From patchwork Thu Apr 23 15:32:08 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86743 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id D7D5CFC0349 for ; Thu, 23 Apr 2026 15:32:30 +0000 (UTC) Received: from mail-qv1-f51.google.com (mail-qv1-f51.google.com [209.85.219.51]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.393.1776958347025581887 for ; Thu, 23 Apr 2026 08:32:27 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=T4TWJAW9; spf=pass (domain: gmail.com, ip: 209.85.219.51, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f51.google.com with SMTP id 6a1803df08f44-8a58057d7baso81985746d6.1 for ; Thu, 23 Apr 2026 08:32:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958346; x=1777563146; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=MAwZPW7EeoGUOgOrFyqos8v/nYHRS9zlHcXdETbnyeo=; b=T4TWJAW9avKXoQucjh6WM6Il8cXIoT/p3aWtneAevtWuDhnZrWOo87cc4BgHQjYF3t PpO68HIzNAh8ypX1C6ZCgaKnxSyhQwLfUticG6/i2VUYiFzLUMK+wvLRWA3MDNovQsgh Ovboow9B8ktlyI3xzDYMvWXqA1/MjJ/Ohae92bhYjjYR+pA+1qSeyr3PUPfBj4vj+76Z sjFLKV6pHN3fNTIX5cfvXjySU4WFbapoX/Ib+9eEwYoPRtewExKQ7mwJcwTYLP+KXCLR BmYxCSf/ibWDU9k2Ax3Pi4NoWp1vfeQG5yAs2vKPKH4fBRpblN+UrbS91Mkcn6498gvx Mtbw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958346; x=1777563146; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=MAwZPW7EeoGUOgOrFyqos8v/nYHRS9zlHcXdETbnyeo=; b=kCqL2f/blPhj0MMVr2/ehuyRaLsjyrSMx8O6/HU096RUiRijLs3aoIVTMX14LffVYt o5oA8oGvBzIljy1OCjH6VPAr+ZmlCUHKBtbJRALqU/P6w+27Yw6HN/JVHujy4JhJYH+K fVOBGw97mEhxZfE53AaV//+EVxKXpuQZSGyWdCWWncKOs4eqkCWCRtxydFo3+fmXG89m c83ELhKG7xM2myM57lBH2vFqn3JpsdpHu1acR6yC2xoksdln3NQTm9hJHYYUtbumXP6O K8ShHnPEM3Pom6rsF+euln9wCvIC8u+GabpPhX/WJJEGiV4VNT+qygocOJyWJ0fX8qg1 GUrw== X-Gm-Message-State: AOJu0YzOF9pjH/maBycPuLi79vZQpaR2n2kSuV0pgn/JtRNIk/u/X+XU Np3lsB0I8fyLVUYehPIebaaPggjDGLlsBsG8qR9hfhD6TZqgglFUbDRS++Cx7qkE X-Gm-Gg: AeBDiet0UU9fMxvuLyh/Apg8j6lI/lPpCkKCpb3DPyj9lRsY20XfAPftxM4ZwfZMn9+ OQD6qbXzK/q23fuuN0T72TQA/ls2S6L5McZlrXwv6Bww1vKDQNQFNMr1gGSOOJ9LkAyJYWEegkc UTjMk1papIzRDSpwIypkUW7BLhne1EX6EBrL3VYC1dFBEYp1u2AZI/xSvfmW9iDee1DSQCu4UPD zLldkcxbq7rN2vasrargb5m2/yo4UKVC/8+qOMNspfazTrO1krLmhHyk2uQN4rrC9WJ2lhOxH13 DHx5bf/joiC3OyE0/yJwLMK9gaUPx4wqQCOFKLQW4s3ziDJrzrncswvubInWNDOwlj10jpQ9LjA v9Bey8c41yLxUzeYZI4IOxzeAc+QWuq5f7T1fUNYjCBKG7XenOzn10+tUN1LxI6ESfdBYGFWP0/ rX/YhJtt7Ljn3/Bv4B1yTaSmiWDta77Ev7+rUroFONja+3a4hco8746EhWAl5e0F8p5VoXyxDUq 0PrZUVaxxX1zDJp5ctuJSO8apu0/nozsb9SJe4qdSy233AnsPaWOEYoVcP+ebd9dHblftmwFY19 TDfX X-Received: by 2002:a05:6214:226c:b0:8a6:1216:fb6f with SMTP id 6a1803df08f44-8b0280ef2ecmr428263596d6.32.1776958345602; Thu, 23 Apr 2026 08:32:25 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.24 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:25 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 01/15] linux-yocto/6.18: update to v6.18.20 Date: Thu, 23 Apr 2026 11:32:08 -0400 Message-ID: <20260423153222.1932256-2-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:30 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235776 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: dd26ea937ef59 Linux 6.18.20 a52e3970f9717 xen/privcmd: add boot control for restricted usage in domU 389bae9a44099 xen/privcmd: restrict usage in unprivileged domU f909f22f5cec6 hwmon: (max6639) Fix pulses-per-revolution implementation 96955cf9f5ba6 arm64: realm: Fix PTE_NS_SHARED for 52bit PA support ef6e6484747e3 tools/bootconfig: fix fd leak in load_xbc_file() on fstat failure d03e8c281fd3e lib/bootconfig: check xbc_init_node() return in override path 3ab1d7c8b6b7e fs/tests: exec: Remove bad test vector cf4b224ffb9a5 drm/i915/gt: Check set_default_submission() before deferencing a5828c14a9e3d ksmbd: fix use-after-free in durable v2 replay of active file handles 7f7468fd2a755 ksmbd: fix use-after-free of share_conf in compound request 2cb24caacee21 drm/bridge: dw-hdmi-qp: fix multi-channel audio output c51a5319bf655 drm/amd: fix dcn 2.01 check 430334e9e4e81 drm/amd/display: Fix DisplayID not-found handling in parse_edid_displayid_vrr() 58abeb7b9562f iommu/sva: Fix crash in iommu_sva_unbind_device() 3f300a41a3668 drm/vmwgfx: Don't overwrite KMS surface dirty tracker bec21d97c968a spi: amlogic-spisg: Fix memory leak in aml_spisg_probe() f15e0706e366b spi: amlogic: spifc-a4: Remove redundant clock cleanup a9e119d027fd5 mtd: rawnand: brcmnand: skip DMA during panic write 5fd5c078af23c mtd: rawnand: serialize lock/unlock against other NAND operations f8b5b833728bf binfmt_elf_fdpic: fix AUXV size calculation for ELF_HWCAP3 and ELF_HWCAP4 75668e58244e6 tracing: Fix trace_marker copy link list updates 79f0faf81d3bb x86/platform/uv: Handle deconfigured sockets 38539f55f61ad tracing: Fix failure to read user space from system call trace events b6925774dd15d ring-buffer: Fix to update per-subbuf entries of persistent ring buffer 886fa86915391 perf/x86: Move event pointer setup earlier in x86_pmu_enable() ed1f5c1d43c30 perf/x86/intel: Add missing branch counters constraint apply 560ec8f998522 irqchip/riscv-rpmi-sysmsi: Fix mailbox channel leak in rpmi_sysmsi_probe() aa9faa6486cfc i2c: pxa: defer reset on Armada 3700 when recovery is used bf8a9c92cdd1f i2c: fsi: Fix a potential leak in fsi_i2c_probe() a9778298f4703 i2c: cp2615: fix serial string NULL-deref at probe 7003794316b18 USB: serial: f81232: fix incomplete serial port generation 58b91c5cb685a hwmon: (pmbus/isl68137) Fix unchecked return value and use sysfs_emit() 81f61e3e1ca2d hwmon: (pmbus/mp2869) Check pmbus_read_byte_data() before using its return value 48fed64590800 hwmon: (pmbus/mp2975) Add error check for pmbus_read_word_data() return value 4418f3186b223 hwmon: (pmbus/ina233) Add error check for pmbus_read_word_data() return value beab26de7bcac MPTCP: fix lock class name family in pm_nl_create_listen_socket d938dd5a0ad78 icmp: fix NULL pointer dereference in icmp_tag_validation() 6ab68b4adf744 net: dsa: bcm_sf2: fix missing clk_disable_unprepare() in error paths 719f6784f918f net: shaper: protect from late creation of hierarchy 581eee0890a8b net: shaper: protect late read accesses to the hierarchy 7df2b50cae1a7 net: mvpp2: guard flow control update with global_tx_fc in buffer switching 3932620c04c29 nfnetlink_osf: validate individual option lengths in fingerprints c8092edb9a11f netfilter: nf_tables: release flowtable after rcu grace period on error c25e0dec366ae netfilter: bpf: defer hook memory release until rcu readers are done 017d674cf6930 net: bonding: fix NULL deref in bond_debug_rlb_hash_show 003343985f26d udp_tunnel: fix NULL deref caused by udp_sock_create6 when CONFIG_IPV6=n 96c9c25b74686 net/mlx5e: Fix race condition during IPSec ESN update 2c6a5be0aee5a net/mlx5e: Prevent concurrent access to IPSec ASO context ea52e95be4638 net/mlx5: qos: Restrict RTNL area to avoid a lock cycle c852ebfe43344 net: macb: fix uninitialized rx_fs_lock 63e192b8956a2 netdevsim: drop PSP ext ref on forward failure 98473309a36ac ACPI: processor: Fix previous acpi_processor_errata_piix4() fix 06e769dddcbeb wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure 46c670ff1ff46 wifi: wlcore: Return -ENOMEM instead of -EAGAIN if there is not enough headroom 44699c6cdfce8 wifi: mac80211: fix NULL deref in mesh_matches_local() 5f284b12cc127 libie: prevent memleak in fwlog code cff11b1c03e6f iavf: fix VLAN filter lost on add/delete race 31521c124e648 igc: fix page fault in XDP TX timestamps handling 3472c22c067ab igc: fix missing update of skb->tail in igc_xmit_frame() 89b2b1c64d09a ACPICA: Update the format of Arg3 of _DSM d3e32a612c639 net: usb: aqc111: Do not perform PM inside suspend callback 4c9af67f99aa3 clsact: Fix use-after-free in init/destroy rollback asymmetry a5bd5a2710310 net: usb: cdc_ncm: add ndpoffset to NDP32 nframes bounds check 403f94ddcb36c net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check d538b371da1e7 net: airoha: Remove airoha_dev_stop() in airoha_remove() e9c66d3e7d855 net/sched: teql: Fix double-free in teql_master_xmit fd7579f0a2c84 net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() 4172a7901cf43 bonding: prevent potential infinite loop in bond_header_parse() bb081fd37f831 PM: runtime: Fix a race condition related to device removal 34c979e29bf68 sched: idle: Consolidate the handling of two special cases afdb1533eb9c0 net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown 6995dcc1a93de net: bcmgenet: increase WoL poll timeout 683be1d1670e9 crypto: ccp - Fix leaking the same page twice 9d00fe7d6d7c5 netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() f1aa81396d779 netfilter: xt_time: use unsigned int for monthday bit shift cb549925875fa netfilter: xt_CT: drop pending enqueued packets on template removal f29a055e4f593 netfilter: nft_ct: drop pending enqueued packets on removal 31641c682db73 nf_tables: nft_dynset: fix possible stateful expression memleak in error path 6bce72daeccca netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case 865dba58958c3 netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() 04c8907ce4e3d netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() e01a597707c88 mpls: add missing unregister_netdevice_notifier to mpls_init 0c3e8bff808f1 net/rose: fix NULL pointer dereference in rose_transmit_link on reconnect d8f35767bacb3 bridge: cfm: Fix race condition in peer_mep deletion 1e1b7a7496a2e Bluetooth: qca: fix ROM version reading on WCN3998 chips da3000cbe4851 Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user f8b6ed2f06d3b Bluetooth: HIDP: Fix possible UAF b5c5e96f3b0a5 Bluetooth: MGMT: Fix list corruption and UAF in command complete handlers 84d041cfefab5 Bluetooth: hci_sync: Fix hci_le_create_conn_sync 874e73969d48c Bluetooth: ISO: Fix defer tests being unstable fce04c8b54e43 Bluetooth: SMP: make SM/PER/KDU/BI-04-C happy 37021b16b270c Bluetooth: LE L2CAP: Disconnect if sum of payload sizes exceed SDU 734aa845f2748 Bluetooth: LE L2CAP: Disconnect if received packet's SDU exceeds IMTU 70d9bd9a2e683 firmware: arm_scmi: Fix NULL dereference on notify error path d282757b0f6dd firmware: arm_scpi: Fix device_node reference leak in probe path 3983811cab779 firmware: arm_ffa: Remove vm_id argument in ffa_rxtx_unmap() ad01256fa62d0 arm64: dts: renesas: rzg3s-smarc-som: Set bypass for Versa3 PLL2 2a53d63ac78c2 arm64: dts: renesas: r9a09g087: Fix CPG register region sizes dfe08c4dde872 arm64: dts: renesas: r9a09g077: Fix CPG register region sizes fa59e9cfbed9a arm64: dts: renesas: r9a09g057: Remove wdt{0,2,3} nodes 74893eb6d3602 arm64: dts: renesas: r9a09g057: Add RTC node 2e5902c28fbde arm64: dts: renesas: rzv2-evk-cn15-sd: Add ramp delay for SD0 regulator edf76d9576907 arm64: dts: renesas: rzt2h-n2h-evk: Add ramp delay for SD0 card regulator a1b7a843f12a0 wifi: cfg80211: cancel pmsr_free_wk in cfg80211_pmsr_wdev_down 5ba05436f15d1 wifi: mac80211: Fix static_branch_dec() underflow for aql_disable. 31d4ceb785d9b wifi: mac80211: use jiffies_delta_to_msecs() for sta_info inactive times f6a620a9d6a60 wifi: mac80211: remove keys after disabling beaconing c2f6107728ea3 tee: shm: Remove refcounting of kernel pages 294e0c8bc3502 soc: fsl: cpm1: qmc: Fix error check for devm_ioremap_resource() in qmc_qe_init_resources() 85dbbf7dc88b0 soc: fsl: qbman: fix race condition in qman_destroy_fq 2315d328faa89 soc: rockchip: grf: Add missing of_node_put() when returning 640452dbc118e cache: ax45mp: Fix device node reference leak in ax45mp_cache_init() 606fcf901c132 cache: starfive: fix device node leak in starlink_cache_init() e3dd5cffba07d soc: microchip: mpfs: Fix memory leak in mpfs_sys_controller_probe() 8f9e054f605ae btrfs: tree-checker: fix misleading root drop_level error message 1cf30c73602c6 btrfs: log new dentries when logging parent dir of a conflicting inode 9691c50fd5dd1 drm/i915/psr: Compute PSR entry_setup_frames into intel_crtc_state 8d0d94f8ba5b3 Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ 1e9e2640d870d drm/xe: Open-code GGTT MMIO access protection 8613cca4f5f4f drm/xe/oa: Allow reading after disabling OA stream 954dae0d94fbf drm/xe/guc: Ensure CT state transitions via STOP before DISABLED 0b35d11fbbcfd drm/i915/dmc: Fix an unlikely NULL pointer deference at probe 5ce4a38e6c248 drm/amdgpu: Limit BO list entry count to prevent resource exhaustion 73908f65f5cc3 drm/amdgpu: apply state adjust rules to some additional HAINAN vairants c18eef45af036 drm/radeon: apply state adjust rules to some additional HAINAN vairants 772f3653eef50 drm/imagination: Synchronize interrupts before suspending the GPU 9497b1f309436 drm/imagination: Fix deadlock in soft reset sequence 7687403d65805 drm/amdgpu/mmhub4.1.0: add bounds checking for cid 72365be44cc7e drm/amdgpu/mmhub3.0: add bounds checking for cid 4b9e5676db815 drm/amdgpu/mmhub3.0.2: add bounds checking for cid 56f0473d3c631 drm/amdgpu/mmhub3.0.1: add bounds checking for cid 603db8a36517c drm/amdgpu/mmhub2.3: add bounds checking for cid 2c4eea0eba197 drm/amdgpu/mmhub2.0: add bounds checking for cid 3256b95b2d3c4 drm/amdgpu/gmc9.0: add bounds checking for cid e25fff4a9eac9 drm/amd/display: Wrap dcn32_override_min_req_memclk() in DC_FP_{START, END} 074d06d3724cc drm: Fix use-after-free on framebuffers and property blobs when calling drm_dev_unplug 3b02923b046af serial: uartlite: fix PM runtime usage count underflow on probe efe85a557186b serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN a773f019c0b06 serial: 8250_dw: Ensure BUSY is deasserted 0e16f461f2b19 serial: 8250: Add late synchronize_irq() to shutdown to handle DW UART BUSY 5dfd8c76c0a4d serial: 8250_dw: Rework IIR_NO_INT handling to stop interrupt storm 2d21617bce4f2 serial: 8250_dw: Rework dw8250_handle_irq() locking and IIR handling 9bb497252a420 serial: 8250: Add serial8250_handle_irq_locked() 3b1d813de41eb serial: 8250_dw: Avoid unnecessary LCR writes e6cc0536d1547 serial: 8250: Protect LCR write in shutdown 4afc12dae7487 serial: 8250: always disable IRQ during THRE test 5f6b17562f03f serial: 8250: Fix TX deadlock when using DMA 5e5b209b2d932 serial: 8250_pci: add support for the AX99100 c4efef65a46f6 vt: save/restore unicode screen buffer for alternate screen 19e46bf37943b io_uring/kbuf: propagate BUF_MORE through early buffer commit path f98405afd2a70 io_uring/kbuf: fix missing BUF_MORE for incremental buffers at EOF 0f4ce79b8db7b io_uring/poll: fix multishot recv missing EOF on wakeup race ee312bb1052e4 iommu/vt-d: Only handle IOPF for SVA when PRI is supported 300e7cfdc92bb iommu/vt-d: Fix intel iommu iotlb sync hardlockup and retry c4054ad2d8bff mtd: Avoid boot crash in RedBoot partition table parser 215f6d6845a3e mtd: rawnand: cadence: Fix error check for dma_alloc_coherent() in cadence_nand_init() 978f50a3d7dac mtd: rawnand: pl353: make sure optimal timings are applied 378b295f67102 spi: fix statistics allocation 80f3e8cd2b4ad spi: fix use-after-free on controller registration failure 18605b1b936b6 pmdomain: bcm: bcm2835-power: Increase ASB control timeout 5ed633b212bda mmc: sdhci: fix timing selection for 1-bit bus width c8d5757ab6d6a mmc: sdhci-pci-gli: fix GL9750 DMA write corruption 1343f110663dd ata: libata-scsi: report correct sense field pointer in ata_scsiop_maint_in() 2229b4cf97301 ata: libata-core: disable LPM on ADATA SU680 SSD 08b2b65c63bb2 mm/huge_memory: fix a folio_split() race condition with folio_try_get() edb6c2118293c ipmi:msghandler: Handle error returns from the SMI sender 1e363c11cd2f1 ipmi: Consolidate the run to completion checking for xmit msgs lock 522acaae34aa7 sched_ext: Disable preemption between scx_claim_exit() and kicking helper work c1b8245c0a387 sched_ext: Simplify breather mechanism with scx_aborting flag c44198f25fdfe sched_ext: Fix starvation of scx_enable() under fair-class saturation 2f3dea284c761 nsfs: tighten permission checks for ns iteration ioctls 05edc78eb4699 drm/xe/sync: Fix user fence leak on alloc failure 528aaa37d3c3f fgraph: Fix thresh_return nosleeptime double-adjust 407cc37c21d51 ksmbd: Don't log keys in SMB3 signing and encryption key generation 58f5d34f88e8f net: macb: Shuffle the tx ring before enabling tx 0cbc0d719ecc1 net: macb: sort #includes 8a7d29b8bda14 drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL 1aa7745b97fda drm/i915/vrr: Move HAS_VRR() check into intel_vrr_set_transcoder_timings() c3aa7b837920c drm/xe: Fix memory leak in xe_vm_madvise_ioctl f655467a9973f cifs: open files should not hold ref on superblock 6f502049a96b3 crypto: atmel-sha204a - Fix OOM ->tfm_count leak 2d7238eec40ad netconsole: fix sysdata_release_enabled_show checking wrong flag f13fe67947267 ublk: fix NULL pointer dereference in ublk_ctrl_set_size() bea2848ba20e1 LoongArch: Check return values for set_memory_{rw,rox} fc9d6999ebfa2 net: macb: Reinitialize tx/rx queue pointer registers and rx ring during resume 4e1436e0b13c6 net: macb: Introduce gem_init_rx_ring() 4ab7c9fa0a477 drm/i915/psr: Write DSC parameters on Selective Update in ET mode a5cdbbc771470 drm/i915/dsc: Add helper for writing DSC Selective Update ET parameters 291d19d586a5a drm/i915/dsc: Add Selective Update register definitions 3d80ebe6d1b7b ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION 9feb2d1bf86d9 ksmbd: unset conn->binding on failed binding request 9ee803bfdba0c smb: client: fix krb5 mount with username option e7ff754e339e3 Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access 5a1ea296f8589 Bluetooth: L2CAP: Fix type confusion in l2cap_ecred_reconf_rsp() 1768244b85dd2 crypto: padlock-sha - Disable for Zhaoxin processor 5a86d4e920d97 mac80211: fix crash in ieee80211_chan_bw_change for AP_VLAN stations 0e35db29fc5a9 batman-adv: avoid OGM aggregation when skb tailroom is insufficient f5ed9e50c0872 parisc: Flush correct cache in cacheflush() syscall 19aa416eed9e4 bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler 1f4714065b2bc net: macb: fix use-after-free access to PTP clock 4de9ed2ea22d6 NFC: nxp-nci: allow GPIOs to sleep 8dd23bb5c6f5c LoongArch: No need to flush icache if text copy failed 250aae6a5738a LoongArch: Give more information if kmem access failed 6e096db800db8 mm/huge_memory: fix early failure try_to_migrate() when split huge pmd for shared THP f3caaee0f9e48 mm/huge_memory: fix use of NULL folio in move_pages_huge_pmd() 99888a4f340ca mm/rmap: fix incorrect pte restoration for lazyfree folios 4897bd307ba87 crash_dump: don't log dm-crypt key bytes in read_key_from_user_keying a226e5b49e5fe nvdimm/bus: Fix potential use after free in asynchronous initialization be5c35960e5ea sunrpc: fix cache_request leak in cache_release 73c5b5aea1c44 HID: bpf: prevent buffer overflow in hid_hw_request 6487774a576dd selftests/hid: fix compilation when bpf_wq and hid_device are not exported 0f0e2a54a31a7 nfsd: fix heap overflow in NFSv4.0 LOCK replay cache db4a9f99b12a7 NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd 2829e80d29b62 NFSD: Defer sub-object cleanup in export put callbacks Signed-off-by: Bruce Ashfield --- .../linux/linux-yocto-rt_6.18.bb | 6 ++--- .../linux/linux-yocto-tiny_6.18.bb | 6 ++--- meta/recipes-kernel/linux/linux-yocto_6.18.bb | 24 +++++++++---------- 3 files changed, 18 insertions(+), 18 deletions(-) diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb index 626f30fb83..f9ed72acc7 100644 --- a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb @@ -15,13 +15,13 @@ python () { raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it") } -SRCREV_machine ?= "64a2ea6184db4c022bec6090982b4b617a6c844b" -SRCREV_meta ?= "465cb5bcefd72f429e0b3ad6ab5b3fcff5b390fc" +SRCREV_machine ?= "ed994ec846841494b9a1ff2badfa89970ad1d34f" +SRCREV_meta ?= "41925d8d9ac0b1d6bdc0f9d84c5d7fd68ebcb693" SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine;protocol=https \ git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" -LINUX_VERSION ?= "6.18.19" +LINUX_VERSION ?= "6.18.20" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb index b91e05cf37..75cda179f7 100644 --- a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb @@ -9,7 +9,7 @@ require recipes-kernel/linux/linux-yocto.inc include recipes-kernel/linux/cve-exclusion.inc include recipes-kernel/linux/cve-exclusion_6.18.inc -LINUX_VERSION ?= "6.18.19" +LINUX_VERSION ?= "6.18.20" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}" @@ -18,8 +18,8 @@ DEPENDS += "openssl-native util-linux-native" KMETA = "kernel-meta" KCONF_BSP_AUDIT_LEVEL = "2" -SRCREV_machine ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_meta ?= "465cb5bcefd72f429e0b3ad6ab5b3fcff5b390fc" +SRCREV_machine ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_meta ?= "41925d8d9ac0b1d6bdc0f9d84c5d7fd68ebcb693" PV = "${LINUX_VERSION}+git" diff --git a/meta/recipes-kernel/linux/linux-yocto_6.18.bb b/meta/recipes-kernel/linux/linux-yocto_6.18.bb index c84bdf2996..63ed493450 100644 --- a/meta/recipes-kernel/linux/linux-yocto_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto_6.18.bb @@ -18,25 +18,25 @@ KBRANCH:qemux86-64 ?= "v6.18/standard/base" KBRANCH:qemuloongarch64 ?= "v6.18/standard/base" KBRANCH:qemumips64 ?= "v6.18/standard/mti-malta" -SRCREV_machine:qemuarm ?= "f1b3530df0e8d9a33dd71b5035af018bf0596618" -SRCREV_machine:qemuarm64 ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_machine:qemuloongarch64 ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" +SRCREV_machine:qemuarm ?= "d9ebaa48a5dcfb812a0ac2421600f91ca686c4d8" +SRCREV_machine:qemuarm64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemuloongarch64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" SRCREV_machine:qemumips ?= "62ea92a539f58803a222be98b81118403074206e" -SRCREV_machine:qemuppc ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_machine:qemuriscv64 ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_machine:qemuriscv32 ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_machine:qemux86 ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_machine:qemux86-64 ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" +SRCREV_machine:qemuppc ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemuriscv64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemuriscv32 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemux86 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemux86-64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" SRCREV_machine:qemumips64 ?= "9fb4ff0187c85426f21fd40d4c61b742800f65c4" -SRCREV_machine ?= "1fa8fa91abea837d76ab91c972e8387aae78157e" -SRCREV_meta ?= "465cb5bcefd72f429e0b3ad6ab5b3fcff5b390fc" +SRCREV_machine ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_meta ?= "41925d8d9ac0b1d6bdc0f9d84c5d7fd68ebcb693" # set your preferred provider of linux-yocto to 'linux-yocto-upstream', and you'll # get the /base branch, which is pure upstream -stable, and the same # meta SRCREV as the linux-yocto-standard builds. Select your version using the # normal PREFERRED_VERSION settings. BBCLASSEXTEND = "devupstream:target" -SRCREV_machine:class-devupstream ?= "4aea1dc4cad17cd146072e13b1fd404f32b8b3ef" +SRCREV_machine:class-devupstream ?= "dd26ea937ef593a9c47aa4c85296e6b57a5344a1" PN:class-devupstream = "linux-yocto-upstream" KBRANCH:class-devupstream = "v6.18/base" @@ -44,7 +44,7 @@ SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRA git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" -LINUX_VERSION ?= "6.18.19" +LINUX_VERSION ?= "6.18.20" PV = "${LINUX_VERSION}+git" From patchwork Thu Apr 23 15:32:09 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86742 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id E9ACBFC034B for ; Thu, 23 Apr 2026 15:32:30 +0000 (UTC) Received: from mail-qv1-f52.google.com (mail-qv1-f52.google.com [209.85.219.52]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.412.1776958348026438963 for ; Thu, 23 Apr 2026 08:32:28 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=qTVQvuyf; spf=pass (domain: gmail.com, ip: 209.85.219.52, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f52.google.com with SMTP id 6a1803df08f44-899d6b7b073so70825916d6.2 for ; Thu, 23 Apr 2026 08:32:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958347; x=1777563147; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=ZD9mMVkGuCzCrrv7ouqLUIu3VZQ5wctcdVKG3N9vpeU=; b=qTVQvuyfcz6GjxpLqzPb1sntr8NXLMm7VjRAlFxZITjuv1i48Nc4+bR4Tye5Kw66gA YN8OqRGTqzeRAb/0MCvD81xyHVoxA0pV8TgXlzfief/l1GqboSqOJMCBVckZbSRnIAJB mh/8jzG/OCk7prUu500EFgA51EW9z7ycyPvoM4ytwlAP8eQoc2cS19MkTU+t0LdY/+yy 9afLTl6+uMUHhCLTvatQIKHq/+HLUD6UY4XZpymrpfYzdfOKzXolIneQbzUbm9d1oqw9 OfomgNXnsdTB7y4/j1AImIS6pi/bKcAGMIkYZCVRPjdVdFTiD39rqaVPfap1595uI5UB MiYg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958347; x=1777563147; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=ZD9mMVkGuCzCrrv7ouqLUIu3VZQ5wctcdVKG3N9vpeU=; b=VJenwMyOqiLNk9PQoLrVtJVZTi8XwJ8sVHF0wG9LGFxLjg6Wciy1cbuNggasGgI08O 5f/jj5i03rfIWwN5Q/XNb5kYieLnX/rL8lnkVMa8LYtM75nJVpgTGibgYwrqB+wt9uqL QiOKtiMfNMCJXXx82blRvOx4/aH0hJ2CaodwAJkjAWPvEdKgS2AN7ufl+Po5StLHyzRA ciZhM2mzzjvYef3J6arDsfVxuMpGhifyFcIgUi5u0ZJ0sKofLenDgnH89jL/85tF8sNu qV9nlUmy3Lj4WsoPcdJZB5ibMxW3eXUQKfFoeH66ggqlhakEj8yW0H0en+PBWQnEM+4j Qkgg== X-Gm-Message-State: AOJu0Yy3D2qp53+jYAfP7l+E71XG5m2bDsB64IIrsNIZ6kGW43ldA5qy 0g1KahEw5GN8JZGQjg1tzU6k4MS0/wD5KnTDjJySYxoIC54Mmh40/+wWap3I9Ul7 X-Gm-Gg: AeBDiet1ska9UMJJnFFzE2jq/J8zhyiZYgRfpsCyrrKCQU/0EOI5Uh4JJDvuXMednP8 /r5ipfDisUse2+VQxkQ1w0H9agT5knjghAMxBVOHnrVFwJ4oXBe8xGWH3tN3arjP5mva840kd2r i2wC8x4gCdFr/uKnCPqJlGqYvOFe72ViNv6w/gM65kOUNn+3wXOl+U97NpEDMJj4/L75k/tK/nf jCFBQlTqHyGlx9fruvkwrfsoVRHVelpVuiUbLca9qmrrD6Z6TT7FA4Gwqa6S0rHaXr++v+kWvrL eYDbH+ulotaV8cKkyVPaKz972t7RmOFfioIqQzgJMh20XffMd4uxllehMAna9YuCBUat8NmMCQ0 7mS3v7oTdH+She2d4N2Kaekg/pn7fH1irN/O5MrJGgGm200ydWPqd49FRCJrzGvuopb/k5aZO1U LiiB5nwVzHqSAW3iwMKSVvBi7MQcWUOD9JZtC+ElzRNkYXEUHT2QH23r28zsWw55a0n034LVE2o +yemfq0N6dUQpRmKKwJVD64bYj5p/DZJvgaMAoJbFZdDbzi83eV7jZXKF0U8Zi2xToHK5WA7Eoq eLLM X-Received: by 2002:a05:6214:2f12:b0:89c:5b90:3d80 with SMTP id 6a1803df08f44-8b0280eaea2mr443106896d6.34.1776958346570; Thu, 23 Apr 2026 08:32:26 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.25 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:26 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 02/15] linux-yocto/6.18: update CVE exclusions (6.18.20) Date: Thu, 23 Apr 2026 11:32:09 -0400 Message-ID: <20260423153222.1932256-3-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:30 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235777 From: Bruce Ashfield Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 13 changes (7 new | 6 updated): - 7 new CVEs: CVE-2026-31943, CVE-2026-31945, CVE-2026-31950, CVE-2026-31951, CVE-2026-32241, CVE-2026-34389, CVE-2026-34391 - 6 updated CVEs: CVE-2026-26060, CVE-2026-33284, CVE-2026-34374, CVE-2026-34387, CVE-2026-4966, CVE-2026-4972 Date: Fri, 27 Mar 2026 19:35:44 +0000 ] Signed-off-by: Bruce Ashfield --- .../linux/cve-exclusion_6.18.inc | 252 +++++++++++++++++- 1 file changed, 245 insertions(+), 7 deletions(-) diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 73b93ff135..8f458e9d10 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-03-23 02:14:01.393507+00:00 for kernel version 6.18.19 -# From linux_kernel_cves cve_2026-03-23_0100Z +# Generated at 2026-03-27 19:44:12.925073+00:00 for kernel version 6.18.20 +# From linux_kernel_cves cve_2026-03-27_1900Z-1-g663ca5d2278 python check_kernel_cve_status_version() { - this_version = "6.18.19" + this_version = "6.18.20" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -2770,8 +2770,6 @@ CVE_STATUS[CVE-2022-49265] = "fixed-version: Fixed from version 5.18" CVE_STATUS[CVE-2022-49266] = "fixed-version: Fixed from version 5.18" -CVE_STATUS[CVE-2022-49267] = "fixed-version: Fixed from version 5.18" - CVE_STATUS[CVE-2022-49268] = "fixed-version: Fixed from version 5.18" CVE_STATUS[CVE-2022-49269] = "fixed-version: Fixed from version 5.18" @@ -9916,8 +9914,6 @@ CVE_STATUS[CVE-2024-27040] = "fixed-version: Fixed from version 6.9" CVE_STATUS[CVE-2024-27041] = "fixed-version: Fixed from version 6.9" -CVE_STATUS[CVE-2024-27042] = "fixed-version: Fixed from version 6.9" - CVE_STATUS[CVE-2024-27043] = "fixed-version: Fixed from version 6.9" CVE_STATUS[CVE-2024-27044] = "fixed-version: Fixed from version 6.9" @@ -21040,3 +21036,245 @@ CVE_STATUS[CVE-2026-23277] = "cpe-stable-backport: Backported in 6.18.19" CVE_STATUS[CVE-2026-23278] = "cpe-stable-backport: Backported in 6.18.19" +CVE_STATUS[CVE-2026-23279] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23280] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23281] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23282] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23283] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23284] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23285] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23286] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23287] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23288] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23289] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23290] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23291] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23292] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23293] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23294] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23295] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23296] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23297] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23298] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23299] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23300] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23301] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23302] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23303] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23304] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23305] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23306] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23307] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23308] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23309] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23310] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23311] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23312] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23313] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23314] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23315] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23316] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23317] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23318] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23319] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23320] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23321] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23322] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23323] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23324] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23325] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23326] = "cpe-stable-backport: Backported in 6.18.17" + +# CVE-2026-23327 needs backporting (fixed from 7.0rc2) + +# CVE-2026-23328 needs backporting (fixed from 7.0rc3) + +CVE_STATUS[CVE-2026-23329] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23330] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23331] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23332] = "cpe-stable-backport: Backported in 6.18.17" + +# CVE-2026-23333 has no known resolution + +CVE_STATUS[CVE-2026-23334] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23335] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23336] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23337] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23338] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23339] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23340] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23341] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23342] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23343] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23344] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23345] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23346] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23347] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23348] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23349] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23350] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23351] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23352] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23353] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23354] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23355] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23356] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23357] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23358] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23359] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23360] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23361] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23362] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23363] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23364] = "cpe-stable-backport: Backported in 6.18.19" + +CVE_STATUS[CVE-2026-23365] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23366] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23367] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23368] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23369] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23370] = "cpe-stable-backport: Backported in 6.18.17" + +# CVE-2026-23371 needs backporting (fixed from 7.0rc3) + +CVE_STATUS[CVE-2026-23372] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23373] = "cpe-stable-backport: Backported in 6.18.17" + +# CVE-2026-23374 needs backporting (fixed from 7.0rc3) + +CVE_STATUS[CVE-2026-23375] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23376] = "cpe-stable-backport: Backported in 6.18.17" + +# CVE-2026-23377 needs backporting (fixed from 7.0rc3) + +CVE_STATUS[CVE-2026-23378] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23379] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23380] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23381] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23382] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23383] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23384] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23385] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23386] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23387] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23388] = "cpe-stable-backport: Backported in 6.18.17" + +# CVE-2026-23389 needs backporting (fixed from 7.0rc3) + +CVE_STATUS[CVE-2026-23390] = "cpe-stable-backport: Backported in 6.18.13" + +CVE_STATUS[CVE-2026-23391] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23392] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23393] = "cpe-stable-backport: Backported in 6.18.20" + +# CVE-2026-23394 needs backporting (fixed from 7.0rc5) + +CVE_STATUS[CVE-2026-23395] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23396] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23397] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23398] = "cpe-stable-backport: Backported in 6.18.20" + +# CVE-2026-31788 has no known resolution + From patchwork Thu Apr 23 15:32:10 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86744 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 44E5DFC034D for ; Thu, 23 Apr 2026 15:32:31 +0000 (UTC) Received: from mail-qv1-f42.google.com (mail-qv1-f42.google.com [209.85.219.42]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.413.1776958349322164922 for ; Thu, 23 Apr 2026 08:32:29 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=XV9RbdJI; spf=pass (domain: gmail.com, ip: 209.85.219.42, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f42.google.com with SMTP id 6a1803df08f44-8aca4e14411so82145886d6.3 for ; Thu, 23 Apr 2026 08:32:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958348; x=1777563148; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=e18TMxqrE9J4/iD7zp8ZIIKHfnjT8sQa3zPHcMn5uuw=; b=XV9RbdJI6NewjjHzJkZ0fonTBE0+gvPcx7/yZ3+aXwLw1jO9PTqELaQ4QgqYhgKvGa mYsTWUyCeafXNj0HprbfBU4B/A4B7Acy1Cys3W7YsHhAr5gNrl0WgzXOtMcJ7/prAEO5 1+J9tdj9uD1DhfucqvkWy2VK+yyIiDyGKMzY1rW3wdlbBKUi02L0iqpVHp3v/qhiQJBZ fpTh8SUwhUmOMHIdBp8vYO6qJqzyiv1I2zCCy7MQjLXJVycvCLZbrvl3hPEJ8AcHG9T4 dTNBh6tUCy3fFB76d85hCUhlFaIx2f+FZ5W9muweGmK4qpX3+TsXlzloz1IJ6xkrT118 CJDg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958348; x=1777563148; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=e18TMxqrE9J4/iD7zp8ZIIKHfnjT8sQa3zPHcMn5uuw=; b=WvXexciAJo/gfoi207iGByrfuUcbox3rqWD9WZMTPj6nG8W9K1+USzpOARx4j4RDO9 ikkfFinrnAQTOKu+wudbpzeHg20UN8x1DuIQkbsi9F1mE2k1MthsTmxbRCn+ownPBOBu 08hdlLC09XeQ442D1BzUUKZ6AOvRLtpfc5d+K31Pa4yEOyV+qOHEu0jO7xjfWVkI4Mq8 jb3b4xkLxXOZhxQiO6fFIK3uVlXoQDpJrs4kwWy9CQYGqRDnZRdeDG0rgdDBzuZjMetu 0zO6gQTECUfQGGVuajV4768Yf7xSNwkhIQYMYa7x9bev76WrBOg4zyDu3rNZNf5XIGfJ 5YBg== X-Gm-Message-State: AOJu0Yw0yfTUGCNlGVH+n5AEPVhW3e5niQq0x2QegCng4ef1+HWXf/ej SycAJMiUkF6U9k9Uvwob9kuxuXAv04NkhghsKQYHVs/qqFBVZVwPcvKJgVeX2Vvt X-Gm-Gg: AeBDiesox11Oi1X+k3iYLdu9QXOvomPl+rJNvzRkOA17WTyGi8uHxswxjhHKGRArtC1 7jRIpBruknHErMqCRHlE2M7H9kW2hGL3xXRbnAS31nh3XnfkFJFONKYRFinT+9q4uhMsSTRkE4z IQs9BOqG+zUt9xCgcgtb3BJPI+G+D+0Pq5cYLx+07Prl+4lPDGn72Kp9Lzap/l67hmIhh2PB/ea V9BKgx0/p8xfaJ5R82yVjfypCn17lWBeKCGswe/IW/CGVIpw1oJ3eosYOJlc+3HoaJNuozpc+jo 3kN1rUjfrp3iGClvcCVpsf9MM9xKyuWMEL7DhmMOkSOTcaSz6WiG4BADIKGMLsxtVzfNGQlc90A 38Eg82CG9KD4r9iO7L0ToDPwk+obTqZFRE6XdbRNqET5HGPTgBx7ue7KCOsCPn5byso4b0rJ7nK bpabeZO6wFDq5xSjGSe4cpw8Aj0ReCsOSDeLJ/pu3ng1LabBxFlix3PmHo5Odhb6uNNGclrKTD8 9RbRuOI8qKx3DYKQVAKCuZUVmUSRPifLdOdgrnzARj6LR1wN4sZx8HB6RxVUqrTNUlFdA== X-Received: by 2002:a05:6214:451a:b0:8aa:a025:78e3 with SMTP id 6a1803df08f44-8b027fd1cc8mr474134256d6.6.1776958347812; Thu, 23 Apr 2026 08:32:27 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.26 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:27 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 03/15] linux-yocto/6.18: update to v6.18.21 Date: Thu, 23 Apr 2026 11:32:10 -0400 Message-ID: <20260423153222.1932256-4-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:31 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235778 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: 44c944a67997 Linux 6.18.21 e75a5c054d49 Bluetooth: L2CAP: Fix regressions caused by reusing ident 853f70c67d1b futex: Fix UaF between futex_key_to_node_opt() and vma_replace_policy() 18b7d09c2b79 futex: Require sys_futex_requeue() to have identical flags a7df91375471 irqchip/renesas-rzv2h: Fix error path in rzv2h_icu_probe_common() f0035858dfb2 netfs: Fix the handling of stream->front by removing it e7ba52b38766 xen/privcmd: unregister xenstore notifier on module exit 806d40421a59 btrfs: fix lost error when running device stats on multiple devices fs 3c844d01f987 btrfs: fix leak of kobject name for sub-group space_info c1677817b906 btrfs: fix super block offset in error message in btrfs_validate_super() 3e5fd8f53b57 netfs: Fix read abandonment during retry 0c9256f31003 selftests/mount_setattr: increase tmpfs size for idmapped mount tests 285a2602bf37 dmaengine: xilinx_dma: Fix reset related timeout with two-channel AXIDMA ec48fb2f5936 dmaengine: xilinx: xilinx_dma: Fix unmasked residue subtraction e75f5f76be90 dmaengine: xilinx: xilinx_dma: Fix residue calculation for cyclic DMA e9a6eba5f0c0 dmaengine: xilinx: xilinx_dma: Fix dma_device directions 82656e8daf8d dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() a4d1b4ba9754 netfs: Fix NULL pointer dereference in netfs_unbuffered_write() on retry 4bc2d72c7695 netfs: Fix kernel BUG in netfs_limit_iter() for ITER_KVEC iterators f27197ccfd2e dmaengine: xilinx: xdma: Fix regmap init error handling e1d0d0080bab dmaengine: dw-edma: Fix multiple times setting of the CYCLE_STATE and CYCLE_BIT bits for HDMA. eb048d11fa2a phy: ti: j721e-wiz: Fix device node reference leak in wiz_get_lane_phy_types() facd0012708e dmaengine: idxd: Fix leaking event log memory a18e809e22d3 dmaengine: idxd: Fix freeing the allocated ida too late a9e7815d3862 dmaengine: idxd: Fix memory leak when a wq is reset 958e96533ddb dmaengine: idxd: Fix not releasing workqueue on .release() 504c0e675100 dmaengine: idxd: Fix possible invalid memory access after FLR aa0ffc6d3990 dmaengine: idxd: Fix crash when the event log is disabled 40b3f4700e55 mm/mseal: update VMA end correctly on merge a5c6f6d6ceef ksmbd: fix use-after-free and NULL deref in smb_grant_oplock() 7ad1997b9bc8 mm/huge_memory: fix folio isn't locked in softleaf_to_folio() e9de9f3ce06b mm/damon/sysfs: fix param_ctx leak on damon_sysfs_new_test_ctx() failure 9c495f9d3781 mm/damon/core: avoid use of half-online-committed context 9cf7588aa578 mm/damon/stat: monitor all System RAM resources 5eeba3a7bf49 drm/amd/pm: fix amdgpu_irq enabled counter unbalanced on smu v11.0 e1cd6e0251ef rust: pin-init: internal: init: document load-bearing fact of field accessors 6b60e35a7fdb unwind_user/x86: Fix arch=um build 41fc9825ac25 powerpc64/bpf: do not increment tailcall count when prog is NULL b159111cdd8a arm64: dts: imx8mn-tqma8mqnl: fix LDO5 power off 812b6a7cd3e7 ext4: always drain queued discard work in ext4_mb_release() f7817ad399d6 ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths 12624c5b724a ext4: handle wraparound when searching for blocks for indirect mapped blocks 0652ab1bd814 ext4: fix the might_sleep() warnings in kvfree() c97e282f7bfd ext4: fix use-after-free in update_super_work when racing with umount ad1f6d608f33 ext4: reject mount if bigalloc with s_first_data_block != 0 1895f7904be7 ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() 416c86f30f91 ext4: avoid infinite loops caused by residual data 93f2e975ed65 ext4: validate p_idx bounds in ext4_ext_correct_indexes b44fc445b3b7 ext4: test if inode's all dirty pages are submitted to disk 4855a59e2178 ext4: publish jinode after initialization 823849a26af0 ext4: replace BUG_ON with proper error handling in ext4_read_inline_folio f49a14810dfe ext4: make recently_deleted() properly work with lazy itable initialization 1d4460f33ce8 ext4: fix fsync(2) for nojournal mode 16041a808b50 ext4: do not check fast symlink during orphan recovery 95de75794cd9 ext4: fix stale xarray tags after writeback 93cb2d103e5c ext4: convert inline data to extents when truncate exceeds inline size 69835472c726 ext4: fix journal credit check when setting fscrypt context 2c2db09b9043 xfs: remove file_path tracepoint data a1a5df1038f0 xfs: don't irele after failing to iget in xfs_attri_recover_work 68d80f35ea62 xfs: fix ri_total validation in xlog_recover_attri_commit_pass2 3b0c3414b308 xfs: scrub: unlock dquot before early return in quota scrub 95fb5d643cc7 xfs: avoid dereferencing log items after push callbacks 50f5f056807b xfs: save ailp before dropping the AIL lock in push callbacks 8147e304d7d3 xfs: stop reclaim before pushing AIL during unmount 38ec58670a0c mm/pagewalk: fix race between concurrent split and refault 3527e9fdc385 mm/damon/sysfs: check contexts->nr in repeat_call_fn 708033c231bd mm/damon/sysfs: check contexts->nr before accessing contexts_arr[0] 54c143028eb4 drm/amd/pm: Return -EOPNOTSUPP for unsupported OD_MCLK on smu_v13_0_6 126053d0a685 LoongArch: KVM: Handle the case that EIOINTC's coremap is empty 878cf6acb4fd LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust 70fb63c5d36c LoongArch: Workaround LS2K/LS7A GPU DMA hang bug 53a27c09850b LoongArch: vDSO: Emit GNU_EH_FRAME correctly a1da957c25cf LoongArch: Fix missing NULL checks for kstrdup() 70e2eb91cb63 drm/i915: Unlink NV12 planes earlier 859b14e0be9e drm/i915: Order OP vs. timeout correctly in __wait_for() 8581466b827f drm/i915/dp_tunnel: Fix error handling when clearing stream BW in atomic state eb95595194e4 drm/amd/display: Fix drm_edid leak in amdgpu_dm 51ccaf0e30c3 drm/amdgpu: prevent immediate PASID reuse case b6a468966347 dmaengine: sh: rz-dmac: Move CHCTRL updates under spinlock 2b2518b1abb3 dmaengine: sh: rz-dmac: Protect the driver specific lists 79d2151a7c30 dmaengine: fsl-edma: fix channel parameter config for fixed channel requests 20768be1734c i2c: imx: ensure no clock is generated after last read dca0e38ecfd0 i2c: imx: fix i2c issue when reading multiple messages 92e47ad03e03 futex: Clear stale exiting pointer in futex_lock_pi() retry path 83bcea9da919 i2c: designware: amdisp: Fix resume-probe race condition issue 7319d57db908 irqchip/qcom-mpm: Add missing mailbox TX done acknowledgment 1d896b408646 jbd2: gracefully abort on checkpointing state corruptions bab090e8fd56 KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE 695320de6ead KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE f4bc91398b57 net: macb: Use dev_consume_skb_any() to free TX SKBs 33eeb5471a8b net: macb: Protect access to net_device::ip_ptr with RCU lock 99405131d6ed net: macb: Move devm_{free,request}_irq() out of spin lock area 4771b85954be scsi: ses: Handle positive SCSI error from ses_recv_diag() 786f10b1966e scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() e02685511282 ovl: fix wrong detection of 32bit inode numbers ebbac99bb666 ovl: make fsync after metadata copy-up opt-in mount option db08e8c32090 phy: qcom: qmp-ufs: Fix SM8650 PCS table for Gear 4 4cce3cd5ed79 x86/fred: Fix early boot failures on SEV-ES/SNP guests a6e14114684d x86/cpu: Remove X86_CR4_FRED from the CR4 pinned bits mask 5433c7ac4bc8 x86/cpu: Enable FSGSBASE early in cpu_init_exception_handling() 83800f8ef358 writeback: don't block sync for filesystems with no data integrity guarantees e54c8863ba33 alarmtimer: Fix argument order in alarm_timer_forward() da4046406459 erofs: add GFP_NOIO in the bio completion if needed 9a18629f2525 virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false 6f3c8795ae9b virt: tdx-guest: Fix handling of host controlled 'quote' buffer length 371a43c4ac70 xfrm: iptfs: only publish mode_data after clone setup de6d8e8ce518 xfrm: iptfs: validate inner IPv4 header length in IPTFS payload 72b9e81e0203 media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex 529a3f3c49d3 hwmon: (peci/cputemp) Fix off-by-one in cputemp_is_visible() d640ef7117a1 hwmon: (peci/cputemp) Fix crit_hyst returning delta instead of absolute temperature 67fd1e71f768 hwmon: (pmbus/isl68137) Add mutex protection for AVS enable sysfs attributes bf28ab8bed18 hwmon: (pmbus/ina233) Fix error handling and sign extension in shunt voltage read 8e209d882b67 KVM: arm64: Discard PC update state on vcpu reset 4cf2cc6bc1cd platform/x86: ISST: Correct locked bit width fdaf61f2831a RDMA/ionic: Preserve and set Ethernet source MAC after ib_ud_header_init() ab839325a41c thermal: intel: int340x: soc_slider: Set offset only for balanced mode 8def1e51df14 kbuild: Delete .builtin-dtbs.S when running make clean e2f7e4d83ab8 cpufreq: conservative: Reset requested_freq on limits change f162aa749a40 can: netlink: can_changelink(): add missing error handling to call can_ctrlmode_changelink() eec8a1b18a79 can: isotp: fix tx.buf use-after-free in isotp_sendmsg() 84f8b76d2427 can: gw: fix OOB heap access in cgw_csum_crc8_rel() cab361aa6404 ASoC: SOF: ipc4-topology: Allow bytes controls without initial payload d472d1a52985 ASoC: sma1307: fix double free of devm_kzalloc() memory 6ab27f2dc76d ASoC: codecs: wcd934x: fix typo in dt parsing c215d25cf050 ALSA: firewire-lib: fix uninitialized local variable 61aff3c1edc3 ALSA: hda/realtek: add quirk for ASUS Strix G16 G615JMR 47c459a6c9b6 Revert "ALSA: hda/intel: Add MSI X870E Tomahawk to denylist" a897064a4570 ksmbd: do not expire session on binding failure 3cdacd11b415 ksmbd: fix memory leaks and NULL deref in smb2_lock() b0cd9725fe2b ksmbd: fix potencial OOB in get_file_all_info() for compound requests 80824c7e527b ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len() 5eda8001ebb5 drm/xe: always keep track of remap prev/next f278b8ebf7eb tracing: Fix potential deadlock in cpu hotplug with osnoise 7f4e3233faa8 s390/entry: Scrub r12 register on kernel entry 3d39a4ec6380 s390/barrier: Make array_index_mask_nospec() __always_inline 87776f02449e s390/syscalls: Add spectre boundary for syscall dispatch table 449005087718 ALSA: usb-audio: Exclude Scarlett 2i4 1st Gen from SKIP_IFACE_SETUP e89e2b97253c spi: spi-fsl-lpspi: fix teardown order issue (UAF) efb07062d95c ASoC: adau1372: Fix clock leak on PLL lock failure 02709ae51f93 ASoC: adau1372: Fix unchecked clk_prepare_enable() return value 01d5711be772 sysctl: fix uninitialized variable in proc_do_large_bitmap 4e9d723d9f19 hwmon: (pmbus/core) Protect regulator operations with mutex cdf31cf5ca4a hwmon: (pmbus) Introduce the concept of "write-only" attributes 34479e52f1e9 hwmon: (pmbus) Mark lowest/average/highest/rated attributes as read-only 8b476d95e98b hwmon: (adm1177) fix sysfs ABI violation and current unit conversion 39820864eacd drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib d04c007047c8 ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() c73a58661a76 spi: use generic driver_override infrastructure 15da4f5e1001 drm/xe: Implement recent spec updates to Wa_16025250150 4e96a8440e74 rust: regulator: do not assume that regulator_get() returns non-null 8f3226f00cb1 ASoC: dt-bindings: stm32: Fix incorrect compatible string in stm32h7-sai match 8a5edc97fd9c drm/amd/display: Do not skip unrelated mode changes in DSC validation da06a104f048 spi: meson-spicc: Fix double-put in remove path 7af2d06ec25b ASoC: Intel: catpt: Fix the device initialization 234a82a13886 spi: sn-f-ospi: Fix resource leak in f_ospi_probe() 3025ca5daa9d PM: sleep: Drop spurious WARN_ON() from pm_restore_gfp_mask() 13a6af01c1e3 PM: hibernate: Drain trailing zero pages on userspace restore 842aa6103b6f drm/i915/gmbus: fix spurious timeout on 512-byte burst reads 9a709b7e3632 drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register f8afc292d4bc x86/efi: efi_unmap_boot_services: fix calculation of ranges_to_free size a8b66cf9ba3c scsi: scsi_transport_sas: Fix the maximum channel scanning issue 6140239d4518 ASoC: fsl: imx-card: initialize playback_only and capture_only 3f08351de5ca RDMA/irdma: Harden depth calculation functions 0e04f3f2dca4 RDMA/irdma: Return EINVAL for invalid arp index error cd8bcec2de5e RDMA/irdma: Fix deadlock during netdev reset with active connections 8203f295b4bc RDMA/irdma: Remove reset check from irdma_modify_qp_to_err() 30d9491bbb69 RDMA/irdma: Clean up unnecessary dereference of event->cm_node 4c2b2ea802bc RDMA/irdma: Remove a NOP wait_event() in irdma_modify_qp_roce() feeabfc936d7 RDMA/irdma: Update ibqp state to error if QP is already in error state 3cb88c12461b RDMA/irdma: Initialize free_qp completion before using it 9d4fe0d7586e ALSA: usb-audio: Exclude Scarlett 2i2 1st Gen from SKIP_IFACE_SETUP f9433abfcf83 RDMA/efa: Fix possible deadlock 21ae8790e5a8 RDMA/rw: Fall back to direct SGE on MR pool exhaustion a1dc886137ab ALSA: hda/realtek: Sequence GPIO2 on Star Labs StarFighter f710129df9fc regmap: Synchronize cache for the page selector 0dd98aea1c0c RDMA/efa: Fix use of completion ctx after free 97da0d993d7c RDMA/efa: Improve admin completion context state machine 26bd3a77c5ff RDMA/efa: Check stored completion CTX command ID with received one 7ff87da09921 net: macb: use the current queue number for stats c6cb41eaae87 netfilter: ctnetlink: use netlink policy range checks 01f34a80ac23 netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp 9ca8c7452493 netfilter: nf_conntrack_expect: skip expectations in other netns via proc 53d8899452d9 netfilter: nft_set_rbtree: revisit array resize logic d8795fde1f78 netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() c9f6c51d3648 netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD 9f557c7eae12 tls: Purge async_hold in tls_decrypt_async_wait() 1019028eb124 Bluetooth: btusb: clamp SCO altsetting table indices 900e4db5385e Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop 3f26ecbd9cde Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() ea6cf86167b3 Bluetooth: L2CAP: Fix not tracking outstanding TX ident 66696648af47 Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock 5c7cd74673bc Bluetooth: L2CAP: Fix send LE flow credits in ACL link 4f23cceb3500 dma-mapping: add missing `inline` for `dma_free_attrs` 064fede3ae78 rtnetlink: fix leak of SRCU struct in rtnl_link_register 4e27807943b1 net: lan743x: fix duplex configuration in mac_link_up 0a7468ed49a6 team: fix header_ops type confusion with non-Ethernet ports a72891444623 virtio-net: correct hdr_len handling for tunnel gso 5f217e718236 virtio-net: correct hdr_len handling for VIRTIO_NET_F_GUEST_HDRLEN 2fefa595d484 net: enetc: fix the output issue of 'ethtool --show-ring' 18d84c45def3 udp: Fix wildcard bind conflict check when using hash2 966937039e07 net: airoha: add RCU lock around dev_fill_forward_path d0c7cdc15fdf net: fix fanout UAF in packet_release() via NETDEV_UP race 103931f6fdbb ipv6: Don't remove permanent routes with exceptions from tb6_gc_hlist. edf57ce04bc1 ipv6: Remove permanent routes from tb6_gc_hlist when all exceptions expire. bb85741d2dc2 iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() 22c117745495 ice: use ice_update_eth_stats() for representor stats 218609e1e466 ice: fix inverted ready check for VF representors fe1ed519210a platform/x86: intel-hid: disable wakeup_mode during hibernation a825ab202533 platform/olpc: olpc-xo175-ec: Fix overflow error message to print inlen eaa3dae239f2 platform/x86: lenovo: wmi-gamezone: Drop gz_chain_head e29850b0faa8 platform/x86: ISST: Check HWP support before MSR access d57cf5c770c0 net: bcmasp: fix double disable of clk 9e5f5c07cc7d net: bcmasp: fix double free of WoL irq aba90ae2379f net: bcmasp: streamline early exit in probe 60ed7fa717b1 rtnetlink: count IFLA_INFO_SLAVE_KIND in if_nlmsg_size 6fa3f2764f49 rtnetlink: count IFLA_PARENT_DEV_{NAME,BUS_NAME} in if_nlmsg_size 54c87a730157 net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer bd50c7484c3b openvswitch: validate MPLS set/set_masked payload length 98b726ab5e2a openvswitch: defer tunnel netdev_put to RCU release 95265232b497 net: openvswitch: Avoid releasing netdev before teardown completes d89b74bf08f0 nfc: nci: fix circular locking dependency in nci_close_device 097b16ffa61e ionic: fix persistent MAC address override on PF 936a3c0c10e2 pinctrl: mediatek: common: Fix probe failure for devices without EINT 1dc6db047919 Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready_cb 9ecbfd93cd6d Bluetooth: hci_ll: Fix firmware leak on error path bafec9325d4d Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete 7197462e90b8 Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold 8c96f3bd4ae0 Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() 5b35f8211a91 Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req 46737243be21 pinctrl: stm32: fix HDP driver dependency on GPIO_GENERIC 1500005f286f can: statistics: add missing atomic access in hot path 5cf3972c8221 erofs: set fileio bio failed in short read case f4b4debc0b73 dma: swiotlb: add KMSAN annotations to swiotlb_bounce() 83f644ea9298 af_key: validate families in pfkey_send_migrate() 8854e9367465 xfrm: prevent policy_hthresh.work from racing with netns teardown 2255ed6adbc3 xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() ee0e3521f806 pinctrl: renesas: rza1: Normalize return value of gpio_get() 33a7b3626893 xfrm: iptfs: fix skb_put() panic on non-linear skb during reassembly 7068aaa1cef4 pinctrl: renesas: rzt2h: Fix device node leak in rzt2h_gpio_register() 88d386243ed3 esp: fix skb leak with espintcp and async crypto af834169a410 xfrm: call xdo_dev_state_delete during state update ecb02f949e3e xfrm: fix the condition on x->pcpu_num in xfrm_sa_len 88467620fa4a xfrm: add missing extack for XFRMA_SA_PCPU in add_acquire and allocspi b4a1e07944fe i3c: master: dw-i3c: Fix missing of_node for virtual I2C adapter 6eee692c4204 ALSA: hda/realtek: add quirk for ASUS UM6702RC 72969a102f93 spi: intel-pci: Add support for Nova Lake mobile SPI flash cbc467b4d9f3 usb: core: new quirk to handle devices with zero configurations ad696758a45c drm/amdgpu: fix gpu idle power consumption issue for gfx v12 ca111c9d8d6c nvmet: move async event work off nvmet-wq 17c9ad5aa46c objtool: Handle Clang RSP musical chairs 90420418e622 ALSA: hda/realtek: Add headset jack quirk for Thinkpad X390 f93b6da04ec7 ALSA: hda/realtek: Add quirk for Gigabyte Technology to fix headphone bee43f7b9bc6 ALSA: hda/realtek: add HP Laptop 14s-dr5xxx mute LED quirk ed97a37b00d9 powerpc64/ftrace: fix OOL stub count with clang 2ec578e64521 btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create 91608747a8d2 sched_ext: Use WRITE_ONCE() for the write side of dsq->seq update be1a341c1614 HID: apple: avoid memory leak in apple_report_fixup() 74b1b0d84697 bpf: Fix u32/s32 bounds when ranges cross min/max boundary b4770c2e70e6 ASoC: amd: acp: Add ACP6.3 match entries for Cirrus Logic parts be0c2255d717 drm/ttm/tests: Fix build failure on PREEMPT_RT 34f0790eb712 ALSA: hda/senary: Ensure EAPD is enabled during init 5cf83b76f738 block: break pcpu_alloc_mutex dependency on freeze_lock e33c0c59f1f4 dma-buf: Include ioctl.h in UAPI header 9924fd289901 ASoC: cs35l56: Only patch ASP registers if the DAI is part of a DAIlink 1e68eeada7b0 ASoC: fsl_easrc: Fix event generation in fsl_easrc_iec958_put_bits() 77759925aeb6 ALSA: hda/hdmi: Add Tegra238 HDA codec device ID 3d5f63d86720 ASoC: Intel: sof_sdw: Add quirk for Alienware Area 51 (2025) 0CCD SKU 74b25178943f scsi: devinfo: Add BLIST_SKIP_IO_HINTS for Iomega ZIP 09293aecd479 ASoC: rt1321: fix DMIC ch2/3 mask issue 99c9a684b22d scsi: mpi3mr: Clear reset history on ready and recheck state after timeout f927555140c7 ASoC: fsl_easrc: Fix event generation in fsl_easrc_iec958_set_reg() ef75dc1401d8 module: Fix kernel panic when a symbol st_shndx is out of bounds 4ebc4d48fca9 HID: asus: add xg mobile 2023 external hardware support bf0ffc028f82 HID: mcp2221: cancel last I2C command on read error 0a4e44eb4b0c platform/x86: oxpec: Add support for OneXPlayer X1 Air ba6af12e600b platform/x86: oxpec: Add support for Aokzoe A2 Pro 6ea6cfdbd646 kbuild: install-extmod-build: Package resolve_btfids if necessary 4121e616c08a net: usb: r8152: add TRENDnet TUC-ET2G 1faaa81aabab platform/x86: oxpec: Add support for OneXPlayer X1z b06021c3cfd8 HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list 43c40bfb8503 platform/x86: oxpec: Add support for OneXPlayer APEX f061affafb59 HID: intel-ish-hid: ipc: Add Nova Lake-H/S PCI device IDs 136f605e246b HID: magicmouse: avoid memory leak in magicmouse_report_fixup() 4101a437c236 HID: magicmouse: fix battery reporting for Apple Magic Trackpad 2 b96c7b25eb1b nvme-pci: ensure we're polling a polled queue 4877461104f2 platform/x86: touchscreen_dmi: Add quirk for y-inverted Goodix touchscreen on SUPI S10 05bc9939b501 platform/x86: intel-hid: Enable 5-button array on ThinkPad X1 Fold 16 Gen 1 94b2a56fd4b1 platform/x86: hp-wmi: Add Omen 16-xd0xxx fan and thermal support 470e01ae896c nvme-fabrics: use kfree_sensitive() for DHCHAP secrets 2e9b4ca982d8 nvme-pci: cap queue creation to used queues 47910033f542 platform/x86: intel-hid: Add Dell 14 Plus 2-in-1 to dmi_vgbs_allow_list a41cc7c1668e HID: asus: avoid memory leak in asus_report_fixup() c6a021ae84aa platform/x86: hp-wmi: Add Omen 16-wf0xxx fan and thermal support 61415d080d43 tracing: Revert "tracing: Remove pid in task_rename tracing output" 58bd87d0e692 bpf: Fix unsound scalar forking in maybe_fork_scalars() for BPF_OR f14ca604c0ff bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN c0281da1f2aa bpf: Fix exception exit lock checking for subprogs a85bbd9ef8a0 cxl: Adjust the startup priority of cxl_pmem to be higher than that of cxl_acpi a446dbcb3877 bpf: Release module BTF IDR before module unload 7c02a9bd7d14 driver core: platform: use generic driver_override infrastructure ad9465ca3444 driver core: generalize driver_override in struct device 1b1f570444dc sh: platform_early: remove pdev->driver_override check 1f11dc6dc792 hwmon: axi-fan: don't use driver_override as IRQ name e85f446e82aa cxl/hdm: Avoid incorrect DVSEC fallback when HDM decoders are enabled b36b0e804aee s390/mm: Add missing secure storage access fixups for donated memory 35f7914e54fe perf: Make sure to use pmu_ctx->pmu for groups d94e6989e26c x86/perf: Make sure to program the counter value for stopped events on migration ccbf29b28b55 bpf: Fix constant blinding for PROBE_MEM32 stores a17443af8742 bpf: Reset register ID for BPF_END value tracking 2c3214146204 cxl/port: Fix use after free of parent_port in cxl_detach_ep() Signed-off-by: Bruce Ashfield --- .../linux/linux-yocto-rt_6.18.bb | 6 ++--- .../linux/linux-yocto-tiny_6.18.bb | 6 ++--- meta/recipes-kernel/linux/linux-yocto_6.18.bb | 24 +++++++++---------- 3 files changed, 18 insertions(+), 18 deletions(-) diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb index f9ed72acc7..55752d5de5 100644 --- a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb @@ -15,13 +15,13 @@ python () { raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it") } -SRCREV_machine ?= "ed994ec846841494b9a1ff2badfa89970ad1d34f" -SRCREV_meta ?= "41925d8d9ac0b1d6bdc0f9d84c5d7fd68ebcb693" +SRCREV_machine ?= "700b638db800d9dae90ec3cbd464a6bc69708fae" +SRCREV_meta ?= "8af6e86ecd97388ecbae830d484445146a2a2159" SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine;protocol=https \ git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" -LINUX_VERSION ?= "6.18.20" +LINUX_VERSION ?= "6.18.21" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb index 75cda179f7..a9053563c5 100644 --- a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb @@ -9,7 +9,7 @@ require recipes-kernel/linux/linux-yocto.inc include recipes-kernel/linux/cve-exclusion.inc include recipes-kernel/linux/cve-exclusion_6.18.inc -LINUX_VERSION ?= "6.18.20" +LINUX_VERSION ?= "6.18.21" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}" @@ -18,8 +18,8 @@ DEPENDS += "openssl-native util-linux-native" KMETA = "kernel-meta" KCONF_BSP_AUDIT_LEVEL = "2" -SRCREV_machine ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_meta ?= "41925d8d9ac0b1d6bdc0f9d84c5d7fd68ebcb693" +SRCREV_machine ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_meta ?= "8af6e86ecd97388ecbae830d484445146a2a2159" PV = "${LINUX_VERSION}+git" diff --git a/meta/recipes-kernel/linux/linux-yocto_6.18.bb b/meta/recipes-kernel/linux/linux-yocto_6.18.bb index 63ed493450..db96131fbe 100644 --- a/meta/recipes-kernel/linux/linux-yocto_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto_6.18.bb @@ -18,25 +18,25 @@ KBRANCH:qemux86-64 ?= "v6.18/standard/base" KBRANCH:qemuloongarch64 ?= "v6.18/standard/base" KBRANCH:qemumips64 ?= "v6.18/standard/mti-malta" -SRCREV_machine:qemuarm ?= "d9ebaa48a5dcfb812a0ac2421600f91ca686c4d8" -SRCREV_machine:qemuarm64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_machine:qemuloongarch64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemuarm ?= "02474ad96bbf476ffcbdaa7d60be3b40beecd5a4" +SRCREV_machine:qemuarm64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemuloongarch64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" SRCREV_machine:qemumips ?= "62ea92a539f58803a222be98b81118403074206e" -SRCREV_machine:qemuppc ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_machine:qemuriscv64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_machine:qemuriscv32 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_machine:qemux86 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_machine:qemux86-64 ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" +SRCREV_machine:qemuppc ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemuriscv64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemuriscv32 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemux86 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemux86-64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" SRCREV_machine:qemumips64 ?= "9fb4ff0187c85426f21fd40d4c61b742800f65c4" -SRCREV_machine ?= "4bd22cd74687bdc41573595014bfc99a2d25f18a" -SRCREV_meta ?= "41925d8d9ac0b1d6bdc0f9d84c5d7fd68ebcb693" +SRCREV_machine ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_meta ?= "8af6e86ecd97388ecbae830d484445146a2a2159" # set your preferred provider of linux-yocto to 'linux-yocto-upstream', and you'll # get the /base branch, which is pure upstream -stable, and the same # meta SRCREV as the linux-yocto-standard builds. Select your version using the # normal PREFERRED_VERSION settings. BBCLASSEXTEND = "devupstream:target" -SRCREV_machine:class-devupstream ?= "dd26ea937ef593a9c47aa4c85296e6b57a5344a1" +SRCREV_machine:class-devupstream ?= "44c944a679974c2d18ee9b87070456d34193f3d4" PN:class-devupstream = "linux-yocto-upstream" KBRANCH:class-devupstream = "v6.18/base" @@ -44,7 +44,7 @@ SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRA git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" -LINUX_VERSION ?= "6.18.20" +LINUX_VERSION ?= "6.18.21" PV = "${LINUX_VERSION}+git" From patchwork Thu Apr 23 15:32:11 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86741 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 98931FC0346 for ; Thu, 23 Apr 2026 15:32:30 +0000 (UTC) Received: from mail-qv1-f52.google.com (mail-qv1-f52.google.com [209.85.219.52]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.414.1776958350147647865 for ; Thu, 23 Apr 2026 08:32:30 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=grAbwqYs; spf=pass (domain: gmail.com, ip: 209.85.219.52, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f52.google.com with SMTP id 6a1803df08f44-89f1e767f92so61510256d6.2 for ; Thu, 23 Apr 2026 08:32:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958349; x=1777563149; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=XBImrUMbbmaRs8DkpdLk9zj6TNo0vnqEpFNYLDHrWW4=; b=grAbwqYsiH38apUPY8pp1M1ZbXty4A5qOX31anukb/Ugsiy4RCXq8DJFasW0kKcCHJ 1u78T/8K4VawNp9hAIMCjYcETho97jgEPEI4yzxENcfdHf6pesXeVQmKZtOAC8vdlpiQ J9S03iBs/pN49lqMPsEhrcx4CipSFKVs28WIgO7pZIgJR50/AbO3nvWfOU/ir/1L8pnP xydd0DCPqO8ZThpQ0exEh4ybVIagaTCiqRDRDGz0f8yIrst7Zy6Tudl5lDLExdm6iMH7 awdH3mRcSwZfHK6W/JdindFgOhi00udbPkTZOaG0VQ0WemEcwEQl6xuSGMoqUPD+VXSE JCjA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958349; x=1777563149; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=XBImrUMbbmaRs8DkpdLk9zj6TNo0vnqEpFNYLDHrWW4=; b=OXNV9fbWiR8rGveyF/amuyVjANDEXfqURKLEdetGM32GsXSHX55xL0hFfYFW/j1ko+ CGam9c0eFLqkkQ8v7k/5nW2JCVBq51iUV02sidZwa/hbL6FUc6pkKsViN9qLvBlsXZ1O 08PhARP6hqb+IGH1KIFwQur+fZPKlE5pEBTpdFHN/w4UvWh8b8ht7BQuV4DgQk3MxLQJ ohotvbfK5eYxZuMbj3XSgLCOEeNIxoaSCfo7uXJpvJOAoL3ZxLeojwAPu7LdM8FpFT80 8d7Jd2PNjhljDzcitX9MhIlZm8AaVjnSqF5jZTFGcAmwkloQJxpPa9/y4lCBwbWc5VqR GHKA== X-Gm-Message-State: AOJu0Yxw2XHnejBysy0RlP0FTzPB8W1foEqocyovwNqEPp1HyjWSsDSw 1z1A2X7vrRVoSlWnl8Sk2LmIMTUe+oskUhLHHgBORJYNGe9dURhKcOx+oGB5sus3 X-Gm-Gg: AeBDiesOSjU53L0KuT3K+0zsGoX1Dx5EKZNmlOw/M3MOTMnGERenRbFO/KhJQh0Dj+Q ++sVyZmDL/Ex+sMKpgOdNdsCsA50tjRWZCgkTxR39x0qJI85aABVhb6/l0UNewfZxp8HRii+KHj XVTQqtWOa8Urf87nur6ioN/2ZtEYlTnTlkehbVF9zNdqAMpg+7lUSOLIar+yEafCF5EG/+QFRfX QQaIgVqgbQW/ximxnzZ9ZTi0dU5cnOrDvHhRQyuGchwiWcw5AhhQwYaGOZDv37bykX/ZD+lN+ue NHQc3Wz0CuiQKlUeJ/CdFvqyNi2o8Dvnio0AX1Ivm4SdfWjqxSIhD9ciBj5yfDY3OI2GdcxPBdP OHRx3Xxk3cl5PT8ippZv04GUPd9khDUXNolxrMe4JNasyTLMBuD90hkGz3BTzz8OUtXm/gsR5Fg LnyBtiKGYKw+vuPy/gakYCZ8Y5zrr2gzgBtqyLoQQum7hZYMdEweWXqeGC/z9WrHh26lazk5LW7 tphXrZC2OpwHXU4blX00FaGzDEhbT0KPtaoyEDhkoB3AUGj/AqLp6p+2kaqFdcY4TgfDg== X-Received: by 2002:ad4:5ae5:0:b0:8b1:f5da:f80e with SMTP id 6a1803df08f44-8b1f5dafbc5mr187747386d6.40.1776958348860; Thu, 23 Apr 2026 08:32:28 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.28 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:28 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 04/15] linux-yocto/6.18: update CVE exclusions (6.18.21) Date: Thu, 23 Apr 2026 11:32:11 -0400 Message-ID: <20260423153222.1932256-5-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:30 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235779 From: Bruce Ashfield Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 35 changes (5 new | 30 updated): - 5 new CVEs: CVE-2025-57847, CVE-2025-57851, CVE-2025-57853, CVE-2025-57854, CVE-2025-58713 - 30 updated CVEs: CVE-2023-52356, CVE-2024-8299, CVE-2024-9852, CVE-2025-14104, CVE-2025-14821, CVE-2025-14831, CVE-2026-1757, CVE-2026-26157, CVE-2026-26158, CVE-2026-27787, CVE-2026-28261, CVE-2026-2625, CVE-2026-35393, CVE-2026-35398, CVE-2026-35409, CVE-2026-35413, CVE-2026-35444, CVE-2026-35452, CVE-2026-35473, CVE-2026-39698, CVE-2026-39700, CVE-2026-39702, CVE-2026-39935, CVE-2026-3142, CVE-2026-3781, CVE-2026-4483, CVE-2026-5302, CVE-2026-5506, CVE-2026-5688, CVE-2026-5705 Date: Wed, 8 Apr 2026 14:13:08 +0000 ] Signed-off-by: Bruce Ashfield --- .../linux/cve-exclusion_6.18.inc | 216 +++++++++++++++++- 1 file changed, 206 insertions(+), 10 deletions(-) diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 8f458e9d10..03f89ed9eb 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-03-27 19:44:12.925073+00:00 for kernel version 6.18.20 -# From linux_kernel_cves cve_2026-03-27_1900Z-1-g663ca5d2278 +# Generated at 2026-04-08 14:33:17.297345+00:00 for kernel version 6.18.21 +# From linux_kernel_cves cve_2026-04-08_1300Z-1-g105fda2ec51 python check_kernel_cve_status_version() { - this_version = "6.18.20" + this_version = "6.18.21" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -19248,7 +19248,7 @@ CVE_STATUS[CVE-2025-40217] = "fixed-version: Fixed from version 6.18" CVE_STATUS[CVE-2025-40218] = "fixed-version: Fixed from version 6.18" -CVE_STATUS[CVE-2025-40219] = "fixed-version: Fixed from version 6.18" +CVE_STATUS[CVE-2025-40219] = "cpe-stable-backport: Backported in 6.18.16" CVE_STATUS[CVE-2025-40220] = "fixed-version: Fixed from version 6.18" @@ -20108,8 +20108,6 @@ CVE_STATUS[CVE-2025-68810] = "cpe-stable-backport: Backported in 6.18.3" CVE_STATUS[CVE-2025-68811] = "cpe-stable-backport: Backported in 6.18.3" -CVE_STATUS[CVE-2025-68812] = "cpe-stable-backport: Backported in 6.18.3" - CVE_STATUS[CVE-2025-68813] = "cpe-stable-backport: Backported in 6.18.3" CVE_STATUS[CVE-2025-68814] = "cpe-stable-backport: Backported in 6.18.3" @@ -21118,8 +21116,6 @@ CVE_STATUS[CVE-2026-23318] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23319] = "cpe-stable-backport: Backported in 6.18.17" -CVE_STATUS[CVE-2026-23320] = "cpe-stable-backport: Backported in 6.18.17" - CVE_STATUS[CVE-2026-23321] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23322] = "cpe-stable-backport: Backported in 6.18.17" @@ -21144,7 +21140,7 @@ CVE_STATUS[CVE-2026-23331] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23332] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23333 has no known resolution +# CVE-2026-23333 needs backporting (fixed from 7.0rc1) CVE_STATUS[CVE-2026-23334] = "cpe-stable-backport: Backported in 6.18.17" @@ -21276,5 +21272,205 @@ CVE_STATUS[CVE-2026-23397] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23398] = "cpe-stable-backport: Backported in 6.18.20" -# CVE-2026-31788 has no known resolution +CVE_STATUS[CVE-2026-23399] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23400] = "cpe-stable-backport: Backported in 6.18.19" + +CVE_STATUS[CVE-2026-23401] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-23402] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-23403] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23404] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23405] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23406] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23407] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23408] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23409] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23410] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23411] = "cpe-stable-backport: Backported in 6.18.18" + +CVE_STATUS[CVE-2026-23412] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23413] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23414] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-23415] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-23416] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-23417] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-23418] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23419] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23420] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23421] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23422] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23423] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23424] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23425] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23426] = "cpe-stable-backport: Backported in 6.18.17" + +CVE_STATUS[CVE-2026-23427] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23428] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23429] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23430] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23431] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23432] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23433] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23434] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23435] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23436] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23437] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23438] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23439] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23440] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23441] = "cpe-stable-backport: Backported in 6.18.20" + +# CVE-2026-23442 needs backporting (fixed from 7.0rc5) + +CVE_STATUS[CVE-2026-23443] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23444] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23445] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23446] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23447] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23448] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23449] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23450] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23451] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23452] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23453] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-23454] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23455] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23456] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23457] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23458] = "cpe-stable-backport: Backported in 6.18.20" + +# CVE-2026-23459 needs backporting (fixed from 7.0rc5) + +CVE_STATUS[CVE-2026-23460] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23461] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23462] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23463] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23464] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23465] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23466] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23467] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23468] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23469] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23470] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23471] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23472] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23473] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23474] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-23475] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31389] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31390] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31391] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31392] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31393] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31394] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31395] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31396] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31397] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31398] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31399] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31400] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31401] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31402] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31403] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31404] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31405] = "cpe-stable-backport: Backported in 6.18.19" + +CVE_STATUS[CVE-2026-31406] = "cpe-stable-backport: Backported in 6.18.21" + +# CVE-2026-31407 needs backporting (fixed from 7.0rc5) + +CVE_STATUS[CVE-2026-31408] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31409] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31410] = "cpe-stable-backport: Backported in 6.18.20" + +CVE_STATUS[CVE-2026-31411] = "cpe-stable-backport: Backported in 6.18.14" + +CVE_STATUS[CVE-2026-31788] = "cpe-stable-backport: Backported in 6.18.20" From patchwork Thu Apr 23 15:32:12 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86746 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id F3940FC034C for ; Thu, 23 Apr 2026 15:32:40 +0000 (UTC) Received: from mail-vs1-f48.google.com (mail-vs1-f48.google.com [209.85.217.48]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.416.1776958352493936406 for ; Thu, 23 Apr 2026 08:32:32 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=GHlVZxlL; spf=pass (domain: gmail.com, ip: 209.85.217.48, mailfrom: bruce.ashfield@gmail.com) Received: by mail-vs1-f48.google.com with SMTP id ada2fe7eead31-60fbbac2938so2706270137.1 for ; Thu, 23 Apr 2026 08:32:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958351; x=1777563151; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=rVPebiDT9u/dxVh73I7SkY20Xig7U2+PhOlzhER1ucw=; b=GHlVZxlLx0hNCB+RrIwPFtPDR8iBXWg62QQTSwIgeUCkLk98dKBTE4+gbv1AIbO40D s6Md5LdJEmTSlLDMq+rqIbawCM0Cv1moR8SOrbNAqNjRQ+OEYXGtvhZmxbeYumWqdUWt S55DTCV9cxjyBJiHTZA5lauUQi5Iz2PsLCZagV+kEzhDQZu21MG0orCdzlHzGEtXrYLK EZQo65uPLWmTDbprJofSLGJF4BauKLFNIV89+65tduXcmRUwOt3PDVdqV1yUU+chhdmO mtsBFX3PQ03rZ9BH+Y+dGbxda4bDMK9rZIF4x9VfCyP7J11/l1iZPdLb8JeJIJ8fikeK iyBw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958351; x=1777563151; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=rVPebiDT9u/dxVh73I7SkY20Xig7U2+PhOlzhER1ucw=; b=oFKN1uU3RGvO/K+z0P4MAS9ssCW7JZyEr35ucVAWVgyx8qYnZILwlsBWXPV9yQnmZm CGyHN2zUP9u168kKRWG82T3Y+DPOacffxL6Ihgggjbncq24coRJnva1ZXTH/L+wU2fuD 8lHXjgo3DTYKe4SZP4GCNnb5i5ltoQkue97/MSSkdz6Dwqvm2bMwjVOY2u9y8D6aFfS3 UgMpzZclvSurJBufAfC4cM8nlZq50hfuhy6GO1JyHLmFU5C+WoOWY1TUX++bajnp/HIO d7/H9fu8vKhWsInTN2cGnSSc37MEw3AdqYe5gPnK5+aHY6ig4LCBIlqcB7mC2YV1tu6d PTfg== X-Gm-Message-State: AOJu0Ywd5DesOCyVmfmLICIoTL41XkUGXqzTErHua2lNnybA7pcTy/1+ pERPisflzWmyr0O/SY/zW1t25yt2ydvEsgCOjquhYHaLh9smfKwYjZS0 X-Gm-Gg: AeBDiev19P77MXCLZGoYL4HWGOcMrCCPDXRAldnnQl2ihCf9Vs/UeJ1y4yyKm1sKR88 YoIuHw5ygr7PvSmYA6cV+SVucg4DHEfSNBmmjt2NlIJ+dMtxt552aLjbpx4iTd1A7faYQzRwKaW iGAtuVwstR1N7CxBmQhiRQJ1UbPDMJCrUCELY3gVnqk4P9QmFTS3ebkktX2jE3td1T2qfJAdbw2 ZBOF7clBBWbEYJGzNzkkrEIrGarflHChKZNYJGkSwMLHBwOBGV0thYwl2T4R7ZC9m3tenyzsnxL bkZclgMyMwais3eB+kTMY0yllf1235KUTKEQlHMLfV4tAfoQRcBzSkL6eZ1v9PadLjPitXMjB2j v44J0LmlPcT+N/QVhM9LuWoi9yYxAGtd7EkrZ8assSr4EHMOOECdkBA8/Gpb96PkXs/XEqsTUPm PZ3szPWgNCHIbwO5oRKfOvS9UqJDB5evnIV813dotqSOjjZJeLBu1/8NxF3AILNkWOAr0wU7Xq0 whEChyFzZ9GBA325a2wgCpZrBZNclb6ywDzRFizrsYAOJxUjgLhKdJbtAS4GVvlJHpPXAYOizBW WMPy X-Received: by 2002:a05:6102:4429:b0:607:a394:1841 with SMTP id ada2fe7eead31-616f2692f77mr12720157137.0.1776958350923; Thu, 23 Apr 2026 08:32:30 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.28 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:29 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 05/15] linux-yocto/6.18: update to v6.18.22 Date: Thu, 23 Apr 2026 11:32:12 -0400 Message-ID: <20260423153222.1932256-6-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:40 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235780 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: f2b09e8b594ce Linux 6.18.22 5e7b2cc8fae9e sched_ext: Fix stale direct dispatch state in ddsp_dsq_id d5776a31c1657 sched_ext: Refactor do_enqueue_task() local and global DSQ paths 9e36ceb5ca431 mm/memory: fix PMD/PUD checks in follow_pfnmap_start() cef18bb87a6c2 mm: replace READ_ONCE() with standard page table accessors a836054ea8101 scsi: target: tcm_loop: Drain commands in target_reset handler ce54802fe6bb7 scsi: target: file: Use kzalloc_flex for aio_cmd a98b78116a27e net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback 5f4061f8225d1 net: mana: fix use-after-free in add_adev() error path 24ce568f7553a drm/amd/display: Fix DCE LVDS handling ba9be472a438e drm/amd/pm: disable OD_FAN_CURVE if temp or pwm range invalid for smu v13 5bbadf60b1210 wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free e367143b520ae kallsyms: prevent module removal when printing module name and buildid 10bbeed03e1db kallsyms: cleanup code for appending the module buildid c1d72e846cb4e kallsyms: clean up modname and modbuildid initialization in kallsyms_lookup_buildid() ab5f05ae96fcd kallsyms: clean up @namebuf initialization in kallsyms_lookup_buildid() 8e5eb1d6e6a3d usb: gadget: f_uac1_legacy: validate control request size 5d1bb391ceeeb usb: gadget: f_hid: move list and spinlock inits from bind to alloc 18ada801899f2 usb: gadget: f_rndis: Fix net_device lifecycle with device_move 9cbc4f109bb21 usb: gadget: f_subset: Fix net_device lifecycle with device_move 4ccdccff8febc usb: gadget: f_eem: Fix net_device lifecycle with device_move 4e34f3f491fd7 usb: gadget: f_ecm: Fix net_device lifecycle with device_move 446f1842cda92 usb: gadget: f_rndis: Protect RNDIS options with mutex 3d436670b4741 usb: gadget: f_subset: Fix unbalanced refcnt in geth_free 1aa9356881ee4 usb: gadget: uvc: fix NULL pointer dereference during unbind race a36e5e800b9c9 usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo 6ad77458637b7 usb: gadget: u_ether: Fix race between gether_disconnect and eth_stop 63dc317dfcd3f ice: Fix memory leak in ice_set_ringparam() 7d581e2534693 HID: appletb-kbd: add .resume method in PM f4e608fe12b7a usb: typec: ucsi: validate connector number in ucsi_notify_common() cc300853b9eba usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer 5687a09776069 USB: dummy-hcd: Fix interrupt synchronization error efbd9441f1e76 USB: dummy-hcd: Fix locking/synchronization error cd9c6fcd1cf13 thunderbolt: Fix property read in nhi_wake_supported() 15f0c2d9eebc1 usb: typec: thunderbolt: Set enter_vdo during initialization acea446ba4f42 misc: fastrpc: check qcom_scm_assign_mem() return in rpmsg_probe 3a164f640953c misc: fastrpc: possible double-free of cctx->remote_heap c4c7219e93319 thermal: core: Fix thermal zone device registration error path 2dbe93f344f10 thermal: core: Address thermal zone removal races with resume f0cf9c7b7c281 gpio: Fix resource leaks on errors in gpiochip_add_data_with_key() 70b6e2e015030 gpio: mxc: map Both Edge pad wakeup to Rising Edge 72c43eb2e334f sched_ext: Fix is_bpf_migration_disabled() false negative on non-PREEMPT_RCU d2703b4f8fb7c cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path 65a5847e1a6c9 virtio_net: clamp rss_max_key_size to NETDEV_RSS_KEY_LEN 5dff799c67715 net: ethernet: mtk_ppe: avoid NULL deref when gmac0 is disabled 8351d18989c86 net: ftgmac100: fix ring allocation unwind on open failure eddfce70a6f31 vxlan: validate ND option lengths in vxlan_na_create 3aea268b6d5cd crypto: tegra - Add missing CRYPTO_ALG_ASYNC 6562290225c19 counter: rz-mtu3-cnt: do not use struct rz_mtu3_channel's dev member e07237df8538b counter: rz-mtu3-cnt: prevent counter from being toggled multiple times bbb6c37c7a483 vt: resize saved unicode buffer on alt screen exit after resize 891d790fdb5c9 vt: discard stale unicode buffer on alt screen exit after resize 554d005d51611 gpib: Fix fluke driver s390 compile issue 68ca0eea0af02 netfilter: ipset: drop logically empty buckets in mtype_del 784ed4abded1c nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy 0c94b84b6ef51 nvmem: imx: assign nvmem_cell_info::raw_len 5a8f2e95f9a19 s390/cpum_sf: Cap sampling rate to prevent lsctl exception 586222c37d402 s390/zcrypt: Fix memory leak with CCA cards used as accelerator a11f022db7d85 spi: cadence-qspi: Fix exec_mem_op error handling f5526abe978fd dt-bindings: connector: add pd-disable dependency d266498da90d3 firmware: microchip: fail auto-update probe if no flash found eae19cab44204 comedi: me4000: Fix potential overrun of firmware buffer a47ae40339c10 comedi: me_daq: Fix potential overrun of firmware buffer 43c68a2c7cc35 comedi: ni_atmio16d: Fix invalid clean-up after failed attach b89c026227712 comedi: Reinit dev->spinlock between attachments to low-level drivers 34c8b3a91bdfb comedi: dt2815: add hardware detection to prevent crash e92f5ee730653 cdc-acm: new quirk for EPSON HMD 837392a384457 bridge: br_nd_send: validate ND option lengths 5da684c24e8b4 ASoC: qcom: sc7280: make use of common helpers f43f77499ec8d io_uring: protect remaining lockless ctx->rings accesses with RCU 09f78265a93d4 usb: core: use dedicated spinlock for offload state 5a85599ca4d25 usb: cdns3: gadget: fix state inconsistency on gadget init failure 390536cc6af4c usb: cdns3: gadget: fix NULL pointer dereference in ep_queue 701903fcac4a4 usb: core: phy: avoid double use of 'usb3-phy' 61937f6862904 usb: dwc2: gadget: Fix spin_lock/unlock mismatch in dwc2_hsotg_udc_stop() 6288b46e5ac68 usb: ehci-brcm: fix sleep during atomic 34af2da733f4e usb: host: xhci-sideband: delegate offload_usage tracking to class drivers 65ff09f48b0e7 usb: misc: usbio: Fix URB memory leak on submit failure 977b632db51d2 usb: usbtmc: Flush anchored URBs in usbtmc_release 38c28fe256110 usb: ulpi: fix double free in ulpi_register_interface() error path 882bdb01ff12c usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive 21f942879f861 gpib: lpvo_usb: fix memory leak on disconnect ffacfe07177d3 mei: me: reduce the scope on unexpected reset fefd0bceac15f iio: gyro: mpu3050: Fix out-of-sequence free_irq() cc3de12a5612e iio: gyro: mpu3050: Move iio_device_register() to correct location 3a8e68d65a443 iio: gyro: mpu3050: Fix irq resource leak ac1233397f4cf iio: gyro: mpu3050: Fix incorrect free_irq() variable 7f14b52a81f94 iio: imu: st_lsm6dsx: Set FIFO ODR for accelerometer and gyroscope only d6e078c634094 iio: imu: bmi160: Remove potential undefined behavior in bmi160_config_pin() 04d8f0a785dc0 iio: light: veml6070: fix veml6070_read() return value 0ad74c370e8de iio: light: vcnl4035: fix scan buffer on big-endian b0e1fec0a0d07 iio: imu: adis16550: fix swapped gyro/accel filter functions 2ed3d9bc86b66 iio: dac: ad5770r: fix error return in ad5770r_read_raw() d7161e8b6211a iio: accel: adxl313: add missing error check in predisable b6d6f6e2e329f iio: accel: adxl380: fix FIFO watermark bit 8 always written as 0 6c4591e716681 iio: accel: fix ADXL355 temperature signature value 85981790ea35d iio: adc: aspeed: clear reference voltage bits before configuring vref 5f482fd456bc5 iio: adc: ade9000: move mutex init before IRQ registration 87180f65f90da iio: adc: ade9000: fix wrong register in CALIBBIAS case for active power 3707af316f86d iio: adc: ade9000: fix wrong return type in streaming push 25e04a8291f42 iio: adc: ti-ads7950: do not clobber gpio state in ti_ads7950_get() 6afa581aed0f1 iio: adc: ti-ads7950: normalize return value of gpio_get d0a6b8d186dab Input: xpad - add support for Razer Wolverine V3 Pro 86620132e9c4c Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode 00f0cc75356b0 Input: bcm5974 - recover from failed mode switch beba26c55f4e4 Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table 33e646804070c Input: synaptics-rmi4 - fix a locking bug in an error path 8ea8dc0d62e3a USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam 42e4fbeb853a6 USB: serial: option: add support for Rolling Wireless RW135R-GL 70fd81b9c4bf3 USB: serial: io_edgeport: add support for Blackbox IC135A 2b8ae82d85d75 drm/amdgpu/pm: drop SMU driver if version not matched messages 77c918eaa4c91 drm/amdgpu: Change AMDGPU_VA_RESERVED_TRAP_SIZE to 64KB 3543005a42d7e drm/amdgpu: validate doorbell_offset in user queue creation 1e130cf9cd172 drm/amdgpu: Fix wait after reset sequence in S4 d0fd0bea84752 drm/i915/dp: Use crtc_state->enhanced_framing properly on ivb/hsw CPU eDP 86e926b108880 drm/i915/dsi: Don't do DSC horizontal timing adjustments in command mode df4979eef358c drm/ast: dp501: Fix initialization of SCU2C 5a17678b74197 iio: adc: ti-ads1119: Replace IRQF_ONESHOT with IRQF_NO_THREAD 30e2275b3469f iio: adc: ti-ads1119: Reinit completion before wait_for_completion_timeout() 64bc0219e4d8e iio: adc: ti-ads1119: Fix unbalanced pm reference count in ds1119_single_conversion() 014c6d27878d3 iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() 054ea2f12beb4 iio: adc: ti-adc161s626: fix buffer read on big-endian d9bf25ef3d30f iio: orientation: hid-sensor-rotation: add timestamp hack to not break userspace 7d14b49de8fcc iio: orientation: hid-sensor-rotation: fix quaternion alignment 2b655a9176442 iio: add IIO_DECLARE_QUATERNION() macro cae26eff1b56d gpib: fix use-after-free in IO ioctl handlers 115a4c8df909f drm/amdgpu: fix the idr allocation flags 1e3e98596c276 x86/kexec: Disable KCOV instrumentation after load_segments() 16062d6830a7f mips: mm: Allocate tlb_vpn array atomically 243d55bd3f08c hwmon: (occ) Fix division by zero in occ_show_power_1() 1010390094fa2 MIPS: Fix the GCC version check for `__multi3' workaround 247e1e7e25c8f MIPS: SiByte: Bring back cache initialisation 075ea208c648c ksmbd: fix OOB write in QUERY_INFO for compound requests aba0aea354015 Bluetooth: hci_sync: fix stack buffer overflow in hci_le_big_create_sync fa14e0e19820b Bluetooth: SMP: force responder MITM requirements before building the pairing response 061ee71ac6b03 Bluetooth: SMP: derive legacy responder STK authentication from MITM state c314b405dcc4d io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() 2e8194b4fdee7 ALSA: hda/realtek: add quirk for HP Victus 15-fb0xxx 682b5fd115689 ALSA: hda/realtek: Add quirk for ASUS ROG Strix SCAR 15 57698f184e1af ALSA: ctxfi: Fix missing SPDIFI1 index handling 3afa2e67f3523 ALSA: caiaq: fix stack out-of-bounds read in init_card 1933249263c3a lib/crypto: chacha: Zeroize permuted_state before it leaves scope b49bf41b41148 sched_ext: Fix inconsistent NUMA node lookup in scx_select_cpu_dfl() 10c13c111d0d7 drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw() ce47541f5c408 USB: serial: option: add MeiG Smart SRM825WN dd90880eb5ec5 wifi: iwlwifi: mvm: fix potential out-of-bounds read in iwl_mvm_nd_match_info_handler() d8388614de613 wifi: wilc1000: fix u8 overflow in SSID scan buffer size calculation 20e2418b98369 rust_binder: use AssertSync for BINDER_VM_OPS f0e441be08a2e drm/ioc32: stop speculation on the drm_compat_ioctl path 1200f4240c07d ACPI: RIMT: Add dependency between iommu and devices 50392cdfe95e0 riscv: Reset pmm when PR_TAGGED_ADDR_ENABLE is not set e1425ff578c4a riscv: kgdb: fix several debug register assignment bugs e435a30ca6fe1 perf/x86: Fix potential bad container_of in intel_pmu_hw_config 87573883c30f1 sched/fair: Fix zero_vruntime tracking fix a99f94e4f28a3 mips: ralink: update CPU clock index d6fbc5750f382 hwmon: (asus-ec-sensors) Fix T_Sensor for PRIME X670E-PRO WIFI d16f8716c927f drm/sysfb: Fix efidrm error handling and memory type mismatch 6205de166dfb2 hwmon: (occ) Fix missing newline in occ_show_extended() ee4c064e37d4d spi: amlogic: spifc-a4: unregister ECC engine on probe failure and remove() callback fdbfa1bf2c759 hwmon: (tps53679) Fix device ID comparison and printing in tps53676_identify() 9e962e68a9d26 drm/xe/pxp: Clear restart flag in pxp_start after jumping back 5633454e28d30 drm/xe/pxp: Remove incorrect handling of impossible state during suspend ec45309671920 drm/xe/pxp: Clean up termination status on failure e8298e0cc68de spi: stm32-ospi: Fix reset control leak on probe error b4ec54c974c6e spi: stm32-ospi: Fix resource leak in remove() callback 3a8b66a84f058 dt-bindings: gpio: fix microchip #interrupt-cells dfe3a785ae7fc hwmon: (ltc4286) Add missing MODULE_IMPORT_NS("PMBUS") 13b0cb9963652 hwmon: (pxe1610) Check return value of page-select write in probe 79b7e588399bb hwmon: (tps53679) Fix array access with zero-length block read 040a1e7e0e2f0 io_uring/rsrc: reject zero-length fixed buffer import f403094d9075d accel/qaic: Handle DBC deactivation if the owner went away 33b54c7793cf7 gpiolib: clear requested flag if line is invalid 606f88c162b27 gpio: rename gpio_chip_hwgpio() to gpiod_hwgpio() 9e5495d216bff iio: imu: bno055: fix BNO055_SCAN_CH_COUNT off by one 89c3a4ba60309 Revert "drm: Fix use-after-free on framebuffers and property blobs when calling drm_dev_unplug" dc9a060d76c12 bpf: Reject sleepable kprobe_multi programs at attach time 63276547debc4 bpf: reject direct access to nullable PTR_TO_BUF pointers 7c15dabcbc9e3 eth: fbnic: Increase FBNIC_QUEUE_SIZE_MIN to 64 9ed81d692758d ipv6: avoid overflows in ip6_datagram_send_ctl() 1fe371a34e801 net: hsr: fix VLAN add unwind on slave errors a208c3e123299 net/sched: cls_flow: fix NULL pointer dereference on shared blocks 3cb055df9e862 net/sched: cls_fw: fix NULL pointer dereference on shared blocks 8c92969c197b9 net/x25: Fix overflow when accumulating packets fa1dbc93530b3 net/x25: Fix potential double free of skb 311efb3cfc926 bnxt_en: Restore default stat ctxs for ULP when resource is available e27153b2bd6e6 net/mlx5: Fix switchdev mode rollback in case of failure 276b3efb2b487 net/mlx5: Avoid "No data available" when FW version queries fail c53cf44588a93 net/mlx5: lag: Check for LAG device before creating debugfs 5392a5174df4f net: macb: properly unregister fixed rate clocks 16ab4c0e2b15d net: macb: fix clk handling on PCI glue driver removal 3a2999704ac36 net/sched: sch_netem: fix out-of-bounds access in packet corruption 18861f87a043e bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready(). 23e07c340c445 rds: ib: reject FRMR registration before IB connection is established edb5898cfa91a Bluetooth: MGMT: validate mesh send advertising payload length 1d0bdbfe3e91c Bluetooth: hci_event: fix potential UAF in hci_le_remote_conn_param_req_evt 7d568fede8eac Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync 50fb64defa72a Bluetooth: MGMT: validate LTK enc_size on load 3ec3a1588876c Bluetooth: hci_h4: Fix race during initialization 98c8d3bfdaa65 Bluetooth: SCO: fix race conditions in sco_sock_connect() d4d1a4eed6f6c Bluetooth: hci_sync: call destroy in hci_cmd_sync_run if immediate 42a47f4b1b769 netfilter: nf_tables: reject immediate NF_QUEUE verdict dc3e27dd7d76e netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP 187b6ec5229ea netfilter: ctnetlink: ignore explicit helper on new expectations a0684ccc1ddd2 netfilter: nf_conntrack_expect: store netns and zone in expectation b53294bff19e5 netfilter: nf_conntrack_expect: use expect->helper 54cb3500e8af5 netfilter: nf_conntrack_expect: honor expectation helper field 929f7a9a7aad9 netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent 620f3d14c1ef5 netfilter: nf_conntrack_helper: pass helper to expect cleanup a54bbbcd3c628 netfilter: ipset: use nla_strcmp for IPSET_ATTR_NAME attr f419bdc205894 netfilter: x_tables: ensure names are nul-terminated 88a8f56e6276f netfilter: nfnetlink_log: account for netlink header size 504c9456699dc netfilter: flowtable: strictly check for maximum number of actions 908dd5faf8169 ALSA: usb-audio: Exclude Scarlett 2i2 1st Gen (8016) from SKIP_IFACE_SETUP 87a8287e76244 net: stmmac: skip VLAN restore when VLAN hash ops are missing 58b58b9ba89c4 mptcp: fix soft lockup in mptcp_recvmsg() 8d38f222795d3 mptcp: add eat_recv_skb helper 414726b69921f net: ipv6: flowlabel: defer exclusive option free until RCU teardown 8aebe18069394 bpf: Fix regsafe() for pointers to packet 917303fda0f1b ASoC: Intel: boards: fix unmet dependency on PINCTRL 2a0323a913109 net: xilinx: axienet: Fix BQL accounting for multi-BD TX packets f3cf32dc1ebbd net: xilinx: axienet: Correct BD length masks to match AXIDMA IP spec ad2f60de5045b NFC: pn533: bound the UART receive buffer d4cc7e4c80b16 net: bonding: fix use-after-free in bond_xmit_broadcast() 153d5520c3f9f crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption fafe0fa2995a0 crypto: algif_aead - Revert to operating out-of-place c8d53b70166d1 bnxt_en: set backing store type from query type 906997ea3766c net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak cc91202fc20a4 net: use skb_header_pointer() for TCPv4 GSO frag_off check 846cd4a5ffdce net: introduce mangleid_features ae585d9ac863f net: airoha: Add missing cleanup bits in airoha_qdma_cleanup_rx_queue() 3cd4efb5df728 ipv6: prevent possible UaF in addrconf_permanent_addr() 2321b0d47a11a ASoC: ep93xx: Fix unchecked clk_prepare_enable() and add rollback on failure 19f90e0061b69 ALSA: usb-audio: Exclude Scarlett Solo 1st Gen from SKIP_IFACE_SETUP 15db5c44f79c4 net: enetc: do not allow VF to configure the RSS key 85b4fb46a8989 net: enetc: check whether the RSS algorithm is Toeplitz 3b4df3d43ae42 net: sfp: Fix Ubiquiti U-Fiber Instant SFP module on mvneta 17c1b9807b8a6 net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() 9c55e41c73af5 bridge: br_nd_send: linearize skb before parsing ND options 117f9453dd7cd eth: fbnic: Account for page fragments when updating BDQ tail 590f622669b97 ip6_tunnel: clear skb2->cb[] in ip4ip6_err() a2edbb6393972 ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() 7e55845bd8971 tg3: Fix race for querying speed/duplex 184d2e9db27c0 net/ipv6: ioam6: prevent schema length wraparound in trace fill b485eef3d97b7 net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak f2664bc4f0f35 net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak 77c5f0a105d04 net: enetc: reset PIR and CIR if they are not equal when initializing TX ring 98bef6f424a37 net: fec: fix the PTP periodic output sysfs interface 53219f87bd220 netdevsim: fix build if SKB_EXTENSIONS=n 7267e4c75f9f1 net: mana: Fix RX skb truesize accounting 00cbdec17c15d crypto: af-alg - fix NULL pointer dereference in scatterwalk 83622e52431eb crypto: deflate - fix spurious -ENOSPC aa545df011338 crypto: caam - fix overflow on long hmac keys 68feed135a0c7 crypto: caam - fix DMA corruption on long hmac keys 91478edb8cbc2 wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session 52dc79062f239 wifi: iwlwifi: mld: correctly set wifi generation data 2f84d5e9c1c57 wifi: iwlwifi: disable EHT if the device doesn't allow it 9d713f4f8bb0e wifi: iwlwifi: cfg: add new device names c0b3fa5e0eaec wifi: iwlwifi: mvm: don't send a 6E related command when not supported 624af5c3baa2d wifi: iwlwifi: mld: Fix MLO scan timing ee555d539975e wifi: iwlwifi: fix remaining kernel-doc warnings fdbc00b8b2eec dt-bindings: auxdisplay: ht16k33: Use unevaluatedProperties to fix common property warning 4d47b812f9250 spi: geni-qcom: Check DMA interrupts early in ISR f4e35576da439 smb: client: fix generic/694 due to wrong ->i_blocks 850de3d87f472 btrfs: reject root items with drop_progress and zero drop_level 86d7c80e1cfff i2c: tegra: Don't mark devices with pins as IRQ safe cf930a651eef6 btrfs: reserve enough transaction items for qgroup ioctls 7f66fdbc077fa HID: multitouch: Check to ensure report responses match the request 8f71034649738 HID: core: Mitigate potential OOB by removing bogus memset() b846fb0a73e99 HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure 34b12ab75ae25 objtool: Fix Clang jump table detection 7e0576dcf245d tg3: replace placeholder MAC address with device property 8b3484011a83e btrfs: don't take device_list_mutex when querying zone info abc10f85a3965 atm: lec: fix use-after-free in sock_def_readable() c8dc23c97680e HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq be81f17151fcb wifi: mac80211: check tdls flag in ieee80211_tdls_oper 6c4e67e6ba250 HID: logitech-hidpp: Enable MX Master 4 over bluetooth 1c41248cef835 arm64/scs: Fix handling of advance_loc4 Signed-off-by: Bruce Ashfield --- .../linux/linux-yocto-rt_6.18.bb | 6 ++--- .../linux/linux-yocto-tiny_6.18.bb | 6 ++--- meta/recipes-kernel/linux/linux-yocto_6.18.bb | 24 +++++++++---------- 3 files changed, 18 insertions(+), 18 deletions(-) diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb index 55752d5de5..c2beb077bb 100644 --- a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb @@ -15,13 +15,13 @@ python () { raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it") } -SRCREV_machine ?= "700b638db800d9dae90ec3cbd464a6bc69708fae" -SRCREV_meta ?= "8af6e86ecd97388ecbae830d484445146a2a2159" +SRCREV_machine ?= "801e59a34036a1375d8f340cb0c88b84e8bc6e5c" +SRCREV_meta ?= "d8f130c88c0f0944979672241b46b634b20b12f4" SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine;protocol=https \ git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" -LINUX_VERSION ?= "6.18.21" +LINUX_VERSION ?= "6.18.22" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb index a9053563c5..3f5569220a 100644 --- a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb @@ -9,7 +9,7 @@ require recipes-kernel/linux/linux-yocto.inc include recipes-kernel/linux/cve-exclusion.inc include recipes-kernel/linux/cve-exclusion_6.18.inc -LINUX_VERSION ?= "6.18.21" +LINUX_VERSION ?= "6.18.22" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}" @@ -18,8 +18,8 @@ DEPENDS += "openssl-native util-linux-native" KMETA = "kernel-meta" KCONF_BSP_AUDIT_LEVEL = "2" -SRCREV_machine ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_meta ?= "8af6e86ecd97388ecbae830d484445146a2a2159" +SRCREV_machine ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_meta ?= "d8f130c88c0f0944979672241b46b634b20b12f4" PV = "${LINUX_VERSION}+git" diff --git a/meta/recipes-kernel/linux/linux-yocto_6.18.bb b/meta/recipes-kernel/linux/linux-yocto_6.18.bb index db96131fbe..2f1a881aae 100644 --- a/meta/recipes-kernel/linux/linux-yocto_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto_6.18.bb @@ -18,25 +18,25 @@ KBRANCH:qemux86-64 ?= "v6.18/standard/base" KBRANCH:qemuloongarch64 ?= "v6.18/standard/base" KBRANCH:qemumips64 ?= "v6.18/standard/mti-malta" -SRCREV_machine:qemuarm ?= "02474ad96bbf476ffcbdaa7d60be3b40beecd5a4" -SRCREV_machine:qemuarm64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_machine:qemuloongarch64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemuarm ?= "43553ba7e511af2175454d2629934737c09ca662" +SRCREV_machine:qemuarm64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemuloongarch64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" SRCREV_machine:qemumips ?= "62ea92a539f58803a222be98b81118403074206e" -SRCREV_machine:qemuppc ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_machine:qemuriscv64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_machine:qemuriscv32 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_machine:qemux86 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_machine:qemux86-64 ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" +SRCREV_machine:qemuppc ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemuriscv64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemuriscv32 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemux86 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemux86-64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" SRCREV_machine:qemumips64 ?= "9fb4ff0187c85426f21fd40d4c61b742800f65c4" -SRCREV_machine ?= "82a182f895e9b2a4021cd580e8f3fd18ac82420a" -SRCREV_meta ?= "8af6e86ecd97388ecbae830d484445146a2a2159" +SRCREV_machine ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_meta ?= "d8f130c88c0f0944979672241b46b634b20b12f4" # set your preferred provider of linux-yocto to 'linux-yocto-upstream', and you'll # get the /base branch, which is pure upstream -stable, and the same # meta SRCREV as the linux-yocto-standard builds. Select your version using the # normal PREFERRED_VERSION settings. BBCLASSEXTEND = "devupstream:target" -SRCREV_machine:class-devupstream ?= "44c944a679974c2d18ee9b87070456d34193f3d4" +SRCREV_machine:class-devupstream ?= "f2b09e8b594ce61b8ff508ea1fb594b3b24ec6d3" PN:class-devupstream = "linux-yocto-upstream" KBRANCH:class-devupstream = "v6.18/base" @@ -44,7 +44,7 @@ SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRA git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" -LINUX_VERSION ?= "6.18.21" +LINUX_VERSION ?= "6.18.22" PV = "${LINUX_VERSION}+git" From patchwork Thu Apr 23 15:32:13 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86747 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 4414AFC0350 for ; Thu, 23 Apr 2026 15:32:41 +0000 (UTC) Received: from mail-qv1-f45.google.com (mail-qv1-f45.google.com [209.85.219.45]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.396.1776958353297013616 for ; Thu, 23 Apr 2026 08:32:33 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=B1dFAHtS; spf=pass (domain: gmail.com, ip: 209.85.219.45, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f45.google.com with SMTP id 6a1803df08f44-8ac9ef74131so105182466d6.1 for ; Thu, 23 Apr 2026 08:32:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958352; x=1777563152; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=HTex4mjMeQ+KOs0bFzb1jai3kHhMnPWGeO6hYimPsqo=; b=B1dFAHtSkywWnduLYtoUpdIICPYkaJfDupZgpUBMbhT+zYA4DkHFhiUyqdHaYxa+2B 7SkAe4CZZMY6T8EQgoAnilS4Khi+NrA3gN9m8m3j4FT9QvgUUcFg/TUTBCgqzgXAbyH4 FJIhcA9MojMEhpH1zG51D73GLI12ava96tz35ljyreEEwZHxlpo3N13j6W/VFpjS2fOt D9S2SczsuXYfdgRxzs40Xv47++m6UxasRWQnmzRZEjlUTQJPpo+3PYaZULIS8jrZHmah Hj7Il3K3FFwztG5VqjOe6GRwBNg+P+smEBVD7O8MpZOmw7PNkKgpoTIIiaJF3uXDcLTk jx3w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958352; x=1777563152; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=HTex4mjMeQ+KOs0bFzb1jai3kHhMnPWGeO6hYimPsqo=; b=MUJiGYrFXm73HTEnFBWL6A/eNUrEUaU3oht7W6ElBz2k69gWAVxZoyck6KdhKAiwgg kspBZahY3QekXmRtHX6sq24TwZbAAFPyVCfmJMwT8/jGf/ZaaAYQ6i4zbCKUux6Bg9GG UsINHmNVr002Pi+D/OgNlyl02mQ+6uWLP4hTygZVwg8s6ICa4SWYnLtOW9P8jbdxEgs+ zBKtKS7xfJKcgbmXVhHZVVoTBd9ges0BF3ivKzIkU38QkAg7OUwb/eGxuUuXF/MeOFIu VzpnF3mmznwjN5Qk+RWg+IGR6mbI4v8ZPUdrjR5QRPt36Zc6B5cD41fg9GosxdotOgJn qZ4g== X-Gm-Message-State: AOJu0Yy51LTSTX9s62gTNbn24AU5XCU/XseLXdfgsqyJUBtIje8JuIWG ILi1t7voh6v8kstCP2jWXFP9l6OkVtfeuONcrhjpjUWwiEOARfTUv+RzEYLsJS7a X-Gm-Gg: AeBDieu1qmGmhie8fcxqsG/wVOqT5T4N8zinXe2kuo5dSyQv7vcZREpyVCOwKt5Vt6y F8OShGaq2rPNDk3i8Wg5LcRsgu8xd2vuAmG6YQgE/P/E8OG3TLsi3TVfDmyz6n0WDUGpN9KY4H9 e3iGrYrHnCQOf+lLzZ6lr5+0jaQxa+5voVqY7/hzIqi/9HtKJ8I5TqD52sDzX6heUyPjId5I3D3 +R9FASzmlyXqL3XjyNzB4mKSBZtzpQFH+hIhdMlY4K39zplVcSt2VZR/hhDv+rQOCeI5/fyT7eA VXb0xXNGBqs0OghSbS4tG3g51pShLmenrT1wii5gotEzkJmBa+F7jEXF3gSC/6rgUDWycrKodGr bxqXSQmh49G4QcfzkHAgkhniQncXzbjb7wnI27B5V9BVuNJEa8gwNYpRwP+T4qdMWmLmVCNSG/8 gQqa4IZBJ6TC/8FCWabRPqT9Pu1dskQasLHy25UphmsaPCUcGqXXkt2IpUwWPC+cBtCJd1dxXFB S8DajJKCA/zGejKKzw3H968uOcZQ2fK3xVSb1jfJ+1EBCmZ8Mad4fiQUQQ1/KOXn9glML8I7aRn SsRY X-Received: by 2002:a0c:e018:0:b0:89c:5743:d09a with SMTP id 6a1803df08f44-8b028040598mr420953916d6.2.1776958352030; Thu, 23 Apr 2026 08:32:32 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.31 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:31 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 06/15] linux-yocto/6.18: update CVE exclusions (6.18.22) Date: Thu, 23 Apr 2026 11:32:13 -0400 Message-ID: <20260423153222.1932256-7-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:41 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235781 From: Bruce Ashfield Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 4 changes (4 new | 0 updated): - 4 new CVEs: CVE-2026-33714, CVE-2026-33715, CVE-2026-34160, CVE-2026-34161 - 0 updated CVEs: Date: Tue, 14 Apr 2026 21:14:51 +0000 ] Signed-off-by: Bruce Ashfield --- .../linux/cve-exclusion_6.18.inc | 68 +++++++++++++------ 1 file changed, 49 insertions(+), 19 deletions(-) diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 03f89ed9eb..2429851ff8 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-04-08 14:33:17.297345+00:00 for kernel version 6.18.21 -# From linux_kernel_cves cve_2026-04-08_1300Z-1-g105fda2ec51 +# Generated at 2026-04-14 21:26:55.774766+00:00 for kernel version 6.18.22 +# From linux_kernel_cves cve_2026-04-14_2000Z-2-gad6d9150d01 python check_kernel_cve_status_version() { - this_version = "6.18.21" + this_version = "6.18.22" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -21052,7 +21052,7 @@ CVE_STATUS[CVE-2026-23286] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23287] = "cpe-stable-backport: Backported in 6.18.17" -CVE_STATUS[CVE-2026-23288] = "fixed-version: only affects 6.19 onwards" +CVE_STATUS[CVE-2026-23288] = "fixed-version: only affects 6.19.4 onwards" CVE_STATUS[CVE-2026-23289] = "cpe-stable-backport: Backported in 6.18.17" @@ -21128,9 +21128,9 @@ CVE_STATUS[CVE-2026-23325] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23326] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23327 needs backporting (fixed from 7.0rc2) +# CVE-2026-23327 needs backporting (fixed from 7.0) -# CVE-2026-23328 needs backporting (fixed from 7.0rc3) +# CVE-2026-23328 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23329] = "cpe-stable-backport: Backported in 6.18.17" @@ -21140,8 +21140,6 @@ CVE_STATUS[CVE-2026-23331] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23332] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23333 needs backporting (fixed from 7.0rc1) - CVE_STATUS[CVE-2026-23334] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23335] = "cpe-stable-backport: Backported in 6.18.17" @@ -21156,7 +21154,7 @@ CVE_STATUS[CVE-2026-23339] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23340] = "cpe-stable-backport: Backported in 6.18.17" -CVE_STATUS[CVE-2026-23341] = "fixed-version: only affects 6.19 onwards" +CVE_STATUS[CVE-2026-23341] = "fixed-version: only affects 6.19.4 onwards" CVE_STATUS[CVE-2026-23342] = "cpe-stable-backport: Backported in 6.18.17" @@ -21216,19 +21214,19 @@ CVE_STATUS[CVE-2026-23369] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23370] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23371 needs backporting (fixed from 7.0rc3) +# CVE-2026-23371 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23372] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23373] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23374 needs backporting (fixed from 7.0rc3) +# CVE-2026-23374 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23375] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23376] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23377 needs backporting (fixed from 7.0rc3) +# CVE-2026-23377 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23378] = "cpe-stable-backport: Backported in 6.18.17" @@ -21252,7 +21250,7 @@ CVE_STATUS[CVE-2026-23387] = "cpe-stable-backport: Backported in 6.18.17" CVE_STATUS[CVE-2026-23388] = "cpe-stable-backport: Backported in 6.18.17" -# CVE-2026-23389 needs backporting (fixed from 7.0rc3) +CVE_STATUS[CVE-2026-23389] = "cpe-stable-backport: Backported in 6.18.22" CVE_STATUS[CVE-2026-23390] = "cpe-stable-backport: Backported in 6.18.13" @@ -21262,7 +21260,7 @@ CVE_STATUS[CVE-2026-23392] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23393] = "cpe-stable-backport: Backported in 6.18.20" -# CVE-2026-23394 needs backporting (fixed from 7.0rc5) +# CVE-2026-23394 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23395] = "cpe-stable-backport: Backported in 6.18.20" @@ -21358,7 +21356,7 @@ CVE_STATUS[CVE-2026-23440] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23441] = "cpe-stable-backport: Backported in 6.18.20" -# CVE-2026-23442 needs backporting (fixed from 7.0rc5) +# CVE-2026-23442 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23443] = "cpe-stable-backport: Backported in 6.18.20" @@ -21392,7 +21390,7 @@ CVE_STATUS[CVE-2026-23457] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23458] = "cpe-stable-backport: Backported in 6.18.20" -# CVE-2026-23459 needs backporting (fixed from 7.0rc5) +# CVE-2026-23459 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-23460] = "cpe-stable-backport: Backported in 6.18.20" @@ -21416,8 +21414,6 @@ CVE_STATUS[CVE-2026-23469] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23470] = "cpe-stable-backport: Backported in 6.18.20" -CVE_STATUS[CVE-2026-23471] = "cpe-stable-backport: Backported in 6.18.20" - CVE_STATUS[CVE-2026-23472] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23473] = "cpe-stable-backport: Backported in 6.18.20" @@ -21462,7 +21458,7 @@ CVE_STATUS[CVE-2026-31405] = "cpe-stable-backport: Backported in 6.18.19" CVE_STATUS[CVE-2026-31406] = "cpe-stable-backport: Backported in 6.18.21" -# CVE-2026-31407 needs backporting (fixed from 7.0rc5) +# CVE-2026-31407 needs backporting (fixed from 7.0) CVE_STATUS[CVE-2026-31408] = "cpe-stable-backport: Backported in 6.18.21" @@ -21472,5 +21468,39 @@ CVE_STATUS[CVE-2026-31410] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-31411] = "cpe-stable-backport: Backported in 6.18.14" +CVE_STATUS[CVE-2026-31412] = "cpe-stable-backport: Backported in 6.18.19" + +CVE_STATUS[CVE-2026-31413] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31414] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31415] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31416] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31417] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31418] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31419] = "cpe-stable-backport: Backported in 6.18.22" + +# CVE-2026-31420 needs backporting (fixed from 7.0) + +CVE_STATUS[CVE-2026-31421] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31422] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31423] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31424] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31425] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31426] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31427] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31428] = "cpe-stable-backport: Backported in 6.18.21" + CVE_STATUS[CVE-2026-31788] = "cpe-stable-backport: Backported in 6.18.20" From patchwork Thu Apr 23 15:32:14 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86748 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 54C4BFC0352 for ; Thu, 23 Apr 2026 15:32:41 +0000 (UTC) Received: from mail-qv1-f50.google.com (mail-qv1-f50.google.com [209.85.219.50]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.397.1776958354300752209 for ; Thu, 23 Apr 2026 08:32:34 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=DHP5t/1d; spf=pass (domain: gmail.com, ip: 209.85.219.50, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f50.google.com with SMTP id 6a1803df08f44-8a3342d301aso67151626d6.2 for ; Thu, 23 Apr 2026 08:32:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958353; x=1777563153; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=V/ffDjrpI7IsynGhnI5XFJJH7/uuqvypzl3pVD7EKsY=; b=DHP5t/1dFKF/Y3JTAomSA4ayel+h1IIy7XcRD492FM5SiPWifU25FmRpQC25ssve1y ZL+m4IbZGnb2x6ntFjw26u0QSXc0gDUt7zBX0DC0GoOyw1aHKKRAKolFM+TbqybNG0aq ZEOSq43gQYNrocjDe4F6vp/NlHf68OPqXp+Vd36utsIOwxXWer/d6eGPb31xkuYPjhr2 MHHegz6pop7/LlRDVmejz2X/An949QcFHv1tO7Yz5slgTF+CQZmgwXNSkA1ul2AYfA8p ktlAKE/vo64oyS2r6/EkVmyKXYKCcQi79SDQfGrjnn3iOksIthe4UwbLUWBy480y3Y3B T50w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958353; x=1777563153; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=V/ffDjrpI7IsynGhnI5XFJJH7/uuqvypzl3pVD7EKsY=; b=AE30AFBCbEmoM+b4+oC1rxfDxGNB+svMjCuzQXb7kfzTEd0MdhYsXo/9Fz75v92mIC QdV6dEMv4infnnk7zpYUeOFulWVByX5dQgj2rtC0pkXyQBWlYATIxzTP+FWmLOOArvv2 OOdnPxQ1BUw3VQF709bYYIY2H/w9+LCTsMpcok8QEhIbUQjzfbv00vGecdgFs9cSdfke 2WffQl6YcL07oVXJjwNvDDeXVbgCSbMQ6O7S6PVSAX+d5pAEGuVNPR/eNIA+JfjWeBeD 4uLmHiWME9EHPaxrEiQjef4U12KJx2lG43xcOBa+RcudhxeGyX3ethq3+vHVcT4nKTbu bZOg== X-Gm-Message-State: AOJu0Yz66ou68hb1yQa12mP0fvGXcgJdnx4RPtTBE7HukqHmYg+qNU4x fEZCBp83BPnp6ddxddkczldNP1liQP2/Juhmny0y6kdfqZyorlcx8oGd0OkkobYy X-Gm-Gg: AeBDievg+fGUII+jfMsAgmkPHTcPw7BgxPAO6f/rjnoaAvIzFbCJcHXbOamlv4reL5L QBs5apoahuHI/rnlnD7+jiIUgPdGLQF648uLg70Pd8utFrpjDjdvSk6qbZq2XaMGp0J6kyP2ppo YvmaPBSvhkjiB0j7mwm+JXjVANUpV9XQI1rzyVdM20w1XXW5prjOrynRVfgnpsuyZ3/Fnr+s6Tz HkbT2wE4Dz5YlPsDw4Zx/VKtWT2BupdqDxIHPquZnG75IzXuuat/a5mlZ0+Nogv2IpEqkXv8DuX CKzzaFLDPs6kr0ynxCUY6bfK7t2AOrh5TmPXCp7Fo4S7lpuTmZGg5/P0mQkRCGG/FkBjxQlXo6s EozzuFLUDEOGjKuak1qFM1QfDny3TfxnVGzuhvz5CtHcvFqt37IDGOq3airER/oFzWHfZrUWcs5 6zq7EktemhSyJgE5/hEguU9r7mwshRaIzeXW3lxnt6BckIy9LZH6lxbKfmfL0tEHEUjDoKIj5be 0his4X9A4Ea+FzKWMcNqG7+BWWsZ8gsJm9+gw0IvcK2DH8dO8YQFbxa9c4lOSngEneHgg== X-Received: by 2002:a05:6214:4c8a:b0:89c:a2b2:8d44 with SMTP id 6a1803df08f44-8b028112da3mr388905366d6.39.1776958352973; Thu, 23 Apr 2026 08:32:32 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.32 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:32 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 07/15] linux-yocto/6.18: update to v6.18.23 Date: Thu, 23 Apr 2026 11:32:14 -0400 Message-ID: <20260423153222.1932256-8-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:41 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235782 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: 47a33eea6d51 Linux 6.18.23 ad17f07e95e6 x86/CPU: Fix FPDSS on Zen1 2d64618ea846 net: skb: fix cross-cache free of KFENCE-allocated skb head db297c78ce53 rxrpc: proc: size address buffers for %pISpc output d0035e634dae rxrpc: only handle RESPONSE during service challenge 794586789800 rxrpc: Fix buffer overread in rxgk_do_verify_authenticator() 4b5e8365515f rxrpc: Fix leak of rxgk context in rxgk_verify_response() 1f864d9daaf6 rxrpc: Fix integer overflow in rxgk_verify_response() bf4d6e4a6856 rxrpc: Fix missing error checks for rxkad encryption/decryption failure 03d1c51decae rxrpc: Fix key/keyring checks in setsockopt(RXRPC_SECURITY_KEY/KEYRING) 8ee931c3cd97 rxrpc: fix reference count leak in rxrpc_server_keyring() beee051f259a rxrpc: fix oversized RESPONSE authenticator length check 7875f3d9777b rxrpc: fix RESPONSE authenticator parser OOB read 22f6258e7b31 rxrpc: reject undecryptable rxkad response tickets 8299ca146489 rxrpc: Only put the call ref if one was acquired 8b353f5f1385 rxrpc: Fix to request an ack if window is limited 2e6ef713b159 rxrpc: Fix key reference count leak from call->key 86303a1da93f rxrpc: Fix rack timer warning to report unexpected mode 9132b1a7bf83 rxrpc: Fix use of wrong skb when comparing queued RESP challenge serial 3e04596cba8a rxrpc: Fix RxGK token loading to check bounds 3be718f65968 rxrpc: Fix call removal to use RCU safe deletion 3bb18ed3b2f6 rxrpc: Fix anonymous key handling d5f76f812d2c rxrpc: Fix key parsing memleak 862cb78fb2c9 rxrpc: Fix key quota calculation for multitoken keys 92a673019943 net: lan966x: fix use-after-free and leak in lan966x_fdma_reload() 22e1ee9f22b5 net: lan966x: fix page pool leak in error paths b5dcb41ba891 net: lan966x: fix page_pool error handling in lan966x_fdma_rx_alloc_page_pool() 214ceaa8a3a2 idpf: set the payload size before calling the async handler d6e9bef3313a idpf: improve locking around idpf_vc_xn_push_free() e02c974fc331 idpf: fix PREEMPT_RT raw/bh spinlock nesting for async VC handling 576543bedd61 mm: filemap: fix nr_pages calculation overflow in filemap_map_pages() 6fca757c2039 net: stmmac: fix integer underflow in chain mode 9fdece45f6e0 net: qualcomm: qca_uart: report the consumed byte on RX skb allocation failure ea7468f61be0 mmc: vub300: fix use-after-free on disconnect c83a282615d8 mmc: vub300: fix NULL-deref on disconnect 447f8870b484 mm/damon/stat: deallocate damon_call() failure leaking damon_ctx b9dadf026a9f mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails 49c00ae87230 mm/memory_hotplug: maintain N_NORMAL_MEMORY during hotplug 470047177574 igb: remove napi_synchronize() in igb_down() e44919669f07 pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled 82e8174d1d0e net/mlx5: Update the list of the PCI supported devices de9aa7e89b98 drm/i915/psr: Do not use pipe_src as borders for SU area 2af8b200cae3 drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat 4dee4c068844 batman-adv: hold claim backbone gateways by reference 60f462cd2716 net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() 5d70eb25b41e net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption 87ce8ae51196 EDAC/mc: Fix error path ordering in edac_mc_alloc() 206121294b9c X.509: Fix out-of-bounds access when parsing extensions de6c1dc3c7d0 batman-adv: reject oversized global TT response buffers 21ae2cda66a5 nfc: pn533: allocate rx skb before consuming bytes 083c5a417dee arm64: dts: hisilicon: hi3798cv200: Add missing dma-ranges f0a0a6a8c1cc arm64: dts: hisilicon: poplar: Correct PCIe reset GPIO polarity c82a3c9d9fb3 arm64: dts: renesas: sparrow-hawk: Reserve first 128 MiB of DRAM a4115c2abab3 arm64: dts: imx8mq-librem5: Bump BUCK1 suspend voltage up to 0.85V 3b31b15230b0 Revert "arm64: dts: imx8mq-librem5: Set the DVS voltages lower" aee881c21b57 Revert "arm64: dts: rockchip: Further describe the WiFi for the Pinebook Pro" fecceacbaf48 platform/x86/intel-uncore-freq: Handle autonomous UFS status bit c4e1eff4606c platform/x86: ISST: Reset core count to 0 b27fa888e4a4 wifi: brcmsmac: Fix dma_free_coherent() size 1b6f13f62666 tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG 0f451b43c88b xfrm: hold dev ref until after transport_finish NF_HOOK b1dfd6b27df3 xfrm: clear trailing padding in build_polexpire() 688c1b491c35 modpost: Declare extra_warn with unused attribute 0133aa1a28af workqueue: Add pool_workqueue to pending_pwqs list when unplugging multiple inactive works fbdb43f6bb2a firmware: thead: Fix buffer overflow and use standard endian macros b42aca3660dc netfilter: nft_ct: fix use-after-free in timeout object destroy 2802ba3981f1 i2c: imx: zero-initialize dma_slave_config for eDMA 72cf49ad50c1 af_unix: Give up GC if MSG_PEEK intervened. 33120558237c af_unix: Simplify GC state. 1e211179f1d9 af_unix: Count cyclic SCC. 450e6a685d0c btrfs: fix incorrect return value after changing leaf in lookup_extent_data_ref() 2124a61e6e2b btrfs: remove pointless out labels from extent-tree.c d8b281165a86 MIPS: mm: Rewrite TLB uniquification for the hidden bit feature ccc6a2241a49 MIPS: mm: Suppress TLB uniquification on EHINV hardware 6c600fc0e991 MIPS: Always record SEGBITS in cpu_data.vmbits 6c098142b370 Input: uinput - take event lock when submitting FF request "event" 1e09dfbb4f5d Input: uinput - fix circular locking dependency with ff-core fb56de5d9921 seg6: separate dst_cache for input and output paths in seg6 lwtunnel 15fa9ead4d5e mptcp: fix slab-use-after-free in __inet_lookup_established 96a95b6d9e6d Revert "mptcp: add needs_id for netlink appending addr" 130c991e6aad Revert "ALSA: hda/realtek: Add quirk for Gigabyte Technology to fix headphone" a8c26800e022 net: rfkill: prevent unlimited numbers of rfkill events from being created 6c55714c9310 xfrm_user: fix info leak in build_report() e360d15fcb1e wifi: rt2x00usb: fix devres lifetime f4786c34216a usb: typec: ucsi: skip connector validation before init Signed-off-by: Bruce Ashfield --- .../linux/linux-yocto-rt_6.18.bb | 6 ++--- .../linux/linux-yocto-tiny_6.18.bb | 6 ++--- meta/recipes-kernel/linux/linux-yocto_6.18.bb | 24 +++++++++---------- 3 files changed, 18 insertions(+), 18 deletions(-) diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb index c2beb077bb..5158089ff7 100644 --- a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb @@ -15,13 +15,13 @@ python () { raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it") } -SRCREV_machine ?= "801e59a34036a1375d8f340cb0c88b84e8bc6e5c" -SRCREV_meta ?= "d8f130c88c0f0944979672241b46b634b20b12f4" +SRCREV_machine ?= "10663f4ac37a6565b2b001bc6d12aab1eb0d2ad4" +SRCREV_meta ?= "dcbc01fb2df5c72a789ab9506b9bc7a1078c3298" SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine;protocol=https \ git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" -LINUX_VERSION ?= "6.18.22" +LINUX_VERSION ?= "6.18.23" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb index 3f5569220a..0b284494c3 100644 --- a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb @@ -9,7 +9,7 @@ require recipes-kernel/linux/linux-yocto.inc include recipes-kernel/linux/cve-exclusion.inc include recipes-kernel/linux/cve-exclusion_6.18.inc -LINUX_VERSION ?= "6.18.22" +LINUX_VERSION ?= "6.18.23" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}" @@ -18,8 +18,8 @@ DEPENDS += "openssl-native util-linux-native" KMETA = "kernel-meta" KCONF_BSP_AUDIT_LEVEL = "2" -SRCREV_machine ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_meta ?= "d8f130c88c0f0944979672241b46b634b20b12f4" +SRCREV_machine ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_meta ?= "dcbc01fb2df5c72a789ab9506b9bc7a1078c3298" PV = "${LINUX_VERSION}+git" diff --git a/meta/recipes-kernel/linux/linux-yocto_6.18.bb b/meta/recipes-kernel/linux/linux-yocto_6.18.bb index 2f1a881aae..f034960b95 100644 --- a/meta/recipes-kernel/linux/linux-yocto_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto_6.18.bb @@ -18,25 +18,25 @@ KBRANCH:qemux86-64 ?= "v6.18/standard/base" KBRANCH:qemuloongarch64 ?= "v6.18/standard/base" KBRANCH:qemumips64 ?= "v6.18/standard/mti-malta" -SRCREV_machine:qemuarm ?= "43553ba7e511af2175454d2629934737c09ca662" -SRCREV_machine:qemuarm64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_machine:qemuloongarch64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemuarm ?= "c45ea572f0138dcc0dbfec2375113517a7b61020" +SRCREV_machine:qemuarm64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemuloongarch64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" SRCREV_machine:qemumips ?= "62ea92a539f58803a222be98b81118403074206e" -SRCREV_machine:qemuppc ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_machine:qemuriscv64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_machine:qemuriscv32 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_machine:qemux86 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_machine:qemux86-64 ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" +SRCREV_machine:qemuppc ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemuriscv64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemuriscv32 ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemux86 ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemux86-64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" SRCREV_machine:qemumips64 ?= "9fb4ff0187c85426f21fd40d4c61b742800f65c4" -SRCREV_machine ?= "d479bdd7e63f27f13596d0008a10fac508d9eaba" -SRCREV_meta ?= "d8f130c88c0f0944979672241b46b634b20b12f4" +SRCREV_machine ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_meta ?= "dcbc01fb2df5c72a789ab9506b9bc7a1078c3298" # set your preferred provider of linux-yocto to 'linux-yocto-upstream', and you'll # get the /base branch, which is pure upstream -stable, and the same # meta SRCREV as the linux-yocto-standard builds. Select your version using the # normal PREFERRED_VERSION settings. BBCLASSEXTEND = "devupstream:target" -SRCREV_machine:class-devupstream ?= "f2b09e8b594ce61b8ff508ea1fb594b3b24ec6d3" +SRCREV_machine:class-devupstream ?= "47a33eea6d5145d53e42315381ef28286c2218fb" PN:class-devupstream = "linux-yocto-upstream" KBRANCH:class-devupstream = "v6.18/base" @@ -44,7 +44,7 @@ SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRA git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" -LINUX_VERSION ?= "6.18.22" +LINUX_VERSION ?= "6.18.23" PV = "${LINUX_VERSION}+git" From patchwork Thu Apr 23 15:32:15 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86749 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 641F8FC0351 for ; Thu, 23 Apr 2026 15:32:41 +0000 (UTC) Received: from mail-vs1-f48.google.com (mail-vs1-f48.google.com [209.85.217.48]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.399.1776958356163675703 for ; Thu, 23 Apr 2026 08:32:36 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=IHJDeWoq; spf=pass (domain: gmail.com, ip: 209.85.217.48, mailfrom: bruce.ashfield@gmail.com) Received: by mail-vs1-f48.google.com with SMTP id ada2fe7eead31-612d8a59ca0so4371705137.1 for ; Thu, 23 Apr 2026 08:32:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958355; x=1777563155; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=6XZDqQYjqeA4FvkfFXwpqEWP9FEQ7J5cW4IvCaRMwKE=; b=IHJDeWoqwrqSDw+pJuPyIJKGUNacsxd92tL0H9auzzrVpDKocHA+fm4ldXPW7YOlGS 48SyALJBc06dvGNYfQPIlGeL47qS8rCApL9HfZUMlhgsv0An//M8+32Lnm7FGO47bPMW ebNaptNVe3uEkOQWclBV0CEsSMbDhlSxBnIdlxKuEUuwqF4cOrOJcOC3aXdsX5JBPEOt CQ2LxNAvq1O/L2TKLp2/NfU1xnT+Mj0SlmJYfWDGEfAkZIPa7HJSdJbus7kd1dQPaat4 AwBGlClUVu0BGGfAf8kDD27pL9H5hatH40b8Gwnu6Jp6V6ltkebkfjIIM9LSRyLvEJHu yOjQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958355; x=1777563155; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=6XZDqQYjqeA4FvkfFXwpqEWP9FEQ7J5cW4IvCaRMwKE=; b=jzYcC1BE/CbBoNrz+ncfyztgmCUZnr2Sig3A98igSvWZcNHxsAJUOp7l8ENUYuCJT1 BIky7VmtUuA17wUBV8LRYtiCTYRG982sZWvB6wBL7RLV5ULpCF3Ic1TmDdR2c/q+W6Jh /LVZDLO2e8gMVZxzfjNkNA3FIe56PXymnnNrE5mgH+p+gibmUS7vdoNJ1VS0jDLEQrLv /hgcfG6KwHtfhmBdejZdFxAFEQzy2qOYTvpKButrEeLUgvLAYRUoFdLc3+OyMIhU1/x0 x1jIX5ibFBfFp0F5Wb6OdxDAuAsSmhDC3d0bEJ2mAo1qQkhMU9JkFIZmOqnGiSYqE9ev zklQ== X-Gm-Message-State: AOJu0YyqOB95wLOgD7SSfYimTf11H0T9fpkQGFW6HGp+StjxO0JQe15n 90tFzLI2XHSwMykpuZc1Muy2var7J+gbpqU8hyKP/6dwdi23XxbJ4h4p/3Gf0k1J X-Gm-Gg: AeBDies7IbgRMBGgSuMDe5+Sd9HKNoUvGhfqieUK4wnH7BTKVoWnd8FezsdCd5piCD4 Af+Nlt5M5kRM4UK8GaMlmIHZkIMbojvXoWp4H+Dot7zDIfi0dJA/E5nxVF5i+g+dDVy1WfOWiIb 3OfG/3LS5AjfMbawH9MqiSJGoPPZNFKAvfMlrlqAIvkn6WFkr9fLqltlDxABRZcVwyOzFqXOw/i +k5vBju3QrNKysCMP2xUUejikdy6Zx+Jpo2fEr2vkzN/87eD8nlTgixxDzbrjL3Ru0JVOPDAIg3 kshX9T839UljsmCCMko1naafvT/YLZQ3dMlOYMdrHXNIvrRndptM4p4jR+cSLOw9mFFRWgG5odM K6+ErP/cAHV9ki4BDlLwLojyunbENmRUaGUxuf/r/kUDQ4eWWqc2V8EbrPO+RateFQhLsz0c0Jh /11RwvgT9fhTGwyyy1Dfl67fuId7TDBNxr2sFq4V7+5/Y49vfZVDMdiX7S2Dt7d9YDfi8PmVdkt Stm01zAWSKIW8hLhzjjn/Y/RLdw2gKHVIGOBsiqiY7pVu1j6as/zt/lXaPwT3LlRk4+Iw== X-Received: by 2002:a05:6102:f14:b0:611:3bcb:aef6 with SMTP id ada2fe7eead31-616f16429b5mr14195654137.0.1776958354811; Thu, 23 Apr 2026 08:32:34 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.33 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:33 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 08/15] linux-yocto/6.18: update CVE exclusions (6.18.23) Date: Thu, 23 Apr 2026 11:32:15 -0400 Message-ID: <20260423153222.1932256-9-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:41 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235783 From: Bruce Ashfield Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 205 changes (128 new | 77 updated): - 128 new CVEs: CVE-2000-5001, CVE-2005-20001, CVE-2008-20002, CVE-2008-20003, CVE-2009-20012, CVE-2010-20110, CVE-2010-20116, CVE-2010-20117, CVE-2010-20118, CVE-2010-20124, CVE-2011-10031, CVE-2013-10041, CVE-2013-10045, CVE-2013-10056, CVE-2014-125120, CVE-2026-31192, CVE-2026-31434, CVE-2026-31435, CVE-2026-31436, CVE-2026-31437, CVE-2026-31438, CVE-2026-31439, CVE-2026-31440, CVE-2026-31441, CVE-2026-31442, CVE-2026-31443, CVE-2026-31444, CVE-2026-31445, CVE-2026-31446, CVE-2026-31447, CVE-2026-31448, CVE-2026-31449, CVE-2026-31450, CVE-2026-31451, CVE-2026-31452, CVE-2026-31453, CVE-2026-31454, CVE-2026-31455, CVE-2026-31456, CVE-2026-31457, CVE-2026-31458, CVE-2026-31459, CVE-2026-31460, CVE-2026-31461, CVE-2026-31462, CVE-2026-31463, CVE-2026-31464, CVE-2026-31465, CVE-2026-31466, CVE-2026-31467, CVE-2026-31468, CVE-2026-31469, CVE-2026-31470, CVE-2026-31471, CVE-2026-31472, CVE-2026-31473, CVE-2026-31474, CVE-2026-31475, CVE-2026-31476, CVE-2026-31477, CVE-2026-31478, CVE-2026-31479, CVE-2026-31480, CVE-2026-31481, CVE-2026-31482, CVE-2026-31483, CVE-2026-31484, CVE-2026-31485, CVE-2026-31486, CVE-2026-31487, CVE-2026-31488, CVE-2026-31489, CVE-2026-31490, CVE-2026-31491, CVE-2026-31492, CVE-2026-31493, CVE-2026-31494, CVE-2026-31495, CVE-2026-31496, CVE-2026-31497, CVE-2026-31498, CVE-2026-31499, CVE-2026-31500, CVE-2026-31501, CVE-2026-31502, CVE-2026-31503, CVE-2026-31504, CVE-2026-31505, CVE-2026-31506, CVE-2026-31507, CVE-2026-31508, CVE-2026-31509, CVE-2026-31510, CVE-2026-31511, CVE-2026-31512, CVE-2026-31513, CVE-2026-31514, CVE-2026-31515, CVE-2026-31516, CVE-2026-31517, CVE-2026-31518, CVE-2026-31519, CVE-2026-31520, CVE-2026-31521, CVE-2026-31522, CVE-2026-31523, CVE-2026-31524, CVE-2026-31525, CVE-2026-31526, CVE-2026-31527, CVE-2026-31528, CVE-2026-31529, CVE-2026-31530, CVE-2026-33254, CVE-2026-33593, CVE-2026-33594, CVE-2026-33595, CVE-2026-33596, CVE-2026-33597, CVE-2026-33598, CVE-2026-33599, CVE-2026-33602, CVE-2026-33608, CVE-2026-33609, CVE-2026-33610, CVE-2026-33611, CVE-2026-6861, CVE-2026-6862 - 77 updated CVEs: CVE-2026-0539, CVE-2026-1930, CVE-2026-20133, CVE-2026-21997, CVE-2026-21998, CVE-2026-21999, CVE-2026-22001, CVE-2026-22002, CVE-2026-22003, CVE-2026-22004, CVE-2026-22005, CVE-2026-22007, CVE-2026-22008, CVE-2026-22009, CVE-2026-22010, CVE-2026-22013, CVE-2026-22014, CVE-2026-22015, CVE-2026-22016, CVE-2026-22017, CVE-2026-22018, CVE-2026-22019, CVE-2026-22021, CVE-2026-22746, CVE-2026-25917, CVE-2026-33145, CVE-2026-34267, CVE-2026-34268, CVE-2026-34269, CVE-2026-34270, CVE-2026-34271, CVE-2026-34272, CVE-2026-34273, CVE-2026-34274, CVE-2026-34288, CVE-2026-34289, CVE-2026-34290, CVE-2026-34291, CVE-2026-34292, CVE-2026-34293, CVE-2026-34294, CVE-2026-34295, CVE-2026-34296, CVE-2026-34297, CVE-2026-34298, CVE-2026-34299, CVE-2026-34312, CVE-2026-34319, CVE-2026-35587, CVE-2026-39808, CVE-2026-3362, CVE-2026-40342, CVE-2026-40614, CVE-2026-40868, CVE-2026-40872, CVE-2026-40878, CVE-2026-40884, CVE-2026-40887, CVE-2026-40895, CVE-2026-40903, CVE-2026-40906, CVE-2026-40923, CVE-2026-40926, CVE-2026-40931, CVE-2026-40943, CVE-2026-41055, CVE-2026-41060, CVE-2026-41320, CVE-2026-4089, CVE-2026-4111, CVE-2026-5501, CVE-2026-5749, CVE-2026-5750, CVE-2026-6236, CVE-2026-6823, CVE-2026-6830, CVE-2026-6857 Date: Wed, 22 Apr 2026 14:13:54 +0000 ] Signed-off-by: Bruce Ashfield --- .../linux/cve-exclusion_6.18.inc | 214 +++++++++++++++++- 1 file changed, 209 insertions(+), 5 deletions(-) diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 2429851ff8..9e446741d5 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-04-14 21:26:55.774766+00:00 for kernel version 6.18.22 -# From linux_kernel_cves cve_2026-04-14_2000Z-2-gad6d9150d01 +# Generated at 2026-04-22 14:47:41.674823+00:00 for kernel version 6.18.23 +# From linux_kernel_cves cve_2026-04-22_1300Z-1-g44d8eee41e5 python check_kernel_cve_status_version() { - this_version = "6.18.22" + this_version = "6.18.23" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -21260,7 +21260,7 @@ CVE_STATUS[CVE-2026-23392] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23393] = "cpe-stable-backport: Backported in 6.18.20" -# CVE-2026-23394 needs backporting (fixed from 7.0) +CVE_STATUS[CVE-2026-23394] = "cpe-stable-backport: Backported in 6.18.23" CVE_STATUS[CVE-2026-23395] = "cpe-stable-backport: Backported in 6.18.20" @@ -21458,7 +21458,7 @@ CVE_STATUS[CVE-2026-31405] = "cpe-stable-backport: Backported in 6.18.19" CVE_STATUS[CVE-2026-31406] = "cpe-stable-backport: Backported in 6.18.21" -# CVE-2026-31407 needs backporting (fixed from 7.0) +# CVE-2026-31407 may need backporting (fixed from 6.18.24) CVE_STATUS[CVE-2026-31408] = "cpe-stable-backport: Backported in 6.18.21" @@ -21502,5 +21502,209 @@ CVE_STATUS[CVE-2026-31427] = "cpe-stable-backport: Backported in 6.18.21" CVE_STATUS[CVE-2026-31428] = "cpe-stable-backport: Backported in 6.18.21" +CVE_STATUS[CVE-2026-31429] = "cpe-stable-backport: Backported in 6.18.23" + +CVE_STATUS[CVE-2026-31430] = "cpe-stable-backport: Backported in 6.18.23" + +CVE_STATUS[CVE-2026-31431] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31432] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31433] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31434] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31435] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31436] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31437] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31438] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31439] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31440] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31441] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31442] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31443] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31444] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31445] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31446] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31447] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31448] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31449] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31450] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31451] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31452] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31453] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31454] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31455] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31456] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31457] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31458] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31459] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31460] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31461] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31462] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31463] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31464] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31465] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31466] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31467] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31468] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31469] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31470] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31471] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31472] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31473] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31474] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31475] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31476] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31477] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31478] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31479] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31480] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31481] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31482] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31483] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31484] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31485] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31486] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31487] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31488] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31489] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31490] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31491] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31492] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31493] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31494] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31495] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31496] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31497] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31498] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31499] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31500] = "cpe-stable-backport: Backported in 6.18.21" + +# CVE-2026-31501 needs backporting (fixed from 7.0) + +CVE_STATUS[CVE-2026-31502] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31503] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31504] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31505] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31506] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31507] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31508] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31509] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31510] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31511] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31512] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31513] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31514] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31515] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31516] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31517] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31518] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31519] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31520] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31521] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31522] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31523] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31524] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31525] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31526] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31527] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31528] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31529] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31530] = "cpe-stable-backport: Backported in 6.18.21" + CVE_STATUS[CVE-2026-31788] = "cpe-stable-backport: Backported in 6.18.20" From patchwork Thu Apr 23 15:32:16 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86745 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id EE908FC0349 for ; Thu, 23 Apr 2026 15:32:40 +0000 (UTC) Received: from mail-vk1-f174.google.com (mail-vk1-f174.google.com [209.85.221.174]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.420.1776958357149728464 for ; Thu, 23 Apr 2026 08:32:37 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=W1WpWZpx; spf=pass (domain: gmail.com, ip: 209.85.221.174, mailfrom: bruce.ashfield@gmail.com) Received: by mail-vk1-f174.google.com with SMTP id 71dfb90a1353d-56a86f0a23bso6457445e0c.0 for ; Thu, 23 Apr 2026 08:32:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958356; x=1777563156; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=Oqes93t2Z6aBKIhx9k1n//oLJk1OxHhRFVegU9HIUiw=; b=W1WpWZpxJTGBlkesRA+8xI0JsQjR+5FJJ0RGoutaObkv3JTxncLtFKOo9XJjAyu/ga G5omwpZdItsS0rZY78HaVWUiTeTpvzI4LN/Ucm0ZlwyYMnGWt4tOme23Vt3TDCJYKDCS 5IiGsKNI6Ub/fl8/+iiE+IQHmL9hUUGQYR+HLPmNVtdUZTxhR8On3C1vllbvzvk5Il9Y g1M6y1l+gJL7fCSdgtGci+v/ZesMx+uoJS2n1Zn8Okes/MEvfLpcz8V8m9Icf5N5obaQ klUx5+l7ESaw3Gr7wC+8/EG6IOQcjpwHMN5uu0graBh3AmRfGprdgVG2huSTuLTP8QXm 0zbw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958356; x=1777563156; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=Oqes93t2Z6aBKIhx9k1n//oLJk1OxHhRFVegU9HIUiw=; b=sYtwOCSeblJ08coU6GAuS4eoXafKwQC3pjMK+7oQzhpHdDKFGnI3RrojpqygubG8O1 VAGDzDkMnR/eJ5YRIY1AFn7Yxls/u313eoMENVzjQPFJxadLK5zVRlzjRtKsf0Uhxb1l GoKx5ISb1XELrpWihOB7krpj257lgNpDATjf1byaEigr/VHMhE44gLRyjpK9KRDU09Sl a82rw/9r6PQFIa2QQezr3UeQ4nwdssoSzJ6mj8/6CSkoyyU7ykGhVAVM5fcdx4huJxEF W1epZaEcixdoHIL3wPaMQvl4irejCg72/xr6lq6Op476RLnXRJC59U8OD/Vc8TCf/WXh /pqA== X-Gm-Message-State: AOJu0Yws+zDyizCQUTHD9N7+rnCXPG68H4tY9kMmx/x513VQgGzCQ5tk JjUojEfpY7OTVOD8BCbcZtxgEsAQEJYYHpvrADqBAsyhZhujKoQwpffimyksy3Hh X-Gm-Gg: AeBDievjga/QcyqKY4NwFQZZw5EMJYklUNg6TFsuS5yAeY14DSsM/voY0JYwp1pZ24U lTpQu0G0qq398AqZL7ayMJG2JyQgqe0FwCIyMjxLqhXhqYQarT84AMOsRDdck/cPLWHSN3arfz8 LZig0QXiz688NbpGccY/T/y7fibXYaDQsZD2q2cbIhKucYOhcgvE2/DLQaqBRl0PA1euUT0FUFf PBgr2quxr7UfaSev5WV8Q/BL1+mhGDqRZhxwc15mRR5B1/jGylf7B7H12BdVCZ9C0BXOcOvv0Bs ck+lTjjw7JtDe7uGa6SRoAgoL9auNg0LeZn/s7NamnX3OXxIwtJMFScKFywPs4KOYUag8i1ol5D jDE2FdfrLkkW9P91uwQ00IZIg8ypIhkVMI2VN6FvXUscTJIFInTOgwn3VtZ/d9WimTC/pf0Q5Im Sr12lFr9N5OdXFF0EhQc8e66Mxq+yfYYFWEMk9uuddXIT0oLlBas+vLQpMcSnp9JUBrBc/T6fS1 9euP4dSPUPLGTWfEKcP+m9MOeSbRhXX4nAQNekCcqqPlHjZfZ/Z//IYWZbmIY65tsRBzA== X-Received: by 2002:a05:6122:225:b0:56d:8bdb:fa50 with SMTP id 71dfb90a1353d-56fa5a4281dmr15607313e0c.13.1776958355839; Thu, 23 Apr 2026 08:32:35 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.34 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:35 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 09/15] linux-yocto/6.18: update to v6.18.24 Date: Thu, 23 Apr 2026 11:32:16 -0400 Message-ID: <20260423153222.1932256-10-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:40 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235784 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: c0d886e4af57 Linux 6.18.24 ff628171d5f4 dma-mapping: handle DMA_ATTR_CPU_CACHE_CLEAN in trace output c2d109c982e9 dma-debug: Allow multiple invocations of overlapping entries 574501ede47a mm/userfaultfd: fix hugetlb fault mutex hash calculation 07e9e674b614 media: hackrf: fix to not free memory after the device is registered in hackrf_probe() 6d75a9ec5bdb media: vidtv: fix pass-by-value structs causing MSAN warnings c36e206f302f nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map 09e9206008b8 media: as102: fix to not free memory after the device is registered in as102_usb_probe() 9a9e69155b20 wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit 2d6965581e16 bcache: fix cached_dev.sb_bio use-after-free and crash d21e8a2af486 ALSA: 6fire: fix use-after-free on disconnect 9e1b798257f9 hwmon: (powerz) Fix use-after-free on USB disconnect 871b8ea8ef39 media: em28xx: fix use-after-free in em28xx_v4l2_open() f99353cd0e9f media: mediatek: vcodec: fix use-after-free in encoder release path 25f19e476ab1 media: vidtv: fix nfeeds state corruption on start_streaming failure ea3af09eb87d mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() f6204f7ff6af mm/kasan: fix double free for kasan pXds 30383b7780ff ASoC: qcom: q6apm: move component registration to unmanaged version 22d2ff69d487 KVM: x86: Use scratch field in MMIO fragment to hold small write values 576d365f31d9 x86-64/arm64/powerpc: clean up and rename __copy_from_user_flushcache 03fd014cd9f3 x86: rename and clean up __copy_from_user_inatomic_nocache() c6d4e0599e7e x86-64: rename misleadingly named '__copy_user_nocache()' function 8e7666acfabb checkpatch: add support for Assisted-by tag 0c1af902223b ocfs2: fix out-of-bounds write in ocfs2_write_end_inline cd2d765aa715 ocfs2: validate inline data i_size during inode read df030a9374a5 ocfs2: add inline inode consistency check to ocfs2_validate_inode_block() 0ed88ac9bc64 KVM: x86: Use __DECLARE_FLEX_ARRAY() for UAPI structures with VLAs df61c2c99c7f KVM: Remove subtle "struct kvm_stats_desc" pseudo-overlay 9309daac5034 selftests/bpf: Test refinement of single-value tnum 28cc13ca2043 KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION 30fd9d8c8208 KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish 2c59132c4786 KVM: SEV: Disallow LAUNCH_FINISH if vCPUs are actively being created 35a0963d361f KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock 692fdf05e55f KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU 5d57a1ee587c KVM: selftests: Remove duplicate LAUNCH_UPDATE_VMSA call in SEV-ES migrate test cec9ead73ab1 PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown 9921cce25bfe PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup e384a850a337 ocfs2: handle invalid dinode in ocfs2_group_extend d45ff441b416 ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY bc0fb5c7d54c ocfs2: fix possible deadlock between unlink and dio_end_io_write 2dff11fb5098 media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections 8140b21d1901 arm64: mm: Handle invalid large leaf mappings correctly 755b40903eff dcache: Limit the minimal number of bucket to two 3fd0685d7fef ALSA: ctxfi: Limit PTP to a single page de5c3e67037f Docs/admin-guide/mm/damon/reclaim: warn commit_inputs vs param updates race 4c971d577a9f USB: serial: option: add Telit Cinterion FN990A MBIM composition 1412ba36597a staging: sm750fb: fix division by zero in ps_to_hz() 89a9c1bc7d79 wifi: rtw88: fix device leak on probe failure 9c401606e2d0 scripts: generate_rust_analyzer.py: avoid FD leak 6de048d78f30 fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO 5d02df1b130b usb: port: add delay after usb_hub_set_port_power() eb6ef6185f20 usb: gadget: f_hid: don't call cdev_init while cdev in use 5d29d7ff8679 USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen 63dc7cdb1f4e usb: storage: Expand range of matched versions for VL817 quirks entry 9aef3f979190 usb: typec: fusb302: Switch to threaded IRQ handler 906f16a836de usbip: validate number_of_packets in usbip_pack_ret_submit() 6968c91fab05 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() a9940dcbe5cb smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() dd53414e301b ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc d2454f4a002d ksmbd: require 3 sub-authorities before reading sub_auth[2] 3363a770b193 ksmbd: validate EaNameLength in smb2_get_ea() e0dd90d14cbb smb: client: fix OOB reads parsing symlink error response b2b76d09a64c smb: client: fix off-by-8 bounds check in check_wsl_eas() 44216e3dd445 usb: gadget: renesas_usb3: validate endpoint index in standard request handlers 4e476c25bfca usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() 6762f8a95772 usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() fc386daa6846 fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO 67cfd14074cd ALSA: fireworks: bound device-supplied status before string array lookup 09b145c1f133 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 0185e0494a56 drm/vc4: platform_get_irq_byname() returns an int 5a59bf70c38e NFC: digital: Bounds check NFC-A cascade depth in SDD response handler c183d5775129 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() 8a8333237f1f HID: core: clamp report_size in s32ton() to avoid undefined shift 0091dfa542a3 HID: alps: fix NULL pointer dereference in alps_raw_event() b487a7754d87 staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() 377fae22a137 i2c: s3c24xx: check the size of the SMBUS message before using it 1a0f2de81f7f can: raw: fix ro->uniq use-after-free in raw_rcv() 8977fad2b3c6 nfc: llcp: add missing return after LLCP_CLOSED checks 67c53c1978ce netfilter: conntrack: add missing netlink policy validations 78cea133daf7 crypto: algif_aead - Fix minimum RX size check for decryption dea5fcf085f9 crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl 66dfc9179b78 sched/deadline: Use revised wakeup rule for dl_server f34feda8e0c9 perf/x86/intel/uncore: Skip discovery table for offline dies 07c6f6ffe290 crypto: af_alg - limit RX SG extraction by receive buffer budget 7af379af9d34 gpio: tegra: fix irq_release_resources calling enable instead of disable 86534c97abd6 l2tp: Drop large packets with UDP encap 2d2dc166d551 net: ipa: fix event ring index not programmed for IPA v5.0+ bafc45ea30d2 net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ a31b3ee4dba0 devlink: Fix incorrect skb socket family dumping 900a4e0910e9 af_unix: read UNIX_DIAG_VFS data under unix_state_lock 8eff73e58e1f net: txgbe: leave space for null terminators on property_entry 6d1d9ed9b409 net: ioam6: fix OOB and missing lock 607b86397622 net: mdio: realtek-rtl9300: use scoped device_for_each_child_node loop 8c3984a0872c ASoC: amd: acp: update DMI quirk and add ACP DMIC for Lenovo platforms c877bc8058a9 ASoC: SDCA: Fix overwritten var within for loop 41e3652a178c netfilter: nfnetlink_queue: make hash table per queue 06e054ace8b8 netfilter: nfnetlink_queue: nfqnl_instance GFP_ATOMIC -> GFP_KERNEL_ACCOUNT allocation 807d6ee15804 netfilter: ip6t_eui64: reject invalid MAC header for all packets 8368ce8eb01f netfilter: xt_multiport: validate range encoding in checkentry d552bcfca323 netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator a32dabacee11 ipvs: fix NULL deref in ip_vs_add_service error path 585fe11fedb8 selftests: net: bridge_vlan_mcast: wait for h1 before querier check 8083b7da229b drm/xe: Fix bug in idledly unit conversion a4532ec7b885 ASoC: Intel: avs: Fix memory leak in avs_register_i2s_test_boards() f779a6b6cdb6 xfrm_user: fix info leak in build_mapping() 836ee1b0426e xfrm: fix refcount leak in xfrm_migrate_policy_find 3733fce2871c xfrm: Wait for RCU readers during policy netns exit 25e1e91a8da8 xsk: validate MTU against usable frame size on bind 4947e2ae9c57 xsk: fix XDP_UMEM_SG_FLAG issues 29a68f4baaf9 xsk: respect tailroom for ZC setups 9ea6ba4f3195 xsk: tighten UMEM headroom validation to account for tailroom and min frame 70b85c177344 e1000: check return value of e1000_read_eeprom 4db7b61ec1d1 ixgbevf: add missing negotiate_features op to Hyper-V ops table 4da3465a7f00 ixgbe: stop re-reading flash on every get_drvinfo for e610 e19675b384e9 ice: ptp: don't WARN when controlling PF is unavailable 7dad8bf14346 tracing/probe: reject non-closed empty immediate strings 9550d1d9f716 dt-bindings: net: Fix Tegra234 MGBE PTP clock b6b9c17ef8ae net: stmmac: Fix PTP ref clock for Tegra234 6d931680a985 nfc: s3fwrn5: allocate rx skb before consuming bytes 4d90f9a271a6 net: increase IP_TUNNEL_RECURSION_LIMIT to 5 f91b3ed9e7fa ipv4: icmp: fix null-ptr-deref in icmp_build_probe() 40bd39e383a0 ipv4: nexthop: allocate skb dynamically in rtm_get_nexthop() 69aa3c713980 ipv4: nexthop: avoid duplicate NHA_HW_STATS_ENABLE on nexthop group dump 0975b64ffb34 rtnetlink: add missing netlink_ns_capable() check for peer netns fb612d436ff0 bridge: guard local VLAN-0 FDB helpers against NULL vlan group 4198aab6f000 ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() 4429b761874f net: airoha: Fix memory leak in airoha_qdma_rx_process() 63851f60781a net: lapbether: handle NETDEV_PRE_TYPE_CHANGE ec4930979b3f net: sched: act_csum: validate nested VLAN headers 7e8083f5eeed eventpoll: defer struct eventpoll free to RCU grace period 0cf8ea9d677b drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock e352e9adc9f6 drm/vc4: Fix a memory leak in hang state error path 421cea4f71f7 drm/vc4: Fix memory leak of BO array in hang state ce12a1af6779 drm/vc4: Release runtime PM reference after binding V3D 9a945edeabb5 dma-debug: suppress cacheline overlap warning when arch has no DMA alignment requirement ad187e0506ab dma-debug: track cache clean flag in entries 4e8a1b970168 dma-mapping: add DMA_ATTR_CPU_CACHE_CLEAN e62e322ea20b xfrm: account XFRMA_IF_ID in aevent size calculation 73e3e4dac102 HID: amd_sfh: don't log error when device discovery fails with -EOPNOTSUPP 0d364d863c70 PCI: hv: Set default NUMA node to 0 for devices without affinity info e4093997420f ARM: dts: microchip: sam9x7: fix gpio-lines count for pioB edde62571f76 arm64: dts: qcom: monaco: Reserve full Gunyah metadata region d0deac48e57a tools/power turbostat: Fix --show/--hide for individual cpuidle counters fbc581977db2 tools/power/turbostat: Fix microcode patch level output for AMD/Hygon 7d75145672cf soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei 52632daf6425 arm64: dts: qcom: monaco: Fix UART10 pinconf 95894966bce9 arm64: dts: imx93-tqma9352: improve eMMC pad configuration b3b725b902b3 arm64: dts: imx91-tqma9131: improve eMMC pad configuration 737a4ee014e1 arm64: dts: imx93-9x9-qsb: change usdhc tuning step for eMMC and SD d0fcd4858918 arm64: dts: imx8mq: Set the correct gpu_ahb clock frequency ecbc5e9277da arm64: dts: qcom: qcm6490-idp: Fix WCD9370 reset GPIO polarity 878ccc18d94c arm64: dts: qcom: hamoa/x1: fix idle exit latency c448aad9a779 soc: aspeed: socinfo: Mask table entries for accurate SoC ID matching d2c7153fe0ca ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J c64cebcc5c4f x86: shadow stacks: proper error handling for mmap lock 0a59c12ce50a net: sfp: add quirks for Hisense and HSGQ GPON ONT SFP modules 1ae1e1caa428 wifi: brcmfmac: validate bsscfg indices in IF events f5a5d0e8704e ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 36bb2d0b9150 HID: roccat: fix use-after-free in roccat_report_event 0fa5713ac7a1 ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 42032a75da03 HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 c2854af5774b HID: Intel-thc-hid: Intel-quickspi: Add NVL Device IDs 0f2e312626c7 platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug 91f915d57416 pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) b98ecc1c60ad ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IMH9 1d788e6a4150 ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx 86f9c23e0814 fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath 647fb0dc3818 drm/amdkfd: Fix queue preemption/eviction failures by aligning control stack size to GPU page size fceb2a469121 ALSA: hda/realtek: Add quirk for Lenovo Yoga Slim 7 14AKP10 66b315279b88 ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex f664b56d8fc3 ALSA: hda/realtek: Add quirk for Samsung Book2 Pro 360 (NP950QED) a9d32e6c8a55 ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list 8d7465be5163 wifi: wl1251: validate packet IDs before indexing tx_frames 21a1acf6b16a ALSA: hda/realtek: add quirk for Framework F111:000F 07de44424bb7 netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry 7556bd5cd8ef ALSA: hda/realtek: add HP Laptop 15-fd0xxx mute LED quirk 6a9f2683c66d drm/amdgpu: Handle GPU page faults correctly on non-4K page systems f338ced04738 netfilter: ctnetlink: ensure safe access to master conntrack 8db3663d3c3e ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx 2e4adfaec97e btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() d4ff92dd98ad platform/x86: hp-wmi: Add support for Omen 16-wf1xxx (8C76) fddb157536e6 btrfs: fix zero size inode with non-zero size after log replay c66a0e9a19c0 platform/x86: asus-nb-wmi: add DMI quirk for ASUS ROG Flow Z13-KJP GZ302EAC c2be593c7ec2 ALSA:usb:qcom: add AUXILIARY_BUS to Kconfig dependencies 5486d20a0818 ASoC: amd: acp: add ASUS HN7306EA quirk for legacy SDW machine c306ac170bc3 can: mcp251x: add error handling for power enable in open and resume 550243229155 ASoC: SOF: topology: reject invalid vendor array size in token parser 36d706d03346 ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF a7a1cdb4a64c Bluetooth: hci_sync: annotate data-races around hdev->req_status 02ce2a77acc8 ALSA: asihpi: avoid write overflow check warning 222f4fd0fe06 media: rkvdec: reduce stack usage in rkvdec_init_v4l2_vp9_count_tbl() fc40821d94b9 ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC e656ef8698e2 ALSA: hda/realtek: add quirk for Lenovo Yoga 7 2-in-1 16AKP10 b395549928e5 ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk 4b59719db211 ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA 0f22c32141ac RDMA/irdma: Fix double free related to rereg_user_mr 0aa0c509aa69 dmaengine: idxd: Fix lockdep warnings when calling idxd_device_config() Signed-off-by: Bruce Ashfield --- .../linux/linux-yocto-rt_6.18.bb | 6 ++--- .../linux/linux-yocto-tiny_6.18.bb | 6 ++--- meta/recipes-kernel/linux/linux-yocto_6.18.bb | 24 +++++++++---------- 3 files changed, 18 insertions(+), 18 deletions(-) diff --git a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb index 5158089ff7..c6b46d229d 100644 --- a/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-rt_6.18.bb @@ -15,13 +15,13 @@ python () { raise bb.parse.SkipRecipe("Set PREFERRED_PROVIDER_virtual/kernel to linux-yocto-rt to enable it") } -SRCREV_machine ?= "10663f4ac37a6565b2b001bc6d12aab1eb0d2ad4" -SRCREV_meta ?= "dcbc01fb2df5c72a789ab9506b9bc7a1078c3298" +SRCREV_machine ?= "61009d487b66b56d967a7d05e9ef15a05be8ca66" +SRCREV_meta ?= "f94e250f9bd55d855b1a41e3cd72beebb3849ae3" SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;branch=${KBRANCH};name=machine;protocol=https \ git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" -LINUX_VERSION ?= "6.18.23" +LINUX_VERSION ?= "6.18.24" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" diff --git a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb index 0b284494c3..ef40c4864f 100644 --- a/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto-tiny_6.18.bb @@ -9,7 +9,7 @@ require recipes-kernel/linux/linux-yocto.inc include recipes-kernel/linux/cve-exclusion.inc include recipes-kernel/linux/cve-exclusion_6.18.inc -LINUX_VERSION ?= "6.18.23" +LINUX_VERSION ?= "6.18.24" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" DEPENDS += "${@bb.utils.contains('ARCH', 'x86', 'elfutils-native', '', d)}" @@ -18,8 +18,8 @@ DEPENDS += "openssl-native util-linux-native" KMETA = "kernel-meta" KCONF_BSP_AUDIT_LEVEL = "2" -SRCREV_machine ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_meta ?= "dcbc01fb2df5c72a789ab9506b9bc7a1078c3298" +SRCREV_machine ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_meta ?= "f94e250f9bd55d855b1a41e3cd72beebb3849ae3" PV = "${LINUX_VERSION}+git" diff --git a/meta/recipes-kernel/linux/linux-yocto_6.18.bb b/meta/recipes-kernel/linux/linux-yocto_6.18.bb index f034960b95..e84c58af58 100644 --- a/meta/recipes-kernel/linux/linux-yocto_6.18.bb +++ b/meta/recipes-kernel/linux/linux-yocto_6.18.bb @@ -18,25 +18,25 @@ KBRANCH:qemux86-64 ?= "v6.18/standard/base" KBRANCH:qemuloongarch64 ?= "v6.18/standard/base" KBRANCH:qemumips64 ?= "v6.18/standard/mti-malta" -SRCREV_machine:qemuarm ?= "c45ea572f0138dcc0dbfec2375113517a7b61020" -SRCREV_machine:qemuarm64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_machine:qemuloongarch64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemuarm ?= "36c7eede87754f5077c67b79f86a8110969c3386" +SRCREV_machine:qemuarm64 ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_machine:qemuloongarch64 ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" SRCREV_machine:qemumips ?= "62ea92a539f58803a222be98b81118403074206e" -SRCREV_machine:qemuppc ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_machine:qemuriscv64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_machine:qemuriscv32 ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_machine:qemux86 ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_machine:qemux86-64 ?= "76bfd39e9965b26a81b6785c018c409195444f21" +SRCREV_machine:qemuppc ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_machine:qemuriscv64 ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_machine:qemuriscv32 ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_machine:qemux86 ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_machine:qemux86-64 ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" SRCREV_machine:qemumips64 ?= "9fb4ff0187c85426f21fd40d4c61b742800f65c4" -SRCREV_machine ?= "76bfd39e9965b26a81b6785c018c409195444f21" -SRCREV_meta ?= "dcbc01fb2df5c72a789ab9506b9bc7a1078c3298" +SRCREV_machine ?= "b1ba5428513b52c2bd6acfd3ad0a910f699bc395" +SRCREV_meta ?= "f94e250f9bd55d855b1a41e3cd72beebb3849ae3" # set your preferred provider of linux-yocto to 'linux-yocto-upstream', and you'll # get the /base branch, which is pure upstream -stable, and the same # meta SRCREV as the linux-yocto-standard builds. Select your version using the # normal PREFERRED_VERSION settings. BBCLASSEXTEND = "devupstream:target" -SRCREV_machine:class-devupstream ?= "47a33eea6d5145d53e42315381ef28286c2218fb" +SRCREV_machine:class-devupstream ?= "c0d886e4af574740bcffafda40ae692918ca87f9" PN:class-devupstream = "linux-yocto-upstream" KBRANCH:class-devupstream = "v6.18/base" @@ -44,7 +44,7 @@ SRC_URI = "git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRA git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-6.18;destsuffix=${KMETA};protocol=https" LIC_FILES_CHKSUM = "file://COPYING;md5=6bc538ed5bd9a7fc9398086aedcd7e46" -LINUX_VERSION ?= "6.18.23" +LINUX_VERSION ?= "6.18.24" PV = "${LINUX_VERSION}+git" From patchwork Thu Apr 23 15:32:17 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86750 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1BF6EFC034E for ; Thu, 23 Apr 2026 15:32:41 +0000 (UTC) Received: from mail-qv1-f52.google.com (mail-qv1-f52.google.com [209.85.219.52]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.400.1776958358715510978 for ; Thu, 23 Apr 2026 08:32:39 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=GzyRtU9X; spf=pass (domain: gmail.com, ip: 209.85.219.52, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f52.google.com with SMTP id 6a1803df08f44-8aca0469204so64237236d6.2 for ; Thu, 23 Apr 2026 08:32:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958358; x=1777563158; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=BC7ur1z9AXR8Of1FwWJ9IdvteUfgT7r9vFsuiaVPfV0=; b=GzyRtU9XOZO+O9Lc/3ZkpnWQC17Ke/zxiVdOlg+xU+XIUEkRZLZEnsETt9LcQQRDRf PEtg8FixYFqO7d4R7+aVSMsmaXcnES71NB2cZue54R9SH68n9FH1hlsBBmbOpk2s1Bad /aEgQlH9gpWfAO40L9ZlbgltFEoV/mMjAJBSba95XH5N73mnccDzgSbZk7ij9T1oOqCK mcOASHw5v1yGx5JFuaBbLAdPUaFiJ3Qh1q2QC0qYMIU/TvC2Uz39FE3/8k4ZeXLm7TqI 1I4vRX/l4qj63mjgTNkAsAqkzdYUEdezr5eiGeCKNy0p3E6YeDElHcqVU5oETG3vE8oI oruw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958358; x=1777563158; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=BC7ur1z9AXR8Of1FwWJ9IdvteUfgT7r9vFsuiaVPfV0=; b=KEN3EmQNrTe2Ez/6/i4dkPM4BkDioDzKSK922FTjhEZN3McICiLIlfGcIetWYsBWxX w7w4DJMPF+tG/C+7XR9yK2rXbt8Qmk6okmkiLSb/W/jGD3jhttUEjaIwjdLdxLh/u2hF pDXBJSSNBpQkp6Top/LKmOeYf6ZJ5OFVw8045TnFOgcnULW21l687Cm2f3mdj2US484/ Vz5TipilXEBhqDEKy4b4imXVmS9EmP2OnT/WT2ki9lS0oPFRpJdFAbxhOdpVr0cenNcb 1EHLAnAEVBafKz3yWUJCJe0YLM7R8R94UrvdlGwywLseBw+/hHz6upDF94EioklRJ9/D /cbg== X-Gm-Message-State: AOJu0Yyh1vKieg0bjcwbSQStQZqtOedl9Gj2JnaZ9R2rG1tBqLtQF8SA +Hldvw7AD5PNhz/buGTSjqoH5Y+EL8lgFhNAdU4Gg10GxkNH4uW+001OuO+XS8Mc X-Gm-Gg: AeBDiethCj4L3DbK3kaavNDtnioAk/EAY0dCC7ia3cTP/rEaIGTGYZZIgAYXTL8tt2b jgW/hlOZhc7U9ZgMHoqj10EdHeF6tIVh6Sviz2vBVc81aQGPWp7eNbwwK3xwrkLIzIFoh70Gk3l w+EWJpXNotyfAkEVG9d1bAW7Un9p+vgbN5lmwvLfCMvCshFN6hfxItai5nRBY+/a3CWJJwUa3Cw OagfB0/GLM5l/Aybcd3hOT+XLBGHh3sTdpRGsIS7Ml7FCzdSCIpIc6WcVDNpuMAQOVJ5XE+TgCp 5FJpqHubQPmVf5swxs9QZ+OsD/PZvXXBW9Y8UAF18k6WNQofv+YSA75QqkjpYsb74FyIqCEuU4z 2K2eKb3GXPckLW3Dg4NyP6VZEPVNZhNI0lXCvOLm6t/QborxT9NdVL1DlzJC+syO+96IneVkioa sMUW7RIETXwvcaYb3w7hLzwwu8Mwg9Ei5pSAZi3ll3Ew0Txdjkrepufz8puzKX6IMRXHll6zWuA 7Gsa7e8VHegK0mVCHGyPbOaRWHHrpDYhTZ9gY/IYzfJMF8q0MWND6VjlGBHbUrHHu1vWQ== X-Received: by 2002:a05:6214:c23:b0:89c:4e50:1921 with SMTP id 6a1803df08f44-8b0280cc080mr438007716d6.26.1776958357021; Thu, 23 Apr 2026 08:32:37 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.35 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:36 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 10/15] linux-yocto/6.18: update CVE exclusions (6.18.24) Date: Thu, 23 Apr 2026 11:32:17 -0400 Message-ID: <20260423153222.1932256-11-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:41 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235785 From: Bruce Ashfield Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 9101 changes (4 new | 9097 updated): - 4 new CVEs: CVE-2025-70994, CVE-2026-35225, CVE-2026-41460, CVE-2026-41461 - 9097 updated CVEs: CVE-2018-25259, CVE-2018-25267, CVE-2022-41650, CVE-2022-43472, CVE-2022-44578, CVE-2022-45806, CVE-2022-45819, CVE-2022-45832, CVE-2022-45840, CVE-2022-45841, CVE-2022-46795, CVE-2022-46796, CVE-2022-46807, CVE-2022-46811, CVE-2022-46838, CVE-2022-46840, CVE-2022-46846, CVE-2022-47168, CVE-2022-47176, CVE-2022-47182, CVE-2022-47429, CVE-2022-47594, CVE-2022-47601, CVE-2023-22697, CVE-2023-22701, CVE-2023-22708, CVE-2023-23715, CVE-2023-23716, CVE-2023-23725, CVE-2023-23726, CVE-2023-23729, CVE-2023-23814, CVE-2023-23823, CVE-2023-23825, CVE-2023-23834, CVE-2023-23868, CVE-2023-23886, CVE-2023-23887, CVE-2023-23893, CVE-2023-23895, CVE-2023-23975, CVE-2023-23986, CVE-2023-23987, CVE-2023-23989, CVE-2023-24375, CVE-2023-24407, CVE-2023-25026, CVE-2023-25035, CVE-2023-25037, CVE-2023-25048, CVE-2023-25060, CVE-2023-25067, CVE-2023-25068, CVE-2023-25445, CVE-2023-25446, CVE-2023-25454, CVE-2023-25455, CVE-2023-25469, CVE-2023-25486, CVE-2023-25703, CVE-2023-25714, CVE-2023-25791, CVE-2023-25959, CVE-2023-25966, CVE-2023-25988, CVE-2023-25993, CVE-2023-25995, CVE-2023-25997, CVE-2023-25998, CVE-2023-25999, CVE-2023-26000, CVE-2023-26001, CVE-2023-26002, CVE-2023-26003, CVE-2023-26005, CVE-2023-26520, CVE-2023-26522, CVE-2023-27428, CVE-2023-27449, CVE-2023-27454, CVE-2023-27456, CVE-2023-27609, CVE-2023-27625, CVE-2023-27626, CVE-2023-28165, CVE-2023-28168, CVE-2023-28416, CVE-2023-28417, CVE-2023-28532, CVE-2023-28534, CVE-2023-28536, CVE-2023-28619, CVE-2023-28689, CVE-2023-28990, CVE-2023-29173, CVE-2023-29235, CVE-2023-29237, CVE-2023-29239, CVE-2023-29422, CVE-2023-29429, CVE-2023-29431, CVE-2023-29433, CVE-2023-30476, CVE-2023-30479, CVE-2023-30486, CVE-2023-30488, CVE-2023-30490, CVE-2023-30783, CVE-2023-30870, CVE-2023-30873, CVE-2023-30874, CVE-2023-31073, CVE-2023-31078, CVE-2023-31214, CVE-2023-32094, CVE-2023-32117, CVE-2023-32126, CVE-2023-32240, CVE-2023-32293, CVE-2023-32299, CVE-2023-32506, CVE-2023-32507, CVE-2023-32519, CVE-2023-32520, CVE-2023-32574, CVE-2023-32581, CVE-2023-32585, CVE-2023-32586, CVE-2023-32593, CVE-2023-32599, CVE-2023-32601, CVE-2023-32798, CVE-2023-32963, CVE-2023-33215, CVE-2023-33324, CVE-2023-33928, CVE-2023-33994, CVE-2023-33995, CVE-2023-33996, CVE-2023-33998, CVE-2023-34009, CVE-2023-34014, CVE-2023-34019, CVE-2023-34376, CVE-2023-34381, CVE-2023-34387, CVE-2023-35037, CVE-2023-35040, CVE-2023-35046, CVE-2023-35051, CVE-2023-35052, CVE-2023-35091, CVE-2023-35777, CVE-2023-35875, CVE-2023-36385, CVE-2023-36506, CVE-2023-36509, CVE-2023-36510, CVE-2023-36518, CVE-2023-36519, CVE-2023-36526, CVE-2023-36528, CVE-2023-36531, CVE-2023-36680, CVE-2023-36681, CVE-2023-37885, CVE-2023-37886, CVE-2023-37887, CVE-2023-37967, CVE-2023-37969, CVE-2023-37971, CVE-2023-37984, CVE-2023-37987, CVE-2023-37989, CVE-2023-38383, CVE-2023-38385, CVE-2023-38475, CVE-2023-38477, CVE-2023-38479, CVE-2023-38480, CVE-2023-38483, CVE-2023-38512, CVE-2023-38514, CVE-2023-39305, CVE-2023-39920, CVE-2023-39994, CVE-2023-39995, CVE-2023-39996, CVE-2023-39997, CVE-2023-40001, CVE-2023-40003, CVE-2023-40005, CVE-2023-40011, CVE-2023-40203, CVE-2023-40205, CVE-2023-40209, CVE-2023-40213, CVE-2023-40331, CVE-2023-40334, CVE-2023-40670, CVE-2023-40678, CVE-2023-41130, CVE-2023-41132, CVE-2023-41133, CVE-2023-41649, CVE-2023-41664, CVE-2023-41671, CVE-2023-41683, CVE-2023-41686, CVE-2023-41688, CVE-2023-41689, CVE-2023-41690, CVE-2023-41695, CVE-2023-41729, CVE-2023-41730, CVE-2023-41802, CVE-2023-41803, CVE-2023-41848, CVE-2023-41849, CVE-2023-41857, CVE-2023-41862, CVE-2023-41865, CVE-2023-41866, CVE-2023-41869, CVE-2023-41870, CVE-2023-41873, CVE-2023-41875, CVE-2023-41951, CVE-2023-41952, CVE-2023-44142, CVE-2023-44147, CVE-2023-44149, CVE-2023-44258, CVE-2023-44988, CVE-2023-45002, CVE-2023-45045, CVE-2023-45061, CVE-2023-45101, CVE-2023-45104, CVE-2023-45110, CVE-2023-45271, CVE-2023-45272, CVE-2023-45275, CVE-2023-45631, CVE-2023-45633, CVE-2023-45636, CVE-2023-45649, CVE-2023-45760, CVE-2023-45765, CVE-2023-45766, CVE-2023-45828, CVE-2023-46073, CVE-2023-46079, CVE-2023-46080, CVE-2023-46082, CVE-2023-46083, CVE-2023-46188, CVE-2023-46195, CVE-2023-46196, CVE-2023-46203, CVE-2023-46206, CVE-2023-46309, CVE-2023-46605, CVE-2023-46606, CVE-2023-46607, CVE-2023-46608, CVE-2023-46609, CVE-2023-46610, CVE-2023-46611, CVE-2023-46612, CVE-2023-46616, CVE-2023-46628, CVE-2023-46631, CVE-2023-46632, CVE-2023-46633, CVE-2023-46635, CVE-2023-46637, CVE-2023-46639, CVE-2023-46644, CVE-2023-47179, CVE-2023-47180, CVE-2023-47183, CVE-2023-47187, CVE-2023-47188, CVE-2023-47224, CVE-2023-47225, CVE-2023-47241, CVE-2023-47515, CVE-2023-47517, CVE-2023-47523, CVE-2023-47525, CVE-2023-47557, CVE-2023-47647, CVE-2023-47648, CVE-2023-47661, CVE-2023-47689, CVE-2023-47692, CVE-2023-47693, CVE-2023-47694, CVE-2023-47698, CVE-2023-47756, CVE-2023-47759, CVE-2023-47760, CVE-2023-47761, CVE-2023-47762, CVE-2023-47763, CVE-2023-47764, CVE-2023-47776, CVE-2023-47778, CVE-2023-47780, CVE-2023-47793, CVE-2023-47805, CVE-2023-47807, CVE-2023-47820, CVE-2023-47823, CVE-2023-47826, CVE-2023-47830, CVE-2023-47832, CVE-2023-47836, CVE-2023-47838, CVE-2023-47841, CVE-2023-47847, CVE-2023-47849, CVE-2023-47869, CVE-2023-47871, CVE-2023-48274, CVE-2023-48277, CVE-2023-48286, CVE-2023-48287, CVE-2023-48324, CVE-2023-48332, CVE-2023-48739, CVE-2023-48740, CVE-2023-48750, CVE-2023-48758, CVE-2023-48774, CVE-2023-48775, CVE-2023-48776, CVE-2023-48779, CVE-2023-49154, CVE-2023-49156, CVE-2023-49158, CVE-2023-49167, CVE-2023-49192, CVE-2023-49193, CVE-2023-49194, CVE-2023-49196, CVE-2023-49754, CVE-2023-49755, CVE-2023-49756, CVE-2023-49757, CVE-2023-49758, CVE-2023-49817, CVE-2023-49818, CVE-2023-49831, CVE-2023-49832, CVE-2023-49835, CVE-2023-49845, CVE-2023-49848, CVE-2023-49849, CVE-2023-49850, CVE-2023-49851, CVE-2023-49856, CVE-2023-49857, CVE-2023-49858, CVE-2023-49859, CVE-2023-49861, CVE-2023-50373, CVE-2023-50375, CVE-2023-50850, CVE-2023-50854, CVE-2023-50876, CVE-2023-50877, CVE-2023-50882, CVE-2023-50884, CVE-2023-50887, CVE-2023-50899, CVE-2023-50903, CVE-2023-50904, CVE-2023-50905, CVE-2023-51353, CVE-2023-51355, CVE-2023-51357, CVE-2023-51359, CVE-2023-51360, CVE-2023-51362, CVE-2023-51484, CVE-2023-51486, CVE-2023-52135, CVE-2023-52190, CVE-2024-10676, CVE-2024-11402, CVE-2024-1435, CVE-2024-22145, CVE-2024-22162, CVE-2024-22289, CVE-2024-22307, CVE-2024-23500, CVE-2024-23506, CVE-2024-23507, CVE-2024-24831, CVE-2024-24833, CVE-2024-24871, CVE-2024-24878, CVE-2024-25100, CVE-2024-25599, CVE-2024-25932, CVE-2024-27188, CVE-2024-27193, CVE-2024-27195, CVE-2024-27949, CVE-2024-27950, CVE-2024-27965, CVE-2024-27971, CVE-2024-27987, CVE-2024-27993, CVE-2024-27994, CVE-2024-27997, CVE-2024-27998, CVE-2024-28000, CVE-2024-29093, CVE-2024-29095, CVE-2024-29125, CVE-2024-29134, CVE-2024-29136, CVE-2024-29137, CVE-2024-29138, CVE-2024-29777, CVE-2024-29792, CVE-2024-29921, CVE-2024-29931, CVE-2024-2889, CVE-2024-30178, CVE-2024-30182, CVE-2024-30193, CVE-2024-30194, CVE-2024-30197, CVE-2024-30199, CVE-2024-30221, CVE-2024-30229, CVE-2024-30236, CVE-2024-30238, CVE-2024-30244, CVE-2024-30245, CVE-2024-30422, CVE-2024-30424, CVE-2024-30425, CVE-2024-30428, CVE-2024-30435, CVE-2024-30488, CVE-2024-30493, CVE-2024-30503, CVE-2024-30505, CVE-2024-30529, CVE-2024-30534, CVE-2024-31246, CVE-2024-31281, CVE-2024-31303, CVE-2024-31359, CVE-2024-31373, CVE-2024-31374, CVE-2024-31376, CVE-2024-31382, CVE-2024-31421, CVE-2024-31424, CVE-2024-31433, CVE-2024-31924, CVE-2024-31929, CVE-2024-31942, CVE-2024-32082, CVE-2024-32090, CVE-2024-32101, CVE-2024-32126, CVE-2024-32140, CVE-2024-32141, CVE-2024-32433, CVE-2024-32435, CVE-2024-32444, CVE-2024-32445, CVE-2024-32505, CVE-2024-32507, CVE-2024-32523, CVE-2024-32553, CVE-2024-32555, CVE-2024-32564, CVE-2024-32566, CVE-2024-32568, CVE-2024-32573, CVE-2024-32589, CVE-2024-32599, CVE-2024-32679, CVE-2024-32698, CVE-2024-32699, CVE-2024-32701, CVE-2024-32702, CVE-2024-32703, CVE-2024-32704, CVE-2024-32705, CVE-2024-32706, CVE-2024-32711, CVE-2024-32719, CVE-2024-32725, CVE-2024-32778, CVE-2024-32782, CVE-2024-32791, CVE-2024-32792, CVE-2024-32796, CVE-2024-32810, CVE-2024-32815, CVE-2024-32817, CVE-2024-32824, CVE-2024-32825, CVE-2024-32832, CVE-2024-32836, CVE-2024-32956, CVE-2024-32959, CVE-2024-32961, CVE-2024-33568, CVE-2024-33570, CVE-2024-33571, CVE-2024-33572, CVE-2024-33648, CVE-2024-33678, CVE-2024-33689, CVE-2024-33907, CVE-2024-33939, CVE-2024-34371, CVE-2024-34373, CVE-2024-34385, CVE-2024-34438, CVE-2024-34443, CVE-2024-34444, CVE-2024-34546, CVE-2024-34556, CVE-2024-34557, CVE-2024-34569, CVE-2024-34757, CVE-2024-34763, CVE-2024-34770, CVE-2024-34794, CVE-2024-34795, CVE-2024-34800, CVE-2024-34801, CVE-2024-34807, CVE-2024-34812, CVE-2024-34813, CVE-2024-34814, CVE-2024-34815, CVE-2024-34819, CVE-2024-34821, CVE-2024-34826, CVE-2024-34828, CVE-2024-35169, CVE-2024-35172, CVE-2024-35633, CVE-2024-35637, CVE-2024-35639, CVE-2024-35645, CVE-2024-35646, CVE-2024-35650, CVE-2024-35653, CVE-2024-35655, CVE-2024-35659, CVE-2024-35664, CVE-2024-35674, CVE-2024-35679, CVE-2024-35680, CVE-2024-35684, CVE-2024-35693, CVE-2024-35694, CVE-2024-35698, CVE-2024-35700, CVE-2024-35709, CVE-2024-35723, CVE-2024-35729, CVE-2024-35732, CVE-2024-35739, CVE-2024-35759, CVE-2024-35760, CVE-2024-35764, CVE-2024-35768, CVE-2024-35769, CVE-2024-37093, CVE-2024-37102, CVE-2024-37103, CVE-2024-37104, CVE-2024-37114, CVE-2024-37202, CVE-2024-37213, CVE-2024-37228, CVE-2024-37235, CVE-2024-37236, CVE-2024-37237, CVE-2024-37238, CVE-2024-37239, CVE-2024-37240, CVE-2024-37241, CVE-2024-37242, CVE-2024-37243, CVE-2024-37255, CVE-2024-37259, CVE-2024-37261, CVE-2024-37270, CVE-2024-37271, CVE-2024-37272, CVE-2024-37274, CVE-2024-37275, CVE-2024-37409, CVE-2024-37410, CVE-2024-37411, CVE-2024-37412, CVE-2024-37413, CVE-2024-37415, CVE-2024-37417, CVE-2024-37421, CVE-2024-37422, CVE-2024-37426, CVE-2024-37429, CVE-2024-37430, CVE-2024-37431, CVE-2024-37433, CVE-2024-37434, CVE-2024-37435, CVE-2024-37437, CVE-2024-37438, CVE-2024-37440, CVE-2024-37441, CVE-2024-37444, CVE-2024-37448, CVE-2024-37449, CVE-2024-37450, CVE-2024-37451, CVE-2024-37452, CVE-2024-37458, CVE-2024-37467, CVE-2024-37472, CVE-2024-37473, CVE-2024-37478, CVE-2024-37481, CVE-2024-37482, CVE-2024-37483, CVE-2024-37488, CVE-2024-37490, CVE-2024-37491, CVE-2024-37493, CVE-2024-37495, CVE-2024-37497, CVE-2024-37502, CVE-2024-37503, CVE-2024-37508, CVE-2024-37511, CVE-2024-37518, CVE-2024-37519, CVE-2024-37520, CVE-2024-37540, CVE-2024-37541, CVE-2024-37543, CVE-2024-37544, CVE-2024-37554, CVE-2024-37555, CVE-2024-37560, CVE-2024-37918, CVE-2024-37922, CVE-2024-37923, CVE-2024-37925, CVE-2024-37929, CVE-2024-37930, CVE-2024-37931, CVE-2024-37937, CVE-2024-37943, CVE-2024-37945, CVE-2024-37946, CVE-2024-37962, CVE-2024-38687, CVE-2024-38691, CVE-2024-38706, CVE-2024-38708, CVE-2024-38712, CVE-2024-38714, CVE-2024-38729, CVE-2024-38731, CVE-2024-38732, CVE-2024-38735, CVE-2024-38751, CVE-2024-38753, CVE-2024-38754, CVE-2024-38762, CVE-2024-38763, CVE-2024-38764, CVE-2024-38765, CVE-2024-38766, CVE-2024-38771, CVE-2024-38778, CVE-2024-38787, CVE-2024-38789, CVE-2024-38790, CVE-2024-38795, CVE-2024-39619, CVE-2024-39620, CVE-2024-39621, CVE-2024-39622, CVE-2024-39623, CVE-2024-39624, CVE-2024-39626, CVE-2024-39631, CVE-2024-39637, CVE-2024-39646, CVE-2024-39647, CVE-2024-39649, CVE-2024-39654, CVE-2024-39663, CVE-2024-43117, CVE-2024-43118, CVE-2024-43136, CVE-2024-43153, CVE-2024-43158, CVE-2024-43159, CVE-2024-43208, CVE-2024-43214, CVE-2024-43216, CVE-2024-43218, CVE-2024-43222, CVE-2024-43228, CVE-2024-43229, CVE-2024-43230, CVE-2024-43237, CVE-2024-43238, CVE-2024-43239, CVE-2024-43240, CVE-2024-43241, CVE-2024-43243, CVE-2024-43252, CVE-2024-43253, CVE-2024-43254, CVE-2024-43255, CVE-2024-43259, CVE-2024-43264, CVE-2024-43266, CVE-2024-43283, CVE-2024-43290, CVE-2024-43299, CVE-2024-43300, CVE-2024-43306, CVE-2024-43313, CVE-2024-43318, CVE-2024-43333, CVE-2024-43334, CVE-2024-43336, CVE-2024-43338, CVE-2024-43349, CVE-2024-43353, CVE-2024-43927, CVE-2024-43932, CVE-2024-43933, CVE-2024-43938, CVE-2024-43944, CVE-2024-43953, CVE-2024-43954, CVE-2024-43955, CVE-2024-43956, CVE-2024-43959, CVE-2024-43971, CVE-2024-43973, CVE-2024-43975, CVE-2024-43976, CVE-2024-43977, CVE-2024-43978, CVE-2024-43989, CVE-2024-44000, CVE-2024-44001, CVE-2024-44002, CVE-2024-44003, CVE-2024-44004, CVE-2024-44005, CVE-2024-44006, CVE-2024-44007, CVE-2024-44008, CVE-2024-44009, CVE-2024-44010, CVE-2024-44011, CVE-2024-44012, CVE-2024-44013, CVE-2024-44014, CVE-2024-44015, CVE-2024-44016, CVE-2024-44017, CVE-2024-44018, CVE-2024-44019, CVE-2024-44020, CVE-2024-44021, CVE-2024-44022, CVE-2024-44023, CVE-2024-44024, CVE-2024-44025, CVE-2024-44026, CVE-2024-44027, CVE-2024-44028, CVE-2024-44029, CVE-2024-44030, CVE-2024-44031, CVE-2024-44032, CVE-2024-44033, CVE-2024-44034, CVE-2024-44035, CVE-2024-44036, CVE-2024-44037, CVE-2024-44038, CVE-2024-44039, CVE-2024-44040, CVE-2024-44041, CVE-2024-44042, CVE-2024-44043, CVE-2024-44044, CVE-2024-44045, CVE-2024-44046, CVE-2024-44047, CVE-2024-44048, CVE-2024-44049, CVE-2024-44050, CVE-2024-44051, CVE-2024-44052, CVE-2024-44055, CVE-2024-44059, CVE-2024-44061, CVE-2024-44064, CVE-2024-45451, CVE-2024-45452, CVE-2024-45453, CVE-2024-45454, CVE-2024-45455, CVE-2024-45456, CVE-2024-45457, CVE-2024-45458, CVE-2024-45459, CVE-2024-45460, CVE-2024-47297, CVE-2024-47298, CVE-2024-47299, CVE-2024-47300, CVE-2024-47301, CVE-2024-47302, CVE-2024-47303, CVE-2024-47304, CVE-2024-47305, CVE-2024-47306, CVE-2024-47307, CVE-2024-47308, CVE-2024-47309, CVE-2024-47310, CVE-2024-47311, CVE-2024-47312, CVE-2024-47313, CVE-2024-47314, CVE-2024-47315, CVE-2024-47316, CVE-2024-47317, CVE-2024-47318, CVE-2024-47319, CVE-2024-47320, CVE-2024-47321, CVE-2024-47322, CVE-2024-47323, CVE-2024-47324, CVE-2024-47325, CVE-2024-47326, CVE-2024-47327, CVE-2024-47328, CVE-2024-47329, CVE-2024-47331, CVE-2024-47332, CVE-2024-47333, CVE-2024-47334, CVE-2024-47335, CVE-2024-47336, CVE-2024-47337, CVE-2024-47338, CVE-2024-47339, CVE-2024-47340, CVE-2024-47341, CVE-2024-47342, CVE-2024-47343, CVE-2024-47344, CVE-2024-47345, CVE-2024-47346, CVE-2024-47347, CVE-2024-47348, CVE-2024-47349, CVE-2024-47350, CVE-2024-47351, CVE-2024-47352, CVE-2024-47353, CVE-2024-47354, CVE-2024-47355, CVE-2024-47356, CVE-2024-47357, CVE-2024-47358, CVE-2024-47359, CVE-2024-47360, CVE-2024-47361, CVE-2024-47362, CVE-2024-47363, CVE-2024-47364, CVE-2024-47365, CVE-2024-47366, CVE-2024-47367, CVE-2024-47368, CVE-2024-47369, CVE-2024-47370, CVE-2024-47371, CVE-2024-47372, CVE-2024-47373, CVE-2024-47374, CVE-2024-47375, CVE-2024-47376, CVE-2024-47377, CVE-2024-47378, CVE-2024-47379, CVE-2024-47380, CVE-2024-47381, CVE-2024-47382, CVE-2024-47383, CVE-2024-47384, CVE-2024-47385, CVE-2024-47386, CVE-2024-47387, CVE-2024-47388, CVE-2024-47389, CVE-2024-47390, CVE-2024-47391, CVE-2024-47392, CVE-2024-47393, CVE-2024-47394, CVE-2024-47395, CVE-2024-47396, CVE-2024-47621, CVE-2024-47622, CVE-2024-47623, CVE-2024-47624, CVE-2024-47625, CVE-2024-47626, CVE-2024-47627, CVE-2024-47628, CVE-2024-47629, CVE-2024-47630, CVE-2024-47631, CVE-2024-47632, CVE-2024-47633, CVE-2024-47634, CVE-2024-47635, CVE-2024-47636, CVE-2024-47637, CVE-2024-47638, CVE-2024-47639, CVE-2024-47640, CVE-2024-47641, CVE-2024-47642, CVE-2024-47643, CVE-2024-47644, CVE-2024-47645, CVE-2024-47646, CVE-2024-47647, CVE-2024-47648, CVE-2024-47649, CVE-2024-47650, CVE-2024-48020, CVE-2024-48021, CVE-2024-48022, CVE-2024-48023, CVE-2024-48024, CVE-2024-48025, CVE-2024-48026, CVE-2024-48027, CVE-2024-48028, CVE-2024-48029, CVE-2024-48030, CVE-2024-48031, CVE-2024-48032, CVE-2024-48033, CVE-2024-48034, CVE-2024-48035, CVE-2024-48036, CVE-2024-48037, CVE-2024-48038, CVE-2024-48039, CVE-2024-48040, CVE-2024-48041, CVE-2024-48042, CVE-2024-48043, CVE-2024-48044, CVE-2024-48045, CVE-2024-48046, CVE-2024-48047, CVE-2024-48048, CVE-2024-48049, CVE-2024-49222, CVE-2024-49225, CVE-2024-49228, CVE-2024-49229, CVE-2024-49231, CVE-2024-49232, CVE-2024-49233, CVE-2024-49234, CVE-2024-49236, CVE-2024-49237, CVE-2024-49241, CVE-2024-49243, CVE-2024-49249, CVE-2024-49250, CVE-2024-49251, CVE-2024-49252, CVE-2024-49254, CVE-2024-49255, CVE-2024-49256, CVE-2024-49257, CVE-2024-49258, CVE-2024-49259, CVE-2024-49260, CVE-2024-49261, CVE-2024-49262, CVE-2024-49263, CVE-2024-49264, CVE-2024-49265, CVE-2024-49266, CVE-2024-49267, CVE-2024-49268, CVE-2024-49270, CVE-2024-49271, CVE-2024-49272, CVE-2024-49273, CVE-2024-49274, CVE-2024-49275, CVE-2024-49276, CVE-2024-49277, CVE-2024-49278, CVE-2024-49279, CVE-2024-49280, CVE-2024-49281, CVE-2024-49282, CVE-2024-49283, CVE-2024-49284, CVE-2024-49285, CVE-2024-49286, CVE-2024-49287, CVE-2024-49288, CVE-2024-49289, CVE-2024-49290, CVE-2024-49291, CVE-2024-49292, CVE-2024-49293, CVE-2024-49294, CVE-2024-49295, CVE-2024-49296, CVE-2024-49297, CVE-2024-49298, CVE-2024-49299, CVE-2024-49300, CVE-2024-49301, CVE-2024-49302, CVE-2024-49303, CVE-2024-49304, CVE-2024-49305, CVE-2024-49306, CVE-2024-49307, CVE-2024-49308, CVE-2024-49309, CVE-2024-49310, CVE-2024-49311, CVE-2024-49312, CVE-2024-49313, CVE-2024-49316, CVE-2024-49318, CVE-2024-49319, CVE-2024-49320, CVE-2024-49323, CVE-2024-49324, CVE-2024-49325, CVE-2024-49326, CVE-2024-49327, CVE-2024-49328, CVE-2024-49329, CVE-2024-49330, CVE-2024-49331, CVE-2024-49332, CVE-2024-49333, CVE-2024-49334, CVE-2024-49335, CVE-2024-49604, CVE-2024-49605, CVE-2024-49606, CVE-2024-49607, CVE-2024-49608, CVE-2024-49609, CVE-2024-49610, CVE-2024-49611, CVE-2024-49612, CVE-2024-49613, CVE-2024-49614, CVE-2024-49615, CVE-2024-49616, CVE-2024-49617, CVE-2024-49618, CVE-2024-49619, CVE-2024-49620, CVE-2024-49621, CVE-2024-49622, CVE-2024-49623, CVE-2024-49624, CVE-2024-49627, CVE-2024-49628, CVE-2024-49629, CVE-2024-49630, CVE-2024-49631, CVE-2024-49632, CVE-2024-49633, CVE-2024-49634, CVE-2024-49635, CVE-2024-49636, CVE-2024-49637, CVE-2024-49638, CVE-2024-49639, CVE-2024-49640, CVE-2024-49641, CVE-2024-49642, CVE-2024-49643, CVE-2024-49644, CVE-2024-49645, CVE-2024-49646, CVE-2024-49647, CVE-2024-49648, CVE-2024-49649, CVE-2024-49650, CVE-2024-49651, CVE-2024-49652, CVE-2024-49653, CVE-2024-49654, CVE-2024-49655, CVE-2024-49656, CVE-2024-49657, CVE-2024-49658, CVE-2024-49659, CVE-2024-49660, CVE-2024-49661, CVE-2024-49662, CVE-2024-49663, CVE-2024-49664, CVE-2024-49665, CVE-2024-49666, CVE-2024-49667, CVE-2024-49668, CVE-2024-49669, CVE-2024-49670, CVE-2024-49671, CVE-2024-49672, CVE-2024-49673, CVE-2024-49674, CVE-2024-49675, CVE-2024-49676, CVE-2024-49677, CVE-2024-49678, CVE-2024-49679, CVE-2024-49680, CVE-2024-49681, CVE-2024-49682, CVE-2024-49683, CVE-2024-49684, CVE-2024-49685, CVE-2024-49686, CVE-2024-49687, CVE-2024-49688, CVE-2024-49689, CVE-2024-49690, CVE-2024-49691, CVE-2024-49692, CVE-2024-49693, CVE-2024-49694, CVE-2024-49695, CVE-2024-49696, CVE-2024-49697, CVE-2024-49698, CVE-2024-49699, CVE-2024-49700, CVE-2024-49701, CVE-2024-49702, CVE-2024-49703, CVE-2024-4689, CVE-2024-4746, CVE-2024-50407, CVE-2024-50408, CVE-2024-50409, CVE-2024-50410, CVE-2024-50411, CVE-2024-50412, CVE-2024-50413, CVE-2024-50414, CVE-2024-50415, CVE-2024-50416, CVE-2024-50417, CVE-2024-50418, CVE-2024-50419, CVE-2024-50420, CVE-2024-50421, CVE-2024-50422, CVE-2024-50423, CVE-2024-50424, CVE-2024-50425, CVE-2024-50426, CVE-2024-50427, CVE-2024-50428, CVE-2024-50429, CVE-2024-50430, CVE-2024-50431, CVE-2024-50432, CVE-2024-50433, CVE-2024-50434, CVE-2024-50435, CVE-2024-50436, CVE-2024-50437, CVE-2024-50438, CVE-2024-50439, CVE-2024-50440, CVE-2024-50441, CVE-2024-50442, CVE-2024-50445, CVE-2024-50446, CVE-2024-50447, CVE-2024-50448, CVE-2024-50449, CVE-2024-50450, CVE-2024-50451, CVE-2024-50453, CVE-2024-50454, CVE-2024-50455, CVE-2024-50456, CVE-2024-50457, CVE-2024-50458, CVE-2024-50459, CVE-2024-50460, CVE-2024-50461, CVE-2024-50462, CVE-2024-50463, CVE-2024-50464, CVE-2024-50465, CVE-2024-50467, CVE-2024-50468, CVE-2024-50469, CVE-2024-50470, CVE-2024-50471, CVE-2024-50472, CVE-2024-50473, CVE-2024-50475, CVE-2024-50476, CVE-2024-50477, CVE-2024-50478, CVE-2024-50479, CVE-2024-50480, CVE-2024-50481, CVE-2024-50482, CVE-2024-50483, CVE-2024-50484, CVE-2024-50485, CVE-2024-50486, CVE-2024-50487, CVE-2024-50488, CVE-2024-50489, CVE-2024-50490, CVE-2024-50491, CVE-2024-50492, CVE-2024-50493, CVE-2024-50494, CVE-2024-50495, CVE-2024-50496, CVE-2024-50497, CVE-2024-50498, CVE-2024-50500, CVE-2024-50501, CVE-2024-50502, CVE-2024-50503, CVE-2024-50504, CVE-2024-50506, CVE-2024-50507, CVE-2024-50508, CVE-2024-50509, CVE-2024-50510, CVE-2024-50511, CVE-2024-50512, CVE-2024-50513, CVE-2024-50514, CVE-2024-50515, CVE-2024-50516, CVE-2024-50517, CVE-2024-50518, CVE-2024-50519, CVE-2024-50520, CVE-2024-50521, CVE-2024-50522, CVE-2024-50523, CVE-2024-50524, CVE-2024-50525, CVE-2024-50526, CVE-2024-50527, CVE-2024-50528, CVE-2024-50529, CVE-2024-50530, CVE-2024-50531, CVE-2024-50532, CVE-2024-50533, CVE-2024-50534, CVE-2024-50535, CVE-2024-50536, CVE-2024-50537, CVE-2024-50538, CVE-2024-50539, CVE-2024-50540, CVE-2024-50541, CVE-2024-50542, CVE-2024-50543, CVE-2024-50544, CVE-2024-50545, CVE-2024-50546, CVE-2024-50547, CVE-2024-50548, CVE-2024-50549, CVE-2024-50550, CVE-2024-50551, CVE-2024-50552, CVE-2024-50553, CVE-2024-50554, CVE-2024-50556, CVE-2024-51570, CVE-2024-51571, CVE-2024-51572, CVE-2024-51573, CVE-2024-51574, CVE-2024-51575, CVE-2024-51576, CVE-2024-51577, CVE-2024-51578, CVE-2024-51579, CVE-2024-51580, CVE-2024-51581, CVE-2024-51582, CVE-2024-51583, CVE-2024-51584, CVE-2024-51585, CVE-2024-51586, CVE-2024-51587, CVE-2024-51588, CVE-2024-51589, CVE-2024-51590, CVE-2024-51591, CVE-2024-51592, CVE-2024-51593, CVE-2024-51594, CVE-2024-51595, CVE-2024-51596, CVE-2024-51597, CVE-2024-51598, CVE-2024-51599, CVE-2024-51601, CVE-2024-51602, CVE-2024-51603, CVE-2024-51604, CVE-2024-51605, CVE-2024-51606, CVE-2024-51607, CVE-2024-51608, CVE-2024-51609, CVE-2024-51610, CVE-2024-51611, CVE-2024-51612, CVE-2024-51613, CVE-2024-51614, CVE-2024-51615, CVE-2024-51616, CVE-2024-51617, CVE-2024-51618, CVE-2024-51619, CVE-2024-51620, CVE-2024-51621, CVE-2024-51622, CVE-2024-51623, CVE-2024-51624, CVE-2024-51625, CVE-2024-51626, CVE-2024-51627, CVE-2024-51628, CVE-2024-51629, CVE-2024-51630, CVE-2024-51631, CVE-2024-51632, CVE-2024-51633, CVE-2024-51634, CVE-2024-51635, CVE-2024-51636, CVE-2024-51637, CVE-2024-51638, CVE-2024-51639, CVE-2024-51640, CVE-2024-51641, CVE-2024-51642, CVE-2024-51643, CVE-2024-51644, CVE-2024-51645, CVE-2024-51648, CVE-2024-51649, CVE-2024-51650, CVE-2024-51651, CVE-2024-51652, CVE-2024-51653, CVE-2024-51654, CVE-2024-51655, CVE-2024-51656, CVE-2024-51657, CVE-2024-51658, CVE-2024-51659, CVE-2024-51660, CVE-2024-51661, CVE-2024-51662, CVE-2024-51663, CVE-2024-51664, CVE-2024-51665, CVE-2024-51666, CVE-2024-51667, CVE-2024-51668, CVE-2024-51669, CVE-2024-51670, CVE-2024-51671, CVE-2024-51672, CVE-2024-51673, CVE-2024-51674, CVE-2024-51675, CVE-2024-51676, CVE-2024-51677, CVE-2024-51678, CVE-2024-51679, CVE-2024-51680, CVE-2024-51681, CVE-2024-51682, CVE-2024-51683, CVE-2024-51684, CVE-2024-51685, CVE-2024-51686, CVE-2024-51687, CVE-2024-51688, CVE-2024-51689, CVE-2024-51690, CVE-2024-51691, CVE-2024-51692, CVE-2024-51693, CVE-2024-51694, CVE-2024-51695, CVE-2024-51696, CVE-2024-51697, CVE-2024-51698, CVE-2024-51699, CVE-2024-51700, CVE-2024-51701, CVE-2024-51702, CVE-2024-51703, CVE-2024-51704, CVE-2024-51705, CVE-2024-51706, CVE-2024-51707, CVE-2024-51708, CVE-2024-51709, CVE-2024-51710, CVE-2024-51711, CVE-2024-51712, CVE-2024-51713, CVE-2024-51714, CVE-2024-51715, CVE-2024-51716, CVE-2024-51717, CVE-2024-51718, CVE-2024-51719, CVE-2024-51759, CVE-2024-51760, CVE-2024-51761, CVE-2024-51762, CVE-2024-51763, CVE-2024-51776, CVE-2024-51778, CVE-2024-51779, CVE-2024-51780, CVE-2024-51781, CVE-2024-51782, CVE-2024-51783, CVE-2024-51784, CVE-2024-51785, CVE-2024-51786, CVE-2024-51787, CVE-2024-51788, CVE-2024-51789, CVE-2024-51790, CVE-2024-51791, CVE-2024-51792, CVE-2024-51793, CVE-2024-51794, CVE-2024-51795, CVE-2024-51796, CVE-2024-51797, CVE-2024-51798, CVE-2024-51799, CVE-2024-51800, CVE-2024-51801, CVE-2024-51802, CVE-2024-51803, CVE-2024-51804, CVE-2024-51805, CVE-2024-51806, CVE-2024-51807, CVE-2024-51808, CVE-2024-51809, CVE-2024-51810, CVE-2024-51811, CVE-2024-51812, CVE-2024-51813, CVE-2024-51814, CVE-2024-51815, CVE-2024-51816, CVE-2024-51817, CVE-2024-51818, CVE-2024-51819, CVE-2024-51820, CVE-2024-51821, CVE-2024-51822, CVE-2024-51823, CVE-2024-51824, CVE-2024-51825, CVE-2024-51826, CVE-2024-51827, CVE-2024-51828, CVE-2024-51829, CVE-2024-51830, CVE-2024-51831, CVE-2024-51832, CVE-2024-51833, CVE-2024-51834, CVE-2024-51835, CVE-2024-51836, CVE-2024-51837, CVE-2024-51838, CVE-2024-51839, CVE-2024-51840, CVE-2024-51841, CVE-2024-51842, CVE-2024-51843, CVE-2024-51844, CVE-2024-51845, CVE-2024-51846, CVE-2024-51847, CVE-2024-51848, CVE-2024-51849, CVE-2024-51850, CVE-2024-51851, CVE-2024-51852, CVE-2024-51853, CVE-2024-51854, CVE-2024-51855, CVE-2024-51856, CVE-2024-51857, CVE-2024-51858, CVE-2024-51859, CVE-2024-51860, CVE-2024-51861, CVE-2024-51862, CVE-2024-51863, CVE-2024-51864, CVE-2024-51865, CVE-2024-51866, CVE-2024-51867, CVE-2024-51868, CVE-2024-51869, CVE-2024-51870, CVE-2024-51871, CVE-2024-51872, CVE-2024-51873, CVE-2024-51874, CVE-2024-51875, CVE-2024-51876, CVE-2024-51877, CVE-2024-51878, CVE-2024-51879, CVE-2024-51880, CVE-2024-51881, CVE-2024-51882, CVE-2024-51883, CVE-2024-51884, CVE-2024-51885, CVE-2024-51886, CVE-2024-51887, CVE-2024-51888, CVE-2024-51889, CVE-2024-51890, CVE-2024-51891, CVE-2024-51892, CVE-2024-51893, CVE-2024-51894, CVE-2024-51895, CVE-2024-51896, CVE-2024-51897, CVE-2024-51898, CVE-2024-51899, CVE-2024-51900, CVE-2024-51901, CVE-2024-51902, CVE-2024-51903, CVE-2024-51904, CVE-2024-51905, CVE-2024-51906, CVE-2024-51907, CVE-2024-51908, CVE-2024-51909, CVE-2024-51910, CVE-2024-51911, CVE-2024-51912, CVE-2024-51913, CVE-2024-51914, CVE-2024-51916, CVE-2024-51917, CVE-2024-51918, CVE-2024-51919, CVE-2024-51920, CVE-2024-51921, CVE-2024-51922, CVE-2024-51923, CVE-2024-51924, CVE-2024-51925, CVE-2024-51926, CVE-2024-51927, CVE-2024-51928, CVE-2024-51929, CVE-2024-51930, CVE-2024-51931, CVE-2024-51932, CVE-2024-51933, CVE-2024-51934, CVE-2024-51935, CVE-2024-51936, CVE-2024-51937, CVE-2024-51938, CVE-2024-51939, CVE-2024-51940, CVE-2024-52339, CVE-2024-52340, CVE-2024-52341, CVE-2024-52342, CVE-2024-52343, CVE-2024-52344, CVE-2024-52345, CVE-2024-52346, CVE-2024-52347, CVE-2024-52348, CVE-2024-52349, CVE-2024-52350, CVE-2024-52351, CVE-2024-52352, CVE-2024-52353, CVE-2024-52354, CVE-2024-52355, CVE-2024-52356, CVE-2024-52357, CVE-2024-52358, CVE-2024-52369, CVE-2024-52370, CVE-2024-52371, CVE-2024-52372, CVE-2024-52373, CVE-2024-52374, CVE-2024-52375, CVE-2024-52376, CVE-2024-52377, CVE-2024-52378, CVE-2024-52379, CVE-2024-52380, CVE-2024-52381, CVE-2024-52382, CVE-2024-52383, CVE-2024-52384, CVE-2024-52385, CVE-2024-52386, CVE-2024-52388, CVE-2024-52389, CVE-2024-52390, CVE-2024-52391, CVE-2024-52392, CVE-2024-52393, CVE-2024-52394, CVE-2024-52395, CVE-2024-52396, CVE-2024-52397, CVE-2024-52398, CVE-2024-52399, CVE-2024-52400, CVE-2024-52401, CVE-2024-52402, CVE-2024-52403, CVE-2024-52404, CVE-2024-52405, CVE-2024-52406, CVE-2024-52407, CVE-2024-52408, CVE-2024-52409, CVE-2024-52410, CVE-2024-52411, CVE-2024-52412, CVE-2024-52413, CVE-2024-52414, CVE-2024-52415, CVE-2024-52416, CVE-2024-52417, CVE-2024-52418, CVE-2024-52419, CVE-2024-52420, CVE-2024-52421, CVE-2024-52422, CVE-2024-52423, CVE-2024-52424, CVE-2024-52425, CVE-2024-52426, CVE-2024-52427, CVE-2024-52428, CVE-2024-52429, CVE-2024-52430, CVE-2024-52431, CVE-2024-52432, CVE-2024-52433, CVE-2024-52434, CVE-2024-52435, CVE-2024-52436, CVE-2024-52437, CVE-2024-52438, CVE-2024-52439, CVE-2024-52440, CVE-2024-52441, CVE-2024-52442, CVE-2024-52443, CVE-2024-52444, CVE-2024-52445, CVE-2024-52446, CVE-2024-52447, CVE-2024-52448, CVE-2024-52449, CVE-2024-52450, CVE-2024-52451, CVE-2024-52452, CVE-2024-52453, CVE-2024-52454, CVE-2024-52455, CVE-2024-52456, CVE-2024-52457, CVE-2024-52458, CVE-2024-52459, CVE-2024-52460, CVE-2024-52461, CVE-2024-52462, CVE-2024-52463, CVE-2024-52464, CVE-2024-52465, CVE-2024-52466, CVE-2024-52467, CVE-2024-52468, CVE-2024-52469, CVE-2024-52470, CVE-2024-52471, CVE-2024-52472, CVE-2024-52473, CVE-2024-52474, CVE-2024-52475, CVE-2024-52476, CVE-2024-52477, CVE-2024-52478, CVE-2024-52479, CVE-2024-52482, CVE-2024-52483, CVE-2024-52484, CVE-2024-52485, CVE-2024-52486, CVE-2024-52487, CVE-2024-52489, CVE-2024-52490, CVE-2024-52491, CVE-2024-52492, CVE-2024-52493, CVE-2024-52494, CVE-2024-52495, CVE-2024-52496, CVE-2024-52497, CVE-2024-52498, CVE-2024-52499, CVE-2024-52500, CVE-2024-52501, CVE-2024-52502, CVE-2024-52503, CVE-2024-53707, CVE-2024-53708, CVE-2024-53709, CVE-2024-53710, CVE-2024-53711, CVE-2024-53712, CVE-2024-53713, CVE-2024-53714, CVE-2024-53715, CVE-2024-53716, CVE-2024-53717, CVE-2024-53718, CVE-2024-53719, CVE-2024-53720, CVE-2024-53721, CVE-2024-53722, CVE-2024-53723, CVE-2024-53724, CVE-2024-53725, CVE-2024-53726, CVE-2024-53727, CVE-2024-53728, CVE-2024-53729, CVE-2024-53730, CVE-2024-53731, CVE-2024-53732, CVE-2024-53733, CVE-2024-53734, CVE-2024-53735, CVE-2024-53736, CVE-2024-53737, CVE-2024-53738, CVE-2024-53739, CVE-2024-53740, CVE-2024-53741, CVE-2024-53742, CVE-2024-53743, CVE-2024-53744, CVE-2024-53745, CVE-2024-53746, CVE-2024-53747, CVE-2024-53748, CVE-2024-53749, CVE-2024-53750, CVE-2024-53751, CVE-2024-53752, CVE-2024-53753, CVE-2024-53754, CVE-2024-53755, CVE-2024-53756, CVE-2024-53757, CVE-2024-53758, CVE-2024-53759, CVE-2024-53760, CVE-2024-53761, CVE-2024-53762, CVE-2024-53763, CVE-2024-53764, CVE-2024-53765, CVE-2024-53766, CVE-2024-53767, CVE-2024-53768, CVE-2024-53769, CVE-2024-53770, CVE-2024-53771, CVE-2024-53772, CVE-2024-53773, CVE-2024-53774, CVE-2024-53775, CVE-2024-53776, CVE-2024-53777, CVE-2024-53778, CVE-2024-53779, CVE-2024-53780, CVE-2024-53781, CVE-2024-53782, CVE-2024-53783, CVE-2024-53784, CVE-2024-53785, CVE-2024-53786, CVE-2024-53787, CVE-2024-53788, CVE-2024-53789, CVE-2024-53790, CVE-2024-53791, CVE-2024-53792, CVE-2024-53793, CVE-2024-53794, CVE-2024-53795, CVE-2024-53796, CVE-2024-53797, CVE-2024-53798, CVE-2024-53799, CVE-2024-53801, CVE-2024-53802, CVE-2024-53803, CVE-2024-53805, CVE-2024-53806, CVE-2024-53807, CVE-2024-53808, CVE-2024-53809, CVE-2024-53810, CVE-2024-53811, CVE-2024-53812, CVE-2024-53813, CVE-2024-53814, CVE-2024-53815, CVE-2024-53816, CVE-2024-53817, CVE-2024-53818, CVE-2024-53819, CVE-2024-53820, CVE-2024-53821, CVE-2024-53822, CVE-2024-53823, CVE-2024-53824, CVE-2024-53825, CVE-2024-53826, CVE-2024-54205, CVE-2024-54206, CVE-2024-54207, CVE-2024-54208, CVE-2024-54209, CVE-2024-54210, CVE-2024-54211, CVE-2024-54212, CVE-2024-54213, CVE-2024-54214, CVE-2024-54215, CVE-2024-54216, CVE-2024-54217, CVE-2024-54218, CVE-2024-54219, CVE-2024-54220, CVE-2024-54221, CVE-2024-54223, CVE-2024-54224, CVE-2024-54225, CVE-2024-54226, CVE-2024-54227, CVE-2024-54228, CVE-2024-54229, CVE-2024-54230, CVE-2024-54231, CVE-2024-54232, CVE-2024-54233, CVE-2024-54234, CVE-2024-54235, CVE-2024-54236, CVE-2024-54237, CVE-2024-54238, CVE-2024-54239, CVE-2024-54240, CVE-2024-54241, CVE-2024-54242, CVE-2024-54243, CVE-2024-54244, CVE-2024-54245, CVE-2024-54246, CVE-2024-54247, CVE-2024-54248, CVE-2024-54249, CVE-2024-54250, CVE-2024-54251, CVE-2024-54252, CVE-2024-54253, CVE-2024-54254, CVE-2024-54255, CVE-2024-54256, CVE-2024-54257, CVE-2024-54258, CVE-2024-54259, CVE-2024-54260, CVE-2024-54261, CVE-2024-54262, CVE-2024-54264, CVE-2024-54265, CVE-2024-54266, CVE-2024-54267, CVE-2024-54268, CVE-2024-54269, CVE-2024-54270, CVE-2024-54271, CVE-2024-54272, CVE-2024-54273, CVE-2024-54274, CVE-2024-54275, CVE-2024-54276, CVE-2024-54277, CVE-2024-54278, CVE-2024-54280, CVE-2024-54282, CVE-2024-54283, CVE-2024-54284, CVE-2024-54285, CVE-2024-54286, CVE-2024-54287, CVE-2024-54288, CVE-2024-54289, CVE-2024-54290, CVE-2024-54291, CVE-2024-54292, CVE-2024-54293, CVE-2024-54294, CVE-2024-54295, CVE-2024-54296, CVE-2024-54297, CVE-2024-54298, CVE-2024-54299, CVE-2024-54300, CVE-2024-54301, CVE-2024-54302, CVE-2024-54303, CVE-2024-54304, CVE-2024-54305, CVE-2024-54306, CVE-2024-54307, CVE-2024-54308, CVE-2024-54309, CVE-2024-54310, CVE-2024-54311, CVE-2024-54312, CVE-2024-54313, CVE-2024-54314, CVE-2024-54315, CVE-2024-54316, CVE-2024-54317, CVE-2024-54318, CVE-2024-54319, CVE-2024-54320, CVE-2024-54321, CVE-2024-54322, CVE-2024-54323, CVE-2024-54324, CVE-2024-54325, CVE-2024-54326, CVE-2024-54327, CVE-2024-54328, CVE-2024-54329, CVE-2024-54330, CVE-2024-54331, CVE-2024-54332, CVE-2024-54333, CVE-2024-54334, CVE-2024-54335, CVE-2024-54336, CVE-2024-54337, CVE-2024-54338, CVE-2024-54339, CVE-2024-54340, CVE-2024-54341, CVE-2024-54342, CVE-2024-54343, CVE-2024-54344, CVE-2024-54345, CVE-2024-54346, CVE-2024-54347, CVE-2024-54348, CVE-2024-54349, CVE-2024-54350, CVE-2024-54351, CVE-2024-54352, CVE-2024-54353, CVE-2024-54354, CVE-2024-54355, CVE-2024-54356, CVE-2024-54357, CVE-2024-54358, CVE-2024-54359, CVE-2024-54360, CVE-2024-54361, CVE-2024-54362, CVE-2024-54363, CVE-2024-54364, CVE-2024-54365, CVE-2024-54366, CVE-2024-54367, CVE-2024-54368, CVE-2024-54369, CVE-2024-54370, CVE-2024-54372, CVE-2024-54373, CVE-2024-54374, CVE-2024-54375, CVE-2024-54376, CVE-2024-54378, CVE-2024-54379, CVE-2024-54380, CVE-2024-54381, CVE-2024-54382, CVE-2024-54383, CVE-2024-54384, CVE-2024-54385, CVE-2024-54386, CVE-2024-54387, CVE-2024-54388, CVE-2024-54389, CVE-2024-54390, CVE-2024-54391, CVE-2024-54392, CVE-2024-54393, CVE-2024-54394, CVE-2024-54395, CVE-2024-54396, CVE-2024-54397, CVE-2024-54398, CVE-2024-54399, CVE-2024-54400, CVE-2024-54401, CVE-2024-54402, CVE-2024-54403, CVE-2024-54404, CVE-2024-54405, CVE-2024-54406, CVE-2024-54407, CVE-2024-54408, CVE-2024-54409, CVE-2024-54410, CVE-2024-54411, CVE-2024-54412, CVE-2024-54413, CVE-2024-54414, CVE-2024-54415, CVE-2024-54416, CVE-2024-54417, CVE-2024-54418, CVE-2024-54419, CVE-2024-54420, CVE-2024-54421, CVE-2024-54422, CVE-2024-54423, CVE-2024-54424, CVE-2024-54425, CVE-2024-54426, CVE-2024-54427, CVE-2024-54428, CVE-2024-54429, CVE-2024-54430, CVE-2024-54431, CVE-2024-54432, CVE-2024-54433, CVE-2024-54434, CVE-2024-54435, CVE-2024-54436, CVE-2024-54437, CVE-2024-54438, CVE-2024-54439, CVE-2024-54440, CVE-2024-54441, CVE-2024-54442, CVE-2024-54443, CVE-2024-54444, CVE-2024-55972, CVE-2024-55973, CVE-2024-55974, CVE-2024-55975, CVE-2024-55976, CVE-2024-55977, CVE-2024-55978, CVE-2024-55979, CVE-2024-55980, CVE-2024-55981, CVE-2024-55982, CVE-2024-55983, CVE-2024-55984, CVE-2024-55985, CVE-2024-55986, CVE-2024-55987, CVE-2024-55988, CVE-2024-55989, CVE-2024-55990, CVE-2024-55991, CVE-2024-55992, CVE-2024-55993, CVE-2024-55994, CVE-2024-55995, CVE-2024-55996, CVE-2024-55997, CVE-2024-55998, CVE-2024-55999, CVE-2024-56001, CVE-2024-56002, CVE-2024-56003, CVE-2024-56004, CVE-2024-56005, CVE-2024-56006, CVE-2024-56007, CVE-2024-56008, CVE-2024-56009, CVE-2024-56010, CVE-2024-56011, CVE-2024-56012, CVE-2024-56013, CVE-2024-56014, CVE-2024-56015, CVE-2024-56016, CVE-2024-56017, CVE-2024-56018, CVE-2024-56019, CVE-2024-56020, CVE-2024-56021, CVE-2024-56022, CVE-2024-56023, CVE-2024-56024, CVE-2024-56025, CVE-2024-56026, CVE-2024-56027, CVE-2024-56028, CVE-2024-56029, CVE-2024-56030, CVE-2024-56031, CVE-2024-56032, CVE-2024-56033, CVE-2024-56034, CVE-2024-56035, CVE-2024-56036, CVE-2024-56037, CVE-2024-56038, CVE-2024-56039, CVE-2024-56040, CVE-2024-56041, CVE-2024-56042, CVE-2024-56043, CVE-2024-56044, CVE-2024-56045, CVE-2024-56046, CVE-2024-56047, CVE-2024-56048, CVE-2024-56049, CVE-2024-56050, CVE-2024-56051, CVE-2024-56052, CVE-2024-56053, CVE-2024-56054, CVE-2024-56055, CVE-2024-56057, CVE-2024-56058, CVE-2024-56059, CVE-2024-56060, CVE-2024-56061, CVE-2024-56062, CVE-2024-56063, CVE-2024-56064, CVE-2024-56065, CVE-2024-56066, CVE-2024-56068, CVE-2024-56069, CVE-2024-56070, CVE-2024-56071, CVE-2024-56203, CVE-2024-56204, CVE-2024-56205, CVE-2024-56206, CVE-2024-56207, CVE-2024-56209, CVE-2024-56210, CVE-2024-56211, CVE-2024-56212, CVE-2024-56213, CVE-2024-56214, CVE-2024-56215, CVE-2024-56216, CVE-2024-56217, CVE-2024-56218, CVE-2024-56219, CVE-2024-56220, CVE-2024-56221, CVE-2024-56222, CVE-2024-56223, CVE-2024-56224, CVE-2024-56225, CVE-2024-56226, CVE-2024-56227, CVE-2024-56228, CVE-2024-56229, CVE-2024-56230, CVE-2024-56231, CVE-2024-56232, CVE-2024-56233, CVE-2024-56234, CVE-2024-56235, CVE-2024-56236, CVE-2024-56237, CVE-2024-56238, CVE-2024-56239, CVE-2024-56240, CVE-2024-56241, CVE-2024-56242, CVE-2024-56243, CVE-2024-56244, CVE-2024-56245, CVE-2024-56246, CVE-2024-56247, CVE-2024-56248, CVE-2024-56249, CVE-2024-56250, CVE-2024-56251, CVE-2024-56252, CVE-2024-56253, CVE-2024-56254, CVE-2024-56255, CVE-2024-56256, CVE-2024-56257, CVE-2024-56258, CVE-2024-56259, CVE-2024-56260, CVE-2024-56261, CVE-2024-56262, CVE-2024-56263, CVE-2024-56264, CVE-2024-56265, CVE-2024-56266, CVE-2024-56267, CVE-2024-56268, CVE-2024-56270, CVE-2024-56271, CVE-2024-56272, CVE-2024-56273, CVE-2024-56274, CVE-2024-56275, CVE-2024-56276, CVE-2024-56278, CVE-2024-56279, CVE-2024-56280, CVE-2024-56281, CVE-2024-56282, CVE-2024-56283, CVE-2024-56284, CVE-2024-56285, CVE-2024-56286, CVE-2024-56287, CVE-2024-56288, CVE-2024-56289, CVE-2024-56290, CVE-2024-56291, CVE-2024-56292, CVE-2024-56293, CVE-2024-56294, CVE-2024-56295, CVE-2024-56296, CVE-2024-56297, CVE-2024-56298, CVE-2024-56299, CVE-2024-56300, CVE-2024-56301, CVE-2024-56302, CVE-2024-58344, CVE-2024-7399, CVE-2024-7590, CVE-2024-9146, CVE-2025-10019, CVE-2025-10549, CVE-2025-12549, CVE-2025-12550, CVE-2025-12551, CVE-2025-13504, CVE-2025-13763, CVE-2025-13835, CVE-2025-14314, CVE-2025-14358, CVE-2025-14359, CVE-2025-14360, CVE-2025-14429, CVE-2025-14430, CVE-2025-14431, CVE-2025-15635, CVE-2025-15636, CVE-2025-1249, CVE-2025-22260, CVE-2025-22261, CVE-2025-22262, CVE-2025-22263, CVE-2025-22264, CVE-2025-22265, CVE-2025-22267, CVE-2025-22268, CVE-2025-22269, CVE-2025-22276, CVE-2025-22277, CVE-2025-22278, CVE-2025-22279, CVE-2025-22280, CVE-2025-22281, CVE-2025-22282, CVE-2025-22283, CVE-2025-22284, CVE-2025-22286, CVE-2025-22289, CVE-2025-22290, CVE-2025-22291, CVE-2025-22292, CVE-2025-22293, CVE-2025-22294, CVE-2025-22296, CVE-2025-22297, CVE-2025-22298, CVE-2025-22299, CVE-2025-22300, CVE-2025-22301, CVE-2025-22302, CVE-2025-22303, CVE-2025-22304, CVE-2025-22305, CVE-2025-22306, CVE-2025-22307, CVE-2025-22308, CVE-2025-22309, CVE-2025-22310, CVE-2025-22311, CVE-2025-22312, CVE-2025-22313, CVE-2025-22314, CVE-2025-22315, CVE-2025-22316, CVE-2025-22317, CVE-2025-22318, CVE-2025-22319, CVE-2025-22320, CVE-2025-22321, CVE-2025-22322, CVE-2025-22323, CVE-2025-22324, CVE-2025-22325, CVE-2025-22326, CVE-2025-22327, CVE-2025-22328, CVE-2025-22329, CVE-2025-22330, CVE-2025-22331, CVE-2025-22332, CVE-2025-22333, CVE-2025-22334, CVE-2025-22335, CVE-2025-22336, CVE-2025-22337, CVE-2025-22338, CVE-2025-22339, CVE-2025-22340, CVE-2025-22341, CVE-2025-22342, CVE-2025-22343, CVE-2025-22344, CVE-2025-22345, CVE-2025-22346, CVE-2025-22347, CVE-2025-22348, CVE-2025-22349, CVE-2025-22350, CVE-2025-22351, CVE-2025-22352, CVE-2025-22354, CVE-2025-22355, CVE-2025-22356, CVE-2025-22357, CVE-2025-22358, CVE-2025-22359, CVE-2025-22360, CVE-2025-22361, CVE-2025-22362, CVE-2025-22363, CVE-2025-22364, CVE-2025-22365, CVE-2025-22496, CVE-2025-22497, CVE-2025-22498, CVE-2025-22499, CVE-2025-22500, CVE-2025-22501, CVE-2025-22502, CVE-2025-22503, CVE-2025-22504, CVE-2025-22505, CVE-2025-22506, CVE-2025-22507, CVE-2025-22508, CVE-2025-22509, CVE-2025-22510, CVE-2025-22511, CVE-2025-22512, CVE-2025-22513, CVE-2025-22514, CVE-2025-22515, CVE-2025-22516, CVE-2025-22517, CVE-2025-22518, CVE-2025-22519, CVE-2025-22520, CVE-2025-22521, CVE-2025-22522, CVE-2025-22523, CVE-2025-22524, CVE-2025-22525, CVE-2025-22526, CVE-2025-22528, CVE-2025-22529, CVE-2025-22530, CVE-2025-22532, CVE-2025-22533, CVE-2025-22534, CVE-2025-22535, CVE-2025-22536, CVE-2025-22537, CVE-2025-22538, CVE-2025-22539, CVE-2025-22540, CVE-2025-22541, CVE-2025-22542, CVE-2025-22543, CVE-2025-22544, CVE-2025-22545, CVE-2025-22546, CVE-2025-22547, CVE-2025-22548, CVE-2025-22549, CVE-2025-22550, CVE-2025-22551, CVE-2025-22552, CVE-2025-22553, CVE-2025-22554, CVE-2025-22555, CVE-2025-22556, CVE-2025-22557, CVE-2025-22558, CVE-2025-22559, CVE-2025-22560, CVE-2025-22561, CVE-2025-22562, CVE-2025-22563, CVE-2025-22564, CVE-2025-22565, CVE-2025-22566, CVE-2025-22567, CVE-2025-22568, CVE-2025-22569, CVE-2025-22570, CVE-2025-22571, CVE-2025-22572, CVE-2025-22573, CVE-2025-22574, CVE-2025-22575, CVE-2025-22576, CVE-2025-22577, CVE-2025-22578, CVE-2025-22579, CVE-2025-22580, CVE-2025-22581, CVE-2025-22582, CVE-2025-22583, CVE-2025-22584, CVE-2025-22585, CVE-2025-22586, CVE-2025-22587, CVE-2025-22588, CVE-2025-22589, CVE-2025-22590, CVE-2025-22591, CVE-2025-22592, CVE-2025-22593, CVE-2025-22594, CVE-2025-22595, CVE-2025-22628, CVE-2025-22629, CVE-2025-22630, CVE-2025-22631, CVE-2025-22632, CVE-2025-22634, CVE-2025-22635, CVE-2025-22636, CVE-2025-22637, CVE-2025-22638, CVE-2025-22639, CVE-2025-22640, CVE-2025-22641, CVE-2025-22642, CVE-2025-22643, CVE-2025-22644, CVE-2025-22646, CVE-2025-22647, CVE-2025-22648, CVE-2025-22649, CVE-2025-22651, CVE-2025-22652, CVE-2025-22653, CVE-2025-22654, CVE-2025-22655, CVE-2025-22656, CVE-2025-22657, CVE-2025-22658, CVE-2025-22659, CVE-2025-22660, CVE-2025-22661, CVE-2025-22662, CVE-2025-22663, CVE-2025-22664, CVE-2025-22665, CVE-2025-22667, CVE-2025-22668, CVE-2025-22669, CVE-2025-22670, CVE-2025-22671, CVE-2025-22672, CVE-2025-22673, CVE-2025-22674, CVE-2025-22675, CVE-2025-22676, CVE-2025-22677, CVE-2025-22678, CVE-2025-22679, CVE-2025-22680, CVE-2025-22681, CVE-2025-22682, CVE-2025-22683, CVE-2025-22684, CVE-2025-22685, CVE-2025-22686, CVE-2025-22687, CVE-2025-22688, CVE-2025-22689, CVE-2025-22690, CVE-2025-22691, CVE-2025-22692, CVE-2025-22693, CVE-2025-22694, CVE-2025-22695, CVE-2025-22696, CVE-2025-22697, CVE-2025-22699, CVE-2025-22700, CVE-2025-22701, CVE-2025-22702, CVE-2025-22703, CVE-2025-22704, CVE-2025-22705, CVE-2025-22706, CVE-2025-22707, CVE-2025-22708, CVE-2025-22709, CVE-2025-22710, CVE-2025-22712, CVE-2025-22713, CVE-2025-22714, CVE-2025-22715, CVE-2025-22716, CVE-2025-22717, CVE-2025-22718, CVE-2025-22719, CVE-2025-22720, CVE-2025-22721, CVE-2025-22722, CVE-2025-22723, CVE-2025-22725, CVE-2025-22726, CVE-2025-22727, CVE-2025-22728, CVE-2025-22729, CVE-2025-22730, CVE-2025-22731, CVE-2025-22732, CVE-2025-22733, CVE-2025-22734, CVE-2025-22735, CVE-2025-22736, CVE-2025-22737, CVE-2025-22738, CVE-2025-22739, CVE-2025-22740, CVE-2025-22742, CVE-2025-22743, CVE-2025-22744, CVE-2025-22745, CVE-2025-22746, CVE-2025-22747, CVE-2025-22748, CVE-2025-22749, CVE-2025-22750, CVE-2025-22751, CVE-2025-22752, CVE-2025-22753, CVE-2025-22755, CVE-2025-22757, CVE-2025-22758, CVE-2025-22759, CVE-2025-22760, CVE-2025-22761, CVE-2025-22762, CVE-2025-22763, CVE-2025-22764, CVE-2025-22765, CVE-2025-22766, CVE-2025-22767, CVE-2025-22768, CVE-2025-22770, CVE-2025-22771, CVE-2025-22772, CVE-2025-22774, CVE-2025-22775, CVE-2025-22776, CVE-2025-22777, CVE-2025-22778, CVE-2025-22779, CVE-2025-22780, CVE-2025-22781, CVE-2025-22782, CVE-2025-22783, CVE-2025-22784, CVE-2025-22785, CVE-2025-22786, CVE-2025-22787, CVE-2025-22788, CVE-2025-22789, CVE-2025-22790, CVE-2025-22791, CVE-2025-22792, CVE-2025-22794, CVE-2025-22795, CVE-2025-22796, CVE-2025-22797, CVE-2025-22798, CVE-2025-22799, CVE-2025-22800, CVE-2025-22801, CVE-2025-22802, CVE-2025-22803, CVE-2025-22804, CVE-2025-22805, CVE-2025-22806, CVE-2025-22807, CVE-2025-22808, CVE-2025-22809, CVE-2025-22810, CVE-2025-22811, CVE-2025-22812, CVE-2025-22813, CVE-2025-22814, CVE-2025-22815, CVE-2025-22816, CVE-2025-22817, CVE-2025-22818, CVE-2025-22819, CVE-2025-22820, CVE-2025-22821, CVE-2025-22822, CVE-2025-22823, CVE-2025-22824, CVE-2025-22825, CVE-2025-22826, CVE-2025-22827, CVE-2025-23422, CVE-2025-23423, CVE-2025-23424, CVE-2025-23425, CVE-2025-23426, CVE-2025-23427, CVE-2025-23428, CVE-2025-23430, CVE-2025-23431, CVE-2025-23433, CVE-2025-23435, CVE-2025-23436, CVE-2025-23437, CVE-2025-23438, CVE-2025-23439, CVE-2025-23440, CVE-2025-23441, CVE-2025-23442, CVE-2025-23443, CVE-2025-23445, CVE-2025-23446, CVE-2025-23447, CVE-2025-23448, CVE-2025-23449, CVE-2025-23450, CVE-2025-23451, CVE-2025-23452, CVE-2025-23453, CVE-2025-23454, CVE-2025-23455, CVE-2025-23456, CVE-2025-23457, CVE-2025-23458, CVE-2025-23459, CVE-2025-23460, CVE-2025-23461, CVE-2025-23462, CVE-2025-23463, CVE-2025-23464, CVE-2025-23465, CVE-2025-23466, CVE-2025-23467, CVE-2025-23468, CVE-2025-23469, CVE-2025-23470, CVE-2025-23471, CVE-2025-23472, CVE-2025-23473, CVE-2025-23474, CVE-2025-23475, CVE-2025-23476, CVE-2025-23477, CVE-2025-23478, CVE-2025-23479, CVE-2025-23480, CVE-2025-23481, CVE-2025-23482, CVE-2025-23483, CVE-2025-23484, CVE-2025-23485, CVE-2025-23486, CVE-2025-23487, CVE-2025-23488, CVE-2025-23489, CVE-2025-23490, CVE-2025-23491, CVE-2025-23492, CVE-2025-23493, CVE-2025-23494, CVE-2025-23495, CVE-2025-23496, CVE-2025-23497, CVE-2025-23498, CVE-2025-23499, CVE-2025-23500, CVE-2025-23501, CVE-2025-23502, CVE-2025-23503, CVE-2025-23505, CVE-2025-23506, CVE-2025-23507, CVE-2025-23508, CVE-2025-23509, CVE-2025-23510, CVE-2025-23511, CVE-2025-23512, CVE-2025-23513, CVE-2025-23514, CVE-2025-23515, CVE-2025-23516, CVE-2025-23517, CVE-2025-23518, CVE-2025-23519, CVE-2025-23520, CVE-2025-23521, CVE-2025-23522, CVE-2025-23523, CVE-2025-23524, CVE-2025-23525, CVE-2025-23526, CVE-2025-23527, CVE-2025-23529, CVE-2025-23530, CVE-2025-23531, CVE-2025-23532, CVE-2025-23533, CVE-2025-23534, CVE-2025-23535, CVE-2025-23536, CVE-2025-23537, CVE-2025-23538, CVE-2025-23539, CVE-2025-23540, CVE-2025-23541, CVE-2025-23542, CVE-2025-23543, CVE-2025-23544, CVE-2025-23545, CVE-2025-23546, CVE-2025-23547, CVE-2025-23548, CVE-2025-23549, CVE-2025-23550, CVE-2025-23551, CVE-2025-23552, CVE-2025-23553, CVE-2025-23554, CVE-2025-23555, CVE-2025-23556, CVE-2025-23557, CVE-2025-23558, CVE-2025-23559, CVE-2025-23560, CVE-2025-23561, CVE-2025-23562, CVE-2025-23563, CVE-2025-23564, CVE-2025-23565, CVE-2025-23566, CVE-2025-23567, CVE-2025-23568, CVE-2025-23569, CVE-2025-23570, CVE-2025-23571, CVE-2025-23572, CVE-2025-23573, CVE-2025-23574, CVE-2025-23575, CVE-2025-23576, CVE-2025-23577, CVE-2025-23578, CVE-2025-23579, CVE-2025-23580, CVE-2025-23581, CVE-2025-23582, CVE-2025-23583, CVE-2025-23584, CVE-2025-23585, CVE-2025-23586, CVE-2025-23587, CVE-2025-23588, CVE-2025-23589, CVE-2025-23590, CVE-2025-23591, CVE-2025-23592, CVE-2025-23593, CVE-2025-23594, CVE-2025-23595, CVE-2025-23596, CVE-2025-23597, CVE-2025-23598, CVE-2025-23599, CVE-2025-23600, CVE-2025-23601, CVE-2025-23602, CVE-2025-23603, CVE-2025-23604, CVE-2025-23605, CVE-2025-23606, CVE-2025-23607, CVE-2025-23608, CVE-2025-23609, CVE-2025-23610, CVE-2025-23611, CVE-2025-23612, CVE-2025-23613, CVE-2025-23614, CVE-2025-23615, CVE-2025-23616, CVE-2025-23617, CVE-2025-23618, CVE-2025-23619, CVE-2025-23620, CVE-2025-23621, CVE-2025-23622, CVE-2025-23623, CVE-2025-23624, CVE-2025-23625, CVE-2025-23626, CVE-2025-23627, CVE-2025-23628, CVE-2025-23629, CVE-2025-23630, CVE-2025-23631, CVE-2025-23632, CVE-2025-23633, CVE-2025-23634, CVE-2025-23635, CVE-2025-23636, CVE-2025-23637, CVE-2025-23638, CVE-2025-23639, CVE-2025-23640, CVE-2025-23641, CVE-2025-23642, CVE-2025-23643, CVE-2025-23644, CVE-2025-23645, CVE-2025-23646, CVE-2025-23647, CVE-2025-23648, CVE-2025-23649, CVE-2025-23650, CVE-2025-23651, CVE-2025-23652, CVE-2025-23653, CVE-2025-23654, CVE-2025-23655, CVE-2025-23656, CVE-2025-23657, CVE-2025-23658, CVE-2025-23659, CVE-2025-23660, CVE-2025-23661, CVE-2025-23662, CVE-2025-23663, CVE-2025-23664, CVE-2025-23665, CVE-2025-23666, CVE-2025-23667, CVE-2025-23668, CVE-2025-23669, CVE-2025-23670, CVE-2025-23671, CVE-2025-23672, CVE-2025-23673, CVE-2025-23674, CVE-2025-23675, CVE-2025-23676, CVE-2025-23677, CVE-2025-23678, CVE-2025-23679, CVE-2025-23680, CVE-2025-23681, CVE-2025-23682, CVE-2025-23683, CVE-2025-23684, CVE-2025-23685, CVE-2025-23686, CVE-2025-23687, CVE-2025-23688, CVE-2025-23689, CVE-2025-23690, CVE-2025-23691, CVE-2025-23692, CVE-2025-23693, CVE-2025-23694, CVE-2025-23695, CVE-2025-23696, CVE-2025-23697, CVE-2025-23698, CVE-2025-23699, CVE-2025-23700, CVE-2025-23701, CVE-2025-23702, CVE-2025-23703, CVE-2025-23704, CVE-2025-23705, CVE-2025-23706, CVE-2025-23707, CVE-2025-23708, CVE-2025-23709, CVE-2025-23710, CVE-2025-23711, CVE-2025-23712, CVE-2025-23713, CVE-2025-23714, CVE-2025-23715, CVE-2025-23716, CVE-2025-23717, CVE-2025-23718, CVE-2025-23719, CVE-2025-23720, CVE-2025-23721, CVE-2025-23722, CVE-2025-23723, CVE-2025-23724, CVE-2025-23725, CVE-2025-23726, CVE-2025-23727, CVE-2025-23728, CVE-2025-23729, CVE-2025-23730, CVE-2025-23731, CVE-2025-23732, CVE-2025-23733, CVE-2025-23734, CVE-2025-23735, CVE-2025-23736, CVE-2025-23737, CVE-2025-23738, CVE-2025-23739, CVE-2025-23740, CVE-2025-23741, CVE-2025-23742, CVE-2025-23743, CVE-2025-23744, CVE-2025-23745, CVE-2025-23746, CVE-2025-23747, CVE-2025-23748, CVE-2025-23749, CVE-2025-23750, CVE-2025-23751, CVE-2025-23752, CVE-2025-23753, CVE-2025-23754, CVE-2025-23755, CVE-2025-23756, CVE-2025-23757, CVE-2025-23758, CVE-2025-23759, CVE-2025-23760, CVE-2025-23761, CVE-2025-23762, CVE-2025-23763, CVE-2025-23764, CVE-2025-23765, CVE-2025-23766, CVE-2025-23767, CVE-2025-23768, CVE-2025-23769, CVE-2025-23770, CVE-2025-23771, CVE-2025-23772, CVE-2025-23773, CVE-2025-23774, CVE-2025-23775, CVE-2025-23776, CVE-2025-23777, CVE-2025-23778, CVE-2025-23779, CVE-2025-23780, CVE-2025-23781, CVE-2025-23782, CVE-2025-23783, CVE-2025-23785, CVE-2025-23786, CVE-2025-23787, CVE-2025-23788, CVE-2025-23789, CVE-2025-23790, CVE-2025-23791, CVE-2025-23792, CVE-2025-23793, CVE-2025-23794, CVE-2025-23795, CVE-2025-23796, CVE-2025-23797, CVE-2025-23798, CVE-2025-23799, CVE-2025-23800, CVE-2025-23801, CVE-2025-23802, CVE-2025-23803, CVE-2025-23804, CVE-2025-23805, CVE-2025-23807, CVE-2025-23808, CVE-2025-23809, CVE-2025-23810, CVE-2025-23811, CVE-2025-23812, CVE-2025-23813, CVE-2025-23814, CVE-2025-23815, CVE-2025-23816, CVE-2025-23817, CVE-2025-23818, CVE-2025-23819, CVE-2025-23820, CVE-2025-23821, CVE-2025-23822, CVE-2025-23823, CVE-2025-23824, CVE-2025-23825, CVE-2025-23826, CVE-2025-23827, CVE-2025-23828, CVE-2025-23829, CVE-2025-23830, CVE-2025-23831, CVE-2025-23832, CVE-2025-23833, CVE-2025-23834, CVE-2025-23835, CVE-2025-23836, CVE-2025-23837, CVE-2025-23838, CVE-2025-23839, CVE-2025-23840, CVE-2025-23841, CVE-2025-23842, CVE-2025-23843, CVE-2025-23844, CVE-2025-23845, CVE-2025-23846, CVE-2025-23847, CVE-2025-23848, CVE-2025-23849, CVE-2025-23850, CVE-2025-23851, CVE-2025-23852, CVE-2025-23853, CVE-2025-23854, CVE-2025-23855, CVE-2025-23856, CVE-2025-23857, CVE-2025-23858, CVE-2025-23859, CVE-2025-23860, CVE-2025-23861, CVE-2025-23862, CVE-2025-23863, CVE-2025-23864, CVE-2025-23865, CVE-2025-23866, CVE-2025-23867, CVE-2025-23868, CVE-2025-23869, CVE-2025-23870, CVE-2025-23871, CVE-2025-23872, CVE-2025-23873, CVE-2025-23874, CVE-2025-23875, CVE-2025-23876, CVE-2025-23877, CVE-2025-23878, CVE-2025-23879, CVE-2025-23880, CVE-2025-23881, CVE-2025-23882, CVE-2025-23883, CVE-2025-23884, CVE-2025-23885, CVE-2025-23886, CVE-2025-23887, CVE-2025-23888, CVE-2025-23889, CVE-2025-23890, CVE-2025-23891, CVE-2025-23892, CVE-2025-23893, CVE-2025-23894, CVE-2025-23895, CVE-2025-23896, CVE-2025-23897, CVE-2025-23898, CVE-2025-23899, CVE-2025-23900, CVE-2025-23901, CVE-2025-23902, CVE-2025-23903, CVE-2025-23904, CVE-2025-23905, CVE-2025-23906, CVE-2025-23907, CVE-2025-23908, CVE-2025-23909, CVE-2025-23910, CVE-2025-23911, CVE-2025-23912, CVE-2025-23913, CVE-2025-23914, CVE-2025-23915, CVE-2025-23916, CVE-2025-23917, CVE-2025-23918, CVE-2025-23919, CVE-2025-23920, CVE-2025-23921, CVE-2025-23922, CVE-2025-23923, CVE-2025-23924, CVE-2025-23925, CVE-2025-23926, CVE-2025-23927, CVE-2025-23928, CVE-2025-23929, CVE-2025-23930, CVE-2025-23931, CVE-2025-23932, CVE-2025-23933, CVE-2025-23934, CVE-2025-23935, CVE-2025-23936, CVE-2025-23937, CVE-2025-23938, CVE-2025-23939, CVE-2025-23940, CVE-2025-23941, CVE-2025-23942, CVE-2025-23943, CVE-2025-23944, CVE-2025-23945, CVE-2025-23946, CVE-2025-23947, CVE-2025-23948, CVE-2025-23949, CVE-2025-23950, CVE-2025-23951, CVE-2025-23952, CVE-2025-23953, CVE-2025-23954, CVE-2025-23955, CVE-2025-23956, CVE-2025-23957, CVE-2025-23958, CVE-2025-23959, CVE-2025-23960, CVE-2025-23961, CVE-2025-23962, CVE-2025-23963, CVE-2025-23964, CVE-2025-23965, CVE-2025-23966, CVE-2025-23967, CVE-2025-23968, CVE-2025-23969, CVE-2025-23970, CVE-2025-23971, CVE-2025-23972, CVE-2025-23973, CVE-2025-23974, CVE-2025-23975, CVE-2025-23976, CVE-2025-23977, CVE-2025-23978, CVE-2025-23979, CVE-2025-23980, CVE-2025-23981, CVE-2025-23982, CVE-2025-23983, CVE-2025-23984, CVE-2025-23985, CVE-2025-23986, CVE-2025-23987, CVE-2025-23988, CVE-2025-23989, CVE-2025-23990, CVE-2025-23991, CVE-2025-23992, CVE-2025-23993, CVE-2025-23994, CVE-2025-23995, CVE-2025-23996, CVE-2025-23997, CVE-2025-23998, CVE-2025-23999, CVE-2025-24000, CVE-2025-24001, CVE-2025-24533, CVE-2025-24534, CVE-2025-24535, CVE-2025-24536, CVE-2025-24537, CVE-2025-24538, CVE-2025-24539, CVE-2025-24540, CVE-2025-24541, CVE-2025-24542, CVE-2025-24543, CVE-2025-24544, CVE-2025-24545, CVE-2025-24546, CVE-2025-24547, CVE-2025-24548, CVE-2025-24549, CVE-2025-24550, CVE-2025-24551, CVE-2025-24552, CVE-2025-24553, CVE-2025-24554, CVE-2025-24555, CVE-2025-24557, CVE-2025-24558, CVE-2025-24559, CVE-2025-24560, CVE-2025-24561, CVE-2025-24562, CVE-2025-24563, CVE-2025-24564, CVE-2025-24565, CVE-2025-24566, CVE-2025-24567, CVE-2025-24568, CVE-2025-24569, CVE-2025-24570, CVE-2025-24571, CVE-2025-24572, CVE-2025-24573, CVE-2025-24574, CVE-2025-24575, CVE-2025-24576, CVE-2025-24577, CVE-2025-24578, CVE-2025-24579, CVE-2025-24580, CVE-2025-24581, CVE-2025-24582, CVE-2025-24583, CVE-2025-24584, CVE-2025-24585, CVE-2025-24586, CVE-2025-24587, CVE-2025-24588, CVE-2025-24589, CVE-2025-24590, CVE-2025-24591, CVE-2025-24592, CVE-2025-24593, CVE-2025-24594, CVE-2025-24595, CVE-2025-24596, CVE-2025-24597, CVE-2025-24598, CVE-2025-24599, CVE-2025-24600, CVE-2025-24601, CVE-2025-24602, CVE-2025-24603, CVE-2025-24604, CVE-2025-24605, CVE-2025-24608, CVE-2025-24609, CVE-2025-24610, CVE-2025-24611, CVE-2025-24612, CVE-2025-24613, CVE-2025-24614, CVE-2025-24615, CVE-2025-24616, CVE-2025-24617, CVE-2025-24618, CVE-2025-24619, CVE-2025-24620, CVE-2025-24621, CVE-2025-24622, CVE-2025-24623, CVE-2025-24624, CVE-2025-24625, CVE-2025-24626, CVE-2025-24627, CVE-2025-24629, CVE-2025-24630, CVE-2025-24631, CVE-2025-24632, CVE-2025-24633, CVE-2025-24634, CVE-2025-24635, CVE-2025-24636, CVE-2025-24637, CVE-2025-24638, CVE-2025-24639, CVE-2025-24640, CVE-2025-24641, CVE-2025-24642, CVE-2025-24644, CVE-2025-24645, CVE-2025-24646, CVE-2025-24647, CVE-2025-24648, CVE-2025-24649, CVE-2025-24650, CVE-2025-24652, CVE-2025-24653, CVE-2025-24654, CVE-2025-24655, CVE-2025-24656, CVE-2025-24657, CVE-2025-24658, CVE-2025-24659, CVE-2025-24660, CVE-2025-24661, CVE-2025-24662, CVE-2025-24663, CVE-2025-24664, CVE-2025-24665, CVE-2025-24666, CVE-2025-24667, CVE-2025-24668, CVE-2025-24669, CVE-2025-24670, CVE-2025-24671, CVE-2025-24672, CVE-2025-24673, CVE-2025-24674, CVE-2025-24675, CVE-2025-24676, CVE-2025-24677, CVE-2025-24678, CVE-2025-24679, CVE-2025-24680, CVE-2025-24681, CVE-2025-24682, CVE-2025-24683, CVE-2025-24684, CVE-2025-24685, CVE-2025-24686, CVE-2025-24687, CVE-2025-24688, CVE-2025-24689, CVE-2025-24690, CVE-2025-24691, CVE-2025-24692, CVE-2025-24693, CVE-2025-24694, CVE-2025-24695, CVE-2025-24696, CVE-2025-24697, CVE-2025-24698, CVE-2025-24699, CVE-2025-24700, CVE-2025-24701, CVE-2025-24702, CVE-2025-24703, CVE-2025-24704, CVE-2025-24705, CVE-2025-24706, CVE-2025-24707, CVE-2025-24708, CVE-2025-24709, CVE-2025-24710, CVE-2025-24711, CVE-2025-24712, CVE-2025-24713, CVE-2025-24714, CVE-2025-24715, CVE-2025-24716, CVE-2025-24717, CVE-2025-24718, CVE-2025-24719, CVE-2025-24720, CVE-2025-24721, CVE-2025-24722, CVE-2025-24723, CVE-2025-24724, CVE-2025-24725, CVE-2025-24726, CVE-2025-24727, CVE-2025-24728, CVE-2025-24729, CVE-2025-24730, CVE-2025-24731, CVE-2025-24732, CVE-2025-24733, CVE-2025-24734, CVE-2025-24736, CVE-2025-24737, CVE-2025-24738, CVE-2025-24739, CVE-2025-24740, CVE-2025-24741, CVE-2025-24742, CVE-2025-24743, CVE-2025-24744, CVE-2025-24745, CVE-2025-24746, CVE-2025-24747, CVE-2025-24748, CVE-2025-24749, CVE-2025-24750, CVE-2025-24751, CVE-2025-24752, CVE-2025-24753, CVE-2025-24754, CVE-2025-24755, CVE-2025-24756, CVE-2025-24757, CVE-2025-24758, CVE-2025-24759, CVE-2025-24760, CVE-2025-24761, CVE-2025-24762, CVE-2025-24763, CVE-2025-24764, CVE-2025-24765, CVE-2025-24766, CVE-2025-24767, CVE-2025-24768, CVE-2025-24769, CVE-2025-24770, CVE-2025-24771, CVE-2025-24772, CVE-2025-24773, CVE-2025-24774, CVE-2025-24775, CVE-2025-24776, CVE-2025-24777, CVE-2025-24778, CVE-2025-24779, CVE-2025-24780, CVE-2025-24781, CVE-2025-24782, CVE-2025-25070, CVE-2025-25071, CVE-2025-25072, CVE-2025-25073, CVE-2025-25074, CVE-2025-25075, CVE-2025-25076, CVE-2025-25077, CVE-2025-25078, CVE-2025-25079, CVE-2025-25080, CVE-2025-25081, CVE-2025-25082, CVE-2025-25083, CVE-2025-25085, CVE-2025-25086, CVE-2025-25087, CVE-2025-25088, CVE-2025-25089, CVE-2025-25090, CVE-2025-25091, CVE-2025-25092, CVE-2025-25093, CVE-2025-25094, CVE-2025-25095, CVE-2025-25096, CVE-2025-25097, CVE-2025-25098, CVE-2025-25099, CVE-2025-25100, CVE-2025-25101, CVE-2025-25102, CVE-2025-25103, CVE-2025-25104, CVE-2025-25105, CVE-2025-25106, CVE-2025-25107, CVE-2025-25108, CVE-2025-25109, CVE-2025-25110, CVE-2025-25111, CVE-2025-25112, CVE-2025-25113, CVE-2025-25114, CVE-2025-25115, CVE-2025-25116, CVE-2025-25117, CVE-2025-25118, CVE-2025-25119, CVE-2025-25120, CVE-2025-25121, CVE-2025-25122, CVE-2025-25123, CVE-2025-25124, CVE-2025-25125, CVE-2025-25126, CVE-2025-25127, CVE-2025-25128, CVE-2025-25129, CVE-2025-25130, CVE-2025-25131, CVE-2025-25132, CVE-2025-25133, CVE-2025-25134, CVE-2025-25135, CVE-2025-25136, CVE-2025-25137, CVE-2025-25138, CVE-2025-25139, CVE-2025-25140, CVE-2025-25141, CVE-2025-25142, CVE-2025-25143, CVE-2025-25144, CVE-2025-25145, CVE-2025-25146, CVE-2025-25147, CVE-2025-25148, CVE-2025-25149, CVE-2025-25150, CVE-2025-25151, CVE-2025-25152, CVE-2025-25153, CVE-2025-25154, CVE-2025-25155, CVE-2025-25156, CVE-2025-25157, CVE-2025-25158, CVE-2025-25159, CVE-2025-25160, CVE-2025-25161, CVE-2025-25162, CVE-2025-25163, CVE-2025-25164, CVE-2025-25165, CVE-2025-25166, CVE-2025-25167, CVE-2025-25168, CVE-2025-25169, CVE-2025-25170, CVE-2025-25171, CVE-2025-25172, CVE-2025-25173, CVE-2025-25174, CVE-2025-26534, CVE-2025-26535, CVE-2025-26536, CVE-2025-26537, CVE-2025-26538, CVE-2025-26539, CVE-2025-26540, CVE-2025-26541, CVE-2025-26542, CVE-2025-26543, CVE-2025-26544, CVE-2025-26545, CVE-2025-26546, CVE-2025-26547, CVE-2025-26548, CVE-2025-26549, CVE-2025-26550, CVE-2025-26551, CVE-2025-26552, CVE-2025-26553, CVE-2025-26554, CVE-2025-26555, CVE-2025-26556, CVE-2025-26557, CVE-2025-26558, CVE-2025-26559, CVE-2025-26560, CVE-2025-26561, CVE-2025-26562, CVE-2025-26563, CVE-2025-26564, CVE-2025-26565, CVE-2025-26566, CVE-2025-26567, CVE-2025-26568, CVE-2025-26569, CVE-2025-26570, CVE-2025-26571, CVE-2025-26572, CVE-2025-26573, CVE-2025-26574, CVE-2025-26575, CVE-2025-26576, CVE-2025-26577, CVE-2025-26578, CVE-2025-26579, CVE-2025-26580, CVE-2025-26581, CVE-2025-26582, CVE-2025-26583, CVE-2025-26584, CVE-2025-26585, CVE-2025-26586, CVE-2025-26587, CVE-2025-26588, CVE-2025-26589, CVE-2025-26590, CVE-2025-26591, CVE-2025-26592, CVE-2025-26593, CVE-2025-26730, CVE-2025-26731, CVE-2025-26732, CVE-2025-26733, CVE-2025-26734, CVE-2025-26735, CVE-2025-26736, CVE-2025-26737, CVE-2025-26738, CVE-2025-26739, CVE-2025-26740, CVE-2025-26741, CVE-2025-26742, CVE-2025-26743, CVE-2025-26744, CVE-2025-26745, CVE-2025-26746, CVE-2025-26747, CVE-2025-26748, CVE-2025-26749, CVE-2025-26750, CVE-2025-26751, CVE-2025-26752, CVE-2025-26753, CVE-2025-26754, CVE-2025-26755, CVE-2025-26756, CVE-2025-26757, CVE-2025-26758, CVE-2025-26759, CVE-2025-26761, CVE-2025-26762, CVE-2025-26763, CVE-2025-26764, CVE-2025-26765, CVE-2025-26766, CVE-2025-26767, CVE-2025-26768, CVE-2025-26769, CVE-2025-26770, CVE-2025-26771, CVE-2025-26772, CVE-2025-26773, CVE-2025-26774, CVE-2025-26775, CVE-2025-26776, CVE-2025-26778, CVE-2025-26779, CVE-2025-26867, CVE-2025-26868, CVE-2025-26870, CVE-2025-26871, CVE-2025-26872, CVE-2025-26873, CVE-2025-26874, CVE-2025-26875, CVE-2025-26876, CVE-2025-26877, CVE-2025-26878, CVE-2025-26880, CVE-2025-26881, CVE-2025-26882, CVE-2025-26883, CVE-2025-26884, CVE-2025-26886, CVE-2025-26887, CVE-2025-26888, CVE-2025-26889, CVE-2025-26890, CVE-2025-26891, CVE-2025-26892, CVE-2025-26893, CVE-2025-26894, CVE-2025-26895, CVE-2025-26896, CVE-2025-26897, CVE-2025-26898, CVE-2025-26899, CVE-2025-26900, CVE-2025-26901, CVE-2025-26902, CVE-2025-26903, CVE-2025-26904, CVE-2025-26905, CVE-2025-26906, CVE-2025-26907, CVE-2025-26908, CVE-2025-26909, CVE-2025-26910, CVE-2025-26911, CVE-2025-26912, CVE-2025-26913, CVE-2025-26914, CVE-2025-26915, CVE-2025-26916, CVE-2025-26918, CVE-2025-26919, CVE-2025-26920, CVE-2025-26921, CVE-2025-26922, CVE-2025-26923, CVE-2025-26924, CVE-2025-26925, CVE-2025-26926, CVE-2025-26927, CVE-2025-26928, CVE-2025-26929, CVE-2025-26930, CVE-2025-26931, CVE-2025-26932, CVE-2025-26933, CVE-2025-26934, CVE-2025-26935, CVE-2025-26936, CVE-2025-26937, CVE-2025-26938, CVE-2025-26939, CVE-2025-26940, CVE-2025-26941, CVE-2025-26943, CVE-2025-26944, CVE-2025-26945, CVE-2025-26946, CVE-2025-26947, CVE-2025-26948, CVE-2025-26949, CVE-2025-26950, CVE-2025-26951, CVE-2025-26952, CVE-2025-26954, CVE-2025-26955, CVE-2025-26956, CVE-2025-26957, CVE-2025-26959, CVE-2025-26960, CVE-2025-26961, CVE-2025-26962, CVE-2025-26963, CVE-2025-26964, CVE-2025-26966, CVE-2025-26967, CVE-2025-26968, CVE-2025-26969, CVE-2025-26970, CVE-2025-26971, CVE-2025-26972, CVE-2025-26973, CVE-2025-26974, CVE-2025-26975, CVE-2025-26976, CVE-2025-26977, CVE-2025-26978, CVE-2025-26979, CVE-2025-26980, CVE-2025-26981, CVE-2025-26982, CVE-2025-26983, CVE-2025-26984, CVE-2025-26985, CVE-2025-26986, CVE-2025-26987, CVE-2025-26988, CVE-2025-26989, CVE-2025-26990, CVE-2025-26991, CVE-2025-26992, CVE-2025-26993, CVE-2025-26994, CVE-2025-26995, CVE-2025-26996, CVE-2025-26997, CVE-2025-26998, CVE-2025-26999, CVE-2025-27000, CVE-2025-27001, CVE-2025-27002, CVE-2025-27003, CVE-2025-27004, CVE-2025-27005, CVE-2025-27006, CVE-2025-27007, CVE-2025-27008, CVE-2025-27009, CVE-2025-27010, CVE-2025-27011, CVE-2025-27012, CVE-2025-27013, CVE-2025-27014, CVE-2025-27015, CVE-2025-27016, CVE-2025-27263, CVE-2025-27264, CVE-2025-27265, CVE-2025-27266, CVE-2025-27267, CVE-2025-27268, CVE-2025-27269, CVE-2025-27270, CVE-2025-27271, CVE-2025-27272, CVE-2025-27273, CVE-2025-27274, CVE-2025-27275, CVE-2025-27276, CVE-2025-27277, CVE-2025-27278, CVE-2025-27279, CVE-2025-27280, CVE-2025-27281, CVE-2025-27282, CVE-2025-27283, CVE-2025-27284, CVE-2025-27285, CVE-2025-27286, CVE-2025-27287, CVE-2025-27288, CVE-2025-27289, CVE-2025-27290, CVE-2025-27291, CVE-2025-27292, CVE-2025-27293, CVE-2025-27294, CVE-2025-27295, CVE-2025-27296, CVE-2025-27297, CVE-2025-27298, CVE-2025-27299, CVE-2025-27300, CVE-2025-27301, CVE-2025-27302, CVE-2025-27303, CVE-2025-27304, CVE-2025-27305, CVE-2025-27306, CVE-2025-27307, CVE-2025-27308, CVE-2025-27309, CVE-2025-27310, CVE-2025-27311, CVE-2025-27312, CVE-2025-27313, CVE-2025-27314, CVE-2025-27315, CVE-2025-27316, CVE-2025-27317, CVE-2025-27318, CVE-2025-27319, CVE-2025-27320, CVE-2025-27321, CVE-2025-27322, CVE-2025-27323, CVE-2025-27324, CVE-2025-27325, CVE-2025-27326, CVE-2025-27327, CVE-2025-27328, CVE-2025-27329, CVE-2025-27330, CVE-2025-27331, CVE-2025-27332, CVE-2025-27333, CVE-2025-27334, CVE-2025-27335, CVE-2025-27336, CVE-2025-27337, CVE-2025-27338, CVE-2025-27339, CVE-2025-27340, CVE-2025-27341, CVE-2025-27342, CVE-2025-27343, CVE-2025-27344, CVE-2025-27345, CVE-2025-27347, CVE-2025-27348, CVE-2025-27349, CVE-2025-27350, CVE-2025-27351, CVE-2025-27352, CVE-2025-27353, CVE-2025-27354, CVE-2025-27355, CVE-2025-27356, CVE-2025-27357, CVE-2025-27358, CVE-2025-27359, CVE-2025-27360, CVE-2025-27361, CVE-2025-27362, CVE-2025-28855, CVE-2025-28856, CVE-2025-28857, CVE-2025-28859, CVE-2025-28860, CVE-2025-28861, CVE-2025-28862, CVE-2025-28863, CVE-2025-28864, CVE-2025-28865, CVE-2025-28866, CVE-2025-28867, CVE-2025-28868, CVE-2025-28869, CVE-2025-28870, CVE-2025-28871, CVE-2025-28872, CVE-2025-28873, CVE-2025-28874, CVE-2025-28875, CVE-2025-28876, CVE-2025-28877, CVE-2025-28878, CVE-2025-28879, CVE-2025-28880, CVE-2025-28881, CVE-2025-28882, CVE-2025-28883, CVE-2025-28884, CVE-2025-28885, CVE-2025-28886, CVE-2025-28887, CVE-2025-28888, CVE-2025-28889, CVE-2025-28890, CVE-2025-28891, CVE-2025-28892, CVE-2025-28893, CVE-2025-28894, CVE-2025-28895, CVE-2025-28896, CVE-2025-28897, CVE-2025-28898, CVE-2025-28899, CVE-2025-28900, CVE-2025-28901, CVE-2025-28902, CVE-2025-28903, CVE-2025-28904, CVE-2025-28905, CVE-2025-28906, CVE-2025-28907, CVE-2025-28908, CVE-2025-28909, CVE-2025-28910, CVE-2025-28911, CVE-2025-28912, CVE-2025-28913, CVE-2025-28914, CVE-2025-28915, CVE-2025-28916, CVE-2025-28917, CVE-2025-28918, CVE-2025-28919, CVE-2025-28920, CVE-2025-28921, CVE-2025-28922, CVE-2025-28923, CVE-2025-28924, CVE-2025-28925, CVE-2025-28926, CVE-2025-28927, CVE-2025-28928, CVE-2025-28929, CVE-2025-28930, CVE-2025-28931, CVE-2025-28932,... Date: Thu, 23 Apr 2026 14:56:21 +0000 ] Signed-off-by: Bruce Ashfield --- meta/recipes-kernel/linux/cve-exclusion_6.18.inc | 12 ++++++++---- 1 file changed, 8 insertions(+), 4 deletions(-) diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 9e446741d5..ade11d8025 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-04-22 14:47:41.674823+00:00 for kernel version 6.18.23 -# From linux_kernel_cves cve_2026-04-22_1300Z-1-g44d8eee41e5 +# Generated at 2026-04-23 15:18:10.087069+00:00 for kernel version 6.18.24 +# From linux_kernel_cves cve_2026-04-23_1400Z python check_kernel_cve_status_version() { - this_version = "6.18.23" + this_version = "6.18.24" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -21458,7 +21458,7 @@ CVE_STATUS[CVE-2026-31405] = "cpe-stable-backport: Backported in 6.18.19" CVE_STATUS[CVE-2026-31406] = "cpe-stable-backport: Backported in 6.18.21" -# CVE-2026-31407 may need backporting (fixed from 6.18.24) +CVE_STATUS[CVE-2026-31407] = "cpe-stable-backport: Backported in 6.18.24" CVE_STATUS[CVE-2026-31408] = "cpe-stable-backport: Backported in 6.18.21" @@ -21706,5 +21706,9 @@ CVE_STATUS[CVE-2026-31529] = "fixed-version: only affects 6.19 onwards" CVE_STATUS[CVE-2026-31530] = "cpe-stable-backport: Backported in 6.18.21" +CVE_STATUS[CVE-2026-31531] = "cpe-stable-backport: Backported in 6.18.24" + +# CVE-2026-31532 has no known resolution + CVE_STATUS[CVE-2026-31788] = "cpe-stable-backport: Backported in 6.18.20" From patchwork Thu Apr 23 15:32:18 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86755 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 9B881FC0354 for ; Thu, 23 Apr 2026 15:32:51 +0000 (UTC) Received: from mail-vs1-f42.google.com (mail-vs1-f42.google.com [209.85.217.42]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.425.1776958361433684881 for ; Thu, 23 Apr 2026 08:32:41 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=hk3O3ojJ; spf=pass (domain: gmail.com, ip: 209.85.217.42, mailfrom: bruce.ashfield@gmail.com) Received: by mail-vs1-f42.google.com with SMTP id ada2fe7eead31-612d8a59cc0so2144732137.3 for ; Thu, 23 Apr 2026 08:32:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958360; x=1777563160; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=T17bfxMyskuFuJJNW3P0ROdNbG9M7dQycMFLTUV0IN0=; b=hk3O3ojJd4d+MZ9wx9KOW2/6I/Q+1/X0bR417Ph3p0fCsDDNgohxCLaQUcN3Em9i7J 1hCRxPxs66ujfrOtVanMg4AZYULRNQg34DxbLaj9q8YpsGIyYwBM7uYUSS5bEO5zMB1i d8vdqI2OE2diREAXx0LJZl+e7LXKqq7l3J+0ZU5Sn+PnHURBOApyFTGUUJoMrzeH2XfH R/JLs48jgn1I2+8XF2GwMvutU4bpf925OXdcWqRVMGsf3ptT/H0d9sukQzDIuFeil5+i w8MxE/A5gIRQxYHPXvcwg0vn5GMkc1ot3thwBE0luyScFD/ILJzD0F9ZSaUbqNRTRKEB +WMw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958360; x=1777563160; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=T17bfxMyskuFuJJNW3P0ROdNbG9M7dQycMFLTUV0IN0=; b=euxlWdGsk7kD+sj4MMGkkr7vRzKUS5l5Kn0gHK3jZhMlYV9Om7DclvDVB13O2DAojH cOFMytrYTsNTmksH2jeFiNPoqdCcmrBcz0jwYBBscRnYajWbNmQrntY8dNaYwgOT7Mgv et9GOqDWc0l1/2C2t0lk3pOmDcM05wTjZdeNhvrMvcOcqUhxnu9lMU6Q4H5VQxfrNYea qh3E59f9kzecYKfyXJjaF+06wn+Rcf/CqXa0ojlqv67AJPsSRBwIYA43feA/c8rujdCU mMdtZZme06ody4qr6lTx2aCa5Cpjgwp3U5ZnVJWzrhk081ctMBx6ULlcg6etKVVYX/l6 /bsg== X-Gm-Message-State: AOJu0YxiZUavDGyT5Br+98Tlsms4vTwQiJkqGWMEqFL2jO69AZx/13A0 38hwup/n74Fz9x40aqEwiPxDjbz9/48FBBp6x8KbFNm4yqENk0CEWb1nF07r/iRI X-Gm-Gg: AeBDiet//xiokkPvxZ+hGUX3bJ9b0+mGRl6bTpujgwbnFR6if61DrW1EmU0mch0V42Z VMb7qn2AGzW5d5LKvJzph0ITmsd3L8lujOk2e64Vtn7+JNg+enbqN8v91Ykek8lN4ndZRw2kjq8 oC2NSy+4Mh8KmAU0IZXt9vSdGaZAyfM8ZxKwkNmz7JfyU6QOxgba1inWc4yeZcfExmt/nsaId7f QPX5s5roUViyeWHCMBRDgnvdLF6JrpvgqzIlGdGeKgXJrZH/PCRJFXNL3gkWSunG0hAHtNWmgEv WLNlm0P2vZ3WS44i8lW66b9qW/Ycgu65V6craEzC1evxL8dWz6w7eTY6E+DOMelosbP/Z2DmDAH sDcR9UT7rQi7608W+xomis/0njIRTsGuAzMEjswuZjhZYOBdxqhOKQtN1OnPUlMIQ8/kEuGQe5Y hwnzRNIagJsNEEoNTKpNv8cbPKfH7qxyJcc9KpOdQPL8b71zd4fZBhF0ZkEPINCKghmq9MPo/u5 toDQHTU6E03Us8dHripdWv1jkwpDu5WF1+bUE8tH4lwuJn3dUAHZIYpmK7w86YGqJlBKw== X-Received: by 2002:a05:6102:5493:b0:5ff:cee8:660c with SMTP id ada2fe7eead31-616f88bac7fmr14505719137.31.1776958359028; Thu, 23 Apr 2026 08:32:39 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.37 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:37 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta-yocto-bsp][PATCH 11/15] yocto-bsps: update to v6.18.20 Date: Thu, 23 Apr 2026 11:32:18 -0400 Message-ID: <20260423153222.1932256-12-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:51 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235787 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: dd26ea937ef59 Linux 6.18.20 a52e3970f9717 xen/privcmd: add boot control for restricted usage in domU 389bae9a44099 xen/privcmd: restrict usage in unprivileged domU f909f22f5cec6 hwmon: (max6639) Fix pulses-per-revolution implementation 96955cf9f5ba6 arm64: realm: Fix PTE_NS_SHARED for 52bit PA support ef6e6484747e3 tools/bootconfig: fix fd leak in load_xbc_file() on fstat failure d03e8c281fd3e lib/bootconfig: check xbc_init_node() return in override path 3ab1d7c8b6b7e fs/tests: exec: Remove bad test vector cf4b224ffb9a5 drm/i915/gt: Check set_default_submission() before deferencing a5828c14a9e3d ksmbd: fix use-after-free in durable v2 replay of active file handles 7f7468fd2a755 ksmbd: fix use-after-free of share_conf in compound request 2cb24caacee21 drm/bridge: dw-hdmi-qp: fix multi-channel audio output c51a5319bf655 drm/amd: fix dcn 2.01 check 430334e9e4e81 drm/amd/display: Fix DisplayID not-found handling in parse_edid_displayid_vrr() 58abeb7b9562f iommu/sva: Fix crash in iommu_sva_unbind_device() 3f300a41a3668 drm/vmwgfx: Don't overwrite KMS surface dirty tracker bec21d97c968a spi: amlogic-spisg: Fix memory leak in aml_spisg_probe() f15e0706e366b spi: amlogic: spifc-a4: Remove redundant clock cleanup a9e119d027fd5 mtd: rawnand: brcmnand: skip DMA during panic write 5fd5c078af23c mtd: rawnand: serialize lock/unlock against other NAND operations f8b5b833728bf binfmt_elf_fdpic: fix AUXV size calculation for ELF_HWCAP3 and ELF_HWCAP4 75668e58244e6 tracing: Fix trace_marker copy link list updates 79f0faf81d3bb x86/platform/uv: Handle deconfigured sockets 38539f55f61ad tracing: Fix failure to read user space from system call trace events b6925774dd15d ring-buffer: Fix to update per-subbuf entries of persistent ring buffer 886fa86915391 perf/x86: Move event pointer setup earlier in x86_pmu_enable() ed1f5c1d43c30 perf/x86/intel: Add missing branch counters constraint apply 560ec8f998522 irqchip/riscv-rpmi-sysmsi: Fix mailbox channel leak in rpmi_sysmsi_probe() aa9faa6486cfc i2c: pxa: defer reset on Armada 3700 when recovery is used bf8a9c92cdd1f i2c: fsi: Fix a potential leak in fsi_i2c_probe() a9778298f4703 i2c: cp2615: fix serial string NULL-deref at probe 7003794316b18 USB: serial: f81232: fix incomplete serial port generation 58b91c5cb685a hwmon: (pmbus/isl68137) Fix unchecked return value and use sysfs_emit() 81f61e3e1ca2d hwmon: (pmbus/mp2869) Check pmbus_read_byte_data() before using its return value 48fed64590800 hwmon: (pmbus/mp2975) Add error check for pmbus_read_word_data() return value 4418f3186b223 hwmon: (pmbus/ina233) Add error check for pmbus_read_word_data() return value beab26de7bcac MPTCP: fix lock class name family in pm_nl_create_listen_socket d938dd5a0ad78 icmp: fix NULL pointer dereference in icmp_tag_validation() 6ab68b4adf744 net: dsa: bcm_sf2: fix missing clk_disable_unprepare() in error paths 719f6784f918f net: shaper: protect from late creation of hierarchy 581eee0890a8b net: shaper: protect late read accesses to the hierarchy 7df2b50cae1a7 net: mvpp2: guard flow control update with global_tx_fc in buffer switching 3932620c04c29 nfnetlink_osf: validate individual option lengths in fingerprints c8092edb9a11f netfilter: nf_tables: release flowtable after rcu grace period on error c25e0dec366ae netfilter: bpf: defer hook memory release until rcu readers are done 017d674cf6930 net: bonding: fix NULL deref in bond_debug_rlb_hash_show 003343985f26d udp_tunnel: fix NULL deref caused by udp_sock_create6 when CONFIG_IPV6=n 96c9c25b74686 net/mlx5e: Fix race condition during IPSec ESN update 2c6a5be0aee5a net/mlx5e: Prevent concurrent access to IPSec ASO context ea52e95be4638 net/mlx5: qos: Restrict RTNL area to avoid a lock cycle c852ebfe43344 net: macb: fix uninitialized rx_fs_lock 63e192b8956a2 netdevsim: drop PSP ext ref on forward failure 98473309a36ac ACPI: processor: Fix previous acpi_processor_errata_piix4() fix 06e769dddcbeb wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure 46c670ff1ff46 wifi: wlcore: Return -ENOMEM instead of -EAGAIN if there is not enough headroom 44699c6cdfce8 wifi: mac80211: fix NULL deref in mesh_matches_local() 5f284b12cc127 libie: prevent memleak in fwlog code cff11b1c03e6f iavf: fix VLAN filter lost on add/delete race 31521c124e648 igc: fix page fault in XDP TX timestamps handling 3472c22c067ab igc: fix missing update of skb->tail in igc_xmit_frame() 89b2b1c64d09a ACPICA: Update the format of Arg3 of _DSM d3e32a612c639 net: usb: aqc111: Do not perform PM inside suspend callback 4c9af67f99aa3 clsact: Fix use-after-free in init/destroy rollback asymmetry a5bd5a2710310 net: usb: cdc_ncm: add ndpoffset to NDP32 nframes bounds check 403f94ddcb36c net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check d538b371da1e7 net: airoha: Remove airoha_dev_stop() in airoha_remove() e9c66d3e7d855 net/sched: teql: Fix double-free in teql_master_xmit fd7579f0a2c84 net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() 4172a7901cf43 bonding: prevent potential infinite loop in bond_header_parse() bb081fd37f831 PM: runtime: Fix a race condition related to device removal 34c979e29bf68 sched: idle: Consolidate the handling of two special cases afdb1533eb9c0 net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown 6995dcc1a93de net: bcmgenet: increase WoL poll timeout 683be1d1670e9 crypto: ccp - Fix leaking the same page twice 9d00fe7d6d7c5 netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() f1aa81396d779 netfilter: xt_time: use unsigned int for monthday bit shift cb549925875fa netfilter: xt_CT: drop pending enqueued packets on template removal f29a055e4f593 netfilter: nft_ct: drop pending enqueued packets on removal 31641c682db73 nf_tables: nft_dynset: fix possible stateful expression memleak in error path 6bce72daeccca netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case 865dba58958c3 netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() 04c8907ce4e3d netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() e01a597707c88 mpls: add missing unregister_netdevice_notifier to mpls_init 0c3e8bff808f1 net/rose: fix NULL pointer dereference in rose_transmit_link on reconnect d8f35767bacb3 bridge: cfm: Fix race condition in peer_mep deletion 1e1b7a7496a2e Bluetooth: qca: fix ROM version reading on WCN3998 chips da3000cbe4851 Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user f8b6ed2f06d3b Bluetooth: HIDP: Fix possible UAF b5c5e96f3b0a5 Bluetooth: MGMT: Fix list corruption and UAF in command complete handlers 84d041cfefab5 Bluetooth: hci_sync: Fix hci_le_create_conn_sync 874e73969d48c Bluetooth: ISO: Fix defer tests being unstable fce04c8b54e43 Bluetooth: SMP: make SM/PER/KDU/BI-04-C happy 37021b16b270c Bluetooth: LE L2CAP: Disconnect if sum of payload sizes exceed SDU 734aa845f2748 Bluetooth: LE L2CAP: Disconnect if received packet's SDU exceeds IMTU 70d9bd9a2e683 firmware: arm_scmi: Fix NULL dereference on notify error path d282757b0f6dd firmware: arm_scpi: Fix device_node reference leak in probe path 3983811cab779 firmware: arm_ffa: Remove vm_id argument in ffa_rxtx_unmap() ad01256fa62d0 arm64: dts: renesas: rzg3s-smarc-som: Set bypass for Versa3 PLL2 2a53d63ac78c2 arm64: dts: renesas: r9a09g087: Fix CPG register region sizes dfe08c4dde872 arm64: dts: renesas: r9a09g077: Fix CPG register region sizes fa59e9cfbed9a arm64: dts: renesas: r9a09g057: Remove wdt{0,2,3} nodes 74893eb6d3602 arm64: dts: renesas: r9a09g057: Add RTC node 2e5902c28fbde arm64: dts: renesas: rzv2-evk-cn15-sd: Add ramp delay for SD0 regulator edf76d9576907 arm64: dts: renesas: rzt2h-n2h-evk: Add ramp delay for SD0 card regulator a1b7a843f12a0 wifi: cfg80211: cancel pmsr_free_wk in cfg80211_pmsr_wdev_down 5ba05436f15d1 wifi: mac80211: Fix static_branch_dec() underflow for aql_disable. 31d4ceb785d9b wifi: mac80211: use jiffies_delta_to_msecs() for sta_info inactive times f6a620a9d6a60 wifi: mac80211: remove keys after disabling beaconing c2f6107728ea3 tee: shm: Remove refcounting of kernel pages 294e0c8bc3502 soc: fsl: cpm1: qmc: Fix error check for devm_ioremap_resource() in qmc_qe_init_resources() 85dbbf7dc88b0 soc: fsl: qbman: fix race condition in qman_destroy_fq 2315d328faa89 soc: rockchip: grf: Add missing of_node_put() when returning 640452dbc118e cache: ax45mp: Fix device node reference leak in ax45mp_cache_init() 606fcf901c132 cache: starfive: fix device node leak in starlink_cache_init() e3dd5cffba07d soc: microchip: mpfs: Fix memory leak in mpfs_sys_controller_probe() 8f9e054f605ae btrfs: tree-checker: fix misleading root drop_level error message 1cf30c73602c6 btrfs: log new dentries when logging parent dir of a conflicting inode 9691c50fd5dd1 drm/i915/psr: Compute PSR entry_setup_frames into intel_crtc_state 8d0d94f8ba5b3 Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ 1e9e2640d870d drm/xe: Open-code GGTT MMIO access protection 8613cca4f5f4f drm/xe/oa: Allow reading after disabling OA stream 954dae0d94fbf drm/xe/guc: Ensure CT state transitions via STOP before DISABLED 0b35d11fbbcfd drm/i915/dmc: Fix an unlikely NULL pointer deference at probe 5ce4a38e6c248 drm/amdgpu: Limit BO list entry count to prevent resource exhaustion 73908f65f5cc3 drm/amdgpu: apply state adjust rules to some additional HAINAN vairants c18eef45af036 drm/radeon: apply state adjust rules to some additional HAINAN vairants 772f3653eef50 drm/imagination: Synchronize interrupts before suspending the GPU 9497b1f309436 drm/imagination: Fix deadlock in soft reset sequence 7687403d65805 drm/amdgpu/mmhub4.1.0: add bounds checking for cid 72365be44cc7e drm/amdgpu/mmhub3.0: add bounds checking for cid 4b9e5676db815 drm/amdgpu/mmhub3.0.2: add bounds checking for cid 56f0473d3c631 drm/amdgpu/mmhub3.0.1: add bounds checking for cid 603db8a36517c drm/amdgpu/mmhub2.3: add bounds checking for cid 2c4eea0eba197 drm/amdgpu/mmhub2.0: add bounds checking for cid 3256b95b2d3c4 drm/amdgpu/gmc9.0: add bounds checking for cid e25fff4a9eac9 drm/amd/display: Wrap dcn32_override_min_req_memclk() in DC_FP_{START, END} 074d06d3724cc drm: Fix use-after-free on framebuffers and property blobs when calling drm_dev_unplug 3b02923b046af serial: uartlite: fix PM runtime usage count underflow on probe efe85a557186b serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN a773f019c0b06 serial: 8250_dw: Ensure BUSY is deasserted 0e16f461f2b19 serial: 8250: Add late synchronize_irq() to shutdown to handle DW UART BUSY 5dfd8c76c0a4d serial: 8250_dw: Rework IIR_NO_INT handling to stop interrupt storm 2d21617bce4f2 serial: 8250_dw: Rework dw8250_handle_irq() locking and IIR handling 9bb497252a420 serial: 8250: Add serial8250_handle_irq_locked() 3b1d813de41eb serial: 8250_dw: Avoid unnecessary LCR writes e6cc0536d1547 serial: 8250: Protect LCR write in shutdown 4afc12dae7487 serial: 8250: always disable IRQ during THRE test 5f6b17562f03f serial: 8250: Fix TX deadlock when using DMA 5e5b209b2d932 serial: 8250_pci: add support for the AX99100 c4efef65a46f6 vt: save/restore unicode screen buffer for alternate screen 19e46bf37943b io_uring/kbuf: propagate BUF_MORE through early buffer commit path f98405afd2a70 io_uring/kbuf: fix missing BUF_MORE for incremental buffers at EOF 0f4ce79b8db7b io_uring/poll: fix multishot recv missing EOF on wakeup race ee312bb1052e4 iommu/vt-d: Only handle IOPF for SVA when PRI is supported 300e7cfdc92bb iommu/vt-d: Fix intel iommu iotlb sync hardlockup and retry c4054ad2d8bff mtd: Avoid boot crash in RedBoot partition table parser 215f6d6845a3e mtd: rawnand: cadence: Fix error check for dma_alloc_coherent() in cadence_nand_init() 978f50a3d7dac mtd: rawnand: pl353: make sure optimal timings are applied 378b295f67102 spi: fix statistics allocation 80f3e8cd2b4ad spi: fix use-after-free on controller registration failure 18605b1b936b6 pmdomain: bcm: bcm2835-power: Increase ASB control timeout 5ed633b212bda mmc: sdhci: fix timing selection for 1-bit bus width c8d5757ab6d6a mmc: sdhci-pci-gli: fix GL9750 DMA write corruption 1343f110663dd ata: libata-scsi: report correct sense field pointer in ata_scsiop_maint_in() 2229b4cf97301 ata: libata-core: disable LPM on ADATA SU680 SSD 08b2b65c63bb2 mm/huge_memory: fix a folio_split() race condition with folio_try_get() edb6c2118293c ipmi:msghandler: Handle error returns from the SMI sender 1e363c11cd2f1 ipmi: Consolidate the run to completion checking for xmit msgs lock 522acaae34aa7 sched_ext: Disable preemption between scx_claim_exit() and kicking helper work c1b8245c0a387 sched_ext: Simplify breather mechanism with scx_aborting flag c44198f25fdfe sched_ext: Fix starvation of scx_enable() under fair-class saturation 2f3dea284c761 nsfs: tighten permission checks for ns iteration ioctls 05edc78eb4699 drm/xe/sync: Fix user fence leak on alloc failure 528aaa37d3c3f fgraph: Fix thresh_return nosleeptime double-adjust 407cc37c21d51 ksmbd: Don't log keys in SMB3 signing and encryption key generation 58f5d34f88e8f net: macb: Shuffle the tx ring before enabling tx 0cbc0d719ecc1 net: macb: sort #includes 8a7d29b8bda14 drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL 1aa7745b97fda drm/i915/vrr: Move HAS_VRR() check into intel_vrr_set_transcoder_timings() c3aa7b837920c drm/xe: Fix memory leak in xe_vm_madvise_ioctl f655467a9973f cifs: open files should not hold ref on superblock 6f502049a96b3 crypto: atmel-sha204a - Fix OOM ->tfm_count leak 2d7238eec40ad netconsole: fix sysdata_release_enabled_show checking wrong flag f13fe67947267 ublk: fix NULL pointer dereference in ublk_ctrl_set_size() bea2848ba20e1 LoongArch: Check return values for set_memory_{rw,rox} fc9d6999ebfa2 net: macb: Reinitialize tx/rx queue pointer registers and rx ring during resume 4e1436e0b13c6 net: macb: Introduce gem_init_rx_ring() 4ab7c9fa0a477 drm/i915/psr: Write DSC parameters on Selective Update in ET mode a5cdbbc771470 drm/i915/dsc: Add helper for writing DSC Selective Update ET parameters 291d19d586a5a drm/i915/dsc: Add Selective Update register definitions 3d80ebe6d1b7b ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION 9feb2d1bf86d9 ksmbd: unset conn->binding on failed binding request 9ee803bfdba0c smb: client: fix krb5 mount with username option e7ff754e339e3 Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access 5a1ea296f8589 Bluetooth: L2CAP: Fix type confusion in l2cap_ecred_reconf_rsp() 1768244b85dd2 crypto: padlock-sha - Disable for Zhaoxin processor 5a86d4e920d97 mac80211: fix crash in ieee80211_chan_bw_change for AP_VLAN stations 0e35db29fc5a9 batman-adv: avoid OGM aggregation when skb tailroom is insufficient f5ed9e50c0872 parisc: Flush correct cache in cacheflush() syscall 19aa416eed9e4 bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler 1f4714065b2bc net: macb: fix use-after-free access to PTP clock 4de9ed2ea22d6 NFC: nxp-nci: allow GPIOs to sleep 8dd23bb5c6f5c LoongArch: No need to flush icache if text copy failed 250aae6a5738a LoongArch: Give more information if kmem access failed 6e096db800db8 mm/huge_memory: fix early failure try_to_migrate() when split huge pmd for shared THP f3caaee0f9e48 mm/huge_memory: fix use of NULL folio in move_pages_huge_pmd() 99888a4f340ca mm/rmap: fix incorrect pte restoration for lazyfree folios 4897bd307ba87 crash_dump: don't log dm-crypt key bytes in read_key_from_user_keying a226e5b49e5fe nvdimm/bus: Fix potential use after free in asynchronous initialization be5c35960e5ea sunrpc: fix cache_request leak in cache_release 73c5b5aea1c44 HID: bpf: prevent buffer overflow in hid_hw_request 6487774a576dd selftests/hid: fix compilation when bpf_wq and hid_device are not exported 0f0e2a54a31a7 nfsd: fix heap overflow in NFSv4.0 LOCK replay cache db4a9f99b12a7 NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd 2829e80d29b62 NFSD: Defer sub-object cleanup in export put callbacks 4aea1dc4cad17 Linux 6.18.19 224404f54036e bpf: drop kthread_exit from noreturn_deny 9fd37b636bc2d drm/bridge: ti-sn65dsi86: Add support for DisplayPort mode with HPD 24fda228496c6 mm/damon/core: disallow non-power of two min_region_sz b0d0903594dd6 io_uring/eventfd: use ctx->rings_rcu for flags checking 7cc4530b3e952 io_uring: ensure ctx->rings is stable for task work flags manipulation ae3831b44f477 net/tcp-md5: Fix MAC comparison to be constant-time ce2a263bc57c1 lib/crypto: tests: Depend on library options rather than selecting them 93c0a22fec914 ksmbd: Compare MACs in constant time 4af5dfb8dca3a smb: client: Compare MACs in constant time 97ea8f3bbdaef kbuild: Leave objtool binary around with 'make clean' ba3bca40f9f25 KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated 0ff26b41c882c KVM: SVM: Add a helper to look up the max physical ID for AVIC ba28a0dcc41ae KVM: SVM: Limit AVIC physical max index based on configured max_vcpu_ids b7493f48c3dba KVM: arm64: Eagerly init vgic dist/redist on vgic creation 2a01a93ed2266 KVM: arm64: gic: Set vgic_model before initing private IRQs 8d02bbfb09003 mmc: dw_mmc-rockchip: Fix runtime PM support for internal phase support 5b58ba042e237 mmc: dw_mmc-rockchip: Add memory clock auto-gating support 4c3a860b96e72 drm/gud: fix NULL crtc dereference on display disable 51aa99e59d7f5 drm/gud: rearrange gud_probe() to prepare for function splitting 94b6d0ba4b640 mm: Fix a hmm_range_fault() livelock / starvation problem fffce2310e688 cxl/acpi: Fix CXL_ACPI and CXL_PMEM Kconfig tristate mismatch 003df94bcc922 i3c: mipi-i3c-hci: Correct RING_CTRL_ABORT handling in DMA dequeue b684b420a5bb0 i3c: mipi-i3c-hci: Fix race in DMA ring dequeue a21d763335886 i3c: mipi-i3c-hci: Add missing TID field to no-op command descriptor 57f99dc660e69 i3c: mipi-i3c-hci: Restart DMA ring correctly after dequeue abort d986d51a83f5c i3c: mipi-i3c-hci: Consolidate spinlocks 74a4f77bbf786 i3c: mipi-i3c-hci: Factor out DMA mapping from queuing path 478a99a961829 i3c: mipi-i3c-hci: Use ETIMEDOUT instead of ETIME for timeout errors ad9da7d39cecd iio: proximity: hx9023s: Protect against division by zero in set_samp_freq 05723a2c4b09d iio: proximity: hx9023s: fix assignment order for __counted_by 70b455484a661 iio: imu: inv_icm42600: fix odr switch when turning buffer off b5a6825579a7c iio: imu: inv_icm42600: fix odr switch to the same value aae572ddc2857 iio: light: bh1780: fix PM runtime leak on error path a8714d2d0df4e iio: gyro: mpu3050-i2c: fix pm_runtime error handling ba19dd366528b iio: imu: adis: Fix NULL pointer dereference in adis_init 42685cf96e282 iio: gyro: mpu3050-core: fix pm_runtime error handling c7ae426705b01 iio: buffer: Fix wait_queue not being removed c528dc22d58b7 iio: chemical: bme680: Fix measurement wait duration calculation 7c5edf1025ddb iio: potentiometer: mcp4131: fix double application of wiper shift b8a26d21c7dba iio: magnetometer: tlv493d: remove erroneous shift in X-axis data 90e978ace5985 iio: chemical: sps30_i2c: fix buffer size in sps30_i2c_read_meas() eddba110685f8 iio: chemical: sps30_serial: fix buffer size in sps30_serial_read_meas() 73dd9acb5b20b iio: frequency: adf4377: Fix duplicated soft reset mask 1b2d9e23452bd iio: dac: ds4424: reject -128 RAW value 014a021075c58 btrfs: abort transaction on failure to update root in the received subvol ioctl 5e1ab71f74a1e btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer() d11aefe654a04 btrfs: fix transaction abort on set received ioctl due to item overflow 9273175bf16c8 btrfs: fix transaction abort on file creation due to name hash collision bac55dde8efa4 btrfs: fix transaction abort when snapshotting received subvolumes 9b753ece26524 smb: client: fix iface port assignment in parse_server_interfaces 92e64f1852f45 smb: client: fix in-place encryption corruption in SMB2_write() 9509b659ca7eb smb: client: fix atomic open with O_DIRECT & O_SYNC bfbf1f286f682 lib/bootconfig: check bounds before writing in __xbc_open_brace() 6e736a18cfbd5 lib/bootconfig: fix snprintf truncation check in xbc_node_compose_key_after() 12d2b443b8606 kprobes: Remove unneeded warnings from __arm_kprobe_ftrace() 11712c4eb3840 x86/apic: Disable x2apic on resume if the kernel expects so 9f9157ee67b32 scsi: core: Fix error handling for scsi_alloc_sdev() d24330cf241f8 lib/bootconfig: fix off-by-one in xbc_verify_tree() unclosed brace error d2beb819045e4 powerpc64/bpf: fix the address returned by bpf_get_func_ip 2ce9b27946125 powerpc64/bpf: fix kfunc call support 4b89984f72742 powerpc/pseries: Correct MSI allocation tracking f7eda676386c5 s390/dasd: Copy detected format information to secondary device fe9cd8c8ee359 s390/dasd: Move quiesce state with pprc swap 950a76e82e05a s390/zcrypt: Enable AUTOSEL_DOM for CCA serialnr sysfs attribute 997967adf10ce sched_ext: Fix enqueue_task_scx() truncation of upper enqueue flags a35be7a17c7b1 xfs: ensure dquot item is deleted from AIL only after log shutdown 446a1f5bb64ba xfs: fix undersized l_iclog_roundoff values ca504d2601b3b xfs: fix returned valued from xfs_defer_can_append 2b4492d9ed0f2 xfs: fix integer overflow in bmap intent sort comparator 316cc7b63fd58 cifs: make default value of retrans as zero 50ad880db3013 io_uring/kbuf: check if target buffer list is still legacy on recycle 950bda065b05e qmi_wwan: allow max_mtu above hard_mtu to control rx_urb_size 8738dcc844fff net-shapers: don't free reply skb after genlmsg_reply() eb613e3d38abb tracing: Fix trace_buf_size= cmdline parameter with sizes >= 2G 18bef795332b0 tracing: Fix enabling multiple events on the kernel command line and bootconfig 9ecea60f132da drm/msm/dpu: Correct the SA8775P intr_underrun/intr_underrun index 38f1640db7f8b drm/amd: Fix a few more NULL pointer dereference in device cleanup a751a1230533f drm/msm: Fix dma_free_attrs() buffer size 0189bf176dbe6 drm/i915/psr: Repeat Selective Update area alignment eae4bf4107571 drm/i915: Fix potential overflow of shmem scatterlist length 46275c56e7475 drm/bridge: ti-sn65dsi83: halve horizontal syncs for dual LVDS output 818ebb298a753 drm/bridge: ti-sn65dsi83: fix CHA_DSI_CLK_RANGE rounding 43025c941aced drm/amd: Fix NULL pointer dereference in device cleanup 57579312e0e87 drm/amd: Set num IP blocks to 0 if discovery fails 7885eb335d8f9 drm/amdgpu: Fix use-after-free race in VM acquire 33c3a4db31719 drm/amd/pm: remove invalid gpu_metrics.energy_accumulator on smu v13.0.x 6c58a9fdb0d0e net: dsa: microchip: Fix error path in PTP IRQ setup 8efd5dcd31e22 net: ethernet: arc: emac: quiesce interrupts before requesting IRQ b70c4e5e71193 net: ncsi: fix skb leak in error paths ab5ebab966421 net: nexthop: fix percpu use-after-free in remove_nh_grp_entry 3224990fb16a8 net: mctp: fix device leak on probe failure 1d6abf145615d ksmbd: fix use-after-free by using call_rcu() for oplock_info 8f5b1a7cb009a smb: server: fix use-after-free in smb2_open() dbbd328cf5826 ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close() 146691daf293c memcg: fix slab accounting in refill_obj_stock() trylock path 159aebd20e0e9 slab: distinguish lock and trylock for sheaf_flush_main() 8938a9c60d9ae s390/xor: Fix xor_xc_5() inline assembly 1a34999922ba6 drm/amd/display: Fallback to boot snapshot for dispclk b9a944d0a1d3a s390/xor: Fix xor_xc_2() inline assembly constraints 87f0349beaaca ata: libata-core: Disable LPM on ST1000DM010-2EP102 a547ffcb9b1d5 s390/stackleak: Fix __stackleak_poison() inline assembly constraint d0e63feca3808 crypto: ccp - allow callers to use HV-Fixed page API when SEV is disabled a4d0e2c416db0 pmdomain: bcm: bcm2835-power: Fix broken reset status read f29b08755103f regulator: pf9453: Respect IRQ trigger settings from firmware 4387b2cc9a630 io_uring/net: reject SEND_VECTORIZED when unsupported 823fb431e4af8 parisc: Check kernel mapping earlier at bootup 6f92a7a8b48a5 arm64: contpte: fix set_access_flags() no-op check for SMMU/ATS faults 396dec23e9024 parisc: Fix initial page table creation for boot 857473efe9341 io_uring/zcrx: use READ_ONCE with user shared RQEs 73a7a34581694 hwmon: (pmbus/q54sj108a2) fix stack overflow in debugfs read 439b5fb7280a3 arm64: mm: Add PTE_DIRTY back to PAGE_KERNEL* to fix kexec/hibernation ad8fa5bff53f5 nouveau/dpcd: return EBUSY for aux xfer if the device is asleep 6e6e28898e015 parisc: Increase initial mapping to 64 MB with KALLSYMS 5737b279a28b6 pmdomain: rockchip: Fix PD_VCODEC for RK3588 e9b0a6ffe8b95 drm/xe/xe2_hpg: Correct implementation of Wa_16025250150 2ab9f2531d377 batman-adv: Avoid double-rtnl_lock ELP metric worker a269cbdc442f8 net/tcp-ao: Fix MAC comparison to be constant-time 12db29803c19e tracing: Fix syscall events activation by ensuring refcount hits zero f6e7c4f406b68 ice: fix retry for AQ command 0x06EE 678d5802556b3 net: mana: Ring doorbell at 4 CQ wraparounds 8bde543d2a5f9 media: dvb-net: fix OOB access in ULE extension header tables 9e16152a7e337 selftests: fix mntns iteration selftests ace46763b282d pinctrl: cy8c95x0: Don't miss reading the last bank registers 4dd2d9cf563c5 staging: rtl8723bs: fix potential out-of-bounds read in rtw_restruct_wmm_ie 6d62fa548387e staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() ea535b9894d77 staging: sm750fb: add missing pci_release_region on error and removal 6b9cb42cfdb36 mm/slab: fix an incorrect check in obj_exts_alloc_size() ce0aa47c963b8 mm/damon/core: clear walk_control on inactive context in damos_walk() 7c19757394ddf ixgbevf: fix link setup issue 216176bcfd2bd kunit: irq: Ensure timer doesn't fire too frequently decd9942655db ice: reintroduce retry mechanism for indirect AQ ca19f8f51064f iomap: reject delalloc mappings during writeback 7bdf00ed75c47 btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies() f42b4afdd1f89 irqchip/gic-v3-its: Limit number of per-device MSIs to the range the ITS supports 32752c3e81498 device property: Allow secondary lookup in fwnode_get_next_child_node() 019debe5851d7 nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit(). db377ed4ecca4 arm64: gcs: Honour mprotect(PROT_NONE) on shadow stack mappings 584926c26f0b7 bpf: Fix kprobe_multi cookies access in show_fdinfo callback 415aed08de0ee s390/pfault: Fix virtual vs physical address confusion af65cd1853599 drm/xe/sync: Cleanup partially initialized sync on parse failure 58e6e3d39c286 ipmi:si: Fix check for a misbehaving BMC 19e1931841e44 gpiolib: normalize the return value of gc->get() on behalf of buggy drivers 32cca65189823 drm/i915/alpm: ALPM disable fixes 214b6bde0e941 nouveau/gsp: drop WARN_ON in ACPI probes 9b7855110fd75 ipmi:si: Handle waiting messages when BMC failure detected bc001cd1a4824 drm/bridge: ti-sn65dsi86: Enable HPD polling if IRQ is not used e6d779654cda6 drm/bridge: samsung-dsim: Fix memory leak in error path 1df500f363bc8 ipmi:si: Use a long timeout when the BMC is misbehaving 68d7fcb6a451c ipmi:si: Don't block module unload if the BMC is messed up 06ef2ba582c68 drm/amd: Disable MES LR compute W/A b1d10508da559 drm/amdgpu: add upper bound check on user inputs in wait ioctl 762f47e2b8243 drm/amdgpu/userq: Fix reference leak in amdgpu_userq_wait_ioctl 6fff5204d8aa2 drm/amdgpu: add upper bound check on user inputs in signal ioctl 6bfda7ce56e7d cpufreq: intel_pstate: Fix NULL pointer dereference in update_cpu_qos_request() 4729c7b00a347 kthread: consolidate kthread exit paths to prevent use-after-free 8a259a5c70ddc Revert "ptdesc: remove references to folios from __pagetable_ctor() and pagetable_dtor()" ae931283b2f37 Revert "tcpm: allow looking for role_sw device in the main node" 21a13db8d449b scsi: hisi_sas: Fix NULL pointer exception during user_scan() b17211b512cbf scsi: ufs: core: Fix SError in ufshcd_rtc_work() during UFS suspend 98074e16742ae powerpc, perf: Check that current->mm is alive before getting user callchain 9e84113ea6ec2 i3c: dw-i3c-master: Set SIR_REJECT in DAT on device attach and reattach 2d845604ca4fb time/jiffies: Mark jiffies_64_to_clock_t() notrace 2e8e9aea8cd5a ALSA: usb-audio: Improve Focusrite sample rate filtering 097cd68f46686 ceph: fix memory leaks in ceph_mdsc_build_path() 7335e21830b8d ceph: do not skip the first folio of the next object in writeback 7db008e85a5d1 ceph: fix i_nlink underrun during async unlink bdf614c81081b libceph: admit message frames only in CEPH_CON_S_OPEN state ba0a4df8c5635 libceph: Use u32 for non-negative values in ceph_monmap_decode() 69fe5af33fa38 libceph: prevent potential out-of-bounds reads in process_message_header() fc4d944dbaee9 libceph: reject preamble if control segment is empty f9da5c1bbac5c libceph: Fix potential out-of-bounds access in ceph_handle_auth_reply() 8be8911f59081 ceph: add a bunch of missing ceph_path_info initializers cae928e3178c7 kprobes: avoid crash when rmmod/insmod after ftrace killed 2754e7b3d6474 tipc: fix divide-by-zero in tipc_sk_filter_connect() 22b05abb17e3c ASoC: qcom: qdsp6: Fix q6apm remove ordering during ADSP stop and start 0e06cc511c61c mmc: core: Avoid bitfield RMW for claim/retune flags 45785772d538b mm/kfence: disable KFENCE upon KASAN HW tags enablement 24743b77cae33 mmc: mmci: Fix device_node reference leak in of_get_dml_pipe_index() 63826cf084468 mm/kfence: fix KASAN hardware tag faults during late enablement 6dc0919dc7820 mm/tracing: rss_stat: ensure curr is false from kthread context e584cb58a2ea7 usb: gadget: f_ncm: Fix net_device lifecycle with device_move ef7d456d1e887 Revert "usb: gadget: u_ether: add gether_opts for config caching" 05dc0c098ca11 Revert "usb: gadget: f_ncm: align net_device lifecycle with bind/unbind" d2a08ea03830b Revert "usb: gadget: u_ether: Add auto-cleanup helper for freeing net_device" 56cb551d2a33d Revert "usb: legacy: ncm: Fix NPE in gncm_bind" 8a607bae3a0a4 Revert "usb: gadget: f_ncm: Fix atomic context locking issue" be5738d19bed2 usb: legacy: ncm: Fix NPE in gncm_bind e533a44fb1b33 usb: gadget: f_ncm: Fix atomic context locking issue 679d9535aeb15 usb: gadget: f_tcm: Fix NULL pointer dereferences in nexus handling b7fed917f84e4 usb: image: mdc800: kill download URB on timeout 513041c71356d usb: gadget: uvc: fix interval_duration calculation 4cc30a5fc8832 usb: mdc800: handle signal and read racing c0b28a042174c usb: gadget: f_hid: fix SuperSpeed descriptors 0b7d11fd6e742 usb: renesas_usbhs: fix use-after-free in ISR during device removal 67ed312124bb1 usb: class: cdc-wdm: fix reordering issue in read code path 64f3d75633aed USB: core: Limit the length of unkillable synchronous timeouts 6cb7dc91f057d USB: usbtmc: Use usb_bulk_msg_killable() with user-specified timeouts f7e115af48745 USB: usbcore: Introduce usb_bulk_msg_killable() ac207d57bbb06 usb: typec: altmode/displayport: set displayport signaling rate in configure message 8c9521a5877e5 usb: roles: get usb role switch from parent only for usb-b-connector 9459b5731cd8b usb: cdc-acm: Restore CAP_BRK functionnality to CH343 82f7b4350b9d9 usb: core: don't power off roothub PHYs if phy_set_mode() fails 1a99da68a5a9c usb: misc: uss720: properly clean up reference in uss720_probe() 69f090f5e7298 usb: dwc3: pci: add support for the Intel Nova Lake -H a41d3d9202e95 usb: yurex: fix race in probe cd41e0d1df8fc usb: xhci: Prevent interrupt storm on host controller error (HCE) c65f1b840ab8c usb: xhci: Fix memory leak in xhci_disable_slot() 8043f1c3c89dd USB: ezcap401 needs USB_QUIRK_NO_BOS to function on 10gbs usb speed ba3b951b7f7ae usb/core/quirks: Add Huawei ME906S-device to wakeup quirk e2554ffa8c252 USB: add QUIRK_NO_BOS for video capture several devices 213e82ccdea58 KVM: arm64: pkvm: Fallback to level-3 mapping on host stage-2 fault c513bbd7da534 KVM: SVM: Initialize AVIC VMCB fields if AVIC is enabled with in-kernel APIC b058c30cdf7d5 KVM: x86: Introduce KVM_X86_QUIRK_VMCS12_ALLOW_FREEZE_IN_SMM 686c8f16112c8 KVM: arm64: Fix protected mode handling of pages larger than 4kB e0f582406c3e4 ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK PM1503CDA 08da6c7ed70f0 ata: libata-core: Add BRIDGE_OK quirk for QEMU drives f90768ed813bf rust: str: make NullTerminatedFormatter public 887098159d705 rust: kbuild: allow `unused_features` dd109e3442817 rust_binder: call set_notification_done() without proc lock e19afb53f7723 rust_binder: avoid reading the written value in offsets array 20a01f20d1f40 rust_binder: check ownership before using vma edf685946c4ac rust_binder: fix oneway spam detection 3e89ddbaaea2f net: usb: lan78xx: skip LTM configuration for LAN7850 20ce2bd1c1848 net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect f62ec1babb2ae net: usb: lan78xx: fix TX byte statistics for small packets fa41007be691b net: usb: lan78xx: fix silent drop of packets with checksum errors 00293f362712b can: gs_usb: gs_can_open(): always configure bitrates before starting device 3d542cf3c4c85 ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces 4a758e9a1f5ed ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() 6eaaa67d6998f sched_ext: Remove redundant css_put() in scx_cgroup_init() 86ceaccfdfa16 cgroup: fix race between task migration and iteration 1051eb2f53886 drm/amdgpu: ensure no_hw_access is visible before MMIO 3428dc5520c81 usb: gadget: f_mass_storage: Fix potential integer overflow in check_command_size_in_blocks() 678f1212f77bf iio: imu: inv-mpu9150: fix irq ack preventing irq storms 86f00a9e50b4a net: prevent NULL deref in ip[6]tunnel_xmit() 7065d73a78ba7 octeontx2-af: devlink: fix NIX RAS reporter to use RAS interrupt status c9d6bf8d139a9 octeontx2-af: devlink: fix NIX RAS reporter recovery condition 8ded073fc8cdc net: ethernet: ti: am65-cpsw-nuss: Fix rx_filter value for PTP support c1d06ccbee468 net: ti: am65-cpsw: move hw timestamping to ndo callback 59489ce60d741 net/mana: Null service_wq on setup error to prevent double destroy 103e4fedb4784 neighbour: restore protocol != 0 check in pneigh update f7f12d551d611 net: dsa: realtek: Fix LED group port bit for non-zero LED group 95faa1459b83f net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled 84c1adb60fdba perf synthetic-events: Fix stale build ID in module MMAP2 records 529c985da1b27 drm/amdkfd: Unreserve bo if queue update failed b3b56d60fee16 ASoC: detect empty DMI strings 790851ecc983c ASoC: amd: acp3x-rt5682-max9836: Add missing error check for clock acquisition 9a3106a81fc3c ACPI: OSL: fix __iomem type on return from acpi_os_map_generic_address() e987bc1d2e8d4 net: bcmgenet: fix broken EEE by converting to phylib-managed state 53480725b1395 page_pool: store detach_time as ktime_t to avoid false-negatives 30e87ade8d678 e1000/e1000e: Fix leak in DMA error cleanup 981e2805e48fc i40e: fix src IP mask checks and memcpy argument names in cloud filter 75e0a631c3a13 iavf: fix incorrect reset handling in callbacks 1b034f2429ce6 iavf: fix PTP use-after-free during reset 98b36857f3584 drivers: net: ice: fix devlink parameters get without irdma b56c49897bdac nvme-pci: Fix race bug in nvme_poll_irqdisable() 328c551f0cc81 nvme-pci: Fix slab-out-of-bounds in nvme_dbbuf_set 3cf2d7ca48289 sched: idle: Make skipping governor callbacks more consistent a422159d766ad perf ftrace: Fix hashmap__new() error checking f7e52a24e5b76 regulator: pca9450: Correct probed name for PCA9452 55ca06f54f57f regulator: pca9450: Add support for setting debounce settings ec1427731244d regulator: pca9450: Correct interrupt type 0b6803777c003 perf annotate: Fix hashmap__new() error checking f5ef97c131655 netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels 05018cd9370f7 netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() 9853d94b82d30 netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path bc18551c6169e netfilter: x_tables: guard option walkers against 1-byte tail reads e047f6fbb975f netfilter: nft_set_pipapo: fix stack out-of-bounds read in pipapo_drop() de47a88c6b807 netfilter: nf_tables: always walk all pending catchall elements 6d2a95c689057 netfilter: nf_tables: Fix for duplicate device in netdev hooks 8a57deeb25606 net: add xmit recursion limit to tunnel xmit functions f0679522f8ded amd-xgbe: prevent CRC errors during RX adaptation with AN disabled cf51e5853398e amd-xgbe: fix link status handling in xgbe_rx_adaptation 925a5ffd99cdd mctp: route: hold key->lock in mctp_flow_prepare_output() 6ac890f1d60ac bonding: fix type confusion in bond_setup_by_slave() 474211fb4a1df bonding: use common function to compute the features 3c5de399a4427 can: hi311x: hi3110_open(): add check for hi3110_power_enable() return value 1ec54187e1aa4 mctp: i2c: fix skb memory leak in receive path 569e6e72c4578 bnxt_en: Fix RSS table size check when changing ethtool channels 35b58d3bc716e serial: caif: hold tty->link reference in ldisc_open and ser_release ecb4ed7a723f0 net: sfp: improve Huawei MA5671a fixup ce0b8fd5e3554 ASoC: simple-card-utils: fix graph_util_is_ports0() for DT overlays 7d33e61409454 ASoC: soc-core: flush delayed work before removing DAIs and widgets a4aa08c820f4f ASoC: soc-core: drop delayed_work_pending() check before flush b6051f2bdd4bd spi: rockchip-sfc: Fix double-free in remove() callback 0a83d6c9e149a spi: amlogic: spifc-a4: Fix DMA mapping error handling fc7735caf016a drm/sitronix/st7586: fix bad pixel data due to byte swap c34ebd7b24ea7 net: spacemit: Fix error handling in emac_tx_mem_map() 045545790fea7 net: spacemit: Fix error handling in emac_alloc_rx_desc_buffers() d55fa7cd4b19b rxrpc, afs: Fix missing error pointer check after rxrpc_kernel_lookup_peer() 0bad9c86edd22 net/sched: teql: fix NULL pointer dereference in iptunnel_xmit on TEQL slave xmit c74557495efb4 net/mlx5e: RX, Fix XDP multi-buf frag counting for legacy RQ 7d7342a18fadc net/mlx5e: RX, Fix XDP multi-buf frag counting for striding RQ ce1b19dd0684e net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery cbd8494fdd6cc net/mlx5: Fix peer miss rules host disabled checks 835778685f157 net/mlx5: Fix crash when moving to switchdev mode 4a7838bebc383 net/mlx5: Fix deadlock between devlink lock and esw->wq 6aaf15f376b0e bonding: handle BOND_LINK_FAIL, BOND_LINK_BACK as valid link states ab1bcadc7e517 bonding: do not set usable_slaves for broadcast mode 2ee3645e0f3f4 drm/amd/pm: add missing od setting PP_OD_FEATURE_ZERO_FAN_BIT for smu v14 4c32155265b67 drm/amd/pm: add missing od setting PP_OD_FEATURE_ZERO_FAN_BIT for smu v13 6b4a1ff808851 drm/msm/dsi: fix pclk rate calculation for bonded dsi 5f5d956b2ce00 net: dsa: realtek: rtl8365mb: remove ifOutDiscards from rx_packets 98754dda67296 dt-bindings: display/msm: qcom,sm8750-mdss: Fix model typo 676826aeddb57 perf disasm: Fix off-by-one bug in outside check ce69c1b753746 workqueue: Use POOL_BH instead of WQ_BH when checking pool flags a39b75c3f4226 btrfs: hold space_info->lock when clearing periodic reclaim ready 8127b5fec0475 xprtrdma: Decrement re_receiving on the early exit paths 2871bb923ff8f drm/msm/dsi: fix hdisplay calculation when programming dsi registers 203c792cb4315 nfs: return EISDIR on nfs3_proc_create if d_alias is a dir 28a72f653832a smb/server: Fix another refcount leak in smb2_open() f426a493db33d powerpc: 83xx: km83xx: Fix keymile vendor prefix ba021fb575084 remoteproc: mediatek: Unprepare SCP clock during system suspend bf39fed5f22cb remoteproc: sysmon: Correct subsys_name_len type in QMI request b7b634be76582 powerpc/crash: adjust the elfcorehdr size c171a5f799546 powerpc/kexec/core: use big-endian types for crash variables d5697cf3b91d8 kexec: Include kernel-end even without crashkernel b3c074a394c66 powerpc/uaccess: Fix inline assembly for clang build on PPC32 71c57e74baa06 ALSA: usb-audio: Check max frame size for implicit feedback mode, too 31e6595fd1a05 drm/amdgpu/vcn5: Add SMU dpm interface type 716fc40446912 ALSA: usb-audio: Avoid implicit feedback mode on DIYINHK USB Audio 2.0 5faf0ce7d784a scsi: ufs: core: Fix shift out of bounds when MAXQ=32 f4f590c6c9df7 scsi: ufs: core: Fix possible NULL pointer dereference in ufshcd_add_command_trace() 87aa0f91ee49e ASoC: cs42l43: Report insert for exotic peripherals c072370ad67dd ASoC: amd: yc: Add ASUS EXPERTBOOK BM1503CDA to quirk table 7035ef0f20bab scsi: ses: Fix devices attaching to different hosts 8c61a746f7bb8 ACPI: OSI: Add DMI quirk for Acer Aspire One D255 e03d7bddf0ecc wifi: mac80211: set default WMM parameters on all links af8f4be3b68ac unshare: fix unshare_fs() handling 6407e8baef0ac ALSA: hda/realtek: Fix speaker pop on Star Labs StarFighter e978a36f332ed scsi: mpi3mr: Add NULL checks when resetting request and reply queues 379e19e820dd1 fs: init flags_valid before calling vfs_fileattr_get 22e54d67b2f57 scsi: ufs: core: Reset urgent_bkops_lvl to allow runtime PM power mode 55d1e86cb0c90 ACPI: PM: Save NVS memory on Lenovo G70-35 c2e73d8acd056 scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT 3318f10fa2898 Linux 6.18.18 6c5e8f16b5e8e ata: libata: cancel pending work after clearing deferred_qc 13bc2772414d6 apparmor: fix race between freeing data and fs accessing it af782cc8871e3 apparmor: fix race on rawdata dereference 623a9d211bbbb apparmor: fix differential encoding verification b60b3f7a35c46 apparmor: fix unprivileged local user can do privileged policy management 7998ab3010d23 apparmor: Fix double free of ns_name in aa_replace_profiles() 5a68e46dfe0c8 apparmor: fix missing bounds check on DEFAULT table in verify_dfa() 0510d1ba0976f apparmor: fix side-effect bug in match_char() macro usage d42b2b6bb77ca apparmor: fix: limit the number of levels of policy namespaces 7eade846e013c apparmor: replace recursive profile removal with iterative approach 4f0889f2df1ab apparmor: fix memory leak in verify_header 0baadb0eece2c apparmor: validate DFA start states are in bounds in unpack_pdb 380ad8b7c65ea net/sched: Only allow act_ct to bind to clsact/ingress qdiscs and shared blocks 04d75529dc0f9 net/sched: act_gate: snapshot parameters with RCU on replace 93ea7e1363fb2 Linux 6.18.17 8a185304e42e0 selftests/bpf: Avoid simplification of crafted bounds test 63b548c862996 bpf: collect only live registers in linked regs 2ce8ece5a78da tracing: Add NULL pointer check to trigger_data_free() 52decf013d533 selftest/arm64: Fix sve2p1_sigill() to hwcap test d15ba004b3214 ata: libata-eh: Fix detection of deferred qc timeouts 98cd8b4d0b836 xdp: produce a warning when calculated tailroom is negative 45a41aecf5e54 net: enetc: use truesize as XDP RxQ info frag_size f1ac9d19721bd i40e: use xdp.frame_sz as XDP RxQ info frag_size b6176646c36d2 i40e: fix registering XDP RxQ info ff7f356cdbb47 xsk: introduce helper to determine rxq->frag_size 2a9e6ecf0e858 xdp: use modulo operation to calculate XDP frag tailroom cd888c3966672 net/sched: act_ife: Fix metalist update behavior b3b5a037d520a net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop fbbd2118982c5 net: vxlan: fix nd_tbl NULL dereference when IPv6 is disabled 33dec6f10777d net: bridge: fix nd_tbl NULL dereference when IPv6 is disabled d3b1c4c70da56 selftests/harness: order TEST_F and XFAIL_ADD constructors 0168443a5db5b kselftest/harness: Use helper to avoid zero-size memset warning 6f95b59520278 net: ethernet: mtk_eth_soc: Reset prog ptr to old_prog in case of error in mtk_xdp_setup() 500a50a301ce9 netfilter: nft_set_pipapo: split gc into unlink and reclaim phase 9154945a63940 netfilter: nf_tables: clone set on flush only 6826131c76743 netfilter: nf_tables: unconditionally bump set->nelems before insertion 6624d1727f3a5 net: Provide a PREEMPT_RT specific check for netdev_queue::_xmit_lock c3e8c75fcb2ef block: use trylock to avoid lockdep circular dependency in sysfs 6b0e35123ba45 net: stmmac: Defer VLAN HW configuration when interface is down 15e8ef3368955 net: stmmac: Fix VLAN HW state restore 8b8b97eaecae7 net: stmmac: Improve double VLAN handling d55a39435c20b net: stmmac: Fix error handling in VLAN add and delete paths edc988613def9 nfc: rawsock: cancel tx_work before socket teardown b3fdbc7f59cdf nfc: nci: clear NCI_DATA_EXCHANGE before calling completion callback 91ff0d8c3464d nfc: nci: complete pending data exchange on device close 9d448bbab724b nfc: nci: free skb on nci_transceive early error paths a77a5423e9c63 net: devmem: use READ_ONCE/WRITE_ONCE on binding->dev 4596f44d4f5b9 net_sched: sch_fq: clear q->band_pkt_count[] in fq_reset() 1c46edf20f82e net: nfc: nci: Fix zero-length proprietary notifications eae2f14ab2efc tcp: secure_seq: add back ports to TS offset 8314944cc3bde net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs d9d4ed40b3be3 hwmon: (max6639) fix inverted polarity de4ea10ae6b42 timekeeping: Fix timex status validation for auxiliary clocks 5a501379a0106 nvme: fix memory allocation in nvme_pr_read_keys() 76f327fa4f1b7 nvme: reject invalid pr_read_keys() num_keys values 05e3f01974d09 drm/xe/reg_sr: Fix leak on xa_store failure 3c8852cff2bb8 drm/xe/gsc: Fix GSC proxy cleanup on early initialization failure 1c72e7b0b442c i2c: i801: Revert "i2c: i801: replace acpi_lock with I2C bus lock" da09dfc90cb7e drm/sched: Fix kernel-doc warning for drm_sched_job_done() 5649775b3ebf2 amd-xgbe: fix sleep while atomic on suspend/resume 7e4ad34a8889a net: ipv4: fix ARM64 alignment fault in multipath hash seed 0b5a782602070 ipv6: fix NULL pointer deref in ip6_rt_get_dev_rcu() 5566a9eeb00e5 smb/client: fix buffer size for smb311_posix_qinfo in SMB311_posix_query_info() b751369b03c8a smb/client: fix buffer size for smb311_posix_qinfo in smb2_compound_op() 3eeddb80191f7 bpf: Fix a UAF issue in bpf_trampoline_link_cgroup_shim ba47e33717642 igb: Fix trigger of incorrect irq in igb_xsk_wakeup 2199e190cf6bb iavf: fix netdev->max_mtu to respect actual hardware limit 0138d1cdb19fa libie: don't unroll if fwlog isn't supported b9333d41ee03a ice: fix adding AQ LLDP filter for VF 1e077c65e0202 xen/acpi-processor: fix _CST detection using undersized evaluation buffer 6ce948fa54599 net/rds: Fix circular locking dependency in rds_tcp_tune ca795bf1230b6 indirect_call_wrapper: do not reevaluate function pointer 9612d91f61723 wifi: mt76: Fix possible oob access in mt76_connac2_mac_write_txwi_80211() 2831a8c574545 wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211() f4cdf6b43689e wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211() fcef983ad8883 wifi: wlcore: Fix a locking bug f98c195052ab8 wifi: cw1200: Fix locking in error paths 93e00a88951d6 octeon_ep_vf: avoid compiler and IQ/OQ reordering 04a9f26d63d95 octeon_ep_vf: Relocate counter updates before NAPI 986904ab1613f octeon_ep: avoid compiler and IQ/OQ reordering 142a789a51d5f octeon_ep: Relocate counter updates before NAPI 0ace8027e41f6 bpf/bonding: reject vlan+srcmac xmit_hash_policy change when XDP is loaded d95de5acbf9ed net: dsa: realtek: rtl8365mb: fix rtl8365mb_phy_ocp_write return value 01f5b85fa0daa kunit: tool: copy caller args in run_kernel to prevent mutation 3589cc8f56c12 rust: kunit: fix warning when !CONFIG_PRINTK 7f971dfd48983 drm/xe/configfs: Free ctx_restore_mid_bb in release 303b446f2e8f9 drm/xe: Do not preempt fence signaling CS instructions 7196a1ff7b9a2 drm/syncobj: Fix handle <-> fd ioctls with dirty stack 95ed07644b2c6 wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config d27f12c3f5e85 can: mcp251x: fix deadlock in error path of mcp251x_open 8215ba7bc99e8 can: bcm: fix locking for bcm_op runtime updates d8e38dc605c1a amd-xgbe: fix MAC_TCR_SS register width for 2.5G and 10M speeds d5947c3d2d14c net: ti: icssg-prueth: Fix ping failure after offload mode setup when link speed is not 1G 7ea92ab075d80 atm: lec: fix null-ptr-deref in lec_arp_clear_vccs 00f42ace446f1 dpaa2-switch: Fix interrupt storm after receiving bad if_id in IRQ handler 6a674e0b19b0e xsk: Fix zero-copy AF_XDP fragment drop 645c6d8376ad4 xsk: Fix fragment node deletion to prevent buffer leak 2fc623e178545 tcp: give up on stronger sk_rcvbuf checks (for now) b955350778b87 udp: Unhash auto-bound connected sk from 4-tuple hash table when disconnected. f5fc6fead2775 inet: annotate data-races around isk->inet_num 3d8f35e182c80 nvme-multipath: fix leak on try_module_get failure 79cc5a4c311f6 net: ethernet: ti: am65-cpsw-nuss/cpsw-ale: Fix multicast entry handling in ALE table f17c1c4acbe2b net: annotate data-races around sk->sk_{data_ready,write_space} f30b95159a53e nvmet-fcloop: Check remoteport port_state before calling done callback 72d08d2839649 netfs: Fix unbuffered/DIO writes to dispatch subrequests in strict sequence 54b3701901afc drm/solomon: Fix page start when updating rectangle in page addressing mode ee8e4b7469b47 e1000e: clear DPG_EN after reset to avoid autonomous power-gating 9e0f091821571 i40e: Fix preempt count leak in napi poll tracepoint e9669c2d0535f ice: recap the VSI and QoS info after rebuild 4458f9f198f5e idpf: Fix flow rule delete failure due to invalid validation e7fca8b7fb6fa idpf: change IRQ naming to match netdev and ethtool queue numbering 8f742f495ddbd idpf: increment completion queue next_to_clean in sw marker wait routine d146275655bbd hwmon: (it87) Check the it87_lock() return value ea07fcfbba430 pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe() acbcfe2f8e646 pinctrl: meson: amlogic-a4: Fix device node reference leak in aml_dt_node_to_map_pinmux() 6359d2d52c95f pinctrl: generic: move function to amlogic-am4 driver 2c091292ca421 HID: multitouch: new class MT_CLS_EGALAX_P80H84 ade03840f829d module: Remove duplicate freeing of lockdep classes 55aefe1647a6a platform/x86: thinkpad_acpi: Fix errors reading battery thresholds 82f1bb0ad480f pinctrl: qcom: qcs615: Add missing dual edge GPIO IRQ errata flag 53eba152810ef pinctrl: equilibrium: fix warning trace on load 2c947684bdaaa pinctrl: equilibrium: rename irq_chip function callbacks 9833ed224aad8 hwmon: (aht10) Fix initialization commands for AHT20 9c1984180260b hwmon: (aht10) Add support for dht20 e159eb852aeee nvme: fix admin queue leak on controller reset 0381584929791 drm/amd/display: Use GFP_ATOMIC in dc_create_stream_for_sink a5c070aaf796f Bluetooth: Fix CIS host feature condition d8a286503553d net: stmmac: remove support for lpi_intr_o 999ff1af649cb platform/x86: hp-bioscfg: Support allocations of larger data 0c578e8065c4b ksmbd: call ksmbd_vfs_kern_path_end_removing() on some error paths c08ec55617cb9 ipmi: Fix use-after-free and list corruption on sender error 3c3462e9ae354 ASoC: fsl_xcvr: provide regmap names 227eb258c2cbe ASoC: fsl_xcvr: use dev_err_probe() replacing dev_err() + return 3d46af0f8b288 ARM: clean up the memset64() C wrapper 54e841a036064 Revert "netfilter: nft_set_rbtree: validate open interval overlap" 861aa1be41bc1 kbuild: Split .modinfo out from ELF_DETAILS bc2110c101281 selftests: mptcp: join: check removing signal+subflow endp 23ec7f54a9d68 selftests: mptcp: join: check RM_ADDR not sent over same subflow ee6ce81a24a41 selftests: mptcp: more stable simult_flows tests a64aa7db39392 mptcp: pm: in-kernel: always mark signal+subflow endp as used 19a258d03d086 mptcp: pm: avoid sending RM_ADDR over same subflow 944a333c8e4d4 scsi: core: Fix refcount leak for tagset_refcnt 86163b98891aa smb: client: fix oops due to uninitialised var in smb2_unlink() 2ef0fc3bf49db smb: client: Don't log plaintext credentials in cifs_set_cifscreds 134596a6e4be9 smb: client: fix broken multichannel with krb5+signing 0786f9422cbf7 smb: client: fix cifs_pick_channel when channels are equally loaded 5a34959a2ab18 xfs: Fix error pointer dereference b135cd653d1b8 xfs: fix xfs_group release bug in xfs_dax_notify_dev_failure 4e8935053ba38 drbd: fix null-pointer dereference on local read error d1ef3aed4df2e drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock() 01ee0bcc29864 Squashfs: check metadata block offset is within range 0524ee56af2c9 mm: thp: deny THP for files on anonymous inodes 9a5641024fbfd scsi: target: Fix recursive locking in __configfs_open_file() cdd96641b6429 tracing: Fix WARN_ON in tracing_buffers_mmap_close 27c13c5bb0948 nfsd: Fix cred ref leak in nfsd_nl_threads_set_doit(). a6677e23b313c net/sched: ets: fix divide by zero in the offload path ca1684dd297bf arm64: gcs: Do not set PTE_SHARED on GCS mappings if FEAT_LPA2 is enabled a1850e2aef4d1 cpufreq: intel_pstate: Fix crash during turbo disable a6f3e0fa8e862 RDMA/ionic: Fix kernel stack leak in ionic_create_cq() cfe962216c164 RDMA/irdma: Fix kernel stack leak in irdma_create_user_ah() deee46b37ebd8 IB/mthca: Add missed mthca_unmap_user_db() for mthca_create_srq() 2764dcb3c35de net: phy: register phy led_triggers during probe to avoid AB-BA deadlock 07e0c80e17ef7 gve: fix incorrect buffer cleanup in gve_tx_clean_pending_packets for QPL 2b6c942a52663 Bluetooth: purge error queues in socket destructors cc6d5a3c0a854 wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() f35ceec54d48e wifi: mac80211: bounds-check link_id in ieee80211_ml_reconfiguration 584279ad9ff1e wifi: cfg80211: cancel rfkill_block work in wiphy_unregister() ed7d30f90b77f wifi: libertas: fix use-after-free in lbs_free_adapter() 2f8ceeba67061 wifi: radiotap: reject radiotap with unknown bits bf21bfd63e013 ALSA: hda/realtek: add quirk for Samsung Galaxy Book Flex (NT950QCT-A38A) 36facbc94803c ALSA: hda/realtek: Add quirk for Acer Aspire V3-572G 7eb2d1ce7b451 ALSA: hda/realtek: fix model name typo for Samsung Galaxy Book Flex (NT950QCG-X716) 27338f3360ef1 ALSA: hda/intel: increase default bdl_pos_adj for Nvidia controllers 1e5753ff4c2e8 ALSA: usb-audio: Use correct version for UAC3 header validation be7e624f24df8 ALSA: doc: usb-audio: Add doc for QUIRK_FLAG_SKIP_IFACE_SETUP 8d70dff4a2e27 ALSA: hda/realtek: Add quirk for HP Pavilion 15-eh1xxx to enable mute LED 5f935f1331071 platform/x86: dell-wmi: Add audio/mic mute key codes bf84193d91305 platform/x86: alienware-wmi-wmax: Add G-Mode support to m18 laptops 5de34126fb2ed platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data c42a92d685c4c x86/boot/sev: Move SEV decompressor variables into the .data section a586788a669b6 x86/sev: Allow IBPB-on-Entry feature for SNP guests c7258d2010e6d x86/boot: Handle relative CONFIG_EFI_SBAT_FILE file paths 87aeec43ccb92 perf/x86/intel/uncore: Add per-scheduler IMC CAS count events f9e9cc320854a x86/efi: defer freeing of boot services memory aaca71f8562fb HID: multitouch: Keep latency normal on deactivate for reactivation gesture d1edc027a4b0b HID: pidff: Fix condition effect bit clearing 20864e3e41c74 HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them b9a6064179994 can: usb: f81604: handle bulk write errors properly 36ead57443146 can: usb: f81604: handle short interrupt urb messages properly 18eee279e9b5b can: usb: etas_es58x: correctly anchor the urb in the read bulk callback aa9e0a7fe5efc can: ucan: Fix infinite loop from zero-length messages f6d80b104f904 can: usb: f81604: correctly anchor the urb in the read bulk callback 1cf469026d4a2 can: ems_usb: ems_usb_read_bulk_callback(): check the proper length of a message c3f1672eaea68 net: usb: pegasus: validate USB endpoints 011684cd18349 net: usb: kalmia: validate USB endpoints 2795fc06e7652 net: usb: kaweth: validate USB endpoints 00477cab053dc nfc: pn533: properly drop the usb interface reference on disconnect cfd94642025e6 media: dvb-core: fix wrong reinitialization of ringbuffer on reopen 3acc627f235a9 namespace: fix proc mount iteration a80161c20370d eventpoll: Fix integer overflow in ep_loop_check_proc() 14a1db2486fa2 net: arcnet: com20020-pci: fix support for 2.5Mbit cards 9498fa25a0b0d drm/i915/dp: Fix pipe BPP clamping due to HDR 99f617ea2ff01 drm/i915/dp: Fail state computation for invalid DSC source input BPP values b05ed70feb668 LoongArch: Remove some extern variables in source files 079deecc2c9f5 LoongArch: Handle percpu handler address for ORC unwinder e7c58045ad8c2 LoongArch: Remove unnecessary checks for ORC unwinder e653c0718cf57 mm/slab: use prandom if !allow_spin d3043852fffa5 slub: remove CONFIG_SLUB_TINY specific code paths 58aef054b2908 hwmon: (max16065) Use READ/WRITE_ONCE to avoid compiler optimization induced race 378dff71efddd drm/amd: Fix hang on amdgpu unload by using pci_dev_is_disconnected() 6c80b35076bcf PM: sleep: core: Avoid bit field races related to work_in_progress 5ec1d82f00b1c btrfs: zoned: fixup last alloc pointer after extent removal for RAID0/10 4b508c53f3c50 btrfs: define the AUTO_KFREE/AUTO_KVFREE helper macros d2cfea67b1b95 KVM: x86: Add x2APIC "features" to control EOI broadcast suppression c6db0f4a1659e PCI: dwc: ep: Fix resizable BAR support for multi-PF configurations 7c0c4b7e84b7f PCI: dwc: Remove duplicate dw_pcie_ep_hide_ext_capability() function 794b08c501280 PCI: dwc: Add new APIs to remove standard and extended Capability 26f9e895616ba PCI: Add preceding capability position support in PCI_FIND_NEXT_*_CAP macros 7d610f643b04a ARM: dts: imx53-usbarmory: Replace license text comment with SPDX identifier f50c91272425b ACPI: APEI: GHES: Disable KASAN instrumentation when compile testing with clang < 18 0a654ac440c12 ACPI: APEI: GHES: Add helper for CPER CXL protocol errors checks baf4b13a4efc8 clk: tegra: tegra124-emc: fix device leak on set_rate() e5bdc2159f8b0 arm64: dts: rockchip: Fix rk3588 PCIe range mappings 7f8f4acf39269 arm64: dts: rockchip: Fix rk356x PCIe range mappings e70d5feb10c5b iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode 976c7a3750f71 Input: synaptics_i2c - guard polling restart in resume 9f5158454eaee Input: synaptics_i2c - replace use of system_wq with system_dfl_wq 1aa5833f29b88 media: iris: Add missing platform data entries for SM8750 448a7662ae135 media: iris: remove v4l2_m2m_ioctl_{de,en}coder_cmd API usage during STOP handling 2698731d25823 ext4: don't set EXT4_GET_BLOCKS_CONVERT when splitting before submitting I/O e56d023da3794 ext4: correct the comments place for EXT4_EXT_MAY_ZEROOUT 663efc5aac21f x86/uprobes: Fix XOL allocation failure for 32-bit tasks f7df71d26b308 unwind_user/x86: Teach FP unwind about start of function b9537a51b65af unwind_user/x86: Enable frame pointer unwinding on x86 6f553dbbb25d6 unwind: Implement compat fp unwind 5364f7bbd611a unwind: Simplify unwind_user_next_fp() alignment check c45026c4135d4 drm/tegra: dsi: fix device leak on probe 1e88b5f854bdb KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() 2dff8966a3a88 media: tegra-video: Fix memory leak in __tegra_channel_try_format() 7fc4b49474c83 accel/rocket: fix unwinding in error path in rocket_probe 17463839162f6 accel/rocket: fix unwinding in error path in rocket_core_init b62076e780a21 usb: gadget: f_ncm: align net_device lifecycle with bind/unbind ca9ca411bbcf9 usb: gadget: u_ether: Add auto-cleanup helper for freeing net_device f222eb16d597e usb: gadget: u_ether: add gether_opts for config caching 7bdff9b9b0c65 net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels ed9c15c7be25e Revert "PCI: dw-rockchip: Enumerate endpoints based on dll_link_up IRQ" 15a66eb1b2c6c PCI: dw-rockchip: Change get_ltssm() to provide L1 Substates info aad472c928c97 PCI: dwc: Add L1 Substates context to ltssm_status of debugfs 80d3a201d7add PCI: dw-rockchip: Configure L1SS support b1f114b7a6fac PCI: dwc: Advertise L1 PM Substates only if driver requests it 53abc9c613613 PCI: j721e: Add config guards for Cadence Host and Endpoint library APIs ee7f2ce97b082 PCI: j721e: Use devm_clk_get_optional_enabled() to get and enable the clock f69535b77fa05 memory: mtk-smi: fix device leak on larb probe b44d090d6ca15 memory: mtk-smi: fix device leaks on common probe a67540127042c x86/acpi/boot: Correct acpi_is_processor_usable() check again 1b99c0e5b6bd8 bpf: Improve bounds when tnum has a single possible value 50a4fab0887ea bpf: Introduce tnum_step to step through tnum's members 4c03342e5ac53 bpf: Add bitwise tracking for BPF_END 6c10b019785dc bpf: Fix race in devmap on PREEMPT_RT 7466ae2aeed48 bpf: Fix race in cpumap on PREEMPT_RT ecb4e02614b96 PCI: Correct PCI_CAP_EXP_ENDPOINT_SIZEOF_V2 value 878fddc519f75 spi: stm32: fix missing pointer assignment in case of dma chaining 130c436e71499 sched_ext: Fix SCX_EFLAG_INITIALIZED being a no-op flag 4778033781b5b selftests/bpf: Fix OOB read in dmabuf_collector 75d474702b2ba bpf: Fix stack-out-of-bounds write in devmap 519b1ad91de5b bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing 11d1d38087e72 ASoC: SDCA: Fix comments for sdca_irq_request() 5413b1c94cfe5 ALSA: usb: qcom: Correct parameter comment for uaudio_transfer_buffer_setup() 51c8bedb2d089 btrfs: fix compat mask in error messages in btrfs_check_features() 771c1e38385b0 btrfs: print correct subvol num if active swapfile prevents deletion 136e814d11766 btrfs: fix warning in scrub_verify_one_metadata() b178561ac38cd btrfs: fix objectid value in error message in check_extent_data_ref() 845c0f1ab54ef btrfs: fix incorrect key offset in error message in check_dev_extent_item() 5ba7d61b5416d btrfs: fix error message order of parameters in btrfs_delete_delayed_dir_index() d4f210de01eac btrfs: free pages on error in btrfs_uring_read_extent() c18c40e081c19 ALSA: hda: cs35l56: Fix signedness error in cs35l56_hda_posture_put() 73e8bdf142481 drm/amdgpu: Fix error handling in slot reset 5c42d9f8b0049 drm/amdgpu: Fix locking bugs in error paths 39ae59e5c1d88 drm/amdgpu: Unlock a mutex before destroying it 1753f5f81ab60 drm/amdgpu/userq: Do not allow userspace to trivially triger kernel warnings 6f60a783860c7 PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry 3d64dcc0799c2 arm64: io: Extract user memory type in ioremap_prot() 835da0da68d0f arm64: io: Rename ioremap_prot() to __ioremap_prot() 00ea0c8696b40 s390/vtime: Fix virtual timer forwarding d30168b0cbc13 s390/idle: Fix cpu idle exit cpu time accounting 3f89b61dd504c perf: Fix __perf_event_overflow() vs perf_remove_from_context() race b9db33aafc129 ALSA: usb-audio: Use inclusive terms 9a6693b598435 ALSA: usb-audio: Cap the packet size pre-calculations 4e3ca5f82346c drm/client: Do not destroy NULL modes 869c979f36574 zloop: check for spurious options passed to remove f6c6a888c8a41 zloop: advertise a volatile write cache 93b64bef8cd40 regulator: bq257xx: Fix device node reference leak in bq257xx_reg_dt_parse_gpio() bbc104dcfc59b scsi: ufs: core: Move link recovery for hibern8 exit failure to wl_resume 5fc4e150c5ada cxl: Fix race of nvdimm_bus object when creating nvdimm objects af9bf98896639 cxl: Move devm_cxl_add_nvdimm_bridge() to cxl_pmem.ko a29e637950631 cgroup/cpuset: Fix incorrect use of cpuset_update_tasks_cpumask() in update_cpumasks_hier() e540616ec3a51 drm/xe/wa: Steer RMW of MCR registers while building default LRC 3464e75175517 accel/amdxdna: Validate command buffer payload count 1500b31db9437 accel/amdxdna: Prevent ubuf size overflow 247cd87f04748 accel/amdxdna: Remove buffer size check when creating command BO c67ab059953e3 perf/core: Fix invalid wait context in ctx_sched_in() 9a3bcd2984b8d rseq: Clarify rseq registration rseq_size bound check comment 22a1536b3f5ac sched/fair: Fix lag clamp c1591343440ef sched/eevdf: Update se->vprot in reweight_entity() ee54b5ba72d42 sched/fair: Only set slice protection at pick time 99673934a89fe sched/fair: Fix zero_vruntime tracking 423b750d87d2e sched/fair: Introduce and use the vruntime_cmp() and vruntime_op() wrappers for wrapped-signed aritmetics 028084eca1691 sched/fair: Rename cfs_rq::avg_vruntime to ::sum_w_vruntime, and helper functions 50890a9a01f34 sched/fair: Rename cfs_rq::avg_load to cfs_rq::sum_weight 50b3d683dcd45 x86/cfi: Fix CFI rewrite for odd alignments e58f1a9b0677d x86/fred: Correct speculative safety in fred_extint() ddbbdebeeea80 ALSA: usb-audio: Add QUIRK_FLAG_SKIP_IFACE_SETUP 71f72c5d74a98 ALSA: usb-audio: Remove VALIDATE_RATES quirk for Focusrite devices 561cefafd79dc ALSA: scarlett2: Fix DSP filter control array handling 38072446442c7 drm/imx: parallel-display: check return value of devm_drm_bridge_add() in imx_pd_probe() 824a7672e3540 scsi: pm8001: Fix use-after-free in pm8001_queue_command() c3598e86c916d scsi: lpfc: Properly set WC for DPP mapping 1883332bf21fe irqchip/sifive-plic: Fix frozen interrupt due to affinity setting 183a6264b32e4 drm/tiny: sharp-memory: fix pointer error dereference cd2713a37336d drm/fourcc: fix plane order for 10/12/16-bit YCbCr formats bce3847f7c51b KVM: arm64: Fix ID register initialization for non-protected pKVM guests 7a15a1e3228db KVM: arm64: Hide S1POE from guests when not supported by the host f8a6eba20edb9 drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse() a473c09666f0c debugobject: Make it work with deferred page initialization - again 531f455897877 drm/vmwgfx: Return the correct value in vmw_translate_ptr functions 2633a30eb45bc drm/vmwgfx: Fix invalid kref_put callback in vmw_bo_dirty_release c27dea9f50ed5 perf/core: Fix refcount bug and potential UAF in perf_mmap 6258e292d7463 Linux 6.18.16 0ac822bf99024 drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v7 f1ba620f9e8d7 most: core: fix leak on early registration failure c954666a07079 arm64: Fix sampling the "stable" virtual counter in preemptible section 164f57cd0ac86 xfs: fix copy-paste error in previous fix ea39bac434c51 drm/i915/wakeref: clean up INTEL_WAKEREF_PUT_* flag macros b0bc1aaf938d9 Revert "ACPI: processor: Update cpuidle driver check in __acpi_processor_start()" b9f13e55168c1 ALSA: pcm: Revert bufs move in snd_pcm_xfern_frames_ioctl() 6789db2c8e2fa NTB: ntb_transport: Fix too small buffer for debugfs_name 358cb7055e03d rust: list: Add unsafe blocks for container_of and safety comments 49ffdc3589d82 tracing: Wake up poll waiters for hist files when removing an event d4e45ca6db678 tracing: Fix checking of freed trace_event_file for hist files c71ea5a712339 fgraph: Do not call handlers direct when not using ftrace_ops 5026010110a5a tracing: ring-buffer: Fix to check event length before using bc77986f3cb74 ring-buffer: Fix possible dereference of uninitialized pointer c692db813a7e3 net: nfc: nci: Fix parameter validation for packet data b1e034af484a4 drm/amdgpu: keep vga memory on MacBooks with switchable graphics 832f430b6b337 drm/amd/display: Correct logic check error for fastboot 53002567af57b arm64: Force the use of CNTVCT_EL0 in __delay() 0ec0156b3fa6a rust: pin-init: replace clippy `expect` with `allow` dddc9e67fc454 rust: irq: add `'static` bounds to irq callbacks a94f096e28bfc io_uring/zcrx: fix user_ref race between scrub and refill paths 581a8f0f3338b x86/kexec: Copy ACPI root pointer address from config table 54f463494eb5b gpio: sysfs: fix chip removal with GPIOs exported over sysfs 4ece5eb4836f8 net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() 1b1d3c5d58a80 net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle ffba51100ff61 drm/xe: Add bounds check on pat_index to prevent OOB kernel read in madvise ea33c43c2e403 kbuild: rpm-pkg: Disable automatic requires for manual debuginfo package caa055b579cd4 ASoC: amd: yc: Add DMI quirk for ASUS Vivobook Pro 15X M6501RR 422adc95ea9a8 io_uring/cmd_net: fix too strict requirement on ioctl 89f3d2d541351 gpio: nomadik: Add missing IS_ERR() check 7c9ce68192eef cifs: some missing initializations on replay f1ae403324311 io_uring/zcrx: fix sgtable leak on mapping failures bcf40ce466650 fbcon: Remove struct fbcon_display.inverse c61afb99c8289 fbdev: ffb: fix corrupted video output on Sun FFB1 69290f2d3999c fbdev: of: display_timing: fix refcount leak in of_get_display_timings() 40c1ff2502515 fbdev: vt8500lcdfb: fix missing dma_free_coherent() 11a93180a70bb fbcon: check return value of con2fb_acquire_newinfo() 0a08a7fa123c0 fbdev: Use device_create_with_groups() to fix sysfs groups registration race 861fb0cc95d5d mm: numa_memblks: Identify the accurate NUMA ID of CFMW e90346a2f1e89 ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data() 3d01d8a2cc64a kbuild: rpm-pkg: Fix manual debuginfo generation when using .src.rpm 39824c8ce0c25 kernel: rpm-pkg: Restore find-debuginfo.sh approach to -debuginfo package 0ee1887b524ce kbuild: rpm-pkg: Restrict manual debug package creation 972495bc37be3 kbuild: Fix CC_CAN_LINK detection f8d02862e520b function_graph: Restore direct mode when callbacks drop to one e4ff4e3ffcf9d atm: fore200e: fix use-after-free in tasklets during device removal 41023fc00f370 net: intel: fix PCI device ID conflict between i40e and ipw2200 23b82b7a26182 mm/page_alloc: clear page->private in free_pages_prepare() e116e19c95845 mm/vmscan: fix demotion targets checks in reclaim/demotion 8adaff87db143 procfs: fix possible double mmput() in do_procmap_query() f64491066c662 mm/page_alloc: skip debug_check_no_{obj,locks}_freed with FPI_TRYLOCK 5eac1322a7b14 mm/hugetlb: restore failed global reservations to subpool 89a9389ad70d3 drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify be9c5e7af6b3a drm/amd/display: Increase DCN35 SR enter/exit latency cc54e0eeee01a io_uring/openclose: fix io_pipe_fixed() slot tracking for specific slots 749b5e65ab699 io_uring/filetable: clamp alloc_hint to the configured alloc range e18d1a82a62e8 ceph: fix write storm on fscrypted files 746840c87d76b ceph: do not propagate page array emplacement errors as batch errors 0b9c58126ad1f tracing: Reset last_boot_info if ring buffer is reset 127f9481ea77b tracing: Fix to set write permission to per-cpu buffer_size_kb 316d9fe71fb18 net: macb: Fix tx/rx malfunction after phy link down and up 4cbc8dc736c72 net: ti: icssg-prueth: Add optional dependency on HSR 6d389382ee655 octeontx2-af: CGX: fix bitmap leaks d8a522085d09b net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean() 938cf039a6835 net: ethernet: marvell: skge: remove incorrect conflicting PCI ID 78dd793ae6dcf LoongArch: Disable instrumentation for setup_ptwalker() 76a0e30a1cea1 LoongArch: Guard percpu handler under !CONFIG_PREEMPT_RT 0811b951377e3 LoongArch: Use %px to print unmodified unwinding address 7a6b754bddd34 LoongArch: Prefer top-down allocation after arch_mem_init() 61a56df2fbaad LoongArch: Make cpumask_of_node() robust against NUMA_NO_NODE 353dd9934447b mm/slab: do not access current->mems_allowed_seq if !allow_spin f843be7642041 rust: kbuild: pass `-Zunstable-options` for Rust 1.95.0 2d11f9cff0a7b drm/i915/quirks: Fix device id for QUIRK_EDP_LIMIT_RATE_HBR2 entry 69e59a87bab0e ceph: supply snapshot context in ceph_zero_partial_object() a2d53aee3fe2d MIPS: rb532: Fix MMIO UART resource registration 3969db6b22e3d cifs: Fix locking usage for tcon fields 80a2e762b2177 i2c: imx-lpi2c: fix SMBus block read NACK after byte count 5e227857fcd94 watchdog/softlockup: fix sample ring index wrap in need_counting_irqs() d14871ce0b400 kcsan, compiler_types: avoid duplicate type issues in BPF Type Format 677490a6bd4c6 staging: rtl8723bs: fix null dereference in find_network 7e4d88e36e5d0 mptcp: pm: in-kernel: always set ID as avail when rm endp 2f33f77397dd1 parisc: kernel: replace kfree() with put_device() in create_tree_node() bd435f4b73813 PCI: Fix pci_slot_trylock() error handling 627f0ea6537ce PCI: Don't claim disabled bridge windows 29739ec197ed6 net: cpsw_new: Fix potential unregister of netdev that has not been registered yet 299b825716b82 net: cpsw_new: Fix unnecessary netdev unregistration in cpsw_probe() error path fc58ef30e0a15 drm/amdgpu: Protect GPU register accesses in powergated state in some paths bfcd6b53e1f4f drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() d58f8d4dcfb1c tipc: fix RCU dereference race in tipc_aead_users_dec() ead66f2ed16f3 mtd: rawnand: pl353: Fix software ECC support 9799f977759e4 usb: dwc2: fix resume failure if dr_mode is host 2333653ef854c usb: dwc3: gadget: Move vbus draw to workqueue context 76096f156fe9d mux: mmio: fix regmap leak on probe failure e4010282364fc PCI: dwc: Fix msg_atu_index assignment b355d927109f1 MIPS: Loongson2ef: Use pcibios_align_resource() to block io range 3b8fa431e0354 MIPS: Loongson2ef: Register PCI controller in early stage 222afcca91f36 mm/slab: use unsigned long for orig_size to ensure proper metadata align 29659497e1001 mm/slab: avoid allocating slabobj_ext array from its own slab 78d8e2d6352e8 scsi: ufs: core: Flush exception handling work when RPM level is zero 08c7eadd8a934 perf/arm-cmn: Reject unsupported hardware configurations 500778df9e4c3 remoteproc: imx_rproc: Fix invalid loaded resource table detection 4c0382b86600e btrfs: continue trimming remaining devices on failure f4951c56d59c2 btrfs: zoned: fixup last alloc pointer after extent removal for DUP 72f6529487a37 btrfs: zoned: fixup last alloc pointer after extent removal for RAID1 25afd2a1ee4d2 btrfs: fix periodic reclaim condition da86ca15d7389 clk: rs9: Reserve 8 struct clk_hw slots for for 9FGV0841 4ce27e86d641c uprobes: Fix incorrect lockdep condition in filter_chain() 956d54e07ca77 arm64: Fix non-atomic __READ_ONCE() with CONFIG_LTO=y bea1d373098b2 PCI/IOV: Fix race between SR-IOV enable/disable and hotplug 40f67686a5002 Revert "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV" f86582890bd7a kho: skip memoryless NUMA nodes when reserving scratch areas fdf605f64f824 crash_dump: fix dm_crypt keys locking and ref leak 36eb314184a0a kexec: derive purgatory entry from symbol 3bdc3766aafb0 ocfs2: fix reflink preserve cleanup issue e5a732bfe2945 rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net() 9f7a5aee91713 compiler-clang.h: require LLVM 19.1.0 or higher for __typeof_unqual__ d83396624fda6 mm/highmem: fix __kmap_to_page() build error 491f04be585c6 power: reset: tdx-ec-poweroff: fix restart bc1492651253e mtd: spinand: Disable continuous read during probe 5a435b0e46098 iio: gyro: itg3200: Fix unchecked return value in read_raw 9b85c8f624b0f powerpc/smp: Add check for kcalloc() failure in parse_thread_groups() 7441d35d14d9a vhost: move vdpa group bound check to vhost_vdpa dfcbe01951651 tools: Fix bitfield dependency failure 461242507181e arm64: poe: fix stale POR_EL0 values for ptrace e9051992fd21f dm mpath: make pg_init_delay_msecs settable b662f91e216fd bus: fsl-mc: fix an error handling in fsl_mc_device_add() ab81f9f3319e0 io_uring/net: don't continue send bundle if poll was required for retry bce59008b2347 mm/slab: add rcu_barrier() to kvfree_rcu_barrier_on_cache() f42941d60f01a usb: gadget: tegra-xudc: Add handling for BLCG_COREPLL_PWRDN 1afe45f89d54b mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node d4a132f121c59 x86/kexec: add a sanity check on previous kernel's ima kexec buffer 1ca6530f07d4a of/kexec: refactor ima_get_kexec_buffer() to use ima_validate_range() 9e1f51c1ad57c ima: verify the previous kernel's IMA buffer lies in addressable RAM 995240f823a32 PCI: Fix bridge window alignment with optional resources 26da747e754c6 nvmem: Drop OF node reference on nvmem_add_one_cell() failure 2eb988d5c8f8e nfsd: fix return error code for nfsd_map_name_to_[ug]id 6689272b82618 NFSD: fix setting FMODE_NOCMTIME in nfs4_open_delegation 9a6f8cd28bb9b md/bitmap: fix GPF in write_page caused by resize race b04baa848c054 xfs: check for deleted cursors when revalidating two btrees 2b658d1249666 xfs: check return value of xchk_scrub_create_subord c9ccefacae0d8 xfs: only call xf{array,blob}_destroy if we have a valid pointer c2ce8d9a3b989 pinctrl: intel: Add code name documentation 733cbc3aa97e7 PCI: endpoint: Fix swapped parameters in pci_{primary/secondary}_epc_epf_unlink() functions 57536ff0a6bd6 KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() aaaea528d4768 rust/drm: Fix Registration::{new,new_foreign_owned}() docs 71cfbc15c91a6 spmi: apple: Add "apple,t8103-spmi" compatible 18e9cf2259b41 xfs: get rid of the xchk_xfile_*_descr calls d1a3cc775c6e2 xfs: fix remote xattr valuelblk check 652d815b856c6 xfs: fix the xattr scrub to detect freemap/entries array collisions 43f3b18679615 xfs: fix freemap adjustments when adding xattrs to leaf blocks f31a8334e1c54 xfs: delete attr leaf freemap entries when empty d54f00547c210 usb: host: tegra: Remove manual wake IRQ disposal a50006e7ba0e3 iommu/arm-smmu-v3: Do not set disable_ats unless vSTE is Translate 779e0c250a6b8 iommu/arm-smmu-v3: Mark EATS_TRANS safe when computing the update sequence 3f73325f4548b iommu/arm-smmu-v3: Mark STE MEV safe when computing the update sequence efd59553e477f iommu/arm-smmu-v3: Add update_safe bits to fix STE update sequence a8e88edfd69df iio: accel: adxl380: Avoid reading more entries than present in FIFO 4828149214491 PCI/PM: Prevent runtime suspend until devices are fully initialized d6e866f3a183e arm64: dts: rockchip: Explicitly request UFS reset pin on RK3576 8d8a878ef6080 erofs: fix incorrect early exits in volume label handling 041b5163bb9b2 erofs: fix incorrect early exits for invalid metabox-enabled images 70746336cae66 mfd: omap-usb-host: Fix OF populate on driver rebind 2694660274408 mfd: qcom-pm8xxx: Fix OF populate on driver rebind a1e9e299c0d9e mfd: macsmc: Initialize mutex 89bdcd39ae8b1 mfd: tps65219: Implement LOCK register handling for TPS65214 9b02e3fec3a7f mfd: core: Add locking around 'mfd_of_node_list' 25056a2fc07fa KVM: arm64: nv: Return correct RES0 bits for FGT registers 8722a8fb7ed92 iommu/vt-d: Flush piotlb for SVM and Nested domain 9deaacc8dcadd iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode 69c32df23bed6 media: uvcvideo: Return queued buffers on start_streaming() failure 97330e31ea164 dm: fix excessive blk-crypto operations for invalid keys f122f2b3ce9db media: verisilicon: AV1: Fix tile info buffer size 457121c01f609 xfs: remove xfs_attr_leaf_hasname 00195330d172e xfs: mark data structures corrupt on EIO and ENODATA aacb5f183eac5 PCI: dwc: Skip waiting for L2/L3 Ready if dw_pcie_rp::skip_l23_wait is true 42d9509161d05 phy: fsl-imx8mq-usb: set platform driver data 5e27e7f229785 drm/bridge: anx7625: Fix invalid EDID size 6236c1cd9fdf4 drm/buddy: Prevent BUG_ON by validating rounded allocation ca666795bd61a selftests/mm/charge_reserved_hugetlb: drop mount size for hugetlbfs a39b9928fdfd5 mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations e14d5a99b1a6c docs: kdoc: avoid error_count overflows faccf9c1464aa drm: of: drm_of_panel_bridge_remove(): fix device_node leak 77f69aa4deb18 media: iris: Prevent output buffer queuing before stream-on completes 72846441c5f63 media: iris: gen2: Add sanity check for session stop 7cde76db8883e media: iris: gen1: Destroy internal buffers after FW releases 64e88089a2940 media: iris: Skip resolution set on first IPSC 45b30f65feeb4 media: iris: Add buffer to list only after successful allocation b59ec89f9cdf3 media: iris: use fallback size when S_FMT is called without width/height 101f2b3cd0b61 media: iris: Fix fps calculation 0cd7ca8e96034 media: iris: Fix ffmpeg corrupted frame error bd4f8fa216182 Revert "media: iris: Add sanity check for stop streaming" f3bf86dec1d8f media: venus: vdec: restrict EOS addr quirk to IRIS2 only fa71c413854bd media: venus: vdec: fix error state assignment for zero bytesused 21fde0b4b166d arm64: dts: rockchip: Do not enable hdmi_sound node on Pinebook Pro 428966f1151f3 drm/tyr: fix register name in error print 1a09db973ac6b rtc: pcf8563: use correct of_node for output clock dfe2dbe3950f6 dm-unstripe: fix mapping bug when there are multiple targets in a table 38625191f32f7 dm-integrity: fix recalculation in bitmap mode 76801c3dfca0a reset: gpio: suppress bind attributes in sysfs 2097ce274bbc5 drm/i915/psr: Don't enable Panel Replay on sink if globally disabled 4caae8168d1b8 mailbox: Prevent out-of-bounds access in fw_mbox_index_xlate() 2c89064ecf676 s390/pci: Handle futile config accesses of disabled devices directly b7bbd20d55cef clk: tegra: tegra124-emc: Fix potential memory leak in tegra124_clk_register_emc() 26b1c59da576a arm64: dts: rockchip: Fix SD card support for RK3576 EVB1 fed39f0d316f8 media: i2c: ov01a10: Fix digital gain range 4be6112c79b22 media: stm32: dcmipp: byteproc: disable compose for all bayers 49c7d405c6cad media: stm32: dcmipp: bytecap: clear all interrupts upon stream stop 23ad54f2551f7 media: stm32: dcmipp: avoid naming clock if only one is needed d13418d75e177 soc: rockchip: grf: Support multiple grf to be handled 833fd7ad595ff soc: rockchip: grf: Fix wrong RK3576_IOCGRF_MISC_CON definition 9785b31beb335 clk: clk-apple-nco: Add "apple,t8103-nco" compatible ef6647586deb7 bus: omap-ocp2scp: fix OF populate on driver rebind d464cf1ed900d KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation b7db9953c2f8d soc: ti: pruss: Fix double free in pruss_clk_mux_setup() ab1ac24c407e4 soc: ti: k3-socinfo: Fix regmap leak on probe failure b1c1a2637ebd6 dm: clear cloned request bio pointer when last clone bio completes 9e30eb22e03a4 dm-integrity: fix a typo in the code for write/discard race e3704ce5d7156 platform/x86: ISST: Store and restore all domains data 067d784870eed platform/x86: ISST: Add missing write block check 5ca94abfe5a0f media: staging/ipu7: Fix the loop bound in l2 table alloc 08440d792f97d media: staging/ipu7: Update CDPHY register settings 8603922f08d95 media: staging/ipu7: Call synchronous RPM suspend in probe failure 9a8c3cd8a0bbf media: staging/ipu7: Ignore interrupts when device is suspended 364759ccc3fb4 media: ipu6: Fix RPM reference leak in probe error paths 39b9626b0559d media: ipu6: Fix typo and wrong constant in ipu6-mmu.c 605e9a9471d28 media: dw9714: Fix powerup sequence fa69b9a87f898 media: i2c: ov5647: use our own mutex for the ctrl lock e26aba7c0e9e6 media: ccs: Fix setting initial sub-device state 78d2c1ca071de media: i2c: ov5647: Fix PIXEL_RATE value for VGA mode 1b593da3e54c8 media: i2c: ov5647: Sensor should report RAW color space ff90942181d00 media: i2c: ov5647: Correct minimum VBLANK value 8f5082ee17730 media: i2c: ov5647: Correct pixel array offset 8ecb21c20387c media: i2c: ov5647: Initialize subdev before controls a8ff58cc8c751 media: ccs: Avoid possible division by zero fade67c88870f media: qcom: camss: vfe: Fix out-of-bounds access in vfe_isr_reg_update() e5d08efceffc8 media: i2c: ov01a10: Fix test-pattern disabling 9466dc871c45a media: i2c: ov01a10: Fix passing stream instead of pad to v4l2_subdev_state_get_format() be04fe430bb0f media: i2c: ov01a10: Add missing v4l2_subdev_cleanup() calls 2195f2be8307f media: i2c: ov01a10: Fix analogue gain range e148cdc0f1228 media: i2c: ov01a10: Fix reported pixel-rate value 8df26a76497f0 media: i2c: ov01a10: Fix the horizontal flip control 377a775691436 media: i2c/tw9906: Fix potential memory leak in tw9906_probe() cc7aeed33e4f5 media: i2c/tw9903: Fix potential memory leak in tw9903_probe() 280da29ff6034 media: cx25821: Add missing unmap in snd_cx25821_hw_params() 9544b73cad4ee media: cx23885: Add missing unmap in snd_cx23885_hw_params() 1ce8c2a8f050a media: cx88: Add missing unmap in snd_cx88_hw_params() 1d8558a232ecb media: radio-keene: fix memory leak in error path 9e3b9d2472b36 media: verisilicon: AV1: Set IDR flag for intra_only frame type 1af2853b4e97f media: rockchip: rga: Fix possible ERR_PTR dereference in rga_buf_init() fe1c50fadc4eb media: amphion: Drop min_queued_buffers assignment a2ac388aa830a arm64: dts: apple: t8112-j473: Keep the HDMI port powered on e75e091a331e9 fs: ensure that internal tmpfs mount gets mount id zero 1acb28123e57b HID: logitech-hidpp: Check maxfield in hidpp_get_report_length() d5512ce892f77 HID: prodikeys: Check presence of pm->input_ep82 5bbe266272d86 HID: magicmouse: Do not crash on missing msc->input 1d46d07458dba HID: hid-pl: handle probe errors 4a1afa32145b5 pinctrl: meson: amlogic-a4: mark the GPIO controller as sleeping e3e6e2e4d66e5 arm64: Disable branch profiling for all arm64 code 969e5e13ff5c1 KVM: nSVM: Remove a user-triggerable WARN on nested_svm_load_cr3() succeeding 662fae91c30b1 KVM: x86: Return "unsupported" instead of "invalid" on access to unsupported PV MSR e28f45102510a powerpc/pseries: Fix MSI-X allocation failure when quota is exceeded 58bd8c5f67a3c arm64: kernel: initialize missing kexec_buf->random field c053b301a0b2d ARM: omap2: Fix reference count leaks in omap_control_init() 5d83ae6ccdc95 arm64: dts: qcom: sm8750: Fix BAM DMA probing b965b990c1913 arm64: dts: qcom: x1e80100: Add missing TCSR ref clock to the DP PHYs adae1932f01a5 media: verisilicon: AV1: Fix tx mode bit setting 93adedf67b07f media: verisilicon: AV1: Fix enable cdef computation ea316b784fe6a media: chips-media: wave5: Fix Null reference while testing fluster 27cb12b7dc88c media: chips-media: wave5: Fix SError of kernel panic when closed 526816f2e3319 media: chips-media: wave5: Fix device cleanup order to prevent kernel panic cc8071b1bac65 media: chips-media: wave5: Fix kthread worker destruction in polling mode 3a278a55ead50 media: chips-media: wave5: Fix PM runtime usage count underflow a62ba5aa9ee95 media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove() b3fc99fe5b256 media: mtk-mdp: Fix error handling in probe function d659f72af5666 media: mediatek: encoder: Fix uninitialized scalar variable issue e2a45398bba35 media: uvcvideo: Fix support for V4L2_CTRL_FLAG_HAS_WHICH_MIN_MAX 451cc650e40e8 dm-verity: correctly handle dm_bufio_client_create() failure 2e170d8bb3b3c arm64: dts: qcom: sdm630: Add missing MDSS reset c2b9214c34f57 phy: qcom: edp: Make the number of clocks flexible 6cc6c73a87c33 PCI: Use resource_set_range() that correctly sets ->end fcfdf9794afea Revert "PCI: dwc: Don't wait for link up if driver can detect Link Up event" f956c3c101e20 Revert "PCI: qcom: Enumerate endpoints based on Link up event in 'global_irq' interrupt" 46adbe1c144e3 Revert "PCI: qcom: Enable MSI interrupts together with Link up if 'Global IRQ' is supported" d6fecafe7b233 Revert "PCI: qcom: Don't wait for link if we can detect Link Up" 77ac28b38a860 Revert "PCI: dw-rockchip: Don't wait for link since we can detect Link Up" 4cccf815bccca drm/xe: Fix ggtt fb alignment cdf8bbbd9017a drm/tests: shmem: Hold reservation lock around purge 9cc77691b5fd6 drm/tests: shmem: Hold reservation lock around madvise 6b953d92f2f29 drm/tests: shmem: Hold reservation lock around vmap/vunmap 595227cf408fb drm/tests: shmem: Add clean-up action to unpin pages 496e765b72059 drm/tests: shmem: Swap names of export tests bfcee87fd1756 fpga: dfl: use subsys_initcall to allow built-in drivers to be added a0eb5f82212b3 ASoC: SOF: ipc4-control: Keep the payload size up to date c7bf344a83a10 ASoC: SOF: ipc4-control: Use the correct size for scontrol->ipc_control_data a704a1a4394b5 ASoC: SOF: ipc4-topology: Correct the allocation size for bytes controls c5fb5db719c7b ASoC: SOF: ipc4-control: If there is no data do not send bytes update ab8c0de60f16d drm/panthor: fix for dma-fence safe access rules a803cfad1f23c arm64: dts: ti: am62p-verdin: Fix SD regulator startup delay 0bcfebb83b546 hfsplus: ensure sb->s_fs_info is always cleaned up 428093cfa8b2b clk: renesas: rzg2l: Select correct div round macro 01dfc5abfa4df clk: renesas: rzg2l: Fix intin variable size 2e4a70f3c3091 rpmsg: core: fix race in driver_override_show() and use core helper f0a83d0a4b7c1 netfilter: nf_conntrack_h323: fix OOB read in decode_choice() 89764cf44544e dpaa2-switch: validate num_ifs to prevent out-of-bounds write 4cb163e9efcac net: consume xmit errors of GSO frames 57957bc7f1865 net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query f72f646a55524 net/mlx5: Fix missing devlink lock in SRIOV enable error path 5226e227271a2 net/mlx5: E-switch, Clear legacy flag when moving to switchdev f0ed27a3315f7 net/mlx5: LAG, disable MPESW in lag_disable_change() 858914d1ad190 net/mlx5: DR, Fix circular locking dependency in dump bce42728ac488 team: avoid NETDEV_CHANGEMTU event when unregistering slave 54a7013aa13fc team: use common function to compute the features 26924d2fdec2c net: add a common function to compute features for upper devices fa3c2f8d91523 net: mana: Fix double destroy_workqueue on service rescan PCI path f8a06d562638b dpll: zl3073x: Remove redundant cleanup in devm_dpll_init() 900be42c53cd9 tcp: re-enable acceptance of FIN packets when RWIN is 0 d3e32e2f3262f RDMA/umem: Fix double dma_buf_unpin in failure path 9d5a97bc71ed5 erofs: fix interlaced plain identification for encoded extents d2e7c898cc02d net: usb: pegasus: enable basic endpoint checking f3e4cceafad27 net: Drop the lock in skb_may_tx_timestamp() 9bc0bca26418a RDMA/efa: Fix typo in efa_alloc_mr() 2b96156c927cd RDMA/ionic: Fix potential NULL pointer dereference in ionic_query_port 3126a2f98beae netconsole: avoid OOB reads, msg is not nul-terminated 21d341fe514fd net: wan: farsync: Fix use-after-free bugs caused by unfinished tasklets e57d397bffaba RDMA/core: Fix stale RoCE GIDs during netdev events at registration d8fc9f972fbdd tipc: fix duplicate publication key in tipc_service_insert_publ() 9fc2e95fe5414 dpll: zl3073x: fix REF_PHASE_OFFSET_COMP register width for some chip IDs b2acd29bd4878 dpll: zl3073x: Cache all reference properties in zl3073x_ref a4b086cc61e6b dpll: zl3073x: Cache reference monitor status b1e3edf688a88 kcm: fix zero-frag skb in frag_list on partial sendmsg error 854cd32bc74fe tls: Fix race condition in tls_sw_cancel_work_tx() 5455a232edea6 net: do not pass flow_id to set_rps_cpu() 96581749c7c14 Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ 3a954c75b1cda Bluetooth: L2CAP: Fix not checking output MTU is acceptable on L2CAP_ECRED_CONN_REQ 69dd2e85f8e83 Bluetooth: L2CAP: Fix response to L2CAP_ECRED_CONN_REQ 49065204b95b8 Bluetooth: hci_qca: Cleanup on all setup failures e981a9392800c Bluetooth: L2CAP: Fix result of L2CAP_ECRED_CONN_RSP when MTU is too short 7010201831df0 Bluetooth: L2CAP: Fix invalid response to L2CAP_ECRED_RECONF_REQ 25c3e0de3b467 Remove WARN_ALL_UNSEEDED_RANDOM kernel config option 64ccb0aac41c5 wifi: brcmfmac: Fix potential kernel oops when probe fails 3c87b7e64735c wifi: cfg80211: wext: fix IGTK key ID off-by-one 3e14ba8b95c97 dma-mapping: avoid random addr value print out on error path ceae058eb707d ksmbd: fix signededness bug in smb_direct_prepare_negotiation() 0315bec883c67 ovpn: tcp - fix packet extraction from stream 8178567c6a97c bnxt_en: Fix deleting of Ntuple filters 079986d6db1f8 bnxt_en: Fix RSS context delete logic f27030ac5bef4 udplite: Fix null-ptr-deref in __udp_enqueue_schedule_skb(). 2d74412dfd362 net: ethernet: xscale: Check for PTP support properly cb8f0a3857386 net: phy: qcom: qca807x: normalize return value of gpio_get 9605406cf28fa proc: Fix pointer error dereference f3970be26a308 net: usb: lan78xx: scan all MDIO addresses on LAN7801 fc393af769af8 net: usb: kaweth: remove TX queue manipulation in kaweth_set_rx_mode 664e9df53226b espintcp: Fix race condition in espintcp_close() b640188b61e63 psp: use sk->sk_hash in psp_write_headers() fe89b2f05b854 tcp: fix potential race in tcp_v6_syn_recv_sock() 82c5acb68c639 ipv6: Move ipv6_fl_list from ipv6_pinfo to inet_sock. 59581778792cb xfrm: always flush state and policy upon NETDEV_UNREGISTER event f726b3a57e00b ipmi: ipmb: initialise event handler read bytes 27e70f32aef0a xfrm: skip templates check for packet offload tunnel mode c7221e7bd8fc2 xfrm6: fix uninitialized saddr in xfrm6_get_saddr() 5000ce7fcb310 iommu/amd: serialize sequence allocation under concurrent TLB invalidations a133e3caf844a ntb: ntb_hw_switchtec: Fix shift-out-of-bounds for 0 mw lut 2346856b74823 ntb: ntb_hw_switchtec: Fix array-index-out-of-bounds access 495d9cb4ed711 rtc: zynqmp: correct frequency value 630ace4d8286f drm/amdgpu: avoid sdma ring reset in sriov 7a7e7bcefdd3e drm/amd/display: Remove conditional for shaper 3DLUT power-on 581ed1a5a957a arm64: hugetlbpage: avoid unused-but-set-parameter warning (gcc-16) dd6e15658ab5d ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 d70d2a8a491e8 ASoC: amd: amd_sdw: add machine driver quirk for Lenovo models c19830db30a09 btrfs: replace BUG() with error handling in __btrfs_balance() 6af16f1b8649d ALSA: usb-audio: Add sanity check for OOB writes at silencing d6e933f29bc05 drm/radeon: Add HAINAN clock adjustment e341e18215030 spi: spidev: fix lock inversion between spi_lock and buf_lock 91e19be60e08b drm/amd/display: bypass post csc for additional color spaces in dal e3c0c83844791 drm/amdgpu: Add HAINAN clock adjustment e949fd266cfa1 ALSA: usb-audio: Update the number of packets properly at receiving ef8b0cc691f1a ALSA: hda/realtek: Fix headset mic on ASUS Zenbook 14 UX3405MA 8c545bcb1dabd drm/amdgpu: Adjust usleep_range in fence wait 89232d0db3ca9 drm/amdgpu: return when ras table checksum is error dea826897ea37 drm/amd/display: Avoid updating surface with the same surface under MPO a71819d2cc6f7 drm/amd/display: Fix system resume lag issue 16b65c8ca3160 ALSA: hda/tas2781: Ignore reset check for SPI device 96c5ea9e7a821 regulator: core: Remove regulator supply_name length limit 0be2f54012b45 ASoC: rt721-sdca: Fix issue of fail to detect OMTP jack type c57b6b4bc339a mshv: clear eventfd counter on irqfd shutdown 8ee9aa80d4f18 drm/amdgpu: Skip vcn poison irq release on VF dce5da49f65c7 drm/amd/display: Fix writeback on DCN 3.2+ b7af28b96ddce ARM: 9467/1: mm: Don't use %pK through printk 88c624236ef01 include: uapi: netfilter_bridge.h: Cover for musl libc dbf5c71218102 ACPI: x86: Force enabling of PWM2 on the Yogabook YB1-X90 5c4e940075bd6 thermal: int340x: Fix sysfs group leak on DLVR registration failure c1a0f5f1e5e7e libceph: define and enforce CEPH_MAX_KEY_LEN 5b75c7f24973c ceph: supply snapshot context in ceph_uninline_data() 57633b43a603f fs/ntfs3: avoid calling run_get_entry() when run == NULL in ntfs_read_run_nb_ra() b014372b62237 ntfs3: fix circular locking dependency in run_unpack_ex b67fb01429fff fs/ntfs3: drop preallocated clusters for sparse and compressed files 9779a6eaaabdf fs: ntfs3: fix infinite loop triggered by zero-sized ATTR_LIST c0b43c45d45f5 fs: ntfs3: fix infinite loop in attr_load_runs_range on inconsistent metadata b0ea441f44ce6 fs: ntfs3: check return value of indx_find to avoid infinite loop 843dc5c215186 MIPS: Loongson: Make cpumask_of_node() robust against NUMA_NO_NODE 54302ec38da41 iio: magnetometer: Remove IRQF_ONESHOT af51e8d99df78 iio: Use IRQF_NO_THREAD 12cb0a166dc4f mfd: intel-lpss: Add Intel Nova Lake-S PCI IDs fcfa64c535860 Revert "mfd: da9052-spi: Change read-mask to write-mask" 2a99af226fbbb phy: fsl-imx8mq-usb: disable bind/unbind platform driver feature c3be09c3c85bd phy: mvebu-cp110-utmi: fix dr_mode property read from dts c3beae1bed61d watchdog: rzv2h_wdt: Discard pm_runtime_put() return value d6014855a2cba watchdog: imx7ulp_wdt: handle the nowayout option 17de6ad1c32bf binder: don't use %pK through printk 5b3350e036670 fix it87_wdt early reboot by reporting running timer 812e5d3bcc1ea serial: 8250: 8250_omap.c: Clear DMA RX running status only after DMA termination is done cbe7f4bc2dc15 serial: 8250: 8250_omap.c: Add support for handling UART error conditions af48c1a0abe84 staging: rtl8723bs: fix memory leak on failure path f4fbf2d4750d1 usb: chipidea: udc: fix DMA and SG cleanup in _ep_nuke() 7a8ac86f5133c usb: gadget: f_fs: Fix ioctl error handling 09820593b5069 usb: gadget: f_fs: fix DMA-BUF OUT queues 2de2659c206bc iio: bmi270_i2c: Add MODULE_DEVICE_TABLE for BMI260/270 e86bc719b0618 pinctrl: renesas: rzt2h: Allow .get_direction() for IRQ function GPIOs d2975604bf1ba misc: ti_fpc202: fix a potential memory leak in probe function b6cfbd4701583 misc: eeprom: Fix EWEN/EWDS/ERAL commands for 93xx56 and 93xx66 822019d7516b3 pinctrl: mediatek: make devm allocations safer and clearer in mtk_eint_do_init() 3842f93e6e29d misc: bcm_vk: Fix possible null-pointer dereferences in bcm_vk_read() 4e033a7215df3 phy: cadence-torrent: restore parent clock for refclk during resume 4842c87399612 phy: ti: phy-j721e-wiz: restore mux selection during resume a6e099cda2473 dmaengine: stm32-mdma: initialize m2m_hw_period and ccr to fix warnings bc25f81a3f6e4 dmaengine: sun6i: Choose appropriate burst length under maxburst af0b99b2214a1 most: core: fix resource leak in most_register_interface error paths f907623616f7f fpga: of-fpga-region: Fail if any bridge is missing 2433adbe30bfa usb: typec: ucsi: psy: Fix voltage and current max for non-Fixed PDOs 006470339240c serial: 8250_dw: handle clock enable errors in runtime_resume 31dcb6316e250 staging: rtl8723bs: fix missing status update on sdio_alloc_irq() failure 487e455643c04 soundwire: intel_auxdevice: add cs42l45 codec to wake_capable_list c7ed6e59a58c7 soundwire: dmi-quirks: add mapping for Avell B.ON (OEM rebranded of NUC15) e7e5f19998a9f dmaengine: stm32-dma3: use module_platform_driver 59e7707492576 9p/xen: protect xen_9pfs_front_free against concurrent calls 80a27fb114f77 m68k: nommu: fix memmove() with differently aligned src and dest for 68000 479937252f44b HID: i2c-hid: Add FocalTech FT8112 534dbb6422f9a clk: microchip: core: correct return value on *_get_parent() 8d35f60ff0dc4 clk: renesas: rzg2l: Deassert reset on assert timeout f990244e0f07e clk: amlogic: remove potentially unsafe flags from S4 video clocks 803e99ee0d607 mailbox: sprd: clear delivery flag before handling TX done c6bc63adddc35 remoteproc: mediatek: Break lock dependency to `prepare_lock` 780185148d85c mailbox: sprd: mask interrupts that are not handled a60671946d85f mailbox: mchp-ipc-sbi: fix uninitialized symbol and other smatch warnings cf66aae883a5d mailbox: imx: Skip the suspend flag for i.MX7ULP 2f41bbab5e326 mailbox: pcc: Remove spurious IRQF_ONESHOT usage 95438699c9294 mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchp_ipc_get_cluster_aggr_irq() dd6c4b4632092 remoteproc: imx_dsp_rproc: Skip RP_MBOX_SUSPEND_SYSTEM when mailbox TX channel is uninitialized 359ca3038b77b tracing: Fix false sharing in hwlat get_sample() d451a01c5a143 riscv: vector: init vector context with proper vlenb 62b650c4c0ac0 scsi: ufs: mediatek: Fix page faults in ufs_mtk_clk_scale() trace event 25c429dd11785 vhost: fix caching attributes of MMIO regions by setting them explicitly 59e14a18a7d5b scsi: buslogic: Reduce stack usage 263fe43d87531 hisi_acc_vfio_pci: update status after RAS error 9443fe6d05d11 ata: libata: avoid long timeouts on hot-unplugged SATA DAS ba5a09630ebba um: Preserve errno within signal handler 7b7516ac611cb hisi_acc_vfio_pci: fix the queue parameter anomaly issue 61ad70c6c9085 RDMA/rtrs-clt: For conn rejection use actual err number d527695c1df09 hisi_acc_vfio_pci: resolve duplicate migration states e9cc097427e85 nfc: nxp-nci: remove interrupt trigger type 529eefdf98429 myri10ge: avoid uninitialized variable use fb108754550f8 PCI/bwctrl: Disable BW controller on Intel P45 using a quirk b8bd9fe67041c PCI: Mark Nvidia GB10 to avoid bus reset 551f16cd696e5 PCI: Add ACS quirk for Qualcomm Hamoa & Glymur 8d3fc66a008bc PCI: Enable ACS after configuring IOMMU for OF platforms d60ed85b84191 PCI: Fix pci_slot_lock () device locking cad253d055e25 PCI/AER: Clear stale errors on reporting agents upon probe a175a76147382 PCI: Mark ASM1164 SATA controller to avoid bus reset 14eae5564053a net/rds: Clear reconnect pending bit a036d058f5ef0 vmw_vsock: bypass false-positive Wnonnull warning with gcc-16 c55ba9760662e net: usb: sr9700: remove code to drive nonexistent multicast filter 90ecae0dece4d ptp: ptp_vmclock: add 'VMCLOCK' to ACPI device match 5baf9dc03e84d bnxt_en: Allow ntuple filters for drops 211958e721983 wifi: ath10k: fix lock protection in ath10k_wmi_event_peer_sta_ps_state_chg() 0e12a252ec4b8 wifi: rtw89: pci: restore LDO setting after device resume 2f4de7738aded net: sfp: add quirk for Lantech 8330-265D 8052d0587fb14 octeontx2-af: Workaround SQM/PSE stalls by disabling sticky ea3f3de49cb69 Bluetooth: btusb: Add device ID for Realtek RTL8761BU c87634f7b51f2 Bluetooth: btusb: Add new VID/PID for RTL8852CE e1b2d0394c8bd Bluetooth: hci_conn: use mod_delayed_work for active mode timeout 113eeb6e2f94e Bluetooth: btusb: Add USB ID 0489:e112 for Realtek 8851BE a6cbc4f5a6fdb Bluetooth: hci_conn: Set link_policy on incoming ACL connections 4a300678ab7cc Bluetooth: hci_qca: Fix SSR (SubSystem Restart) fail when BT_EN is pulled up by hw 2d6160de5ff47 Bluetooth: btusb: Add support for MediaTek7920 0489:e158 f7e05f08849f6 ipv4: fib: Annotate access to struct fib_alias.fa_state. ebeaa3b24ba56 wifi: rtw89: pci: validate release report content before using for RTL8922DE 9e4da6e3907c7 wifi: iwlegacy: add missing mutex protection in il3945_store_measurement() 998e57caaa469 wifi: iwlegacy: add missing mutex protection in il4965_store_tx_power() 6b36e5c4741f1 net: hns3: extend HCLGE_FD_AD_QID to 11 bits b76eab322b7d9 ipv4: igmp: annotate data-races around idev->mr_maxdelay 00b36860495ba gro: change the BUG_ON() in gro_pull_from_frag0() afe908432e443 ext4: propagate flags to convert_initialized_extent() 899ef00963ce7 net/rds: No shortcut out of RDS_CONN_ERROR 4db148f74a99f wifi: rtw89: 8922a: add digital compensation for 2GHz 98a774e2c58df wifi: rtw89: fix unable to receive probe responses under MLO connection 6944aaa804af2 driver core: faux: stop using static struct device e1c24d4cd1610 wifi: iwlwifi: mld: Fix primary link selection logic 83f0bb907cc81 wifi: iwlwifi: mld: fix chandef start calculation 1d49a42717bdc wifi: iwlwifi: fix 22000 series SMEM parsing ece13ddb9791e wifi: iwlwifi: mvm: check the validity of noa_len f181a659909f1 wifi: iwlwifi: mld: Handle rate selection for NAN interface 3d39d78b8d487 PCI: imx6: Add CLKREQ# override to enable REFCLK for i.MX95 PCIe 9650627d0757a net: usb: r8152: fix transmit queue timeout a729596086984 openrisc: define arch-specific version of nop() 5e13d0a376669 netfilter: xt_tcpmss: check remaining length before reading optlen 29f51913cb77c netfilter: nf_conntrack: Add allow_clash to generic protocol handler 74431472d16eb ext4: use reserved metadata blocks when splitting extent on endio 3b3c11f944bd9 ext4: mark group extend fast-commit ineligible bf5b609524497 ext4: move ext4_percpu_param_init() before ext4_mb_init() 27a99fa312527 ext4: mark group add fast-commit ineligible c315d742675a5 ipv6: exthdrs: annotate data-race over multiple sysctl 58e7c79cf0a3a ipv6: annotate data-races in net/ipv6/route.c 7d4c7533b632c ipv6: annotate data-races over sysctl.flowlabel_reflect ccaff26fac79f ipv6: annotate data-races in ip6_multipath_hash_{policy,fields}() 08e7ae48e175c wifi: cfg80211: allow only one NAN interface, also in multi radio 8362565a6905a wifi: ath12k: fix mac phy capability parsing e8ce435b9b1ff wifi: ath12k: fix preferred hardware mode calculation 5358df6e61c6f wifi: ath11k: Fix failure to connect to a 6 GHz AP 0e76bc37f1922 wifi: ath11k: add pm quirk for Thinkpad Z13/Z16 Gen1 4b4784394099d wifi: rtw89: disable EHT protocol by chip capabilities 4d510f668f0f7 PCI: dw-rockchip: Disable BAR 0 and BAR 1 for Root Port 717fc84f180d0 wifi: rtw89: wow: add reason codes for disassociation in WoWLAN mode fa8301c29079a wifi: rtw89: mac: correct page number for CSI response ef7fa19809b2d wifi: rtw89: pci: validate sequence number of TX release report ffbcca93034f1 wifi: rtw89: Add support for MSI AX1800 Nano (GUAX18N) e15768e688201 iommu/amd: move wait_on_sem() out of spinlock 3308c7504e093 wifi: libertas: fix WARNING in usb_tx_block 27272429732d9 rtla: Fix NULL pointer dereference in actions_parse 1260bee014931 wifi: rtw89: fix potential zero beacon interval in beacon tracking fce7f6f639154 net: wwan: mhi: Add network support for Foxconn T99W760 c7e5d819388e5 iommu/arm-smmu-v3: Improve CMDQ lock fairness and efficiency 6cdb21e0c9fde dm: remove fake timeout to avoid leak request 8f220e851a00b dm: replace -EEXIST with -EBUSY 6b20fde2f14b3 wifi: rtw89: regd: 6 GHz power type marks default when inactive f85d790c3cb70 wifi: rtw88: Fix inadvertent sharing of struct ieee80211_supported_band data ad9b80ee310ed wifi: rtw88: Use devm_kmemdup() in rtw_set_supported_band() 6552d7992860f wifi: rtw89: mcc: reset probe counter when receiving beacon 5a7362a3b6132 wifi: rtw89: setting TBTT AGG number when mac port initialization efa0f7fa3a438 wifi: rtw89: ser: enable error IMR after recovering from L1 232418bbe0261 wifi: rtw89: 8922a: set random mac if efuse contains zeroes e1958f4d66a57 wifi: rtw88: rtw8821cu: Add ID for Mercusys MU6H 509becaee5680 wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_config_trx_mode() 3cf7a584327a6 wifi: rtw88: fix DTIM period handling when conf->dtim_period is zero cf0e2c8313613 PCI: dwc: Skip PME_Turn_Off broadcast and L2/L3 transition during suspend if link is not up fe136426e30ca jfs: nlink overflow in jfs_rename 974dac536e8c9 jfs: Add missing set_freezable() for freezable kthread 8e5297128563d ALSA: usb-audio: Add iface reset and delay quirk for AB13X USB Audio e6645e625480c ALSA: mixer: oss: Add card disconnect checkpoints 572e4274251fb ALSA: hda/realtek - Enable mute LEDs on HP ENVY x360 15-es0xxx 2d8f056e9c68f ASoC: fsl: imx-rpmsg: use snd_soc_find_dai_with_mutex() in probe c3ac651a4f89b spi: geni-qcom: Fix abort sequence execution for serial engine errors 42068f7dd42b5 ASoC: SOF: Intel: hda: Fix NULL pointer dereference 9da857e6b5fd8 power: sequencing: fix missing state_lock in pwrseq_power_on() error path aba5b98c41088 modpost: Amend ppc64 save/restfpr symnames for -Os build cafea2adb3583 ASoC: es8328: Add error unwind in resume 460796f33df7d HID: logitech-hidpp: Add support for Logitech K980 c8cde3ddd12ad hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin 5e13b9b341ee7 hwmon: (f71882fg) Add F81968 support 3fa44a5e3bc77 hwmon: (emc2305) Fix a resource leak in emc2305_of_parse_pwm_child da684ff541a42 hwmon: (nct6683) Add customer ID for ASRock Z590 Taichi cabde1dddad3b hwmon: (nct6775) Add ASUS Pro WS WRX90E-SAGE SE 3f0aa5f0794a7 hwmon: (dell-smm) Add support for Dell OptiPlex 7080 ff0827301718d ASoC: codecs: max98390: Check return value of devm_gpiod_get_optional() in max98390_i2c_probe() f752cc300fa03 spi: cadence-qspi: Try hard to disable the clocks cf2a37be899dc drm/amdgpu: validate user queue size constraints 25c5065bb6766 drm/amd/display: avoid dig reg access timeout on usb4 link training fail 2d02b419ef8d1 drm/amd/display: Fix GFX12 family constant checks 30ed220ddcb89 spi: spi-mem: Protect dirmap_create() with spi_mem_access_start/end 588faab060c54 ASoC: sunxi: sun50i-dmic: Add missing check for devm_regmap_init_mmio ffb5fde572e94 gpio: aspeed-sgpio: Change the macro to support deferred probe 62914b5c29552 ALSA: hda/realtek: fix LG Gram Style 14 speakers 06d929be11327 ALSA: hda/conexant: Add headset mic fix for MECHREVO Wujie 15X Pro a36e053b16804 HID: elecom: Add support for ELECOM HUGE Plus M-HT1MRBK 37914cef17eee media: uvcvideo: Create an ID namespace for streaming output terminals 882974699753f HID: multitouch: add eGalaxTouch EXC3188 support 16790e7e2987d drm/amd/display: Revert "init dispclk from bootup clock for DCN315" 37282c9129fd6 media: rkisp1: Fix filter mode register configuration 7b4d0fab3ff2c drm/atmel-hlcdc: fix use-after-free of drm_crtc_commit after release f1f3e18596e2e drm/atmel-hlcdc: don't reject the commit if the src rect has fractional parts 082271e364a32 drm/atmel-hlcdc: fix memory leak from the atomic_destroy_state callback 1e89f8a2e8b00 drm/amd/display: Ensure link output is disabled in backend reset for PLL_ON 5f0c5775d4eeb drm/amd/display: Disable FEC when powering down encoders bc8b167f031ad PCI: Add Intel Nova Lake audio Device ID d5262b2ee0620 ASoC: soc-acpi-intel-arl-match: change rt722 amp endpoint to aggregated cfe928c39b48f virt: vbox: uapi: Mark inner unions in packed structs as packed b856cf4a15500 hyper-v: Mark inner union in hv_kvp_exchg_msg_value as packed 79f42487ed60d drm: renesas: rz-du: mipi_dsi: fix kernel panic when rebooting for some panels cb8b9a1755fe9 drm: Account property blob allocations to memcg 662ec0a17b504 drm/amdkfd: Fix GART PTE for non-4K pagesize in svm_migrate_gart_map() acfc84cfa70ac drm/amdkfd: Relax size checking during queue buffer get 6eb9fc7d451ce ALSA: usb-audio: presonus s18xx uses little-endian 9745c2561e55f ALSA: hda/realtek: add HP Victus 16-e0xxx mute LED quirk c626a9b6b7ff2 media: ipu6: Always close firmware stream eb7cdb7ab50b0 media: ipu6: Close firmware streams on streaming enable failure 5d5190cbc4bbe media: ipu6: Ensure stream_mutex is acquired when dealing with node list e913d0d8e26cd media: mt9m114: Return -EPROBE_DEFER if no endpoint is found 7bccb94dff567 media: mt9m114: Avoid a reset low spike during probe() b02bcb378efa8 media: v4l2-async: Fix error handling on steps after finding a match 2e9d6b58ab814 media: qcom: camss: Do not enable cpas fast ahb clock for SM8550 VFE lite b7210170b10e2 media: cx25821: Fix a resource leak in cx25821_dev_setup() d29f33b2cf98e media: solo6x10: Check for out of bounds chip_id 2011929f0e4cf media: pvrusb2: fix URB leak in pvr2_send_request_ex d484d11030aae media: adv7180: fix frame interval in progressive mode 2f5427d8726b2 drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove() 7c0feaa0026ba media: amphion: Clear last_buffer_dequeued flag for DEC_CMD_START efa59cc2142db cgroup/cpuset: Don't fail cpuset.cpus change in v2 b725955d651df spi: spi-mem: Limit octal DTR constraints to octal DTR situations 677681a41fc97 ASoC: wm8962: Don't report a microphone if it's shorted to ground on plug 669220b2fca69 ASoC: wm8962: Add WM8962_ADC_MONOMIX to "3D Coefficients" mask a85e45fcff1ba drm/xe: Only toggle scheduling in TDR if GuC is running dc3097ef16e7e drm/amd/display: only power down dig on phy endpoints 2b9e44b3849fd drm/amdgpu: Skip loading SDMA_RS64 in VF 409d19050cde8 HID: multitouch: add quirks for Lenovo Yoga Book 9i 5ed818e9560f1 HID: pidff: Do not set out of range trigger button 18750cac9b015 HID: apple: Add "SONiX KN85 Keyboard" to the list of non-apple keyboards e9e477d3197f7 drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v4 486b2909ac284 drm/amd/display: Add signal type check for dcn401 get_phyd32clk_src f58458249d868 drm/amdgpu: avoid a warning in timedout job handler c10fe9471f3aa drm/amd/display: Fix dsc eDP issue 0b1005d5ca9a9 drm/amdgpu: add support for HDP IP version 6.1.1 20e248df7341b media: mediatek: vcodec: Don't try to decode 422/444 VP9 b173ba3365ff0 drm/panel: edp: add BOE NV140WUM-T08 panel 5e702ee8c7f5d media: chips-media: wave5: Process ready frames when CMD_STOP sent to Encoder b607b5e2c62b6 media: chips-media: wave5: Fix conditional in start_streaming 98c62dacabbd0 media: omap3isp: set initial format 7ab5e86088f29 media: omap3isp: isppreview: always clamp in preview_try_format() dd1bdabe47bce media: omap3isp: isp_video_mbus_to_pix/pix_to_mbus fixes 0290934d30abe drm/v3d: Set DMA segment size to avoid debug warnings bb09f4584aa2d spi: stm32: fix Overrun issue at < 8bpw acd80343470e5 gpio: pca953x: Add support for TCAL6408 TCAL6416 bbc6e7fc432c4 media: dvb-core: dmxdevfilter must always flush bufs f88cd8da2d28e ASoC: SOF: ipc4: Support for sending payload along with LARGE_CONFIG_GET 59b888198843e drm/amd/display: Don't disable DPCD mst_en if sink connected 7df6fe98b24de drm/amd/display: Add USB-C DP Alt Mode lane limitation in DCN32 08dca4c8099a4 spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing 00f77947972ed spi-geni-qcom: use xfer->bits_per_word for can_dma() 97872d00da3cf spi-geni-qcom: initialize mode related registers to 0 b3d6ca4f27d49 drm/amdkfd: Handle GPU reset and drain retry fault race 0bd968c04acfb drm/panel-edp: Add AUO B140QAX01.H panel 79c5cbeba6b0e drm/amd/display: Guard FAMS2 configuration updates 7ad1f6f9476b5 drm/amd/display: Correct FIXED_VS Link Rate Toggle Condition 0b7f78caeffa5 drm/amdgpu/ras: Move ras data alloc before bad page check a25cf4a927a7c drm/amdgpu: fix the calculation of RAS bad page number 276028fd9b60b drm/amdgpu: fix NULL pointer issue buffer funcs 31a1fb32f5ebd accel/amdxdna: Fix tail-pointer polling in mailbox_get_msg() 6ca4647a74155 gpu/panel-edp: add AUO panel entry for B140HAN06.4 d380351cbefe0 drm/xe/xe3_lpg: Apply Wa_16028005424 49355c85b4cd9 drm/panthor: Always wait after sending a command to an AS 4d2ccdea18b56 drm/display/dp_mst: Add protection against 0 vcpi 86017c455e0a5 drm/xe/vm: Skip ufence association for CPU address mirror VMA during MAP e72721081bd1a drm/xe: Covert return of -EBUSY to -ENOMEM in VM bind IOCTL 2583ab12055dd drm/xe/ggtt: Use scope-based runtime pm 3db57975e9880 parisc: Prevent interrupts during reboot 707a77b9c6fd5 x86/sev: Use kfree_sensitive() when freeing a SNP message descriptor 45395efdf6a65 soc: imx8m: Fix error handling for clk_prepare_enable() 4567753827088 arm64: tegra: smaug: Add usb-role-switch support 6e1486257a2e8 EDAC/igen6: Add two Intel Amston Lake SoCs support 3a72bf74f50a6 EDAC/igen6: Add more Intel Panther Lake-H SoCs support 3983ef126e439 Revert "arm64: zynqmp: Add an OP-TEE node to the device tree" 919785992a371 firmware: arm_ffa: Unmap Rx/Tx buffers on init failure 2c99326dc1c79 pstore: ram_core: fix incorrect success return when vmap() fails db702ef6d9145 sched/debug: Fix updating of ppos on server write ops c075eb0d220da char: tpm: cr50: Remove IRQF_ONESHOT 4fa6bfa6dc2de mailbox: bcm-ferxrm-mailbox: Use default primary handler aaaa758294fb1 crypto: hisilicon/qm - move the barrier before writing to the mailbox register a048eb4e37ea7 bpftool: Fix dependencies for static build aee8db5f04861 PCI/MSI: Unmap MSI-X region on error 716f777b6c9b7 clocksource/drivers/timer-integrator-ap: Add missing Kconfig dependency on OF bc59d5f3afe41 clocksource/drivers/sh_tmu: Always leave device running after probe 1088d3cb5b5ba arm64/ftrace,bpf: Fix partial regs after bpf_prog_run e1886b473131b perf/core: Fix slow perf_event_task_exit() with LBR callstacks df02c3ff3be4b bpf: Properly mark live registers for indirect jumps aae391a79f2a1 genirq/cpuhotplug: Notify about affinity changes breaking the affinity mask 4c122e8ae1495 bpf: Recognize special arithmetic shift in the verifier c1357b496286d bpf: net_sched: Use the correct destructor kfunc type 50d6fd69388cc bpf: crypto: Use the correct destructor kfunc type c67bbeb87aea0 gendwarfksyms: Fix build on 32-bit hosts cf9e5b8b9e312 perf/x86/intel: Add Airmont NP 40497751c3f9b perf/x86/cstate: Add Airmont NP 89571b4a886f6 perf/x86/msr: Add Airmont NP 501c84f42b89d irqchip/riscv-imsic: Add a CPU pm notifier to restore the IMSIC on exit bad352600722f bpf: verifier improvement in 32bit shift sign extension pattern c6a27aa658526 sparc: don't reference obsolete termio struct for TC* constants 6560e1d1fa324 sparc: Synchronize user stack on fork and clone f15b4e9286c7f block: decouple secure erase size limit from discard size limit ea53119b1dff2 blk-mq-sched: unify elevators checking for async requests 40932ac2433e8 blk-mq-debugfs: add missing debugfs_mutex in blk_mq_debugfs_register_hctxs() d39d675a43030 xenbus: Use .freeze/.thaw to handle xenbus devices 11d591f1d70e7 ACPI: battery: fix incorrect charging status when current is zero baeecf1ac9e8e ACPI: x86: s2idle: Invoke Microsoft _DSM Function 9 (Turn On Display) da0ce17c9d5c8 perf/cxlpmu: Replace IRQF_ONESHOT with IRQF_NO_THREAD 8e6ea0b484fa1 s390/perf: Disable register readout on sampling events f5b48df92c1cf cpufreq: dt-platdev: Block the driver from probing on more QC platforms e8d10ef5988ea rust: cpufreq: always inline functions using build_assert with arguments 24783dd06de87 md raid: fix hang when stopping arrays with metadata through dm-raid 721599e837d3f md-cluster: fix NULL pointer dereference in process_metadata_update 03e42b5f7ad4c alpha: fix user-space corruption during memory compaction bfc1a95012c4d io_uring/timeout: annotate data race in io_flush_timeouts() 790a984e34f3a powercap: intel_rapl: Add PL4 support for Ice Lake 2a9bf565d6fe4 ACPICA: Abort AML bytecode execution when executing AML_FATAL_OP 62dfb8ac00a5c ACPI: resource: Add JWIPC JVC9100 to irq1_level_low_skip_override[] 29f60d3d06818 ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() 25b290624b0e3 EFI/CPER: don't go past the ARM processor CPER record buffer 136093ba4161e APEI/GHES: ARM processor Error: don't go past allocated memory 6f5d41984ad89 APEI/GHES: ensure that won't go past CPER allocated record a8419f5f2c5f2 EFI/CPER: don't dump the entire memory region 142c444a395f4 ntfs: ->d_compare() must not block 6d61077981cfd x86/xen/pvh: Enable PAE mode for 32-bit guest only when CONFIG_X86_PAE is set c94ede3c436df rnbd-srv: Zero the rsp buffer before using it fd51d47fcacec arm64: Add support for TSV110 Spectre-BHB mitigation f4ac7292b635f perf/arm-cmn: Support CMN-600AE 8c7fdc39e38a1 s390/purgatory: Add -Wno-default-const-init-unsafe to KBUILD_CFLAGS c7671c46dab46 tools/power cpupower: Reset errno before strtoull() f699251d5a2d9 s390/boot: Add -Wno-default-const-init-unsafe to KBUILD_CFLAGS f0729486c9076 tools/cpupower: Fix inverted APERF capability check 6287eefaf21ec smb: client: prevent races in ->query_interfaces() 2e121c53b581e gfs2: fiemap page fault fix 327de5b59801b smb: client: add proper locking around ses->iface_last_update be0d85bc660af netfs: when subreq is marked for retry, do not check if it faced an error 66c3be4ac35d5 btrfs: handle user interrupt properly in btrfs_trim_fs() 4d49275175fdb btrfs: fallback to buffered IO if the data profile has duplication 082083c9fbd99 dlm: validate length in dlm_search_rsb_tree 31fefc18096cd minix: Add required sanity checking to minix_check_superblock() 75903591f869a dlm: fix recovery pending middle conversion 0e5806ef45f25 i3c: mipi-i3c-hci: Reset RING_OPERATION1 fields during init a2198bf95a4ae i3c: mipi-i3c-hci: Stop reading Extended Capabilities if capability ID is 0 98ddff8a90f82 i3c: master: svc: Initialize 'dev' to NULL in svc_i3c_master_ibi_isr() 67407d6abc952 hfsplus: pretend special inodes as regular files a2e8c144299c3 audit: add missing syscalls to read class c6f2c554dd8bd kselftest/kublk: include message in _Static_assert for C11 compatibility 42c32d7571ccd fs/buffer: add alert in try_to_free_buffers() for folios without buffers 956b1d8051cfa hfsplus: fix volume corruption issue for generic/498 4fed776ca8637 audit: add fchmodat2() to change attributes class 54694417d4384 hfsplus: fix volume corruption issue for generic/480 f13680f629348 statmount: permission check should return EPERM f987cbd82eb4c rtc: interface: Alarm race handling should not discard preceding error e1105da952143 perf test: Fix test case perftool-testsuite_report for s390 68ab096e361dd libperf build: Always place libperf includes first b0ae7a8272bfc perf build: Remove NO_LIBCAP that controls nothing 7f686fb319e68 perf vendor events amd: Fix Zen 5 MAB allocation events 13458b3b3df7a perf annotate: Fix BUILD_NONDISTRO=1 missing args->ms conversions to pointer 8943b2c49bd8c tools headers: Go back to include asm-generic/unistd.h for arm64 0abe77dcaca79 perf annotate: Fix memcpy size in arch__grow_instructions() 59a7c3c9c3128 perf tests sched: Avoid error in cleanup on loaded machines ddbf249d9923e perf maps: Fix reference count leak in maps__find_ams() 77c08fedf3f46 perf annotate: Fix args leak of map_symbol a7819ced00b9b perf cs-etm: Fix decoding for sparse CPU maps 8d0cf138d1831 perf tools: Get debug info of DSO properly 82b1f2b0e7abf perf symbol-elf: Fix leak of ELF files with GNU debugdata 055b4bce85bfc rtc: max31335: use correct CONFIG symbol in IS_REACHABLE() 46a2044778937 libsubcmd: Fix null intersection case in exclude_cmds() 68a9c15032e8f perf callchain: Fix srcline printing with inlines 27c53054d593c perf unwind-libdw: Fix invalid reference counts 62f730d55aac3 perf build: Raise minimum shellcheck version to 0.7.2 3b14096e0c9f5 perf test stat tests: Fix for virtualized machines b7621a279de3d perf test stat: Update test expectations and events df0dc1b06fb6b Linux 6.18.15 c1f305ac054f2 netfilter: nf_tables: add .abort_skip_removal flag for set types 2ad6657a787fe Linux 6.18.14 bcf08144a20af ata: libata-core: fix cancellation of a port deferred qc work 33abac5b5a530 ata: libata-eh: correctly handle deferred qc timeouts a488528a7182b drm/amd/display: Add an hdmi_hpd_debounce_delay_ms module a86c53332a81f net: stmmac: dwmac-loongson: Set clk_csr_i to 100-150MHz ff763ac977130 drm/amd/display: Clear HDMI HPD pending work only if it is enabled 5566ebcf41ae1 selftests/bpf: Test bpf_skb_check_mtu(BPF_MTU_CHK_SEGS) when transport_header is not set 73c2a1255f0fd io_uring/rsrc: clean up buffer cloning arg validation b20266f1880b1 Drivers: hv: vmbus: Use kthread for vmbus interrupts on PREEMPT_RT 4949e32387fe3 drm/exynos: vidi: fix to avoid directly dereferencing user pointer b5fc86d753dd4 drm/exynos: vidi: use priv->vidi_dev for ctx lookup in vidi_connection_ioctl() 5c8e29b5208b8 ALSA: hda/realtek: Add quirk for Samsung Galaxy Book3 Pro 360 (NP965QFG) 356a6afadb44a ALSA: hda/conexant: Fix headphone jack handling on Acer Swift SF314 6cadda9d1921d ALSA: hda/realtek: Add quirk for Gigabyte G5 KF5 (2023) 84dbf4feaa937 ASoC: dt-bindings: asahi-kasei,ak5558: Fix the supply names 1c1148cbebad2 ASoC: dt-bindings: asahi-kasei,ak4458: Fix the supply names 8562d921e4eeb ASoC: dt-bindings: asahi-kasei,ak4458: set unevaluatedProperties:false a16695e3ac32d dt-bindings: media: qcom,qcs8300-camss: Add missing power supplies 05072d352ed10 dt-bindings: phy: qcom-edp: Add missing clock for X Elite c20f925214249 SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path d79b9097a6a2b SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths 888cd7e40adb2 ata: libata-scsi: avoid Non-NCQ command starvation 410336fc82ac9 ata: libata-scsi: refactor ata_scsi_translate() 62a16b2e3ce9b ata: pata_ftide010: Fix some DMA timings 3be216fd6f89e ext4: use optimized mballoc scanning regardless of inode format 34c803edc0b33 ext4: always allocate blocks only from groups inode can use 3924aea2c33df ext4: fix dirtyclusters double decrement on fs shutdown 29a07d691d282 ext4: fix e4b bitmap inconsistency reports 12615ab4bfb69 ext4: fix memory leak in ext4_ext_shift_extents() 808f3191498f3 ext4: drop extent cache when splitting extent fails c2ee51d684adc ext4: drop extent cache after doing PARTIAL_VALID1 zeroout 5b1f429045331 ext4: don't cache extent during splitting extent d67c8ecf3d8fd ext4: don't zero the entire extent if EXT4_EXT_DATA_PARTIAL_VALID1 f86ddca5e4197 ext4: subdivide EXT4_EXT_DATA_VALID1 561834f6d6f52 MIPS: Work around LLVM bug when gp is used as global register variable fc086c0ce3db0 usb: cdns3: fix role switching during resume 557f65399133f drm/amd/display: Use same max plane scaling limits for all 64 bpp formats 9fbb4f14462f0 ASoC: rockchip: i2s-tdm: Use param rate if not provided by set_sysclk 7e92f716a55bf x86/hyperv: Fix error pointer dereference d7cf2314dd5e8 btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found 6ca11deb6c944 btrfs: use the correct type to initialize block reserve for delayed refs 55d02a533a8ae btrfs: reset block group size class when it becomes empty 74fcfce2a5eee btrfs: reduce block group critical section in btrfs_free_reserved_bytes() 38944f3c50061 btrfs: remove fs_info argument from btrfs_try_granting_tickets() 9b18bf59977f5 efi: Fix reservation of unaccepted memory table 7098d3743105f gpio: amd-fch: ionly return allowed values from amd_fch_gpio_get() 778f326af79f5 drm/xe/bo: Redirect faults to dummy page for wedged device ed945276a76e9 drm/xe: Make xe_modparam.force_vram_bar_size signed 940b8daa52906 drm/xe/xe2_hpg: Fix handling of Wa_14019988906 & Wa_14019877138 ef074e9bee055 drm/xe/mmio: Avoid double-adjust in 64-bit reads 5ba475d1f3419 drm/xe/configfs: Fix 'parameter name omitted' errors 0c42190a2f269 s390/kexec: Make KEXEC_SIG available when CONFIG_MODULES=n 0f93a80eb3fd5 spi: wpcm-fiu: Fix potential NULL pointer dereference in wpcm_fiu_probe() 263e28add4f44 drm/amd/display: Fix out-of-bounds stream encoder index v3 8eb62f5adc12b drm/amd/display: Reject cursor plane on DCE when scaled differently than primary 2b36c0c1bcbbe drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 96f42087b0580 PCI: Validate window resource type in pbus_select_window_for_type() e37630e34e246 ASoC: codecs: aw88261: Fix erroneous bitmask logic in Awinic init 63680351142e8 drm/i915/acpi: free _DSM package when no connectors 9a2a5da002775 ASoC: fsl_xcvr: Revert fix missing lock in fsl_xcvr_mode_put() a62afa5a595ec mshv: fix SRCU protection in irqfd resampler ack handler ca2eff3617860 drm/amdgpu/sdma6: enable queue resets unconditionally 5211aa12e46fc drm/amdgpu/sdma5.2: enable queue resets unconditionally 0d8ba96c792fc drm/amdgpu/sdma5: enable queue resets unconditionally 3759040d6d7c1 drm/amdgpu: move reset debug disable handling 2fef8c2ac67e7 drm/amdgpu: Fix memory leak in amdgpu_ras_init() 9ae85b0c1909b drm/amdgpu: Use kvfree instead of kfree in amdgpu_gmc_get_nps_memranges() d1370ef2ecf7d drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc() aebd195e93052 apparmor: fix aa_label to return state from compount and component match 1d2b2b58fde90 apparmor: fix invalid deref of rawdata when export_binary is unset 80c334acc6d0b apparmor: avoid per-cpu hold underflow in aa_get_buffer 4610d536ff097 apparmor: make label_match return a consistent value 9ef25645775b4 apparmor: remove apply_modes_to_perms from label_match 9bf1fa150775b apparmor: fix rlimit for posix cpu timers b2a8011ae8749 apparmor: move check for aa_null file to cover all cases 7757757908e03 apparmor: account for in_atomic removal in common_file_perm f3cb5e58a65d5 apparmor: drop in_atomic flag in common_mmap, and common_file_perm 1eadeb462ec36 apparmor: fix boolean argument in apparmor_mmap_file ac8f179e5c9ee apparmor: return -ENOMEM in unpack_perms_table upon alloc failure e027999049c49 apparmor: Fix & Optimize table creation from possibly unaligned memory 23f112bd6144e AppArmor: Allow apparmor to handle unaligned dfa tables ccb66a3c6c8f5 apparmor: fix NULL sock in aa_sock_file_perm fea017a7f6abe apparmor: fix NULL pointer dereference in __unix_needs_revalidation d80311e398ebe net/mlx5e: Use unsigned for mlx5e_get_max_num_channels 4329514c61abe net/mlx5e: Fix deadlocks between devlink and netdev instance locks 54522509cb9aa net/mlx5: Fix misidentification of write combining CQE during poll loop b13e896fc47e0 net/mlx5: Fix multiport device check over light SFs fef13c403be3f bonding: alb: fix UAF in rlb_arp_recv during bond up/down 02baf80d1e333 bnge: fix reserving resources from FW f5a1f13c9e0fd eth: fbnic: Advertise supported XDP features. 72726d22786bb octeontx2-af: Fix default entries mcam entry action 9be9100774b51 ipv6: icmp: remove obsolete code in icmpv6_xrlim_allow() 66036be40f7f7 inet: move icmp_global_{credit,stamp} to a separate cache line 2c7384dbfd6a4 icmp: prevent possible overflow in icmp_global_allow() d7eaa006c0444 eth: fbnic: Add validation for MTU changes d34f7a8aa9a25 macvlan: observe an RCU grace period in macvlan_common_newlink() error path 2a06576b611e2 selftests: tc_actions: don't dump 2MB of \0 to stdout d96b0d661ef04 ping: annotate data-races in ping_lookup() 4e34deebfb880 net: psp: select CONFIG_SKB_EXTENSIONS 5c939ebbd72f4 bpftool: Fix truncated netlink dumps 71b5fc8e8e17e ipv6: fix a race in ip6_sock_set_v6only() dbd0af8083dd2 netfilter: nf_tables: fix use-after-free in nf_tables_addchain() 50422613185d5 net: remove WARN_ON_ONCE when accessing forward path array bae53b3baf2ff ipvs: do not keep dest_dst if dev is going down 9a6b2ba7367f4 netfilter: nf_conntrack_h323: don't pass uninitialised l3num value 96815220626b2 selftests: forwarding: vxlan_bridge_1d_ipv6: fix test failure with br_netfilter enabled a6187e1d47f35 selftests: forwarding: vxlan_bridge_1d: fix test failure with br_netfilter enabled fae260fc84e1e net: bridge: mcast: always update mdb_n_entries for vlan contexts 0243552735937 net/rds: rds_sendmsg should not discard payload_len 654780dee9eae xen-netback: reject zero-queue configuration from guest 36c28b028efba net: usb: catc: enable basic endpoint checking f998b2c4bec48 ovpn: tcp - don't deref NULL sk_socket member after tcp_close() c55ba7501f97d eth: fbnic: set DMA_HINT_L4 for all flows aa090d2346def eth: fbnic: increase FBNIC_HDR_BYTES_MIN from 128 to 256 bytes 9f441ef914527 eth: fbnic: set FBNIC_QUEUE_RDE_CTL0_EN_HDR_SPLIT on RDE_CTL0 9f9600daaa49e eth: fbnic: Configure RDE settings for pause frame ca2a44b31c4d4 bpf: Add a map/btf from a fd array more consistently eac65c272f3b4 bpf: Fix a potential use-after-free of BTF object 068708543a851 libbpf: Fix invalid write loop logic in bpf_linker__add_buf() 223cfef4812bd fbnic: close fw_log race between users and teardown 37954733984f6 net: sparx5/lan969x: fix PTP clock max_adj value 03b5051e02f5a ipv6: Fix out-of-bound access in fib6_add_rt2node(). d1410317337c9 selftests: netconsole: Increase port listening timeout a0070e9635fd5 selftests: netconsole: remove log noise due to socat exit 51c32ae7fae14 net: mscc: ocelot: add missing lock protection in ocelot_port_xmit_inj() 2a90d6b837003 net: mscc: ocelot: split xmit into FDMA and register injection paths 6eb26695a4b20 net: mscc: ocelot: extract ocelot_xmit_timestamp() helper fa79b29cc926c net: sparx5/lan969x: fix DWRR cost max to match hardware register width b1f23df09e7db net: stmmac: fix oops when split header is enabled 9e9f1263e210d net: stmmac: replace has_xxxx with core_type ee231568d57dc net: stmmac: remove broken PCS code 87b7321ddc7d0 selftests: net: lib: Fix jq parsing error dfd9571c31ef1 selftests: mlxsw: tc_restrictions: Fix test failure with new iproute2 f4edf0c7d2169 ovpn: fix VPN TX bytes counting 3e4fbcb4e0789 ovpn: fix possible use-after-free in ovpn_net_xmit 6f076ba274e29 ovpn: set sk_user_data before overriding callbacks 63ae78336f40b cpuidle: Skip governor when only one idle state is available b800728a8aef6 ACPI: PM: Add unused power resource quirk for THUNDEROBOT ZERO 43fcc84cd9710 objpool: fix the overestimation of object pooling metadata size f6bc23794fa05 selftests/memfd: use IPC semaphore instead of SIGSTOP/SIGCONT f056c340b7396 kbuild: Add objtool to top-level clean target ba16fb47e8975 powercap: intel_rapl_tpmi: Remove FW_BUG from invalid version check 02978747e9072 ACPI: CPPC: Fix remaining for_each_possible_cpu() to use online CPUs 78942172d5bff fs/ntfs3: Fix slab-out-of-bounds read in DeleteIndexEntryRoot 4bf3bafb8e063 fs/ntfs3: prevent infinite loops caused by the next valid being the same 5a30cc03bde16 fs/ntfs3: Initialize new folios before use 5e573e7783641 io_uring/cancel: de-unionize file and user_data in struct io_cancel_data a9d157a9bd38e io_uring: delay sqarray static branch disablement c766477992722 drbd: always set BLK_FEAT_STABLE_WRITES bda2448711795 dmaengine: fsl-edma: don't explicitly disable clocks in .remove() 0832e88bc69f7 backlight: qcom-wled: Change PM8950 WLED configurations 54540e574092d backlight: qcom-wled: Support ovp values for PMI8994 784936cad37ba leds: qcom-lpg: Check the return value of regmap_bulk_write() 4f45047e3bf0a leds: expresswire: Fix chip state breakage 3c7d637bfc3df pinctrl: canaan: k230: Fix NULL pointer dereference when parsing devicetree e2e367e56bacb pinctrl: single: fix refcount leak in pcs_add_gpio_func() fc356d8c3042f pinctrl: meson: amlogic-a4: Fix device node reference leak in bank helpers a851ed0ff9015 pinctrl: qcom: sm8250-lpass-lpi: Fix i2s2_data_groups definition 7446125afb6d9 pidfs: return -EREMOTE when PIDFD_GET_INFO is called on another ns 21aff1255d728 mips: LOONGSON32: drop a dangling Kconfig symbol 517d9f2b96308 iio: sca3000: Fix a resource leak in sca3000_probe() 8ae999c410e2b ovl: Fix uninit-value in ovl_fill_real a5f1f8ebc6e2a pinctrl: equilibrium: Fix device node reference leak in pinbank_init() 18a3ebff869c9 mcb: fix incorrect sanity check ab08bb8363b46 nvmem: an8855: drop an unused Kconfig symbol 0c930fcadb2fe usb: bdc: fix sleep during atomic 9b8c7a25809ef drivers: iio: mpu3050: use dev_err_probe for regulator request bedc5b06493cc mfd: simple-mfd-i2c: Add Delta TN48M CPLD support 5a4923726a165 mfd: arizona: Fix regulator resource leak on wm5102_clear_write_sequencer() failure 8e7d8aca8811a Revert "mmc: rtsx_pci_sdmmc: increase power-on settling delay to 5ms" 38a07194bbcdd coresight: tmc-etr: Fix race condition between sysfs and perf mode dd8b9ba3d9701 phy: freescale: imx8qm-hsio: fix NULL pointer dereference 1bec5f283dd5e coresight: etm3x: Fix cpulocked warning on cpuhp 8665e18a707ca watchdog: starfive-wdt: Fix PM reference leak in probe error path a75046f2efadc iio: pressure: mprls0025pa: fix pressure calculation b61512ff73d28 iio: pressure: mprls0025pa: fix scan_type struct 0beeade4823bc iio: pressure: mprls0025pa: fix interrupt flag 285af88d5da16 iio: pressure: mprls0025pa: fix SPI CS delay violation 664ffdf34c018 iio: pressure: mprls0025pa: fix spi_transfer struct initialisation 37fb15537cc05 mmc: rtsx_pci_sdmmc: increase power-on settling delay to 5ms 9c97fcfb7a62d gpib: Fix memory leak in ni_usb_init() b30ba62cafd8b gpib: Fix error code in ni_usb_write_registers() 5ca0f7b371837 gpib: Fix error code in ibonline() 12679ed78c09b serial: SH_SCI: improve "DMA support" prompt 3f8b835a63341 serial: imx: change SERIAL_IMX_CONSOLE to bool 06162d85f8305 staging: greybus: lights: avoid NULL deref c7f7b55ce2ad8 usb: typec: ucsi: drop an unused Kconfig symbol b244fbf3ff829 iio: test: drop dangling symbol in gain-time-scale helpers ac00f8a0cb157 soundwire: intel_ace2x: add SND_HDA_CORE dependency 621a8bf292ede char: misc: Use IS_ERR() for filp_open() return value 05ce13d78226b phy: rockchip: samsung-hdptx: Pre-compute HDMI PLL config for 461.10125 MHz output ccc29a067399e dma: dma-axi-dmac: fix HW scatter-gather not looking at the queue dd1e96fd9f60a dma: dma-axi-dmac: fix SW cyclic transfers b0ce68420da60 dmaengine: mediatek: uart-apdma: Fix above 4G addressing TX/RX 2f0d9a5d552c6 interconnect: mediatek: Aggregate bandwidth with saturating add 86e6547ac6c4d interconnect: mediatek: Don't hijack parent device 52e4ac51e3fa7 clk: zynqmp: pll: Fix zynqmp_clk_divider_determine_rate kerneldoc d53b019a60031 clk: zynqmp: divider: Fix zynqmp_clk_divider_determine_rate kerneldoc 71e5335fcec08 clk: mediatek: Fix error handling in runtime PM setup 6e5379c3b5457 clk: mediatek: Add mfg_eb as parent to mt8196 mfgpll clocks 1debd9ba7eb18 clk: mediatek: Drop __initconst from gates 053490ddace34 clk: zynqmp: divider: convert from divider_round_rate() to divider_determine_rate() df502559b1249 clk: x86: cgu: convert from divider_round_rate() to divider_determine_rate() ccab4798a64fd clk: versaclock3: convert from divider_round_rate() to divider_determine_rate() c632744ff0af4 clk: stm32: stm32-core: convert from divider_round_rate_parent() to divider_determine_rate() 29781f258a9f1 clk: stm32: stm32-core: convert from divider_ro_round_rate() to divider_ro_determine_rate() 141fd6e372781 clk: sprd: div: convert from divider_round_rate() to divider_determine_rate() aab1749732515 clk: sophgo: sg2042-clkgen: convert from divider_round_rate() to divider_determine_rate() 73fbacf475886 clk: nxp: lpc32xx: convert from divider_round_rate() to divider_determine_rate() 7f487ccf58b02 clk: nuvoton: ma35d1-divider: convert from divider_round_rate() to divider_determine_rate() 199625f9734ff clk: milbeaut: convert from divider_round_rate() to divider_determine_rate() c05f9dfa6959d clk: loongson1: convert from divider_round_rate() to divider_determine_rate() 0a5c1dff51150 clk: hisilicon: clkdivider-hi6220: convert from divider_round_rate() to divider_determine_rate() aa1ed67e58426 clk: bm1880: convert from divider_round_rate() to divider_determine_rate() d4274c2df180e clk: actions: owl-divider: convert from divider_round_rate() to divider_determine_rate() bfcc7cc9c36ca clk: actions: owl-composite: convert from owl_divider_helper_round_rate() to divider_determine_rate() aed53da569fb9 clk: qcom: gfx3d: add parent to parent request map e5001c92fc866 clk: qcom: dispcc-sm7150: Fix dispcc_mdss_pclk1_clk_src aeb606d885ef6 clk: qcom: dispcc-sdm845: Enable parents for pixel clocks 2a01a346d20ed clk: qcom: regmap-divider: convert from divider_round_rate() to divider_determine_rate() 22d691c02ad5c clk: qcom: regmap-divider: convert from divider_ro_round_rate() to divider_ro_determine_rate() cdab39223d57e clk: Move clk_{save,restore}_context() to COMMON_CLK section 4fdbb1e3ffa36 Input: adp5589 - remove a leftover header file 8ed504f525f1b clk: microchip: core: remove duplicate determine_rate on pic32_sclk_ops 0533f1cdb382d clk: rockchip: Fix error pointer check after rockchip_clk_register_gate_link() 0b45cddb73855 clk: qcom: alpha-pll: convert from divider_round_rate() to divider_determine_rate() 87fa98532b45b clk: qcom: gcc-ipq5018: flag sleep clock as critical b88e84b154b97 clk: qcom: gcc-msm8917: Remove ALWAYS_ON flag from cpp_gdsc 9dbd33356e3d9 clk: qcom: gcc-msm8953: Remove ALWAYS_ON flag from cpp_gdsc a9d771adb49a1 clk: qcom: gcc-glymur: Update the SDCC RCGs to use shared_floor_ops 8d7df9126dad4 clk: qcom: gcc-qdu1000: Update the SDCC RCGs to use shared_floor_ops 357bdc307c5a1 clk: qcom: gcc-x1e80100: Update the SDCC RCGs to use shared_floor_ops 16a21335eff9c clk: qcom: gcc-milos: Update the SDCC RCGs to use shared_floor_ops 76d5437ca4d0b clk: qcom: gcc-sdx75: Update the SDCC RCGs to use shared_floor_ops 37babf26bfb57 clk: qcom: gcc-sm4450: Update the SDCC RCGs to use shared_floor_ops 7873e2a407a03 clk: qcom: gcc-sm8750: Update the SDCC RCGs to use shared_floor_ops 527508eb5712d clk: qcom: gcc-sm8450: Update the SDCC RCGs to use shared_floor_ops 1bc262014a14a clk: meson: g12a: Limit the HDMI PLL OD to /4 e82d721b05e07 clk: meson: gxbb: Limit the HDMI PLL OD to /4 on GXL/GXM SoCs f7b0686119fd2 clk: qcom: rcg2: compute 2d using duty fraction directly aa14e76038353 clk: qcom: gcc-sm8650: Use floor ops for SDCC RCGs b714c1d0bb437 clk: qcom: gcc-sm8550: Use floor ops for SDCC RCGs e9ed7237b8249 clk: spacemit: Respect Kconfig setting when building modules 19eb98a970c90 clk: thead: th1520-ap: Poll for PLL lock and wait for stability 3d4202ee6494c fbdev: au1200fb: Fix a memory leak in au1200fb_drv_probe() e76a2f1d40ea9 fbdev: of_display_timing: Fix device node reference leak in of_get_display_timings() 2cafad617431f Revert "mailbox/pcc: support mailbox management of the shared buffer" 9a10843740d77 remoteproc: imx_dsp_rproc: Only reset carveout memory at RPROC_OFFLINE state ca8f2551772d1 tracing: Remove duplicate ENABLE_EVENT_STR and DISABLE_EVENT_STR macros 335dfe4bc6368 tracing: Properly process error handling in event_hist_trigger_parse() 47d3fed638664 fs/nfs: Fix readdir slow-start regression e568088337e5a nvdimm: virtio_pmem: serialize flush requests 25ab5e97d3c5f scsi: csiostor: Fix dereference of null pointer rn 77794465365bf scsi: ufs: host: mediatek: Require CONFIG_PM e5579ebaadc7b scsi: smartpqi: Fix memory leak in pqi_report_phys_luns() 48cb99e745614 pNFS: fix a missing wake up while waiting on NFS_LAYOUT_DRAIN 7bc44485182c2 RDMA/uverbs: Add __GFP_NOWARN to ib_uverbs_unmarshall_recv() kmalloc f354f16e96989 power: supply: qcom_battmgr: Recognize "LiP" as lithium-polymer 47abfc207ab02 power: supply: pm8916_lbc: Fix use-after-free for extcon in IRQ handler ac092258d0d6b hisi_acc_vfio_pci: fix VF reset timeout issue 980aa1f8d0dd1 mtd: spinand: Fix kernel doc 39b74ec0869f5 mtd: parsers: ofpart: fix OF node refcount leak in parse_fixed_partitions() eacca14125875 cxl: Fix premature commit_end increment on decoder commit failure cc66fc9b5cf7f RDMA/core: add rdma_rw_max_sge() helper for SQ sizing 5ae9da022ee3c RDMA/rxe: Fix race condition in QP timer handlers b2bc649c18fbe RDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler bf4454da8b1e7 RDMA/uverbs: Validate wqe_size before using it in ib_uverbs_post_send 409c2c5508f3d RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE 02f720109fed5 cxl/core: Fix cxl_dport debugfs EINJ entries 055cd68b8ebbd NFS/localio: remove -EAGAIN handling in nfs_local_doio() 1d6933f32b297 NFS/localio: use GFP_NOIO and non-memreclaim workqueue in nfs_local_commit ae26a4cf2baf0 NFS/localio: prevent direct reclaim recursion into NFS via nfs_writepages c627769730e98 NFS/localio: Handle short writes by retrying ec121ad626c31 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse() eb0e8003d9a03 crypto: ccp - Send PSP_CMD_TEE_RING_DESTROY when PSP_CMD_TEE_RING_INIT fails eb5263f3f8e48 crypto: ccp - Factor out ring destroy handling to a helper 10eef0f932387 crypto: ccp - Add an S4 restore flow b3010ff068fad crypto: ccp - Declare PSP dead if PSP_CMD_TEE_RING_INIT fails 7c28e27896977 platform/x86/amd/pmf: Prevent TEE errors after hibernate 8269e0ee89bd8 vfio/pci: Lock upstream bridge for vfio_pci_core_disable() 721bd22bcf45a mtd: intel-dg: Fix accessing regions before setting nregions 4d02e3870c88f mtd: rawnand: cadence: Fix return type of CDMA send-and-wait helper 9b0927c9b91b4 IB/mlx5: Fix port speed query for representors 6d838873da9cb RDMA/mlx5: Fix UMR hang in LAG error state unload 71b23ada25b33 tools/power/x86/intel-speed-select: Fix file descriptor leak in isolate_cpus() d9aefb386fdc4 platform/x86: hp-wmi: fix platform profile values for Omen 16-wf1xxx eb715133e0ae1 RDMA/iwcm: Fix workqueue list corruption by removing work_list 5c07aef09a121 RDMA/rxe: Fix double free in rxe_srq_from_init 33e396029002b RDMA/rtrs-srv: fix SG mapping c0def811ad8d6 power: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed() 64327c46f2551 power: supply: bq27xxx: fix wrong errno when bus ops are unsupported a465a14992228 power: reset: nvmem-reboot-mode: respect cell size for nvmem_cell_write 861dda7a9074c power: supply: sbs-battery: Fix use-after-free in power_supply_changed() 64e15155095f3 power: supply: rt9455: Fix use-after-free in power_supply_changed() 08e674e9862a2 power: supply: pm8916_lbc: Fix use-after-free in power_supply_changed() a8b7117ae3a79 power: supply: pm8916_bms_vm: Fix use-after-free in power_supply_changed() 8c89aade8335e power: supply: goldfish: Fix use-after-free in power_supply_changed() 2841bbb5a35c4 power: supply: cpcap-battery: Fix use-after-free in power_supply_changed() 03d1e4ee4e6aa power: supply: bq25980: Fix use-after-free in power_supply_changed() 4b6fb0b6124f5 power: supply: bq256xx: Fix use-after-free in power_supply_changed() f27eb76def5c0 power: supply: act8945a: Fix use-after-free in power_supply_changed() 709db4b476e25 power: supply: ab8500: Fix use-after-free in power_supply_changed() 9b82bdb9e7c93 cxl/mem: Fix devm_cxl_memdev_edac_release() confusion 51c89a5247bf5 RDMA/mlx5: Fix ucaps init error flow 8bf968d68ea6c RDMA/hns: Notify ULP of remaining soft-WCs during reset 4994b9be17ff7 RDMA/hns: Fix RoCEv1 failure due to DSCP 0cbec8b49270f RDMA/hns: Fix WQ_MEM_RECLAIM warning 38e2c5ad6f117 IB/cache: update gid cache on client reregister event d273d9cedd78d RDMA/rtrs: server: remove dead code 365996a2b14d0 af_unix: Fix memleak of newsk in unix_stream_connect(). 08b10c468962c octeontx2-pf: Unregister devlink on probe failure 8abc12ce2573e net: renesas: rswitch: fix forwarding offload statemachine 1d4f8092bd785 ionic: Rate limit unknown xcvr type messages a16bea45d758e octeon_ep_vf: ensure dbell BADDR updation 13a61502c1c83 octeon_ep: ensure dbell BADDR updation 1b8e3c8b74436 octeon_ep: disable per ring interrupts c8c197aaa56b2 serial: caif: fix use-after-free in caif_serial ldisc_close() 1c9ef28f643cc xfrm: fix ip_rt_bug race in icmp_route_lookup reverse path d8c851cd32452 net: sunhme: Fix sbus regression 69d3f9ee5489e net: atm: fix crash due to unvalidated vcc pointer in sigd_send() 03462247e3b65 smb: client: correct value for smbd_max_fragmented_recv_size 4f9ae386861e2 procfs: fix missing RCU protection when reading real_parent in do_task_stat() fdbccddb7e782 net: hns3: fix double free issue for tx spare buffer 9a4d6c37cb128 dpll: zl3073x: Fix output pin phase adjustment sign 072cec234a877 dpll: zl3073x: Cache all output properties in zl3073x_out 9116bb0e0c9f8 dpll: zl3073x: Split ref, out, and synth logic from core 84b8990f5771d dpll: zl3073x: Store raw register values instead of parsed state 40bcd1fa0e23c dpll: zl3073x: Specify phase adjustment granularity for pins f399e8af187a8 dpll: add phase-adjust-gran pin attribute 782368c13f5a3 PCI: Add ACS quirk for Pericom PI7C9X2G404 switches [12d8:b404] 12b1681793e9b netfilter: nft_set_rbtree: validate open interval overlap 90cbb8561aee0 netfilter: nft_set_rbtree: validate element belonging to interval 3c40cc71cec7a netfilter: nft_set_rbtree: don't gc elements on insert 89a3f393ab0d9 netfilter: nft_set_rbtree: remove seqcount_rwlock_t e4ea5be0b35fd netfilter: nft_set_rbtree: use binary search array in get command 36ed9b6e39611 netfilter: nft_set_rbtree: translate rbtree to array for binary search dad14d22dff1a netfilter: nft_set_rbtree: check for partial overlaps in anonymous sets 40a7afde2f536 netfilter: nft_set_rbtree: fix bogus EEXIST with NLM_F_CREATE with null interval 735ad034f1dcb netfilter: nft_counter: fix reset of counters on 32bit archs 6f2d238faff01 netfilter: nft_set_hash: fix get operation on big endian 23901aa6b8a2f netfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation 870e3e63da8e8 netfilter: nfnetlink_queue: optimize verdict lookup with hash table 276820278e971 nfc: hci: shdlc: Stop timers and work before freeing context 531c1aec81bfe inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP 67b75bb0ec55a bonding: only set speed/duplex to unknown, if getting speed failed 9c3398e5b3a91 octeontx2-af: Fix PF driver crash with kexec kernel booting 1fff00261c788 mptcp: fix receive space timestamp initialization fb7bf00b04a6b mptcp: do not account for OoO in mptcp_rcvbuf_grow() 10a66a44e3691 of: unittest: fix possible null-pointer dereferences in of_unittest_property_copy() b8856aba0fb03 tcp: accecn: handle unexpected AccECN negotiation feedback 2ff45b29f37ed tcp: disable RFC3168 fallback identifier for CC modules 69484fd350be4 tcp: ECT_1_NEGOTIATION and NEEDS_ACCECN identifiers 817780cb3f555 jfs: avoid -Wtautological-constant-out-of-range-compare warning b4374b0bed103 ucount: check for CAP_SYS_RESOURCE using ns_capable_noaudit() 8fd58e0a0f040 ipc: don't audit capability check in ipc_permissions() f5efb397c8f93 selftests/mm: fix usage of FORCE_READ() in cow tests 4a0d8d3729152 PCI/ACPI: Restrict program_hpx_type2() to AER bits dbe723b480e47 PCI: Initialize RCB from pci_configure_device() da289440f04c9 wifi: ath12k: clear stale link mapping of ahvif->links_map 474e93f4a5aa5 wifi: ath12k: Fix index decrement when array_len is zero 0e0ca8dbfef90 wifi: ath11k: add usecase firmware handling based on device compatible 134bd7f7e42f8 wifi: ath10k: sdio: add missing lock protection in ath10k_sdio_fw_crashed_dump() 8fb1dc2963780 PCI: Check parent for NULL in of_pci_bus_release_domain_nr() adc2deacdd819 tcp: tcp_tx_timestamp() must look at the rtx queue 2a9370693b1ce PCI: Remove old_size limit from bridge window sizing b855d99486219 PCI: Stop over-estimating bridge window size d5de3e34dcb5a PCI: Rewrite bridge window head alignment function 17866f8a0822d fat: avoid parent link count underflow in rmdir a77e945c528f0 rust: task: restrict Task::group_leader() to current bd1d06eaad53d lib/kstrtox: fix kstrtobool() docstring to mention enabled/disabled d75ec4504a434 nfsd: never defer requests during idmap lookup b29094276ab22 xdrgen: Remove inclusion of nlm4.h header b633683dc0d4c xdrgen: Initialize data pointer for zero-length items 59d23891cdba5 NFS: NFSERR_INVAL is not defined by NFSv2 59409c5958b20 xdrgen: Fix struct prefix for typedef types in program wrappers 1bd726fa8f5cf dm: use bio_clone_blkg_association d2138abc8f0a7 iommu/vt-d: Clear Present bit before tearing down context entry 821807c167b7b iommu/vt-d: Clear Present bit before tearing down PASID entry 36244dfd3853f iommu/vt-d: Flush cache for PASID table before using it 53336a811485a wifi: rtw89: debug: Fix memory leak in __print_txpwr_map() e532247834428 PCI: Mark 3ware-9650SA Root Port Extended Tags as broken feef0143ec5e9 kallsyms/ftrace: set module buildid in ftrace_mod_address_lookup() 7f4827b247500 module: add helper function for reading module_buildid() 34de49d09775a kallsyms/bpf: rename __bpf_address_lookup() to bpf_address_lookup() 536ffc371b52e netfilter: nf_conncount: fix tracking of connections from localhost a0cdcacc0d414 netfilter: nft_compat: add more restrictions on netlink attributes 6e5fa7add3e76 netfilter: nf_conncount: increase the connection clean up limit to 64 ab455baa7420f netfilter: nf_conncount: make nf_conncount_gc_list() to disable BH 0d7ccd3d16ad0 netfilter: nf_tables: reset table validation state on abort f1f9aea372976 ext4: fast commit: make s_fc_lock reclaim-safe 59f10fa502ee7 wifi: cfg80211: stop NAN and P2P in cfg80211_leave 6ff2ebfef75fb mctp i2c: initialise event handler read bytes c1116859a7f46 net: mctp-i2c: fix duplicate reception of old data 02bb1500f1479 quota: fix livelock between quotactl and freeze_super 7379837c3f9ef wifi: ath12k: do WoW offloads only on primary link 5a0b892ac90d0 wifi: ath9k: add OF dependency to AHB a44220e4eba35 PCI/P2PDMA: Reset page reference count when page mapping fails 5b1f6531d4a12 PCI/PTM: Fix pcie_ptm_create_debugfs() memory leak aeddfb00bb83c dm: use READ_ONCE in dm_blk_report_zones 7a3385e97af2b dm: fix unlocked test for dm_suspended_md 5d0a2a2ce94b5 PCI/portdrv: Fix potential resource leak 1af76378577e0 PCI: sophgo: Disable L0s and L1 on Sophgo 2044 PCIe Root Ports ef42c53b7a284 PCI: Do not attempt to set ExtTag for VFs 1938bf90c1dd0 Documentation: tracing: Add PCI tracepoint documentation eb9aa9f801046 PCI/P2PDMA: Fix p2pmem_alloc_mmap() warning condition e19cce88ec4c4 PCI/P2PDMA: Release per-CPU pgmap ref when vm_insert_page() fails 2108e783a7cf2 wifi: cfg80211: Fix use_for flag update on BSS refresh d072c2c82322e PCI/PM: Avoid redundant delays on D3hot->D3cold ed0ef3d0c92d8 Documentation: PCI: endpoint: Fix ntb/vntb copy & paste errors 004288f3b24eb PCI: xilinx: Fix INTx IRQ domain leak in error paths 4e8e7080b5579 PCI: mediatek: Fix IRQ domain leak when MSI allocation fails d1878562a41fd hwmon: (pmbus/mpq8785) fix VOUT_MODE mismatch during identification 14a38784e09ae Revert "hwmon: (ibmpex) fix use-after-free in high/low store" 98c6a053b6d38 spi: tools: Add include folder to .gitignore 81190b2e9d04b ASoC: SDCA: Handle volatile controls correctly 97b513d04e116 ASoC: SDCA: Force some SDCA Controls to be volatile 32606d55ffc1a ASoC: SDCA: Remove outdated todo comment 59be162822e56 accel/amdxdna: Fix incorrect error code returned for failed chain command feb4bcfd40528 HID: intel-ish-hid: fix NULL-ptr-deref in ishtp_bus_remove_all_clients 5a68d2c99c859 accel/amdxdna: Fix memory leak in amdxdna_ubuf_map b79d31dce49b5 accel/amdxdna: Stop job scheduling across aie2_release_resource() f6b4c1d98a7b8 accel/amdxdna: Hold mm structure across iommu_sva_unbind_device() e6ff5e9e39005 platform/chrome: cros_ec_lightbar: Fix response size initialization 52b71d0253978 ASoC: tegra: Add AHUB writeable_reg for RX holes a3ce2b030809f mm/slab: fix false lockdep warning in __kfree_rcu_sheaf() aa27ad4e20e0a drm/xe: Unregister drm device on probe error c287399b66c00 drm/xe/ptl: Disable DCC on PTL ede7b0f33c5a6 evm: Use ordered xattrs list to calculate HMAC in evm_init_hmac() 5332491be2ca1 media: uvcvideo: Fix allocation for small frame sizes 16dd68310f501 pwm: tiehrpwm: Enable pwmchip's parent device before setting configuration 39c24b19a6111 platform/chrome: cros_typec_switch: Don't touch struct fwnode_handle::dev b7e2bd20e7c8b drm/msm/dp: Avoid division by zero in msm_dp_ctrl_config_msa() e60e16d406b23 drm/msm/dpu: program correct register for UBWC config on DPU 8.x+ d791b31e7da16 drm/msm/dpu: offset HBB values written to DPU by -13 b573177b314e0 drm/msm/mdss: correct HBB programmed on UBWC 5.x and 6.x devices 7672af88d3072 drm/rockchip: dw_hdmi_qp: Fix RK3576 HPD interrupt handling fb328aa95c34c drm/hisilicon/hibmc: Adding reset colorbar cfg in dp init. 0922d282f7d30 drm/hisilicon/hibmc: fix no showing problem with loading hibmc manually 84359ed3c53f0 drm/hisilicon/hibmc: add dp mode valid check bc950899ef118 drm/hisilicon/hibmc: fix dp probabilistical detect errors after HPD irq 840581b30cdeb drm/buddy: release free_trees array on buddy mm teardown f83b92c576864 drm/msm/a2xx: fix pixel shader start on A225 21cf7527de1d1 media: ccs: Accommodate C-PHY into the calculation 5fab6e1405e18 accel/amdxdna: Fix notifier_wq flushing warning c0727bcbf09b4 drm/msm/dsi_phy_14nm: convert from divider_round_rate() to divider_determine_rate() 2b46bb9f88cd7 drm/msm/dpu: fix CMD panels on DPU 1.x - 3.x 2f803e86ba4f4 drm/msm/disp: set num_planes to 1 for interleaved YUV formats 35301ca2a83d1 HID: playstation: Add missing check for input_ff_create_memless b6a83ad13d253 regulator: core: move supply check earlier in set_machine_constraints() a6b7308f35cdf mei: late_bind: fix struct intel_lb_component_ops kernel-doc 4ef745e4d0d63 drm/msm/dp: Update msm_dp_controller IDs for sa8775p acfd1dce074f8 drm/msm/dpu: fix WD timer handling on DPU 8.x 822d9b24de402 drm/msm/dpu: Set vsync source irrespective of mdp top support dc567a611b169 drm/msm/disp/dpu: add merge3d support for sc7280 8db8fadf1364f drm/amdgpu: Use explicit VCN instance 0 in SR-IOV init 30c6faf917059 drm/amdkfd: Fix signal_eviction_fence() bool return value 083351c6886e3 drm/amd: Drop "amdgpu kernel modesetting enabled" message 1de71556cbd6e media: chips-media: wave5: Fix memory leak on codec_info allocation failure 77dc0140ea592 ASoC: nau8821: Fixup nau8821_enable_jack_detect() 5a247a84de0ba smack: /smack/doi: accept previously used values cb59ae5619952 smack: /smack/doi must be > 0 da3be3289ecfa drm/panthor: Evict groups before VM termination 956cc8a74f410 ASoC: SDCA: Allow sample width wild cards in set_usage() fa3b263c4de3e ALSA: vmaster: Relax __free() variable declarations ed9acd01e907f ALSA: pcm: Relax __free() variable declarations 082aba8e3aab9 drm/panel: sw43408: Remove manual invocation of unprepare at remove 5b295f0133935 accel/amdxdna: Fix race where send ring appears full due to delayed head update 0b0d8ed13d292 drm/panthor: Fix panthor_gpu_coherency_set() d8d97352bf5d5 workqueue: Process rescuer work items one-by-one using a cursor 5ec7110f5ed40 workqueue: Only assign rescuer work when really needed 932c36b81325b workqueue: Factor out assign_rescuer_work() 8c66adcae91b3 drm/panthor: Make sure we resume the tick when new jobs are submitted d2f485242e311 drm/panthor: Fix the logic that decides when to stop ticking ef100b8e257b6 drm/panthor: Fix immediate ticking on a disabled tick 73f2614637f64 drm/panthor: Fix the group priority rotation logic 693a04f41a54b drm/panthor: Fix the full_tick check 57753f2c64c03 drm/panthor: Recover from panthor_gpu_flush_caches() failures da9c1afd9991e reset: canaan: k230: drop OF dependency and enable by default 3c0dd95dd5208 arm64: dts: qcom: sm6115: Add CX_MEM/DBGC GPU regions 58c0b917fdca3 arm64: dts: qcom: agatti: Add CX_MEM/DBGC GPU regions 222e45e64bbca arm64: dts: qcom: talos: Drop opp-shared from QUP OPP table 37082c9b418d4 arm64: dts: qcom: x1e: bus is 40-bits (fix 64GB models) 06557d72ea40c arm64: dts: qcom: sdm845-db845c: specify power for WiFi CH1 39974be66f817 arm64: dts: qcom: sdm845-db845c: drop CS from SPIO0 2d7ea0516f2be arm64: dts: qcom: qrb4210-rb2: Fix UART3 wakeup IRQ storm 33bc5e10165d5 arm64: dts: amlogic: g12: assign the MMC A signal clock 844317f9b0075 arm64: dts: amlogic: g12: assign the MMC B and C signal clocks 0709a0901956c arm64: dts: amlogic: gx: assign the MMC signal clocks c9bb634897e33 arm64: dts: amlogic: axg: assign the MMC signal clocks f6e54c1ea7b84 arm64: dts: amlogic: c3: assign the MMC signal clocks 6cc29c7148550 hwspinlock: omap: Handle devm_pm_runtime_enable() errors eeb84c4f43372 soc: qcom: ubwc: add missing include 6906a98898989 arm64: dts: ti: k3-j784s4-j742s2-main-common.dtsi: Refactor watchdog instances for j784s4 8273989e774ab arm64: dts: ti: k3-j784s4-main.dtsi: Move c71_3 node to appropriate order 1f71dfc03471b arm64: dts: amlogic: s4: fix mmc clock assignment 5a5ec520e7401 arm64: dts: amlogic: s4: assign mmc b clock to 24MHz 85cf4f7c2cf22 arm64: dts: mediatek: mt8183-jacuzzi-pico6: Fix typo in pinmux node 6666c9d544323 arm: dts: lpc32xx: add clocks property to Motor Control PWM device tree node bcab50ed6e73c arm64: dts: renesas: rzt2h-n2h-evk-common: Use GPIO for SD0 write protect 6e6561231c6cf powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event handling 0f6498077faa9 soc: mediatek: svs: Fix memory leak in svs_enable_debug_write() 3eeda22d52ff9 soc: qcom: cmd-db: Use devm_memremap() to fix memory leak in cmd_db_dev_probe 1b39dbd7761d5 powerpc/uaccess: Move barrier_nospec() out of allow_read_{from/write}_user() 3ce94bf05945c ARM: dts: allwinner: sun5i-a13-utoo-p66: delete "power-gpios" property db09ba1f9e704 arm64: dts: qcom: msm8994-octagon: Fix Analog Devices vendor prefix of AD7147 9bbee82bacb90 arm64: dts: renesas: r9a09g047e57-smarc: Remove duplicate SW_LCD_EN 480374c75c675 arm64: dts: qcom: x1e80100: Fix USB combo PHYs SS1 and SS2 ref clocks 02d580c9affa5 arm64: dts: qcom: sdm845-oneplus: Mark l14a regulator as boot-on 7f4d96e122180 arm64: dts: qcom: sdm845-oneplus: Don't keep panel regulator always on f5b047a232718 arm64: dts: qcom: sdm845-oneplus: Don't mark ts supply boot-on 75a3a27e4f825 arm64: dts: qcom: sdm630: fix gpu_speed_bin size 97ca54da16f40 clk: qcom: Return correct error code in qcom_cc_probe_by_index() 911a473e29c32 arm64: dts: tqma8mpql-mba8mp-ras314: Fix HDMI CEC pad control settings 5a76398d0e03b arm64: dts: tqma8mpql-mba8mpxl: Fix HDMI CEC pad control settings 9fd6457841282 firmware: arm_ffa: Correct 32-bit response handling in NOTIFICATION_INFO_GET f64f4ec804b3e EDAC/i5400: Fix snprintf() limit calculation in calculate_dimm_size() 3efb54e1201b8 EDAC/i5000: Fix snprintf() size calculation in calculate_dimm_size() d32e8339e1fda soc: qcom: smem: handle ENOMEM error during probe 4f73486ca8223 pstore/ram: fix buffer overflow in persistent_ram_save_old() 119702b716776 selftests/xsk: fix number of Tx frags in invalid packet b2b172a987132 selftests/xsk: properly handle batch ending in the middle of a packet 8b1a095541c13 selftests/bpf: test_xsk: Split xskxceiver dcf416eb88eaf hwrng: core - use RCU and work_struct to fix race condition 9095671fa2404 hwrng: core - Allow runtime disabling of the HW RNG 4869d0e4e48a5 crypto: starfive - Fix memory leak in starfive_aes_aead_do_one_req() 7752d36343862 bpf: Require frozen map for calculating map hash 5835a077c6f5c bpf: Limit bpf program signature size 45acb60fe59ab fs/tests: exec: drop duplicate bprm_stack_limits test vectors 52aeb1e07ec22 sched/rt: Skip currently executing CPU in rto_next_cpu() 909131ad0a006 sched/deadline: Clear the defer params 83550d2311559 media: pci: mg4b: Use IRQF_NO_THREAD 352f1bbbd711a mfd: wm8350-core: Use IRQF_ONESHOT 7b0c5dec6a01a rtc: amlogic-a4: Remove IRQF_ONESHOT 5248f7f5b3407 usb: typec: fusb302: Remove IRQF_ONESHOT 66839f7c2bd66 EDAC/altera: Remove IRQF_ONESHOT 909dfc310ee53 scsi: efct: Use IRQF_ONESHOT and default primary handler f5e5bbf56ecf6 Bluetooth: btintel_pcie: Use IRQF_ONESHOT and default primary handler 680b652b2d087 iommu/amd: Use core's primary handler and set IRQF_ONESHOT 91b6a550472a9 platform/x86: int0002: Remove IRQF_ONESHOT from request_irq() 0c1876a365447 genirq: Set IRQF_COND_ONESHOT in devm_request_irq(). d7b87adeb0eb5 bpf: Fix bpf_xdp_store_bytes proto for read-only arg d7decb572b55d crypto: caam - fix netdev memory leak in dpaa2_caam_probe d0bac6618e810 crypto: hisilicon/trng - support tfms sharing the device 94fdeeaeb7cef selftests/bpf: Fix kprobe multi stacktrace_ips test 42a155c738b9a x86/fgraph,bpf: Switch kprobe_multi program stack unwind to hw_regs path 9e10486f79936 x86/fgraph: Fix return_to_handler regs.rsp value 243d642ff5809 crypto: inside-secure/eip93 - unregister only available algorithm 9a3ace9b010ff crypto: ccp - Fix a crash due to incorrect cleanup usage of kfree 4ecbcfb71a50c bpf: Fix verifier_bug_if to account for BPF_CALL 4e0772cded109 bpf: Fix tcx/netkit detach permissions when prog fd isn't given 4b8d1424b32c4 bpf, sockmap: Fix FIONREAD for sockmap f274a4540226e bpf, sockmap: Fix incorrect copied_seq calculation 3ed835f6aa188 rqspinlock: Fix TAS fallback lock entry creation 6abdd33a088db hwrng: airoha - set rng quality to 900 46825599fad19 crypto: ccp - narrow scope of snp_range_list e6a4b3d222211 crypto: ccp - Fix a case where SNP_SHUTDOWN is missed 7530c3595d1e2 crypto: inside-secure/eip93 - fix kernel panic in driver detach 1bbb1356f6be5 hrtimer: Fix trace oddity c77581cdebada selftests/bpf: Fix resource leak in serial_test_wq on attach failure fdfe75161f6e8 bpf: Fix memory access flags in helper prototypes 92a8cb1806ade bpf: Preserve id of register in sync_linked_regs() 33d3290333e8e crypto: hisilicon/sgl - fix inconsistent map/unmap direction issue 740e710a6f272 crypto: hisilicon/sec2 - support skcipher/aead fallback for hardware queue unavailable 9f35acf698017 crypto: hisilicon/hpre - support the hpre algorithm fallback c990abb136b74 crypto: hisilicon - consolidate qp creation and start in hisi_qm_alloc_qps_node cc7a36b6ac8f4 crypto: hisilicon/zip - support fallback for zip 3acd2479c770e crypto: hisilicon/qm - centralize the sending locks of each module into qm 23fcfd8c0d1fd crypto: hisilicon/qm - enhance the configuration of req_type in queue attributes 2b8b12e3f869d crypto: hisilicon/hpre: extend tag field to 64 bits for better performance 139e24de706ed crypto: hisilicon/sec - move backlog management to qp and store sqe in qp for callback 1f269645bb4c8 crypto: hisilicon/zip - adjust the way to obtain the req in the callback function c6eb4991a1776 crypto: octeontx - fix dma_free_coherent() size 2bdeabe2b6478 crypto: cavium - fix dma_free_coherent() size 9029e8db69fb3 sched: Fix build for modules using set_tsk_need_resched() 8ed7f3c03d042 time/sched_clock: Use ACCESS_PRIVATE() to evaluate hrtimer::function 9b94124cb9c23 ARM: VDSO: Patch out __vdso_clock_getres() if unavailable 26cbfd67fdb5e sched: Export hidden tracepoints to modules c3cfe342d1209 libbpf: Fix OOB read in btf_dump_get_bitfield_value c2a90d855bea5 selftests/bpf: veristat: fix printing order in output_stats() 36abc0b2df605 crypto: qat - fix warning on adf_pfvf_pf_proto.c 1838a7507e133 perf/x86/core: Do not set bit width for unavailable counters 7e4c643aa3b22 x86/cpu/amd: Correct the microcode table for Zenbleed 445d35742d863 io_uring/kbuf: fix memory leak if io_buffer_add_list fails 6715560527e34 s390/cio: Fix device lifecycle handling in css_alloc_subchannel() af5b0854fba03 PM: sleep: wakeirq: harden dev_pm_clear_wake_irq() against races 630f3eca39624 cpufreq: intel_pstate: Enable asym capacity only when CPU SMT is not possible 5cbf75e0f07f6 perf: arm_spe: Properly set hw.state on failures c787a235deb33 arm64/gcs: Fix error handling in arch_set_shadow_stack_status() 1141301a71954 PM: wakeup: Handle empty list in wakeup_sources_walk_start() 80d58a8915d7d md: fix return value of mddev_trylock ec10e3dc93994 md/raid1: fix memory leak in raid1_run() 02455f658db8e Partial revert "x86/xen: fix balloon target initialization for PVH dom0" f75a5555e0049 ublk: Validate SQE128 flag before accessing the cmd 9b03dda1453e8 ublk: restore auto buf unregister refcount optimization 8344d5da9df74 thermal/of: Fix reference leak in thermal_of_cm_lookup() 769a8a732e825 iomap: fix submission side handling of completion side errors 67bbf2527c1d0 cpufreq: scmi: Fix device_node reference leak in scmi_cpu_domain_id() 27feb209c2d7b OPP: Return correct value in dev_pm_opp_get_level 095417d6b669c md/md-llbitmap: fix percpu_ref not resurrected on suspend timeout 870b9f15867b0 md/raid5: fix IO hang with degraded array with llbitmap 5bf494167291e md/raid10: fix any_working flag handling in raid10_sync_request 32c046a506ea9 md/raid5: fix raid5_run() to return error when log_init() fails 649ddf7e5aa64 thermal: intel: x86_pkg_temp_thermal: Handle invalid temperature 9d589661f21fa cpuidle: governors: menu: Always check timers with tick stopped d733106e7c652 io_uring/sync: validate passed in offset 1d126db2f263f io_uring/eventfd: remove unused ctx->evfd_last_cq_tail member b24595b869209 ACPICA: Fix NULL pointer dereference in acpi_ev_address_space_dispatch() c1c266e2c1f10 io_uring: use release-acquire ordering for IORING_SETUP_R_DISABLED cb45bcc970930 xen/virtio: Don't use grant-dma-ops when running as Dom0 68f38f648e4b5 ACPI: processor: Update cpuidle driver check in __acpi_processor_start() 7cce69596cecc rnbd-srv: Fix server side setting of bi_size for special IOs cbdb9f3adf542 netfs: avoid double increment of retry_count in subreq e66dcf7bb9c4d smb: client: fix potential UAF and double free in smb2_open_file() 5de1aa0bf3a5d erofs: fix inline data read failure for ztailpacking pclusters 7d4eadee7042d btrfs: fix EEXIST abort due to non-consecutive gaps in chunk allocation 80e1fda9c084d btrfs: fix block_group_tree dirty_list corruption 00ea0370ba7bc btrfs: qgroup: return correct error when deleting qgroup relation item f957ddc4d8eb9 btrfs: zoned: don't zone append to conventional zone 9643b3baa46b6 btrfs: introduce btrfs_bio::async_csum 0981c6b984a16 btrfs: make sure all btrfs_bio::end_io are called in task context 4663160aa2d84 btrfs: remove btrfs_bio::fs_info by extracting it from btrfs_bio::inode 8f7f0e1728685 btrfs: headers cleanup to remove unnecessary local includes e49abde0ffc38 erofs: handle end of filesystem properly for file-backed mounts 728ba43461774 erofs: get rid of raw bi_end_io() usage ec15eb67fe9df tpm: st33zp24: Fix missing cleanup on get_burstcount() error 1a22048c1117c tpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure 8e71414e252c1 i3c: dw: Fix memory leak in dw_i3c_master_i2c_xfers() 53f4761ab032d i3c: dw: Initialize spinlock to avoid upsetting lockdep 6d76febba07c4 gfs2: Fix use-after-free in iomap inline data write path 1d47922b98046 gfs2: Fix slab-use-after-free in qd_put 5480341dc884f gfs2: Retries missing in gfs2_{rename,exchange} 7378340f2e220 i3c: master: Update hot-join flag only on success 5c328675d2a8a fs: add for 'init_fs' 44e9f5aedfb4c fs: move initializing f_mode before file_ref_init() c2ed725668f23 device_cgroup: remove branch hint after code refactor 49c201c09b473 i3c: Move device name assignment after i3c_bus_init d0200c70e3175 selftests/resctrl: Fix a division by zero error on Hygon 28397957c75b9 audit: move the compat_xxx_class[] extern declarations to audit_arch.h 4a4a6e12c9c82 rcu: Fix rcu_read_unlock() deadloop due to softirq 2e6ff6a6fc69c hfsplus: return error when node already exists in hfs_bnode_create 91f08ec6a97b2 auxdisplay: arm-charlcd: fix release_mem_region() size 205955f29c263 RDMA/umad: Reject negative data_len in ib_umad_write 714c99e1dc8f8 RDMA/siw: Fix potential NULL pointer dereference in header processing 25e0b1c206e3d Linux 6.18.13 df337ba02ca53 f2fs: fix incomplete block usage in compact SSA summaries 855c54f1803e3 f2fs: fix to do sanity check on node footer in {read,write}_end_io cd2fec912a0f0 f2fs: fix to do sanity check on node footer in __write_node_folio() 715a7a72e4736 USB: serial: option: add Telit FN920C04 RNDIS compositions f611dafe0ffd3 iommu/arm-smmu-qcom: do not register driver in probe() 0415ae51a40e3 f2fs: optimize f2fs_overwrite_io() for f2fs_iomap_begin fee27b69dde1a f2fs: fix to avoid mapping wrong physical block for swapfile 97e4f479939e5 f2fs: support non-4KB block size without packed_ssa feature 995030be4ce63 f2fs: fix to avoid UAF in f2fs_write_end_io() d4a594dd952df f2fs: fix out-of-bounds access in sysfs attribute read/write bd66b4c487d50 f2fs: fix IS_CHECKPOINTED flag inconsistency issue caused by concurrent atomic commit and checkpoint writes 70cf1e96bde07 f2fs: fix to check sysfs filename w/ gc_pin_file_thresh correctly fb9f7e52273db f2fs: fix to add gc count stat in f2fs_gc_range 1c008ad0f0d1c fbdev: smscufx: properly copy ioctl memory to kernelspace 3e4cbd1d46c24 fbdev: rivafb: fix divide error in nv3_arb() 98d91080517d4 cpuset: Fix missing adaptation for cpuset_is_populated eaa9fcf57934c LoongArch: Rework KASAN initialization for PTW-enabled systems 9b671f6f432be mm/hugetlb: fix excessive IPI broadcasts when unsharing PMD tables using mmu_gather 0c74d37343b93 arm64: dts: mediatek: mt8183: Add missing endpoint IDs to display graph 6d66464d1a059 gpiolib: acpi: Fix gpio count with string references fa4938e0d0d64 io_uring/fdinfo: be a bit nicer when looping a lot of SQEs/CQEs cab928242853a ASoC: fsl_xcvr: fix missing lock in fsl_xcvr_mode_put() 00c57e2369386 drm/amd/display: remove assert around dpp_base replacement 8e6f503961709 drm/amd/display: extend delta clamping logic to CM3 LUT helper f2584f791a103 tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow 7bc40c6f36575 ASoC: cs42l43: Correct handling of 3-pole jack load detection a8ed5b974a244 platform/x86: panasonic-laptop: Fix sysfs group leak in error path 2ca80dd4bb0e2 ASoC: sof_sdw: Add a quirk for Lenovo laptop using sidecar amps with cs42l43 bb6ff25035da5 platform/x86/amd/pmc: Add quirk for MECHREVO Wujie 15X Pro a9584e9e46448 ALSA: hda/realtek: Enable headset mic for Acer Nitro 5 78783e8d588cf ASoC: amd: yc: Add quirk for HP 200 G2a 16 c3b2e922924bf ASoC: Intel: sof_es8336: Add DMI quirk for Huawei BOD-WXX9 97528b1622b8f platform/x86: classmate-laptop: Add missing NULL pointer checks efdb9c8ca3cfb drm/tegra: hdmi: sor: Fix error: variable ‘j’ set but not used 4b71ad7676564 romfs: check sb_set_blocksize() return value d2e01e0c5e947 ALSA: hda/realtek - fixed speaker no sound 20bc7062c352f ASoC: cs35l45: Corrects ASP_TX5 DAPM widget channel 1bdbcf326474c ALSA: hda/realtek: Add quirk for Inspur S14-G1 b0b2cb84b64a9 gpio: sprd: Change sprd_gpio lock to raw_spin_lock 652667ac1369e ASoC: amd: yc: Add ASUS ExpertBook PM1503CDA to quirks list 464a50c6b23aa rust: driver: fix broken intra-doc links to example driver types 7d82e965fe0e3 rust: dma: fix broken intra-doc links 68dd6c5ebe799 rust: device: fix broken intra-doc links 31f33b856d232 scsi: qla2xxx: Fix bsg_done() causing double free 2784b1b43af37 Linux 6.18.12 53a76425e0764 Revert "driver core: enforce device_lock for driver_match_device()" ee4fb138af107 Linux 6.18.11 32f08c3ddd6dd gpio: omap: do not register driver in probe() 116f7bd8160c6 wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add 24a253c3aa6d9 PCI: endpoint: Avoid creating sub-groups asynchronously 60b75407c172e drm/exynos: vidi: use ctx->lock to protect struct vidi_context member variables related to memory alloc/free ed82e7949f5ca xfs: fix UAF in xchk_btree_check_block_owner d741534302f71 erofs: fix UAF issue for file-backed mounts w/ directio option 1d6bd6183e723 bus: fsl-mc: fix use-after-free in driver_override_show() d14e991279831 scsi: qla2xxx: Query FW again before proceeding with login f04840512438a scsi: qla2xxx: Free sp in error path to fix system crash c068ebbaf5282 scsi: qla2xxx: Delay module unload while fabric scan in progress ae49d33bfc08b scsi: qla2xxx: Allow recovery for tape devices 1a9585e4c58d1 scsi: qla2xxx: Validate sp before freeing associated memory 1339455044155 wifi: rtw88: Fix alignment fault in rtw_core_enable_beacon() 46c1d56ad321f hfs: ensure sb->s_fs_info is always cleaned up 4aa45f841413c nilfs2: Fix potential block overflow that cause system hang 52505d7f713bf crypto: virtio - Remove duplicated virtqueue_kick in virtio_crypto_skcipher_crypt_req e69a7b0a71b65 crypto: virtio - Add spinlock protection with virtqueue notification 2ed27b5a11743 crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly 62c89e1992c86 crypto: octeontx - Fix length check to avoid truncation in ucode_load_store d75207465eed2 crypto: iaa - Fix out-of-bounds index in find_empty_iaa_compression_mode 65a0016016e8b ALSA: hda/conexant: Add quirk for HP ZBook Studio G4 be7a9bcee0ca6 Bluetooth: btusb: Add USB ID 7392:e611 for Edimax EW-7611UXB 8d76b2488eb3c driver core: enforce device_lock for driver_match_device() 16c8be3d55441 smb: client: let send_done handle a completion without IB_SEND_SIGNALED 6bf260ace7301 smb: client: let smbd_post_send_negotiate_req() use smbd_post_send() 69ce4ae2ab65c smb: client: fix last send credit problem causing disconnects cca0526ef2344 smb: client: make use of smbdirect_socket.send_io.bcredits 9eff83600edf6 smb: client: use smbdirect_send_batch processing d059e5fc49755 smb: client: introduce and use smbd_{alloc, free}_send_io() 1f3e8e2c67cbc smb: client: split out smbd_ib_post_send() 8786127068d51 smb: client: port and use the wait_for_credits logic used by server 1fe0f989beb8b smb: client: remove pointless sc->send_io.pending handling in smbd_post_send_iter() 2b08ca3ab6cc5 smb: client: remove pointless sc->recv_io.credits.count rollback b9ec75aba3c8f smb: client: let smbd_post_send() make use of request->wr 5b69ba9978dd0 smb: client: let recv_done() queue a refill when the peer is low on credits f664e6e8a8110 smb: client: make use of smbdirect_socket.recv_io.credits.available 24082642654f3 smb: server: let send_done handle a completion without IB_SEND_SIGNALED 85bf0a73831cc smb: server: fix last send credit problem causing disconnects 5ef18a2e66f2f smb: server: make use of smbdirect_socket.send_io.bcredits cea7afb097b00 smb: server: let recv_done() queue a refill when the peer is low on credits 66c082e3d4651 smb: server: make use of smbdirect_socket.recv_io.credits.available 88cf40f7b5fb4 smb: smbdirect: introduce smbdirect_socket.send_io.bcredits.* e811e60e1cc79 smb: smbdirect: introduce smbdirect_socket.recv_io.credits.available cd25e0d809531 smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection() e4a8a96a93d08 ksmbd: add chann_lock to protect ksmbd_chann_list xarray 71b5e7c528315 ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths c4b9edd559873 smb: client: split cached_fid bitfields to avoid shared-byte RMW races 1658b66fed206 io_uring: allow io-wq workers to exit when unused f02693a40e407 io_uring/io-wq: add exit-on-idle state 41cec610f6906 Linux 6.18.10 31b593fbece63 riscv: Add intermediate cast to 'unsigned long' in __get_user_asm ecd164120c248 ALSA: usb-audio: Use the right limit for PCM OOB check 24ad4cfac0b8e ALSA: hda/realtek: Really fix headset mic for TongFang X6AR55xU. 57bac08056787 spi: tegra114: Preserve SPI mode bits in def_command1_reg b8eec12aa666c spi: tegra: Fix a memory leak in tegra_slink_probe() 2ac3a105e5149 spi: tegra210-quad: Protect curr_xfer check in IRQ handler d51554dc05695 spi: tegra210-quad: Protect curr_xfer clearing in tegra_qspi_non_combined_seq_xfer 3bc293d5b5650 spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer 2d3c0122e9611 spi: tegra210-quad: Protect curr_xfer assignment in tegra_qspi_setup_transfer_one 51013068438ac spi: tegra210-quad: Move curr_xfer read inside spinlock e1777c400b7a9 spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed transfer b767cf2d4efc8 regulator: spacemit-p1: Fix n_voltages for BUCK and LDO regulators 3f9b508b3eecc i2c: imx: preserve error state in block data length handler e71e3fa90a151 gpio: loongson-64bit: Fix incorrect NULL check after devm_kcalloc() 279cb9180510f ASoC: amd: fix memory leak in acp3x pdm dma ops 8434b351cd4ea ALSA: usb-audio: fix broken logic in snd_audigy2nx_led_update() 01d2fb15f15c1 firmware: cs_dsp: rate-limit log messages in KUnit builds abd66845227c5 firmware: cs_dsp: Factor out common debugfs string read b8ad2d53f706a ipv6: Fix ECMP sibling count mismatch when clearing RTF_ADDRCONF f3ed399e9aa6f nvme-pci: handle changing device dma map requirements 3c58f6121863c drm/xe/guc: Fix CFI violation in debugfs access. 8b68a45f9722f netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() 32ddd09d1103e hwmon: (occ) Mark occ_init_attribute() as __printf 8abb71d4a1dce drm/xe/pm: Disable D3Cold for BMG only on specific platforms 7c5db0957a230 drm/xe/query: Fix topology query pointer advance 184a84f03b5e6 drm/mgag200: fix mgag200_bmc_stop_scanout() 2e5edb69e5d0e net: gro: fix outer network offset 589a530ae44d0 net: add proper RCU protection to /proc/net/ptype 9f42cb8fafd6d net: ethernet: adi: adin1110: Check return value of devm_gpiod_get_optional() in adin1110_check_spi() 100f3bf914612 drm/amd/display: fix wrong color value mapping on MCM shaper LUT 0031f8829c7fb wifi: iwlwifi: mvm: pause TCM on fast resume 9b9f52f052f49 wifi: iwlwifi: mld: cancel mlo_scan_start_wk 5a2b4b0e9c003 net: enetc: Convert 16-bit register reads to 32-bit for ENETC v4 566ea5769ec27 net: enetc: Convert 16-bit register writes to 32-bit for ENETC v4 f346253e5fd95 net: enetc: Remove CBDR cacheability AXI settings for ENETC v4 d98745c68023f net: enetc: Remove SI/BDR cacheability AXI settings for ENETC v4 c175b1eaf729e tipc: use kfree_sensitive() for session key material f3931416cbdd0 net: rss: fix reporting RXH_XFRM_NO_CHANGE as input_xfrm for contexts 2718ae6af7445 linkwatch: use __dev_put() in callers to prevent UAF 64cf3016234ce io_uring/zcrx: fix page array leak fad7334082cd1 net: don't touch dev->stats in BPF redirect paths 8860ddf0e07be hwmon: (acpi_power_meter) Fix deadlocks related to acpi_power_meter_notify() 1b2efc593dca9 net: usb: r8152: fix resume reset deadlock cdedcd5aa3f3c macvlan: fix error recovery in macvlan_common_newlink() c9e4daf62ca07 net: sfp: Fix quirk for Ubiquiti U-Fiber Instant SFP module 8553bf2e09828 i40e: drop udp_tunnel_get_rx_info() call from i40e_open() 07bb882485f89 ice: drop udp_tunnel_get_rx_info() call from ndo_open() 7565d4df66b66 ice: Fix PTP NULL pointer dereference during VSI rebuild ef72678c9df0e ice: PTP: fix missing timestamps on E825 hardware 6801ef140fc33 ice: fix missing TX timestamps interrupts on E825 devices 1b381a638e185 dpaa2-switch: add bounds check for if_id in IRQ handler 4640fa5ad5e1a net: liquidio: Fix off-by-one error in VF setup_nic_devices() cleanup 293eaad0d6d6b net: liquidio: Fix off-by-one error in PF setup_nic_devices() cleanup d028147ae0640 net: liquidio: Initialize netdev pointer before queue setup 155eb99aff292 dpaa2-switch: prevent ZERO_SIZE_PTR dereference when num_ifs is zero 8a672f177ebe1 net/sched: cls_u32: use skb_header_pointer_careful() 9b186feb75267 net: add skb_header_pointer_careful() helper f8611a7981cd0 hwmon: (dell-smm) Add Dell G15 5510 to fan control whitelist 9ee608a64e37c smb/client: fix memory leak in smb2_open_file() faff38ebbfe63 platform/x86/intel/tpmi/plr: Make the file domain/status writeable 9029ccfab2ca9 platform/x86: hp-bioscfg: Skip empty attribute names 6c45a5a7e1e3b platform/x86: intel_telemetry: Fix PSS event register mask f93ae43780b75 platform/x86: toshiba_haps: Fix memory leaks in add/remove routines 245ff08e261ce Revert "drm/amd/display: pause the workload setting in dm" 98bf5bc8cb8cb tracing: Avoid possible signed 64-bit truncation 6dd87f6afe9e9 ALSA: hda/realtek: ALC269 fixup for Lenovo Yoga Book 9i 13IRU8 audio 3228b2eceb6c3 btrfs: reject new transactions if the fs is fully read-only b4b065a880997 wifi: mac80211: don't increment crypto_tx_tailroom_needed_cnt twice ccb3c75d57039 btrfs: sync read disk super and set block size 7a1bec39c014e wifi: mac80211: correctly check if CSA is active 990e40fb1d111 btrfs: fix Wmaybe-uninitialized warning in replay_one_buffer() 3835e49e146a4 scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() 108cbf2b7d295 ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU 1d5f2329ab4df io_uring/rw: free potentially allocated iovec on cache put failure c65a1a72a41e4 riscv: Use 64-bit variable for output in __get_user_asm 4530f4e4d0e6a scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() 8a7ef96e6af91 wifi: cfg80211: Fix bitrate calculation overflow for HE rates 36e88bd40a8c0 spi: intel-pci: Add support for Nova Lake SPI serial flash 7178b36de1850 ALSA: usb-audio: Add delay quirk for MOONDROP Moonriver2 Ti f08f2d2907675 regmap: maple: free entry on mas_store_gfp() failure 7d4c9c448c2b3 spi: hisi-kunpeng: Fixed the wrong debugfs node name in hisi_spi debugfs initialization 66b73d3f2cfc7 ALSA: hda/tas2781: Add newly-released HP laptop e6ce61e01c9a2 ASoC: tlv320adcx140: Propagate error codes during probe 3ba3d959c17aa ASoC: amd: yc: Fix microphone on ASUS M6500RE 1c90f930e7b41 nvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready() 62932d9ed639a ALSA: usb-audio: Prevent excessive number of frames e810b290922c5 nvme-fc: release admin tagset if init fails a883080063f97 ASoC: simple-card-utils: Check device node before overwrite direction 61fa85497c7b7 ASoC: davinci-evm: Fix reference leak in davinci_evm_probe 9f665b3c3d9a1 dmaengine: mmp_pdma: Fix race condition in mmp_pdma_residue() 921903d73967f ASoC: Intel: sof_sdw: Add new quirks for PTL on Dell with CS42L43 74309a4b0ffc7 wifi: mac80211: collect station statistics earlier when disconnect da1880c7b6b83 HID: Elecom: Add support for ELECOM M-XT3DRBK (018C) 71434e45bf124 HID: logitech: add HID++ support for Logitech MX Anywhere 3S b1f8285bc8e35 riscv: trace: fix snapshot deadlock with sbi ecall 151589d15ee87 ring-buffer: Avoid softlockup in ring_buffer_resize() during memory free cd7ff7fd3e4b7 drm/amd/pm: Disable MMIO access during SMU Mode 1 reset ecb8653a8fe9d HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101) 1e84a807c98a7 HID: Intel-thc-hid: Intel-thc: Add safety check for reading DMA buffer 2124279f1f8c3 HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report() 6e2108daed94e HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list 645671377158f drm/amd/display: Reduce number of arguments of dcn30's CalculatePrefetchSchedule() eb5d6dedadd66 netfilter: replace -EEXIST with -EBUSY ddab2d0f93200 PCI: qcom: Remove ASPM L0s support for MSM8996 SoC 3210077ed2648 ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk 5b9bbe3d7bb90 x86/sev: Disable GCOV on noinstr object 75f1f512b1567 ALSA: hda/realtek: Add quirk for Acer Nitro AN517-55 747b9a7d4c712 HID: playstation: Center initial joystick axes to prevent spurious events 7ae5b35148119 HID: intel-ish-hid: Reset enum_devices_done before enumeration 8b44e75379510 riscv: Sanitize syscall table indexing under speculation 28768bd3abf99 btrfs: fix reservation leak in some error paths when inserting inline extent a206870513cda HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL ea5ef771f3c26 HID: intel-ish-hid: Update ishtp bus match to support device ID table 6de3a371a8b9f btrfs: do not free data reservation in fallback from inline due to -ENOSPC 70dd3513ed6ac smb/server: fix refcount leak in parse_durable_handle_context() c2ed4f71e9288 LoongArch: Enable exception fixup for specific ADE subcode 2bb9c8a77df50 io_uring: use GFP_NOWAIT for overflow CQEs on legacy rings 4665e52bde3b1 smb/server: fix refcount leak in smb2_open() 0107b18cd8ac1 md: suspend array while updating raid_disks via sysfs 9531210f348aa LoongArch: Set correct protection_map[] for VM_NONE/VM_SHARED fdda836fcee6f smb/server: call ksmbd_session_rpc_close() on error path in create_smb2_pipe() f309b2c7df659 block,bfq: fix aux stat accumulation destination 86acdc1791944 platform/x86: dell-lis3lv02d: Add Latitude 5400 ff6892ea544c4 wifi: iwlwifi: Implement settime64 as stub for MVM/MLD PTP 6b7c60feab3c6 net: usb: sr9700: support devices with virtual driver CD 10d3ff7e5812c wifi: mac80211: don't WARN for connections on invalid channels 689a7980e4788 wifi: wlcore: ensure skb headroom before skb_push e0bd226804f8e wifi: mac80211: ocb: skip rx_no_sta when interface is not joined abd219fd48b11 tracing: Fix ftrace event field alignments 116ffca92dc4d binderfs: fix ida_alloc_max() upper bound e9bcfe865188a binder: fix BR_FROZEN_REPLY error log a6050dedb6f1c binder: fix UAF in binder_netlink_report() 287221c5e0707 rust_binderfs: fix ida_alloc_max() upper bound 685bb05d307ac rust_binder: add additional alignment checks 598fe3ff32e43 rust_binder: correctly handle FDA objects of length zero 13de38aa3ea7a sched/fair: Have SD_SERIALIZE affect newidle balancing de7cb4282dafc sched/fair: Skip sched_balance_running cmpxchg when balance is not due 3a15c519d2b0f bus: mhi: host: pci_generic: Add Telit FE990B40 modem support fa2274bb17a4a treewide: Drop pci_save_state() after pci_restore_state() 71c50e60421bb PCI/ERR: Ensure error recoverability at all times 1a893bd719121 hwmon: (gpio-fan) Allow to stop FANs when CONFIG_PM is disabled 37751b6d0b6b5 hwmon: (gpio-fan) Fix set_rpm() return value 4385b2f284354 KVM: Don't clobber irqfd routing type when deassigning irqfd 7a245ef476ffb KVM: selftests: Add -U_FORTIFY_SOURCE to avoid some unpredictable test failures a82647e1a9499 net: spacemit: k1-emac: fix jumbo frame support d5b3a66986697 net: cpsw_new: Execute ndo_set_rx_mode callback in a work queue 488009aa62bb1 net: cpsw: Execute ndo_set_rx_mode callback in a work queue ef763b480a3de nouveau/gsp: fix suspend/resume regression on r570 firmware a20887d5239a3 nouveau/gsp: use rpc sequence numbers properly. 9cc8caba82c2b nouveau: add a third state to the fini handler. 5f645222eb30c Revert "drm/amd: Check if ASPM is enabled from PCIe subsystem" 7b6a0f121d502 mm, shmem: prevent infinite loop on truncate race 41a7b9ab855c8 gve: Correct ethtool rx_dropped calculation 11f8311f69e4c gve: Fix stats report corruption on queue count change e9cdd54797dc2 drm/amd: Set minimum version for set_hw_resource_1 on gfx11 to 0x52 d3081353acaa6 cgroup/dmem: avoid pool UAF 5c38604abbfa5 cgroup/dmem: avoid rcu warning when unregister region c13816e8fa23d cgroup/dmem: fix NULL pointer dereference when setting max e258ed369c9e0 ceph: fix oops due to invalid pointer for kfree() in parse_longname() 35e6fd0d5bc30 ARM: 9468/1: fix memset64() on big-endian 46dfdb6f7a79d rbd: check for EOD after exclusive lock is ensured to be held 57b36ffc8881d ceph: fix NULL pointer dereference in ceph_mds_auth_match() e8af57e090790 mm/slab: Add alloc_tagging_slab_free_hook for memcg_alloc_abort_single cbc03ce3e6ce7 procfs: avoid fetching build ID while holding VMA lock eb54ce033b344 pmdomain: imx8m-blk-ctrl: fix out-of-range access of bc->domains 11ca03ce17d7d pmdomain: imx8mp-blk-ctrl: Keep usb phy power domain on for system wakeup 5171a3dddf427 pmdomain: imx: gpcv2: Fix the imx8mm gpu hang due to wrong adb400 reset 72129d55be9ce pmdomain: imx8mp-blk-ctrl: Keep gpc power domain on for system wakeup d72563e402bab pmdomain: qcom: rpmpd: fix off-by-one error in clamping to the highest state 5727ccf9d19ca ALSA: aloop: Fix racy access at PCM trigger 21816bbc8492f platform/x86: intel_telemetry: Fix swapped arrays in PSS output b5a02290ee3a4 KVM: x86: Explicitly configure supported XSS from {svm,vmx}_set_cpu_caps() a94b956bb7272 x86/kfence: fix booting on 32bit non-PAE systems feb603a69f830 x86/vmware: Fix hypercall clobbers ab200d71553bd nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec Signed-off-by: Bruce Ashfield --- meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend index c2e74b7..1b9f072 100644 --- a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend +++ b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend @@ -8,4 +8,4 @@ KMACHINE:genericx86 ?= "common-pc" KMACHINE:genericx86-64 ?= "common-pc-64" KBRANCH:genericarm64 ?= "v6.18/standard/genericarm64" -SRCREV_machine:genericarm64 ?= "0704231cf2930b9f7e6cfc2be65ca4cdcd4465ae" +SRCREV_machine:genericarm64 ?= "ab52f02d7b75097a1517e65897b379b1d47d316c" From patchwork Thu Apr 23 15:32:19 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86752 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 5B94EFC034C for ; Thu, 23 Apr 2026 15:32:51 +0000 (UTC) Received: from mail-ot1-f54.google.com (mail-ot1-f54.google.com [209.85.210.54]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.424.1776958361324493109 for ; Thu, 23 Apr 2026 08:32:41 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=LVea0rCW; spf=pass (domain: gmail.com, ip: 209.85.210.54, mailfrom: bruce.ashfield@gmail.com) Received: by mail-ot1-f54.google.com with SMTP id 46e09a7af769-7d4be94eeacso6836666a34.2 for ; Thu, 23 Apr 2026 08:32:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958360; x=1777563160; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=i+kK4kILcmfN1gBellVamwLn1lGlrKg0xRpsaPlrFFA=; b=LVea0rCWHGXqwDK7RtvEDkeLd8V6JfgZw2JNqPsugpkLewEFtHuiybmxpLYk9793oq i0HkEGxqsTz7Ar2/f4T7zHyCIxxJPEFyWCVmzLSxUHn16ZzM6xdFmrLMxl9fQZJSu8R2 DcIjcsaPhrfDu7gXzmLT+ji2uxT3UlSeoTvWDM7I0fUOwTc78BXhwE/jvpX6W9mqEOHd rxlv6lsq0EoRyruMga+/nFtxF/9/Ws/ZRlBWmRJ3OZnnVB/KDYGvm4wgAnDdHoALPL1D AxnGeTHHQFTUsgzcINscOTEC/NW/1i2GuDm4Q4XKRPHtG1e5XgMm09Bayhk7iZzGdXPc h6Jg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958360; x=1777563160; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=i+kK4kILcmfN1gBellVamwLn1lGlrKg0xRpsaPlrFFA=; b=qC3xfQ8Q264UhEDxSjh5g3qYbp52uf+kN1QcZZUSBBKh+c7tU7Tc5VWa6yFlQCldXr mn0QWcsK8kMXrvQ8MHAvUwIMh99UoSPdV+pIhA2+O6keaAClguFtjaFSqTnQS9fAMDc0 L9MJebQ/ikM8bKu0e7khjnf0sAb2sYSHlbANxA69B7Go0ddFpirsUqosyt33Jvl4gZIj 112b9cngtggdaciz2k6bcx9WlRJMjesKdVjZYPd3FitagFwNTBZPkruGcc8ntHDeSksa K5JldLoRrZoXUjsJZlzlxiqN3BvTkP0Cjxru1CCSfusYNS4ZM08NxNT39eYvTG6ZEX/3 XZEw== X-Gm-Message-State: AOJu0YwFYJhynEFf/3xAw18iLnHULKKqTyQe3IpEYzq+jj0LZ4YJcgAq 4nMqrObBytPtn63NXajimdns3+fPfZDedPNkXIorv0J0fG1yLks1uJpk6oxRh5wO X-Gm-Gg: AeBDiesStARE+cVirmyJUZRL6hZ3K1974MZ8jhtqLeQgXAPMhWJ4e5L1x1EFWuK1RHa EXeDhePnf5fsOV9bg1JXpbr2Gjya+xrXIWMT4BzT1GPvGqX8WWZS4BKbgyDaszyQUKjwBys0KAn WDjD/rMQBklOmyhRC63sqVnJyv3xQm1SiaZg+1H7Ky+CsgxNR/1JRThyfOnRzDIis5qis7Rw4r6 LqD1LlFi9L/nqy7yhpPMLoDSUvXJ/PSQo5OroeaTHxJc0byqB0J0h0zSdtgwkOwSftj4cD7fdRD 7BNlenAC0aZ8RUkwda8V26wyNR807GH5iT0JjKYtfyq9Vwue17lKfDBubv0aQuMyIIcds7Pcnfd cK8z+ZnrK+ErfKTTULVK48WU/Qe9aQqgiKwi5a+7R+zVqr8PMHr40PKHiQkatC2FZskbe3cw7nd JYUllbSHJNJBXkoWF6MsevSquFuK05roHeY3ExUOSYfTlc6prsy6BNLXACOxoqfywU9cPUSfZ02 1vAcd1AeopPdbLj+uvHqL8Q3CPMX43CVIp3CG7yLRXIRdr8IARxJ9uiFfpmzYUXvxlzpYa5uln7 F2vg X-Received: by 2002:a05:6830:6acc:b0:7d7:eabb:2a5 with SMTP id 46e09a7af769-7dc952219a6mr16064164a34.24.1776958360284; Thu, 23 Apr 2026 08:32:40 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.39 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:39 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta-yocto-bsp][PATCH 12/15] yocto-bsps: update to v6.18.21 Date: Thu, 23 Apr 2026 11:32:19 -0400 Message-ID: <20260423153222.1932256-13-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:51 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235786 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: 44c944a67997 Linux 6.18.21 e75a5c054d49 Bluetooth: L2CAP: Fix regressions caused by reusing ident 853f70c67d1b futex: Fix UaF between futex_key_to_node_opt() and vma_replace_policy() 18b7d09c2b79 futex: Require sys_futex_requeue() to have identical flags a7df91375471 irqchip/renesas-rzv2h: Fix error path in rzv2h_icu_probe_common() f0035858dfb2 netfs: Fix the handling of stream->front by removing it e7ba52b38766 xen/privcmd: unregister xenstore notifier on module exit 806d40421a59 btrfs: fix lost error when running device stats on multiple devices fs 3c844d01f987 btrfs: fix leak of kobject name for sub-group space_info c1677817b906 btrfs: fix super block offset in error message in btrfs_validate_super() 3e5fd8f53b57 netfs: Fix read abandonment during retry 0c9256f31003 selftests/mount_setattr: increase tmpfs size for idmapped mount tests 285a2602bf37 dmaengine: xilinx_dma: Fix reset related timeout with two-channel AXIDMA ec48fb2f5936 dmaengine: xilinx: xilinx_dma: Fix unmasked residue subtraction e75f5f76be90 dmaengine: xilinx: xilinx_dma: Fix residue calculation for cyclic DMA e9a6eba5f0c0 dmaengine: xilinx: xilinx_dma: Fix dma_device directions 82656e8daf8d dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() a4d1b4ba9754 netfs: Fix NULL pointer dereference in netfs_unbuffered_write() on retry 4bc2d72c7695 netfs: Fix kernel BUG in netfs_limit_iter() for ITER_KVEC iterators f27197ccfd2e dmaengine: xilinx: xdma: Fix regmap init error handling e1d0d0080bab dmaengine: dw-edma: Fix multiple times setting of the CYCLE_STATE and CYCLE_BIT bits for HDMA. eb048d11fa2a phy: ti: j721e-wiz: Fix device node reference leak in wiz_get_lane_phy_types() facd0012708e dmaengine: idxd: Fix leaking event log memory a18e809e22d3 dmaengine: idxd: Fix freeing the allocated ida too late a9e7815d3862 dmaengine: idxd: Fix memory leak when a wq is reset 958e96533ddb dmaengine: idxd: Fix not releasing workqueue on .release() 504c0e675100 dmaengine: idxd: Fix possible invalid memory access after FLR aa0ffc6d3990 dmaengine: idxd: Fix crash when the event log is disabled 40b3f4700e55 mm/mseal: update VMA end correctly on merge a5c6f6d6ceef ksmbd: fix use-after-free and NULL deref in smb_grant_oplock() 7ad1997b9bc8 mm/huge_memory: fix folio isn't locked in softleaf_to_folio() e9de9f3ce06b mm/damon/sysfs: fix param_ctx leak on damon_sysfs_new_test_ctx() failure 9c495f9d3781 mm/damon/core: avoid use of half-online-committed context 9cf7588aa578 mm/damon/stat: monitor all System RAM resources 5eeba3a7bf49 drm/amd/pm: fix amdgpu_irq enabled counter unbalanced on smu v11.0 e1cd6e0251ef rust: pin-init: internal: init: document load-bearing fact of field accessors 6b60e35a7fdb unwind_user/x86: Fix arch=um build 41fc9825ac25 powerpc64/bpf: do not increment tailcall count when prog is NULL b159111cdd8a arm64: dts: imx8mn-tqma8mqnl: fix LDO5 power off 812b6a7cd3e7 ext4: always drain queued discard work in ext4_mb_release() f7817ad399d6 ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths 12624c5b724a ext4: handle wraparound when searching for blocks for indirect mapped blocks 0652ab1bd814 ext4: fix the might_sleep() warnings in kvfree() c97e282f7bfd ext4: fix use-after-free in update_super_work when racing with umount ad1f6d608f33 ext4: reject mount if bigalloc with s_first_data_block != 0 1895f7904be7 ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() 416c86f30f91 ext4: avoid infinite loops caused by residual data 93f2e975ed65 ext4: validate p_idx bounds in ext4_ext_correct_indexes b44fc445b3b7 ext4: test if inode's all dirty pages are submitted to disk 4855a59e2178 ext4: publish jinode after initialization 823849a26af0 ext4: replace BUG_ON with proper error handling in ext4_read_inline_folio f49a14810dfe ext4: make recently_deleted() properly work with lazy itable initialization 1d4460f33ce8 ext4: fix fsync(2) for nojournal mode 16041a808b50 ext4: do not check fast symlink during orphan recovery 95de75794cd9 ext4: fix stale xarray tags after writeback 93cb2d103e5c ext4: convert inline data to extents when truncate exceeds inline size 69835472c726 ext4: fix journal credit check when setting fscrypt context 2c2db09b9043 xfs: remove file_path tracepoint data a1a5df1038f0 xfs: don't irele after failing to iget in xfs_attri_recover_work 68d80f35ea62 xfs: fix ri_total validation in xlog_recover_attri_commit_pass2 3b0c3414b308 xfs: scrub: unlock dquot before early return in quota scrub 95fb5d643cc7 xfs: avoid dereferencing log items after push callbacks 50f5f056807b xfs: save ailp before dropping the AIL lock in push callbacks 8147e304d7d3 xfs: stop reclaim before pushing AIL during unmount 38ec58670a0c mm/pagewalk: fix race between concurrent split and refault 3527e9fdc385 mm/damon/sysfs: check contexts->nr in repeat_call_fn 708033c231bd mm/damon/sysfs: check contexts->nr before accessing contexts_arr[0] 54c143028eb4 drm/amd/pm: Return -EOPNOTSUPP for unsupported OD_MCLK on smu_v13_0_6 126053d0a685 LoongArch: KVM: Handle the case that EIOINTC's coremap is empty 878cf6acb4fd LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust 70fb63c5d36c LoongArch: Workaround LS2K/LS7A GPU DMA hang bug 53a27c09850b LoongArch: vDSO: Emit GNU_EH_FRAME correctly a1da957c25cf LoongArch: Fix missing NULL checks for kstrdup() 70e2eb91cb63 drm/i915: Unlink NV12 planes earlier 859b14e0be9e drm/i915: Order OP vs. timeout correctly in __wait_for() 8581466b827f drm/i915/dp_tunnel: Fix error handling when clearing stream BW in atomic state eb95595194e4 drm/amd/display: Fix drm_edid leak in amdgpu_dm 51ccaf0e30c3 drm/amdgpu: prevent immediate PASID reuse case b6a468966347 dmaengine: sh: rz-dmac: Move CHCTRL updates under spinlock 2b2518b1abb3 dmaengine: sh: rz-dmac: Protect the driver specific lists 79d2151a7c30 dmaengine: fsl-edma: fix channel parameter config for fixed channel requests 20768be1734c i2c: imx: ensure no clock is generated after last read dca0e38ecfd0 i2c: imx: fix i2c issue when reading multiple messages 92e47ad03e03 futex: Clear stale exiting pointer in futex_lock_pi() retry path 83bcea9da919 i2c: designware: amdisp: Fix resume-probe race condition issue 7319d57db908 irqchip/qcom-mpm: Add missing mailbox TX done acknowledgment 1d896b408646 jbd2: gracefully abort on checkpointing state corruptions bab090e8fd56 KVM: x86/mmu: Only WARN in direct MMUs when overwriting shadow-present SPTE 695320de6ead KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE f4bc91398b57 net: macb: Use dev_consume_skb_any() to free TX SKBs 33eeb5471a8b net: macb: Protect access to net_device::ip_ptr with RCU lock 99405131d6ed net: macb: Move devm_{free,request}_irq() out of spin lock area 4771b85954be scsi: ses: Handle positive SCSI error from ses_recv_diag() 786f10b1966e scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() e02685511282 ovl: fix wrong detection of 32bit inode numbers ebbac99bb666 ovl: make fsync after metadata copy-up opt-in mount option db08e8c32090 phy: qcom: qmp-ufs: Fix SM8650 PCS table for Gear 4 4cce3cd5ed79 x86/fred: Fix early boot failures on SEV-ES/SNP guests a6e14114684d x86/cpu: Remove X86_CR4_FRED from the CR4 pinned bits mask 5433c7ac4bc8 x86/cpu: Enable FSGSBASE early in cpu_init_exception_handling() 83800f8ef358 writeback: don't block sync for filesystems with no data integrity guarantees e54c8863ba33 alarmtimer: Fix argument order in alarm_timer_forward() da4046406459 erofs: add GFP_NOIO in the bio completion if needed 9a18629f2525 virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false 6f3c8795ae9b virt: tdx-guest: Fix handling of host controlled 'quote' buffer length 371a43c4ac70 xfrm: iptfs: only publish mode_data after clone setup de6d8e8ce518 xfrm: iptfs: validate inner IPv4 header length in IPTFS payload 72b9e81e0203 media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex 529a3f3c49d3 hwmon: (peci/cputemp) Fix off-by-one in cputemp_is_visible() d640ef7117a1 hwmon: (peci/cputemp) Fix crit_hyst returning delta instead of absolute temperature 67fd1e71f768 hwmon: (pmbus/isl68137) Add mutex protection for AVS enable sysfs attributes bf28ab8bed18 hwmon: (pmbus/ina233) Fix error handling and sign extension in shunt voltage read 8e209d882b67 KVM: arm64: Discard PC update state on vcpu reset 4cf2cc6bc1cd platform/x86: ISST: Correct locked bit width fdaf61f2831a RDMA/ionic: Preserve and set Ethernet source MAC after ib_ud_header_init() ab839325a41c thermal: intel: int340x: soc_slider: Set offset only for balanced mode 8def1e51df14 kbuild: Delete .builtin-dtbs.S when running make clean e2f7e4d83ab8 cpufreq: conservative: Reset requested_freq on limits change f162aa749a40 can: netlink: can_changelink(): add missing error handling to call can_ctrlmode_changelink() eec8a1b18a79 can: isotp: fix tx.buf use-after-free in isotp_sendmsg() 84f8b76d2427 can: gw: fix OOB heap access in cgw_csum_crc8_rel() cab361aa6404 ASoC: SOF: ipc4-topology: Allow bytes controls without initial payload d472d1a52985 ASoC: sma1307: fix double free of devm_kzalloc() memory 6ab27f2dc76d ASoC: codecs: wcd934x: fix typo in dt parsing c215d25cf050 ALSA: firewire-lib: fix uninitialized local variable 61aff3c1edc3 ALSA: hda/realtek: add quirk for ASUS Strix G16 G615JMR 47c459a6c9b6 Revert "ALSA: hda/intel: Add MSI X870E Tomahawk to denylist" a897064a4570 ksmbd: do not expire session on binding failure 3cdacd11b415 ksmbd: fix memory leaks and NULL deref in smb2_lock() b0cd9725fe2b ksmbd: fix potencial OOB in get_file_all_info() for compound requests 80824c7e527b ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len() 5eda8001ebb5 drm/xe: always keep track of remap prev/next f278b8ebf7eb tracing: Fix potential deadlock in cpu hotplug with osnoise 7f4e3233faa8 s390/entry: Scrub r12 register on kernel entry 3d39a4ec6380 s390/barrier: Make array_index_mask_nospec() __always_inline 87776f02449e s390/syscalls: Add spectre boundary for syscall dispatch table 449005087718 ALSA: usb-audio: Exclude Scarlett 2i4 1st Gen from SKIP_IFACE_SETUP e89e2b97253c spi: spi-fsl-lpspi: fix teardown order issue (UAF) efb07062d95c ASoC: adau1372: Fix clock leak on PLL lock failure 02709ae51f93 ASoC: adau1372: Fix unchecked clk_prepare_enable() return value 01d5711be772 sysctl: fix uninitialized variable in proc_do_large_bitmap 4e9d723d9f19 hwmon: (pmbus/core) Protect regulator operations with mutex cdf31cf5ca4a hwmon: (pmbus) Introduce the concept of "write-only" attributes 34479e52f1e9 hwmon: (pmbus) Mark lowest/average/highest/rated attributes as read-only 8b476d95e98b hwmon: (adm1177) fix sysfs ABI violation and current unit conversion 39820864eacd drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib d04c007047c8 ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() c73a58661a76 spi: use generic driver_override infrastructure 15da4f5e1001 drm/xe: Implement recent spec updates to Wa_16025250150 4e96a8440e74 rust: regulator: do not assume that regulator_get() returns non-null 8f3226f00cb1 ASoC: dt-bindings: stm32: Fix incorrect compatible string in stm32h7-sai match 8a5edc97fd9c drm/amd/display: Do not skip unrelated mode changes in DSC validation da06a104f048 spi: meson-spicc: Fix double-put in remove path 7af2d06ec25b ASoC: Intel: catpt: Fix the device initialization 234a82a13886 spi: sn-f-ospi: Fix resource leak in f_ospi_probe() 3025ca5daa9d PM: sleep: Drop spurious WARN_ON() from pm_restore_gfp_mask() 13a6af01c1e3 PM: hibernate: Drain trailing zero pages on userspace restore 842aa6103b6f drm/i915/gmbus: fix spurious timeout on 512-byte burst reads 9a709b7e3632 drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register f8afc292d4bc x86/efi: efi_unmap_boot_services: fix calculation of ranges_to_free size a8b66cf9ba3c scsi: scsi_transport_sas: Fix the maximum channel scanning issue 6140239d4518 ASoC: fsl: imx-card: initialize playback_only and capture_only 3f08351de5ca RDMA/irdma: Harden depth calculation functions 0e04f3f2dca4 RDMA/irdma: Return EINVAL for invalid arp index error cd8bcec2de5e RDMA/irdma: Fix deadlock during netdev reset with active connections 8203f295b4bc RDMA/irdma: Remove reset check from irdma_modify_qp_to_err() 30d9491bbb69 RDMA/irdma: Clean up unnecessary dereference of event->cm_node 4c2b2ea802bc RDMA/irdma: Remove a NOP wait_event() in irdma_modify_qp_roce() feeabfc936d7 RDMA/irdma: Update ibqp state to error if QP is already in error state 3cb88c12461b RDMA/irdma: Initialize free_qp completion before using it 9d4fe0d7586e ALSA: usb-audio: Exclude Scarlett 2i2 1st Gen from SKIP_IFACE_SETUP f9433abfcf83 RDMA/efa: Fix possible deadlock 21ae8790e5a8 RDMA/rw: Fall back to direct SGE on MR pool exhaustion a1dc886137ab ALSA: hda/realtek: Sequence GPIO2 on Star Labs StarFighter f710129df9fc regmap: Synchronize cache for the page selector 0dd98aea1c0c RDMA/efa: Fix use of completion ctx after free 97da0d993d7c RDMA/efa: Improve admin completion context state machine 26bd3a77c5ff RDMA/efa: Check stored completion CTX command ID with received one 7ff87da09921 net: macb: use the current queue number for stats c6cb41eaae87 netfilter: ctnetlink: use netlink policy range checks 01f34a80ac23 netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp 9ca8c7452493 netfilter: nf_conntrack_expect: skip expectations in other netns via proc 53d8899452d9 netfilter: nft_set_rbtree: revisit array resize logic d8795fde1f78 netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() c9f6c51d3648 netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD 9f557c7eae12 tls: Purge async_hold in tls_decrypt_async_wait() 1019028eb124 Bluetooth: btusb: clamp SCO altsetting table indices 900e4db5385e Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop 3f26ecbd9cde Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() ea6cf86167b3 Bluetooth: L2CAP: Fix not tracking outstanding TX ident 66696648af47 Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock 5c7cd74673bc Bluetooth: L2CAP: Fix send LE flow credits in ACL link 4f23cceb3500 dma-mapping: add missing `inline` for `dma_free_attrs` 064fede3ae78 rtnetlink: fix leak of SRCU struct in rtnl_link_register 4e27807943b1 net: lan743x: fix duplex configuration in mac_link_up 0a7468ed49a6 team: fix header_ops type confusion with non-Ethernet ports a72891444623 virtio-net: correct hdr_len handling for tunnel gso 5f217e718236 virtio-net: correct hdr_len handling for VIRTIO_NET_F_GUEST_HDRLEN 2fefa595d484 net: enetc: fix the output issue of 'ethtool --show-ring' 18d84c45def3 udp: Fix wildcard bind conflict check when using hash2 966937039e07 net: airoha: add RCU lock around dev_fill_forward_path d0c7cdc15fdf net: fix fanout UAF in packet_release() via NETDEV_UP race 103931f6fdbb ipv6: Don't remove permanent routes with exceptions from tb6_gc_hlist. edf57ce04bc1 ipv6: Remove permanent routes from tb6_gc_hlist when all exceptions expire. bb85741d2dc2 iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() 22c117745495 ice: use ice_update_eth_stats() for representor stats 218609e1e466 ice: fix inverted ready check for VF representors fe1ed519210a platform/x86: intel-hid: disable wakeup_mode during hibernation a825ab202533 platform/olpc: olpc-xo175-ec: Fix overflow error message to print inlen eaa3dae239f2 platform/x86: lenovo: wmi-gamezone: Drop gz_chain_head e29850b0faa8 platform/x86: ISST: Check HWP support before MSR access d57cf5c770c0 net: bcmasp: fix double disable of clk 9e5f5c07cc7d net: bcmasp: fix double free of WoL irq aba90ae2379f net: bcmasp: streamline early exit in probe 60ed7fa717b1 rtnetlink: count IFLA_INFO_SLAVE_KIND in if_nlmsg_size 6fa3f2764f49 rtnetlink: count IFLA_PARENT_DEV_{NAME,BUS_NAME} in if_nlmsg_size 54c87a730157 net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer bd50c7484c3b openvswitch: validate MPLS set/set_masked payload length 98b726ab5e2a openvswitch: defer tunnel netdev_put to RCU release 95265232b497 net: openvswitch: Avoid releasing netdev before teardown completes d89b74bf08f0 nfc: nci: fix circular locking dependency in nci_close_device 097b16ffa61e ionic: fix persistent MAC address override on PF 936a3c0c10e2 pinctrl: mediatek: common: Fix probe failure for devices without EINT 1dc6db047919 Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready_cb 9ecbfd93cd6d Bluetooth: hci_ll: Fix firmware leak on error path bafec9325d4d Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete 7197462e90b8 Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold 8c96f3bd4ae0 Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() 5b35f8211a91 Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req 46737243be21 pinctrl: stm32: fix HDP driver dependency on GPIO_GENERIC 1500005f286f can: statistics: add missing atomic access in hot path 5cf3972c8221 erofs: set fileio bio failed in short read case f4b4debc0b73 dma: swiotlb: add KMSAN annotations to swiotlb_bounce() 83f644ea9298 af_key: validate families in pfkey_send_migrate() 8854e9367465 xfrm: prevent policy_hthresh.work from racing with netns teardown 2255ed6adbc3 xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() ee0e3521f806 pinctrl: renesas: rza1: Normalize return value of gpio_get() 33a7b3626893 xfrm: iptfs: fix skb_put() panic on non-linear skb during reassembly 7068aaa1cef4 pinctrl: renesas: rzt2h: Fix device node leak in rzt2h_gpio_register() 88d386243ed3 esp: fix skb leak with espintcp and async crypto af834169a410 xfrm: call xdo_dev_state_delete during state update ecb02f949e3e xfrm: fix the condition on x->pcpu_num in xfrm_sa_len 88467620fa4a xfrm: add missing extack for XFRMA_SA_PCPU in add_acquire and allocspi b4a1e07944fe i3c: master: dw-i3c: Fix missing of_node for virtual I2C adapter 6eee692c4204 ALSA: hda/realtek: add quirk for ASUS UM6702RC 72969a102f93 spi: intel-pci: Add support for Nova Lake mobile SPI flash cbc467b4d9f3 usb: core: new quirk to handle devices with zero configurations ad696758a45c drm/amdgpu: fix gpu idle power consumption issue for gfx v12 ca111c9d8d6c nvmet: move async event work off nvmet-wq 17c9ad5aa46c objtool: Handle Clang RSP musical chairs 90420418e622 ALSA: hda/realtek: Add headset jack quirk for Thinkpad X390 f93b6da04ec7 ALSA: hda/realtek: Add quirk for Gigabyte Technology to fix headphone bee43f7b9bc6 ALSA: hda/realtek: add HP Laptop 14s-dr5xxx mute LED quirk ed97a37b00d9 powerpc64/ftrace: fix OOL stub count with clang 2ec578e64521 btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create 91608747a8d2 sched_ext: Use WRITE_ONCE() for the write side of dsq->seq update be1a341c1614 HID: apple: avoid memory leak in apple_report_fixup() 74b1b0d84697 bpf: Fix u32/s32 bounds when ranges cross min/max boundary b4770c2e70e6 ASoC: amd: acp: Add ACP6.3 match entries for Cirrus Logic parts be0c2255d717 drm/ttm/tests: Fix build failure on PREEMPT_RT 34f0790eb712 ALSA: hda/senary: Ensure EAPD is enabled during init 5cf83b76f738 block: break pcpu_alloc_mutex dependency on freeze_lock e33c0c59f1f4 dma-buf: Include ioctl.h in UAPI header 9924fd289901 ASoC: cs35l56: Only patch ASP registers if the DAI is part of a DAIlink 1e68eeada7b0 ASoC: fsl_easrc: Fix event generation in fsl_easrc_iec958_put_bits() 77759925aeb6 ALSA: hda/hdmi: Add Tegra238 HDA codec device ID 3d5f63d86720 ASoC: Intel: sof_sdw: Add quirk for Alienware Area 51 (2025) 0CCD SKU 74b25178943f scsi: devinfo: Add BLIST_SKIP_IO_HINTS for Iomega ZIP 09293aecd479 ASoC: rt1321: fix DMIC ch2/3 mask issue 99c9a684b22d scsi: mpi3mr: Clear reset history on ready and recheck state after timeout f927555140c7 ASoC: fsl_easrc: Fix event generation in fsl_easrc_iec958_set_reg() ef75dc1401d8 module: Fix kernel panic when a symbol st_shndx is out of bounds 4ebc4d48fca9 HID: asus: add xg mobile 2023 external hardware support bf0ffc028f82 HID: mcp2221: cancel last I2C command on read error 0a4e44eb4b0c platform/x86: oxpec: Add support for OneXPlayer X1 Air ba6af12e600b platform/x86: oxpec: Add support for Aokzoe A2 Pro 6ea6cfdbd646 kbuild: install-extmod-build: Package resolve_btfids if necessary 4121e616c08a net: usb: r8152: add TRENDnet TUC-ET2G 1faaa81aabab platform/x86: oxpec: Add support for OneXPlayer X1z b06021c3cfd8 HID: apple: Add EPOMAKER TH87 to the non-apple keyboards list 43c40bfb8503 platform/x86: oxpec: Add support for OneXPlayer APEX f061affafb59 HID: intel-ish-hid: ipc: Add Nova Lake-H/S PCI device IDs 136f605e246b HID: magicmouse: avoid memory leak in magicmouse_report_fixup() 4101a437c236 HID: magicmouse: fix battery reporting for Apple Magic Trackpad 2 b96c7b25eb1b nvme-pci: ensure we're polling a polled queue 4877461104f2 platform/x86: touchscreen_dmi: Add quirk for y-inverted Goodix touchscreen on SUPI S10 05bc9939b501 platform/x86: intel-hid: Enable 5-button array on ThinkPad X1 Fold 16 Gen 1 94b2a56fd4b1 platform/x86: hp-wmi: Add Omen 16-xd0xxx fan and thermal support 470e01ae896c nvme-fabrics: use kfree_sensitive() for DHCHAP secrets 2e9b4ca982d8 nvme-pci: cap queue creation to used queues 47910033f542 platform/x86: intel-hid: Add Dell 14 Plus 2-in-1 to dmi_vgbs_allow_list a41cc7c1668e HID: asus: avoid memory leak in asus_report_fixup() c6a021ae84aa platform/x86: hp-wmi: Add Omen 16-wf0xxx fan and thermal support 61415d080d43 tracing: Revert "tracing: Remove pid in task_rename tracing output" 58bd87d0e692 bpf: Fix unsound scalar forking in maybe_fork_scalars() for BPF_OR f14ca604c0ff bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN c0281da1f2aa bpf: Fix exception exit lock checking for subprogs a85bbd9ef8a0 cxl: Adjust the startup priority of cxl_pmem to be higher than that of cxl_acpi a446dbcb3877 bpf: Release module BTF IDR before module unload 7c02a9bd7d14 driver core: platform: use generic driver_override infrastructure ad9465ca3444 driver core: generalize driver_override in struct device 1b1f570444dc sh: platform_early: remove pdev->driver_override check 1f11dc6dc792 hwmon: axi-fan: don't use driver_override as IRQ name e85f446e82aa cxl/hdm: Avoid incorrect DVSEC fallback when HDM decoders are enabled b36b0e804aee s390/mm: Add missing secure storage access fixups for donated memory 35f7914e54fe perf: Make sure to use pmu_ctx->pmu for groups d94e6989e26c x86/perf: Make sure to program the counter value for stopped events on migration ccbf29b28b55 bpf: Fix constant blinding for PROBE_MEM32 stores a17443af8742 bpf: Reset register ID for BPF_END value tracking 2c3214146204 cxl/port: Fix use after free of parent_port in cxl_detach_ep() Signed-off-by: Bruce Ashfield --- meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend index 1b9f072..ce58481 100644 --- a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend +++ b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend @@ -8,4 +8,4 @@ KMACHINE:genericx86 ?= "common-pc" KMACHINE:genericx86-64 ?= "common-pc-64" KBRANCH:genericarm64 ?= "v6.18/standard/genericarm64" -SRCREV_machine:genericarm64 ?= "ab52f02d7b75097a1517e65897b379b1d47d316c" +SRCREV_machine:genericarm64 ?= "00e5fc320cb18073f86c8c86f40fbc3787ced78d" From patchwork Thu Apr 23 15:32:20 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86754 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id A803FFC0357 for ; Thu, 23 Apr 2026 15:32:51 +0000 (UTC) Received: from mail-qv1-f48.google.com (mail-qv1-f48.google.com [209.85.219.48]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.402.1776958364169386627 for ; Thu, 23 Apr 2026 08:32:44 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=CxaDxZl5; spf=pass (domain: gmail.com, ip: 209.85.219.48, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f48.google.com with SMTP id 6a1803df08f44-8acb3dab8dfso43763626d6.1 for ; Thu, 23 Apr 2026 08:32:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958363; x=1777563163; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=3IMv1l41jlvHfZpUVmZmpYt3jctKSPyKragacWofRSY=; b=CxaDxZl5Stw3+dNBZH0IiuguokbqEAKrp5cycjsXTEtxY15eauJSWN3MJJRVPmcTHH qRhiNla5zrFUZHjMZTFMQ9AtdQZQTzlfXjlV6KuLhwbA9RSpF73iXFDBsDBhcRwcq/l0 TZOVUZBN+HHSRDPq+BNbOx8EPnJ1iKLkwp8+NE/Tv/snCKUrchelQMxgkEYG07gCm+OK /tfkwRqdWLug1lAEJKLZUwtR5eMHS2itvzYxxe4QJJTS+5SkcGi+bLGyjKILgYm3GBix bJlKnf1nmvnbvplvodOY6gaVcoNPqU/zlKjndXCjnkrr6IAEO9Th3q0twl7/26gLViea DuqA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958363; x=1777563163; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=3IMv1l41jlvHfZpUVmZmpYt3jctKSPyKragacWofRSY=; b=hJI5Txv62yIQIUyMDkK0ByvW6XSVvwH2I6RbWCwDgoGP1Z70AT3pYy72mxSvWnTL/m U2TzCovHTkABc8cWQeOjHXQJ5EcZmpMszJgaiFlS+cjW1EU70ZxiwhWVXDjqL/xTROfP M+yxiDe6HI31HFXKmFdRZ9mq1RD03mV7X57R9ZcGFDLPRI31NMaunLUt7/1xuD5AOg8c Gn9AT+mk4bIgWbFLq/IFy2gEu2wDCxriaxHLogEyZQtUm9uQPKp42K/MEGdOcC5XVzpP SpShUC59jekqtrwC21YqxZ5Vgc8sCqCA3GqJudxJqT6Vh60K6v3Cnk/ND+w3Eqlmvd2I +kOQ== X-Gm-Message-State: AOJu0YzddWiJTMcsAp6wq3Lx81r2ifbUEDudWMs7jYJpPmUBGFslTBBc vZYJ6+z5jb/wH/XNV0NqBsjIZ0uN43oaATcPewd/SVyAcPEsA/W46M9o X-Gm-Gg: AeBDiesg2SAjUpc4mpcJh8pK5GcZgORguOs8YXZHrfps2I+MW9KvyW1k0NoPmqIAF/d PaiTLZXNmkyY9ifm3437ymWdFFS1rcAtS9qC2EwMSUodyT3j5qtOiLnJj9qwi8pwPC8g7ab803V MeFuWgWut9aYH87x22Vv0OZrDR5Ptra6G9Cyd/Z3xDmoBNdqZTwXoFPM78jb31WEVnDe64eTta8 j8agZ8wDFfWRolSr1uF4n+70R6OL+LkwcacldkIrbhyot7EMdN0yxHwsKJ7OtstuCEC1hOt5/xZ /de6jcX/91sqaj42bEIqks+QOs7TOUoZW0fZk/UoG5hdb3YH2BdyuNQjSG2DqPfEvwkmrO72oQ8 cMIQ6ixIqI8O+RIggnSdup0USUfFiDGxb17bTafo4y3CKnPjNaoIZEGt33R+oG4gYrojA1tFUE2 ix2MdqfqWGUapWMk/09iLfzzyZqb7n3Mn06L7g6M4shT+hdXk72PBtLWf5v4dlIIFPNArNlCKPb mQtausX/S8GIny75mr3V+QKtCPX42H5L8j69qf48AnzHwjRrTDvYRmCHNEcqFq2Y6l5Xg== X-Received: by 2002:a05:6214:c67:b0:89c:5289:4be7 with SMTP id 6a1803df08f44-8b0280ecbeemr433143526d6.26.1776958362440; Thu, 23 Apr 2026 08:32:42 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.40 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:40 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta-yocto-bsp][PATCH 13/15] yocto-bsps: update to v6.18.22 Date: Thu, 23 Apr 2026 11:32:20 -0400 Message-ID: <20260423153222.1932256-14-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:51 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235788 From: Bruce Ashfield Updating linux-yocto/6.18 to the latest korg -stable release that comprises the following commits: f2b09e8b594ce Linux 6.18.22 5e7b2cc8fae9e sched_ext: Fix stale direct dispatch state in ddsp_dsq_id d5776a31c1657 sched_ext: Refactor do_enqueue_task() local and global DSQ paths 9e36ceb5ca431 mm/memory: fix PMD/PUD checks in follow_pfnmap_start() cef18bb87a6c2 mm: replace READ_ONCE() with standard page table accessors a836054ea8101 scsi: target: tcm_loop: Drain commands in target_reset handler ce54802fe6bb7 scsi: target: file: Use kzalloc_flex for aio_cmd a98b78116a27e net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback 5f4061f8225d1 net: mana: fix use-after-free in add_adev() error path 24ce568f7553a drm/amd/display: Fix DCE LVDS handling ba9be472a438e drm/amd/pm: disable OD_FAN_CURVE if temp or pwm range invalid for smu v13 5bbadf60b1210 wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free e367143b520ae kallsyms: prevent module removal when printing module name and buildid 10bbeed03e1db kallsyms: cleanup code for appending the module buildid c1d72e846cb4e kallsyms: clean up modname and modbuildid initialization in kallsyms_lookup_buildid() ab5f05ae96fcd kallsyms: clean up @namebuf initialization in kallsyms_lookup_buildid() 8e5eb1d6e6a3d usb: gadget: f_uac1_legacy: validate control request size 5d1bb391ceeeb usb: gadget: f_hid: move list and spinlock inits from bind to alloc 18ada801899f2 usb: gadget: f_rndis: Fix net_device lifecycle with device_move 9cbc4f109bb21 usb: gadget: f_subset: Fix net_device lifecycle with device_move 4ccdccff8febc usb: gadget: f_eem: Fix net_device lifecycle with device_move 4e34f3f491fd7 usb: gadget: f_ecm: Fix net_device lifecycle with device_move 446f1842cda92 usb: gadget: f_rndis: Protect RNDIS options with mutex 3d436670b4741 usb: gadget: f_subset: Fix unbalanced refcnt in geth_free 1aa9356881ee4 usb: gadget: uvc: fix NULL pointer dereference during unbind race a36e5e800b9c9 usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo 6ad77458637b7 usb: gadget: u_ether: Fix race between gether_disconnect and eth_stop 63dc317dfcd3f ice: Fix memory leak in ice_set_ringparam() 7d581e2534693 HID: appletb-kbd: add .resume method in PM f4e608fe12b7a usb: typec: ucsi: validate connector number in ucsi_notify_common() cc300853b9eba usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer 5687a09776069 USB: dummy-hcd: Fix interrupt synchronization error efbd9441f1e76 USB: dummy-hcd: Fix locking/synchronization error cd9c6fcd1cf13 thunderbolt: Fix property read in nhi_wake_supported() 15f0c2d9eebc1 usb: typec: thunderbolt: Set enter_vdo during initialization acea446ba4f42 misc: fastrpc: check qcom_scm_assign_mem() return in rpmsg_probe 3a164f640953c misc: fastrpc: possible double-free of cctx->remote_heap c4c7219e93319 thermal: core: Fix thermal zone device registration error path 2dbe93f344f10 thermal: core: Address thermal zone removal races with resume f0cf9c7b7c281 gpio: Fix resource leaks on errors in gpiochip_add_data_with_key() 70b6e2e015030 gpio: mxc: map Both Edge pad wakeup to Rising Edge 72c43eb2e334f sched_ext: Fix is_bpf_migration_disabled() false negative on non-PREEMPT_RCU d2703b4f8fb7c cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path 65a5847e1a6c9 virtio_net: clamp rss_max_key_size to NETDEV_RSS_KEY_LEN 5dff799c67715 net: ethernet: mtk_ppe: avoid NULL deref when gmac0 is disabled 8351d18989c86 net: ftgmac100: fix ring allocation unwind on open failure eddfce70a6f31 vxlan: validate ND option lengths in vxlan_na_create 3aea268b6d5cd crypto: tegra - Add missing CRYPTO_ALG_ASYNC 6562290225c19 counter: rz-mtu3-cnt: do not use struct rz_mtu3_channel's dev member e07237df8538b counter: rz-mtu3-cnt: prevent counter from being toggled multiple times bbb6c37c7a483 vt: resize saved unicode buffer on alt screen exit after resize 891d790fdb5c9 vt: discard stale unicode buffer on alt screen exit after resize 554d005d51611 gpib: Fix fluke driver s390 compile issue 68ca0eea0af02 netfilter: ipset: drop logically empty buckets in mtype_del 784ed4abded1c nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy 0c94b84b6ef51 nvmem: imx: assign nvmem_cell_info::raw_len 5a8f2e95f9a19 s390/cpum_sf: Cap sampling rate to prevent lsctl exception 586222c37d402 s390/zcrypt: Fix memory leak with CCA cards used as accelerator a11f022db7d85 spi: cadence-qspi: Fix exec_mem_op error handling f5526abe978fd dt-bindings: connector: add pd-disable dependency d266498da90d3 firmware: microchip: fail auto-update probe if no flash found eae19cab44204 comedi: me4000: Fix potential overrun of firmware buffer a47ae40339c10 comedi: me_daq: Fix potential overrun of firmware buffer 43c68a2c7cc35 comedi: ni_atmio16d: Fix invalid clean-up after failed attach b89c026227712 comedi: Reinit dev->spinlock between attachments to low-level drivers 34c8b3a91bdfb comedi: dt2815: add hardware detection to prevent crash e92f5ee730653 cdc-acm: new quirk for EPSON HMD 837392a384457 bridge: br_nd_send: validate ND option lengths 5da684c24e8b4 ASoC: qcom: sc7280: make use of common helpers f43f77499ec8d io_uring: protect remaining lockless ctx->rings accesses with RCU 09f78265a93d4 usb: core: use dedicated spinlock for offload state 5a85599ca4d25 usb: cdns3: gadget: fix state inconsistency on gadget init failure 390536cc6af4c usb: cdns3: gadget: fix NULL pointer dereference in ep_queue 701903fcac4a4 usb: core: phy: avoid double use of 'usb3-phy' 61937f6862904 usb: dwc2: gadget: Fix spin_lock/unlock mismatch in dwc2_hsotg_udc_stop() 6288b46e5ac68 usb: ehci-brcm: fix sleep during atomic 34af2da733f4e usb: host: xhci-sideband: delegate offload_usage tracking to class drivers 65ff09f48b0e7 usb: misc: usbio: Fix URB memory leak on submit failure 977b632db51d2 usb: usbtmc: Flush anchored URBs in usbtmc_release 38c28fe256110 usb: ulpi: fix double free in ulpi_register_interface() error path 882bdb01ff12c usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive 21f942879f861 gpib: lpvo_usb: fix memory leak on disconnect ffacfe07177d3 mei: me: reduce the scope on unexpected reset fefd0bceac15f iio: gyro: mpu3050: Fix out-of-sequence free_irq() cc3de12a5612e iio: gyro: mpu3050: Move iio_device_register() to correct location 3a8e68d65a443 iio: gyro: mpu3050: Fix irq resource leak ac1233397f4cf iio: gyro: mpu3050: Fix incorrect free_irq() variable 7f14b52a81f94 iio: imu: st_lsm6dsx: Set FIFO ODR for accelerometer and gyroscope only d6e078c634094 iio: imu: bmi160: Remove potential undefined behavior in bmi160_config_pin() 04d8f0a785dc0 iio: light: veml6070: fix veml6070_read() return value 0ad74c370e8de iio: light: vcnl4035: fix scan buffer on big-endian b0e1fec0a0d07 iio: imu: adis16550: fix swapped gyro/accel filter functions 2ed3d9bc86b66 iio: dac: ad5770r: fix error return in ad5770r_read_raw() d7161e8b6211a iio: accel: adxl313: add missing error check in predisable b6d6f6e2e329f iio: accel: adxl380: fix FIFO watermark bit 8 always written as 0 6c4591e716681 iio: accel: fix ADXL355 temperature signature value 85981790ea35d iio: adc: aspeed: clear reference voltage bits before configuring vref 5f482fd456bc5 iio: adc: ade9000: move mutex init before IRQ registration 87180f65f90da iio: adc: ade9000: fix wrong register in CALIBBIAS case for active power 3707af316f86d iio: adc: ade9000: fix wrong return type in streaming push 25e04a8291f42 iio: adc: ti-ads7950: do not clobber gpio state in ti_ads7950_get() 6afa581aed0f1 iio: adc: ti-ads7950: normalize return value of gpio_get d0a6b8d186dab Input: xpad - add support for Razer Wolverine V3 Pro 86620132e9c4c Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode 00f0cc75356b0 Input: bcm5974 - recover from failed mode switch beba26c55f4e4 Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table 33e646804070c Input: synaptics-rmi4 - fix a locking bug in an error path 8ea8dc0d62e3a USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam 42e4fbeb853a6 USB: serial: option: add support for Rolling Wireless RW135R-GL 70fd81b9c4bf3 USB: serial: io_edgeport: add support for Blackbox IC135A 2b8ae82d85d75 drm/amdgpu/pm: drop SMU driver if version not matched messages 77c918eaa4c91 drm/amdgpu: Change AMDGPU_VA_RESERVED_TRAP_SIZE to 64KB 3543005a42d7e drm/amdgpu: validate doorbell_offset in user queue creation 1e130cf9cd172 drm/amdgpu: Fix wait after reset sequence in S4 d0fd0bea84752 drm/i915/dp: Use crtc_state->enhanced_framing properly on ivb/hsw CPU eDP 86e926b108880 drm/i915/dsi: Don't do DSC horizontal timing adjustments in command mode df4979eef358c drm/ast: dp501: Fix initialization of SCU2C 5a17678b74197 iio: adc: ti-ads1119: Replace IRQF_ONESHOT with IRQF_NO_THREAD 30e2275b3469f iio: adc: ti-ads1119: Reinit completion before wait_for_completion_timeout() 64bc0219e4d8e iio: adc: ti-ads1119: Fix unbalanced pm reference count in ds1119_single_conversion() 014c6d27878d3 iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() 054ea2f12beb4 iio: adc: ti-adc161s626: fix buffer read on big-endian d9bf25ef3d30f iio: orientation: hid-sensor-rotation: add timestamp hack to not break userspace 7d14b49de8fcc iio: orientation: hid-sensor-rotation: fix quaternion alignment 2b655a9176442 iio: add IIO_DECLARE_QUATERNION() macro cae26eff1b56d gpib: fix use-after-free in IO ioctl handlers 115a4c8df909f drm/amdgpu: fix the idr allocation flags 1e3e98596c276 x86/kexec: Disable KCOV instrumentation after load_segments() 16062d6830a7f mips: mm: Allocate tlb_vpn array atomically 243d55bd3f08c hwmon: (occ) Fix division by zero in occ_show_power_1() 1010390094fa2 MIPS: Fix the GCC version check for `__multi3' workaround 247e1e7e25c8f MIPS: SiByte: Bring back cache initialisation 075ea208c648c ksmbd: fix OOB write in QUERY_INFO for compound requests aba0aea354015 Bluetooth: hci_sync: fix stack buffer overflow in hci_le_big_create_sync fa14e0e19820b Bluetooth: SMP: force responder MITM requirements before building the pairing response 061ee71ac6b03 Bluetooth: SMP: derive legacy responder STK authentication from MITM state c314b405dcc4d io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() 2e8194b4fdee7 ALSA: hda/realtek: add quirk for HP Victus 15-fb0xxx 682b5fd115689 ALSA: hda/realtek: Add quirk for ASUS ROG Strix SCAR 15 57698f184e1af ALSA: ctxfi: Fix missing SPDIFI1 index handling 3afa2e67f3523 ALSA: caiaq: fix stack out-of-bounds read in init_card 1933249263c3a lib/crypto: chacha: Zeroize permuted_state before it leaves scope b49bf41b41148 sched_ext: Fix inconsistent NUMA node lookup in scx_select_cpu_dfl() 10c13c111d0d7 drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw() ce47541f5c408 USB: serial: option: add MeiG Smart SRM825WN dd90880eb5ec5 wifi: iwlwifi: mvm: fix potential out-of-bounds read in iwl_mvm_nd_match_info_handler() d8388614de613 wifi: wilc1000: fix u8 overflow in SSID scan buffer size calculation 20e2418b98369 rust_binder: use AssertSync for BINDER_VM_OPS f0e441be08a2e drm/ioc32: stop speculation on the drm_compat_ioctl path 1200f4240c07d ACPI: RIMT: Add dependency between iommu and devices 50392cdfe95e0 riscv: Reset pmm when PR_TAGGED_ADDR_ENABLE is not set e1425ff578c4a riscv: kgdb: fix several debug register assignment bugs e435a30ca6fe1 perf/x86: Fix potential bad container_of in intel_pmu_hw_config 87573883c30f1 sched/fair: Fix zero_vruntime tracking fix a99f94e4f28a3 mips: ralink: update CPU clock index d6fbc5750f382 hwmon: (asus-ec-sensors) Fix T_Sensor for PRIME X670E-PRO WIFI d16f8716c927f drm/sysfb: Fix efidrm error handling and memory type mismatch 6205de166dfb2 hwmon: (occ) Fix missing newline in occ_show_extended() ee4c064e37d4d spi: amlogic: spifc-a4: unregister ECC engine on probe failure and remove() callback fdbfa1bf2c759 hwmon: (tps53679) Fix device ID comparison and printing in tps53676_identify() 9e962e68a9d26 drm/xe/pxp: Clear restart flag in pxp_start after jumping back 5633454e28d30 drm/xe/pxp: Remove incorrect handling of impossible state during suspend ec45309671920 drm/xe/pxp: Clean up termination status on failure e8298e0cc68de spi: stm32-ospi: Fix reset control leak on probe error b4ec54c974c6e spi: stm32-ospi: Fix resource leak in remove() callback 3a8b66a84f058 dt-bindings: gpio: fix microchip #interrupt-cells dfe3a785ae7fc hwmon: (ltc4286) Add missing MODULE_IMPORT_NS("PMBUS") 13b0cb9963652 hwmon: (pxe1610) Check return value of page-select write in probe 79b7e588399bb hwmon: (tps53679) Fix array access with zero-length block read 040a1e7e0e2f0 io_uring/rsrc: reject zero-length fixed buffer import f403094d9075d accel/qaic: Handle DBC deactivation if the owner went away 33b54c7793cf7 gpiolib: clear requested flag if line is invalid 606f88c162b27 gpio: rename gpio_chip_hwgpio() to gpiod_hwgpio() 9e5495d216bff iio: imu: bno055: fix BNO055_SCAN_CH_COUNT off by one 89c3a4ba60309 Revert "drm: Fix use-after-free on framebuffers and property blobs when calling drm_dev_unplug" dc9a060d76c12 bpf: Reject sleepable kprobe_multi programs at attach time 63276547debc4 bpf: reject direct access to nullable PTR_TO_BUF pointers 7c15dabcbc9e3 eth: fbnic: Increase FBNIC_QUEUE_SIZE_MIN to 64 9ed81d692758d ipv6: avoid overflows in ip6_datagram_send_ctl() 1fe371a34e801 net: hsr: fix VLAN add unwind on slave errors a208c3e123299 net/sched: cls_flow: fix NULL pointer dereference on shared blocks 3cb055df9e862 net/sched: cls_fw: fix NULL pointer dereference on shared blocks 8c92969c197b9 net/x25: Fix overflow when accumulating packets fa1dbc93530b3 net/x25: Fix potential double free of skb 311efb3cfc926 bnxt_en: Restore default stat ctxs for ULP when resource is available e27153b2bd6e6 net/mlx5: Fix switchdev mode rollback in case of failure 276b3efb2b487 net/mlx5: Avoid "No data available" when FW version queries fail c53cf44588a93 net/mlx5: lag: Check for LAG device before creating debugfs 5392a5174df4f net: macb: properly unregister fixed rate clocks 16ab4c0e2b15d net: macb: fix clk handling on PCI glue driver removal 3a2999704ac36 net/sched: sch_netem: fix out-of-bounds access in packet corruption 18861f87a043e bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready(). 23e07c340c445 rds: ib: reject FRMR registration before IB connection is established edb5898cfa91a Bluetooth: MGMT: validate mesh send advertising payload length 1d0bdbfe3e91c Bluetooth: hci_event: fix potential UAF in hci_le_remote_conn_param_req_evt 7d568fede8eac Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync 50fb64defa72a Bluetooth: MGMT: validate LTK enc_size on load 3ec3a1588876c Bluetooth: hci_h4: Fix race during initialization 98c8d3bfdaa65 Bluetooth: SCO: fix race conditions in sco_sock_connect() d4d1a4eed6f6c Bluetooth: hci_sync: call destroy in hci_cmd_sync_run if immediate 42a47f4b1b769 netfilter: nf_tables: reject immediate NF_QUEUE verdict dc3e27dd7d76e netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP 187b6ec5229ea netfilter: ctnetlink: ignore explicit helper on new expectations a0684ccc1ddd2 netfilter: nf_conntrack_expect: store netns and zone in expectation b53294bff19e5 netfilter: nf_conntrack_expect: use expect->helper 54cb3500e8af5 netfilter: nf_conntrack_expect: honor expectation helper field 929f7a9a7aad9 netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent 620f3d14c1ef5 netfilter: nf_conntrack_helper: pass helper to expect cleanup a54bbbcd3c628 netfilter: ipset: use nla_strcmp for IPSET_ATTR_NAME attr f419bdc205894 netfilter: x_tables: ensure names are nul-terminated 88a8f56e6276f netfilter: nfnetlink_log: account for netlink header size 504c9456699dc netfilter: flowtable: strictly check for maximum number of actions 908dd5faf8169 ALSA: usb-audio: Exclude Scarlett 2i2 1st Gen (8016) from SKIP_IFACE_SETUP 87a8287e76244 net: stmmac: skip VLAN restore when VLAN hash ops are missing 58b58b9ba89c4 mptcp: fix soft lockup in mptcp_recvmsg() 8d38f222795d3 mptcp: add eat_recv_skb helper 414726b69921f net: ipv6: flowlabel: defer exclusive option free until RCU teardown 8aebe18069394 bpf: Fix regsafe() for pointers to packet 917303fda0f1b ASoC: Intel: boards: fix unmet dependency on PINCTRL 2a0323a913109 net: xilinx: axienet: Fix BQL accounting for multi-BD TX packets f3cf32dc1ebbd net: xilinx: axienet: Correct BD length masks to match AXIDMA IP spec ad2f60de5045b NFC: pn533: bound the UART receive buffer d4cc7e4c80b16 net: bonding: fix use-after-free in bond_xmit_broadcast() 153d5520c3f9f crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption fafe0fa2995a0 crypto: algif_aead - Revert to operating out-of-place c8d53b70166d1 bnxt_en: set backing store type from query type 906997ea3766c net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak cc91202fc20a4 net: use skb_header_pointer() for TCPv4 GSO frag_off check 846cd4a5ffdce net: introduce mangleid_features ae585d9ac863f net: airoha: Add missing cleanup bits in airoha_qdma_cleanup_rx_queue() 3cd4efb5df728 ipv6: prevent possible UaF in addrconf_permanent_addr() 2321b0d47a11a ASoC: ep93xx: Fix unchecked clk_prepare_enable() and add rollback on failure 19f90e0061b69 ALSA: usb-audio: Exclude Scarlett Solo 1st Gen from SKIP_IFACE_SETUP 15db5c44f79c4 net: enetc: do not allow VF to configure the RSS key 85b4fb46a8989 net: enetc: check whether the RSS algorithm is Toeplitz 3b4df3d43ae42 net: sfp: Fix Ubiquiti U-Fiber Instant SFP module on mvneta 17c1b9807b8a6 net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() 9c55e41c73af5 bridge: br_nd_send: linearize skb before parsing ND options 117f9453dd7cd eth: fbnic: Account for page fragments when updating BDQ tail 590f622669b97 ip6_tunnel: clear skb2->cb[] in ip4ip6_err() a2edbb6393972 ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() 7e55845bd8971 tg3: Fix race for querying speed/duplex 184d2e9db27c0 net/ipv6: ioam6: prevent schema length wraparound in trace fill b485eef3d97b7 net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak f2664bc4f0f35 net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak 77c5f0a105d04 net: enetc: reset PIR and CIR if they are not equal when initializing TX ring 98bef6f424a37 net: fec: fix the PTP periodic output sysfs interface 53219f87bd220 netdevsim: fix build if SKB_EXTENSIONS=n 7267e4c75f9f1 net: mana: Fix RX skb truesize accounting 00cbdec17c15d crypto: af-alg - fix NULL pointer dereference in scatterwalk 83622e52431eb crypto: deflate - fix spurious -ENOSPC aa545df011338 crypto: caam - fix overflow on long hmac keys 68feed135a0c7 crypto: caam - fix DMA corruption on long hmac keys 91478edb8cbc2 wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session 52dc79062f239 wifi: iwlwifi: mld: correctly set wifi generation data 2f84d5e9c1c57 wifi: iwlwifi: disable EHT if the device doesn't allow it 9d713f4f8bb0e wifi: iwlwifi: cfg: add new device names c0b3fa5e0eaec wifi: iwlwifi: mvm: don't send a 6E related command when not supported 624af5c3baa2d wifi: iwlwifi: mld: Fix MLO scan timing ee555d539975e wifi: iwlwifi: fix remaining kernel-doc warnings fdbc00b8b2eec dt-bindings: auxdisplay: ht16k33: Use unevaluatedProperties to fix common property warning 4d47b812f9250 spi: geni-qcom: Check DMA interrupts early in ISR f4e35576da439 smb: client: fix generic/694 due to wrong ->i_blocks 850de3d87f472 btrfs: reject root items with drop_progress and zero drop_level 86d7c80e1cfff i2c: tegra: Don't mark devices with pins as IRQ safe cf930a651eef6 btrfs: reserve enough transaction items for qgroup ioctls 7f66fdbc077fa HID: multitouch: Check to ensure report responses match the request 8f71034649738 HID: core: Mitigate potential OOB by removing bogus memset() b846fb0a73e99 HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure 34b12ab75ae25 objtool: Fix Clang jump table detection 7e0576dcf245d tg3: replace placeholder MAC address with device property 8b3484011a83e btrfs: don't take device_list_mutex when querying zone info abc10f85a3965 atm: lec: fix use-after-free in sock_def_readable() c8dc23c97680e HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq be81f17151fcb wifi: mac80211: check tdls flag in ieee80211_tdls_oper 6c4e67e6ba250 HID: logitech-hidpp: Enable MX Master 4 over bluetooth 1c41248cef835 arm64/scs: Fix handling of advance_loc4 Signed-off-by: Bruce Ashfield --- meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend index ce58481..4fc8c85 100644 --- a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend +++ b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend @@ -8,4 +8,4 @@ KMACHINE:genericx86 ?= "common-pc" KMACHINE:genericx86-64 ?= "common-pc-64" KBRANCH:genericarm64 ?= "v6.18/standard/genericarm64" -SRCREV_machine:genericarm64 ?= "00e5fc320cb18073f86c8c86f40fbc3787ced78d" +SRCREV_machine:genericarm64 ?= "26b6ffb0e21a6dbd32de890f070ec9e15b4eff31" From patchwork Thu Apr 23 15:32:21 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86753 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id B4570FC0359 for ; Thu, 23 Apr 2026 15:32:51 +0000 (UTC) Received: from mail-qv1-f53.google.com (mail-qv1-f53.google.com [209.85.219.53]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.403.1776958364803880486 for ; Thu, 23 Apr 2026 08:32:44 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=NzSez5lA; spf=pass (domain: gmail.com, ip: 209.85.219.53, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f53.google.com with SMTP id 6a1803df08f44-899a9f445cbso80692306d6.0 for ; Thu, 23 Apr 2026 08:32:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958364; x=1777563164; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=qkNbspmw5osk5lPI7AJieMr+RENpTmFCd/OjNvhyjZk=; b=NzSez5lAcjod9tYwnQ4PARlRu8j0sJwtQpb4QFSokya5nY5gz/jYBsXLB4iONbTKpt IuQERRu1J4uLsJhiu9rzCFs0vxWp1LazJXOd6UnlzbMaHxkbetgpE4pPTFMKp0FdaI1a RWUjIHroKiIF14N58lAJOxQo91thh2VmTp1s01PW4gGxvOUimuQJ33MUwwHoejIKOi0r O8+/VimTmHJB8ZSN0P+gDXtUkjn0CcSqVyV53ngCr2CNoJdZ1YqjP7odVmyXXPPwm0yA dDHdf+bT8+o6dBXupCKF7hOkyLYiTFus9jvcT85oTX7Qw7cFOim2JWdcbBSarpepZuvF Rh2w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958364; x=1777563164; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=qkNbspmw5osk5lPI7AJieMr+RENpTmFCd/OjNvhyjZk=; b=Emd687w4sxZ6fa7MxdXfnADaz9eP0A5kjY42arix2JM3xXEti8mk2J7RiohzAWSSM/ PJ+VoWtrXg3POyzL/HD2n115VkkswyXfzRJRxk5tPupJpz8EkdRpZlJIJ4oDCTYTY3d7 QCvPrclTcEF6vBM/+a/Sa5vR8lrf+8WFZvUBmUKLABwkvkOzx2JH89c/sMvWz7dGPQqL 3iWL/NO1JxM9GSRjMkplZhCtfHA6n9eVCcdjM1EHosHN4m+GKpQOZYVYZ6h+Phrz25SQ PZpEmGRjATQrq85TgSEgJLy2yUwVXTj6jIZrMEH8cKKQFfiTS1/bHwltMaRdwzCMvOK9 1yLQ== X-Gm-Message-State: AOJu0Yxat67pIfCQgeYhKzRQ0/l6YVg4Lc2ypFASBqNKtyWlc/LotAgk 2PzbuZ5ZpQR7bIxS+QQOm9mRrV6SxutbBhfwHAKDQf7aXbkLiIVrRDGxPZ9YOrfY X-Gm-Gg: AeBDievNrHUFXUuaHIdOoYhLFMsma/fWxIlYSwhbCLHTdUi/16qhUnLWkvImf7Uyjpv 4b6+A99erkKQp+GmAlbe1nzKNOrwoyzjoiNNzLbUOK+rYqsj/gvNYPGEug8/AknzWNiGqATMKe7 uzmerUQZKw4EIDl38qpk97D7dv44tS7cSVkOJ0nXPpNIdLrBNUqHuHhF1LWLwdd7mrsBDsonKFO 5t/tZMXScZyTj1K8s/c9444UOHDzkoboXkx0MUopoHKo3sEmCCal12N3SWbT05US2LmtMElKev7 9rsToqQ2MVGNnnvtzUjY22JxX7iIrAQFJH2WxX27uggZduAYRwpAyFM41M5M70wYaRfMLbtFVie z1E2la1OlhlynB5rzMGPNZL/wvk7sN+NkEqhwhN+ATmc5Uy7pDWZmEPhRBoE9WBhJBCA7uaKLXr VbtASC8FS5gRUt4emp27GVBllKltt6c4ryP53agcoSophmasln+Ux3kFrJiYwXNcMxsZtUzIdH4 RrdCBID5Rb77SqvhjG3udKXqJaEnA6qjBI6Q61C2NV1DHlAmuS4qfFA+Tj4oeQyULdnUQ== X-Received: by 2002:a05:6214:f03:b0:8ac:a546:7753 with SMTP id 6a1803df08f44-8b027ffbc6emr443179716d6.8.1776958363602; Thu, 23 Apr 2026 08:32:43 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.42 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:42 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta-yocto-bsp][PATCH 14/15] yocto-bsps: update to v6.18.23 Date: Thu, 23 Apr 2026 11:32:21 -0400 Message-ID: <20260423153222.1932256-15-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:51 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235789 From: Bruce Ashfield 47a33eea6d51 Linux 6.18.23 ad17f07e95e6 x86/CPU: Fix FPDSS on Zen1 2d64618ea846 net: skb: fix cross-cache free of KFENCE-allocated skb head db297c78ce53 rxrpc: proc: size address buffers for %pISpc output d0035e634dae rxrpc: only handle RESPONSE during service challenge 794586789800 rxrpc: Fix buffer overread in rxgk_do_verify_authenticator() 4b5e8365515f rxrpc: Fix leak of rxgk context in rxgk_verify_response() 1f864d9daaf6 rxrpc: Fix integer overflow in rxgk_verify_response() bf4d6e4a6856 rxrpc: Fix missing error checks for rxkad encryption/decryption failure 03d1c51decae rxrpc: Fix key/keyring checks in setsockopt(RXRPC_SECURITY_KEY/KEYRING) 8ee931c3cd97 rxrpc: fix reference count leak in rxrpc_server_keyring() beee051f259a rxrpc: fix oversized RESPONSE authenticator length check 7875f3d9777b rxrpc: fix RESPONSE authenticator parser OOB read 22f6258e7b31 rxrpc: reject undecryptable rxkad response tickets 8299ca146489 rxrpc: Only put the call ref if one was acquired 8b353f5f1385 rxrpc: Fix to request an ack if window is limited 2e6ef713b159 rxrpc: Fix key reference count leak from call->key 86303a1da93f rxrpc: Fix rack timer warning to report unexpected mode 9132b1a7bf83 rxrpc: Fix use of wrong skb when comparing queued RESP challenge serial 3e04596cba8a rxrpc: Fix RxGK token loading to check bounds 3be718f65968 rxrpc: Fix call removal to use RCU safe deletion 3bb18ed3b2f6 rxrpc: Fix anonymous key handling d5f76f812d2c rxrpc: Fix key parsing memleak 862cb78fb2c9 rxrpc: Fix key quota calculation for multitoken keys 92a673019943 net: lan966x: fix use-after-free and leak in lan966x_fdma_reload() 22e1ee9f22b5 net: lan966x: fix page pool leak in error paths b5dcb41ba891 net: lan966x: fix page_pool error handling in lan966x_fdma_rx_alloc_page_pool() 214ceaa8a3a2 idpf: set the payload size before calling the async handler d6e9bef3313a idpf: improve locking around idpf_vc_xn_push_free() e02c974fc331 idpf: fix PREEMPT_RT raw/bh spinlock nesting for async VC handling 576543bedd61 mm: filemap: fix nr_pages calculation overflow in filemap_map_pages() 6fca757c2039 net: stmmac: fix integer underflow in chain mode 9fdece45f6e0 net: qualcomm: qca_uart: report the consumed byte on RX skb allocation failure ea7468f61be0 mmc: vub300: fix use-after-free on disconnect c83a282615d8 mmc: vub300: fix NULL-deref on disconnect 447f8870b484 mm/damon/stat: deallocate damon_call() failure leaking damon_ctx b9dadf026a9f mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails 49c00ae87230 mm/memory_hotplug: maintain N_NORMAL_MEMORY during hotplug 470047177574 igb: remove napi_synchronize() in igb_down() e44919669f07 pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled 82e8174d1d0e net/mlx5: Update the list of the PCI supported devices de9aa7e89b98 drm/i915/psr: Do not use pipe_src as borders for SU area 2af8b200cae3 drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat 4dee4c068844 batman-adv: hold claim backbone gateways by reference 60f462cd2716 net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() 5d70eb25b41e net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption 87ce8ae51196 EDAC/mc: Fix error path ordering in edac_mc_alloc() 206121294b9c X.509: Fix out-of-bounds access when parsing extensions de6c1dc3c7d0 batman-adv: reject oversized global TT response buffers 21ae2cda66a5 nfc: pn533: allocate rx skb before consuming bytes 083c5a417dee arm64: dts: hisilicon: hi3798cv200: Add missing dma-ranges f0a0a6a8c1cc arm64: dts: hisilicon: poplar: Correct PCIe reset GPIO polarity c82a3c9d9fb3 arm64: dts: renesas: sparrow-hawk: Reserve first 128 MiB of DRAM a4115c2abab3 arm64: dts: imx8mq-librem5: Bump BUCK1 suspend voltage up to 0.85V 3b31b15230b0 Revert "arm64: dts: imx8mq-librem5: Set the DVS voltages lower" aee881c21b57 Revert "arm64: dts: rockchip: Further describe the WiFi for the Pinebook Pro" fecceacbaf48 platform/x86/intel-uncore-freq: Handle autonomous UFS status bit c4e1eff4606c platform/x86: ISST: Reset core count to 0 b27fa888e4a4 wifi: brcmsmac: Fix dma_free_coherent() size 1b6f13f62666 tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG 0f451b43c88b xfrm: hold dev ref until after transport_finish NF_HOOK b1dfd6b27df3 xfrm: clear trailing padding in build_polexpire() 688c1b491c35 modpost: Declare extra_warn with unused attribute 0133aa1a28af workqueue: Add pool_workqueue to pending_pwqs list when unplugging multiple inactive works fbdb43f6bb2a firmware: thead: Fix buffer overflow and use standard endian macros b42aca3660dc netfilter: nft_ct: fix use-after-free in timeout object destroy 2802ba3981f1 i2c: imx: zero-initialize dma_slave_config for eDMA 72cf49ad50c1 af_unix: Give up GC if MSG_PEEK intervened. 33120558237c af_unix: Simplify GC state. 1e211179f1d9 af_unix: Count cyclic SCC. 450e6a685d0c btrfs: fix incorrect return value after changing leaf in lookup_extent_data_ref() 2124a61e6e2b btrfs: remove pointless out labels from extent-tree.c d8b281165a86 MIPS: mm: Rewrite TLB uniquification for the hidden bit feature ccc6a2241a49 MIPS: mm: Suppress TLB uniquification on EHINV hardware 6c600fc0e991 MIPS: Always record SEGBITS in cpu_data.vmbits 6c098142b370 Input: uinput - take event lock when submitting FF request "event" 1e09dfbb4f5d Input: uinput - fix circular locking dependency with ff-core fb56de5d9921 seg6: separate dst_cache for input and output paths in seg6 lwtunnel 15fa9ead4d5e mptcp: fix slab-use-after-free in __inet_lookup_established 96a95b6d9e6d Revert "mptcp: add needs_id for netlink appending addr" 130c991e6aad Revert "ALSA: hda/realtek: Add quirk for Gigabyte Technology to fix headphone" a8c26800e022 net: rfkill: prevent unlimited numbers of rfkill events from being created 6c55714c9310 xfrm_user: fix info leak in build_report() e360d15fcb1e wifi: rt2x00usb: fix devres lifetime f4786c34216a usb: typec: ucsi: skip connector validation before init Signed-off-by: Bruce Ashfield --- meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend index 4fc8c85..b1d265a 100644 --- a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend +++ b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend @@ -8,4 +8,4 @@ KMACHINE:genericx86 ?= "common-pc" KMACHINE:genericx86-64 ?= "common-pc-64" KBRANCH:genericarm64 ?= "v6.18/standard/genericarm64" -SRCREV_machine:genericarm64 ?= "26b6ffb0e21a6dbd32de890f070ec9e15b4eff31" +SRCREV_machine:genericarm64 ?= "3875f920c45a973fa027f39c77c2904ac8ba1042" From patchwork Thu Apr 23 15:32:22 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Bruce Ashfield X-Patchwork-Id: 86751 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 60BB2FC0352 for ; Thu, 23 Apr 2026 15:32:51 +0000 (UTC) Received: from mail-qv1-f41.google.com (mail-qv1-f41.google.com [209.85.219.41]) by mx.groups.io with SMTP id smtpd.msgproc01-g2.405.1776958366535571053 for ; Thu, 23 Apr 2026 08:32:46 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@gmail.com header.s=20251104 header.b=bfXe1PsV; spf=pass (domain: gmail.com, ip: 209.85.219.41, mailfrom: bruce.ashfield@gmail.com) Received: by mail-qv1-f41.google.com with SMTP id 6a1803df08f44-8a3b0242631so83058646d6.3 for ; Thu, 23 Apr 2026 08:32:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776958365; x=1777563165; darn=lists.openembedded.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=iarykYnIAs0KR6izPN39ayOmqFDldICZm2ggxTCIztc=; b=bfXe1PsVUswLtJ1G7bUe+YYszgw7toLVXGJNvv9ETDkAMQ4ZXTHWom8bSYbN8wEX/l SqBsMspkec2FmFp77Sis/ZU6ypwCkUvqxju/Pu9Pul2WI1imPQDY7D8RNFMek6CmyaKL gkXmlReC4MdVpKOIINCOFDKoFZTAbAuYoTLeeLHaX1ZDCEluOyMrOaBYIjcIzrhDVGXi cJt7p4mBeQoWOpFJ1MIwx36PqptaboWSienVY1o2Yv8H+LF4rV+OBS1oWcusTCmlTc/h bdxaztczVipYVHnwn8nw0eDvnhpFewsHMQaIYQZucHYZSzVz07gKgKAZFnOjuScqlng4 11xQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776958365; x=1777563165; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from :to:cc:subject:date:message-id:reply-to; bh=iarykYnIAs0KR6izPN39ayOmqFDldICZm2ggxTCIztc=; b=n4IV9Hme7CCLCCWGZ5dA2kNHakNjeSSiamBKh1cn9V53bCx4vsoGla1R2ehcl0SaWI R0SE7Z5TfCZFqBlDqQHjx1Sw9LUUdmKBJ03oQsn5JPpCS+yBkCqEv5YHAqcPGWR/YNnm SKNLCiFGJzc5NJSDOq4zGvbYKFcmshFeq7IlzjWaCziAGZleRdPZ2SIwF6PIoFmWqwo1 mPSegTqsmI1+Dh/eQe4zS07pFv5PdwiM1fK+lJ200yi1ah5muGpSMIUUkie1VDe5KiGV 8HkZ+jVA0wJ3wYvsTOl0ZZBuYIJnfXMQYkMMmg4ulIvfHD1Bqfbs19plIB9boDOuq288 mCoA== X-Gm-Message-State: AOJu0YyxdCwSKy1EmxDly7yKfWfzgETd3jc8t6QGoAaPFcxtLoTfQqe1 nX2GRGTw+YRxDtix/+KMjFjzjIP5degwJrZ5Pjqr9458sqkCq1MijLpeGqrvT9O5 X-Gm-Gg: AeBDievBx342x7e0Z6v/rRSI+6e04EsGcHspJGmx7SGmJ51Nnv2q8Q7S7aeV9iJpbD8 WrD3vl91aK37Fpzjgc6lFOLaOnbrJxzTNt8NhVjfB4x+uqzmP76nVRVULhF17WHbgccF+GXoaQd JKAf5Cb0ndkZDNQod2W+P+mlpCIk3oRzKMx/R8o+f4ovD1McUrkVWjcg0OzeJ29DmNNsGedF5Gr m16q0tirA6orW1097/VUcYT8YdCimyZah6WjG4nOoiIrhyMvrkMeSbB+pEU2YbtWDGwb+2dOZfX 02Qn6xttnf2twQO/MynalfztjGZl7TOVMu37HDYHWM5KLhf1VJRkcARoMcA5KCFRehaxwDpGHcS 3S32IudSs48AXIB52T8peGZPpyXOLKWfsktYCZIYT1UktlP13LcunGTZ5dnp1vZ36vembCQc00p 2Xcgg0O9VuaFE30pUs+lz44aqyiS73jg7mk4NxBm+0w7Z/MFggO0ijVD8WLxtVB0dKaUoU/Hycq qDQa84abtSrloAw1oIcvLobeKTzzziD0C38N6EHVv+mUd5UdkWVbpu494ZLmzfQIvpepQ== X-Received: by 2002:a05:6214:76c:b0:8b1:f297:a54b with SMTP id 6a1803df08f44-8b1f297a61bmr206213616d6.18.1776958365337; Thu, 23 Apr 2026 08:32:45 -0700 (PDT) Received: from bruce-XPS-8940.localdomain (pool-174-112-62-108.cpe.net.cable.rogers.com. [174.112.62.108]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ac429ffsm160765996d6.2.2026.04.23.08.32.43 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 23 Apr 2026 08:32:44 -0700 (PDT) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta-yocto-bsp][PATCH 15/15] yocto-bsps: update to v6.18.24 Date: Thu, 23 Apr 2026 11:32:22 -0400 Message-ID: <20260423153222.1932256-16-bruce.ashfield@gmail.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Thu, 23 Apr 2026 15:32:51 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235790 From: Bruce Ashfield c0d886e4af57 Linux 6.18.24 ff628171d5f4 dma-mapping: handle DMA_ATTR_CPU_CACHE_CLEAN in trace output c2d109c982e9 dma-debug: Allow multiple invocations of overlapping entries 574501ede47a mm/userfaultfd: fix hugetlb fault mutex hash calculation 07e9e674b614 media: hackrf: fix to not free memory after the device is registered in hackrf_probe() 6d75a9ec5bdb media: vidtv: fix pass-by-value structs causing MSAN warnings c36e206f302f nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map 09e9206008b8 media: as102: fix to not free memory after the device is registered in as102_usb_probe() 9a9e69155b20 wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit 2d6965581e16 bcache: fix cached_dev.sb_bio use-after-free and crash d21e8a2af486 ALSA: 6fire: fix use-after-free on disconnect 9e1b798257f9 hwmon: (powerz) Fix use-after-free on USB disconnect 871b8ea8ef39 media: em28xx: fix use-after-free in em28xx_v4l2_open() f99353cd0e9f media: mediatek: vcodec: fix use-after-free in encoder release path 25f19e476ab1 media: vidtv: fix nfeeds state corruption on start_streaming failure ea3af09eb87d mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() f6204f7ff6af mm/kasan: fix double free for kasan pXds 30383b7780ff ASoC: qcom: q6apm: move component registration to unmanaged version 22d2ff69d487 KVM: x86: Use scratch field in MMIO fragment to hold small write values 576d365f31d9 x86-64/arm64/powerpc: clean up and rename __copy_from_user_flushcache 03fd014cd9f3 x86: rename and clean up __copy_from_user_inatomic_nocache() c6d4e0599e7e x86-64: rename misleadingly named '__copy_user_nocache()' function 8e7666acfabb checkpatch: add support for Assisted-by tag 0c1af902223b ocfs2: fix out-of-bounds write in ocfs2_write_end_inline cd2d765aa715 ocfs2: validate inline data i_size during inode read df030a9374a5 ocfs2: add inline inode consistency check to ocfs2_validate_inode_block() 0ed88ac9bc64 KVM: x86: Use __DECLARE_FLEX_ARRAY() for UAPI structures with VLAs df61c2c99c7f KVM: Remove subtle "struct kvm_stats_desc" pseudo-overlay 9309daac5034 selftests/bpf: Test refinement of single-value tnum 28cc13ca2043 KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION 30fd9d8c8208 KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish 2c59132c4786 KVM: SEV: Disallow LAUNCH_FINISH if vCPUs are actively being created 35a0963d361f KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock 692fdf05e55f KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU 5d57a1ee587c KVM: selftests: Remove duplicate LAUNCH_UPDATE_VMSA call in SEV-ES migrate test cec9ead73ab1 PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown 9921cce25bfe PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup e384a850a337 ocfs2: handle invalid dinode in ocfs2_group_extend d45ff441b416 ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY bc0fb5c7d54c ocfs2: fix possible deadlock between unlink and dio_end_io_write 2dff11fb5098 media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections 8140b21d1901 arm64: mm: Handle invalid large leaf mappings correctly 755b40903eff dcache: Limit the minimal number of bucket to two 3fd0685d7fef ALSA: ctxfi: Limit PTP to a single page de5c3e67037f Docs/admin-guide/mm/damon/reclaim: warn commit_inputs vs param updates race 4c971d577a9f USB: serial: option: add Telit Cinterion FN990A MBIM composition 1412ba36597a staging: sm750fb: fix division by zero in ps_to_hz() 89a9c1bc7d79 wifi: rtw88: fix device leak on probe failure 9c401606e2d0 scripts: generate_rust_analyzer.py: avoid FD leak 6de048d78f30 fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO 5d02df1b130b usb: port: add delay after usb_hub_set_port_power() eb6ef6185f20 usb: gadget: f_hid: don't call cdev_init while cdev in use 5d29d7ff8679 USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen 63dc7cdb1f4e usb: storage: Expand range of matched versions for VL817 quirks entry 9aef3f979190 usb: typec: fusb302: Switch to threaded IRQ handler 906f16a836de usbip: validate number_of_packets in usbip_pack_ret_submit() 6968c91fab05 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() a9940dcbe5cb smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() dd53414e301b ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc d2454f4a002d ksmbd: require 3 sub-authorities before reading sub_auth[2] 3363a770b193 ksmbd: validate EaNameLength in smb2_get_ea() e0dd90d14cbb smb: client: fix OOB reads parsing symlink error response b2b76d09a64c smb: client: fix off-by-8 bounds check in check_wsl_eas() 44216e3dd445 usb: gadget: renesas_usb3: validate endpoint index in standard request handlers 4e476c25bfca usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() 6762f8a95772 usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() fc386daa6846 fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO 67cfd14074cd ALSA: fireworks: bound device-supplied status before string array lookup 09b145c1f133 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 0185e0494a56 drm/vc4: platform_get_irq_byname() returns an int 5a59bf70c38e NFC: digital: Bounds check NFC-A cascade depth in SDD response handler c183d5775129 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() 8a8333237f1f HID: core: clamp report_size in s32ton() to avoid undefined shift 0091dfa542a3 HID: alps: fix NULL pointer dereference in alps_raw_event() b487a7754d87 staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() 377fae22a137 i2c: s3c24xx: check the size of the SMBUS message before using it 1a0f2de81f7f can: raw: fix ro->uniq use-after-free in raw_rcv() 8977fad2b3c6 nfc: llcp: add missing return after LLCP_CLOSED checks 67c53c1978ce netfilter: conntrack: add missing netlink policy validations 78cea133daf7 crypto: algif_aead - Fix minimum RX size check for decryption dea5fcf085f9 crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl 66dfc9179b78 sched/deadline: Use revised wakeup rule for dl_server f34feda8e0c9 perf/x86/intel/uncore: Skip discovery table for offline dies 07c6f6ffe290 crypto: af_alg - limit RX SG extraction by receive buffer budget 7af379af9d34 gpio: tegra: fix irq_release_resources calling enable instead of disable 86534c97abd6 l2tp: Drop large packets with UDP encap 2d2dc166d551 net: ipa: fix event ring index not programmed for IPA v5.0+ bafc45ea30d2 net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ a31b3ee4dba0 devlink: Fix incorrect skb socket family dumping 900a4e0910e9 af_unix: read UNIX_DIAG_VFS data under unix_state_lock 8eff73e58e1f net: txgbe: leave space for null terminators on property_entry 6d1d9ed9b409 net: ioam6: fix OOB and missing lock 607b86397622 net: mdio: realtek-rtl9300: use scoped device_for_each_child_node loop 8c3984a0872c ASoC: amd: acp: update DMI quirk and add ACP DMIC for Lenovo platforms c877bc8058a9 ASoC: SDCA: Fix overwritten var within for loop 41e3652a178c netfilter: nfnetlink_queue: make hash table per queue 06e054ace8b8 netfilter: nfnetlink_queue: nfqnl_instance GFP_ATOMIC -> GFP_KERNEL_ACCOUNT allocation 807d6ee15804 netfilter: ip6t_eui64: reject invalid MAC header for all packets 8368ce8eb01f netfilter: xt_multiport: validate range encoding in checkentry d552bcfca323 netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator a32dabacee11 ipvs: fix NULL deref in ip_vs_add_service error path 585fe11fedb8 selftests: net: bridge_vlan_mcast: wait for h1 before querier check 8083b7da229b drm/xe: Fix bug in idledly unit conversion a4532ec7b885 ASoC: Intel: avs: Fix memory leak in avs_register_i2s_test_boards() f779a6b6cdb6 xfrm_user: fix info leak in build_mapping() 836ee1b0426e xfrm: fix refcount leak in xfrm_migrate_policy_find 3733fce2871c xfrm: Wait for RCU readers during policy netns exit 25e1e91a8da8 xsk: validate MTU against usable frame size on bind 4947e2ae9c57 xsk: fix XDP_UMEM_SG_FLAG issues 29a68f4baaf9 xsk: respect tailroom for ZC setups 9ea6ba4f3195 xsk: tighten UMEM headroom validation to account for tailroom and min frame 70b85c177344 e1000: check return value of e1000_read_eeprom 4db7b61ec1d1 ixgbevf: add missing negotiate_features op to Hyper-V ops table 4da3465a7f00 ixgbe: stop re-reading flash on every get_drvinfo for e610 e19675b384e9 ice: ptp: don't WARN when controlling PF is unavailable 7dad8bf14346 tracing/probe: reject non-closed empty immediate strings 9550d1d9f716 dt-bindings: net: Fix Tegra234 MGBE PTP clock b6b9c17ef8ae net: stmmac: Fix PTP ref clock for Tegra234 6d931680a985 nfc: s3fwrn5: allocate rx skb before consuming bytes 4d90f9a271a6 net: increase IP_TUNNEL_RECURSION_LIMIT to 5 f91b3ed9e7fa ipv4: icmp: fix null-ptr-deref in icmp_build_probe() 40bd39e383a0 ipv4: nexthop: allocate skb dynamically in rtm_get_nexthop() 69aa3c713980 ipv4: nexthop: avoid duplicate NHA_HW_STATS_ENABLE on nexthop group dump 0975b64ffb34 rtnetlink: add missing netlink_ns_capable() check for peer netns fb612d436ff0 bridge: guard local VLAN-0 FDB helpers against NULL vlan group 4198aab6f000 ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() 4429b761874f net: airoha: Fix memory leak in airoha_qdma_rx_process() 63851f60781a net: lapbether: handle NETDEV_PRE_TYPE_CHANGE ec4930979b3f net: sched: act_csum: validate nested VLAN headers 7e8083f5eeed eventpoll: defer struct eventpoll free to RCU grace period 0cf8ea9d677b drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock e352e9adc9f6 drm/vc4: Fix a memory leak in hang state error path 421cea4f71f7 drm/vc4: Fix memory leak of BO array in hang state ce12a1af6779 drm/vc4: Release runtime PM reference after binding V3D 9a945edeabb5 dma-debug: suppress cacheline overlap warning when arch has no DMA alignment requirement ad187e0506ab dma-debug: track cache clean flag in entries 4e8a1b970168 dma-mapping: add DMA_ATTR_CPU_CACHE_CLEAN e62e322ea20b xfrm: account XFRMA_IF_ID in aevent size calculation 73e3e4dac102 HID: amd_sfh: don't log error when device discovery fails with -EOPNOTSUPP 0d364d863c70 PCI: hv: Set default NUMA node to 0 for devices without affinity info e4093997420f ARM: dts: microchip: sam9x7: fix gpio-lines count for pioB edde62571f76 arm64: dts: qcom: monaco: Reserve full Gunyah metadata region d0deac48e57a tools/power turbostat: Fix --show/--hide for individual cpuidle counters fbc581977db2 tools/power/turbostat: Fix microcode patch level output for AMD/Hygon 7d75145672cf soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei 52632daf6425 arm64: dts: qcom: monaco: Fix UART10 pinconf 95894966bce9 arm64: dts: imx93-tqma9352: improve eMMC pad configuration b3b725b902b3 arm64: dts: imx91-tqma9131: improve eMMC pad configuration 737a4ee014e1 arm64: dts: imx93-9x9-qsb: change usdhc tuning step for eMMC and SD d0fcd4858918 arm64: dts: imx8mq: Set the correct gpu_ahb clock frequency ecbc5e9277da arm64: dts: qcom: qcm6490-idp: Fix WCD9370 reset GPIO polarity 878ccc18d94c arm64: dts: qcom: hamoa/x1: fix idle exit latency c448aad9a779 soc: aspeed: socinfo: Mask table entries for accurate SoC ID matching d2c7153fe0ca ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J c64cebcc5c4f x86: shadow stacks: proper error handling for mmap lock 0a59c12ce50a net: sfp: add quirks for Hisense and HSGQ GPON ONT SFP modules 1ae1e1caa428 wifi: brcmfmac: validate bsscfg indices in IF events f5a5d0e8704e ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 36bb2d0b9150 HID: roccat: fix use-after-free in roccat_report_event 0fa5713ac7a1 ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 42032a75da03 HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 c2854af5774b HID: Intel-thc-hid: Intel-quickspi: Add NVL Device IDs 0f2e312626c7 platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug 91f915d57416 pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) b98ecc1c60ad ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IMH9 1d788e6a4150 ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx 86f9c23e0814 fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath 647fb0dc3818 drm/amdkfd: Fix queue preemption/eviction failures by aligning control stack size to GPU page size fceb2a469121 ALSA: hda/realtek: Add quirk for Lenovo Yoga Slim 7 14AKP10 66b315279b88 ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex f664b56d8fc3 ALSA: hda/realtek: Add quirk for Samsung Book2 Pro 360 (NP950QED) a9d32e6c8a55 ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list 8d7465be5163 wifi: wl1251: validate packet IDs before indexing tx_frames 21a1acf6b16a ALSA: hda/realtek: add quirk for Framework F111:000F 07de44424bb7 netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry 7556bd5cd8ef ALSA: hda/realtek: add HP Laptop 15-fd0xxx mute LED quirk 6a9f2683c66d drm/amdgpu: Handle GPU page faults correctly on non-4K page systems f338ced04738 netfilter: ctnetlink: ensure safe access to master conntrack 8db3663d3c3e ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx 2e4adfaec97e btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() d4ff92dd98ad platform/x86: hp-wmi: Add support for Omen 16-wf1xxx (8C76) fddb157536e6 btrfs: fix zero size inode with non-zero size after log replay c66a0e9a19c0 platform/x86: asus-nb-wmi: add DMI quirk for ASUS ROG Flow Z13-KJP GZ302EAC c2be593c7ec2 ALSA:usb:qcom: add AUXILIARY_BUS to Kconfig dependencies 5486d20a0818 ASoC: amd: acp: add ASUS HN7306EA quirk for legacy SDW machine c306ac170bc3 can: mcp251x: add error handling for power enable in open and resume 550243229155 ASoC: SOF: topology: reject invalid vendor array size in token parser 36d706d03346 ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF a7a1cdb4a64c Bluetooth: hci_sync: annotate data-races around hdev->req_status 02ce2a77acc8 ALSA: asihpi: avoid write overflow check warning 222f4fd0fe06 media: rkvdec: reduce stack usage in rkvdec_init_v4l2_vp9_count_tbl() fc40821d94b9 ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC e656ef8698e2 ALSA: hda/realtek: add quirk for Lenovo Yoga 7 2-in-1 16AKP10 b395549928e5 ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk 4b59719db211 ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA 0f22c32141ac RDMA/irdma: Fix double free related to rereg_user_mr 0aa0c509aa69 dmaengine: idxd: Fix lockdep warnings when calling idxd_device_config() Signed-off-by: Bruce Ashfield --- meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend index b1d265a..1a80c65 100644 --- a/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend +++ b/meta-yocto-bsp/recipes-kernel/linux/linux-yocto_6.18.bbappend @@ -8,4 +8,4 @@ KMACHINE:genericx86 ?= "common-pc" KMACHINE:genericx86-64 ?= "common-pc-64" KBRANCH:genericarm64 ?= "v6.18/standard/genericarm64" -SRCREV_machine:genericarm64 ?= "3875f920c45a973fa027f39c77c2904ac8ba1042" +SRCREV_machine:genericarm64 ?= "b37320d600b3206435a10fa3c3d9fe9a574256b2"