-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 22 Nov 2024 23:27:23 +0100 Source: linux Binary: bpftool bpftool-dbgsym hyperv-daemons hyperv-daemons-dbgsym libcpupower-dev libcpupower1 libcpupower1-dbgsym linux-compiler-gcc-12-x86 linux-config-6.1 linux-cpupower linux-cpupower-dbgsym linux-headers-6.1.0-28-amd64 linux-headers-6.1.0-28-cloud-amd64 linux-headers-6.1.0-28-rt-amd64 linux-image-6.1.0-28-amd64-dbg linux-image-6.1.0-28-amd64-unsigned linux-image-6.1.0-28-cloud-amd64-dbg linux-image-6.1.0-28-cloud-amd64-unsigned linux-image-6.1.0-28-rt-amd64-dbg linux-image-6.1.0-28-rt-amd64-unsigned linux-image-amd64-dbg linux-image-amd64-signed-template linux-image-cloud-amd64-dbg linux-image-rt-amd64-dbg linux-kbuild-6.1 linux-kbuild-6.1-dbgsym linux-libc-dev linux-perf linux-perf-dbgsym rtla usbip usbip-dbgsym Architecture: amd64 Version: 6.1.119-1 Distribution: bookworm-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) Changed-By: Salvatore Bonaccorso Description: bpftool - Inspection and simple manipulation of BPF programs and maps hyperv-daemons - Support daemons for Linux running on Hyper-V libcpupower-dev - CPU frequency and voltage scaling tools for Linux (development fi libcpupower1 - CPU frequency and voltage scaling tools for Linux (libraries) linux-compiler-gcc-12-x86 - Compiler for Linux on x86 (meta-package) linux-config-6.1 - Debian kernel configurations for Linux 6.1 linux-cpupower - CPU power management tools for Linux linux-headers-6.1.0-28-amd64 - Header files for Linux 6.1.0-28-amd64 linux-headers-6.1.0-28-cloud-amd64 - Header files for Linux 6.1.0-28-cloud-amd64 linux-headers-6.1.0-28-rt-amd64 - Header files for Linux 6.1.0-28-rt-amd64 linux-image-6.1.0-28-amd64-dbg - Debug symbols for linux-image-6.1.0-28-amd64 linux-image-6.1.0-28-amd64-unsigned - Linux 6.1 for 64-bit PCs linux-image-6.1.0-28-cloud-amd64-dbg - Debug symbols for linux-image-6.1.0-28-cloud-amd64 linux-image-6.1.0-28-cloud-amd64-unsigned - Linux 6.1 for x86-64 cloud linux-image-6.1.0-28-rt-amd64-dbg - Debug symbols for linux-image-6.1.0-28-rt-amd64 linux-image-6.1.0-28-rt-amd64-unsigned - Linux 6.1 for 64-bit PCs, PREEMPT_RT linux-image-amd64-dbg - Debugging symbols for Linux amd64 configuration (meta-package) linux-image-amd64-signed-template - Template for signed linux-image packages for amd64 linux-image-cloud-amd64-dbg - Debugging symbols for Linux cloud-amd64 configuration (meta-packa linux-image-rt-amd64-dbg - Debugging symbols for Linux rt-amd64 configuration (meta-package) linux-kbuild-6.1 - Kbuild infrastructure for Linux 6.1 linux-libc-dev - Linux support headers for userspace development linux-perf - Performance analysis tools for Linux rtla - Real-Time Linux Analysis tools usbip - USB device sharing system over IP network Closes: 1062421 1085762 1086447 1087602 Changes: linux (6.1.119-1) bookworm-security; urgency=high . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116 - cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format - cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012) - mm: remove kern_addr_valid() completely - fs/proc/kcore: avoid bounce buffer for ktext data - fs/proc/kcore: convert read_kcore() to read_kcore_iter() - fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions - fs/proc/kcore.c: allow translation of physical memory addresses - cgroup: Fix potential overflow issue when checking max_depth - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd() (Closes: #1062421) - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys - wifi: ath11k: Fix invalid ring usage in full monitor mode - wifi: brcm80211: BRCM_TRACING should depend on TRACING - RDMA/cxgb4: Dump vendor specific QP details - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down - RDMA/bnxt_re: synchronize the qp-handle table array - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd() (CVE-2024-53059) - [armel,armhf] ASoC: cs42l51: Fix some error handling paths in cs42l51_probe() - macsec: Fix use-after-free while sending the offloading packet (CVE-2024-50261) - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data (CVE-2024-53058) - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow() (CVE-2024-53042) - gtp: allow -1 to be specified as file description from userspace - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057) - netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() (CVE-2024-50259) - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262) - netfilter: Fix use-after-free in get_info() (CVE-2024-50257) - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() (CVE-2024-50256) - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs (CVE-2024-50255) - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension - netfilter: nft_payload: sanitize offset and length before calling skb_checksum() (CVE-2024-50251) - iomap: convert iomap_unshare_iter to use large folios - iomap: improve shared block detection in iomap_unshare_iter - iomap: don't bother unsharing delalloc extents - iomap: share iomap_unshare_iter predicate code with fsdax - fsdax: remove zeroing code from dax_unshare_iter - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250) - iomap: turn iomap_want_unshare_iter into an inline function - compiler-gcc: be consistent with underscores use for `no_sanitize` - compiler-gcc: remove attribute support check for `__no_sanitize_address__` - afs: Automatically generate trace tag enums - afs: Fix missing subdir edit when renamed between parent dirs - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249) - fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247) - fs/ntfs3: Fix warning possible deadlock in ntfs_set_state - fs/ntfs3: Stale inode instead of bad - fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245) - fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244) - scsi: scsi_transport_fc: Allow setting rport state to current state - net: amd: mvme147: Fix probe banner message - NFS: remove revoked delegation from server's delegation list - misc: sgi-gru: Don't disable preemption in GRU driver - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context - USB: gadget: dummy-hcd: Fix "task hung" problem - ALSA: usb-audio: Add quirks for Dell WD19 dock - usbip: tools: Fix detach_port() invalid port error path - usb: phy: Fix API devm_usb_put_phy() can not release the phy - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes() - xhci: Fix Link TRB DMA in command ring stopped completion event - xhci: Use pm_runtime_get to prevent RPM on unsupported systems - Revert "driver core: Fix uevent_show() vs driver detach race" - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower (CVE-2024-50237) - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236) - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235) - wifi: iwlegacy: Clear stale interrupts before resuming device (CVE-2024-50234) - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() (CVE-2024-50232) - iio: light: veml6030: fix microlux value calculation - nilfs2: fix potential deadlock with newly created symlinks (CVE-2024-50229) - block: fix sanity checks in blk_rq_map_user_bvec - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction (CVE-2024-53054) - ALSA: hda/realtek: Limit internal Mic boost on Dell platform - cxl/acpi: Move rescan to the workqueue - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices() - mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE - mm/page_alloc: treat RT tasks similar to __GFP_HIGH - mm/page_alloc: explicitly record high-order atomic allocations in alloc_flags - mm/page_alloc: explicitly define what alloc flags deplete min reserves - mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations accesses reserves - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218) - mctp i2c: handle NULL header address (CVE-2024-53043) - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1 - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215) - io_uring: rename kiocb_end_write() local helper - fs: create kiocb_{start,end}_write() helpers - io_uring: use kiocb_{start,end}_write() helpers - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (CVE-2024-53052) - mm: migrate: try again if THP split is failed due to page refcnt - migrate: convert unmap_and_move() to use folios - migrate: convert migrate_pages() to use folios - mm/migrate.c: stop using 0 as NULL pointer - migrate_pages: organize stats with struct migrate_pages_stats - migrate_pages: separate hugetlb folios migration - migrate_pages: restrict number of pages to migrate in batch - migrate_pages: split unmap_and_move() to _unmap() and _move() - vmscan,migrate: fix page count imbalance on node stats when demoting pages - io_uring: always lock __io_cqring_overflow_flush (Closes: #1087602) - [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072) - wifi: mac80211: fix NULL dereference at band check in starting tx ba session (CVE-2024-43911) - nilfs2: fix kernel bug due to missing clearing of checked flag (CVE-2024-50230) - wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055) - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228) - mtd: spi-nor: winbond: fix w25q128 regression - drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (CVE-2024-43904) - drm/amd/display: Skip on writeback when it's not applicable (CVE-2024-36914) - vt: prevent kernel-infoleak in con_font_get() - mm: avoid gcc complaint about pointer casting - migrate_pages_batch: fix statistics for longterm pin retry https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117 - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610 - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator - [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 - [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node - [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards - [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion - [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc - [arm64] dts: imx8qm: Fix VPU core alias name - [arm64] dts: imx8qxp: Add VPU subsystem file - [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs - [arm64] dts: imx8mp: correct sdhc ipg clk - [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin - HID: core: zero-initialize the report buffer (CVE-2024-50302) - [x86] platform/x86/amd/pmc: Detect when STB is not available (CVE-2024-53072) - sunrpc: handle -ENOTCONN in xs_tcp_setup_socket() - NFSv3: only use NFS timeout for MOUNT when protocols are compatible - NFSv3: handle out-of-order write replies. - nfs: avoid i_lock contention in nfs_clear_invalid_mapping - security/keys: fix slab-out-of-bounds in key_task_permission (CVE-2024-50301) - [arm64] net: enetc: set MAC address to the VF net_device - sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299) - can: c_can: fix {rx,tx}_errors statistics - ice: change q_index variable type to s16 to store -1 value - i40e: fix race condition by adding filter's intermediate sync state (CVE-2024-53088) - [arm64] net: hns3: fix kernel crash when uninstalling driver (CVE-2024-50296) - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case - virtio_net: Add hash_key_length check (CVE-2024-53082) - Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown" - media: stb0899_algo: initialize cfr before using it - media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063) - media: dvb_frontend: don't play tricks with underflow values - media: adv7604: prevent underflow condition when reporting colorspace - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() - [armhf] ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove - media: ar0521: don't overflow when checking PLL values (CVE-2024-53081) - media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061) - media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290) - media: pulse8-cec: fix data timestamp at pulse8_setup() - media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287) - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when switching CAN modes - ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create (CVE-2024-50286) - ksmbd: Fix the missing xa_store error check (CVE-2024-50284) - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283) - pwm: imx-tpm: Use correct MODULO value for EPWM mode - drm/amdgpu: Adjust debugfs eviction and IB access permissions - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (CVE-2024-50282) - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported (CVE-2024-53060) - thermal/drivers/qcom/lmh: Remove false lockdep backtrace - dm cache: correct the number of origin blocks to match the target length - dm cache: fix flushing uninitialized delayed_work on cache_ctr error (CVE-2024-50280) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (CVE-2024-50279) - dm cache: optimize dirty bit checking with find_next_bit when resizing - dm cache: fix potential out-of-bounds access on the first resume (CVE-2024-50278) - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3 - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone - nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066) - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc() - net: vertexcom: mse102x: Fix possible double free of TX skb (CVE-2024-50276) - mptcp: use sock_kfree_s instead of kfree - btrfs: reinitialize delayed ref list after deleting it from the list (CVE-2024-50273) - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq (CVE-2024-38540) - Revert "wifi: mac80211: fix RCU list iterations" - net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format - filemap: Fix bounds checking in filemap_read() (CVE-2024-50272) - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' - signal: restore the override_rlimit logic (CVE-2024-50271) - usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269) - usb: dwc3: fix fault at system suspend if device was already runtime suspended - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() - USB: serial: io_edgeport: fix use after free in debug printk (CVE-2024-50267) - USB: serial: qcserial: add support for Sierra Wireless EM86xx - USB: serial: option: add Fibocom FG132 0x0112 composition - USB: serial: option: add Quectel RG650V - irqchip/gic-v3: Force propagation of the active state with a read-back - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() - ucounts: fix counter leak in inc_rlimit_get_ucounts() - [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022 - net: sched: use RCU read-side critical section in taprio_dump() (CVE-2024-50126) - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans - media: amphion: Fix VPU core alias name https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118 - Revert "Bluetooth: fix use-after-free in accessing skb after sending it" - Revert "Bluetooth: hci_sync: Fix overwriting request callback" - Revert "Bluetooth: af_bluetooth: Fix deadlock" - Revert "Bluetooth: hci_core: Fix possible buffer overflow" - Revert "Bluetooth: hci_conn: Consolidate code for aborting connections" (Closes: #1086447) - 9p: Avoid creating multiple slab caches with the same name - nvme: tcp: avoid race between queue_lock lock and destroy - block: Fix elevator_get_default() checking for NULL q->tag_set - HID: multitouch: Add support for B2402FVA track point - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad - nvme: disable CC.CRIME (NVME_CC_CRIME) - bpf: use kvzmalloc to allocate BPF verifier environment - crypto: api - Fix liveliness check in crypto_alg_tested - [arm*] crypto: marvell/cesa - Disable hash algorithms - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML - drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS - nvme-multipath: defer partition scanning (CVE-2024-53093) - [powerpc*] powernv: Free name on error in opal_event_init() - nvme: make keep-alive synchronous operation - bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6 - fs: Fix uninitialized value issue in from_kuid and from_kgid - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition - md/raid10: improve code of mrdev in raid10_sync_request - io_uring: fix possible deadlock in io_register_iowq_max_workers() (CVE-2024-41080) - uprobes: encapsulate preparation of uprobe args buffer - uprobe: avoid out-of-bounds memory access of fetching args (CVE-2024-50067) - drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991) - ext4: fix timer use-after-free on failed mount (CVE-2024-49960) - Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950) - mm: krealloc: Fix MTE false alarm in __do_krealloc - [x86] platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors (CVE-2024-49986) - fs/ntfs3: Fix general protection fault in run_is_mapped_full (CVE-2024-50243) - 9p: fix slab cache name creation for real https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119 - netlink: terminate outstanding dump on socket close - [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning - mptcp: error out earlier on disconnect - net/mlx5: fs, lock FTE when checking if active - net/mlx5e: kTLS, Fix incorrect page refcounting - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow - virtio/vsock: Fix accept_queue memory leak - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS - Bluetooth: hci_core: Fix calling mgmt_device_connected - net/sched: cls_u32: replace int refcounts with proper refcounts - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for hnodes. - bonding: add ns target multicast address to slave device - [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels - [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof - ocfs2: uncache inode which has failed entering the group - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map - ima: fix buffer overrun in ima_eventdigest_init_common - [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled - [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state - [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 - ocfs2: fix UBSAN warning in ocfs2_verify_volume() - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K" - mmc: sunxi-mmc: Fix A100 compatible description - drm/bridge: tc358768: Fix DSI command tx - drm/amd: Fix initialization mistake for NBIO 7.7.0 - staging: vchiq_arm: Get the rid off struct vchiq_2835_state - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation - fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242) - Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964) - lib/buildid: Fix build ID parsing logic - cxl/pci: fix error code in __cxl_hdm_decode_init() - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point - NFSD: Async COPY result needs to return a write verifier - NFSD: Limit the number of concurrent async COPY operations (CVE-2024-49974) - NFSD: Initialize struct nfsd4_copy earlier - NFSD: Never decrement pending_async_copies on error - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust - mptcp: define more local variables sk - mptcp: add userspace_pm_lookup_addr_by_id helper - mptcp: update local address flags when setting it - mptcp: hold pm lock when deleting entry - mptcp: drop lookup_by_id in lookup_addr - mptcp: pm: use _rcu variant under rcu_read_lock - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954) - ksmbd: fix potencial out-of-bounds when buffer offset is invalid (CVE-2024-26952) - net: add copy_safe_from_sockptr() helper - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies - fs/9p: fix uninitialized values during inode evict (CVE-2024-36923) - ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322) - net/sched: taprio: extend minimum interval restriction to entire cycle too (CVE-2024-36244) - net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553) - mm: revert "mm: shmem: fix data-race in shmem_getattr()" - mm: avoid unsafe VMA hook invocation when error arises on mmap hook - mm: unconditionally close VMAs on error - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling - mm: resolve faulty mmap_region() error path behaviour - drm/amd: check num of link levels when update pcie param (CVE-2023-52812) - char: xillybus: Prevent use-after-free due to race condition (CVE-2022-45888) - null_blk: Remove usage of the deprecated ida_simple_xx() API - null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' (CVE-2024-36478) - null_blk: Fix return value of nullb_device_power_store() - parisc: fix a possible DMA corruption (CVE-2024-44949) - char: xillybus: Fix trivial bug with mutex - net: Make copy_safe_from_sockptr() match documentation . [ Salvatore Bonaccorso ] * Bump ABI to 28 * [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems" (Closes: #1085762) Checksums-Sha1: e78ba83bbe786eed2326df5fef8f3537a7c6b506 834536 bpftool-dbgsym_7.1.0+6.1.119-1_amd64.deb 8be2c696c809404a408c9ba6ea5832d9c8505afd 1179660 bpftool_7.1.0+6.1.119-1_amd64.deb 056c581f3c525d6685b859e5c30676a450c381d6 48668 hyperv-daemons-dbgsym_6.1.119-1_amd64.deb 44988052dd30cdd6170c6ab1307fc669e33625c0 945284 hyperv-daemons_6.1.119-1_amd64.deb bbb08c022c4c25c9d3c4264a61d5c89840e29f20 929640 libcpupower-dev_6.1.119-1_amd64.deb 370191c1392b53d21e27ebff11b050855e4f12fc 25036 libcpupower1-dbgsym_6.1.119-1_amd64.deb 8c0c36f0c12456b15c54ebe92d8fdb6b64056c95 935736 libcpupower1_6.1.119-1_amd64.deb e382465b6f52716aaa11ebf09b5827e576803c78 927708 linux-compiler-gcc-12-x86_6.1.119-1_amd64.deb 41153bf05cc18d76bf3253ffee3135ba881a0e98 1061740 linux-config-6.1_6.1.119-1_amd64.deb 9a1daa5944f26626ddf8ce225bd49581fc527144 211412 linux-cpupower-dbgsym_6.1.119-1_amd64.deb 950d3b7f1fb3d1be8194b9ff5039a278159b3a50 1039128 linux-cpupower_6.1.119-1_amd64.deb 5ae385de8c6d72f10215042ea76100e53415a46d 1458668 linux-headers-6.1.0-28-amd64_6.1.119-1_amd64.deb 1aa446a060cf8301c19a2b312db22e2b9b3a2e5b 1210516 linux-headers-6.1.0-28-cloud-amd64_6.1.119-1_amd64.deb 40d416bad8fd321f7388d8ab96c8c20ee92c799e 1458108 linux-headers-6.1.0-28-rt-amd64_6.1.119-1_amd64.deb fff3cb4289f063cc6cce1c809ec3fa44e7e8e0eb 851835832 linux-image-6.1.0-28-amd64-dbg_6.1.119-1_amd64.deb 9cd93fd32ce383650cc275b9b720388f7b17bece 67848220 linux-image-6.1.0-28-amd64-unsigned_6.1.119-1_amd64.deb 87d95cafc72e9445d73c79fdef31647abdcadc0f 279441256 linux-image-6.1.0-28-cloud-amd64-dbg_6.1.119-1_amd64.deb 167cc4587f5183e3b4e056a55edb7829bbed3e98 25558140 linux-image-6.1.0-28-cloud-amd64-unsigned_6.1.119-1_amd64.deb 6b9f9fa98adab5d2597fb875967420ccbec8cad4 854057396 linux-image-6.1.0-28-rt-amd64-dbg_6.1.119-1_amd64.deb 5155fb728fd3ac61221542e68c875278ef895c0b 67796184 linux-image-6.1.0-28-rt-amd64-unsigned_6.1.119-1_amd64.deb 070815bd5ca54325d273856812240e2fb4b790c5 1296 linux-image-amd64-dbg_6.1.119-1_amd64.deb bcb771542baf71bf1a32ca63b4cc53f2086b49f5 1663832 linux-image-amd64-signed-template_6.1.119-1_amd64.deb 9e334c60d9cf366d5d8561ff36952fef01e34672 1324 linux-image-cloud-amd64-dbg_6.1.119-1_amd64.deb ef642a5fa519b1dc508437ac7023c55e87835716 1316 linux-image-rt-amd64-dbg_6.1.119-1_amd64.deb 2377784d79abc6479e77f3c02e1d1d927c4bb3d9 1026324 linux-kbuild-6.1-dbgsym_6.1.119-1_amd64.deb 93972c26342e0e7b6b26d18c9b851e613fe5dce2 1184396 linux-kbuild-6.1_6.1.119-1_amd64.deb 6369d6a191a5765bde41af1122a8f0655427b9e6 2074292 linux-libc-dev_6.1.119-1_amd64.deb 8b4c100e2dd5ae40b266c49d5cd23abc69575e17 8118892 linux-perf-dbgsym_6.1.119-1_amd64.deb 90dc9c41b72485a81aa35ec9c6e29b9613e960a3 3047428 linux-perf_6.1.119-1_amd64.deb 29895ec1a64cfa98990546f7dbe99c722cf047fa 20080 linux_6.1.119-1_amd64-buildd.buildinfo 7b8d646365f88958aba46ff2021135d70341ebac 965536 rtla_6.1.119-1_amd64.deb c7cb480dfb4b16fac32f0b5c1f05f8455a78b89d 145276 usbip-dbgsym_2.0+6.1.119-1_amd64.deb 7f445080872bc3dc03232e31d3d8171be31ddc29 970540 usbip_2.0+6.1.119-1_amd64.deb Checksums-Sha256: e6109ba6fa4fff95bf71486577d8fd3eaa135a16b5722e71192ccf126782e2a2 834536 bpftool-dbgsym_7.1.0+6.1.119-1_amd64.deb 6bf69fb8686def800bfc951efbd25e610179f564d0529c5f5598ea7cfda4c4c8 1179660 bpftool_7.1.0+6.1.119-1_amd64.deb e8327a2474fd5c5f5742fbf9d9a64cd116d426979d5e55e886adec0d4f2c8049 48668 hyperv-daemons-dbgsym_6.1.119-1_amd64.deb 1a8455c7683f4bed5782f893349e00104b3d0ce9f9650e6592dac8f236a51127 945284 hyperv-daemons_6.1.119-1_amd64.deb 715d7ee930ed4f6833e421cdef375932227b52206d02e6fa7d16891c659f6c4c 929640 libcpupower-dev_6.1.119-1_amd64.deb 097bd20e90cccc12a94892e55e1ae13daf4e5c252e25507090ce418ad35fed4e 25036 libcpupower1-dbgsym_6.1.119-1_amd64.deb ac7c78291266a5290c91c42b41616366315c5b59dde8de1881e3ca2f878e6fa9 935736 libcpupower1_6.1.119-1_amd64.deb 6545467cca5d682d33a87a7d7ba1fe0406f831959c36489b5801279dd0734741 927708 linux-compiler-gcc-12-x86_6.1.119-1_amd64.deb 964a742698b4e1ba71eab81309d1450897cfd7346bdd0b54224c71e0c0568b56 1061740 linux-config-6.1_6.1.119-1_amd64.deb 5856ffa386ab3d4de3617f0d33f4b25d524153f5d873f23a84f957977438a7d8 211412 linux-cpupower-dbgsym_6.1.119-1_amd64.deb 4824d4aa6997646546d5f49bc1e75cdc17c317a19e7227485548e649063bb7f2 1039128 linux-cpupower_6.1.119-1_amd64.deb f086affa48e61811bd589675157af6f2100f817031d6359654cf049fa62d461c 1458668 linux-headers-6.1.0-28-amd64_6.1.119-1_amd64.deb c2e875bccc527efbdd5b1f3036413ee72f0de15cfd75ed7a9be7dad78edfe0de 1210516 linux-headers-6.1.0-28-cloud-amd64_6.1.119-1_amd64.deb 04a72bba2334abb0918876bc45c4bc41d0f1b280867924a6207bcd41f7081918 1458108 linux-headers-6.1.0-28-rt-amd64_6.1.119-1_amd64.deb 73e1bc4521692c10a7ba0e287dce93ca42236ef8a00db1cd861441898722c58a 851835832 linux-image-6.1.0-28-amd64-dbg_6.1.119-1_amd64.deb f72984f56a09e5c90714bca1c70a0f19117ce751ab40b935d5fbe99d03e54511 67848220 linux-image-6.1.0-28-amd64-unsigned_6.1.119-1_amd64.deb 87b081e0df04a698655b3a55cf544ce41352621d416fd8f2bb8c3872f9a7ae13 279441256 linux-image-6.1.0-28-cloud-amd64-dbg_6.1.119-1_amd64.deb 25c7f1df3df0742eed167a684ac94499a358694b25505f0962ae9b9078711862 25558140 linux-image-6.1.0-28-cloud-amd64-unsigned_6.1.119-1_amd64.deb 1d7d372fe110a9945c950658b7ed846865ff365b1f68f86fd2580b4fa101d015 854057396 linux-image-6.1.0-28-rt-amd64-dbg_6.1.119-1_amd64.deb 991f93707cd5f1dbb53d1a0edeadc7082d90b95030304a12a7a46d7966f536f1 67796184 linux-image-6.1.0-28-rt-amd64-unsigned_6.1.119-1_amd64.deb 4144b54d55e34af43aa010173d362ab98e2291986adb8483d05b53d015120439 1296 linux-image-amd64-dbg_6.1.119-1_amd64.deb 4d881b1b022fc743423bec4aa47ffc74aa5e090943601b5b028bf6cddf2a6a11 1663832 linux-image-amd64-signed-template_6.1.119-1_amd64.deb 20afcf177f06758547efdfdcb9ee2cd58389afdfd221b33f3579c6c4f89e1125 1324 linux-image-cloud-amd64-dbg_6.1.119-1_amd64.deb 3132112c14a73a25507c1204cf45a9042ea73bf1affdc375d5d79f7e8882d958 1316 linux-image-rt-amd64-dbg_6.1.119-1_amd64.deb a0550529df680f6120a366580b41a7fd5bd206c755a072a05d633dd9450f3f24 1026324 linux-kbuild-6.1-dbgsym_6.1.119-1_amd64.deb 9cdd23315c5568a2eb57c2242d3a7be0a4dae21f2869fb46eb90e057dc5b6845 1184396 linux-kbuild-6.1_6.1.119-1_amd64.deb 2feea43a31f3c2812c262669c12b114a198a193072daacf30a4d8aab73b0cf93 2074292 linux-libc-dev_6.1.119-1_amd64.deb a1edc841471ccd10e01fb6bee232d5f77b75bb70af18711cab87da6c677cd1ab 8118892 linux-perf-dbgsym_6.1.119-1_amd64.deb 7fa85e6e9401e350244a0a02f2fa7e45de7f23d93ece49113e7ef03fd201ece4 3047428 linux-perf_6.1.119-1_amd64.deb a7c9d6cd33b0c434486c2462b3cee980f6814439b7402bd046b23b69d2c3ae74 20080 linux_6.1.119-1_amd64-buildd.buildinfo d91a71d1f6e678d3dcd1776197aeecd857dd76038c30e2855b6da46691e3d503 965536 rtla_6.1.119-1_amd64.deb 92b4ef61d5b79f7b1f34b4e2b7e08175fc45e8a17ceda06f17e8361195b22e26 145276 usbip-dbgsym_2.0+6.1.119-1_amd64.deb ac2c8e1f0fcd9fea16f4e89fa880705c0cac33e7714890ce7ffa2efe49f0118c 970540 usbip_2.0+6.1.119-1_amd64.deb Files: b62e0c51a4fe40be1a94c38e09f13ff6 834536 debug optional bpftool-dbgsym_7.1.0+6.1.119-1_amd64.deb febd99000ca7c430d387de9dc87fc239 1179660 devel optional bpftool_7.1.0+6.1.119-1_amd64.deb 3591539e7e3ccda0a6a38062811bab14 48668 debug optional hyperv-daemons-dbgsym_6.1.119-1_amd64.deb 2a3cabf0d6f55a7c6a7e12a56c03c6e6 945284 admin optional hyperv-daemons_6.1.119-1_amd64.deb 048cfb456b5c917d745eace900e09e74 929640 libdevel optional libcpupower-dev_6.1.119-1_amd64.deb 91daadf88a82973bdc15b6edcca63818 25036 debug optional libcpupower1-dbgsym_6.1.119-1_amd64.deb f92964a296217aab70caec9d16acec2e 935736 libs optional libcpupower1_6.1.119-1_amd64.deb 1c537bae3bd5e9c86d5e91c876de93bc 927708 kernel optional linux-compiler-gcc-12-x86_6.1.119-1_amd64.deb 1b34e9d79a36de4981a72c677c1746f2 1061740 kernel optional linux-config-6.1_6.1.119-1_amd64.deb 90d1c24f8b6c52baf1e226c12f52747d 211412 debug optional linux-cpupower-dbgsym_6.1.119-1_amd64.deb ebbf2a80eade3d57e30ef88533f06e55 1039128 admin optional linux-cpupower_6.1.119-1_amd64.deb da528c406acd59aeebc58d395bad22e0 1458668 kernel optional linux-headers-6.1.0-28-amd64_6.1.119-1_amd64.deb 5c3b8297285c0332b67d1ca6302e56fc 1210516 kernel optional linux-headers-6.1.0-28-cloud-amd64_6.1.119-1_amd64.deb 16c9de7b13b5abe0ce929e7088e13ee5 1458108 kernel optional linux-headers-6.1.0-28-rt-amd64_6.1.119-1_amd64.deb 3055e2de22a56d5bd4773b9c2a886181 851835832 debug optional linux-image-6.1.0-28-amd64-dbg_6.1.119-1_amd64.deb 293163f2047995ae0f5fbf46a06de488 67848220 kernel optional linux-image-6.1.0-28-amd64-unsigned_6.1.119-1_amd64.deb 4c632fb28e0f98e26b2e7477865ed03a 279441256 debug optional linux-image-6.1.0-28-cloud-amd64-dbg_6.1.119-1_amd64.deb ecd3b680a0af7ca7e93db93a1b4ff1c4 25558140 kernel optional linux-image-6.1.0-28-cloud-amd64-unsigned_6.1.119-1_amd64.deb 2be4adee5bb90e756ae26d6eef359fb6 854057396 debug optional linux-image-6.1.0-28-rt-amd64-dbg_6.1.119-1_amd64.deb def7af98f7c2bd4879965b445592dd33 67796184 kernel optional linux-image-6.1.0-28-rt-amd64-unsigned_6.1.119-1_amd64.deb dc93e0179cb7457886ecbdacb2d8559b 1296 kernel optional linux-image-amd64-dbg_6.1.119-1_amd64.deb e0b2314b254008f2f0c6914447b7a102 1663832 kernel optional linux-image-amd64-signed-template_6.1.119-1_amd64.deb b4ec52acbbfbce3c74f5bc7e9d87c35f 1324 kernel optional linux-image-cloud-amd64-dbg_6.1.119-1_amd64.deb 40e20b93e017ab6db75dc5b555725322 1316 kernel optional linux-image-rt-amd64-dbg_6.1.119-1_amd64.deb 58c44f19e0719026041c5e0f585e9d0f 1026324 debug optional linux-kbuild-6.1-dbgsym_6.1.119-1_amd64.deb 623edd53868aa517d2bfe95fca06fae9 1184396 kernel optional linux-kbuild-6.1_6.1.119-1_amd64.deb d04d3f01998073c89fad7f392fc0ab1b 2074292 devel optional linux-libc-dev_6.1.119-1_amd64.deb 7ee3647a86e17aebb71887eca8c04b8b 8118892 debug optional linux-perf-dbgsym_6.1.119-1_amd64.deb 94497fd158bcc0e6f44fb2009ed1ee9f 3047428 devel optional linux-perf_6.1.119-1_amd64.deb 5a417286e466defb6be3fdd9482e6ff2 20080 kernel optional linux_6.1.119-1_amd64-buildd.buildinfo 5eb2e1bfbb32b958437cd4f0a1c02e7a 965536 devel optional rtla_6.1.119-1_amd64.deb b7725516223d02c5501923cd29081055 145276 debug optional usbip-dbgsym_2.0+6.1.119-1_amd64.deb 054aa8180a134ba46aaf24d01cf63c2c 970540 admin optional usbip_2.0+6.1.119-1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE4Unr4QHS5Yi4rr9Q3KGKEAtjIVgFAmdBogkACgkQ3KGKEAtj IVj+1A/9GwzdxOmyfoNGS1y7gl8AOQM0Mf0xKkVpZhJIPqbh0lKS/YZLGjlog1M0 N9ZBVA3trNw4SnNdqBANePlCOyhvpunJ/noW7qbNQVLTN/drGv2bvxvhlCG+ZcD9 w/RP/O9Rf4PHnbqLjrcGz2TZkPp78x0ThM+jOh1IYUsOS9Dfg+IZ3jZc9ApVSsbc dKuo2+mkX+4cjJ3R0GqzpU5z7Fhzioi5b7UttQtZNDZ0E3TzD1tZ3QhYr1EJjVpz +82kKUd6eLA0sr0fm8uEysjikUziBtdn+lTNTs2AHRFkZ2fzqHKBdr1pfMJLXpsP MICAC2nOznaM2zs3PRcoOhpeAOPqC9OJ4jIEbq0KGoCfNu2d3DK0f9ZTnWs5MVqk eA0ZWh/ll5jNT/2V3XubO5VP9TOp2n5rrAsZ/AFvUDbFZZSfx9T6vqqYRsAR7nlS 288yiRoc8rBynM4STOfNd9syynC9OsdA6GC1S5um9fmRP9t/epd0Hinx2aXQLvvm 9BO29nRsA6NkXZzAw/Vp2Mw5UmGeW4XIAFzB9Joy67Bn7VtDzPVaVDqIg5KHI9hh m/H2+HCNjN4HKUmHjNNUiLlnSvmgrnFOETai+So1uBzgsXK0Bv89ggQk3IFQJ1cb 3BAHyrvXkpSqcGg07dgtm3ICNdjVl3GSSr20W5GWoru8EG+chqg= =d2wS -----END PGP SIGNATURE-----