipes-support/libssh2/files/0001-Don-t-let-host-enviroment-to-decide-if-a-test-is-bui.patch
Please correct according to https://www.openembedded.org/wiki/Commit_Patch_Message_Guidelines#Patch_Header_Recommendations:_Upstream-Status :
Upstream-Status: Inappropriate[oe specific]' (meta/recipes-support/libssh2/files/0001-Don-t-let-host-enviroment-to-decide-if-a-test-is-bui.patch)
* but unlike the QA check patchreview.py will report this:
-Upstream-Status: Submitted [https://github.com/madler/zlib/pull/599]
+Upstream-Broken-Status: Submitted [https://github.com/madler/zlib/pull/599]
as a missing Upstream-Status instead of malformed as reported by QA check:
ERROR: zlib-native-1.2.13-r0 do_patch: QA Issue: Malformed Upstream-Status in patch
/OE/build/oe-core/openembedded-core/meta/recipes-core/zlib/zlib/0001-configure-Pass-LDFLAGS-to-link-tests.patch
Please correct according to https://www.openembedded.org/wiki/Commit_Patch_Message_Guidelines#Patch_Header_Recommendations:_Upstream-Status :
Upstream-Broken-Status: Submitted [https://github.com/madler/zlib/pull/599] [patch-status-core]
* RFC: let me know if you think it's worth re-working this to better
integrate (e.g. detecting Upstream-Broken-Status and not repeating
.patch path in patchreview.py output) or if I should just adjust
regexes in patchreview.py.
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
../../../Linux-PAM-1.5.3/modules/pam_namespace/pam_namespace.c:326:11: error: call to undeclared function 'dirname'; ISO C99 and later do not support implicit function declarations [-Wimplicit-function-declaration]
326 | parent = dirname(buf);
| ^
../../../Linux-PAM-1.5.3/modules/pam_namespace/pam_namespace.c:326:9: error: incompatible integer to pointer conversion assigning to 'char*' from 'int' [-Wint-conversion]
326 | parent = dirname(buf);
| ^ ~~~~~~~~~~~~
Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
CVE-2024-52615:
A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area
DNS queries. This issue simplifies attacks where malicious DNS responses are injected.
xorg-server 21.1.17
This release contains the fixes for the issues reported in today's security
advisory: https://lists.x.org/archives/xorg/2025-June/062055.html
xorg-server 21.1.18
This release contains an additional fix for CVE-2025-49176 from June 17
security advisory: https://lists.x.org/archives/xorg/2025-June/062055.html
cff1042cce Fix error reporting (false negatives) in SGID tests
Improved SGID test handling by unifying error reporting and using secure temporary directories.
Replaced non-standard exit codes and fixed premature exits to avoid masking failures.
These changes reduced false negatives, increasing overall test pass rates
As discussed in [1], this commit fixes CVE-2024-41996.
Although openssl project does not consider this a vulnerability, it got
CVE number assigned so it deserves attention.
[1] https://github.com/openssl/openssl/pull/25088
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 20 Jul 2025 21:10:38 +0000 (23:10 +0200)]
orc: set CVE_PRODUCT
There are new CVEs reported for this recipe which are not for this
componene, but for a component with same name from apache.
sqlite> select vendor, product, id, count(*) from products where product like 'orc' group by vendor, product, id;
apache|orc|CVE-2018-8015|1
apache|orc|CVE-2025-47436|4
gstreamer|orc|CVE-2024-40897|1
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Roland Kovacs [Thu, 24 Jul 2025 12:40:14 +0000 (14:40 +0200)]
sqlite3: fix CVE-2025-6965
There exists a vulnerability in SQLite versions before 3.50.2 where the
number of aggregate terms could exceed the number of columns available.
This could lead to a memory corruption issue.
Signed-off-by: Roland Kovacs <roland.kovacs@est.tech> Signed-off-by: Steve Sakoman <steve@sakoman.com>
objcopy: Don't extend the output section size
Since the output section contents are copied from the input, don't
extend the output section size beyond the input section size.
Backport a patch from upstream to fix CVE-2025-7545
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=08c3cbe5926e4d355b5cb70bbec2b1eeb40c2944]
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Roland Kovacs [Thu, 17 Jul 2025 11:44:13 +0000 (13:44 +0200)]
libxml2: fix CVE-2025-49795
A NULL pointer dereference vulnerability was found in libxml2 when processing
XPath XML expressions. This flaw allows an attacker to craft a malicious XML
input to libxml2, leading to a denial of service.
Signed-off-by: Roland Kovacs <roland.kovacs@est.tech> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Joe Slater [Wed, 16 Jul 2025 09:01:02 +0000 (02:01 -0700)]
oe-debuginfod: add option for data storage
Storing the data files under $HOME can be unreliable if debuginfod
is used for several projects, especially if $HOME is shared
between machines. We provide an option to save files under the
project directory. The default behavior is unchanged.
Yi Zhao [Wed, 9 Jul 2025 03:03:40 +0000 (11:03 +0800)]
kea: set correct permissions for /var/run/kea
Set the permissions of /var/run/kea to 750 to fix kea server startup
error:
ERROR [kea-dhcp4.dhcp4/445.140718820303936] DHCP4_INIT_FAIL failed to
initialize Kea server: configuration error using file
'/etc/kea/kea-dhcp4.conf': 'socket-name' is invalid: socket
path:/var/run/kea does not exist or does not have permssions = 750
This permission check was introduced by commit[1] in kea 2.4.2.
Below commit on binutils-2.42 stable branch are updated.
x86: Check MODRM for call and jmp in binutils older than 2.45
Test Results:
Before After Diff
No. of expected passes 302 302 0
No. of unexpected failures 2 2 0
No. of untested testcases 1 1 0
No. of unsupported tests 7 7 0
Testing was done and there were no regressions found
Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Changelog:
===========
* Fixed CVE-2025-32462. Sudo's -h (--host) option could be specified
when running a command or editing a file. This could enable a
local privilege escalation attack if the sudoers file allows the
user to run commands on a different host.
* Fixed CVE-2025-32463. An attacker can leverage sudo's -R
(--chroot) option to run arbitrary commands as root, even if
they are not listed in the sudoers file. The chroot support has
been deprecated an will be removed entirely in a future release.
License-Update: Copyright updated to 2025
0001-sudo.conf.in-fix-conflict-with-multilib.patch refreshed for 1.9.17
Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function
(io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing
maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding,
allowing out-of-bounds reads from heap memory, potentially causing application crashes or
arbitrary code execution.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sat, 12 Jul 2025 16:08:27 +0000 (18:08 +0200)]
busybox: apply patch for CVE-2023-39810
Backport patch referencing this CVE.
Note that the hardening is not activated by default, it adds defconfig
option to enable it.
Since it introduces a breaking change, it shouldn't be enabled in LTS
release by default.
This patch makes busybox cpio equivalent in this release to what is
currently in master and in kirkstone.
Also note that gnu cpio also does not have this hardening, but the CVE
is created only against busybox.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Wed, 9 Jul 2025 18:53:21 +0000 (20:53 +0200)]
python3: update CVE product
There are two "new" CVEs reported for python3, their CPEs are:
* CVE-2020-1171: cpe:2.3:a:microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
* CVE-2020-1192: cpe:2.3:a:microsoft:python:*:*:*:*:*:visual_studio_code:*:* (< 2020.5.0)
These are for "Visual Studio Code Python extension".
Solve this by addding CVE vendor to python CVE product to avoid
confusion with Microsoft as vendor.
Examining CVE DB for historical python entries shows:
sqlite> select vendor, product, count(*) from products where product = 'python' or product = 'cpython'
...> or product like 'python%3' group by vendor, product;
microsoft|python|2
python|python|1054
python_software_foundation|python|2
Note that this already shows that cpython product is not used, so
CVE-2023-33595 mentioned in 62598e1138f21a16d8b1cdd1cfe902aeed854c5c
was updated.
But let's keep it for future in case new CVE starts with that again.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 8 Jul 2025 14:40:32 +0000 (10:40 -0400)]
linux-yocto/6.6: update to v6.6.96
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
a5df3a702b2c Linux 6.6.96 18d3f9b8e4b9 ARM: 9354/1: ptrace: Use bitfield helpers f9917821c527 firmware: arm_scmi: Ensure that the message-id supports fastchannel 67a50f572178 firmware: arm_scmi: Add a common helper to check if a message is supported 6f27bbf3de0d nvme: always punt polled uring_cmd end_io work to task_work cdfb20e4b34a spi: spi-cadence-quadspi: Fix pm runtime unbalance c46358d02759 Revert "ipv6: save dontfrag in cork" 1583d908cc77 x86/tools: Drop duplicate unlikely() definition in insn_decoder_test.c ed1f395ea5c0 Kunit to check the longest symbol length 5f4787834cb7 s390/entry: Fix last breaking event handling in case of stack corruption 56aa7679c9f3 media: uvcvideo: Rollback non processed entities on error f165d04c41a3 kbuild: rpm-pkg: simplify installkernel %post cca5bb42b736 scripts: clean up IA-64 code b90dc5d67b68 ksmbd: remove unsafe_memcpy use in session setup 107a48df3f94 ksmbd: Use unsafe_memcpy() for ntlm_negotiate 8302adf60aba drm/amdgpu: switch job hw_fence to amdgpu_fence a5d7cc1647f9 drm/amdgpu: Add kicker device detection f640d011080d drm/i915/gem: Allow EXEC_CAPTURE on recoverable contexts on DG1 a8ceffaeb780 drm/amdgpu: amdgpu_vram_mgr_new(): Clamp lpfn to total vram 5148c7ea69e9 drm/amd/display: Add null pointer check for get_first_active_display() ede04b471596 drm/bridge: cdns-dsi: Wait for Clk and Data Lanes to be ready 252e6e96f9b6 drm/bridge: cdns-dsi: Check return value when getting default PHY config c4ee1b31a540 drm/bridge: cdns-dsi: Fix connecting to next bridge f9b819c39d13 drm/bridge: cdns-dsi: Fix phy de-init and flag it so 2565ff3ac3f5 drm/bridge: cdns-dsi: Fix the clock variable for mode_valid() 76115eafad12 drm/amdkfd: Fix race in GWS queue scheduling 7946a10f8da7 drm/msm/gpu: Fix crash when throttling GPU immediately during boot 50e48e940329 drm/udl: Unregister device before cleaning up on disconnect 5ff3636bcc32 drm/tegra: Fix a possible null pointer dereference 23134a522758 drm/tegra: Assign plane type before registration 9ec447c23753 drm/etnaviv: Protect the scheduler's pending list with its lock 6d7b814c527c drm/cirrus-qemu: Fix pitch programming 66f122e67261 drm/ast: Fix comment on modeset lock bf2c1643abc3 scsi: megaraid_sas: Fix invalid node index 42cf4f016173 HID: wacom: fix kobject reference count leak f531651c394e HID: wacom: fix memory leak on sysfs attribute creation failure 33acbeeb5ad6 HID: wacom: fix memory leak on kobject creation failure f0ffc8076d39 HID: lenovo: Restrict F7/9/11 mode to compact keyboards only 8a89e9c27b77 net: libwx: fix the creation of page_pool 9052c7bca391 btrfs: update superblock's device bytes_used when dropping chunk aeeae8feeaae btrfs: fix a race between renames and directory logging 6ad80378f928 dm-raid: fix variable in journal device check e395e34b0652 Bluetooth: L2CAP: Fix L2CAP MTU negotiation f90d78d65ccc serial: imx: Restore original RXTL for console to fix data loss 40f62f8cf854 dt-bindings: serial: 8250: Make clocks and clock-frequency exclusive f89c40520fa1 staging: rtl8723bs: Avoid memset() in aes_cipher() and aes_decipher() e5e6a5aa3915 EDAC/amd64: Fix size calculation for Non-Power-of-Two DIMMs c82c7041258d smb: client: fix potential deadlock when reconnecting channels ced8eff11a4f drm/bridge: ti-sn65dsi86: Add HPD for DisplayPort connector type 1c9a8a84c5a8 drm/bridge: ti-sn65dsi86: make use of debugfs_init callback ee800ff711c9 drm/i915: fix build error some more 0804d77fd6e6 net: selftests: fix TCP packet checksum 5b63793da82a ALSA: hda/realtek: Fix built-in mic on ASUS VivoBook X507UAR cabed6ba92a9 atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister(). 63528d60673a net: enetc: Correct endianness handling in _enetc_rd_reg64 ad9c4941d32e libbpf: Fix possible use-after-free for externs c61e284d72d6 um: ubd: Add missing error check in start_io_thread() 8f96a2ae16b5 vsock/uapi: fix linux/vm_sockets.h userspace compilation errors d58343f81354 af_unix: Don't set -ECONNRESET for consumed OOB skb. 86136c670569 wifi: mac80211: fix beacon interval calculation overflow 9b9a87f0bd18 libbpf: Fix null pointer dereference in btf_dump__free on allocation failure 591f79625702 attach_recursive_mnt(): do not lock the covering tree when sliding something under it 74fcb3852a2f ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3() 3c709dce1699 atm: clip: prevent NULL deref in clip_push() 64a99eff8dcf lib/group_cpus: fix NULL pointer dereference from group_cpus_evenly() 88f3869649ed s390/pkey: Prevent overflow in size calculation for memdup_user() db33aa6c5c93 ASoC: amd: yc: Add DMI quirk for Lenovo IdeaPad Slim 5 15 490a43d07f16 mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on write c9036b6390af i2c: robotfuzz-osif: disable zero-length read messages 4841060d2e7a i2c: tiny-usb: disable zero-length read messages fad0a2c16062 af_unix: Don't leave consecutive consumed OOB skbs. aabb458c33d9 af_unix: Don't call skb_get() for OOB skb. 0919388ac44f af_unix: Define locking order for U_RECVQ_LOCK_EMBRYO in unix_collect_skb(). fd3af69c14ed af_unix: Define locking order for U_LOCK_SECOND in unix_state_double_lock(). b7904e2fccd0 af_unix: Define locking order for unix_table_double_lock(). 47847495a6ea platform/x86: ideapad-laptop: use usleep_range() for EC polling 6e7af3d4f67f platform/x86: ideapad-laptop: move ACPI helpers from header to source file f8761b11f1c0 platform/x86: ideapad-laptop: move ymc_trigger_ec from lenovo-ymc d19ae7b033b2 platform/x86: ideapad-laptop: introduce a generic notification chain b6b5bcae7aa5 dummycon: Trigger redraw when switching consoles with deferred takeover 8853bad7634f tty: vt: make consw::con_switch() return a bool e9ba8c528b8f tty: vt: sanitize arguments of consw::con_clear() 0b10b5ab7d1d tty: vt: make init parameter of consw::con_init() a bool 7bf946a284c3 PCI: apple: Set only available ports up b8704eef56c5 PCI: apple: Use helper function for_each_child_of_node_scoped() df1d7e879edd uio_hv_generic: Align ring size to system page ca0198894bf9 uio_hv_generic: Query the ringbuffer size for device ebba6cc0781c Drivers: hv: vmbus: Add utility function for querying ring size 3bc5abf8e75a f2fs: don't over-report free space or inodes in statvfs 9830ef1803a5 ASoC: codecs: wcd9335: Fix missing free of regulator supplies 28b6ef1ab65d ASoC: codec: wcd9335: Convert to GPIO descriptors 99d696842287 ASoC: codecs: wcd9335: Handle nicer probe deferral and simplify with dev_err_probe() 0c40fa81f850 jfs: validate AG parameters in dbMount() to prevent crashes 7747d3f9a506 fs/jfs: consolidate sanity checking in dbMount fc97a116dc49 btrfs: handle csum tree error with rescue=ibadroots correctly 2cbeb47ea983 ovl: Check for NULL d_inode() in ovl_dentry_upper() d120737a6da7 scsi: ufs: core: Don't perform UFS clkscaling during host async scan acc1d4cc47f1 ceph: fix possible integer overflow in ceph_zero_objects() f3465bb32050 ALSA: usb-audio: Add a quirk for Lenovo Thinkpad Thunderbolt 3 dock 789a3f63bd60 ALSA: hda: Add new pci id for AMD GPU display HD audio controller b8cd384c53ae ALSA: hda: Ignore unsol events for cards being shut down 23fe269bfab3 usb: typec: mux: do not return on EOPNOTSUPP in {mux, switch}_set 8851e4058701 usb: typec: displayport: Receive DP Status Update NAK request exit dp altmode 00626325dba7 usb: cdc-wdm: avoid setting WDM_READ for ZLP-s 433cb3e70dc9 usb: Add checks for snprintf() calls in usb_alloc_dev() 0aaf810416c9 usb: common: usb-conn-gpio: use a unique name for usb connector device 8e958d10dd0c tty: serial: uartlite: register uart driver in init a33f507f36d5 usb: potential integer overflow in usbg_make_tpg() a8d1b4f219e8 misc: tps6594-pfsm: Add NULL pointer check in tps6594_pfsm_probe() 1063c586a35c iio: adc: ad_sigma_delta: Fix use of uninitialized status_pos 41732f9febdc usb: dwc2: also exit clock_gating when stopping udc while suspended 8217fa7d92f0 coresight: Only check bottom two claim bits 8dbc01f09cad um: use proper care when taking mmap lock during segfault 265ca1741075 um: Add cmpxchg8b_emu and checksum functions to asm-prototypes.h 462215a2a3f4 iio: pressure: zpa2326: Use aligned_s64 for the timestamp c5734f9bab6f drm/scheduler: signal scheduled fence when kill job 553f560e0a74 bcache: fix NULL pointer in cache_set_flush() 9d578589e3ec amd/amdkfd: fix a kfd_process ref leak 2fb2470bc683 md/md-bitmap: fix dm-raid max_write_behind setting aaef4f1f44b3 PCI: apple: Fix missing OF node reference in apple_pcie_setup_port 969c9646f0d0 PCI: dwc: Make link training more robust by setting PORT_LOGIC_LINK_WIDTH to one lane 7d942dbcd155 dmaengine: xilinx_dma: Set dma_device directions e0051a3daa8b dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using c765f592adc7 rust: module: place cleanup_module() in .exit.text section efe5db9d98b1 ksmbd: provide zero as a unique ID to the Mac client f72093f270ea ksmbd: allow a filename to contain special characters on SMB3.1.1 posix extension ad804e3648d3 hwmon: (pmbus/max34440) Fix support for max34451 2d8b3898caf5 NFSv4: xattr handlers should check for absent nfs filehandles 9d90ab45d3d3 cxl/region: Add a dev_err() on missing target list entries 96715eb1a120 fuse: fix race between concurrent setattrs from multiple nodes a13b2634dd66 leds: multicolor: Fix intensity setting while SW blinking c3616dfddf1d sunrpc: don't immediately retransmit on seqno miss f0ba7e6d06f2 mfd: max14577: Fix wakeup source leaks on device unbind 35cda8619d97 mailbox: Not protect module_put with spin_lock_irqsave 7d03b140af33 NFSv4.2: fix listxattr to return selinux security label cad6f283f6a6 NFSv4: Always set NLINK even if the server doesn't support it 670c1c546cda cifs: Fix encoding of SMB1 Session Setup NTLMSSP Request in non-UNICODE mode 0e7f0e6e14ba cifs: Fix cifs_query_path_info() for Windows NT servers 4a6499ffc84c cifs: Correctly set SMB1 SessionKey field in Session Setup Request 3f5b4c104b7d Linux 6.6.95 218c3629fb8f cifs: Remove duplicate fattr->cf_dtype assignment from wsl_to_fattr() function 6b4311f78a13 gpio: mlxbf3: only get IRQ for device instance 0 f6071c3cfe3a perf evsel: Missed close() when probing hybrid core PMUs 2a673aca82fe RISC-V: KVM: Don't treat SBI HFENCE calls as NOPs e20f0f44ec59 RISC-V: KVM: Fix the size parameter check in SBI SFENCE calls a77d0a14ed47 scsi: elx: efct: Fix memory leak in efct_hw_parse_filter() 21da6d3561f3 arm64/ptrace: Fix stack-out-of-bounds read in regs_get_kernel_stack_nth() 7c631e5cd38e perf/core: Fix WARN in perf_cgroup_switch() bddec730501b perf: Fix cgroup state vs ERROR 2ee6044a6937 perf: Fix sample vs do_exit() 4ca4f418b761 s390/pci: Fix __pcilg_mio_inuser() inline assembly d7094ad35104 platform/loongarch: laptop: Add backlight power control support 7b47919aff63 smb: client: fix first command failure during re-negotiation cc77844d61f7 Revert "cpufreq: tegra186: Share policy per cluster" eb74c6f1b209 ARM: dts: am335x-bone-common: Increase MDIO reset deassert delay to 50ms 94ec33e9600b ARM: dts: am335x-bone-common: Increase MDIO reset deassert time 2f38986e93d3 platform/x86: ideapad-laptop: add missing Ideapad Pro 5 fn keys e9a011fc6b04 serial: sh-sci: Increment the runtime usage counter for the earlycon device cfa7fa02078d net: make for_each_netdev_dump() a little more bug-proof b8ced2b9a23a smb: Log an error when close_all_cached_dirs fails aaaa689aa29d dt-bindings: i2c: nvidia,tegra20-i2c: Specify the required properties 6377977485f7 EDAC/amd64: Correct number of UMCs for family 19h models 70h-7fh a5e3a1442688 net: atm: fix /proc/net/atm/lec handling dffd03422ae6 net: atm: add lec_mutex bde8833eb075 calipso: Fix null-ptr-deref in calipso_req_{set,del}attr(). 3162d8235c8c ublk: santizize the arguments from userspace when adding a device 66bba1fd5bad net: lan743x: fix potential out-of-bounds write in lan743x_ptp_io_event_clock_get() 7382b6f7d102 net: microchip: lan743x: Reduce PTP timeout on HW failure 235aa081e2d9 tcp: fix passive TFO socket having invalid NAPI ID d3dfe821dfe0 tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer 9d0ddfb574a2 tcp: fix tcp_packet_delayed() for tcp_is_non_sack_preventing_reopen() behavior 3261c017a7c5 atm: atmtcp: Free invalid length skb in atmtcp_c_send(). a06078164001 mpls: Use rcu_dereference_rtnl() in mpls_route_input_rcu(). 4e9ab5c48ad5 wifi: carl9170: do not ping device which has failed to load firmware 43e3433a48c3 ptp: allow reading of currently dialed frequency to succeed on free-running clocks a8c669bbc831 ptp: fix breakage after ptp_vclock_in_use() rework aaef8e3a54b9 e1000e: set fixed clock frequency indication for Nahum 11 and Nahum 13 f4c19a8e51ee net: ice: Perform accurate aRFS flow match 8662ac79a634 aoe: clean device rq_list in aoedev_downdev() 9311d6d1a54f pldmfw: Select CRC32 when PLDMFW is selected 4c8f5b0483ac hwmon: (occ) fix unaligned accesses 1312d9bf88be hwmon: (occ) Rework attribute registration for stack usage ff3dcf7f8184 drm/i915/pmu: Fix build error with GCOV and AutoFDO enabled af2f5f21599a drm/nouveau/bl: increase buffer size to avoid truncate warning b599b310380a ionic: Prevent driver/fw getting out of sync on devcmd(s) 002aa3ed19f3 drm/msm/dsi/dsi_phy_10nm: Fix missing initial VCO rate 77087a79779c drm/msm/disp: Correct porch timing for SDM845 7e6980c225c1 smb: fix secondary channel creation issue with kerberos by populating hostname when adding channels 599c489eea79 sunrpc: handle SVC_GARBAGE during svc auth processing as auth error 5e5d2ad9765a erofs: remove unused trace event erofs_destroy_inode 2536810df13f bpf: Fix L4 csum update on IPv6 in CHECKSUM_COMPLETE f6393e5cb913 net: Fix checksum update for ILA adj-transport 3977946f61cd mm/huge_memory: fix dereferencing invalid pmd migration entry af6cfcd0efb7 mm/hugetlb: unshare page tables during VMA split, not before 39c86833f973 iio: accel: fxls8962af: Fix temperature calculation 3d849cc3dfd3 ALSA: hda/realtek: enable headset mic on Latitude 5420 Rugged f80e551050e4 ALSA: hda/intel: Add Thinkpad E15 to PM deny list d61975567d9d ALSA: usb-audio: Rename ALSA kcontrol PCM and PCM1 for the KTMicro sound card 6562806f3200 arm64: Restrict pagetable teardown to avoid false warning 66bde385a1d3 wifi: rtw89: pci: use DBI function for 8852AE/8852BE/8851BE eeacfbab9842 wifi: cfg80211: init wiphy_work before allocating rfkill fails 6d60d822809b Input: sparcspkr - avoid unannotated fall-through 3902205eadf3 atm: Revert atm_account_tx() if copy_from_iter_full() fails. c1a2081f0347 platform/x86/intel-uncore-freq: Fail module load when plat_info is NULL 2753481c40af selinux: fix selinux_xfrm_alloc_user() to set correct ctx_len 0902625a24ee ksmbd: fix null pointer dereference in destroy_previous_session 2a03531c00b2 selftests/x86: Add a test to detect infinite SIGTRAP handler loop 372b511e9345 udmabuf: use sgtable-based scatterlist wrappers bfa4d86e130a net: clear the dst when changing skb protocol 0357da9149ea net_sched: sch_sfq: reject invalid perturb period bb9d4ffff6d8 scsi: s390: zfcp: Ensure synchronous unit_add 8d60df50e62f scsi: storvsc: Increase the timeouts to storvsc_timeout a504536c2923 smb: improve directory cache reuse for readdir operations 202d7e838967 cifs: do not disable interface polling on failure 58021a32f25e cifs: serialize other channels when query server interfaces is pending b530c44e1f38 cifs: deal with the channel loading lag while picking channels cd42ddddd70a jffs2: check jffs2_prealloc_raw_node_refs() result in few other places 3f46644a5131 jffs2: check that raw node were preallocated before writing summary b427d98d5521 LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset() 099cfcb98fb4 LoongArch: Avoid using $r0/$r1 as "mask" for csrxchg 782baee5d917 platform/loongarch: laptop: Unregister generic_sub_drivers on exit 3bce9e6be030 platform/loongarch: laptop: Get brightness setting from EC on probe 1921781ec4a8 drivers/rapidio/rio_cm.c: prevent possible heap overwrite 675d90ee874c io_uring: fix task leak issue in io_wq_create() 3c3c7c66bdfa Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older af4ed5262d30 powerpc/eeh: Fix missing PE bridge reconfiguration during VFIO EEH recovery a7f3cfc1eb99 powerpc/vdso: Fix build of VDSO32 with pcrel dd95b3e00346 platform/x86: dell_rbu: Stop overwriting data buffer f3b840fb1508 platform/x86: dell_rbu: Fix list usage 523e2f8a7f83 platform/x86/amd: pmc: Clear metrics table at start of cycle 7d71ba5b0a01 fs/xattr.c: fix simple_xattr_list() 897e6d88f0e3 Revert "bus: ti-sysc: Probe for l4_wkup and l4_cfg interconnect devices first" cdc1b9b47bc5 tee: Prevent size calculation wraparound on 32-bit kernels 59b7304d0dff ARM: OMAP2+: Fix l4ls clk domain handling in STANDBY bca6fe52bd95 bus: fsl-mc: increase MC_CMD_COMPLETION_TIMEOUT_MS value c85311a73d74 watchdog: da9052_wdt: respect TWDMIN 519ba75728ee fbcon: Make sure modelist not set on unregistered console 8df53ee74cac wifi: ath12k: Pass correct values of center freq1 and center freq2 for 160 MHz 2304e2b5e470 wifi: ath12k: fix incorrect CE addresses 9db1bf90147c wifi: ath12k: fix link valid field initialization in the monitor Rx 6bd0f2e71b15 wifi: ath11k: determine PM policy based on machine model 42d0bfbe0296 octeontx2-pf: Add error log forcn10k_map_unmap_rq_policer() a37888a435b0 net: ethernet: cortina: Use TOE/TSO on all TCP 38c4106cb4e9 bpf, sockmap: Fix data lost during EAGAIN retries bdb4da9e1921 f2fs: fix to set atomic write status more clear a3c32f17acbf usbnet: asix AX88772: leave the carrier control to phylink e036d648773c ice: fix check for existing switch rule 8cde755f5616 i40e: fix MMIO write access to an invalid page in i40e_clear_hw 52a16bafda0e sock: Correct error checking condition for (assign|release)_proto_idx() 34c0a670556b scsi: lpfc: Use memcpy() for BIOS version 79dc5e78d13d wifi: ath12k: fix failed to set mhi state error during reboot with hardware grouping 5cf32cef3a38 pinctrl: mcp23s08: Reset all pins to input at probe f9397cf7bfb6 software node: Correct a OOB check in software_node_get_reference_args() 03545901ec09 net: ethernet: ti: am65-cpsw: handle -EPROBE_DEFER c0d8c14d9bf2 vxlan: Do not treat dst cache initialization errors as fatal b4c83b37490d net: bridge: mcast: re-implement br_multicast_{enable, disable}_port functions cd97899361bc net: bridge: mcast: update multicast contex when vlan state is changed a0ab9e9148dd wifi: iwlwifi: Add missing MODULE_FIRMWARE for Qu-c0-jf-b0 172d1e4a6804 wifi: mac80211: VLAN traffic in multicast path 4fc2b3c0657b wifi: mac80211_hwsim: Prevent tsf from setting if beacon is disabled 2077cef44d33 wifi: iwlwifi: pcie: make sure to lock rxq->read 920fcc7adc73 iommu/amd: Ensure GA log notifier callbacks finish running before module unload 32f25633f366 scsi: lpfc: Fix lpfc_check_sli_ndlp() handling for GEN_REQUEST64 commands c697dac96937 libbpf: Add identical pointer detection to btf_dedup_is_equiv() f11cfb48f2d2 clk: rockchip: rk3036: mark ddrphy as critical dfec43c50376 wifi: mac80211: do not offer a mesh path if forwarding is disabled efa7997ce846 wireless: purelifi: plfxlc: fix memory leak in plfxlc_usb_wreq_asyn() 187829fb0c35 net: vertexcom: mse102x: Return code for mse102x_rx_pkt_spi 84d34bd55d6a net: mlx4: add SOF_TIMESTAMPING_TX_SOFTWARE flag when getting ts info ae48bc0b8be8 pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get() 8a15a5438c58 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_gpio_set_direction() 02c966a8869b pinctrl: armada-37xx: propagate error from armada_37xx_gpio_get_direction() 14a26f669206 pinctrl: armada-37xx: propagate error from armada_37xx_pmx_set_by_name() 79f3e44df6e6 net: atlantic: generate software timestamp just before the doorbell 9121c2ddd177 ipv4/route: Use this_cpu_inc() for stats on PREEMPT_RT 62b62a2a6dc5 x86/sgx: Prevent attempts to reclaim poisoned pages c1025a54289b tcp: fix initial tp->rcvq_space.space value for passive TS enabled flows 156b6bac7645 tcp: always seek for minimal rtt in tcp_rcv_rtt_update() 969d61aa168c wifi: rtw89: leave idle mode when setting WEP encryption for AP mode f11520c6174c wifi: ath11k: Fix QMI memory reuse logic dcf7bb4397de wifi: ath12k: fix a possible dead lock caused by ab->base_lock 7c4b6d8bd72d wifi: ath12k: fix macro definition HAL_RX_MSDU_PKT_LENGTH_GET 6f79eb2e6816 net: dlink: add synchronization for stats update 04fa1bef29d5 i2c: npcm: Add clock toggle recovery be5f6a65509c i2c: tegra: check msg length in SMBUS block read 762325441e3a cpufreq: scmi: Skip SCMI devices that aren't used by the CPUs a620f66675e5 sctp: Do not wake readers in __sctp_write_space() a0b91fa813d4 wifi: mt76: mt7921: add 160 MHz AP for mt7922 device bf3dcb53ba32 wifi: mt76: mt76x2: Add support for LiteOn WN4516R,WN4519R 2c1a2d863b24 emulex/benet: correct command version selection in be_cmd_get_stats() 24900688ee47 wifi: mt76: mt7996: drop fragments with multicast or broadcast RA 775fdb4042b2 i2c: designware: Invoke runtime suspend on quick slave re-registration 7bf4461f1c97 bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem() 61fc32485d64 f2fs: use vmalloc instead of kvmalloc in .init_{,de}compress_ctx 92dbc2a2e2ec tipc: use kfree_sensitive() for aead cleanup 088279ff18cd net: lan743x: Modify the EEPROM and OTP size for PCI1xxxx devices d2a25ca4134c net: macb: Check return value of dma_set_mask_and_coherent() c148af1f398b ACPI: battery: negate current when discharging 6635356483b8 PM: runtime: fix denying of auto suspend in pm_suspend_timer_fn() 6a7c583f56b9 gpiolib: of: Add polarity quirk for s5m8767 5505ec191f77 ASoC: tegra210_ahub: Add check to of_device_get_match_data() cf961a38e450 ACPICA: utilities: Fix overflow check in vsnprintf() 558ba4afdfe5 power: supply: bq27xxx: Retrieve again when busy 1fee4324b566 ACPICA: fix acpi parse and parseext cache leaks 8621fbeb4db9 ACPI: Add missing prototype for non CONFIG_SUSPEND/CONFIG_X86 case 0ab90839bf6c ACPI: bus: Bail out if acpi_kobj registration fails 7d346ca11a6e ASoC: tas2770: Power cycle amp on ISENSE/VSENSE change 30e11a8cff73 ACPICA: Avoid sequence overread in call to strncmp() 58cf7ba36b94 mmc: Add quirk to disable DDR50 tuning 74f765e85d4b power: supply: collie: Fix wakeup source leaks on device unbind 1c24a738971c clocksource: Fix the CPUs' choice in the watchdog per CPU verification 28ecaebbed55 ASoC: amd: yc: Add quirk for Lenovo Yoga Pro 7 14ASP9 755a8006b767 ACPICA: fix acpi operand cache leak in dswstate.c 3175377e8ee1 iio: adc: ad7606_spi: fix reg write value mask f6a5b84f450b iio: imu: inv_icm42600: Fix temperature calculation fe684290418e mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race 6a860536306e iio: accel: fxls8962af: Fix temperature scan element sign a9f6c1ad6c93 PCI: dw-rockchip: Fix PHY function call sequence in rockchip_pcie_phy_deinit() 0b522796a80f PCI: Fix lock symmetry in pci_slot_unlock() 7f6a2d378425 PCI: Add ACS quirk for Loongson PCIe 9895f9d9b515 PCI: cadence-ep: Correct PBA offset in .set_msix() callback 7ca06d696a2f uio_hv_generic: Use correct size for interrupt and monitor pages 6f824cdd8209 Drivers: hv: Allocate interrupt and monitor pages aligned to system page boundary 37166d63e42c smb: client: add NULL check in automount_fullpath 39ff3774693f cifs: dns resolution is needed only for primary channel 5713127da855 cifs: update dstaddr whenever channel iface is updated 9d80e1d37e85 cifs: reset connections for all channels when reconnect requested 3ee979709e16 remoteproc: core: Release rproc->clean_table after rproc_attach() fails 9515d74c9d1a remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach() a4df96e2e81c regulator: max14577: Add error check for max14577_read_reg() 231f6a1de15b mips: Add -std= flag specified in KBUILD_CFLAGS to vdso CFLAGS dfa9ef978d9c staging: iio: ad5933: Correct settling cycles encoding per datasheet cc3cc41ed670 video: screen_info: Relocate framebuffers behind PCI bridges fa2118e9e233 KVM: s390: rename PROT_NONE to PROT_TYPE_DUMMY 6bd2569d0b2f net: ch9200: fix uninitialised access during mii_nway_restart b1bf167f46dd phy: fsl-imx8mq-usb: fix phy_tx_vboost_level_from_property() 83a692a9792a ftrace: Fix UAF when lookup kallsym after ftrace disabled 6737c4551d2b mtd: rawnand: qcom: Fix read len for onfi param page df4918c0bb49 dm-verity: fix a memory leak if some arguments are specified multiple times 61850a1b2673 dm-mirror: fix a tiny race condition fe0ff7d801fb KVM: VMX: Flush shadow VMCS on emergency reboot 0d7a2ea4351b KVM: SVM: Clear current_vmcb during vCPU free for all *possible* CPUs 7775ab2d53b3 mtd: nand: sunxi: Add randomizer configuration before randomizer enable e06a1dadc481 mtd: rawnand: sunxi: Add randomizer configuration in sunxi_nfc_hw_ecc_write_chunk d3abf0066b5e mm: fix ratelimit_pages update error in dirty_ratio_handler() 23a707bbcbea RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction 442e80dcf6fe watchdog: fix watchdog may detect false positive of softlockup 5180561afff8 ipc: fix to protect IPCS lookups using RCU f24d42245239 clk: meson-g12a: add missing fclk_div2 to spicc ebb8060561d5 parisc: fix building with gcc-15 2f4040a5855a vgacon: Add check for vc_origin address range in vgacon_scroll() 7f27859721ae parisc/unaligned: Fix hex output to show 8 hex chars 3ca78032a388 fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var e32a40db6796 EDAC/altera: Use correct write width with the INTTEST register 0909b2b49c45 fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var 061a5dd66608 net: ftgmac100: select FIXED_PHY 8c5713ce1ced net/sched: fix use-after-free in taprio_dev_notifier a8acc7080ad5 NFC: nci: uart: Set tty->disc_data only in success path d95d87841d2a hwmon: (ftsteutates) Fix TOCTOU race in fts_read() 79ef8a6c4ec5 f2fs: fix to do sanity check on sit_bitmap_size a87cbcc909cc f2fs: prevent kernel warning due to negative i_nlink from corrupted image aaddc6c696bd f2fs: fix to do sanity check on ino and xnid 0f7100e8d9f0 Input: gpio-keys - fix possible concurrent access in gpio_keys_irq_timer() 17474a56acf7 Input: ims-pcu - check record size in ims_pcu_flash_firmware() cf6a4c4ac7b6 ext4: only dirty folios when data journaling regular files 3e8a5163bcd3 ext4: ensure i_size is smaller than maxbytes 68cea04f1fb2 ext4: factor out ext4_get_maxbytes() 223091c9897c ext4: fix calculation of credits for extent tree modification 26e09d18599d ext4: inline: fix len overflow in ext4_prepare_inline_data 55995f172598 bus: fsl-mc: fix GET/SET_TAILDROP command ids 1e474b5fab51 bus: fsl-mc: do not add a device-link for the UAPI used DPMCP device 8edfed4439b1 ata: pata_via: Force PIO for ATAPI devices on VT6415/VT6330 48f35a32947b cgroup,freezer: fix incomplete freezing when attaching tasks 96707ff5818f ceph: set superblock s_magic for IMA fsmagic matching 636391e8c98c can: tcan4x5x: fix power regulator retrieval during probe d5d4be47e06c bus: mhi: host: Fix conflict between power_up and SYSERR 44b9620e82bb bus: mhi: ep: Update read pointer only after buffer is written 838d63de34a9 ARM: omap: pmic-cpcap: do not mess around without CPCAP or OMAP4 c592d3ceca1a ARM: 9447/1: arm/memremap: fix arch_memremap_can_ram_remap() 12cffd5bd1da arm64/mm: Close theoretical race where stale TLB entry remains valid a31dce9b561d media: uvcvideo: Fix deferred probing error c51c0a0be239 media: uvcvideo: Send control events for partial succeeds d314f99b6f19 media: uvcvideo: Return the number of processed controls ec26be7d6355 media: imx-jpeg: Cleanup after an allocation error 20a6db0ef356 media: imx-jpeg: Reset slot data pointers when freed 683a1db6800e media: imx-jpeg: Move mxc_jpeg_free_slot_data() ahead 350d4af0493a media: imx-jpeg: Drop the first error frames f6b1b0f8ba0b media: vivid: Change the siize of the composing 9824e1732a16 media: vidtv: Terminating the subsequent process of initialization failure 17cb043ea133 media: videobuf2: use sgtable-based scatterlist wrappers 36318ff3d6bf media: venus: Fix probe error handling ae7b143e05b3 media: v4l2-dev: fix error handling in __video_register_device() dfb2add0baa7 media: omap3isp: use sgtable-based scatterlist wrappers ac3a8e37cb8e media: mediatek: vcodec: Correct vsi_core framebuffer size 025a943c49c7 media: gspca: Add error handling for stv06xx_read_sensor() ec5c328606ba media: davinci: vpif: Fix memory leak in probe error path 04354c529c82 media: cxusb: no longer judge rbuf when the write fails 4425db511b9d media: ccs-pll: Check for too high VT PLL multiplier in dual PLL case 1e4b3f166795 media: ccs-pll: Correct the upper limit of maximum op_pre_pll_clk_div b9e314231ffc media: ccs-pll: Start OP pre-PLL multiplier search from correct value ae2fe6606511 media: ccs-pll: Start VT pre-PLL multiplier search from correct value eb7a4ea0a18c media: i2c: ds90ub913: Fix returned fmt from .set_fmt() ecaf904a55c1 media: nxp: imx8-isi: better handle the m2m usage_count 585acb354977 media: ov5675: suppress probe deferral errors ce4a5a34a2bf media: ov8856: suppress probe deferral errors aaf516bb732c wifi: rtlwifi: disable ASPM for RTL8723BE with subsystem ID 11ad:1723 d4356ce8f826 wifi: rtw88: usb: Reduce control message timeout to 500 ms 2e7c64d7a92c jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata() 1eeecd9be9fe wifi: ath12k: fix ring-buffer corruption 14f5549ad163 fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio() 5ee9a07b456d SUNRPC: Prevent hang on NFS mount with xprtsec=[m]tls 5060e1a5fef1 nfsd: Initialize ssc before laundromat_work to prevent NULL dereference e7e943ddd1c6 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request f08689fe3153 wifi: ath11k: fix ring-buffer corruption 68b29235778b wifi: ath11k: fix rx completion meta data corruption 0e4dc150423b wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback() 782b3aff6763 net/mlx5: Add error handling in mlx5_query_nic_vport_node_guid() 477e4319c371 net/mlx5_core: Add error handling inmlx5_query_nic_vport_qkey_viol_cntr() 278a92b87463 regulator: max20086: Change enable gpio to optional 420f6942f109 regulator: max20086: Fix MAX200086 chip id bf70b3c3df5f powerpc/pseries/msi: Avoid reading PCI device registers in reduced power states 0257c26bbca5 io_uring/kbuf: account ring io_buffer_list memory a8b5ef355477 io_uring: account drain memory to cgroup abf80985f4d6 ASoC: meson: meson-card-utils: use of_property_present() for DT parsing 3895a7590e6e ASoC: qcom: sdm845: Add error handling in sdm845_slim_snd_hw_params() 40aefac870c1 gfs2: move msleep to sleepable context f5b9144715da crypto: marvell/cesa - Do not chain submitted requests 0df5e4c7de27 configfs: Do not override creating attribute file failure in populate_attrs()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Bruce Ashfield [Tue, 8 Jul 2025 14:40:30 +0000 (10:40 -0400)]
linux-yocto/6.6: update to v6.6.93
Updating linux-yocto/6.6 to the latest korg -stable release that comprises
the following commits:
c2603c511feb4 Linux 6.6.93 c78abb646ff82 ksmbd: use list_first_entry_or_null for opinfo_get_list() 106451492d74c net: ethernet: ti: am65-cpsw: Lower random mac address error print to info 513b27dbd126b platform/x86: thinkpad_acpi: Ignore battery threshold change event notification 871e44494f5d5 platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys af7243148f2eb NFS: Avoid flushing data while holding directory locks in nfs_rename() f83097445b7ec nvme-pci: add NVME_QUIRK_NO_DEEPEST_PS quirk for SOLIDIGM P44 Pro e99de95033051 spi: spi-sun4i: fix early activation b8435b76971dc phy: starfive: jh7110-usb: Fix USB 2.0 host occasional detection failure eae121397e278 drm/amd/display: fix link_set_dpms_off multi-display MST corner case 4728d56dc56f0 um: let 'make clean' properly clean underlying SUBARCH as well af288d8e14058 platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS 764f8cd8aadcd nfs: don't share pNFS DS connections between net namespaces 98f7c351a11a1 HID: quirks: Add ADATA XPG alpha wireless mouse support 46a6ce4812555 dmaengine: idxd: cdev: Fix uninitialized use of sva in idxd_cdev_open cdb61a705f5f3 coredump: hand a pidfd to the usermode coredump helper 1846a7b92b863 coredump: fix error handling for replace_fd() 0ec1e98bf5366 perf/arm-cmn: Initialise cmn->cpu earlier 10778e2f49a2c perf/arm-cmn: Fix REQ2/SNP2 mixup 295f7c579b07b net_sched: hfsc: Address reentrant enqueue adding class to eltree twice ee1209b9f57ba arm64: dts: ti: k3-am68-sk: Fix regulator hierarchy cf27046208bd8 arm64: dts: qcom: sm8550: Add missing properties for cryptobam feadf31790331 arm64: dts: qcom: sm8450: Add missing properties for cryptobam 5dd982ff67d1e arm64: dts: qcom: sm8350: Fix typo in pil_camera_mem node abf3ffaeef603 arm64: dts: qcom: ipq9574: Add missing properties for cryptobam ea61eda1f4b45 af_unix: Fix uninit-value in __unix_walk_scc() ed14f8ae9bcf7 af_unix: Fix garbage collection of embryos carrying OOB with SCM_RIGHTS c0c8d419dade9 af_unix: Add dead flag to struct scm_fp_list. a288920ff9dab af_unix: Don't access successor in unix_del_edges() during GC. 3600729b7fc05 af_unix: Try not to hold unix_gc_lock during accept(). 7b1ffbd3b22e7 af_unix: Remove lock dance in unix_peek_fds(). de7921631ff32 af_unix: Replace garbage collection algorithm. 2c2d0c662d842 af_unix: Detect dead SCC. 324005012f65e af_unix: Assign a unique index to SCC. d23802221f675 af_unix: Avoid Tarjan's algorithm if unnecessary. cdaa3499a8519 af_unix: Skip GC if no cycle exists. e0e23fc499920 af_unix: Save O(n) setup of Tarjan's algo. 27a07364cefdf af_unix: Fix up unix_edge.successor for embryo socket. 36f924e4bf4e7 af_unix: Save listener for embryo socket. 3ee9b24bd6f70 af_unix: Detect Strongly Connected Components. 856aacbe2c520 af_unix: Iterate all vertices by DFS. 494accabb56e2 af_unix: Bulk update unix_tot_inflight/unix_inflight when queuing skb. d2d9f382e2db6 af_unix: Link struct unix_edge when queuing skb. 4fc7df1c6da14 af_unix: Allocate struct unix_edge for each inflight AF_UNIX fd. 9e98ba0c73529 af_unix: Allocate struct unix_vertex for each inflight AF_UNIX fd. 8eb55b667a0e2 af_unix: Remove CONFIG_UNIX_SCM. c0d56c028d90f af_unix: Remove io_uring code for GC. 36f1f6ac53889 af_unix: Replace BUG_ON() with WARN_ON_ONCE(). acc97866c1eae af_unix: Try to run GC async. 328840c93bd6a af_unix: Run GC on only one CPU. 4be073d59068e af_unix: Return struct unix_sock from unix_get_socket(). c7b1bd52a031a btrfs: check folio mapping after unlock in relocate_one_folio() 63815bef47ec2 hrtimers: Force migrate away hrtimers queued after CPUHP_AP_HRTIMERS_DYING 5a9c0d5cbd02d can: kvaser_pciefd: Force IRQ edge in case of nested IRQ f968f28cd14bb drm/gem: Internally test import_attach for imported objects 10aecdc1c30c7 x86/mm/init: Handle the special case of device private pages in add_pages(), to not increase max_pfn and trigger dma_addressing_limited() bounce buffers bounce buffers 367b8b91de2a0 i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work() 1f9170737480d pinctrl: tegra: Fix off by one in tegra_pinctrl_get_group() 4a5e6e798ec77 watchdog: aspeed: fix 64-bit division a9e4ee7f12886 serial: sh-sci: Save and restore more registers 517f928cc0c13 pds_core: Prevent possible adminq overflow/stuck condition 77192e9cfe1b3 highmem: add folio_test_partial_kmap() bc133e43cb565 x86/boot: Compile boot code with -std=gnu11 too 5cdce62dd929a spi: spi-fsl-dspi: Reset SR flags before sending a new message 7cf42e5f406a5 spi: spi-fsl-dspi: Halt the module after a new message transfer 9df00bd4769a0 spi: spi-fsl-dspi: restrict register range for regmap access 0e7efc9acbb56 ksmbd: fix stream write failure fa68d5c14a70d Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection" f391043332e38 mm/page_alloc.c: avoid infinite retries caused by cpuset race 363fd868d7a71 memcg: always call cond_resched() after fn() f33001a7c1e8f Input: xpad - add more controllers ed7d24b0c375f Revert "drm/amd: Keep display off while going into S4" bee465c0c464b smb: client: Reset all search buffer pointers when releasing buffer 17d096c485b89 arm64: dts: marvell: uDPU: define pinctrl state for alarm LEDs 73cadde98f67f smb: client: Fix use-after-free in cifs_fill_dirent 7227fc0692d53 drm/edid: fixed the bug that hdr metadata was not reset 7093887a11fe4 thermal: intel: x86_pkg_temp_thermal: Fix bogus trip temperature f86465626917d platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store() dde5400dad7e7 can: kvaser_pciefd: Continue parsing DMA buf after dropped RX 4cfe30f681a3d llc: fix data loss when reading from a socket in llc_ui_recvmsg() 6764329675f94 ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14ASP10 74d90875f3d43 ALSA: pcm: Fix race of buffer access at PCM OSS layer b5bada85c181f ASoC: SOF: ipc4-pcm: Delay reporting is only supported for playback direction 1beb8c26b1fb1 ASoc: SOF: topology: connect DAI to a single DAI link e8be784d30b44 ASoC: SOF: ipc4-control: Use SOF_CTRL_CMD_BINARY as numid for bytes_ext 1f912f8484e9c can: bcm: add missing rcu read protection for procfs content 76c84c3728178 can: bcm: add locking for bcm_op runtime updates e80f4f9c64b0f can: slcan: allow reception of short error messages 584a729615fa9 padata: do not leak refcount in reorder_work 134daaba93193 crypto: algif_hash - fix double free in hash_accept 0c605de7edd68 clk: s2mps11: initialise clk_hw_onecell_data::num before accessing ::hws[] in probe() 35016086ae593 octeontx2-af: Fix APR entry mapping based on APR_LMT_CFG cc797adde644d octeontx2-af: Set LMT_ENA bit for APR table entries b19fc1d0be3c3 net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done a3d24e4a835cb octeontx2-pf: Add AF_XDP non-zero copy support 93c276942e75d sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() c844ace5b88d0 io_uring: fix overflow resched cqe reordering dbcd0909a1e2c net: lan743x: Restore SGMII CTRL register on resume 0b4cde7284869 net: dwmac-sun8i: Use parsed internal PHY address instead of 1 52b2e5579266f pinctrl: qcom: switch to devm_register_sys_off_handler() 78b70388ca0ec pinctrl: qcom/msm: Convert to platform remove callback returning void df941e11772b3 ice: Fix LACP bonds without SRIOV environment c8a1a805e6d27 ice: fix vf->num_mac count with port representors fa942824b9f4a bridge: netfilter: Fix forwarding of fragmented packets feb6bde1a3241 Bluetooth: btusb: use skb_pull to avoid unsafe access in QCA dump handling c331a616a0b10 Bluetooth: L2CAP: Fix not checking l2cap_chan security level 2b82d8e483bf0 dmaengine: fsl-edma: Fix return code for unhandled interrupts 55f3c97fcba84 dmaengine: idxd: Fix ->poll() return value dcdc1aca6880d xfrm: Sanitize marks before insert a1fad2da94f00 clk: sunxi-ng: d1: Add missing divider for MMC mod clocks c2b52d947c3dd remoteproc: qcom_wcnss: Fix on platforms without fallback regulators 5ff1a234fa4ee kernel/fork: only call untrack_pfn_clear() on VMAs duplicated for fork() 1b388afe88163 dmaengine: idxd: Fix allowing write() from different address spaces 05298c30b7d9f dmaengine: idxd: add wq driver name support for accel-config user tool b58a295d10065 espintcp: remove encap socket caching to avoid reference leak 3cf3d4f11254e soundwire: bus: Fix race on the creation of the IRQ domain d8ece4ced3b05 __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock e6d703b693b4c xenbus: Allow PVH dom0 a non-local xenstore 85d12487d90ab wifi: iwlwifi: add support for Killer on MTL 4e3401aa6e447 tools: ynl-gen: validate 0 len strings from kernel 50d0de59f66cb btrfs: avoid NULL pointer dereference if no valid csum tree 7a97f961a568a btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref 225cc549ed23f cifs: Fix changing times and read-only attr over SMB1 smb_set_file_info() function fc460c12cd1e9 cifs: Fix and improve cifs_query_path_info() and cifs_query_file_info() b72952c8c3668 io_uring/fdinfo: annotate racy sq/cq head/tail reads 3a982ada411b8 nvmet-tcp: don't restore null sk_state_change a7a2315d8d0dc nvme-pci: add quirks for WDC Blue SN550 15b7:5009 0a3f5efd1c545 nvme-pci: add quirks for device 126f:1001 1c0d7792cfc71 ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx dbb47cbdbe2ad ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 4c017ff3d73dd ASoC: cs42l43: Disable headphone clamps during type detection 0ab50f622f202 pinctrl: meson: define the pull up/down resistor value as 60 kOhm 534794c719231 book3s64/radix: Fix compile errors when CONFIG_ARCH_WANT_OPTIMIZE_DAX_VMEMMAP=n 442a247361f8b ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of() fe4a7145f048c drm: Add valid clones check 1c58b332bc435 drm/panel-edp: Add Starry 116KHD024006 e585f4f44a102 drm/atomic: clarify the rules around drm_atomic_state->allow_modeset 5d4951bad74bf drm: bridge: adv7511: fill stream capabilities a7e7cf538939d wifi: ath12k: Fix end offset bit definition in monitor ring descriptor 2dbcaddcf8eab wifi: ath9k: return by of_get_mac_address a21971b4be60f accel/qaic: Mask out SR-IOV PCI resources fbdf410d3bd2e wifi: ath12k: fix ath12k_hal_tx_cmd_ext_desc_setup() info1 override b658e144a0922 regulator: ad5398: Add device tree support df76df11fd8be spi: zynqmp-gqspi: Always acknowledge interrupts ccf4a818d8c31 wifi: rtw89: add wiphy_lock() to work that isn't held wiphy_lock() yet 5e479af4999b0 wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate ee71c34d4f415 wifi: rtl8xxxu: retry firmware download on error 419988f4d0efb perf/amd/ibs: Fix ->config to sample period calculation for OP PMU 0cb6a1292aaef perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt 9610a67963506 firmware: arm_scmi: Relax duplicate name constraint across protocol ids 38d906f1c54b9 bpftool: Fix readlink usage in get_fd_type 0e8eb91a4950f drm/ast: Find VBIOS mode from regular display size e190ed2c12e77 ASoC: rt722-sdca: Add some missing readable registers 48c78cf634dba ASoC: codecs: pcm3168a: Allow for 24-bit in provider mode 123ac614e5b34 arm64: zynqmp: add clock-output-names property in clock nodes 23b0b86ad1db2 HID: usbkbd: Fix the bit shift number for LED_KANA c317b0694a6eb wifi: ath12k: Avoid napi_sync() before napi_enable() 32bcf54138acf scsi: st: Restore some drive settings after reset 1960bb56a9c83 scsi: lpfc: Free phba irq in lpfc_sli4_enable_msi() when pci_irq_vector() fails 3dfeee957aaf3 scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine c34ab75adde53 net/mana: fix warning in the writer of client oob 1d10624a42437 ice: count combined queues using Rx/Tx count 948664b92e571 perf: Avoid the read if the count is already updated f47d605c5e2a6 rcu: fix header guard for rcu_all_qs() 9abec90c85b22 rcu: handle unstable rdp in rcu_read_unlock_strict() 4a36d93a01758 rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y cae56998162cc ice: treat dyn_allowed only as suggestion 9ed3c1b11d7ef bridge: mdb: Allow replace of a host-joined group 961ee132104b0 r8169: don't scan PHY addresses > 0 2cb57a887a435 ipv4: ip_gre: Fix set but not used warning in ipgre_err() if IPv4-only 13cba3f837903 vxlan: Annotate FDB data races 090c0ba179eaf net/mlx5e: Avoid WARN_ON when configuring MQPRIO with HTB offload enabled f312bd5cf2067 media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available 6fed5e23d2a92 f2fs: introduce f2fs_base_attr for global sysfs entries 9af429febfedf hwmon: (xgene-hwmon) use appropriate type for the latency value 70e7df6f69073 clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs ba02bb3a01328 wifi: rtw88: Fix __rtw_download_firmware() for RTL8814AU 0b660a7f296b5 wifi: rtw88: Fix download_firmware_validate() for RTL8814AU 23fe8aa8cc1a8 ext4: remove writable userspace mappings before truncating page cache 73e7c65b21274 ext4: don't write back data before punch hole in nojournal mode 3648ddabcdc25 leds: trigger: netdev: Configure LED blink interval for HW offload 7ef54a11c199d pstore: Change kmsg_bytes storage size to u32 09c3a82664d8f r8152: add vendor/device ID pair for Dell Alienware AW1022z cc1d408e7c9e2 ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). 22ee8dabec1a2 arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src fa5d374f6bacb powerpc/pseries/iommu: memory notifier incorrectly adds TCEs for pmemory 6758d09763f62 net: fec: Refactor MAC reset to function 2caf52c072059 wifi: mac80211: remove misplaced drv_mgd_complete_tx() call bb1f9d63127e8 wifi: mac80211: don't unconditionally call drv_mgd_complete_tx() 9ef9ecabc6b55 drm/v3d: Add clock handling 76016797e7f96 net/mlx5e: reduce the max log mpwrq sz for ECPF and reps dce57841d93de net/mlx5e: reduce rep rxq depth to 256 for ECPF 9411c965e4e6a net/mlx5e: set the tx_queue_len for pfifo_fast c31e839649547 net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB 353cd6804ea85 scsi: target: spc: Fix loop traversal in spc_rsoc_get_descr() 991970293ff8a drm/amd/display/dm: drop hw_support check in amdgpu_dm_i2c_xfer() 26b6548dc7417 drm/amdgpu: enlarge the VBIOS binary size limit de67e80ab48f1 drm/amd/display: Increase block_sequence array size 16c26a6404454 drm/amd/display: Initial psr_version with correct setting c59c96b850ea6 drm/amd/display: Update CR AUX RD interval interpretation af2d36316a193 drm/amdgpu: reset psp->cmd to NULL after releasing the buffer 6881a3a58852f drm/amd/display: Don't try AUX transactions on disconnected link ab83ed96f7587 drm/amdgpu: Set snoop bit for SDMA for MI series 929cda8e4b75d soundwire: amd: change the soundwire wake enable/disable sequence 6a7b7e98fec0a phy: core: don't require set_mode() callback for phy_get_mode() to work 3bf3eae909914 serial: sh-sci: Update the suspend/resume support e9bed533ec803 sched: Reduce the default slice to avoid tasks getting an extra tick 5024d8e58a080 x86/traps: Cleanup and robustify decode_bug() cc50c7c1a9898 clk: qcom: clk-alpha-pll: Do not use random stack value for recalc rate fba6e5d44fb8d clk: qcom: ipq5018: allow it to be bulid on arm32 d655dbd82b555 net/mlx4_core: Avoid impossible mlx4_db_alloc() order value f8a9f45f75ab3 media: v4l: Memset argument to 0 before calling get_mbus_config pad op 0b9d2468c3d88 media: i2c: imx219: Correct the minimum vblanking value 868c3d8cfcff6 kunit: tool: Use qboot on QEMU x86_64 3d6d13540f776 smack: Revert "smackfs: Added check catlen" e30f31434e9c3 smack: recognize ipv4 CIPSO w/o categories de4332d7a5f6f pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map b3d2a8809ef07 ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot() 35160eda61e74 ASoC: tas2764: Power up/down amp on mute ops c1045e770256c ASoC: tas2764: Mark SW_RESET as volatile 7ac84ee5eec85 ASoC: tas2764: Add reg defaults for TAS2764_INT_CLK_CFG 9dcce3f40d54d ASoC: ops: Enforce platform maximum on initial value 3da8088afd13a firmware: arm_ffa: Reject higher major version as incompatible 3ec539f1e9195 net/mlx5: Apply rate-limiting to high temperature warning 69f453ccb9e47 net/mlx5: Modify LSB bitmask in temperature event to include only the first bit a9b2bb8a4f25b media: test-drivers: vivid: don't call schedule in loop ddddd806ba7de vxlan: Join / leave MC group after remote changes d97c38275d12c ACPI: HED: Always initialize before evged 0d398ed850df9 PCI: Fix old_size lower bound in calculate_iosize() too d8afc25580735 eth: mlx4: don't try to complete XDP frames in netpoll 242272c953e3b bpf: don't do clean_live_states when state->loop_entry->branches > 0 00e59d1495fba can: c_can: Use of_property_present() to test existence of DT property ef7ee9b815345 pmdomain: imx: gpcv2: use proper helper for property detection 7c5e73608302a RDMA/core: Fix best page size finding when it can cross SG entries c504c11b94d6e serial: mctrl_gpio: split disable_ms into sync and no_sync APIs df8970a270add drm/amd/display: Add support for disconnected eDP streams 671fea645a71b i3c: master: svc: Flush FIFO before sending Dynamic Address Assignment(DAA) 398351dcdb631 EDAC/ie31200: work around false positive build warning c81c2ee1c3b05 net: pktgen: fix access outside of user given buffer in pktgen_thread_write() 35434d1c93c73 wifi: rtw89: fw: propagate error code from rtw89_h2c_tx() 5ce1f780a3bce wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31 1b1daafd2e974 wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU a95813193ab78 wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU f38a1b35c8f4e scsi: mpt3sas: Send a diag reset if target reset fails 06abee685cc97 clocksource: mips-gic-timer: Enable counter when CPUs start 2e1b3650f5691 MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core ba41e4e627db5 genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie 2ed497f369b2e MIPS: Use arch specific syscall name match function b2ea189a958a6 crypto: skcipher - Zap type in crypto_alloc_sync_skcipher 3a0c8429ab1e4 crypto: ahash - Set default reqsize from ahash_alg b1d1b09698e99 x86/kaslr: Reduce KASLR entropy on most x86 systems b0556ba85a0f3 net/mlx5: Change POOL_NEXT_SIZE define value and make it global 52aa28f7b1708 dm: fix unconditional IO throttle caused by REQ_PREFLUSH ecd205a5241df libbpf: Fix out-of-bound read e17a6ba07929b media: tc358746: improve calculation of the D-PHY timing registers ca9f3ab612c62 media: adv7180: Disable test-pattern control on adv7180 3cd2aa93674ee cpuidle: menu: Avoid discarding useful information 48fd80f7d7b48 vdpa/mlx5: Fix mlx5_vdpa_get_config() endianness on big-endian machines f5121d5ba7ce4 vhost-scsi: Return queue full for page alloc failures during copy de4469a90075b x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() 01768d1564650 ASoC: mediatek: mt8188: Add reference for dmic clocks 6dadc66f6cf3e ASoC: mediatek: mt8188: Treat DMIC_GAINx_CUR as non-volatile ec6f764ab7009 drm/amd/display: handle max_downscale_src_width fail check 7472e0da47716 x86/build: Fix broken copy command in genimage.sh when making isoimage f32344bf957b4 Octeontx2-af: RPM: Register driver with PCI subsys IDs 3314310b3f3e6 soc: ti: k3-socinfo: Do not use syscon helper to build regmap f4e35b2c5f5cc wifi: ath12k: Improve BSS discovery with hidden SSID in 6 GHz band fed3038a80bbc bonding: report duplicate MAC address in all situations 7819a7dcf0412 net: xgene-v2: remove incorrect ACPI_PTR annotation 7b8fe48cc86b6 net: ethernet: mtk_ppe_offload: Allow QinQ, double ETH_P_8021Q only ff01e0d0a61e4 leds: pwm-multicolor: Add check for fwnode_property_read_u32 2059e6ea11c0d drm/amdkfd: KFD release_work possible circular locking 0759d154654a8 selftests/net: have `gro.sh -t` return a correct exit code b3c8449484848 net/mlx5: Avoid report two health errors on same syndrome e2de76c34a8a9 firmware: arm_ffa: Set dma_mask for ffa devices a1a5e783d7cab PCI: brcmstb: Add a softdep to MIP MSI-X driver 1f27e708e36ea PCI: brcmstb: Expand inbound window size up to 64GB f6dfaf5905ad6 wifi: ath12k: Report proper tx completion status to mac80211 c7c729d7a85a9 soc: apple: rtkit: Implement OSLog buffers properly 78b6b2fe17a2e soc: apple: rtkit: Use high prio work queue 1ae981c91dc26 perf: arm_pmuv3: Call kvm_vcpu_pmu_resync_el0() before enabling counters 372ed2171031d fpga: altera-cvp: Increase credit timeout 7b851d6a02da0 drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence d8e57904dc269 ARM: at91: pm: fix at91_suspend_finish for ZQ calibration a9dd5d748c87d hwmon: (gpio-fan) Add missing mutex locks 7adb96687ce88 x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 ca16d144d1f0a clk: imx8mp: inform CCF of maximum frequency of clocks 032f3bf6471cd media: uvcvideo: Handle uvc menu translation inside uvc_get_le_value faa24692f7041 media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map 9459abd770107 drm/rockchip: vop2: Add uv swap for cluster window 9778a91827272 ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config(). 2be4a7d53261b ALSA: hda/realtek: Enable PC beep passthrough for HP EliteBook 855 G7 30ae895966221 perf/hw_breakpoint: Return EOPNOTSUPP for unsupported breakpoint type 2a9a7d2f19cca net: pktgen: fix mpls maximum labels list parsing cf81dae86bf6b net: ethernet: ti: cpsw_new: populate netdev of_node 2cbe6d551b4a9 pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" 5c9eca180a423 media: cx231xx: set device_caps for 417 a7b8f0addf84f drm/amd/display: Skip checking FRL_MODE bit for PCON BW determination 3af9db78423c5 drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c fef1e1487dea8 remoteproc: qcom_wcnss: Handle platforms with only single power domain c5b23df98a925 net: phylink: use pl->link_interface in phylink_expects_phy() b27be76f35010 drm/gem: Test for imported GEM buffers with helper 121f0335d91e4 orangefs: Do not truncate file size 3986ef4a9b6a0 dm cache: prevent BUG_ON by blocking retries on failed device resumes d5f8c8ec1e783 media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() 74eea50b7afa1 ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 da74e11cedd1e ieee802154: ca8210: Use proper setters and getters for bitwise types c0acbeac2b287 rtc: ds1307: stop disabling alarms on probe fb69189023279 tcp: bring back NUMA dispersion in inet_ehash_locks_alloc() 8c1a16d612ef7 ALSA: seq: Improve data consistency at polling 7b1bb4d40dab8 powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 d0e3e19564f03 arm64: tegra: Resize aperture for the IGX PCIe C5 slot 988770bf312cf arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator ab13c8a5f777b drm/amdkfd: Set per-process flags only once cik/vi 0acdc4d6e679b crypto: lzo - Fix compression buffer overrun ab4545a2540b7 watchdog: aspeed: Update bootstatus handling ac64f0e893ff3 cpufreq: tegra186: Share policy per cluster 3123b3d445d16 iommu/amd/pgtbl_v2: Improve error handling 8c305588bab71 ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup() 5b518c452ff58 auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common" 769d1bccd1cac gfs2: Check for empty queue in run_queue 2e37d331c00c0 drm/amd/display: Fix incorrect DPCD configs while Replay/PSR switch 1da3dc73724bb drm/amd/display: calculate the remain segments for all pipes 4c2a348875646 drm/amd/display: remove minimum Dispclk and apply oem panel timing. 8ebf2709fe4dc ipv6: save dontfrag in cork 2b790fe67ed48 wifi: iwlwifi: fix debug actions order 386a1a0d558d7 printk: Check CON_SUSPEND when unblanking a console 8a7f2e84f85ad hwmon: (dell-smm) Increment the number of fans def5f5bc83ee7 usb: xhci: Don't change the status of stalled TDs on failed Stop EP 903c4a0c2aff4 mmc: sdhci: Disable SD card clock before changing parameters 5ae75245939c6 mmc: dw_mmc: add exynos7870 DW MMC support 110f701e60f98 arm64/mm: Check PUD_TYPE_TABLE in pud_bad() 89947eea8ff91 netfilter: conntrack: Bound nf_conntrack sysctl writes da36c3ad7c177 timer_list: Don't use %pK through printk() 6df3855868eb8 posix-timers: Add cond_resched() to posix_timer_add() search loop 1bef1811651bc RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject() ba841627308a3 ext4: do not convert the unwritten extents if data writeback fails d7f3c874ea707 ext4: reject the 'data_err=abort' option in nojournal mode baf667f23f609 ASoC: sun4i-codec: support hp-det-gpios property f8d946034765a drm/amdgpu: Update SRIOV video codec caps 2e290e9cf6a17 mfd: tps65219: Remove TPS65219_REG_TI_DEV_ID check aa97ea576a3f2 pinctrl-tegra: Restore SFSEL bit when freeing pins 0fb6c439d265f xen: Add support for XenServer 6.1 platform device 3ecfb92c019f2 net/smc: use the correct ndev to find pnetid by pnetid table ba8354a613a57 dm: restrict dm device size to 2^63-512 bytes 44a82d2495e36 crypto: octeontx2 - suppress auth failure screaming due to negative tests 3edb08b6c21ef kbuild: fix argument parsing in scripts/config bc8023ef3b114 bpf: Allow pre-ordering for bpf cgroup progs aed5bd3a84e87 ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect bf9cfc7fbe742 thunderbolt: Do not add non-active NVM if NVM upgrade is disabled for retimer 4beb1e55f6b08 objtool: Fix error handling inconsistencies in check() 72d9ccdcfce24 rtc: rv3032: fix EERD location a7b7bc510e9ea tcp: reorganize tcp_in_ack_event() and tcp_count_delivered() ed88717950ba9 jbd2: do not try to recover wiped journal 5741b9d7bb873 bpf: Return prog btf_id without capable check 743bb753255d3 vfio/pci: Handle INTx IRQ_NOTCONNECTED 9f51fa1971239 scsi: st: ERASE does not change tape location 01195aa1d694b scsi: st: Tighten the page format heuristics with MODE SELECT 3011cdc5cb46c hypfs_create_cpu_files(): add missing check for hypfs_mkdir() failure 4eda8a85d4d01 ext4: reorder capability check last 57a2882cd4f35 um: Update min_low_pfn to match changes in uml_reserved 7638182277867 um: Store full CSGSFS and SS register from mcontext 61225b3395c21 dlm: make tcp still work in multi-link env 0541822045ae0 i3c: master: svc: Fix missing STOP for master request 398c541ed0495 drm/amd/display: Guard against setting dispclk low for dcn31x 3192d59fb7b78 btrfs: send: return -ENAMETOOLONG when attempting a path that is too long a7f1c5fb7dd90 btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work() 4dc7dcb919f36 btrfs: fix non-empty delayed iputs list on unmount due to async workers de635f9bba32e btrfs: run btrfs_error_commit_super() early 1a012fd4eb9d0 btrfs: avoid linker error in btrfs_find_create_tree_block() 4e74f91a6f70a btrfs: make btrfs_discard_workfn() block_group ref explicit a4666a812792d i2c: pxa: fix call balance of i2c->clk handling routines 4fc8e3fb8efa8 i2c: qup: Vote for interconnect bandwidth to DRAM bffd5f2815c52 x86/mm: Check return value from memblock_phys_alloc_range() 7124a9b6824e1 x86/stackprotector/64: Only export __ref_stack_chk_guard on CONFIG_SMP 1752ceaa72d37 wifi: mt76: mt7996: revise TXS size d9776ce1733c7 wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2 17e3ab067dfb6 mmc: host: Wait for Vdd to settle on card power off ea3d95e05e97e libnvdimm/labels: Fix divide error in nd_label_data_init() f29eb4c63bf4e ext4: on a remount, only log the ro or r/w state when it has changed 44acbc14ea28d PCI: vmd: Disable MSI remapping bypass under Xen aa59ccacf8f33 pNFS/flexfiles: Report ENETDOWN as a connection error ec59dfbc1ba2f tools/build: Don't pass test log files to linker e4510552c297c PCI: dwc: ep: Ensure proper iteration over outbound map windows a74286d17e751 objtool: Properly disable uaccess validation 454a770aea9fd lockdep: Fix wait context check on softirq for PREEMPT_RT 0c2aa72f4f352 dql: Fix dql->limit value when reset. 3854f4e98ef22 thermal/drivers/qoriq: Power down TMU on system suspend 4a120221661fc spi-rockchip: Fix register out of bounds access 4a8ebc45f2021 SUNRPC: rpcbind should never reset the port to the value '0' 3ef02a05c86b4 SUNRPC: rpc_clnt_set_transport() must not change the autobind setting 6b8beb8104d73 NFSv4: Treat ENETUNREACH errors as fatal for state recovery ee68e068cf92f cifs: Fix establishing NetBIOS session for SMB2+ connection 89bcd83f67d22 cifs: add validation check for the fields in smb_aces 88bf6295f065a fbdev: core: tileblit: Implement missing margin clearing for tileblit 1714afc14dbe6 fbcon: Use correct erase colour for clearing in fbcon 7f370b7e6fa03 fbdev: fsl-diu-fb: add missing device_remove_file() bbf3bb6ddea47 riscv: Allow NOMMU kernels to access all of RAM 09096ead92f39 mailbox: use error ret code of of_parse_phandle_with_args() 5641f6b3a4cd5 mailbox: pcc: Use acpi_os_ioremap() instead of ioremap() 7d5b227875fb7 ACPI: PNP: Add Intel OC Watchdog IDs to non-PNP device list c1ab9f008ed40 tracing: Mark binary printing functions with __printf() attribute 50702e7b47ed7 arm64: Add support for HIP09 Spectre-BHB mitigation e0b05cd9ece6e SUNRPC: Don't allow waiting for exiting tasks c72826efbb5eb NFS: Don't allow waiting for exiting tasks a81dd69f859b6 NFSv4: Check for delegation validity in nfs_start_delegation_return_locked() 2371143e41735 fuse: Return EPERM rather than ENOSYS from link() 209a4da04a27d smb: client: Store original IO parameters and prevent zero IO sizes 5194597b9cde7 cifs: Fix negotiate retry functionality d50f7ce2fc32a cifs: Fix querying and creating MF symlinks over SMB1 18066188eb90c cifs: Add fallback for SMB2 CREATE without FILE_READ_ATTRIBUTES f08641cd2152d s390/vfio-ap: Fix no AP queue sharing allowed message written to kernel log a6f24a41ef527 kconfig: merge_config: use an empty file as initfile adbb39eca39d1 samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora 38aa3cf1545f3 bpf: fix possible endless loop in BPF map iteration f5f169cd90769 selftests/bpf: Mitigate sockmap_ktls disconnect_after_delete failure f7292fbb41840 drm/amdgpu: Allow P2P access through XGMI 722a6972defd8 ima: process_measurement() needlessly takes inode_lock() on MAY_READ 91ba964a752bb net: enetc: refactor bulk flipping of RX buffers to separate function c36f5f659ad9c scsi: mpi3mr: Add level check to control event logging ca85c2d0db5f8 vhost-scsi: protect vq->log_used with vq->mutex 20fb292ab5d5d cgroup: Fix compilation issue due to cgroup_mutex not being exported c15dc980ffc5a dma-mapping: avoid potential unused data compilation warning 2cab5ea2f5ab6 intel_th: avoid using deprecated page->mapping, index fields b49b5132e4c73 virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN 42d15918da268 scsi: ufs: Introduce quirk to extend PA_HIBERN8TIME for UFS devices fe8421e853ef2 scsi: target: iscsi: Fix timeout on deleted connection beb6382add07a nvmem: qfprom: switch to 4-byte aligned reads 35d77c8d887e1 nvmem: core: update raw_len if the bit reading is required 497f19cacb3f8 nvmem: core: verify cell's raw_len 04c81ac33a607 nvmem: rockchip-otp: add rk3576 variant data 266e5f4813808 nvmem: rockchip-otp: Move read-offset into variant-data b3145041e990a cpufreq: Add SM8650 to cpufreq-dt-platdev blocklist 1efbe2c7a0f44 phy: renesas: rcar-gen3-usb2: Assert PLL reset on PHY power off cf60d19721bc4 phy: renesas: rcar-gen3-usb2: Lock around hardware registers and driver data e992f2581b794 phy: renesas: rcar-gen3-usb2: Move IRQ request in probe eb4fdee1d6303 phy: renesas: rcar-gen3-usb2: Add support to initialize the bus e668cbeb9590a i2c: designware: Fix an error handling path in i2c_dw_pci_probe() ad40588df1820 i2c: designware: Use temporary variable for struct device 0ef9396a7da7a i2c: designware: Remove ->disable() callback 33378973d843b i2c: designware: Uniform initialization flow for polling mode d1954e7aa1313 gpio: pca953x: fix IRQ storm on system wake up 58e34598436f8 gpio: pca953x: Simplify code with cleanup helpers 475d6ebc91a24 gpio: pca953x: Split pca953x_restore_context() and pca953x_save_context()
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
urllib3 is a user-friendly HTTP client library for Python. Prior to
2.5.0, it is possible to disable redirects for all requests by
instantiating a PoolManager and specifying retries in a way that
disable redirects. By default, requests and botocore users are not
affected. An application attempting to mitigate SSRF or open redirect
vulnerabilities by disabling redirects at the PoolManager level will
remain vulnerable. This issue has been patched in version 2.5.0.
Changqing Li [Mon, 7 Jul 2025 09:07:28 +0000 (17:07 +0800)]
icu: fix CVE-2025-5222
CVE-2025-5222:
A stack buffer overflow was found in Internationl components for unicode
(ICU ). While running the genrb binary, the 'subtag' struct overflowed
at the SRBRoot::addTag function. This issue may lead to memory
corruption and local arbitrary code execution.
A flaw was found in the RandR extension, where the RRChangeProviderProperty function
does not properly validate input. This issue leads to an integer overflow when
computing the total size to allocate.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients
function does not check for an integer overflow when computing request length,
which allows a client to bypass length checks.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the X server's request handling. Non-zero 'bytes to ignore'
in a client's request can cause the server to skip processing another client's
request, potentially leading to a denial of service.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the XFIXES extension. The XFixesSetClientDisconnectMode handler
does not validate the request length, allowing a client to read unintended memory
from previous requests
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the Big Requests extension. The request length is multiplied
by 4 before checking against the maximum allowed size, potentially causing an
integer overflow and bypassing the size check.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A flaw was found in the X Rendering extension's handling of animated cursors.
If a client provides no cursors, the server assumes at least one is present,
leading to an out-of-bounds read and potential crash.
Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
A vulnerability has been identified in the libarchive library. This flaw can be triggered whe
n file streams are piped into bsdtar, potentially allowing for reading past the end of the fi
le. This out-of-bounds read can lead to unintended consequences, including unpredictable prog
ram behavior, memory corruption, or a denial-of-service condition.
CVE-2025-5918-0001 is the dependent commit and CVE-2025-5918-0002 is the actual CVE fix.
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-
one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-
byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, lea
ding to unpredictable program behavior, crashes, or in specific circumstances, could be lever
aged as a building block for more sophisticated exploitation.
A vulnerability has been identified in the libarchive library. This flaw
involves an integer overflow that can be triggered when processing a Web
Archive (WARC) file that claims to have more than INT64_MAX - 4 content
bytes. An attacker could craft a malicious WARC archive to induce this
overflow, potentially leading to unpredictable program behavior, memory
corruption, or a denial-of-service condition within applications that
process such archives using libarchive.
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap b
uffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer
-Schieber (LZSS) window. This means the library may attempt to read beyond the allocated memo
ry buffer, which can result in unpredictable program behavior, crashes (denial of service), o
r the disclosure of sensitive information from adjacent memory regions.
A vulnerability has been identified in the libarchive library, specifically within the archiv
e_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultim
ately lead to a double-free condition. Exploiting a double-free vulnerability can result in m
emory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service
condition.
When assembling all of the various filenames that are installed/deployed
from u-boot, we have been including the PV and PR in the filenames. This
change introduces a single variable to replace these two in the
filenames.
This change should not be disruptive since the default value for the new
UBOOT_VERSION variable is "${PV}-${PR}".
In one case (UBOOT_EXTLINUX_SYMLINK [1]), PR was used without PV, this
patch assumes this was a mistake and corrects it as PR would not be of
much use alone.
Daniel Turull [Thu, 19 Jun 2025 08:47:35 +0000 (10:47 +0200)]
package: export debugsources in PKGDESTWORK as json
The source information used during packaging can be use from other tasks to
have more detailed information on the files used during the compilation and
improve SPDX accuracy.
Source files used during compilation are store as compressed zstd json in
pkgdata/debugsources/$PN-debugsources.json.zstd
Format:
{ binary1: [src1, src2, ...], binary2: [src1, src2, ...] }
I checked the sstate size, and it slightly increases using core-image-full-cmdline:
without patch: 2456792 KB sstate-cache/
with patch: 2460028 KB sstate-cache/
(4236 KB or 0.17%)
Preeti Sachan [Tue, 24 Jun 2025 03:27:27 +0000 (08:57 +0530)]
ltp: backport patch to fix compilation error for x86_64
When the input compiler enables AVX, stack realignment requirements
causes gcc to fail to omit %rbp use, due to which the test fails to
clobber %rbp in inline asm. Disable AVX to build the test on x86_64 so
that the test continues working.
Fix compilation with gcc v13.4+. Cherry picked from oe-core, master branch.
Signed-off-by: Preeti Sachan <preeti.sachan@intel.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Victor Giraud <vgiraud.opensource@witekio.com> Signed-off-by: Bruno Vernay <bruno.vernay@se.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Moritz Haase [Fri, 20 Jun 2025 06:37:41 +0000 (08:37 +0200)]
cmake: Correctly handle cost data of tests with arbitrary chars in name
ctest automatically optimizes the order of (parallel) test execution based on
historic test case runtime via the COST property (see [0]), which can have a
significant impact on overall test run times. Sadly this feature is broken in
CMake < 4.0.0 for test cases that have spaces in their name (see [1]).
This commit is a backport of f24178f3 (which itself backports the upstream fix).
The patch was adapted slightly to apply cleanly to the older CMake version in
scarthgap. As repeated test runs are expected to mainly take place inside the
SDK, the patch is only applied to 'nativesdk' builds.
Reported-By: John Drouhard <john@drouhard.dev> Signed-off-by: Moritz Haase <Moritz.Haase@bmw.de> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Tue, 17 Jun 2025 21:11:48 +0000 (23:11 +0200)]
glibc: stable 2.39 branch updates
$ git log --oneline 3463100f2d47f2897a24ba8023a5c7aaf2d26550..06a70769fd0b2e1f2a3085ad50ab620282bd77b3 06a70769fd ppc64le: Revert "powerpc: Optimized strcmp for power10" (CVE-2025-5702) 3875045da5 ppc64le: Revert "powerpc : Add optimized memchr for POWER10" (Bug 33059) c6240a11f7 ppc64le: Revert "powerpc: Fix performance issues of strcmp power10" (CVE-2025-5702) 2caef2827f elf: Fix subprocess status handling for tst-dlopen-sgid (bug 32987) 9e25c0f445 x86_64: Fix typo in ifunc-impl-list.c. ca99d55315 elf: Test case for bug 32976 (CVE-2025-4802) 71ddb11ccd support: Add support_record_failure_barrier abdeb4b520 support: Use const char * argument in support_capture_subprogram_self_sgid 147bed0a71 elf: Keep using minimal malloc after early DTV resize (bug 32412) 4e5ee49a43 sysdeps/unix/sysv/linux/x86_64/Makefile: Add the end marker 37b30b6a68 sysdeps/x86_64/Makefile (tests): Add the end marker 9fe51d34bb sort-makefile-lines.py: Allow '_' in name and "^# name" 14ec225d85 libio: Correctly link tst-popen-fork against libpthread 1dcfb9479d libio: Fix a deadlock after fork in popen e31ac9a639 libio: Sort test variables in Makefile 68f3f1a1d0 Linux: Switch back to assembly syscall wrapper for prctl (bug 29770) d33d10642f nptl: PTHREAD_COND_INITIALIZER compatibility with pre-2.41 versions (bug 32786) b1eb369aee nptl: Use all of g1_start and g_signals ac5da3c0e4 nptl: rename __condvar_quiesce_and_switch_g1 2fdc0afd07 nptl: Fix indentation 582c99b2c0 nptl: Use a single loop in pthread_cond_wait instaed of a nested loop fc2a25417d nptl: Remove g_refs from condition variables 6f5ba03968 nptl: Remove unnecessary quadruple check in pthread_cond_wait d0da34ad30 nptl: Remove unnecessary catch-all-wake in condvar group switch ea13a35e37 nptl: Update comments and indentation for new condvar implementation 2451ef5c4a pthreads NPTL: lost wakeup fix 2
test results:
Before After Diff
FAIL 207 207 0
PASS 4912 4915 +3
UNSUPPORTED 230 230 0
XFAIL 16 16 0
XPASS 4 4 0
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Poonam Jadhav [Mon, 16 Jun 2025 04:46:04 +0000 (10:16 +0530)]
libpng: Add ptest
Install libpng test-suite to run it as a ptest.
As the test-suite takes more than 30 seconds to run,
add libpng-ptest to PTESTS_SLOW in ptest-packagelists.inc
Signed-off-by: Poonam Jadhav <poonam.jadhav@kpit.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Peter Marko [Sun, 8 Jun 2025 21:47:17 +0000 (23:47 +0200)]
testimage: get real os-release file
/etc/os-release is a symlink to /usr/lib.
Symlink is retrieved as a dead link which points to nowhere if also the
original file is not accompanying it.
Fetch the real file in addition to this link.
Alternative could be to use "tar -h" (supported also by busybox tar),
however that could lose some important information if links are relevant
for failure analysis.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Andrew Fernandes [Thu, 13 Jun 2024 19:54:27 +0000 (12:54 -0700)]
gtk+: add missing libdrm dependency
Fixes [YOCTO #15513]
When built without the wayland feature, gtk4 does not
build due to a missing explicit dependency on libdrm.
Signed-off-by: Andrew Fernandes <andrew@fernandes.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b32290d9bbcfccc9b85fa5acbeaee5d32d9a9091) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Python 3.12.10 is the latest maintenance release of Python 3.12, and
the last full maintenance release. Subsequent releases of 3.12 will be
security-fixes only.
Security content in this release
* gh-135034: [CVE 2024-12718] [CVE 2025-4138] [CVE 2025-4330]
[CVE 2025-4435] [CVE 2025-4517] Fixes multiple issues that allowed
tarfile extraction filters (filter="data" and filter="tar") to be
bypassed using crafted symlinks and hard links.
* gh-133767: Fix use-after-free in the “unicode-escape” decoder with a
non-“strict” error handler.
* gh-128840: Short-circuit the processing of long IPv6 addresses early
in ipaddress to prevent excessive memory consumption and a minor
denial-of-service.
gh-133767 got meawhile CVE-2025-4516 assigned.
Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
projects / thirdparty / openembedded / openembedded-core-contrib.git / log
