From el-errata at oss.oracle.com  Mon Feb  3 17:05:48 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 03 Feb 2025 09:05:48 -0800
Subject: [El-errata] ELBA-2025-0417 Oracle Linux 7 java-1.8.0-openjdk bug
 fix and enhancement update
Message-ID: <mailman.130.1738602361.28.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0417

http://linux.oracle.com/errata/ELBA-2025-0417.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-1.8.0-openjdk-1.8.0.442.b06-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-accessibility-1.8.0.442.b06-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-accessibility-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-demo-1.8.0.442.b06-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-demo-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-devel-1.8.0.442.b06-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-devel-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-headless-1.8.0.442.b06-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-headless-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.442.b06-1.0.1.el7_9.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.442.b06-1.0.1.el7_9.noarch.rpm
java-1.8.0-openjdk-src-1.8.0.442.b06-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-src-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//java-1.8.0-openjdk-1.8.0.442.b06-1.0.1.el7_9.src.rpm



Description of changes:

[1:1.8.0.442.b06-1.0.1]
- Update to 8u442-b06 (GA) [Orabug: 37506184]
- Update release notes for 8u442-b06.
- Add a simple -version check on both the JDK and JRE bin/java



From el-errata at oss.oracle.com  Mon Feb  3 17:05:50 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 03 Feb 2025 09:05:50 -0800
Subject: [El-errata] ELSA-2024-11344 Important: Oracle Linux 7
 gstreamer1-plugins-base and gstreamer1-plugins-good security update
Message-ID: <mailman.131.1738602363.28.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2024-11344

http://linux.oracle.com/errata/ELSA-2024-11344.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
gstreamer1-plugins-base-1.10.4-2.0.1.el7.i686.rpm
gstreamer1-plugins-base-1.10.4-2.0.1.el7.x86_64.rpm
gstreamer1-plugins-base-devel-1.10.4-2.0.1.el7.i686.rpm
gstreamer1-plugins-base-devel-1.10.4-2.0.1.el7.x86_64.rpm
gstreamer1-plugins-base-devel-docs-1.10.4-2.0.1.el7.noarch.rpm
gstreamer1-plugins-base-tools-1.10.4-2.0.1.el7.x86_64.rpm
gstreamer1-plugins-good-1.10.4-2.0.1.el7.i686.rpm
gstreamer1-plugins-good-1.10.4-2.0.1.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//gstreamer1-plugins-base-1.10.4-2.0.1.el7.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates//gstreamer1-plugins-good-1.10.4-2.0.1.el7.src.rpm

Related CVEs:

CVE-2024-47537
CVE-2024-47538
CVE-2024-47540
CVE-2024-47606
CVE-2024-47607
CVE-2024-47613
CVE-2024-47615




Description of changes:

gstreamer1-plugins-base
[1.10.4-2.0.1]
- Fixed CVE-2024-47607,CVE-2024-47538 and CVE-2024-47615 [Orabug: 37407070]

gstreamer1-plugins-good
[1.10.4-2.0.1]
- Fixes CVE-2024-47537, CVE-2024-47540, CVE-2024-47613 and
- CVE-2024-47607 [Orabug: 37407070]



From el-errata at oss.oracle.com  Mon Feb  3 17:06:01 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 03 Feb 2025 09:06:01 -0800
Subject: [El-errata] ELBA-2025-20083 Oracle Linux 8 adaptivemm bug fix update
Message-ID: <mailman.132.1738602369.28.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20083

http://linux.oracle.com/errata/ELBA-2025-20083.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
adaptivemm-2.1.0-2.el8.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//adaptivemm-2.1.0-2.el8.src.rpm



Description of changes:

[2.1.0-2]
- Rebuild to v2.1.0 for OL8, OL9, and OL10
- v2.1.0 adds a module to look for possible memory leaks

[2.1.0-1]
- Add module to look for possible memory leaks



From el-errata at oss.oracle.com  Mon Feb  3 17:06:11 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 03 Feb 2025 09:06:11 -0800
Subject: [El-errata] ELBA-2025-20083 Oracle Linux 8 adaptivemm bug fix update
Message-ID: <mailman.133.1738602396.28.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20083

http://linux.oracle.com/errata/ELBA-2025-20083.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
adaptivemm-2.1.0-2.el8.x86_64.rpm

aarch64:
adaptivemm-2.1.0-2.el8.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//adaptivemm-2.1.0-2.el8.src.rpm



Description of changes:

[2.1.0-2]
- Rebuild to v2.1.0 for OL8, OL9, and OL10
- v2.1.0 adds a module to look for possible memory leaks

[2.1.0-1]
- Add module to look for possible memory leaks



From el-errata at oss.oracle.com  Wed Feb  5 17:09:09 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:09 -0800
Subject: [El-errata] ELBA-2025-20086 Oracle Linux 9 dtrace bug fix update
Message-ID: <mailman.1.1738775357.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20086

http://linux.oracle.com/errata/ELBA-2025-20086.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:


aarch64:
dtrace-2.0.2-5.el9.aarch64.rpm
dtrace-devel-2.0.2-5.el9.aarch64.rpm
dtrace-testsuite-2.0.2-5.el9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//dtrace-2.0.2-5.el9.src.rpm



Description of changes:

[2.0.2-1]
- Translators to support kernels 6.10 and later.
- FBT return probe argument support.
- The print() action is augmented with type information.  (Alan Maguire)
- Support to discover and trace USDT probes after a tracing session has
  started.  (Eugene Loh, Nick Alcock)
- USDT probe argument support (translated types, mapping).  (Nick Alcock)
- Installation locations are now configurable.  (Nick Alcock)
- Valgrind is no longer a required build dependency.  (Nick Alcock)
- Self-grabs have been improved.  (Nick Alcock)
- New provider: rawfbt.  (Kris Van Hees)
- Various bug fixes.  (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees)
- Various testsuite fixes and improvements.
  (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees)
- Various code improvements.  (Nick Alcock, Eugene Loh, Kris Van Hees)
  [Orabug: 37274251]



From el-errata at oss.oracle.com  Wed Feb  5 17:09:11 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:11 -0800
Subject: [El-errata] ELBA-2025-0909 Oracle Linux 9 alsa-sof-firmware bug fix
 update
Message-ID: <mailman.2.1738775361.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0909

http://linux.oracle.com/errata/ELBA-2025-0909.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
alsa-sof-firmware-2024.09-1.el9_5.noarch.rpm

aarch64:
alsa-sof-firmware-2024.09-1.el9_5.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//alsa-sof-firmware-2024.09-1.el9_5.src.rpm



Description of changes:

[2024.09-1]
- Update to v2024.09



From el-errata at oss.oracle.com  Wed Feb  5 17:09:12 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:12 -0800
Subject: [El-errata] ELBA-2025-0910 Oracle Linux 9 qemu-kvm bug fix and
 enhancement update
Message-ID: <mailman.3.1738775361.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0910

http://linux.oracle.com/errata/ELBA-2025-0910.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
qemu-guest-agent-9.0.0-10.el9_5.2.x86_64.rpm
qemu-img-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-audio-pa-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-block-blkio-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-block-curl-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-block-rbd-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-common-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-core-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-pci-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-device-display-virtio-vga-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-device-usb-host-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-device-usb-redirect-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-docs-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-tools-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-ui-egl-headless-9.0.0-10.el9_5.2.x86_64.rpm
qemu-kvm-ui-opengl-9.0.0-10.el9_5.2.x86_64.rpm
qemu-pr-helper-9.0.0-10.el9_5.2.x86_64.rpm

aarch64:
qemu-guest-agent-9.0.0-10.el9_5.2.aarch64.rpm
qemu-img-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-audio-pa-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-block-blkio-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-block-curl-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-block-rbd-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-common-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-core-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-pci-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-device-usb-host-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-device-usb-redirect-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-docs-9.0.0-10.el9_5.2.aarch64.rpm
qemu-kvm-tools-9.0.0-10.el9_5.2.aarch64.rpm
qemu-pr-helper-9.0.0-10.el9_5.2.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//qemu-kvm-9.0.0-10.el9_5.2.src.rpm



Description of changes:

[9.0.0-10.el9_5.2]
- kvm-vhost-fail-device-start-if-iotlb-update-fails.patch [RHEL-73006]
- Resolves: RHEL-73006
  (qemu-kvm: vhost: reports error while updating IOTLB entries [rhel-9.5.z])

[9.0.0-10.el9_5.1]
- kvm-migration-multifd-Avoid-the-final-FLUSH-in-complete.patch [RHEL-63874]
- kvm-migration-Rename-thread-debug-names.patch [RHEL-63874]
- kvm-migration-Use-MigrationStatus-instead-of-int.patch [RHEL-63874]
- kvm-migration-Cleanup-incoming-migration-setup-state-cha.patch [RHEL-63874]
- kvm-migration-postcopy-Add-postcopy-recover-setup-phase.patch [RHEL-63874]
- kvm-migration-docs-Update-postcopy-recover-session-for-S.patch [RHEL-63874]
- kvm-tests-migration-tests-Drop-most-WIN32-ifdefs-for-pos.patch [RHEL-63874]
- kvm-tests-migration-tests-Always-enable-migration-events.patch [RHEL-63874]
- kvm-tests-migration-tests-migration_event_wait.patch [RHEL-63874]
- kvm-tests-migration-tests-Verify-postcopy-recover-setup-.patch [RHEL-63874]
- kvm-tests-migration-tests-Cover-postcopy-failure-on-reco.patch [RHEL-63874]
- Resolves: RHEL-63874
  (Failure to resume paused post-copy migration is undetectable [rhel-9.5.z])



From el-errata at oss.oracle.com  Wed Feb  5 17:09:14 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:14 -0800
Subject: [El-errata] ELBA-2025-0911 Oracle Linux 9 conntrack-tools bug fix
 update
Message-ID: <mailman.4.1738775362.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0911

http://linux.oracle.com/errata/ELBA-2025-0911.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
conntrack-tools-1.4.7-4.el9_5.x86_64.rpm

aarch64:
conntrack-tools-1.4.7-4.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//conntrack-tools-1.4.7-4.el9_5.src.rpm



Description of changes:

[1.4.7-4]
- Bump release for RHEL9.5

[1.4.7-3]
- conntrack: Fix potential array out of bounds access



From el-errata at oss.oracle.com  Wed Feb  5 17:09:15 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:15 -0800
Subject: [El-errata] ELBA-2025-0913 Oracle Linux 9 mysql-selinux bug fix and
 enhancement update
Message-ID: <mailman.5.1738775363.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0913

http://linux.oracle.com/errata/ELBA-2025-0913.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mysql-selinux-1.0.13-1.el9_5.noarch.rpm

aarch64:
mysql-selinux-1.0.13-1.el9_5.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//mysql-selinux-1.0.13-1.el9_5.src.rpm



Description of changes:

[1.0.13-1]
- Rebase to 1.0.13



From el-errata at oss.oracle.com  Wed Feb  5 17:09:17 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:17 -0800
Subject: [El-errata] ELBA-2025-0915 Oracle Linux 9 389-ds-base bug fix update
Message-ID: <mailman.6.1738775367.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0915

http://linux.oracle.com/errata/ELBA-2025-0915.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
389-ds-base-2.5.2-5.el9_5.x86_64.rpm
389-ds-base-libs-2.5.2-5.el9_5.x86_64.rpm
389-ds-base-snmp-2.5.2-5.el9_5.x86_64.rpm
python3-lib389-2.5.2-5.el9_5.noarch.rpm
389-ds-base-devel-2.5.2-5.el9_5.x86_64.rpm

aarch64:
389-ds-base-2.5.2-5.el9_5.aarch64.rpm
389-ds-base-libs-2.5.2-5.el9_5.aarch64.rpm
389-ds-base-snmp-2.5.2-5.el9_5.aarch64.rpm
python3-lib389-2.5.2-5.el9_5.noarch.rpm
389-ds-base-devel-2.5.2-5.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//389-ds-base-2.5.2-5.el9_5.src.rpm



Description of changes:

[2.5.2-5]
- Resolves: RHEL-74350 - Some nsslapd-haproxy-trusted-ip values are discarded upon a restart. [rhel-9.5.z]

[2.5.2-4]
- Resolves: RHEL-70257 - Freelist ordering causes high wtime [rhel-9.5.z]

[2.5.2-3]
- Bump version to 2.5.2-3
- Resolves: RHEL-65775 - Wrong set of entries returned for some search filters [rhel-9.5.z]
- Resolves: RHEL-66138 - deadlock during cleanAllRuv [rhel-9.5.z]
- Resolves: RHEL-67163 - cleanallruv consums CPU and is slow [rhel-9.5.z]
- Resolves: RHEL-70257 - Freelist ordering causes high wtime [rhel-9.5.z]



From el-errata at oss.oracle.com  Wed Feb  5 17:09:19 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:19 -0800
Subject: [El-errata] ELBA-2025-0918 Oracle Linux 9 libvirt bug fix update
Message-ID: <mailman.7.1738775368.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0918

http://linux.oracle.com/errata/ELBA-2025-0918.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libvirt-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-client-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-client-qemu-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-common-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-config-network-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-config-nwfilter-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-interface-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-network-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-nodedev-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-nwfilter-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-qemu-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-secret-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-core-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-disk-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-logical-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-mpath-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-rbd-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-driver-storage-scsi-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-kvm-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-lock-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-log-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-plugin-lockd-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-proxy-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-libs-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-nss-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-ssh-proxy-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-daemon-plugin-sanlock-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-devel-10.5.0-7.4.0.1.el9_5.x86_64.rpm
libvirt-docs-10.5.0-7.4.0.1.el9_5.x86_64.rpm

aarch64:
libvirt-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-client-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-client-qemu-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-common-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-config-network-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-config-nwfilter-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-interface-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-network-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-nodedev-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-nwfilter-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-qemu-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-secret-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-core-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-disk-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-logical-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-mpath-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-rbd-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-driver-storage-scsi-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-kvm-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-lock-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-log-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-plugin-lockd-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-proxy-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-libs-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-nss-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-ssh-proxy-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-daemon-plugin-sanlock-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-devel-10.5.0-7.4.0.1.el9_5.aarch64.rpm
libvirt-docs-10.5.0-7.4.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//libvirt-10.5.0-7.4.0.1.el9_5.src.rpm



Description of changes:

[10.5.0-7.4.0.1]
- Set SOURCE_DATE_EPOCH from changelog [Orabug: 32019554]

[10.5.0-7.4.el9_5]
- qemu: Enable I/O APIC if needed (RHEL-69725)
- qemu: Enable I/O APIC even more frequently (RHEL-69725)

[10.5.0-7.3.el9_5]
- libvirt_private.syms: Export virDomainIOMMUDefNew() (RHEL-69725)
- qemu: Turn EIM IOMMU on automagically (RHEL-69725)
- qemu_domain: Automagically add IOMMU if needed (RHEL-69725)



From el-errata at oss.oracle.com  Wed Feb  5 17:09:20 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:20 -0800
Subject: [El-errata] ELBA-2025-0919 Oracle Linux 9 haproxy bug fix and
 enhancement update
Message-ID: <mailman.10.1738775369.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0919

http://linux.oracle.com/errata/ELBA-2025-0919.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
haproxy-2.4.22-3.el9_5.1.x86_64.rpm

aarch64:
haproxy-2.4.22-3.el9_5.1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//haproxy-2.4.22-3.el9_5.1.src.rpm



Description of changes:

[2.4.22-3.1]
- Always clear retry flags in read/write functions to avoid CPU
  usage spikes
- Fix "unable to load certificate chain from file" issue
  Resolves: RHEL-72955, RHEL-72952



From el-errata at oss.oracle.com  Wed Feb  5 17:09:22 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:22 -0800
Subject: [El-errata] ELBA-2025-0921 Oracle Linux 9 linuxptp bug fix update
Message-ID: <mailman.11.1738775369.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0921

http://linux.oracle.com/errata/ELBA-2025-0921.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
linuxptp-4.2-3.el9_5.1.x86_64.rpm

aarch64:
linuxptp-4.2-3.el9_5.1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//linuxptp-4.2-3.el9_5.1.src.rpm



Description of changes:

[4.2-3.el9_5.1]
- add option to ts2phc to specify minimum expected NMEA delay (RHEL-70168)
- don't require -O option without -a and -w in phc2sys (RHEL-70678)



From el-errata at oss.oracle.com  Wed Feb  5 17:09:24 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:24 -0800
Subject: [El-errata] ELBA-2025-0924 Oracle Linux 9 ipa bug fix update
Message-ID: <mailman.12.1738775373.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0924

http://linux.oracle.com/errata/ELBA-2025-0924.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
ipa-client-4.12.2-1.0.1.el9_5.4.x86_64.rpm
ipa-client-common-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-client-epn-4.12.2-1.0.1.el9_5.4.x86_64.rpm
ipa-client-samba-4.12.2-1.0.1.el9_5.4.x86_64.rpm
ipa-common-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-selinux-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-selinux-luna-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-selinux-nfast-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-server-4.12.2-1.0.1.el9_5.4.x86_64.rpm
ipa-server-common-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-server-dns-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-server-trust-ad-4.12.2-1.0.1.el9_5.4.x86_64.rpm
python3-ipaclient-4.12.2-1.0.1.el9_5.4.noarch.rpm
python3-ipalib-4.12.2-1.0.1.el9_5.4.noarch.rpm
python3-ipaserver-4.12.2-1.0.1.el9_5.4.noarch.rpm
python3-ipatests-4.12.2-1.0.1.el9_5.4.noarch.rpm

aarch64:
ipa-client-4.12.2-1.0.1.el9_5.4.aarch64.rpm
ipa-client-common-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-client-epn-4.12.2-1.0.1.el9_5.4.aarch64.rpm
ipa-client-samba-4.12.2-1.0.1.el9_5.4.aarch64.rpm
ipa-common-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-selinux-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-selinux-luna-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-selinux-nfast-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-server-4.12.2-1.0.1.el9_5.4.aarch64.rpm
ipa-server-common-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-server-dns-4.12.2-1.0.1.el9_5.4.noarch.rpm
ipa-server-trust-ad-4.12.2-1.0.1.el9_5.4.aarch64.rpm
python3-ipaclient-4.12.2-1.0.1.el9_5.4.noarch.rpm
python3-ipalib-4.12.2-1.0.1.el9_5.4.noarch.rpm
python3-ipaserver-4.12.2-1.0.1.el9_5.4.noarch.rpm
python3-ipatests-4.12.2-1.0.1.el9_5.4.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//ipa-4.12.2-1.0.1.el9_5.4.src.rpm



Description of changes:

[4.12.2-1.0.1.4]
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Add bind to ipa-server-common Requires [Orabug: 36518596]

[4.12.2-1.4]
- Resolves: RHEL-76011 kinit with external idp user is failing



From el-errata at oss.oracle.com  Wed Feb  5 17:09:26 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:26 -0800
Subject: [El-errata] ELBA-2025-0926 Oracle Linux 9 iptables bug fix update
Message-ID: <mailman.13.1738775374.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0926

http://linux.oracle.com/errata/ELBA-2025-0926.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
iptables-devel-1.8.10-11.el9_5.i686.rpm
iptables-devel-1.8.10-11.el9_5.x86_64.rpm
iptables-libs-1.8.10-11.el9_5.i686.rpm
iptables-libs-1.8.10-11.el9_5.x86_64.rpm
iptables-nft-1.8.10-11.el9_5.x86_64.rpm
iptables-nft-services-1.8.10-11.el9_5.noarch.rpm
iptables-utils-1.8.10-11.el9_5.x86_64.rpm

aarch64:
iptables-devel-1.8.10-11.el9_5.aarch64.rpm
iptables-libs-1.8.10-11.el9_5.aarch64.rpm
iptables-nft-1.8.10-11.el9_5.aarch64.rpm
iptables-nft-services-1.8.10-11.el9_5.noarch.rpm
iptables-utils-1.8.10-11.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//iptables-1.8.10-11.el9_5.src.rpm



Description of changes:

[[1.8.10-11.el9]]
- libxtables: Attenuate effects of functions' internal static buffers (Phil Sutter) [RHEL-72027]

[[1.8.10-10.el9]]
- spec: Fix build on c9s (Phil Sutter) [RHEL-72005]

[[1.8.10-9.el9]]
- spec: Explicitly remove unpackaged files (Michel Lind) [RHEL-72005]

[[1.8.10-8.el9]]
- Revert "xshared: Print protocol numbers if --numeric was given" (Phil Sutter) [RHEL-70173]

[[1.8.10-7.el9]]
- Bump release for side-tag (Phil Sutter) [RHEL-69283 RHEL-69284]

[[1.8.10-6.el9]]
- Bump release for RHEL-9.5.z (Phil Sutter) [RHEL-69283 RHEL-69284]

[[1.8.10-5.el9]]
- xtables-monitor: Ignore ebtables policy rules unless tracing (Phil Sutter) [RHEL-47264]
- xtables-monitor: Fix for ebtables rule events (Phil Sutter) [RHEL-47264]
- tests: shell: New xtables-monitor test (Phil Sutter) [RHEL-47264]
- xtables-monitor: Support arptables chain events (Phil Sutter) [RHEL-47264]
- xtables-monitor: Align builtin chain and table output (Phil Sutter) [RHEL-47264]
- xtables-monitor: Flush stdout after all lines of output (Phil Sutter) [RHEL-47264]
- xtables-monitor: Proper re-init for rule's family (Phil Sutter) [RHEL-47264]
- nft: Fix for zeroing existent builtin chains (Phil Sutter) [RHEL-49497]
- nft: cache: Annotate faked base chains as such (Phil Sutter) [RHEL-49497]
- nft: Fix for zeroing non-existent builtin chains (Phil Sutter) [RHEL-49497]

[[1.8.10-4.el9]]
- spec: Simplify legacy package integration (Phil Sutter) [RHEL-5797]

[[1.8.10-3.el9]]
- extensions: libxt_sctp: Add an extra assert() (Phil Sutter) [RHEL-40928]
- spec: Add symlinks for merged extension DSOs (Phil Sutter) [RHEL-32463]
- nft: Fix for broken recover_rule_compat() (Phil Sutter) [RHEL-26619]
- spec: Ship ebtables-translate and man page (Phil Sutter) [RHEL-32922]

[[1.8.10-2.el9]]
- ebtables: Fix corner-case noflush restore bug (Phil Sutter) [RHEL-14147]

[[1.8.10-1.el9]]
- spec: Support for _excludedocs macro in alternatives installation (Phil Sutter) [RHEL-5810]
- Rebase onto version 1.8.10 (Phil Sutter) [RHEL-14147]



From el-errata at oss.oracle.com  Wed Feb  5 17:09:27 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:27 -0800
Subject: [El-errata] ELBA-2025-0927 Oracle Linux 9 libnfnetlink bug fix
 update
Message-ID: <mailman.14.1738775377.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0927

http://linux.oracle.com/errata/ELBA-2025-0927.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libnfnetlink-1.0.1-23.el9_5.i686.rpm
libnfnetlink-1.0.1-23.el9_5.x86_64.rpm
libnfnetlink-devel-1.0.1-23.el9_5.i686.rpm
libnfnetlink-devel-1.0.1-23.el9_5.x86_64.rpm

aarch64:
libnfnetlink-1.0.1-23.el9_5.aarch64.rpm
libnfnetlink-devel-1.0.1-23.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//libnfnetlink-1.0.1-23.el9_5.src.rpm



Description of changes:

[1.0.1-23]
- Bump release for CI

[1.0.1-22]
- libnfnetlink: Check getsockname() return code
- include: Silence gcc warning in linux_list.h



From el-errata at oss.oracle.com  Wed Feb  5 17:09:29 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:29 -0800
Subject: [El-errata] ELBA-2025-0928 Oracle Linux 9 os-prober bug fix update
Message-ID: <mailman.15.1738775377.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0928

http://linux.oracle.com/errata/ELBA-2025-0928.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
os-prober-1.77-12.0.1.el9_5.x86_64.rpm

aarch64:
os-prober-1.77-12.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//os-prober-1.77-12.0.1.el9_5.src.rpm



Description of changes:

[1.77-12.0.1]
- Add patch os-prober-oracle.patch to add Oracle to the list of Linux distributions

[1.77.12]
- 50mounted-tests: trap do_unmount function on errors
- Resolves: RHEL-41244

[1.77-11]
- 90fallback: include possible kernel parameters from grub's default file
- common.sh: do not resolve symbolic link on mapped device filesystems
- Resolves: #RHEL-44705



From el-errata at oss.oracle.com  Wed Feb  5 17:09:30 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:30 -0800
Subject: [El-errata] ELBA-2025-0929 Oracle Linux 9 firewalld bug fix and
 enhancement update
Message-ID: <mailman.16.1738775379.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0929

http://linux.oracle.com/errata/ELBA-2025-0929.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
firewall-applet-1.3.4-9.0.1.el9_5.noarch.rpm
firewall-config-1.3.4-9.0.1.el9_5.noarch.rpm
firewalld-1.3.4-9.0.1.el9_5.noarch.rpm
firewalld-filesystem-1.3.4-9.0.1.el9_5.noarch.rpm
python3-firewall-1.3.4-9.0.1.el9_5.noarch.rpm

aarch64:
firewall-applet-1.3.4-9.0.1.el9_5.noarch.rpm
firewall-config-1.3.4-9.0.1.el9_5.noarch.rpm
firewalld-1.3.4-9.0.1.el9_5.noarch.rpm
firewalld-filesystem-1.3.4-9.0.1.el9_5.noarch.rpm
python3-firewall-1.3.4-9.0.1.el9_5.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//firewalld-1.3.4-9.0.1.el9_5.src.rpm



Description of changes:

[1.3.4-9.0.1]
- Red Hat Satellite and Red Hat high availaibility reference found in cockpit UI
  [Orabug: 30257573]
- discard empty RH-Satellite-6.xml [Orabug: 30328734]
- Remove capsule file as well, since it references removed config [Orabug: 33513329]

[1.3.4-9]
- feat(service): (x)rootd file server

[1.3.4-8]
- fix(service): update highest port number for ceph



From el-errata at oss.oracle.com  Wed Feb  5 17:09:32 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:32 -0800
Subject: [El-errata] ELBA-2025-0930 Oracle Linux 9 ipset bug fix update
Message-ID: <mailman.17.1738775382.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0930

http://linux.oracle.com/errata/ELBA-2025-0930.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
ipset-7.11-11.el9_5.x86_64.rpm
ipset-libs-7.11-11.el9_5.i686.rpm
ipset-libs-7.11-11.el9_5.x86_64.rpm
ipset-service-7.11-11.el9_5.noarch.rpm
ipset-devel-7.11-11.el9_5.i686.rpm
ipset-devel-7.11-11.el9_5.x86_64.rpm

aarch64:
ipset-7.11-11.el9_5.aarch64.rpm
ipset-libs-7.11-11.el9_5.aarch64.rpm
ipset-service-7.11-11.el9_5.noarch.rpm
ipset-devel-7.11-11.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//ipset-7.11-11.el9_5.src.rpm



Description of changes:

[7.11-11]
- Bump release for gated side-tag

[7.11-10]
- Fix patch "Parse port before trying by service name"

[7.11-9]
- Fix for wrong comment in ipset-config file



From el-errata at oss.oracle.com  Wed Feb  5 17:09:34 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:34 -0800
Subject: [El-errata] ELSA-2025-0917 Moderate: Oracle Linux 9 keepalived
 security update
Message-ID: <mailman.18.1738775382.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0917

http://linux.oracle.com/errata/ELSA-2025-0917.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
keepalived-2.2.8-4.el9_5.x86_64.rpm

aarch64:
keepalived-2.2.8-4.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//keepalived-2.2.8-4.el9_5.src.rpm

Related CVEs:

CVE-2024-41184




Description of changes:

[2.2.8-3]
- Validate vrrp ipset names for CVE-2024-41184
  Resolves: RHEL-49557


From el-errata at oss.oracle.com  Wed Feb  5 17:09:35 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:35 -0800
Subject: [El-errata] ELSA-2025-0922 Important: Oracle Linux 9 podman
 security update
Message-ID: <mailman.19.1738775385.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0922

http://linux.oracle.com/errata/ELSA-2025-0922.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
podman-5.2.2-13.0.1.el9_5.x86_64.rpm
podman-docker-5.2.2-13.0.1.el9_5.noarch.rpm
podman-plugins-5.2.2-13.0.1.el9_5.x86_64.rpm
podman-remote-5.2.2-13.0.1.el9_5.x86_64.rpm
podman-tests-5.2.2-13.0.1.el9_5.x86_64.rpm

aarch64:
podman-5.2.2-13.0.1.el9_5.aarch64.rpm
podman-docker-5.2.2-13.0.1.el9_5.noarch.rpm
podman-plugins-5.2.2-13.0.1.el9_5.aarch64.rpm
podman-remote-5.2.2-13.0.1.el9_5.aarch64.rpm
podman-tests-5.2.2-13.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//podman-5.2.2-13.0.1.el9_5.src.rpm

Related CVEs:

CVE-2024-11218




Description of changes:

[5.2.2-13.0.1]
- podman: do not set rlimits to the default value [Orabug: 37310981]
- Add devices on container startup, not on creation
- overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[4:5.2.2-13]
- update to the latest content of https://github.com/containers/podman/tree/v5.2-rhel
  (https://github.com/containers/podman/commit/173b20b)
- Resolves: RHEL-67606

[4:5.2.2-12]
- update to the latest content of https://github.com/containers/podman/tree/v5.2-rhel
  (https://github.com/containers/podman/commit/76d1690)
- Resolves: RHEL-73592



From el-errata at oss.oracle.com  Wed Feb  5 17:09:38 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:38 -0800
Subject: [El-errata] ELSA-2025-0925 Moderate: Oracle Linux 9 bzip2 security
 update
Message-ID: <mailman.20.1738775386.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0925

http://linux.oracle.com/errata/ELSA-2025-0925.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bzip2-1.0.8-10.el9_5.x86_64.rpm
bzip2-devel-1.0.8-10.el9_5.i686.rpm
bzip2-devel-1.0.8-10.el9_5.x86_64.rpm
bzip2-libs-1.0.8-10.el9_5.i686.rpm
bzip2-libs-1.0.8-10.el9_5.x86_64.rpm

aarch64:
bzip2-1.0.8-10.el9_5.aarch64.rpm
bzip2-devel-1.0.8-10.el9_5.aarch64.rpm
bzip2-libs-1.0.8-10.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//bzip2-1.0.8-10.el9_5.src.rpm

Related CVEs:

CVE-2019-12900




Description of changes:

[1.0.8-10]
- Revert the previous commit (introduced a regression)
Resolves: CVE-2019-12900

[1.0.8-9]
- Fix out of bounds access in BZ2_decompress
Resolves: RHEL-65198



From el-errata at oss.oracle.com  Wed Feb  5 17:09:36 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:36 -0800
Subject: [El-errata] ELSA-2025-0923 Important: Oracle Linux 9 buildah
 security update
Message-ID: <mailman.21.1738775386.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0923

http://linux.oracle.com/errata/ELSA-2025-0923.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
buildah-1.37.6-1.0.1.el9_5.x86_64.rpm
buildah-tests-1.37.6-1.0.1.el9_5.x86_64.rpm

aarch64:
buildah-1.37.6-1.0.1.el9_5.aarch64.rpm
buildah-tests-1.37.6-1.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//buildah-1.37.6-1.0.1.el9_5.src.rpm

Related CVEs:

CVE-2024-11218




Description of changes:

[1.37.6-1.0.1]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117178]

[2:1.37.6-1]
- update to the latest content of https://github.com/containers/buildah/tree/release-1.37
  (https://github.com/containers/buildah/commit/fd39521)
- Resolves: RHEL-67617



From el-errata at oss.oracle.com  Wed Feb  5 17:09:46 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:46 -0800
Subject: [El-errata] ELBA-2025-20084 Oracle Linux 8 leapp-repository bug fix
 update
Message-ID: <mailman.22.1738775394.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20084

http://linux.oracle.com/errata/ELBA-2025-20084.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
leapp-upgrade-el8toel9-0.20.0-2.0.18.el8.noarch.rpm
leapp-upgrade-el8toel9-deps-0.20.0-2.0.18.el8.noarch.rpm

aarch64:
leapp-upgrade-el8toel9-0.20.0-2.0.18.el8.noarch.rpm
leapp-upgrade-el8toel9-deps-0.20.0-2.0.18.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//leapp-repository-0.20.0-2.0.18.el8.src.rpm



Description of changes:

[0.20.0-2.0.18]
- Implemented Inhibitor for Oracle-ebs-server-R12-Preinstall [Orabug: 37096058]



From el-errata at oss.oracle.com  Wed Feb  5 17:09:48 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:48 -0800
Subject: [El-errata] ELBA-2025-20087 Oracle Linux 8 dtrace bug fix update
Message-ID: <mailman.23.1738775396.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20087

http://linux.oracle.com/errata/ELBA-2025-20087.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:


aarch64:
dtrace-2.0.2-5.el8.aarch64.rpm
dtrace-devel-2.0.2-5.el8.aarch64.rpm
dtrace-testsuite-2.0.2-5.el8.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//dtrace-2.0.2-5.el8.src.rpm



Description of changes:

[2.0.2-1]
- Translators to support kernels 6.10 and later.
- FBT return probe argument support.
- The print() action is augmented with type information.  (Alan Maguire)
- Support to discover and trace USDT probes after a tracing session has
  started.  (Eugene Loh, Nick Alcock)
- USDT probe argument support (translated types, mapping).  (Nick Alcock)
- Installation locations are now configurable.  (Nick Alcock)
- Valgrind is no longer a required build dependency.  (Nick Alcock)
- Self-grabs have been improved.  (Nick Alcock)
- New provider: rawfbt.  (Kris Van Hees)
- Various bug fixes.  (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees)
- Various testsuite fixes and improvements.
  (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees)
- Various code improvements.  (Nick Alcock, Eugene Loh, Kris Van Hees)
  [Orabug: 37274251]



From el-errata at oss.oracle.com  Wed Feb  5 17:09:49 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:49 -0800
Subject: [El-errata] ELBA-2025-0935 Oracle Linux 8 389-ds:1.4 bug fix and
 enhancement update
Message-ID: <mailman.24.1738775400.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0935

http://linux.oracle.com/errata/ELBA-2025-0935.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
389-ds-base-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm
389-ds-base-devel-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm
389-ds-base-legacy-tools-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm
389-ds-base-libs-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm
389-ds-base-snmp-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm
python3-lib389-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.noarch.rpm

aarch64:
389-ds-base-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm
389-ds-base-devel-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm
389-ds-base-legacy-tools-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm
389-ds-base-libs-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm
389-ds-base-snmp-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm
python3-lib389-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//389-ds-base-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.src.rpm



Description of changes:

[1.4.3.39-11]
- Resolves: RHEL-72487 - IPA LDAP error code T3 when no exceeded time limit from a paged search result [rhel-8.10.z]



From el-errata at oss.oracle.com  Wed Feb  5 17:09:58 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:09:58 -0800
Subject: [El-errata] ELBA-2025-20087 Oracle Linux 8 dtrace bug fix update
Message-ID: <mailman.27.1738775406.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20087

http://linux.oracle.com/errata/ELBA-2025-20087.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
dtrace-2.0.2-5.el8.x86_64.rpm
dtrace-devel-2.0.2-5.el8.x86_64.rpm
dtrace-testsuite-2.0.2-5.el8.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//dtrace-2.0.2-5.el8.src.rpm



Description of changes:

[2.0.2-1]
- Translators to support kernels 6.10 and later.
- FBT return probe argument support.
- The print() action is augmented with type information.  (Alan Maguire)
- Support to discover and trace USDT probes after a tracing session has
  started.  (Eugene Loh, Nick Alcock)
- USDT probe argument support (translated types, mapping).  (Nick Alcock)
- Installation locations are now configurable.  (Nick Alcock)
- Valgrind is no longer a required build dependency.  (Nick Alcock)
- Self-grabs have been improved.  (Nick Alcock)
- New provider: rawfbt.  (Kris Van Hees)
- Various bug fixes.  (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees)
- Various testsuite fixes and improvements.
  (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees)
- Various code improvements.  (Nick Alcock, Eugene Loh, Kris Van Hees)
  [Orabug: 37274251]



From el-errata at oss.oracle.com  Wed Feb  5 17:10:08 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:10:08 -0800
Subject: [El-errata] ELBA-2025-20086 Oracle Linux 9 dtrace bug fix update
Message-ID: <mailman.28.1738775417.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20086

http://linux.oracle.com/errata/ELBA-2025-20086.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
dtrace-2.0.2-5.el9.x86_64.rpm
dtrace-devel-2.0.2-5.el9.x86_64.rpm
dtrace-testsuite-2.0.2-5.el9.x86_64.rpm



SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//dtrace-2.0.2-5.el9.src.rpm



Description of changes:

[2.0.2-1]
- Translators to support kernels 6.10 and later.
- FBT return probe argument support.
- The print() action is augmented with type information.  (Alan Maguire)
- Support to discover and trace USDT probes after a tracing session has
  started.  (Eugene Loh, Nick Alcock)
- USDT probe argument support (translated types, mapping).  (Nick Alcock)
- Installation locations are now configurable.  (Nick Alcock)
- Valgrind is no longer a required build dependency.  (Nick Alcock)
- Self-grabs have been improved.  (Nick Alcock)
- New provider: rawfbt.  (Kris Van Hees)
- Various bug fixes.  (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees)
- Various testsuite fixes and improvements.
  (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees)
- Various code improvements.  (Nick Alcock, Eugene Loh, Kris Van Hees)
  [Orabug: 37274251]



From el-errata at oss.oracle.com  Wed Feb  5 17:10:14 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 05 Feb 2025 09:10:14 -0800
Subject: [El-errata] ELBA-2025-20087 Oracle Linux 8 dtrace bug fix update
Message-ID: <mailman.29.1738775423.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20087

http://linux.oracle.com/errata/ELBA-2025-20087.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
dtrace-2.0.2-5.el8.x86_64.rpm
dtrace-devel-2.0.2-5.el8.x86_64.rpm
dtrace-testsuite-2.0.2-5.el8.x86_64.rpm

aarch64:
dtrace-2.0.2-5.el8.aarch64.rpm
dtrace-devel-2.0.2-5.el8.aarch64.rpm
dtrace-testsuite-2.0.2-5.el8.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//dtrace-2.0.2-5.el8.src.rpm



Description of changes:

[2.0.2-1]
- Translators to support kernels 6.10 and later.
- FBT return probe argument support.
- The print() action is augmented with type information.  (Alan Maguire)
- Support to discover and trace USDT probes after a tracing session has
  started.  (Eugene Loh, Nick Alcock)
- USDT probe argument support (translated types, mapping).  (Nick Alcock)
- Installation locations are now configurable.  (Nick Alcock)
- Valgrind is no longer a required build dependency.  (Nick Alcock)
- Self-grabs have been improved.  (Nick Alcock)
- New provider: rawfbt.  (Kris Van Hees)
- Various bug fixes.  (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees)
- Various testsuite fixes and improvements.
  (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees)
- Various code improvements.  (Nick Alcock, Eugene Loh, Kris Van Hees)
  [Orabug: 37274251]



From el-errata at oss.oracle.com  Thu Feb  6 12:36:15 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 06 Feb 2025 04:36:15 -0800
Subject: [El-errata] ELBA-2025-0916 Oracle Linux 9 rust bug fix and
 enhancement update
Message-ID: <mailman.30.1738845386.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0916

http://linux.oracle.com/errata/ELBA-2025-0916.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
cargo-1.79.0-3.el9_5.x86_64.rpm
clippy-1.79.0-3.el9_5.x86_64.rpm
rust-1.79.0-3.el9_5.x86_64.rpm
rust-analyzer-1.79.0-3.el9_5.x86_64.rpm
rust-debugger-common-1.79.0-3.el9_5.noarch.rpm
rust-doc-1.79.0-3.el9_5.x86_64.rpm
rust-gdb-1.79.0-3.el9_5.noarch.rpm
rust-lldb-1.79.0-3.el9_5.noarch.rpm
rust-src-1.79.0-3.el9_5.noarch.rpm
rust-std-static-1.79.0-3.el9_5.i686.rpm
rust-std-static-1.79.0-3.el9_5.x86_64.rpm
rust-std-static-wasm32-unknown-unknown-1.79.0-3.el9_5.noarch.rpm
rust-std-static-wasm32-wasi-1.79.0-3.el9_5.noarch.rpm
rust-std-static-wasm32-wasip1-1.79.0-3.el9_5.noarch.rpm
rust-toolset-1.79.0-3.el9_5.noarch.rpm
rustfmt-1.79.0-3.el9_5.x86_64.rpm

aarch64:
cargo-1.79.0-3.el9_5.aarch64.rpm
clippy-1.79.0-3.el9_5.aarch64.rpm
rust-1.79.0-3.el9_5.aarch64.rpm
rust-analyzer-1.79.0-3.el9_5.aarch64.rpm
rust-debugger-common-1.79.0-3.el9_5.noarch.rpm
rust-doc-1.79.0-3.el9_5.aarch64.rpm
rust-gdb-1.79.0-3.el9_5.noarch.rpm
rust-lldb-1.79.0-3.el9_5.noarch.rpm
rust-src-1.79.0-3.el9_5.noarch.rpm
rust-std-static-1.79.0-3.el9_5.aarch64.rpm
rust-std-static-wasm32-unknown-unknown-1.79.0-3.el9_5.noarch.rpm
rust-std-static-wasm32-wasi-1.79.0-3.el9_5.noarch.rpm
rust-std-static-wasm32-wasip1-1.79.0-3.el9_5.noarch.rpm
rust-toolset-1.79.0-3.el9_5.noarch.rpm
rustfmt-1.79.0-3.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//rust-1.79.0-3.el9_5.src.rpm



Description of changes:

[1.79.0-3]
- Remove the subshell in the cargo_install macro



From el-errata at oss.oracle.com  Thu Feb  6 12:36:16 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 06 Feb 2025 04:36:16 -0800
Subject: [El-errata] ELBA-2025-0920 Oracle Linux 9 passt bug fix update
Message-ID: <mailman.31.1738845389.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0920

http://linux.oracle.com/errata/ELBA-2025-0920.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
passt-0^20240806.gee36266-6.el9_5.x86_64.rpm
passt-selinux-0^20240806.gee36266-6.el9_5.noarch.rpm

aarch64:
passt-0^20240806.gee36266-6.el9_5.aarch64.rpm
passt-selinux-0^20240806.gee36266-6.el9_5.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//passt-0^20240806.gee36266-6.el9_5.src.rpm



Description of changes:

[0^20240806-gee36266-6]
- Resolves: RHEL-75645

[0^20240806-gee36266-5]
- Resolves: RHEL-74301

[0^20240806-gee36266-4]
- Resolves: RHEL-73251

[0^20240806-gee36266-3]
- Resolves: RHEL-68948



From el-errata at oss.oracle.com  Thu Feb  6 12:36:18 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 06 Feb 2025 04:36:18 -0800
Subject: [El-errata] ELBA-2025-0931 Oracle Linux 9 grub2 bug fix update
Message-ID: <mailman.32.1738845389.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-0931

http://linux.oracle.com/errata/ELBA-2025-0931.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
grub2-common-2.06-93.0.1.el9_5.noarch.rpm
grub2-efi-aa64-modules-2.06-93.0.1.el9_5.noarch.rpm
grub2-efi-x64-2.06-93.0.1.el9_5.x86_64.rpm
grub2-efi-x64-cdboot-2.06-93.0.1.el9_5.x86_64.rpm
grub2-efi-x64-modules-2.06-93.0.1.el9_5.noarch.rpm
grub2-pc-2.06-93.0.1.el9_5.x86_64.rpm
grub2-pc-modules-2.06-93.0.1.el9_5.noarch.rpm
grub2-tools-2.06-93.0.1.el9_5.x86_64.rpm
grub2-tools-efi-2.06-93.0.1.el9_5.x86_64.rpm
grub2-tools-extra-2.06-93.0.1.el9_5.x86_64.rpm
grub2-tools-minimal-2.06-93.0.1.el9_5.x86_64.rpm

aarch64:
grub2-common-2.06-93.0.1.el9_5.noarch.rpm
grub2-efi-aa64-2.06-93.0.1.el9_5.aarch64.rpm
grub2-efi-aa64-cdboot-2.06-93.0.1.el9_5.aarch64.rpm
grub2-efi-aa64-modules-2.06-93.0.1.el9_5.noarch.rpm
grub2-efi-x64-modules-2.06-93.0.1.el9_5.noarch.rpm
grub2-tools-2.06-93.0.1.el9_5.aarch64.rpm
grub2-tools-extra-2.06-93.0.1.el9_5.aarch64.rpm
grub2-tools-minimal-2.06-93.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//grub2-2.06-93.0.1.el9_5.src.rpm



Description of changes:

[2.06-93.0.1]
- Rework the scripts to cover both in-place upgrade and update scenarios [Orabug: 36768566]
- Restore correct order of processing config files [Orabug: 36758359]
- Support setting custom kernels as default kernels [Orabug: 36043978]
- Bump SBAT metadata for grub to 3 [Orabug: 34872719]
- Fix CVE-2022-3775 [Orabug: 34871953]
- Enable signing for aarch64 EFI
- Fix signing certificate names
- Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- Update provided certificate version to 202204 [JIRA: OLDIS-16371]
- Various coverity fixes [JIRA: OLDIS-16371]
- bump SBAT generation
- Update bug url [Orabug: 34202300]
- Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
- Update signing certificate [JIRA: OLDIS-16371]
- fix SBAT data [JIRA: OLDIS-16371]
- Update requires [JIRA: OLDIS-16371]
- Rebuild for SecureBoot signatures [Orabug: 33801813]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- Put "with" in menuentry instead of "using" [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-93]
- cmd/search: Fix a possible NULL ptr dereference
- Resolves: #RHEL-61263



From el-errata at oss.oracle.com  Thu Feb  6 12:36:19 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 06 Feb 2025 04:36:19 -0800
Subject: [El-errata] ELBA-2025-1042 Oracle Linux 9 kernel bug fix update
Message-ID: <mailman.33.1738845389.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1042

http://linux.oracle.com/errata/ELBA-2025-1042.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-7.4.0-503.23.1.el9_5.x86_64.rpm
kernel-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-abi-stablelists-5.14.0-503.23.1.el9_5.noarch.rpm
kernel-core-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-core-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-devel-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-devel-matched-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-modules-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-modules-core-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-modules-extra-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-debug-uki-virt-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-devel-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-devel-matched-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-doc-5.14.0-503.23.1.el9_5.noarch.rpm
kernel-headers-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-modules-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-modules-core-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-modules-extra-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-tools-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-tools-libs-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-uki-virt-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-uki-virt-addons-5.14.0-503.23.1.el9_5.x86_64.rpm
perf-5.14.0-503.23.1.el9_5.x86_64.rpm
python3-perf-5.14.0-503.23.1.el9_5.x86_64.rpm
rtla-5.14.0-503.23.1.el9_5.x86_64.rpm
rv-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-cross-headers-5.14.0-503.23.1.el9_5.x86_64.rpm
kernel-tools-libs-devel-5.14.0-503.23.1.el9_5.x86_64.rpm
libperf-5.14.0-503.23.1.el9_5.x86_64.rpm

aarch64:
bpftool-7.4.0-503.23.1.el9_5.aarch64.rpm
kernel-headers-5.14.0-503.23.1.el9_5.aarch64.rpm
kernel-tools-5.14.0-503.23.1.el9_5.aarch64.rpm
kernel-tools-libs-5.14.0-503.23.1.el9_5.aarch64.rpm
perf-5.14.0-503.23.1.el9_5.aarch64.rpm
python3-perf-5.14.0-503.23.1.el9_5.aarch64.rpm
rtla-5.14.0-503.23.1.el9_5.aarch64.rpm
rv-5.14.0-503.23.1.el9_5.aarch64.rpm
kernel-cross-headers-5.14.0-503.23.1.el9_5.aarch64.rpm
kernel-tools-libs-devel-5.14.0-503.23.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-503.23.1.el9_5.src.rpm



Description of changes:

- [5.14.0-503.23.1.el9_5.OL9]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5]
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
- Add Oracle Linux IMA certificates

[5.14.0-503.23.1.el9_5]
- printk: nbcon: Fix illegal RCU usage on thread wakeup (Derek Barbosa) [RHEL-73036]



From el-errata at oss.oracle.com  Thu Feb  6 12:36:21 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 06 Feb 2025 04:36:21 -0800
Subject: [El-errata] ELSA-2025-0912 Moderate: Oracle Linux 9 mariadb:10.11
 security update
Message-ID: <mailman.34.1738845389.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0912

http://linux.oracle.com/errata/ELSA-2025-0912.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
galera-26.4.20-1.0.1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-backup-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-common-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-embedded-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-embedded-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-errmsg-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-gssapi-server-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-oqgraph-engine-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-pam-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-server-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-server-galera-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-server-utils-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm
mariadb-test-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm

aarch64:
galera-26.4.20-1.0.1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-backup-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-common-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-embedded-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-embedded-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-errmsg-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-gssapi-server-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-oqgraph-engine-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-pam-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-server-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-server-galera-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-server-utils-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm
mariadb-test-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//galera-26.4.20-1.0.1.module+el9.5.0+90507+82ceef20.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//mariadb-10.11.10-1.module+el9.5.0+90507+82ceef20.src.rpm

Related CVEs:

CVE-2024-21096




Description of changes:

galera
[26.4.20-1.0.1]
- Drop nmap-ncat requirement. [Orabug: 34116228]
- Requirement to delete garbd-wrapper script and lp1184034 test case
  without using patches. [Orabug: 34116228]

[26.4.20-1]
- Rebase to 26.4.20

[26.4.19-1]
- Rebase to 26.4.19

[26.4.18-1]
- Rebase to 26.4.18

mariadb
[3:10.11.10-1]
- Rebase to 10.11.10

[3:10.11.9-1]
- Rebase to 10.11.9



From el-errata at oss.oracle.com  Thu Feb  6 12:36:23 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 06 Feb 2025 04:36:23 -0800
Subject: [El-errata] ELSA-2025-1066 Important: Oracle Linux 9 firefox
 security update
Message-ID: <mailman.35.1738845395.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1066

http://linux.oracle.com/errata/ELSA-2025-1066.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-128.7.0-1.0.1.el9_5.x86_64.rpm
firefox-x11-128.7.0-1.0.1.el9_5.x86_64.rpm

aarch64:
firefox-128.7.0-1.0.1.el9_5.aarch64.rpm
firefox-x11-128.7.0-1.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//firefox-128.7.0-1.0.1.el9_5.src.rpm

Related CVEs:

CVE-2025-1009
CVE-2025-1010
CVE-2025-1011
CVE-2025-1012
CVE-2025-1013
CVE-2025-1014
CVE-2025-1016
CVE-2025-1017




Description of changes:

[128.7.0-1.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[128.7.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[128.7.0-1]
- Update to 128.7.0 build1



From el-errata at oss.oracle.com  Mon Feb 10 22:07:14 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 23:07:14 +0100
Subject: [El-errata] New Ksplice updates for UEKR7 5.15.0 on OL8 and OL9
 (ELSA-2025-20066)
Message-ID: <mailman.58.1739225252.253.el-errata@oss.oracle.com>

Synopsis: ELSA-2025-20066 can now be patched using Ksplice
CVEs: CVE-2024-49974 CVE-2024-50261 CVE-2024-50301

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2025-20066.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2025-20066.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR7 5.15.0 on
OL8 and OL9 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2024-49974: Remote denial-of-service in NFS server driver.

A logic error when doing async copy operations in the NFS server driver
could lead to memory and cpu exhaustion. A remote attacker could use
this flaw to cause a denial-of-service.

Orabug: 37516381

* CVE-2024-50261: Privilege escalation in IEEE 802.1AE MAC-level encryption (MACsec) driver.

A logic error when using the IEEE 802.1AE MAC-level encryption (MACsec)
driver could lead to a use-after-free. A local attacker could use this
flaw to escalate privileges.

Orabug: 37516375

* CVE-2024-50301: Privilege escalation in Keyring subsystem.

A missing check when checking if a key can be used in the Keyring
subsystem could lead to an out-of-bounds memory access. A local attacker
could use this flaw to escalate privileges.


UPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.



From el-errata at oss.oracle.com  Mon Feb 10 22:35:45 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:35:45 -0800
Subject: [El-errata] ELBA-2025-20091 Oracle Linux 9 NetworkManager bug fix
 update
Message-ID: <mailman.59.1739226954.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20091

http://linux.oracle.com/errata/ELBA-2025-20091.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-adsl-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-bluetooth-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-config-connectivity-oracle-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-config-server-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-initscripts-updown-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-libnm-1.48.10-5.0.2.el9_5.i686.rpm
NetworkManager-libnm-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-team-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-tui-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-wifi-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-wwan-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-cloud-setup-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-dispatcher-routing-rules-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-ovs-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-ppp-1.48.10-5.0.2.el9_5.x86_64.rpm
NetworkManager-libnm-devel-1.48.10-5.0.2.el9_5.i686.rpm
NetworkManager-libnm-devel-1.48.10-5.0.2.el9_5.x86_64.rpm

aarch64:
NetworkManager-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-adsl-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-bluetooth-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-config-connectivity-oracle-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-config-server-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-initscripts-updown-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-libnm-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-team-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-tui-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-wifi-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-wwan-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-cloud-setup-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-dispatcher-routing-rules-1.48.10-5.0.2.el9_5.noarch.rpm
NetworkManager-ovs-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-ppp-1.48.10-5.0.2.el9_5.aarch64.rpm
NetworkManager-libnm-devel-1.48.10-5.0.2.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//NetworkManager-1.48.10-5.0.2.el9_5.src.rpm



Description of changes:

[1.48.10-5.0.2]
- Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910]



From el-errata at oss.oracle.com  Mon Feb 10 22:35:47 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:35:47 -0800
Subject: [El-errata] ELBA-2025-1104 Oracle Linux 9 tzdata bug fix update
Message-ID: <mailman.62.1739226957.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1104

http://linux.oracle.com/errata/ELBA-2025-1104.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
tzdata-java-2025a-1.el9.noarch.rpm
tzdata-2025a-1.el9.noarch.rpm

aarch64:
tzdata-java-2025a-1.el9.noarch.rpm
tzdata-2025a-1.el9.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//tzdata-2025a-1.el9.src.rpm



Description of changes:

[2025a-1]
Update to tzdata-2025a (RHEL-74308)
  - Paraguay is now permanently at -03. This impacts timestamps
    starting on 2025-03-22.
  - Includes improvements to pre-1991 data for the Philippines.
  - Etc/Unknown is now reserved.

[2024b-3]
- Don't use -source 1.6 and -target 1.6 with javac.  (RHEL-70308)



From el-errata at oss.oracle.com  Mon Feb 10 22:35:48 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:35:48 -0800
Subject: [El-errata] ELSA-2025-0914 Moderate: Oracle Linux 9 galera and
 mariadb security update
Message-ID: <mailman.63.1739226957.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0914

http://linux.oracle.com/errata/ELSA-2025-0914.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
galera-26.4.20-1.0.1.el9_5.x86_64.rpm
mariadb-10.5.27-1.el9_5.x86_64.rpm
mariadb-backup-10.5.27-1.el9_5.x86_64.rpm
mariadb-common-10.5.27-1.el9_5.x86_64.rpm
mariadb-embedded-10.5.27-1.el9_5.x86_64.rpm
mariadb-errmsg-10.5.27-1.el9_5.x86_64.rpm
mariadb-gssapi-server-10.5.27-1.el9_5.x86_64.rpm
mariadb-oqgraph-engine-10.5.27-1.el9_5.x86_64.rpm
mariadb-pam-10.5.27-1.el9_5.x86_64.rpm
mariadb-server-10.5.27-1.el9_5.x86_64.rpm
mariadb-server-galera-10.5.27-1.el9_5.x86_64.rpm
mariadb-server-utils-10.5.27-1.el9_5.x86_64.rpm
mariadb-devel-10.5.27-1.el9_5.x86_64.rpm
mariadb-embedded-devel-10.5.27-1.el9_5.x86_64.rpm
mariadb-test-10.5.27-1.el9_5.x86_64.rpm

aarch64:
galera-26.4.20-1.0.1.el9_5.aarch64.rpm
mariadb-10.5.27-1.el9_5.aarch64.rpm
mariadb-backup-10.5.27-1.el9_5.aarch64.rpm
mariadb-common-10.5.27-1.el9_5.aarch64.rpm
mariadb-embedded-10.5.27-1.el9_5.aarch64.rpm
mariadb-errmsg-10.5.27-1.el9_5.aarch64.rpm
mariadb-gssapi-server-10.5.27-1.el9_5.aarch64.rpm
mariadb-oqgraph-engine-10.5.27-1.el9_5.aarch64.rpm
mariadb-pam-10.5.27-1.el9_5.aarch64.rpm
mariadb-server-10.5.27-1.el9_5.aarch64.rpm
mariadb-server-galera-10.5.27-1.el9_5.aarch64.rpm
mariadb-server-utils-10.5.27-1.el9_5.aarch64.rpm
mariadb-devel-10.5.27-1.el9_5.aarch64.rpm
mariadb-embedded-devel-10.5.27-1.el9_5.aarch64.rpm
mariadb-test-10.5.27-1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//galera-26.4.20-1.0.1.el9_5.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//mariadb-10.5.27-1.el9_5.src.rpm

Related CVEs:

CVE-2023-22084
CVE-2024-21096




Description of changes:

galera
[26.4.20-1.0.1]
- Drop nmap-ncat requirement. [Orabug: 34116228]
- Requirement to delete lp1184034 test case without using patches.

[26.4.20-1]
- Rebase to 26.4.20

[26.4.19-1]
- Rebase to 26.4.19

[26.4.18-1]
- Rebase to 26.4.18

mariadb
[3:10.5.27-1]
- Rebase to 10.5.27

[3:10.5.26-1]
- Rebase to 10.5.26

[3:10.5.22-1]
- Rebase to 10.5.22

[3:10.5.21-1]
- Rebase to version 10.5.21

[3:10.5.20-2]
- Use _fortify_level to disable fortification in debug builds

[3:10.5.20-1]
- Rebase to version 10.5.20



From el-errata at oss.oracle.com  Mon Feb 10 22:35:44 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:35:44 -0800
Subject: [El-errata] ELBA-2025-20090 Oracle Linux 9 scap-security-guide bug
 fix update
Message-ID: <mailman.64.1739226958.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20090

http://linux.oracle.com/errata/ELBA-2025-20090.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
scap-security-guide-0.1.75-1.0.2.el9.noarch.rpm
scap-security-guide-doc-0.1.75-1.0.2.el9.noarch.rpm

aarch64:
scap-security-guide-0.1.75-1.0.2.el9.noarch.rpm
scap-security-guide-doc-0.1.75-1.0.2.el9.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//scap-security-guide-0.1.75-1.0.2.el9.src.rpm



Description of changes:

[0.1.75-1.0.2]
- Update OL9 STIG alignment [Orabug: 37560515]
- Add CCN profile to OL9 [Orabug: 37560515]
- Update all OL8 profiles, align STIG with V2R3 and align the others
  with upstream [Orabug: 37545355]



From el-errata at oss.oracle.com  Mon Feb 10 22:35:50 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:35:50 -0800
Subject: [El-errata] ELSA-2025-1184 Important: Oracle Linux 9 thunderbird
 security update
Message-ID: <mailman.65.1739226958.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1184

http://linux.oracle.com/errata/ELSA-2025-1184.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
thunderbird-128.7.0-1.0.1.el9_5.x86_64.rpm

aarch64:
thunderbird-128.7.0-1.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//thunderbird-128.7.0-1.0.1.el9_5.src.rpm

Related CVEs:

CVE-2025-0510
CVE-2025-1009
CVE-2025-1010
CVE-2025-1011
CVE-2025-1012
CVE-2025-1013
CVE-2025-1014
CVE-2025-1015
CVE-2025-1016
CVE-2025-1017




Description of changes:

[128.7.0-1.0.1]
- Fix prefs for new nss [Orabug: 37079813]
- Add Oracle prefs

[128.7.0]
- Add OpenELA debranding

[128.7.0-1]
- Update to 128.2.0 build1



From el-errata at oss.oracle.com  Mon Feb 10 22:35:59 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:35:59 -0800
Subject: [El-errata] ELBA-2025-20094 Oracle Linux 8 Unbreakable Enterprise
 kernel bug fix update
Message-ID: <mailman.66.1739226969.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20094

http://linux.oracle.com/errata/ELBA-2025-20094.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.339.5.2.el8uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.339.5.2.el8uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.339.5.2.el8uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.339.5.2.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.339.5.2.el8uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.339.5.2.el8uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.339.5.2.el8uek.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.339.5.2.el8uek.src.rpm



Description of changes:

[5.4.17-2136.339.5.2.el8uek]
- RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju)  [Orabug: 37566741]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:05 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:05 -0800
Subject: [El-errata] ELBA-2025-20094 Oracle Linux 7 Unbreakable Enterprise
 kernel bug fix update
Message-ID: <mailman.67.1739226974.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20094

http://linux.oracle.com/errata/ELBA-2025-20094.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.339.5.2.el7uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.339.5.2.el7uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.339.5.2.el7uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.339.5.2.el7uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.339.5.2.el7uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.339.5.2.el7uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.339.5.2.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.339.5.2.el7uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.339.5.2.el7uek.src.rpm



Description of changes:

[5.4.17-2136.339.5.2.el7uek]
- RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju)  [Orabug: 37566741]

[5.4.17-2136.339.5.1.el7uek]
- Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha)  [Orabug: 37510955]
- vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu)  [Orabug: 37511007]
- Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang)  [Orabug: 37511007]

[5.4.17-2136.339.5.el7uek]
- tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov)
- vhost_scsi: log write descriptors (Dongli Zhang)  [Orabug: 37393533]
- vhost-scsi: protect vq->log_base with vq->mutex (Dongli Zhang)  [Orabug: 37393533]

[5.4.17-2136.339.4.el7uek]
- RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (Kashyap Desai)
- Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K" (Aurelien Jarno)
- mm: revert "mm: shmem: fix data-race in shmem_getattr()" (Andrew Morton)
- net/ipv6: release expired exception dst cached in socket (Jiri Wiesner) [Orabug: 37434173] {CVE-2024-56644}
- Revert "unicode: Don't special case ignorable code points" (Linus Torvalds)
- powerpc/vdso: Flag VDSO64 entry points as functions (Christophe Leroy)
- Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil)

[5.4.17-2136.339.3.el7uek]
- Revert "ocfs2: fix the la space leak when unmounting an ocfs2 volume" (Sherry Yang)  [Orabug: 37364531]
- rds: recv_payload_bad_checksum was not 0 after running rds-stress on UEK6 (William Kucharski)  [Orabug: 37265127]
- rds: If RDS Checksums are enabled for RDMA RDS operations, the extension headers will overflow causing incorrect operation (William Kucharski)  [Orabug: 37265125]
- rds: rds_message_alloc() needlessly zeroes m_used_sgs (William Kucharski)  [Orabug: 37265123]
- rds: tracepoint in rds_receive_csum_err() prints pointless information (William Kucharski)  [Orabug: 37265121]
- rds: rds_inc_init() should initialize the inc->i_conn_path field (William Kucharski)  [Orabug: 37265117]
- rds: Race condition in adding RDS payload checksum extension header may result in RDS header corruption (William Kucharski)  [Orabug: 37265115]
- md/raid10: fix task hung in raid10d (Li Nan)  [Orabug: 37126683]
- md/raid10: factor out code from wait_barrier() to stop_waiting_barrier() (Yu Kuai)  [Orabug: 37126683]
- md/raid10: avoid deadlock on recovery. (Vitaly Mayatskikh)  [Orabug: 37126683]

[5.4.17-2136.339.2.el7uek]
- arm64/cpu_errata: Spectre-BHB mitigation for AMPERE1 expects a loop of 11 iterations. (Miguel Luis)  [Orabug: 37027863]

[5.4.17-2136.339.1.el7uek]
- net/rds: report pending-messages count in RDS_INQ response (Devesh Sharma)  [Orabug: 35596047] [Orabug: 35316633]
- net/rds: Introduce RDS-INQ feature to RDS protocol (Devesh Sharma)  [Orabug: 35316632] [Orabug: 37109336]
- net/rds: Supporting SIOCOUTQ to read pending sends (Devesh Sharma)  [Orabug: 34460809] [Orabug: 37072814]
- mm/memory-failure: pass the folio and the page to collect_procs() (Matthew Wilcox (Oracle))  [Orabug: 37270264]
- KVM: x86: Stop compiling vmenter.S with OBJECT_FILES_NON_STANDARD (Sean Christopherson)  [Orabug: 37273706]
- KVM: SVM: Create a stack frame in __svm_vcpu_run() for unwinding (Sean Christopherson)  [Orabug: 37273706]
- objtool: Default ignore INT3 for unreachable (Peter Zijlstra)  [Orabug: 37273706] {CVE-2022-29901}
- x86/spec_ctrl: AMD AutoIBRS cannot be dynamically enabled or disabled (Alexandre Chartre)  [Orabug: 37310552]
- x86/msr: Add functions to set/clear the bit of an MSR on all cpus (Alexandre Chartre)  [Orabug: 37310552]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:10 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:10 -0800
Subject: [El-errata] ELBA-2025-1104 Oracle Linux 7 tzdata bug fix update
Message-ID: <mailman.68.1739226992.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1104

http://linux.oracle.com/errata/ELBA-2025-1104.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
tzdata-java-2025a-1.el7.noarch.rpm
tzdata-2025a-1.el7.noarch.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//tzdata-2025a-1.el7.src.rpm



Description of changes:

[2025a-1]
Update to tzdata-2025a (RHEL-74309)
  - Paraguay is now permanently at -03. This impacts timestamps
    starting on 2025-03-22.
  - Includes improvements to pre-1991 data for the Philippines.
  - Etc/Unknown is now reserved.



From el-errata at oss.oracle.com  Mon Feb 10 22:36:24 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:24 -0800
Subject: [El-errata] ELSA-2025-1068 Moderate: Oracle Linux 8 kernel security
 update
Message-ID: <mailman.69.1739226993.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1068

http://linux.oracle.com/errata/ELSA-2025-1068.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.37.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.37.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.37.1.el8_10.x86_64.rpm
perf-4.18.0-553.37.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.37.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.37.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.37.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.37.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.37.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.37.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.37.1.el8_10.aarch64.rpm
perf-4.18.0-553.37.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.37.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.37.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-4.18.0-553.37.1.el8_10.src.rpm

Related CVEs:

CVE-2024-26935
CVE-2024-50275




Description of changes:

[4.18.0-553.37.1.el8_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]

[4.18.0-553.37.1.el8_10]
- arm64/sve: Discard stale CPU state when handling SVE traps (Mark Salter) [RHEL-71535] {CVE-2024-50275}
- scsi: core: Handle devices which return an unusually large VPD page count (Ewan D. Milne) [RHEL-34275]
- scsi: core: Fix unremoved procfs host directory regression (Ewan D. Milne) [RHEL-34275]
- scsi: core: Consult supported VPD page list prior to fetching page (Ewan D. Milne) [RHEL-34275]
- NFSv4: Fix dropped lock for racing OPEN and delegation return (Benjamin Coddington) [RHEL-73889]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:19 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:19 -0800
Subject: [El-errata] ELBA-2025-20092 Oracle Linux 8 NetworkManager bug fix
 update
Message-ID: <mailman.70.1739226993.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20092

http://linux.oracle.com/errata/ELBA-2025-20092.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-cloud-setup-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-adsl-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-bluetooth-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-config-connectivity-oracle-1.40.16-18.0.2.el8_10.noarch.rpm
NetworkManager-config-server-1.40.16-18.0.2.el8_10.noarch.rpm
NetworkManager-dispatcher-routing-rules-1.40.16-18.0.2.el8_10.noarch.rpm
NetworkManager-libnm-1.40.16-18.0.2.el8_10.i686.rpm
NetworkManager-libnm-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-ovs-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-ppp-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-team-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-tui-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-wifi-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-wwan-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-libnm-devel-1.40.16-18.0.2.el8_10.i686.rpm
NetworkManager-libnm-devel-1.40.16-18.0.2.el8_10.x86_64.rpm
NetworkManager-initscripts-updown-1.40.16-18.0.2.el8_10.noarch.rpm

aarch64:
NetworkManager-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-adsl-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-bluetooth-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-config-connectivity-oracle-1.40.16-18.0.2.el8_10.noarch.rpm
NetworkManager-config-server-1.40.16-18.0.2.el8_10.noarch.rpm
NetworkManager-dispatcher-routing-rules-1.40.16-18.0.2.el8_10.noarch.rpm
NetworkManager-libnm-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-ovs-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-ppp-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-team-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-tui-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-wifi-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-wwan-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-libnm-devel-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-cloud-setup-1.40.16-18.0.2.el8_10.aarch64.rpm
NetworkManager-initscripts-updown-1.40.16-18.0.2.el8_10.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//NetworkManager-1.40.16-18.0.2.el8_10.src.rpm



Description of changes:

[1:1.40.16-18.0.2]
- Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:18 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:18 -0800
Subject: [El-errata] ELBA-2025-20088 Oracle Linux 8 scap-security-guide bug
 fix update
Message-ID: <mailman.71.1739226996.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20088

http://linux.oracle.com/errata/ELBA-2025-20088.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
scap-security-guide-0.1.75-1.0.3.el8.noarch.rpm
scap-security-guide-doc-0.1.75-1.0.3.el8.noarch.rpm

aarch64:
scap-security-guide-0.1.75-1.0.3.el8.noarch.rpm
scap-security-guide-doc-0.1.75-1.0.3.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//scap-security-guide-0.1.75-1.0.3.el8.src.rpm



Description of changes:

[0.1.75-1.0.3]
- Update OL9 STIG alignment  [Orabug: 37556437]
- Add CCN profile for OL9 [Orabug: 37556437]
- Update all OL8 profiles, align STIG with V2R3 and align the others
  with upstream [Orabug: 37545300]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:21 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:21 -0800
Subject: [El-errata] ELBA-2025-20094 Oracle Linux 8 Unbreakable Enterprise
 kernel bug fix update
Message-ID: <mailman.72.1739226997.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20094

http://linux.oracle.com/errata/ELBA-2025-20094.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:


aarch64:
kernel-uek-5.4.17-2136.339.5.2.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.339.5.2.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.339.5.2.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.339.5.2.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.339.5.2.el8uek.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.339.5.2.el8uek.src.rpm



Description of changes:

[5.4.17-2136.339.5.2.el8uek]
- RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju)  [Orabug: 37566741]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:12 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:12 -0800
Subject: [El-errata] ELSA-2025-0319 Important: Oracle Linux 7 raptor2
 security update
Message-ID: <mailman.73.1739227000.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0319

http://linux.oracle.com/errata/ELSA-2025-0319.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
raptor2-2.0.9-3.0.1.el7.i686.rpm
raptor2-2.0.9-3.0.1.el7.x86_64.rpm
raptor2-devel-2.0.9-3.0.1.el7.i686.rpm
raptor2-devel-2.0.9-3.0.1.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//raptor2-2.0.9-3.0.1.el7.src.rpm

Related CVEs:

CVE-2024-57823




Description of changes:

[2.0.9-3.0.1]
- CVE-2024-57823: memcpy integer underflow and heap read overflow [Orabug: 37476410]



From el-errata at oss.oracle.com  Mon Feb 10 22:36:22 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 10 Feb 2025 14:36:22 -0800
Subject: [El-errata] ELBA-2025-1104 Oracle Linux 8 tzdata bug fix update
Message-ID: <mailman.74.1739227001.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1104

http://linux.oracle.com/errata/ELBA-2025-1104.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
tzdata-java-2025a-1.0.1.el8.noarch.rpm
tzdata-2025a-1.0.1.el8.noarch.rpm

aarch64:
tzdata-java-2025a-1.0.1.el8.noarch.rpm
tzdata-2025a-1.0.1.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//tzdata-2025a-1.0.1.el8.src.rpm



Description of changes:

[2025a-1.0.1]
- Use javac 1.6 or newer

[2025a-1]
Update to tzdata-2025a (RHEL-74309)
  - Paraguay is now permanently at -03. This impacts timestamps
    starting on 2025-03-22.
  - Includes improvements to pre-1991 data for the Philippines.
  - Etc/Unknown is now reserved.



From el-errata at oss.oracle.com  Wed Feb 12 06:21:49 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 12 Feb 2025 06:21:49 +0000
Subject: [El-errata] Fwd: New Ksplice updates for UEKR6 5.4.17 on OL7 and
 OL8 (ELBA-2025-20072)
References: <74c3b849b81af8c42c517c00d04cc918.apache@ksplice.com>
Message-ID: <mailman.77.1739341323.253.el-errata@oss.oracle.com>

Synopsis: ELBA-2025-20072 can now be patched using Ksplice

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Bug Fix Advisory, ELBA-2025-20072.
More information about this errata can be found at
https://linux.oracle.com/errata/ELBA-2025-20072.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR6 5.4.17 on
OL7 and OL8 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* Resource exhaustion in VFIO non-privileged userspace driver.

A logic error when using the VFIO Type1 IOMMU DMA mapping support could
lead to a memory leak, which can be observed by killing a QEMU instance
immediately during creation. A local attacker could use this flaw to
cause a denial-of-service.

Orabug: 37511007

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <http://oss.oracle.com/pipermail/el-errata/attachments/20250212/7454ffdb/attachment.sig>

From el-errata at oss.oracle.com  Wed Feb 12 11:09:29 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 12 Feb 2025 11:09:29 +0000
Subject: [El-errata] New Ksplice updates for UEKR6 5.4.17 on OL7 and OL8
 (ELBA-2025-20094)
References: <c7c39da0277d2ff7b20d35f9417f7ff4.apache@ksplice.com>
Message-ID: <mailman.78.1739358580.253.el-errata@oss.oracle.com>

Synopsis: ELBA-2025-20094 can now be patched using Ksplice

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Bug Fix Advisory, ELBA-2025-20094.
More information about this errata can be found at
https://linux.oracle.com/errata/ELBA-2025-20094.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR6 5.4.17 on
OL7 and OL8 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* Delayed send operations in the RDS Protocol driver.

A logic error in the RDS Protocol driver can cause delayed work for send
operations to fail to queue for execution when expected.  This can lead to
increased latency in RDS traffic.

Orabug: 37566741

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <http://oss.oracle.com/pipermail/el-errata/attachments/20250212/f5b64407/attachment.sig>

From el-errata at oss.oracle.com  Wed Feb 12 17:32:20 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 12 Feb 2025 21:32:20 +0400
Subject: [El-errata] New Ksplice updates for RHCK 9 (ELSA-2025-1262)
Message-ID: <mailman.79.1739381558.253.el-errata@oss.oracle.com>

Synopsis: ELSA-2025-1262 can now be patched using Ksplice
CVEs: CVE-2024-53104

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2025-1262.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2025-1262.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running RHCK 9 install
these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2024-53104: Code execution in USB Video Class (UVC) driver.

A missing check when using the USB Video Class (UVC) driver could lead
to an out-of-bounds memory write. A local attacker could use this flaw
to execute arbitrary code in kernel mode.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.




From el-errata at oss.oracle.com  Thu Feb 13 14:42:07 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:07 -0800
Subject: [El-errata] ELBA-2025-20098 Oracle Linux 7 linux-firmware bug fix
 update
Message-ID: <mailman.80.1739457738.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20098

http://linux.oracle.com/errata/ELBA-2025-20098.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
iwl1000-firmware-39.31.5.1-999.38.el7.noarch.rpm
iwl100-firmware-39.31.5.1-999.38.el7.noarch.rpm
iwl105-firmware-18.168.6.1-999.38.el7.noarch.rpm
iwl135-firmware-18.168.6.1-999.38.el7.noarch.rpm
iwl2000-firmware-18.168.6.1-999.38.el7.noarch.rpm
iwl2030-firmware-18.168.6.1-999.38.el7.noarch.rpm
iwl3160-firmware-22.0.7.0-999.38.el7.noarch.rpm
iwl3945-firmware-15.32.2.9-999.38.el7.noarch.rpm
iwl4965-firmware-228.61.2.24-999.38.el7.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.38.el7.noarch.rpm
iwl5150-firmware-8.24.2.2-999.38.el7.noarch.rpm
iwl6000-firmware-9.221.4.1-999.38.el7.noarch.rpm
iwl6000g2a-firmware-17.168.5.3-999.38.el7.noarch.rpm
iwl6000g2b-firmware-17.168.5.2-999.38.el7.noarch.rpm
iwl6050-firmware-41.28.5.1-999.38.el7.noarch.rpm
iwl7260-firmware-22.0.7.0-999.38.el7.noarch.rpm
iwlax2xx-firmware-20250203-999.38.el7.noarch.rpm
linux-firmware-20250203-999.38.git0fd450ee.el7.noarch.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//linux-firmware-20250203-999.38.git0fd450ee.el7.src.rpm



Description of changes:

[20250203-999.38.git0fd450ee.el7]
- Rebase to latest upstream [Orabug: 37535629]

[20241213-999.36.git2cdfe09e.el7]
- Rebase to latest upstream [Orabug: 37405529]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:09 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:09 -0800
Subject: [El-errata] ELSA-2025-1132 Important: Oracle Linux 7 firefox
 security update
Message-ID: <mailman.81.1739457740.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1132

http://linux.oracle.com/errata/ELSA-2025-1132.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-128.7.0-1.0.1.el7_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-128.7.0-1.0.1.el7_9.src.rpm

Related CVEs:

CVE-2025-1009
CVE-2025-1010
CVE-2025-1011
CVE-2025-1012
CVE-2025-1013
CVE-2025-1014
CVE-2025-1016
CVE-2025-1017




Description of changes:

[128.7.0-1.0.1]
- Update to 128.7.0 build1 [Orabug: 37564202][CVE-2025-1009][CVE-2025-1010]
  [CVE-2025-1011][CVE-2025-1012][CVE-2025-1013][CVE-2025-1014][CVE-2025-1016]
  [CVE-2025-1017]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:14 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:14 -0800
Subject: [El-errata] ELBA-2025-20097 Oracle Linux 8 cockpit bug fix update
Message-ID: <mailman.82.1739457743.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20097

http://linux.oracle.com/errata/ELBA-2025-20097.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
cockpit-310.4-1.0.2.el8_10.x86_64.rpm
cockpit-bridge-310.4-1.0.2.el8_10.x86_64.rpm
cockpit-doc-310.4-1.0.2.el8_10.noarch.rpm
cockpit-system-310.4-1.0.2.el8_10.noarch.rpm
cockpit-ws-310.4-1.0.2.el8_10.x86_64.rpm

aarch64:
cockpit-310.4-1.0.2.el8_10.aarch64.rpm
cockpit-bridge-310.4-1.0.2.el8_10.aarch64.rpm
cockpit-doc-310.4-1.0.2.el8_10.noarch.rpm
cockpit-system-310.4-1.0.2.el8_10.noarch.rpm
cockpit-ws-310.4-1.0.2.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-310.4-1.0.2.el8_10.src.rpm



Description of changes:

[310.4-1.0.2]
- Move update-motd out of cockpit_ws_t context [Orabug: 36013589]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:15 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:15 -0800
Subject: [El-errata] ELBA-2025-20098 Oracle Linux 8 linux-firmware bug fix
 update
Message-ID: <mailman.83.1739457745.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20098

http://linux.oracle.com/errata/ELBA-2025-20098.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
iwl1000-firmware-39.31.5.1-999.38.el8.noarch.rpm
iwl100-firmware-39.31.5.1-999.38.el8.noarch.rpm
iwl105-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl135-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl2000-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl2030-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl3160-firmware-25.30.13.0-999.38.el8.noarch.rpm
iwl3945-firmware-15.32.2.9-999.38.el8.noarch.rpm
iwl4965-firmware-228.61.2.24-999.38.el8.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.38.el8.noarch.rpm
iwl5150-firmware-8.24.2.2-999.38.el8.noarch.rpm
iwl6000-firmware-9.221.4.1-999.38.el8.noarch.rpm
iwl6000g2a-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl6000g2b-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl6050-firmware-41.28.5.1-999.38.el8.noarch.rpm
iwl7260-firmware-25.30.13.0-999.38.el8.noarch.rpm
iwlax2xx-firmware-20250203-999.38.el8.noarch.rpm
libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
linux-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
linux-firmware-core-20250203-999.38.git0fd450ee.el8.noarch.rpm

aarch64:
iwl1000-firmware-39.31.5.1-999.38.el8.noarch.rpm
iwl100-firmware-39.31.5.1-999.38.el8.noarch.rpm
iwl105-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl135-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl2000-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl2030-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl3160-firmware-25.30.13.0-999.38.el8.noarch.rpm
iwl3945-firmware-15.32.2.9-999.38.el8.noarch.rpm
iwl4965-firmware-228.61.2.24-999.38.el8.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.38.el8.noarch.rpm
iwl5150-firmware-8.24.2.2-999.38.el8.noarch.rpm
iwl6000-firmware-9.221.4.1-999.38.el8.noarch.rpm
iwl6000g2a-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl6000g2b-firmware-18.168.6.1-999.38.el8.noarch.rpm
iwl6050-firmware-41.28.5.1-999.38.el8.noarch.rpm
iwl7260-firmware-25.30.13.0-999.38.el8.noarch.rpm
iwlax2xx-firmware-20250203-999.38.el8.noarch.rpm
libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
linux-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm
linux-firmware-core-20250203-999.38.git0fd450ee.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//linux-firmware-20250203-999.38.git0fd450ee.el8.src.rpm



Description of changes:

[20250203-999.38.git0fd450ee.el8]
- Rebase to latest upstream [Orabug: 37535629]

[20241213-999.36.git2cdfe09e.el8]
- Rebase to latest upstream [Orabug: 37405529]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:17 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:17 -0800
Subject: [El-errata] ELBA-2025-20101 Oracle Linux 8 annobin bug fix update
Message-ID: <mailman.84.1739457745.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20101

http://linux.oracle.com/errata/ELBA-2025-20101.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
annobin-11.13-2.0.4.el8.x86_64.rpm
annobin-annocheck-11.13-2.0.4.el8.x86_64.rpm
annobin-annocheck-11.13-2.0.4.el8.i686.rpm

aarch64:
annobin-11.13-2.0.4.el8.aarch64.rpm
annobin-annocheck-11.13-2.0.4.el8.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//annobin-11.13-2.0.4.el8.src.rpm



Description of changes:

[11.13-2.0.4]
- Rebuild to match latest GCC.
  Oracle history:


From el-errata at oss.oracle.com  Thu Feb 13 14:42:18 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:18 -0800
Subject: [El-errata] ELBA-2025-20103 Oracle Linux 8  sudo  bug fix update
Message-ID: <mailman.85.1739457747.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20103

http://linux.oracle.com/errata/ELBA-2025-20103.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
sudo-1.9.5p2-1.0.1.el8_9.x86_64.rpm

aarch64:
sudo-1.9.5p2-1.0.1.el8_9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//sudo-1.9.5p2-1.0.1.el8_9.src.rpm



Description of changes:

[1.9.5p2-1.0.1]
- Fixes sudo -s unclosed sessions when use_pty option used   [Orabug: 36952911]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:21 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:21 -0800
Subject: [El-errata] ELBA-2025-1240 Oracle Linux 8 sos bug fix and
 enhancement update
Message-ID: <mailman.86.1739457750.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1240

http://linux.oracle.com/errata/ELBA-2025-1240.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
sos-4.8.2-1.0.1.el8_10.noarch.rpm
sos-audit-4.8.2-1.0.1.el8_10.noarch.rpm

aarch64:
sos-4.8.2-1.0.1.el8_10.noarch.rpm
sos-audit-4.8.2-1.0.1.el8_10.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//sos-4.8.2-1.0.1.el8_10.src.rpm



Description of changes:

[4.8.2-1.0.1]
- Update the enabled and skipped plugins lists to match ExaData's
  requirements. [Orabug: 37440315]
- Disable upload options [Orabug: 31969352]
- Disable upload option to sos report collector [Orabug: 36069764]
- Adding socket statistics command output [Orabug: 36491747]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Added os detect string [Orabug: 28674897]
- Added sos-oraclelinux-vendor-vendorurl.patch
- Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37097463]
- Disable ethtool EEPROM dump for link down interfaces [Orabug: 37050543]
- Modify sos.spec to make python3-magic as dependency for sos package [Orabug: 36826342]
- Add exadata plugin to collect exadata specific info [Orabug: 35312548]
- Append .txt extension to files rejected by MOS policy [Orabug: 35801795]
- Collecting last 50k lines of ftrace file trace [Orabug: 36448808]
- Adding socket statistics command output [Orabug: 36491747]
- Add IO queue depth of all the devices on node [Orabug: 35849258]
- Disable upload option to sos report collector [Orabug: 36069764]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Collect all rsyslogs files for all-logs option [Orabug: 36264341]
- Set SIGPIPE to default action for BrokenPipeError [Orabug: 36016241]
- Modifying dnf history info remove empty files [Orabug: 35350237]
- Modifying dnf history info transaction index [Orabug: 35350237]
- Adding virsh guest cgroup configuration [Orabug: 35088964]
- Adding PluginOpt support for ksplice and btrfs  [Orabug: 34993258]
- Adding virsh qemu-monitor info-tree command [Orabug: 34650374]
- append .txt to .com domain named files [Orabug: 34523347]
- Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313]
- Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351]
- Fix ksplice plugin does not show description [Orabug: 32886513]
- Adjusted ksplice plugin patches for path change [Orabug: 32881277]
- Fix patch for Orabug 31969352 [Orabug: 32822570]
- Add in some btrfs commands [Orabug: 32727607]
- Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933]
- Do not exit on unknown plugin [Orabug: 32556170]
- Allow a journal log size to be smaller than 100M [Orabug: 32454362]
- Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601]
- Disable upload options for OracleLinux [Orabug: 31969352]
- Added sos-oraclelinux-vendor-vendorurl.patch
- Fix os detect string for Oracle Linux [Orabug: 28674897]
- Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck)
- [ovn_central] call podman exec without a timeout
  Resolves: bz1767359

[4.8.2-1]
- Update to 4.8.2 in RHEL 8
  Resolves: RHEL-72941



From el-errata at oss.oracle.com  Thu Feb 13 14:42:23 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:23 -0800
Subject: [El-errata] ELBA-2025-1336 Oracle Linux 8 .NET 9.0 bug fix and
 enhancement update
Message-ID: <mailman.87.1739457751.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1336

http://linux.oracle.com/errata/ELBA-2025-1336.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-9.0.103-1.0.1.el8_10.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-host-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-hostfxr-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-runtime-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm
dotnet-templates-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.103-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el8_10.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-9.0.103-1.0.1.el8_10.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-host-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-hostfxr-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-runtime-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm
dotnet-templates-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.103-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//dotnet9.0-9.0.103-1.0.1.el8_10.src.rpm



Description of changes:

[9.0.103-1.0.1]
- Add support for Oracle Linux

[9.0.103-1]
- Update to .NET SDK 9.0.103 and Runtime 9.0.2
- Resolves: RHEL-76903



From el-errata at oss.oracle.com  Thu Feb 13 14:42:24 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:24 -0800
Subject: [El-errata] ELSA-2025-1215 Moderate: Oracle Linux 8 tbb security
 update
Message-ID: <mailman.90.1739457755.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1215

http://linux.oracle.com/errata/ELSA-2025-1215.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-tbb-2018.2-10.el8_10.1.x86_64.rpm
tbb-2018.2-10.el8_10.1.i686.rpm
tbb-2018.2-10.el8_10.1.x86_64.rpm
tbb-devel-2018.2-10.el8_10.1.i686.rpm
tbb-devel-2018.2-10.el8_10.1.x86_64.rpm
tbb-doc-2018.2-10.el8_10.1.x86_64.rpm

aarch64:
python3-tbb-2018.2-10.el8_10.1.aarch64.rpm
tbb-2018.2-10.el8_10.1.aarch64.rpm
tbb-devel-2018.2-10.el8_10.1.aarch64.rpm
tbb-doc-2018.2-10.el8_10.1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//tbb-2018.2-10.el8_10.1.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[2018.2-10.1]
- Remove jQuery from Doxygen files (RHEL-77669)

[2018.2-10]
- Apply patches from (BZ #1907561)
- Bump release



From el-errata at oss.oracle.com  Thu Feb 13 14:42:26 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:26 -0800
Subject: [El-errata] ELSA-2025-1266 Important: Oracle Linux 8 kernel
 security update
Message-ID: <mailman.91.1739457756.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1266

http://linux.oracle.com/errata/ELSA-2025-1266.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.40.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.40.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.40.1.el8_10.x86_64.rpm
perf-4.18.0-553.40.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.40.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.40.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.40.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.40.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.40.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.40.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.40.1.el8_10.aarch64.rpm
perf-4.18.0-553.40.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.40.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.40.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-4.18.0-553.40.1.el8_10.src.rpm

Related CVEs:

CVE-2024-53104




Description of changes:

[4.18.0-553.40.1.el8_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]

[4.18.0-553.40.1.el8_10]
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Desnes Nunes) [RHEL-69571] {CVE-2024-53104}

[4.18.0-553.39.1.el8_10]
- gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (Andreas Gruenbacher) [RHEL-73915]

[4.18.0-553.38.1.el8_10]
- net: usb: lan78xx: add Allied Telesis AT29M2-AF (Jose Ignacio Tornos Martinez) [RHEL-70891]
- s390/pci: Allow allocation of more than 1 MSI interrupt (Mete Durlu) [RHEL-74385]
- s390/pci: Refactor arch_setup_msi_irqs() (Mete Durlu) [RHEL-74385]
- s390/pci: Fix leak of struct zpci_dev when zpci_add_device() fails (Mete Durlu) [RHEL-71451]
- s390/pci: Ignore RID for isolated VFs (Mete Durlu) [RHEL-71451]
- s390/pci: Use topology ID for multi-function devices (Mete Durlu) [RHEL-71451]
- s390/pci: Sort PCI functions prior to creating virtual busses (Mete Durlu) [RHEL-71451]
- s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (Mete Durlu) [RHEL-74387]
- s390/pci: Handle PCI error codes other than 0x3a (Mete Durlu) [RHEL-74383]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:27 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:27 -0800
Subject: [El-errata] ELSA-2025-1283 Important: Oracle Linux 8 firefox
 security update
Message-ID: <mailman.92.1739457756.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1283

http://linux.oracle.com/errata/ELSA-2025-1283.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-128.7.0-1.0.1.el8_10.x86_64.rpm

aarch64:
firefox-128.7.0-1.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//firefox-128.7.0-1.0.1.el8_10.src.rpm

Related CVEs:

CVE-2025-1009
CVE-2025-1010
CVE-2025-1011
CVE-2025-1012
CVE-2025-1013
CVE-2025-1014
CVE-2025-1016
CVE-2025-1017




Description of changes:

[128.7.0-1.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079789]

[128.7.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[128.7.0-1]
- Update to 128.7.0 build1



From el-errata at oss.oracle.com  Thu Feb 13 14:42:29 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:29 -0800
Subject: [El-errata] ELSA-2025-1292 Important: Oracle Linux 8 thunderbird
 security update
Message-ID: <mailman.93.1739457757.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1292

http://linux.oracle.com/errata/ELSA-2025-1292.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
thunderbird-128.7.0-1.0.1.el8_10.x86_64.rpm

aarch64:
thunderbird-128.7.0-1.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//thunderbird-128.7.0-1.0.1.el8_10.src.rpm

Related CVEs:

CVE-2025-0510
CVE-2025-1009
CVE-2025-1010
CVE-2025-1011
CVE-2025-1012
CVE-2025-1013
CVE-2025-1014
CVE-2025-1015
CVE-2025-1016
CVE-2025-1017




Description of changes:

[128.7.0-1.0.1]
- Fix prefs for new nss [Orabug: 37079820]
- Add Oracle prefs file

[128.7.0]
- Add OpenELA debranding

[128.7.0-1]
- Update to 128.2.0 build1



From el-errata at oss.oracle.com  Thu Feb 13 14:42:30 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:30 -0800
Subject: [El-errata] ELSA-2025-1301 Moderate: Oracle Linux 8 gcc security
 update
Message-ID: <mailman.94.1739457761.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1301

http://linux.oracle.com/errata/ELSA-2025-1301.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
cpp-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-c++-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-gdb-plugin-8.5.0-23.0.1.el8_10.i686.rpm
gcc-gdb-plugin-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-gfortran-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-offload-nvptx-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-plugin-annobin-8.5.0-23.0.1.el8_10.x86_64.rpm
libasan-8.5.0-23.0.1.el8_10.i686.rpm
libasan-8.5.0-23.0.1.el8_10.x86_64.rpm
libatomic-8.5.0-23.0.1.el8_10.i686.rpm
libatomic-8.5.0-23.0.1.el8_10.x86_64.rpm
libatomic-static-8.5.0-23.0.1.el8_10.i686.rpm
libatomic-static-8.5.0-23.0.1.el8_10.x86_64.rpm
libgcc-8.5.0-23.0.1.el8_10.i686.rpm
libgcc-8.5.0-23.0.1.el8_10.x86_64.rpm
libgfortran-8.5.0-23.0.1.el8_10.i686.rpm
libgfortran-8.5.0-23.0.1.el8_10.x86_64.rpm
libgomp-8.5.0-23.0.1.el8_10.i686.rpm
libgomp-8.5.0-23.0.1.el8_10.x86_64.rpm
libgomp-offload-nvptx-8.5.0-23.0.1.el8_10.x86_64.rpm
libitm-8.5.0-23.0.1.el8_10.i686.rpm
libitm-8.5.0-23.0.1.el8_10.x86_64.rpm
libitm-devel-8.5.0-23.0.1.el8_10.i686.rpm
libitm-devel-8.5.0-23.0.1.el8_10.x86_64.rpm
liblsan-8.5.0-23.0.1.el8_10.x86_64.rpm
libquadmath-8.5.0-23.0.1.el8_10.i686.rpm
libquadmath-8.5.0-23.0.1.el8_10.x86_64.rpm
libquadmath-devel-8.5.0-23.0.1.el8_10.i686.rpm
libquadmath-devel-8.5.0-23.0.1.el8_10.x86_64.rpm
libstdc++-8.5.0-23.0.1.el8_10.i686.rpm
libstdc++-8.5.0-23.0.1.el8_10.x86_64.rpm
libstdc++-devel-8.5.0-23.0.1.el8_10.i686.rpm
libstdc++-devel-8.5.0-23.0.1.el8_10.x86_64.rpm
libstdc++-docs-8.5.0-23.0.1.el8_10.x86_64.rpm
libtsan-8.5.0-23.0.1.el8_10.x86_64.rpm
libubsan-8.5.0-23.0.1.el8_10.i686.rpm
libubsan-8.5.0-23.0.1.el8_10.x86_64.rpm
gcc-plugin-devel-8.5.0-23.0.1.el8_10.i686.rpm
gcc-plugin-devel-8.5.0-23.0.1.el8_10.x86_64.rpm
libgfortran-static-8.5.0-23.0.1.el8_10.i686.rpm
libgfortran-static-8.5.0-23.0.1.el8_10.x86_64.rpm
libquadmath-static-8.5.0-23.0.1.el8_10.i686.rpm
libquadmath-static-8.5.0-23.0.1.el8_10.x86_64.rpm
libstdc++-static-8.5.0-23.0.1.el8_10.i686.rpm
libstdc++-static-8.5.0-23.0.1.el8_10.x86_64.rpm

aarch64:
cpp-8.5.0-23.0.1.el8_10.aarch64.rpm
gcc-8.5.0-23.0.1.el8_10.aarch64.rpm
gcc-c++-8.5.0-23.0.1.el8_10.aarch64.rpm
gcc-gdb-plugin-8.5.0-23.0.1.el8_10.aarch64.rpm
gcc-gfortran-8.5.0-23.0.1.el8_10.aarch64.rpm
gcc-plugin-annobin-8.5.0-23.0.1.el8_10.aarch64.rpm
libasan-8.5.0-23.0.1.el8_10.aarch64.rpm
libatomic-8.5.0-23.0.1.el8_10.aarch64.rpm
libatomic-static-8.5.0-23.0.1.el8_10.aarch64.rpm
libgcc-8.5.0-23.0.1.el8_10.aarch64.rpm
libgfortran-8.5.0-23.0.1.el8_10.aarch64.rpm
libgomp-8.5.0-23.0.1.el8_10.aarch64.rpm
libitm-8.5.0-23.0.1.el8_10.aarch64.rpm
libitm-devel-8.5.0-23.0.1.el8_10.aarch64.rpm
liblsan-8.5.0-23.0.1.el8_10.aarch64.rpm
libstdc++-8.5.0-23.0.1.el8_10.aarch64.rpm
libstdc++-devel-8.5.0-23.0.1.el8_10.aarch64.rpm
libstdc++-docs-8.5.0-23.0.1.el8_10.aarch64.rpm
libtsan-8.5.0-23.0.1.el8_10.aarch64.rpm
libubsan-8.5.0-23.0.1.el8_10.aarch64.rpm
gcc-plugin-devel-8.5.0-23.0.1.el8_10.aarch64.rpm
libgfortran-static-8.5.0-23.0.1.el8_10.aarch64.rpm
libstdc++-static-8.5.0-23.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//gcc-8.5.0-23.0.1.el8_10.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[8.5.0-23.0.1]
- Merge Oracle patches to 8.5.0-23.
  Oracle history:
  May-22-2024 Qing Zhao <qing.zhao at oracle.com> 8.5.0-22.0.1
  - Merge Oracle patches to 8.5.0-22.
  Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  March-27-2024 Qing Zhao <qing.zhao at oracle.com> 8.5.0-21.0.1
  - Merge Oracle patches to 8.5.0-21.
  January-19-2024 Qing Zhao <qing.zhao at oracle.com> 8.5.0-20.0.3
  - Fix Orabug 35283123, i.e, the same bug as GCC PR111407.
    gcc14-pr111407.patch
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  January-5-2024 Jose E. Marchesi <jose.marchesi at oracle.com> 8.5.0-20.0.2
  - Restore support for -mpreserve-args in aarch64 targets, adapted to
    new AArch64 stack frame layout.
    Reviewed-by: Cupertino Miranda <cupertino.miranda at oracle.com>
  October-4-2023 David Faust <david.faust at oracle.com> 8.5.0-20.0.1
  - Forward-port Oracle patches
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  September-28-2023 David Faust <david.faust at oracle.com> 8.5.0-18.0.6
  - Backport additional patches from gcc-9 to fix CVE-2023-4039 patches
    interaction with backported aarch64 -fstack-clash-protection support.
    [Orabug 35843962]
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  August-31-2023 Qing Zhao <qing.zhao at oracle.com> 8.5.0-18.0.5
  - CVE-2023-4039 GCC mitigation.
    Orabug 35751743.
    Includes removal of aarch64-preserve-args.patch.
  - CVE-2022-40982 "Intel Downfall" mitigation.
    Orabug 35751810.
    Add two patches originally from GCC upstream releases/gcc-11 branch.
    with major adjustment.
    gcc11-downfall-disable-gather-in-vec.patch
    gcc11-downfall-support-mno-gather.patch
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  May-11-2023 Jose E. Marchesi <jose.marchesi at oracle.com> 8.5.0-18.0.2
  - Support for -mpreserve-args in aarch64.
    Orabug 35065765.
    Reviewed-by: Qing Zhao <qing.zhao at oracle.com>.
  March-28-2023 Qing Zhao <qing.zhao at oracle.com> 8.5.0-18.0.1
  - Merge Oracle patches with gcc-8.5.0-18.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  January-12-2023 Qing Zhao <qing.zhao at oracle.com> 8.5.0-16.0.1
  - Merge oracle patches with gcc-8.5.0-16.
  November-30-2022 Qing Zhao <qing.zhao at oracle.com> 8.5.0-15.0.2
  - Fix Orabug 34679540 - PROFILE COLLECT BUILD AND WORK LOAD TEST
    ISSUES IN LINUX ARM64.
    Removing the buggy patch that has been removed from upstream gcc too:
    gcc10-pr91971.patch
  September-28-2022 Qing Zhao <qing.zhao at oracle.com> 8.5.0-15.0.1
  - Merge oracle patches with gcc-8.5.0-15.
  June-29-2022 Qing Zhao <qing.zhao at oracle.com> 8.5.0-10.1.0.1
  - Merge oracle patches with gcc-8.5.0-10.1.el8_6.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  May-4-2022 Qing Zhao <qing.zhao at oracle.com> 8.5.0-10.0.2
  - Fix Orabug 34066706 only in OL GCC.
    report error when there is no PROGRAM_SUMMARY section in .gcda file.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  April-27-2022 Marek Polacek <polacek at redhat.com> 8.5.0-10.1
  - backport Default widths with -fdec-format-defaults patch (#2079578)
  March-22-2022 Qing Zhao <qing.zhao at oracle.com> 8.5.0-10.0.1
  - Merge with oracle patches.
  January-5-2022 Qing Zhao <qing.zhao at oracle.com> 8.5.0-4.0.2
  - Add patches to support marvell on Arm:
    gcc9-add-support-for-profile-extension.patch
    gcc10-add-initial-octeontx2-support.patch
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  November-16-2021 Qing Zhao <qing.zhao at oracle.com> 8.5.0-4.0.1
  - Merge oracle patches to security errata 8.5.0-4.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  October-14-2021 Indu Bhagat <indu.bhagat at oracle.com> 8.5.0-3.0.2
  - Fix Orabug 33451471 and backport CTF/BTF enhancements
    ctfc: Free CTF container elements in ctfc_delete_container ()
    ctf: Do not warn for CTF not supported for GNU GIMPLE
    ICE in btf_finalize when compiling with -gbtf (PR debug/102507, Orabug
    33451471)
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  October-5-2021 Qing Zhao <qing.zhao at oracle.com> 8.5.0-3.0.1
  - Merge the following oracle patches to OL8.5 beta:
    - Fix an aarch64 compilation error triggered by the oracle patch
      gcc9-multiple-changes-align.patch on OL8U5 source base.
      gcc-fix-aarch64-tune-params.patch
    - Fix Orabug 33281392 Update CTF and BTF support in OL8 GCC
      This commit brings the support for CTF/BTF debug formats at par with
      upstream.  GCC now generates the CTF/BTF debug information by using the
      internal DWARF representation.
      For backward compatibility reasons, OL8 GCC continues to support -gt
      command line option.
      (Indu Bhagat <indu.bhagat at oracle.com> 8.4.1-1.0.3)
    - Add complex divide improvement
      backport of upstream commit 54f0224d55a1b56dde092460ddf76913670e6efc
      (Patrick.McGehearty <patrick.mcgehearty at oracle.com> 8.4.1-1.0.2)
    - Fix Orabug 32301371 - bug using gcov with preserve paths option
      This is the same bug as GCC bug PR gcov-profile/88994
      gcc9-pr88994.patch
      (Qing Zhao <qing.zhao at oracle.com> 8.3.1-5.1.0.2)
    - Fix generation of CTF type records for completed structs referred
      thru pointers.
      Orabug 31095790.
      (Jose E. Marchesi <jose.marchesi at oracle.com> 8.3.1-5.0.4)
    - Fix Orabug 29838827 - provide an option to adjust the maximum depth
      of nested #include
      This is the same bug as gcc upstream PR90581 from Gcc9:
      gcc9-pr90581.patch
    - Fix Orabug 29541051 -  confusing error message when there is a problem
      with ASAN_OPTIONS "ERROR: expected '='"
      This is the same bug as gcc upstream PR89832 from Gcc9:
      gcc9-pr89832.patch
      (Qing Zhao <qing.zhao at oracle.com> 8.3.1-5.0.3)
    - Update support for CTF
      Fix Orabug 30833294 GCC generates incorrect CTF for single element arrays
      Fix Orabug 30808764 CTF generation fails when __attribute__ ((mode (XX))) is
      used
      (Indu Bhagat <indu.bhagat at oracle.com> 8.3.1-5.0.2)
    - Apply ares/neoverse support patches only ifarch aarch64.
      (Qing Zhao <qing.zhao at oracle.com> 8.3.1-4.5.0.6)
    - Add 4 patches from gcc9 to support Arm Ares and Neoverse-N1 for Aarch64
      gcc9-add-vec-reverse.patch
      gcc9-multiple-changes-align.patch
      gcc9-initial-mcpu-ares-tuning.patch
      gcc9-add-support-for-neoverse-n1.patch
      (Indu Bhagat <indu.bhagat at oracle.com> 8.3.1-4.5.0.5)
    - Update support for CTF
      Fix Orabug 30778534 gcc should generate CTF for functions at file-scope only
      Fix Orabug 30779193 CTF generation fails for some flavors of vla
      Fix Orabug 30784275 Fix issues wtih CTF generation for typedef constructs
      ctf-3-generation-and-emission-for-a-single-compilation.patch
      ctf-4-update-ctf-testsuite.patch
      (Indu Bhagat <indu.bhagat at oracle.com> 8.3.1-4.5.0.4)
    - Add support for CTF in GCC
      Fix Orabug 30102948 gcc: Add CTF generation to compiler
      Fix Orabug 30102949 gcc: Add CTF generation to compiler (aarch64)
      ctf-1-new-function-lang_GNU_GIMPLE.patch
      ctf-2-command-line-options-gtLEVEL.patch
      ctf-3-generation-and-emission-for-a-single-compilation.patch
      ctf-4-update-ctf-testsuite.patch
      ctf-5-handle-ctf-sections-when-lto-enabled.patch
      (Qing Zhao <qing.zhao at oracle.com> 8.3.1-4.5.0.3)
    - CVE-2018-12207 / Intel SKX102
      OL8 gcc: Intel Mitigation for CVE: CVE-2018-12207
    - Allow -flto -Wa,-mbranches-within-32B-boundaries to pass -mbranches-within-32B-boundaries
      to GNU assembler. Without -lfto, -Wa,-mbranches-within-32B-boundaries to pass
      -mbranches-within-32B-boundaries to GNU assembler using existing GCC binaries.
    - Mitigation patch:
      gcc8-Fix-Wa-with-flto.patch
      (Qing Zhao  <qing.zhao at oracle.com> 8.3.1-4.5.0.2)
    - Fix Orabug 29968294 -      Heap corruption with fprofile-dir=%p prevents
      profiling parallel processes, needed for RDBMS:
      Add patch to fix PR86057 from Gcc9:
      gcc9-pr86057.patch
    - Fix Orabug 30044244 - Profile directory concatenated with object file path
      This is the same bug as gcc upstream PR91971:
      gcc9-pr85759.patch
      gcc10-pr91971.patch
      (Indu Bhagat <indu.bhagat at oracle.com> 8.3.1-4.5.0.1)
    - Fix Orabug 29599147 - Need -fprofile-dir=%q{VAR} backported to gcc8
      This is the similar GCC PR47618, add the fix from GCC9:
      gcc9-pr47618.patch
    - Fix Orabug 29272977 - DB SUPPORT: Need way to dump inlining report from GCC
      Add -fopt-info-inline support from GCC9:
      gcc9-opt-info-inline.patch
    - Fix Orabug 29273006 - DB SUPPORT: need way to turn off inlining of global functions
      Add -flive-patching support from GCC9:
      gcc9-fipa-reference-addressable.patch
      gcc9-fipa-stack-alignment.patch
      gcc9-add-fomit-frame-pointer-to-test.patch
      gcc9-extend-live-patching-option-handling.patch
      gcc9-ipa-stack-alignment-386-test.patch
    - Introduce 'oracle_release' into .spec file. Echo it to gcc/DEV-PHASE.
    - Backport 17 ampere patches from
      https://git.theobroma-systems.com/ampere-computing/gcc.git/log/?h=gcc-8_2_0-amp3-branch
      e18301133ea622f6d6796ded1d15466e70475cf8: Retpoline (Spectre-V2 mitigation) for
                                                aarch64.
      d735f3ae4712f66362326d179b4d7e9332c79677: Revert 2017-10-24  Richard Biener
      271e2811e59c0c77fc022fa86a7030f20b4cac8e: Correct the maximum shift amount for
                                                shifted
      0512749950d927de3dd695f2f2aacdfd30cf32fd: Add CPU support for Ampere Computing's
                                                eMAG.
      c8b87078f9e0714cb9cab602e12a18ceb12df05a: eMAG/Xgene: Procedural cost-model for
                                                X-Gene
      74610471b3577c5d465c3fd095a65b796b1e074c: Updating cost table for xgene1.
      ddba1553ac412be5596e6e2962c148032c4cf231: [AArch64] Add Xgene1 prefetch tunings.
      b7ebb0a10a8900324074070188a0936ed81b28a4: [AArch64] Fix in xgene1_addrcost_table
      393dc5c50d55d069f91627bf0be5bab812978850: X-Gene: Adapt tuning struct for GCC 8.
      b9136d58824af2118c4969c3edb42cad3318b08f: tree-ssa-list-find-pipeline:
                                                Add pipelining loads for list finds.
      095496dd8a9491a17a9caec173281ad02e559df5: uncse: Added pass to undo common
                                                subexpression elimination.
      a7c8dc238e3656e9d2f9256ee76f933c8d7956fb: loop-prefetcher: Adapt defaults for
                                                X-Gene cores.
      256307f293f1750851576e14c8a42b696eced2da: tree-ssa-cpp: Don't crash on SSA names
                                                without definition stmts.
      6e32f53be4f6733f6bfe267ad2337aecaf4047f6: Introduce new option -funroll-more.
      1ac2485a2fced091a5cce6343fe6a6337f850e73: New option to bypass aliasing-checks.
      66d7d833bece61e58998ad53a609cd32e3ee4fad: cfgloopmanip: Allow forced creation
                                                of loop preheaders.
      c4f89d50e200538b1ac8889801705300e0b27ef2: Add new pass to optimise loops.

[8.5.0-23]
- rebuild for CVE-2020-11023 (RHEL-78274)



From el-errata at oss.oracle.com  Thu Feb 13 14:42:37 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:37 -0800
Subject: [El-errata] ELSA-2025-20095 Important: Oracle Linux 8 Unbreakable
 Enterprise kernel security update
Message-ID: <mailman.95.1739457767.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20095

http://linux.oracle.com/errata/ELSA-2025-20095.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-core-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-debug-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-devel-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-doc-5.15.0-305.176.4.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-container-5.15.0-305.176.4.el8uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-305.176.4.el8uek.x86_64.rpm

aarch64:
bpftool-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-core-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-debug-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-devel-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-doc-5.15.0-305.176.4.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-container-5.15.0-305.176.4.el8uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-305.176.4.el8uek.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.15.0-305.176.4.el8uek.src.rpm

Related CVEs:

CVE-2024-26595
CVE-2024-38538
CVE-2024-38556
CVE-2024-39494
CVE-2024-40906
CVE-2024-40939
CVE-2024-41080
CVE-2024-42073
CVE-2024-42138
CVE-2024-42268
CVE-2024-42315
CVE-2024-43864
CVE-2024-44940
CVE-2024-44949
CVE-2024-46809
CVE-2024-46841
CVE-2024-46871
CVE-2024-47730
CVE-2024-49950
CVE-2024-49974
CVE-2024-49996
CVE-2024-49998
CVE-2024-50036
CVE-2024-50055
CVE-2024-50121
CVE-2024-50241
CVE-2024-50261
CVE-2024-50264
CVE-2024-50265
CVE-2024-50267
CVE-2024-50268
CVE-2024-50269
CVE-2024-50273
CVE-2024-50275
CVE-2024-50278
CVE-2024-50279
CVE-2024-50282
CVE-2024-50283
CVE-2024-50287
CVE-2024-50290
CVE-2024-50292
CVE-2024-50295
CVE-2024-50296
CVE-2024-50299
CVE-2024-50301
CVE-2024-50302
CVE-2024-53052
CVE-2024-53061
CVE-2024-53063
CVE-2024-53066
CVE-2024-53073
CVE-2024-53088
CVE-2024-53096
CVE-2024-53099
CVE-2024-53101
CVE-2024-53103
CVE-2024-53104
CVE-2024-53112
CVE-2024-53113
CVE-2024-53119
CVE-2024-53120
CVE-2024-53122
CVE-2024-53125
CVE-2024-53129
CVE-2024-53130
CVE-2024-53131
CVE-2024-53135
CVE-2024-53140
CVE-2024-53141
CVE-2024-53142
CVE-2024-53145
CVE-2024-53146
CVE-2024-53148
CVE-2024-53150
CVE-2024-53151
CVE-2024-53155
CVE-2024-53156
CVE-2024-53157
CVE-2024-53158
CVE-2024-53161
CVE-2024-53164
CVE-2024-53165
CVE-2024-53171
CVE-2024-53172
CVE-2024-53173
CVE-2024-53174
CVE-2024-53180
CVE-2024-53181
CVE-2024-53183
CVE-2024-53184
CVE-2024-53194
CVE-2024-53197
CVE-2024-53198
CVE-2024-53214
CVE-2024-53215
CVE-2024-53217
CVE-2024-53227
CVE-2024-53237
CVE-2024-53239
CVE-2024-53240
CVE-2024-53241
CVE-2024-56531
CVE-2024-56532
CVE-2024-56533
CVE-2024-56539
CVE-2024-56548
CVE-2024-56558
CVE-2024-56562
CVE-2024-56567
CVE-2024-56568
CVE-2024-56569
CVE-2024-56570
CVE-2024-56571
CVE-2024-56572
CVE-2024-56574
CVE-2024-56575
CVE-2024-56576
CVE-2024-56578
CVE-2024-56581
CVE-2024-56586
CVE-2024-56587
CVE-2024-56589
CVE-2024-56590
CVE-2024-56593
CVE-2024-56594
CVE-2024-56595
CVE-2024-56596
CVE-2024-56597
CVE-2024-56598
CVE-2024-56600
CVE-2024-56601
CVE-2024-56602
CVE-2024-56603
CVE-2024-56605
CVE-2024-56606
CVE-2024-56610
CVE-2024-56614
CVE-2024-56615
CVE-2024-56616
CVE-2024-56619
CVE-2024-56622
CVE-2024-56623
CVE-2024-56626
CVE-2024-56627
CVE-2024-56629
CVE-2024-56630
CVE-2024-56633
CVE-2024-56634
CVE-2024-56636
CVE-2024-56637
CVE-2024-56640
CVE-2024-56642
CVE-2024-56643
CVE-2024-56644
CVE-2024-56648
CVE-2024-56650
CVE-2024-56659
CVE-2024-56661
CVE-2024-56662
CVE-2024-56670
CVE-2024-56679
CVE-2024-56681
CVE-2024-56688
CVE-2024-56690
CVE-2024-56691
CVE-2024-56693
CVE-2024-56694
CVE-2024-56698
CVE-2024-56700
CVE-2024-56701
CVE-2024-56704
CVE-2024-56705
CVE-2024-56708
CVE-2024-56715
CVE-2024-56716
CVE-2024-56723
CVE-2024-56724
CVE-2024-56726
CVE-2024-56728
CVE-2024-56739
CVE-2024-56741
CVE-2024-56745
CVE-2024-56746
CVE-2024-56747
CVE-2024-56748
CVE-2024-56754
CVE-2024-56756
CVE-2024-56759
CVE-2024-56763
CVE-2024-56766
CVE-2024-56767
CVE-2024-56769




Description of changes:

[5.15.0-305.176.4.el8uek]
- x86/asm: Make serialize() always_inline (Juergen Gross) 
- hwmon: (tmp513) Fix division of negative numbers (David Lechner) 
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (Pratyush Yadav) 
- Revert "regmap: detach regmap from dev on regmap_exit" (Greg Kroah-Hartman) 
- Revert "drm/amdgpu: rework resume handling for display (v2)" (Greg Kroah-Hartman) 
- Revert "PCI: Use preserve_config in place of pci_flags" (Terry Tritton) 
- virtio-net: synchronize probe with ndo_set_features (Jason Wang)  [Orabug: 36637822]
- virtio-net: synchronize operstate with admin state on up/down (Jason Wang)  [Orabug: 36637822]
- virtio: allow driver to disable the configure change notification (Jason Wang)  [Orabug: 36637822]
- virtio: rename virtio_config_enabled to virtio_config_core_enabled (Jason Wang)  [Orabug: 36637822]
- mlxsw: pci: Fix driver initialization with Spectrum-4 (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Fix driver initialization with old firmware (Ido Schimmel)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128 (Maksim Kiselev)  [Orabug: 36811057]
- net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5e: Fix MACsec state loss upon state update in offload path (Emeel Hakim)  [Orabug: 36811057]
- net/mlx5e: Change the warning when ignore_flow_level is not supported (Jianbo Liu)  [Orabug: 36811057]
- Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (Gavin Li)  [Orabug: 36811057]
- IB/mlx5: Don't expose debugfs entries for RRoCE general parameters if not supported (Mark Zhang)  [Orabug: 36811057]
- net/mlx5e: Ignore IPsec replay window values on sender side (Leon Romanovsky)  [Orabug: 36811057]
- net/mlx5e: Allow software parsing when IPsec crypto is enabled (Leon Romanovsky)  [Orabug: 36811057]
- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Bridge, fix multicast packets sent to uplink (Moshe Shemesh)  [Orabug: 36811057]
- net/mlx5: Fix a WARN upon a callback command failure (Yishai Hadas)  [Orabug: 36811057]
- net/mlx5e: Fix peer flow lists handling (Vlad Buslov)  [Orabug: 36811057]
- net/mlx5: Fix query of sd_group field (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed)  [Orabug: 36811057]
- selftests: mlxsw: qos_pfc: Remove wrong description (Amit Cohen)  [Orabug: 36811057]
- mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path (Ido Schimmel)  [Orabug: 36811057]
- gpio: mlxbf3: add an error code check in mlxbf3_gpio_probe (Su Hui)  [Orabug: 36811057]
- vdpa/mlx5: Add mkey leak detection (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Introduce reference counting to mrs (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Use vq suspend/resume during .set_map (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Mark vq state for modification in hw vq (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Mark vq addrs for modification in hw vq (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Introduce per vq and device resume (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Allow modifying multiple vq fields in one modify command (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Expose resumable vq capability (Dragos Tatulea)  [Orabug: 36811057]
- Revert "mlx5 updates 2023-12-20" (Jakub Kicinski)  [Orabug: 36811057]
- net/mlx5: DPLL, Implement fractional frequency offset get pin op (Jiri Pirko)  [Orabug: 36811057]
- net/mlx5: DPLL, Use struct to get values from mlx5_dpll_synce_status_get() (Jiri Pirko)  [Orabug: 36811057]
- net: macsec: move sci_to_cpu to macsec header (Radu Pirea (NXP OSS))  [Orabug: 36811057]
- net/mlx5: Implement management PF Ethernet profile (Armen Ratner)  [Orabug: 36811057]
- net/mlx5: Enable SD feature (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Block TLS device offload on combined SD netdev (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Support per-mdev queue counter (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Support cross-vhca RSS (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Let channels be SD-aware (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Create EN core HW resources for all secondary devices (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Create single netdev per SD group (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Add informative prints in kernel log (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement steering for primary and secondaries (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement devcom communication and primary election (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement basic query and instantiation (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Introduce SD lib (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Fix query of sd_group field (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Set NVE flood profile as part of FID configuration (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an "any" packet type (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add nve_flood_prf_id field to SFMR (Petr Machata)  [Orabug: 36811057]
- net/mlx5: DR, Use swap() instead of open coding it (Jiapeng Chong)  [Orabug: 36811057]
- net/mlx5: devcom, Add component size getter (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Decouple CQ from priv (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Add wrapping for auxiliary_driver ops and remove unused args (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Statify function mlx5e_monitor_counter_arm (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Move TISes from priv to mdev HW resources (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Remove TLS-specific logic in generic create TIS API (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: fs, Command to control TX flow table root (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: fs, Command to control L2TABLE entry silent mode (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Expose Management PCIe Index Register (MPIR) (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Add mlx5_ifc bits used for supporting single netdev Socket-Direct (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Manage ICM type of SW encap (Shun Hao)  [Orabug: 36811057]
- RDMA/mlx5: Support handling of SW encap ICM area (Shun Hao)  [Orabug: 36811057]
- net/mlx5: Introduce indirect-sw-encap ICM properties (Shun Hao)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: Use logical OR instead of bitwise OR in dwcmshc_probe() (Nathan Chancellor)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: Add support for T-Head TH1520 (Drew Fustini)  [Orabug: 36811057]
- mmc: sdhci: add __sdhci_execute_tuning() to header (Drew Fustini)  [Orabug: 36811057]
- mlxsw: spectrum: Use CFF mode where available (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add support for rFID family in CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add a family for bridge FIDs in CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Initialize flood profiles in CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add profile_id to flood profile (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an object to keep flood profiles (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add hooks for RSP table maintenance (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add a not-UC packet type (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op for packing SFMR (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op to get PGT address of a FID (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op to get PGT allocation size (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op for flood table initialization (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Move mlxsw_sp_fid_flood_table_init() up (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Make mlxsw_sp_fid_ops.setup return an int (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Split a helper out of mlxsw_sp_fid_flood_table_mid() (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Rename FID ops, families, arrays (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Privatize FID families (Petr Machata)  [Orabug: 36811057]
- mlxsw: pci: Fix missing error checking (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: spectrum_router: Call RIF setup before obtaining FID (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_router: Add a helper to get subport number from a RIF (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Extract SFMR packing into a helper (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Drop unnecessary conditions (Petr Machata)  [Orabug: 36811057]
- mlxsw: pci: Permit enabling CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: core, pci: Add plumbing related to CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add to SFMR register the fields related to CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Extract flood-mode specific part of mlxsw_reg_sfmr_pack() (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Drop unnecessary writes from mlxsw_reg_sfmr_pack() (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Mark SFGC & some SFMR fields as reserved in CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add Switch FID Flooding Profiles Register (Petr Machata)  [Orabug: 36811057]
- mlxsw: resources: Add max_cap_nve_flood_prf (Petr Machata)  [Orabug: 36811057]
- mlxsw: cmd: Add MLXSW_CMD_MBOX_CONFIG_PROFILE_FLOOD_MODE_CFF (Petr Machata)  [Orabug: 36811057]
- mlxsw: cmd: Add cmd_mbox.query_fw.cff_support (Petr Machata)  [Orabug: 36811057]
- EDAC/bluefield: Convert to platform remove callback returning void (Uwe Kleine-K?nig)  [Orabug: 36811057]
- selftests: mlxsw: Add PCI reset test (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Implement PCI reset handlers (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Add support for new reset flow (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Move software reset code to a separate function (Amit Cohen)  [Orabug: 36811057]
- mlxsw: pci: Rename mlxsw_pci_sw_reset() (Amit Cohen)  [Orabug: 36811057]
- mlxsw: Extend MRSR pack() function to support new commands (Amit Cohen)  [Orabug: 36811057]
- net/mlx5e: Remove early assignment to netdev->features (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Add local loopback counter to vport rep stats (Or Har-Toov)  [Orabug: 36811057]
- net/mlx5: Query maximum frequency adjustment of the PTP hardware clock (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Convert scaled ppm values outside the s32 range for PHC frequency adjustments (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Initialize clock->ptp_info inside mlx5_init_timer_clock (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Refactor real time clock operation checks for PHC (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5e: Access array with enum values instead of magic numbers (Gal Pressman)  [Orabug: 36811057]
- net/mlx5: simplify mlx5_set_driver_version string assignments (Justin Stitt)  [Orabug: 36811057]
- net/mlx5: Annotate struct mlx5_flow_handle with __counted_by (Kees Cook)  [Orabug: 36811057]
- net/mlx5: Annotate struct mlx5_fc_bulk with __counted_by (Kees Cook)  [Orabug: 36811057]
- net/mlx5e: Some cleanup in mlx5e_tc_stats_matchall() (Amir Tzin)  [Orabug: 36811057]
- net/mlx5: Allow sync reset flow when BF MGT interface device is present (Moshe Shemesh)  [Orabug: 36811057]
- net/mlx5: print change on SW reset semaphore returns busy (Moshe Shemesh)  [Orabug: 36811057]
- vdpa/mlx5: clean up indenting in handle_ctrl_vlan() (Dan Carpenter)  [Orabug: 36811057]
- vdpa/mlx5: fix error code for deleting vlan (Dan Carpenter)  [Orabug: 36811057]
- vdpa/mlx5: Fix syntax errors in comments (Xiang wangx)  [Orabug: 36811057]
- macsec: Fix use-after-free while sending the offloading packet (Jianbo Liu)  [Orabug: 37268700]  {CVE-2024-50261}
- xfrm: Export symbol xfrm_dev_state_delete. (Steffen Klassert)  [Orabug: 37357287]
- xfrm: Fix unregister netdevice hang on hardware offload. (Steffen Klassert)  [Orabug: 37357287]
- xfrm: fix a data-race in xfrm_lookup_with_ifid() (Eric Dumazet)  [Orabug: 37357287]
- xfrm: generalize xdo_dev_state_update_curlft to allow statistics update (Leon Romanovsky)  [Orabug: 37357287]
- xfrm: copy_to_user_state fetch offloaded SA packets/bytes statistics (Raed Salem)  [Orabug: 37357287]
- xfrm: annotate data-race around use_time (Eric Dumazet)  [Orabug: 37357287]
- xfrm: consistently use time64_t in xfrm_timer_handler() (Eric Dumazet)  [Orabug: 37357287]
- cpufreq: intel_pstate: Update Balance-performance EPP for Granite Rapids (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update Balance performance EPP for Emerald Rapids (Pedro Henrique Kopper)  [Orabug: 37383554]
- cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update Meteor Lake EPPs (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Switch to new Intel CPU model defines (Tony Luck)  [Orabug: 37383554]
- cpufreq: Switch to new Intel CPU model defines (Tony Luck)  [Orabug: 37383554]
- x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h (Tony Luck)  [Orabug: 37383554]
- x86/cpu: Add model number for another Intel Arrow Lake mobile processor (Tony Luck)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update default EPPs for Meteor Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Allow model specific EPPs (Srinivas Pandruvada)  [Orabug: 37383554]
- x86/cpu: Add model number for Intel Clearwater Forest processor (Tony Luck)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update hybrid scaling factor for Meteor Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Prioritize firmware-provided balance performance EPP (Srinivas Pandruvada)  [Orabug: 37383554]
- x86/cpu: Add model number for Intel Arrow Lake mobile processor (Tony Luck)  [Orabug: 37383554]
- x86/cpu: Update Hybrids (Peter Zijlstra)  [Orabug: 37383554]
- cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Enable HWP IO boost for all servers (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Use firmware default EPP (Srinivas Pandruvada)  [Orabug: 37383554]
- net/mlx5: Add a timeout to acquire the command queue semaphore (Akiva Goldberger)  [Orabug: 37388415]
- PCI: Fix pci_enable_acs() support for the ACS quirks (Jason Gunthorpe)  [Orabug: 37477375]
- PCI: Clear Secondary Status errors after enumeration (Vidya Sagar)  [Orabug: 37477375]
- PCI/AER: Configure ECRC only if AER is native (Vidya Sagar)  [Orabug: 37477375]
- PCI: Extend ACS configurability (Vidya Sagar)  [Orabug: 37477375]
- NFSv4/pNFS: Do layout state recovery upon reboot (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Remove redundant call to unhash the layout (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Give nfs4_proc_layoutreturn() a flags argument (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Retry the layout return later in case of a timeout or reboot (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Handle server reboots in pnfs_poc_release() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Add a helper to defer failed layoutreturn calls (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Add support for the PNFS_LAYOUT_FILE_BULK_RETURN flag (Trond Myklebust)  [Orabug: 37477755]
- pNFS: Add a flag argument to pnfs_destroy_layouts_byclid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4: Clean up encode_nfs4_stateid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4.1: constify the stateid argument in nfs41_test_stateid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Remove redundant list check (Trond Myklebust)  [Orabug: 37477755]
- uek-rpm: Enable CONFIG_SENSORS_ARM_SCMI and CONFIG_MVL_MHU (Thomas Tai)  [Orabug: 37498899]

[5.15.0-305.176.3.el8uek]
- LTS version: v5.15.176 (Vijayendra Suman)
- mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (Seiji Nishikawa)
- dt-bindings: display: adi,adv7533: Drop single lane support (Biju Das)
- drm: adv7511: Drop dsi single lane support (Biju Das)
- net/sctp: Prevent autoclose integer overflow in sctp_association_init() (Nikolay Kuratov)
- sky2: Add device ID 11ab:4373 for Marvell 88E8075 (Pascal Hambourg)
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (Evgenii Shatokhin)
- RDMA/uverbs: Prevent integer overflow issue (Dan Carpenter)
- kcov: mark in_softirq_really() as __always_inline (Arnd Bergmann)
- modpost: fix the missed iteration for the max bit in do_input() (Masahiro Yamada)
- modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (Masahiro Yamada)
- usb: xhci: Avoid queuing redundant Stop Endpoint commands (Michal Pecio)
- ARC: build: Try to guess GCC variant of cross compiler (Leon Romanovsky)
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (Uros Bizjak)
- net: usb: qmi_wwan: add Telit FE910C04 compositions (Daniele Palmas)
- bpf: fix potential error return (Anton Protopopov)
- sound: usb: format: don't warn that raw DSD is unsupported (Adrian Ratiu)
- sound: usb: enable DSD output for ddHiFi TC44C (Adrian Ratiu)
- btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (Filipe Manana)
- drm/amdkfd: Correct the migration DMA map direction (Prike Liang)
- wifi: mac80211: wake the queues in case of failure in resume (Emmanuel Grumbach)
- btrfs: sysfs: fix direct super block member reads (Qu Wenruo)
- btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit (Anand Jain)
- btrfs: fix use-after-free when COWing tree bock and tracing is enabled (Filipe Manana)
- btrfs: rename and export __btrfs_cow_block() (Filipe Manana)
- ila: serialize calls to nf_register_net_hooks() (Eric Dumazet)
- af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet)
- af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet)
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (Maciej S. Szmigiero)
- net: restrict SO_REUSEPORT to inet sockets (Eric Dumazet)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (Li Zhijian)
- net: mv643xx_eth: fix an OF node reference leak (Joe Hattori)
- eth: bcmsysport: fix call balance of priv->clk handling routines (Vitalii Mordan)
- ALSA: usb-audio: US16x08: Initialize array before use (Tanya Agarwal)
- net: llc: reset skb->transport_header (Antonio Pastor)
- netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext (Pablo Neira Ayuso)
- drm/i915/dg1: Fix power gate sequence. (Rodrigo Vivi)
- netrom: check buffer length before accessing it (Ilya Shchipletsov)
- net: fix memory leak in tcp_conn_request() (Wang Liang)
- net: stmmac: restructure the error path of stmmac_probe_config_dt() (Joe Hattori)
- net: stmmac: don't create a MDIO bus if unnecessary (Andrew Halaney)
- net: stmmac: platform: provide devm_stmmac_probe_config_dt() (Bartosz Golaszewski)
- RDMA/hns: Fix missing flush CQE for DWQE (Chengchang Tang)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (Chengchang Tang)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (wenglianfa)
- RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() (Yunsheng Lin)
- RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() (Yixing Liu)
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (Stefan Ekenberg)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (Selvin Xavier)
- RDMA/bnxt_re: Fix max_qp_wrs reported (Selvin Xavier)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (Kalesh AP)
- RDMA/bnxt_re: Add check for path mtu in modify_qp (Saravanan Vajravel)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (Patrisious Haddad)
- xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic (Mathias Nyman)
- usb: xhci: Limit Stop Endpoint retries (Michal Pecio)
- xhci: retry Stop Endpoint on buggy NEC controllers (Michal Pecio)
- thunderbolt: Add support for Intel Panther Lake-M/P (Mika Westerberg)
- thunderbolt: Add support for Intel Lunar Lake (Mika Westerberg)
- thunderbolt: Add Intel Barlow Ridge PCI ID (Mika Westerberg)
- thunderbolt: Add support for Intel Meteor Lake (Mika Westerberg)
- thunderbolt: Add support for Intel Raptor Lake (George D Sworo)
- tracing: Have process_string() also allow arrays (Steven Rostedt)
- selinux: ignore unknown extended permissions (Thi?baud Weksteen)
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (Naman Jain)
- net: dsa: improve shutdown sequence (Vladimir Oltean)
- nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (Yang Erkun)
- btrfs: avoid monopolizing a core when activating a swap file (Filipe Manana)
- power: supply: gpio-charger: Fix set charge current limits (Dimitri Fedrau)
- tracing: Prevent bad count for tracing_cpumask_write (Lizhi Xu)
- tracing: Constify string literal data member in struct trace_event_call (Christian G?ttsche)
- ksmbd: fix racy issue from session lookup and expire (Namjae Jeon)
- lib: stackinit: hide never-taken branch from compiler (Kees Cook)
- drm/dp_mst: Verify request type in the corresponding down message reply (Imre Deak)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs (Catalin Marinas)
- arm64: mm: Rename asid2idx() to ctxid2asid() (Yunfeng Ye)
- ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write (Jordy Zomer)
- ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read (Jordy Zomer)
- drm/dp_mst: Fix MST sideband message body length check (Imre Deak)
- bpf: Check validity of link->type in bpf_link_show_fdinfo() (Hou Tao)
- MIPS: Probe toolchain support of -msym32 (Jiaxun Yang)
- vmalloc: fix accounting with i915 (Matthew Wilcox (Oracle))
- virtio-blk: don't keep queue frozen during system suspend (Ming Lei)
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (Cathy Avery)
- scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time (Ranjan Kumar)
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (Armin Wolf)
- regmap: Use correct format specifier for logging range errors (Mark Brown)
- ALSA: hda/conexant: fix Z60MR100 startup pop issue (bo liu)
- scsi: megaraid_sas: Fix for a potential deadlock (Tomas Henzl)
- scsi: qla1280: Fix hw revision numbering for ISP1020/1040 (Magnus Lindholm)
- watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 (James Hilliard)
- tracing/kprobe: Make trace_kprobe's module callback called after jump_label update (Masami Hiramatsu (Google))
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter)
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (Chen Ridong)
- dmaengine: dw: Select only supported masters for ACPI devices (Andy Shevchenko)
- dmaengine: mv_xor: fix child node refcount handling in early exit (Javier Carrasco)
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (Zijun Hu)
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (Zijun Hu)
- phy: core: Fix that API devm_phy_put() fails to release the phy (Zijun Hu)
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (Zijun Hu)
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (Zijun Hu)
- mtd: rawnand: arasan: Fix missing de-registration of NAND (Maciej Andrzejewski)
- mtd: rawnand: arasan: Fix double assertion of chip-select (Maciej Andrzejewski)
- mtd: diskonchip: Cast an operand to prevent potential overflow (Zichen Xie)
- nfsd: restore callback functionality for NFSv4.0 (NeilBrown)
- bpf: Check negative offsets in __bpf_skb_min_len() (Cong Wang)
- tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection (Zijian Zhang)
- tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() (Cong Wang)
- mm/vmstat: fix a W=1 clang compiler warning (Bart Van Assche)
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (Nikita Zhandarovich)
- drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update (Michel D?nzer)
- epoll: Add synchronous wakeup support for ep_poll_callback (Xuewen Yan)
- ceph: validate snapdirname option length when mounting (Ilya Dryomov)
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (Zijun Hu)
- of: Fix error path in of_parse_phandle_with_args_map() (Herve Codina)
- udmabuf: also check for F_SEAL_FUTURE_WRITE (Jann Horn)
- nilfs2: prevent use of deleted inode (Edward Adam Davis)
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu)
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (Trond Myklebust)
- tracing: Add "%s" check in test_event_printk() (Steven Rostedt)
- tracing: Add missing helper functions in event pointer dereference check (Steven Rostedt)
- tracing: Fix test_event_printk() to process entire print argument (Steven Rostedt)
- KVM: x86: Play nice with protected guests in complete_hypercall_exit() (Sean Christopherson)
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (Michael Kelley)
- btrfs: tree-checker: reject inline extent items with 0 ref count (Qu Wenruo)
- zram: refuse to use zero sized block device as backing device (Kairui Song)
- sh: clk: Fix clk_enable() to return 0 on NULL clk (Geert Uytterhoeven)
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (Murad Masimov)
- hwmon: (tmp513) Fix Current Register value interpretation (Murad Masimov)
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (Murad Masimov)
- hwmon: (tmp513) Use SI constants from units.h (Andy Shevchenko)
- hwmon: (tmp513) Simplify with dev_err_probe() (Andy Shevchenko)
- hwmon: (tmp513) Don't use "proxy" headers (Andy Shevchenko)
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (Ville Syrj?l?)
- USB: serial: option: add Telit FE910C04 rmnet compositions (Daniele Palmas)
- USB: serial: option: add MediaTek T7XX compositions (Jack Wu)
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (Mank Wang)
- USB: serial: option: add MeiG Smart SLM770A (Michal Hrusecky)
- USB: serial: option: add TCL IK512 MBIM & ECM (Daniel Swanemar)
- efivarfs: Fix error on non-existent file (James Bottomley)
- i2c: riic: Always round-up when calculating bus period (Geert Uytterhoeven)
- chelsio/chtls: prevent potential integer overflow on 32bit (Dan Carpenter)
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (Prathamesh Shete)
- net: mdiobus: fix an OF node reference leak (Joe Hattori)
- netfilter: ipset: Fix for recursive locking warning (Phil Sutter)
- net: ethernet: bgmac-platform: fix an OF node reference leak (Joe Hattori)
- net: hinic: Fix cleanup in create_rxqs/txqs() (Dan Carpenter)
- ionic: use ee->offset when returning sprom data (Shannon Nelson)
- ionic: Fix netdev notifier unregister on failure (Brett Creeley)
- netdevsim: prevent bad user input in nsim_dev_health_break_write() (Eric Dumazet)
- net/smc: check return value of sock_recvmsg when draining clc data (Guangguan Wang)
- net/smc: check smcd_v2_ext_offset when receiving proposal msg (Guangguan Wang)
- net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (Guangguan Wang)
- net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll (Guangguan Wang)
- erofs: fix incorrect symlink detection in fast symlink (Gao Xiang)
- i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun)
- usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled (Peng Hongchi)
- MIPS: Loongson64: DTS: Fix msi node for ls7a (Jiaxun Yang)
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (Ajit Khaparde)
- PCI: vmd: Create domain symlink before pci_bus_add_devices() (Jiwei Sun)
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (Pierre-Louis Bossart)
- usb: cdns3: Add quirk flag to enable suspend residency (Roger Quadros)
- ALSA: usb: Fix UBSAN warning in parse_audio_unit() (Takashi Iwai)
- PCI/AER: Disable AER service on suspend (Kai-Heng Feng)
- PCI: Use preserve_config in place of pci_flags (Vidya Sagar)
- net: sched: fix ordering of qlen adjustment (Lion Ackermann)
- LTS version: v5.15.175 (Vijayendra Suman)
- x86/static-call: fix 32-bit build (Juergen Gross)
- ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter)
- x86/xen: remove hypercall page (Juergen Gross)
- x86/xen: use new hypercall functions instead of hypercall page (Juergen Gross)
- x86/xen: add central hypercall functions (Juergen Gross)
- x86/xen: don't do PV iret hypercall through hypercall page (Juergen Gross)
- x86/static-call: provide a way to do very early static-call updates (Juergen Gross)
- objtool/x86: allow syscall instruction (Juergen Gross)
- x86: make get_cpu_vendor() accessible from Xen code (Juergen Gross)
- xen/netfront: fix crash when removing device (Juergen Gross)
- Revert "parisc: fix a possible DMA corruption" (Greg Kroah-Hartman)
- tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov)
- bpf: sync_linked_regs() must preserve subreg_def (Eduard Zingerman)
- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor)
- ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin)
- team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann)
- bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann)
- net/sched: netem: account for backlog updates from child qdisc (Martin Ottens)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (Paul Barker)
- qca_spi: Make driver probing reliable (Stefan Wahren)
- qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren)
- cxgb4: use port number to set mac addr (Anumula Murali Mohan Reddy)
- ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen)
- net: sparx5: fix the maximum frame length register (Daniel Machon)
- net: sparx5: fix FDMA performance issue (Daniel Machon)
- net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet)
- ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init() (Thomas Wei?schuh)
- ptp: kvm: Use decrypted memory in confidential guest on x86 (Jeremi Piotrowski)
- selftests: mlxsw: sharedbuffer: Remove duplicate test cases (Danielle Ratson)
- selftests: mlxsw: sharedbuffer: Remove h1 ingress test case (Danielle Ratson)
- tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet)
- batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel)
- batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel)
- batman-adv: Do not send uninitialized TT changes (Remi Pommarel)
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (Suraj Sonawane)
- exfat: fix potential deadlock on __exfat_get_dentry_set (Sungjong Seo)
- virtio/vsock: Fix accept_queue memory leak (Michal Luczaj)
- bpf, sockmap: Fix update element with same (Michal Luczaj)
- xfs: fix scrub tracepoints when inode-rooted btrees are involved (Darrick J. Wong)
- xfs: return from xfs_symlink_verify early on V4 filesystems (Darrick J. Wong)
- xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong)
- xfs: update btree keys correctly when _insrec splits an inode root block (Darrick J. Wong)
- drm/i915: Fix memory leak by correcting cache object name in error handler (Jiasheng Jiang)
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu)
- usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan)
- usb: dwc2: Fix HCD port connection race (Stefan Wahren)
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren)
- usb: dwc2: Fix HCD resume (Stefan Wahren)
- ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori)
- usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson)
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (Jaakko Salo)
- tcp: check space before adding MPTCP SYN options (MoYuanhao)
- LTS version: v5.15.174 (Vijayendra Suman)
- Bluetooth: hci_core: Fix calling mgmt_device_connected (Luiz Augusto von Dentz)
- net/smc: Fix af_ops of child socket pointing to released memory (Karsten Graul)
- media: venus: vdec: fixed possible memory leak issue (Ameer Hamza)
- serial: amba-pl011: fix build regression (Arnd Bergmann)
- drm/amdgpu: rework resume handling for display (v2) (Alex Deucher)
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (Wayne Lin)
- net: dsa: microchip: correct KSZ8795 static MAC table access (Tristram Ha)
- Bluetooth: L2CAP: Fix uaf in l2cap_connect (Luiz Augusto von Dentz)
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (Mark Rutland)
- arm64/sve: Discard stale CPU state when handling SVE traps (Mark Brown)
- gve: Fixes for napi_poll when budget is 0 (Ziwei Xiao)
- scsi: core: Fix scsi_mode_select() buffer length handling (Damien Le Moal)
- Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun)
- fou: remove warn in gue_gro_receive on unsupported protocol (Willem de Bruijn)
- ima: Fix use-after-free on a dentry's dname.name (Stefan Berger)
- crypto: hisilicon/qm - inject error before stopping queue (Weili Qian)
- drm/amd/display: Check BIOS images before it is used (Alex Hung)
- mmc: mtk-sd: Fix error handle of probe function (Andy-ld Lu)
- xhci: dbc: Fix STALL transfer event handling (Mathias Nyman)
- mm/damon/vaddr: fix issue in damon_va_evenly_split_region() (Zheng Yejian)
- mm/damon/vaddr-test: split a test function having >1024 bytes frame size (SeongJae Park)
- jffs2: Fix rtime decompressor (Richard Weinberger)
- jffs2: Prevent rtime decompress memory corruption (Kinsey Moore)
- KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang)
- KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang)
- KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang)
- tracing/eprobe: Fix to release eprobe when failed to add dyn_event (Masami Hiramatsu (Google))
- btrfs: fix missing snapshot drew unlock when root is dead during swap activation (Filipe Manana)
- sched/core: Prevent wakeup of ksoftirqd during idle load balance (K Prateek Nayak)
- sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy (K Prateek Nayak)
- sched/fair: Add NOHZ balancer flag for nohz.next_balance updates (Valentin Schneider)
- sched/core: Remove the unnecessary need_resched() check in nohz_csd_func() (K Prateek Nayak)
- modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner)
- modpost: Include '.text.*' in TEXT_SECTIONS (Nathan Chancellor)
- misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman)
- powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman)
- MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a (Xi Ruoyao)
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang)
- i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li)
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou)
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch)
- PCI: Detect and trust built-in Thunderbolt chips (Esther Shimanovich)
- i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (Jarkko Nikula)
- f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han)
- nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang)
- pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n)
- scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara)
- scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara)
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha)
- scsi: hisi_sas: Add cond_resched() for no forced preemption model (Yihang Li)
- tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak)
- pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU (Esben Haabendal)
- netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao)
- net/neighbor: clear error in case strict check is not set (Jakub Kicinski)
- rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov)
- ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman)
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (Luiz Augusto von Dentz)
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis)
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong)
- drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang)
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (Victor Zhao)
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya)
- jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal)
- jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal)
- jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal)
- dma-debug: fix a possible deadlock on radix_lock (Levi Yun)
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (Lang Yu)
- drm/amdgpu: Dereference the ATCS ACPI buffer (Prike Liang)
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (Victor Lu)
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (Manikandan Muralidharan)
- wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev)
- wifi: ath5k: add PCI ID for SX76X (Rosen Penev)
- net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin)
- net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin)
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin)
- net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin)
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin)
- af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin)
- net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina)
- net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman)
- net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman)
- samples/bpf: Fix a resource leak (Zhu Jun)
- r8169: don't apply UDP padding quirk on RTL8126A (Heiner Kallweit)
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev)
- drm/mcde: Enable module autoloading (Liao Chen)
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a)
- drm/vc4: hvs: Set AXI panic modes for the HVS (Dave Stevenson)
- soc: imx8m: Probe the SoC driver as platform driver (Marek Vasut)
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar)
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given)
- kcsan: Turn report_filterlist_lock into a raw_spinlock (Marco Elver)
- kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all() (Mark Brown)
- btrfs: avoid unnecessary device path update for the same device (Qu Wenruo)
- s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter)
- epoll: annotate racy check (Christian Brauner)
- iommu/arm-smmu: Defer probe of clients after smmu device bound (Pratyush Brahma)
- ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang)
- mmc: core: Further prevent card detect during shutdown (Ulf Hansson)
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (Hans de Goede)
- regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav)
- xsk: fix OOB map writes when deleting elements (Maciej Fijalkowski)
- dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig)
- bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski)
- bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che)
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi)
- scsi: ufs: core: sysfs: Prevent div by zero (Gwendal Grignou)
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap)
- scsi: qla2xxx: Fix use after free on unload (Quinn Tran)
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy)
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran)
- ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (Sahas Leelodharry)
- ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (Nazar Bilinskyi)
- ALSA: usb-audio: add mixer mapping for Corsair HS80 (Marie Ramlow)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (Mark Rutland)
- tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu)
- can: dev: can_set_termination(): allow sleeping GPIOs (Marc Kleine-Budde)
- watchdog: rti: of: honor timeout-sec property (Alexander Sverdlin)
- HID: wacom: fix when get product name maybe null pointer (WangYuli)
- bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao)
- bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao)
- ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa)
- drm/v3d: Enable Performance Counters before clearing them (Ma?ra Canal)
- spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao)
- tools: Override makefile ARCH variable if defined, but empty (Bj?rn T?pel)
- ALSA: usb-audio: Notify xrun for low-latency mode (Takashi Iwai)
- ALSA: pcm: Avoid reference to status->state (Takashi Iwai)
- ALSA: pcm: Add more disconnection checks at file ops (Takashi Iwai)
- tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang)
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao)
- bpftool: fix potential NULL pointer dereferencing in prog_dump() (Amir Mohammadi)
- bpftool: Remove asserts from JIT disassembler (Quentin Monnet)
- serial: amba-pl011: Fix RX stall when DMA is used (Kartik Rajput)
- serial: amba-pl011: Use port lock wrappers (Thomas Gleixner)
- dt-bindings: serial: rs485: Fix rs485-rts-delay property (Michal Simek)
- dt_bindings: rs485: Correct delay values (Lino Sanfilippo)
- gpio: grgpio: Add NULL check in grgpio_probe (Charles Han)
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski)
- geneve: do not assume mac header is set in geneve_xmit_skb() (Eric Dumazet)
- ethtool: Fix wrong mod state in case of verbose and no_mask bitset (Kory Maincent)
- netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso)
- netfilter: ipset: Hold module reference while requesting a module (Phil Sutter)
- net: sched: fix erspan_opt settings in cls_flower (Xin Long)
- igb: Fix potential invalid memory access in igb_init_module() (Yuan Can)
- net/qed: allow old cards not supporting "num_images" to work (Louis Leseur)
- net/smc: fix LGR and link use-after-free issue (Wen Gu)
- net/smc: Limit backlog connections (D. Wythe)
- tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima)
- dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov)
- net/ipv6: release expired exception dst cached in socket (Jiri Wiesner)
- can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov)
- net: hsr: avoid potential out-of-bound access in fill_frame_info() (Eric Dumazet)
- net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens)
- ptp: Add error handling for adjfine callback in ptp_clock_adjtime (Ajay Kaher)
- netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov)
- ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia)
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi)
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (Dario Binacchi)
- can: do not increase rx statistics when generating a CAN rx error message frame (Vincent Mailhol)
- can: peak_usb: CANFD: store 64-bits hw timestamps (Stephane Grosjean)
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana)
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi)
- drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach)
- drm/sti: avoid potential dereference of error pointers (Ma Ke)
- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (Ma Ke)
- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (Ma Ke)
- btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (Josef Bacik)
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun)
- nfsd: make sure exp active before svc_export_show (Yang Erkun)
- PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal)
- dm thin: Add missing destroy_work_on_stack() (Yuan Can)
- ovl: properly handle large files in ovl_security_fileattr (Oleksandr Tymoshenko)
- PCI: keystone: Add link up check to ks_pcie_other_map_bus() (Kishon Vijay Abraham I)
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li)
- scsi: ufs: exynos: Fix hibern8 notify callbacks (Peter Griffin)
- util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean)
- s390/entry: Mark IRQ entries to fix stack depot warnings (Vasily Gorbik)
- ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu)
- btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana)
- btrfs: add a sanity check for btrfs root in btrfs_search_slot() (Lizhi Xu)
- btrfs: add might_sleep() annotations (ChenXiaoSong)
- quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo)
- xfs: remove unknown compat feature check in superblock write validation (Long Li)
- xfs: fix log recovery when unknown rocompat bits are set (Darrick J. Wong)
- ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang)
- sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter)
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian)
- sunrpc: remove unnecessary test in rpc_task_set_client() (Thiago Rafael Becker)
- nfs: ignore SB_RDONLY when mounting nfs (Li Lingfeng)
- modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada)
- rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier)
- 9p/xen: fix release of IRQ (Alex Zenla)
- 9p/xen: fix init sequence (Alex Zenla)
- block: return unsigned int from bdev_io_min (Christoph Hellwig)
- jffs2: fix use of uninitialized variable (Qingfang Deng)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed)
- ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng)
- ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng)
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao)
- rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu)
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust)
- um: Always dump trace for specified task in show_stack (Tiwei Bie)
- um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie)
- um: Fix potential integer overflow during physmem setup (Tiwei Bie)
- rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson)
- SUNRPC: make sure cache entry active before cache_show (Yang Erkun)
- NFSD: Prevent a potential integer overflow (Chuck Lever)
- lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski)
- usb: dwc3: gadget: Fix looping of queued SG entries (Thinh Nguyen)
- usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen)
- ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai)
- ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar)
- ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang)
- ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang)
- ALSA: pcm: Add sanity NULL check for the default mmap fault handler (Takashi Iwai)
- media: v4l2-core: v4l2-dv-timings: check cvt/gtf result (Hans Verkuil)
- soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (Javier Carrasco)
- media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen)
- HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke)
- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon)
- sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen)
- um: vector: Do not use drvdata in release (Tiwei Bie)
- serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu)
- um: net: Do not use drvdata in release (Tiwei Bie)
- um: ubd: Do not use drvdata in release (Tiwei Bie)
- ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng)
- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (Javier Carrasco)
- cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (Jinjie Ruan)
- mtd: spi-nor: core: replace dummy buswidth from addr to data (Cheng Ming Lin)
- spi: Fix acpi deferred irq probe (Stanislaw Gruszka)
- netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park)
- gpio: exar: set value when external pull-up or pull-down is present (Sai Kumar Cholleti)
- Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman)
- serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea)
- Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil)
- driver core: bus: Fix double free in driver API bus_register() (Zijun Hu)
- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (Michal Pecio)
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura)
- exfat: fix uninit-value in __exfat_get_dentry_set (Namjae Jeon)
- locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass() (Ahmed Ehab)
- tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet)
- apparmor: test: Fix memory leak for aa_unpack_strdup() (Jinjie Ruan)
- comedi: Flush partial mappings in error case (Jann Horn)
- fsnotify: fix sending inotify event with unexpected filename (Amir Goldstein)
- PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner)
- KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta)
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (Gautam Menghani)
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers)
- perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter)
- ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen)
- jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov)
- ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o)
- ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park)
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens)
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu)
- ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (Hans de Goede)
- Revert "drivers: clk: zynqmp: update divider round rate logic" (Joel Guittet)
- usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan)
- ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai)
- xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen)
- ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (Namjae Jeon)
- parisc: fix a possible DMA corruption (Mikulas Patocka)
- apparmor: fix 'Do simple duplicate message elimination' (chao liu)
- ALSA: hda/realtek: Update ALC256 depop procedure (Kailang Yang)
- counter: stm32-timer-cnt: Add check for clk_enable() (Jiasheng Jiang)
- misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan)
- USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis)
- USB: chaoskey: fail open after removal (Oliver Neukum)
- usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum)
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park)
- iio: light: al3010: Fix an error handling path in al3010_probe() (Christophe JAILLET)
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (Saravanan Vajravel)
- net: hsr: fix hsr_init_sk() vs network/transport headers. (Eric Dumazet)
- spi: atmel-quadspi: Fix register name in verbose logging function (Cs?k?s, Bence)
- octeontx2-af: RPM: Fix mismatch in lmac type (Hariprasad Kelam)
- net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier)
- marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan)
- net: mdio-ipq4019: add missing error check (Rosen Penev)
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel)
- tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi)
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel)
- power: supply: bq27xxx: Fix registers of bq27426 (Barnab?s Cz?m?n)
- power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche)
- fs_parser: update mount_api doc to match function signature (Randy Dunlap)
- vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon)
- selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels (Michael Ellerman)
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (Si-Wei Liu)
- hwmon: (tps23861) Fix reporting of negative temperatures (Murad Masimov)
- NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever)
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (Ye Bin)
- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (Luis Chamberlain)
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever)
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever)
- remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region (Sibi Sankar)
- rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek)
- rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson)
- rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam)
- rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam)
- perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson)
- perf trace: Do not lose last events in a race (Benjamin Peterson)
- svcrdma: Address an integer overflow (Chuck Lever)
- m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli)
- m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois)
- perf trace: avoid garbage when not printing a trace event's arguments (Benjamin Peterson)
- f2fs: check curseg->inited before write_sum_page in change_curseg (Yongpeng Yang)
- f2fs: remove the unused flush argument to change_curseg (Christoph Hellwig)
- f2fs: open code allocate_segment_by_default (Christoph Hellwig)
- f2fs: remove struct segment_allocation default_salloc_ops (Christoph Hellwig)
- f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block (LongPing Wei)
- PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen)
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng)
- perf probe: Correct demangled symbols in C++ program (Leo Yan)
- perf probe: Fix libdw memory leak (Ian Rogers)
- PCI: Fix reset_method_store() memory leak (Todd Kjos)
- perf cs-etm: Don't flush when packet_queue fills up (James Clark)
- mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (Dan Carpenter)
- pinctrl: k210: Undef K210_PC_DEFAULT (zhang jiao)
- clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa)
- dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa)
- fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei)
- fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann)
- powerpc/kexec: Fix return of uninitialized variable (Zhang Zekun)
- powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek)
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov)
- RDMA/hns: Fix out-of-order issue of requester when setting FENCE (Junxian Huang)
- scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei)
- scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei)
- scsi: fusion: Remove unused variable 'rc' (Zeng Heng)
- scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin)
- mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong)
- clk: imx: clk-scu: fix clk enable state save and restore (Dong Aisheng)
- clk: imx: lpcg-scu: SW workaround for errata (e10858) (Peng Fan)
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (Michael Ellerman)
- powerpc/mm/fault: Fix kfence page fault reporting (Ritesh Harjani (IBM))
- mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal)
- cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko)
- mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson)
- mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan)
- pinctrl: zynqmp: drop excess struct member description (Bartosz Golaszewski)
- trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun)
- bpf: fix recursive lock when verdict program return SK_PASS (Jiayuan Chen)
- wireguard: selftests: load nf_conntrack if not present (Hangbin Liu)
- netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao)
- Bluetooth: fix use-after-free in device_for_each_child() (Dmitry Antipov)
- driver core: Introduce device_find_any_child() helper (Andy Shevchenko)
- ALSA: 6fire: Release resources at card release (Takashi Iwai)
- ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng)
- drm/amdkfd: Fix wrong usage of INIT_WORK() (Yuan Can)
- selftests: net: really check for bg process completion (Paolo Abeni)
- bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang)
- selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap (Zijian Zhang)
- selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap (Zijian Zhang)
- selftests, bpf: Add one test for sockmap with strparser (Liu Jian)
- selftests/bpf: Fix SENDPAGE data logic in test_sockmap (Zijian Zhang)
- selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap (Zijian Zhang)
- netlink: typographical error in nlmsg_type constants definition (Maurice Lambert)
- netfilter: nf_tables: must hold rcu read lock while iterating object type list (Florian Westphal)
- netfilter: nf_tables: skip transaction if update object is not implemented (Pablo Neira Ayuso)
- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (Zichen Xie)
- wifi: wfx: Fix error handling in wfx_core_init() (Yuan Can)
- drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach)
- drm/etnaviv: fix power register offset on GC300 (Doug Brown)
- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (Xiaolei Wang)
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (Dipendra Khadka)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (Dipendra Khadka)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (Dipendra Khadka)
- drm: fsl-dcu: enable PIXCLK on LS1021A (Matthias Schiffer)
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak)
- selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap (Zijian Zhang)
- selftests/bpf: Fix msg_verify_data in test_sockmap (Zijian Zhang)
- drm/bridge: tc358767: Fix link properties discovery (Tomi Valkeinen)
- netdevsim: copy addresses for both in and out paths (Hangbin Liu)
- libbpf: fix sym_is_subprog() logic for weak global subprogs (Andrii Nakryiko)
- bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen)
- libbpf: Fix output .symtab byte-order during linking (Tony Ambardar)
- drm/bridge: anx7625: Drop EDID cache on bridge power off (Pin-yen Lin)
- ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode (Macpaul Lin)
- ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang)
- ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer)
- ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer)
- ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer)
- dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov)
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (Baochen Qiang)
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (Baochen Qiang)
- drm/v3d: Address race-condition in MMU flush (Ma?ra Canal)
- drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen)
- drm/omap: Fix possible NULL dereference (Tomi Valkeinen)
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park)
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko)
- platform/x86: panasonic-laptop: Return errno correctly in show callback (Yao Zi)
- platform/x86: panasonic-laptop: Replace snprintf in show functions with sysfs_emit (Qing Wang)
- media: atomisp: Add check for rgby_data memory allocation failure (Li Huafei)
- media: atomisp: remove #ifdef HAS_NO_HMEM (Mauro Carvalho Chehab)
- media: venus: provide ctx queue lock for ioctl synchronization (Sergey Senozhatsky)
- venus: venc: add handling for VIDIOC_ENCODER_CMD (Dikshita Agarwal)
- media: venus : Addition of support for VIDIOC_TRY_ENCODER_CMD (Dikshita Agarwal)
- media: venus : Addition of EOS Event support for Encoder (Viswanath Boma)
- media: venus: vdec: decoded picture buffer handling during reconfig sequence (Mansur Alisha Shaik)
- media: venus: venc: Use pmruntime autosuspend (Stanimir Varbanov)
- firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu)
- selftests/resctrl: Protect against array overrun during iMC config parsing (Reinette Chatre)
- arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators (Chen-Yu Tsai)
- arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names (Chen-Yu Tsai)
- arm64: dts: mt8183: jacuzzi: Move panel under aux-bus (Hsin-Yi Wang)
- arm64: dts: mt8183: jacuzzi: remove unused ddc-i2c-bus (Hsin-Yi Wang)
- regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko)
- spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time? (Jinjie Ruan)
- spi: tegra210-quad: Avoid shift-out-of-bounds (Breno Leitao)
- pmdomain: ti-sci: Add missing of_node_put() for args.np (Zhang Zekun)
- ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara)
- pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle (Clark Wang)
- arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- cgroup/bpf: only cgroup v2 can be attached by bpf programs (Chen Ridong)
- Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline" (Chen Ridong)
- arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad (Chen-Yu Tsai)
- arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4 (Hsin-Te Yuan)
- arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4 (Hsin-Te Yuan)
- tpm: fix signed/unsigned bug when checking event logs (Gregory Price)
- mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski)
- soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter)
- soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- spi: spi-fsl-lpspi: downgrade log level for pio mode (Alexander Stein)
- clocksource/drivers:sp804: Make user selectable (Mark Brown)
- kcsan, seqlock: Fix incorrect assumption in read_seqbegin() (Marco Elver)
- kcsan, seqlock: Support seqcount_latch_t (Marco Elver)
- seqlock/latch: Provide raw_read_seqcount_latch_retry() (Peter Zijlstra)
- timekeeping: Consolidate fast timekeeper (Thomas Gleixner)
- time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda)
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET)
- crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong)
- crypto: caam - add error check to caam_rsa_set_priv_key_form (Chen Ridong)
- EDAC/igen6: Avoid segmentation fault on module unload (Orange Kao)
- crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C)
- crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang)
- EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh)
- thermal: core: Initialize thermal zones before registering them (Rafael J. Wysocki)
- crypto: qat - remove faulty arbiter config reset (Ahsan Atta)
- EDAC/bluefield: Fix potential integer overflow (David Thompson)
- firmware: google: Unregister driver_info on failure (Yuan Can)
- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (Christophe JAILLET)
- hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo)
- s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada)
- acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin)
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (Masahiro Yamada)
- m68k: mvme147: Reinstate early console (Daniel Palmer)
- m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven)
- m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer)
- nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig)
- initramfs: avoid filename buffer overrun (David Disseldorp)
- mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski)
- brd: defer automatic disk creation until module initialization succeeds (Yang Erkun)
- brd: remove brd_devices_mutex mutex (Tetsuo Handa)
- s390/cio: Do not unregister the subchannel based on DNV (Vineeth Vijayan)
- kselftest/arm64: mte: fix printf type warnings about longs (Andre Przywara)
- x86/barrier: Do not serialize MSR accesses on AMD (Borislav Petkov (AMD))
- nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan)
- cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r)
- rcu-tasks: Idle tasks on offline CPUs are in quiescent states (Paul E. McKenney)
- ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao)
- ARM: 9420/1: smp: Fix SMP for xip kernels (Harith G)
- ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (Eryk Zagorski)
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang)
- ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan)
- ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan)
- can: j1939: fix error in J1939 documentation. (Alexander H?lzl)
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (Kurt Borja)
- platform/x86: dell-smbios-base: Extends support to Alienware products (Kurt Borja)
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko)
- soc: qcom: Add check devm_kasprintf() returned value (Charles Han)
- net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin)
- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann)
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan)
- selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian)
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (Benjamin Gro?e)
- mac80211: fix user-power when emulating chanctx (Ben Greear)
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (Daniel Gabay)
- ASoC: Intel: sst: Support LPE0F28 ACPI HID (Hans de Goede)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede)
- ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (Hans de Goede)
- NFS: nfs_async_write_reschedule_io must not recurse into the writeback code (Trond Myklebust)
- mm: resolve faulty mmap_region() error path behaviour (Lorenzo Stoakes)
- mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (Lorenzo Stoakes)
- mm: unconditionally close VMAs on error (Lorenzo Stoakes)
- mm: avoid unsafe VMA hook invocation when error arises on mmap hook (Lorenzo Stoakes)
- mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (Paolo Abeni)
- NFSD: Never decrement pending_async_copies on error (Chuck Lever)
- NFSD: Initialize struct nfsd4_copy earlier (Chuck Lever)
- NFSD: Limit the number of concurrent async COPY operations (Chuck Lever)
- NFSD: Async COPY result needs to return a write verifier (Chuck Lever)
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (Dai Ngo)
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab)
- mmc: sunxi-mmc: Fix A100 compatible description (Andre Przywara)
- mmc: sunxi-mmc: Add D1 MMC variant (Samuel Holland)
- drm/bridge: tc358768: Fix DSI command tx (Francesco Dolcini)
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi)
- ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov)
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi)
- KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson)
- KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (Sean Christopherson)
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (Si-Wei Liu)
- ocfs2: uncache inode which has failed entering the group (Dmitry Antipov)
- mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (Jinjiang Tu)
- x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (Baoquan He)
- ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (Harith G)
- samples: pktgen: correct dev to DEV (Wei Fang)
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Moshe Shemesh)
- net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea)
- net/mlx5: fs, lock FTE when checking if active (Mark Bloch)
- drm/rockchip: vop: Fix a dereferenced before check warning (Andy Yan)
- netlink: terminate outstanding dump on socket close (Jakub Kicinski)
- clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos)
- leds: lp55xx: Remove redundant test for invalid channel number (Michal Vok??)
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (Mostafa Saleh)
- vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event (MengEn Sun)
- ftrace: Fix regression with module command in stack_trace_filter (guoweikang)
- ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev)
- media: uvcvideo: Require entities to have a non-zero unique ID (Thadeu Lima de Souza Cascardo)
- media: uvcvideo: Stop stream during unregister (Ricardo Ribalda)
- media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui)
- media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan)
- media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan)
- media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao)
- media: imx-jpeg: Ensure power suppliers be suspended before detach them (Ming Qian)
- media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan)
- media: imx-jpeg: Set video drvdata before register video device (Ming Qian)
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (Dragan Simic)
- LTS version: v5.15.173 (Vijayendra Suman)
- 9p: fix slab cache name creation for real (Linus Torvalds)
- udf: Avoid directory type conversion failure due to ENOMEM (Jan Kara)
- udf: Allocate name buffer in directory iterator on heap (Jan Kara)
- mm/memory: add non-anonymous page check in the copy_present_page() (Yuanzheng Song)
- io_uring: fix possible deadlock in io_register_iowq_max_workers() (Hagar Hemdan)
- md/raid10: improve code of mrdev in raid10_sync_request (Li Nan)
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (Hans de Goede)
- HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (Kenneth Albanowski)
- fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni)
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (Yuan Can)
- powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman)
- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (Ian Forbes)
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter)
- crypto: marvell/cesa - Disable hash algorithms (Herbert Xu)
- bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel)
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli)
- HID: multitouch: Add support for B2402FVA track point (Stefan Blum)
- block: Fix elevator_get_default() checking for NULL q->tag_set (SurajSonawane2415)
- irqchip/ocelot: Fix trigger register address (Sergey Matsievskiy)
- 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato)
- LTS version: v5.15.172 (Vijayendra Suman)
- ALSA: usb-audio: Add endianness annotations (Jan Sch?r)
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim)
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim)
- ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r)
- ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r)
- ucounts: fix counter leak in inc_rlimit_get_ucounts() (Andrei Vagin)
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner)
- irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier)
- USB: serial: option: add Quectel RG650V (Beno?t Monin)
- USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu)
- USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter)
- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (Dan Carpenter)
- usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu)
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens)
- net: do not delay dst_entries_add() in dst_release() (Eric Dumazet)
- net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov)
- btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana)
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu)
- io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (Jens Axboe)
- io_uring: use kiocb_{start,end}_write() helpers (Amir Goldstein)
- fs: create kiocb_{start,end}_write() helpers (Amir Goldstein)
- io_uring: rename kiocb_end_write() local helper (Amir Goldstein)
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (Benjamin Segall)
- ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (Takashi Iwai)
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie)
- dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai)
- dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai)
- dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai)
- thermal/drivers/qcom/lmh: Remove false lockdep backtrace (Dmitry Baryshkov)
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher)
- drm/amdgpu: Adjust debugfs eviction and IB access permissions (Alex Deucher)
- pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher)
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (Mauro Carvalho Chehab)
- media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab)
- media: pulse8-cec: fix data timestamp at pulse8_setup() (Mauro Carvalho Chehab)
- media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab)
- media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab)
- ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (Amelie Delaunay)
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov)
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (Johannes Thumshirn)
- media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab)
- media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab)
- media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab)
- media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab)
- net: arc: fix the device for dma_map_single/dma_unmap_single (Johan Jonker)
- net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case (N?colas F. R. A. Prado)
- net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (Diogo Silva)
- net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang)
- i40e: fix race condition by adding filter's intermediate sync state (Aleksandr Loktionov)
- can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi)
- sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long)
- net: enetc: set MAC address to the VF net_device (Wei Fang)
- security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong)
- nfs: avoid i_lock contention in nfs_clear_invalid_mapping (Mike Snitzer)
- NFSv3: handle out-of-order write replies. (NeilBrown)
- NFS: Add a tracepoint to show the results of nfs_set_cache_invalid() (Benjamin Coddington)
- NFSv3: only use NFS timeout for MOUNT when protocols are compatible (NeilBrown)
- HID: core: zero-initialize the report buffer (Jiri Kosina)
- ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner)
- ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner)
- ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner)
- ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner)
- arm64: dts: imx8mp: correct sdhc ipg clk (Peng Fan)
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (Heiko Stuebner)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven)



From el-errata at oss.oracle.com  Thu Feb 13 14:42:42 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:42 -0800
Subject: [El-errata] ELBA-2025-20098 Oracle Linux 9 linux-firmware bug fix
 update
Message-ID: <mailman.98.1739457771.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20098

http://linux.oracle.com/errata/ELBA-2025-20098.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
iwl1000-firmware-39.31.5.1-999.38.el9.noarch.rpm
iwl100-firmware-39.31.5.1-999.38.el9.noarch.rpm
iwl105-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl135-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl2000-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl2030-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl3160-firmware-25.30.13.0-999.38.el9.noarch.rpm
iwl3945-firmware-15.32.2.9-999.38.el9.noarch.rpm
iwl4965-firmware-228.61.2.24-999.38.el9.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.38.el9.noarch.rpm
iwl5150-firmware-8.24.2.2-999.38.el9.noarch.rpm
iwl6000-firmware-9.221.4.1-999.38.el9.noarch.rpm
iwl6000g2a-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl6000g2b-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl6050-firmware-41.28.5.1-999.38.el9.noarch.rpm
iwl7260-firmware-25.30.13.0-999.38.el9.noarch.rpm
iwlax2xx-firmware-20250203-999.38.el9.noarch.rpm
libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
linux-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
linux-firmware-core-20250203-999.38.git0fd450ee.el9.noarch.rpm
linux-firmware-whence-20250203-999.38.git0fd450ee.el9.noarch.rpm
liquidio-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
netronome-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm

aarch64:
iwl1000-firmware-39.31.5.1-999.38.el9.noarch.rpm
iwl100-firmware-39.31.5.1-999.38.el9.noarch.rpm
iwl105-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl135-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl2000-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl2030-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl3160-firmware-25.30.13.0-999.38.el9.noarch.rpm
iwl3945-firmware-15.32.2.9-999.38.el9.noarch.rpm
iwl4965-firmware-228.61.2.24-999.38.el9.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.38.el9.noarch.rpm
iwl5150-firmware-8.24.2.2-999.38.el9.noarch.rpm
iwl6000-firmware-9.221.4.1-999.38.el9.noarch.rpm
iwl6000g2a-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl6000g2b-firmware-18.168.6.1-999.38.el9.noarch.rpm
iwl6050-firmware-41.28.5.1-999.38.el9.noarch.rpm
iwl7260-firmware-25.30.13.0-999.38.el9.noarch.rpm
iwlax2xx-firmware-20250203-999.38.el9.noarch.rpm
libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
linux-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
linux-firmware-core-20250203-999.38.git0fd450ee.el9.noarch.rpm
linux-firmware-whence-20250203-999.38.git0fd450ee.el9.noarch.rpm
liquidio-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm
netronome-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//linux-firmware-20250203-999.38.git0fd450ee.el9.src.rpm



Description of changes:

[20250203-999.38.git0fd450ee.el9]
- Rebase to latest upstream [Orabug: 37535629]
- Avoid showing microcode reload error if it's up to date [Orabug: 37387663]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:43 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:43 -0800
Subject: [El-errata] ELBA-2025-20104 Oracle Linux 9 osinfo-db bug fix update
Message-ID: <mailman.99.1739457774.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20104

http://linux.oracle.com/errata/ELBA-2025-20104.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
osinfo-db-20240701-2.0.2.el9.noarch.rpm

aarch64:
osinfo-db-20240701-2.0.2.el9.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//osinfo-db-20240701-2.0.2.el9.src.rpm



Description of changes:

[20240701-2.0.2]
- Add OL10.0 and RHEL10.0 data [Orabug: 37471589]



From el-errata at oss.oracle.com  Thu Feb 13 14:42:44 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:44 -0800
Subject: [El-errata] ELSA-2025-20095 Important: Oracle Linux 9 Unbreakable
 Enterprise kernel security update
Message-ID: <mailman.100.1739457775.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20095

http://linux.oracle.com/errata/ELSA-2025-20095.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:


aarch64:
bpftool-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-container-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-core-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-debug-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-devel-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-doc-5.15.0-305.176.4.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-305.176.4.el9uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-305.176.4.el9uek.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-uek-5.15.0-305.176.4.el9uek.src.rpm

Related CVEs:

CVE-2024-26595
CVE-2024-38538
CVE-2024-38556
CVE-2024-39494
CVE-2024-40906
CVE-2024-40939
CVE-2024-41080
CVE-2024-42073
CVE-2024-42138
CVE-2024-42268
CVE-2024-42315
CVE-2024-43864
CVE-2024-44940
CVE-2024-44949
CVE-2024-46809
CVE-2024-46841
CVE-2024-46871
CVE-2024-47730
CVE-2024-49950
CVE-2024-49974
CVE-2024-49996
CVE-2024-49998
CVE-2024-50036
CVE-2024-50055
CVE-2024-50121
CVE-2024-50241
CVE-2024-50261
CVE-2024-50264
CVE-2024-50265
CVE-2024-50267
CVE-2024-50268
CVE-2024-50269
CVE-2024-50273
CVE-2024-50275
CVE-2024-50278
CVE-2024-50279
CVE-2024-50282
CVE-2024-50283
CVE-2024-50287
CVE-2024-50290
CVE-2024-50292
CVE-2024-50295
CVE-2024-50296
CVE-2024-50299
CVE-2024-50301
CVE-2024-50302
CVE-2024-53052
CVE-2024-53061
CVE-2024-53063
CVE-2024-53066
CVE-2024-53073
CVE-2024-53088
CVE-2024-53096
CVE-2024-53099
CVE-2024-53101
CVE-2024-53103
CVE-2024-53104
CVE-2024-53112
CVE-2024-53113
CVE-2024-53119
CVE-2024-53120
CVE-2024-53122
CVE-2024-53125
CVE-2024-53129
CVE-2024-53130
CVE-2024-53131
CVE-2024-53135
CVE-2024-53140
CVE-2024-53141
CVE-2024-53142
CVE-2024-53145
CVE-2024-53146
CVE-2024-53148
CVE-2024-53150
CVE-2024-53151
CVE-2024-53155
CVE-2024-53156
CVE-2024-53157
CVE-2024-53158
CVE-2024-53161
CVE-2024-53164
CVE-2024-53165
CVE-2024-53171
CVE-2024-53172
CVE-2024-53173
CVE-2024-53174
CVE-2024-53180
CVE-2024-53181
CVE-2024-53183
CVE-2024-53184
CVE-2024-53194
CVE-2024-53197
CVE-2024-53198
CVE-2024-53214
CVE-2024-53215
CVE-2024-53217
CVE-2024-53227
CVE-2024-53237
CVE-2024-53239
CVE-2024-53240
CVE-2024-53241
CVE-2024-56531
CVE-2024-56532
CVE-2024-56533
CVE-2024-56539
CVE-2024-56548
CVE-2024-56558
CVE-2024-56562
CVE-2024-56567
CVE-2024-56568
CVE-2024-56569
CVE-2024-56570
CVE-2024-56571
CVE-2024-56572
CVE-2024-56574
CVE-2024-56575
CVE-2024-56576
CVE-2024-56578
CVE-2024-56581
CVE-2024-56586
CVE-2024-56587
CVE-2024-56589
CVE-2024-56590
CVE-2024-56593
CVE-2024-56594
CVE-2024-56595
CVE-2024-56596
CVE-2024-56597
CVE-2024-56598
CVE-2024-56600
CVE-2024-56601
CVE-2024-56602
CVE-2024-56603
CVE-2024-56605
CVE-2024-56606
CVE-2024-56610
CVE-2024-56614
CVE-2024-56615
CVE-2024-56616
CVE-2024-56619
CVE-2024-56622
CVE-2024-56623
CVE-2024-56626
CVE-2024-56627
CVE-2024-56629
CVE-2024-56630
CVE-2024-56633
CVE-2024-56634
CVE-2024-56636
CVE-2024-56637
CVE-2024-56640
CVE-2024-56642
CVE-2024-56643
CVE-2024-56644
CVE-2024-56648
CVE-2024-56650
CVE-2024-56659
CVE-2024-56661
CVE-2024-56662
CVE-2024-56670
CVE-2024-56679
CVE-2024-56681
CVE-2024-56688
CVE-2024-56690
CVE-2024-56691
CVE-2024-56693
CVE-2024-56694
CVE-2024-56698
CVE-2024-56700
CVE-2024-56701
CVE-2024-56704
CVE-2024-56705
CVE-2024-56708
CVE-2024-56715
CVE-2024-56716
CVE-2024-56723
CVE-2024-56724
CVE-2024-56726
CVE-2024-56728
CVE-2024-56739
CVE-2024-56741
CVE-2024-56745
CVE-2024-56746
CVE-2024-56747
CVE-2024-56748
CVE-2024-56754
CVE-2024-56756
CVE-2024-56759
CVE-2024-56763
CVE-2024-56766
CVE-2024-56767
CVE-2024-56769




Description of changes:

[5.15.0-305.176.4.el9uek]
- x86/asm: Make serialize() always_inline (Juergen Gross) 
- hwmon: (tmp513) Fix division of negative numbers (David Lechner) 
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (Pratyush Yadav) 
- Revert "regmap: detach regmap from dev on regmap_exit" (Greg Kroah-Hartman) 
- Revert "drm/amdgpu: rework resume handling for display (v2)" (Greg Kroah-Hartman) 
- Revert "PCI: Use preserve_config in place of pci_flags" (Terry Tritton) 
- virtio-net: synchronize probe with ndo_set_features (Jason Wang)  [Orabug: 36637822]
- virtio-net: synchronize operstate with admin state on up/down (Jason Wang)  [Orabug: 36637822]
- virtio: allow driver to disable the configure change notification (Jason Wang)  [Orabug: 36637822]
- virtio: rename virtio_config_enabled to virtio_config_core_enabled (Jason Wang)  [Orabug: 36637822]
- mlxsw: pci: Fix driver initialization with Spectrum-4 (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Fix driver initialization with old firmware (Ido Schimmel)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128 (Maksim Kiselev)  [Orabug: 36811057]
- net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5e: Fix MACsec state loss upon state update in offload path (Emeel Hakim)  [Orabug: 36811057]
- net/mlx5e: Change the warning when ignore_flow_level is not supported (Jianbo Liu)  [Orabug: 36811057]
- Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (Gavin Li)  [Orabug: 36811057]
- IB/mlx5: Don't expose debugfs entries for RRoCE general parameters if not supported (Mark Zhang)  [Orabug: 36811057]
- net/mlx5e: Ignore IPsec replay window values on sender side (Leon Romanovsky)  [Orabug: 36811057]
- net/mlx5e: Allow software parsing when IPsec crypto is enabled (Leon Romanovsky)  [Orabug: 36811057]
- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Bridge, fix multicast packets sent to uplink (Moshe Shemesh)  [Orabug: 36811057]
- net/mlx5: Fix a WARN upon a callback command failure (Yishai Hadas)  [Orabug: 36811057]
- net/mlx5e: Fix peer flow lists handling (Vlad Buslov)  [Orabug: 36811057]
- net/mlx5: Fix query of sd_group field (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed)  [Orabug: 36811057]
- selftests: mlxsw: qos_pfc: Remove wrong description (Amit Cohen)  [Orabug: 36811057]
- mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path (Ido Schimmel)  [Orabug: 36811057]
- gpio: mlxbf3: add an error code check in mlxbf3_gpio_probe (Su Hui)  [Orabug: 36811057]
- vdpa/mlx5: Add mkey leak detection (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Introduce reference counting to mrs (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Use vq suspend/resume during .set_map (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Mark vq state for modification in hw vq (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Mark vq addrs for modification in hw vq (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Introduce per vq and device resume (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Allow modifying multiple vq fields in one modify command (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Expose resumable vq capability (Dragos Tatulea)  [Orabug: 36811057]
- Revert "mlx5 updates 2023-12-20" (Jakub Kicinski)  [Orabug: 36811057]
- net/mlx5: DPLL, Implement fractional frequency offset get pin op (Jiri Pirko)  [Orabug: 36811057]
- net/mlx5: DPLL, Use struct to get values from mlx5_dpll_synce_status_get() (Jiri Pirko)  [Orabug: 36811057]
- net: macsec: move sci_to_cpu to macsec header (Radu Pirea (NXP OSS))  [Orabug: 36811057]
- net/mlx5: Implement management PF Ethernet profile (Armen Ratner)  [Orabug: 36811057]
- net/mlx5: Enable SD feature (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Block TLS device offload on combined SD netdev (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Support per-mdev queue counter (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Support cross-vhca RSS (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Let channels be SD-aware (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Create EN core HW resources for all secondary devices (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Create single netdev per SD group (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Add informative prints in kernel log (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement steering for primary and secondaries (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement devcom communication and primary election (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement basic query and instantiation (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Introduce SD lib (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Fix query of sd_group field (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Set NVE flood profile as part of FID configuration (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an "any" packet type (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add nve_flood_prf_id field to SFMR (Petr Machata)  [Orabug: 36811057]
- net/mlx5: DR, Use swap() instead of open coding it (Jiapeng Chong)  [Orabug: 36811057]
- net/mlx5: devcom, Add component size getter (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Decouple CQ from priv (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Add wrapping for auxiliary_driver ops and remove unused args (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Statify function mlx5e_monitor_counter_arm (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Move TISes from priv to mdev HW resources (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Remove TLS-specific logic in generic create TIS API (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: fs, Command to control TX flow table root (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: fs, Command to control L2TABLE entry silent mode (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Expose Management PCIe Index Register (MPIR) (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Add mlx5_ifc bits used for supporting single netdev Socket-Direct (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Manage ICM type of SW encap (Shun Hao)  [Orabug: 36811057]
- RDMA/mlx5: Support handling of SW encap ICM area (Shun Hao)  [Orabug: 36811057]
- net/mlx5: Introduce indirect-sw-encap ICM properties (Shun Hao)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: Use logical OR instead of bitwise OR in dwcmshc_probe() (Nathan Chancellor)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: Add support for T-Head TH1520 (Drew Fustini)  [Orabug: 36811057]
- mmc: sdhci: add __sdhci_execute_tuning() to header (Drew Fustini)  [Orabug: 36811057]
- mlxsw: spectrum: Use CFF mode where available (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add support for rFID family in CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add a family for bridge FIDs in CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Initialize flood profiles in CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add profile_id to flood profile (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an object to keep flood profiles (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add hooks for RSP table maintenance (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add a not-UC packet type (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op for packing SFMR (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op to get PGT address of a FID (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op to get PGT allocation size (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op for flood table initialization (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Move mlxsw_sp_fid_flood_table_init() up (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Make mlxsw_sp_fid_ops.setup return an int (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Split a helper out of mlxsw_sp_fid_flood_table_mid() (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Rename FID ops, families, arrays (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Privatize FID families (Petr Machata)  [Orabug: 36811057]
- mlxsw: pci: Fix missing error checking (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: spectrum_router: Call RIF setup before obtaining FID (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_router: Add a helper to get subport number from a RIF (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Extract SFMR packing into a helper (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Drop unnecessary conditions (Petr Machata)  [Orabug: 36811057]
- mlxsw: pci: Permit enabling CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: core, pci: Add plumbing related to CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add to SFMR register the fields related to CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Extract flood-mode specific part of mlxsw_reg_sfmr_pack() (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Drop unnecessary writes from mlxsw_reg_sfmr_pack() (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Mark SFGC & some SFMR fields as reserved in CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add Switch FID Flooding Profiles Register (Petr Machata)  [Orabug: 36811057]
- mlxsw: resources: Add max_cap_nve_flood_prf (Petr Machata)  [Orabug: 36811057]
- mlxsw: cmd: Add MLXSW_CMD_MBOX_CONFIG_PROFILE_FLOOD_MODE_CFF (Petr Machata)  [Orabug: 36811057]
- mlxsw: cmd: Add cmd_mbox.query_fw.cff_support (Petr Machata)  [Orabug: 36811057]
- EDAC/bluefield: Convert to platform remove callback returning void (Uwe Kleine-K?nig)  [Orabug: 36811057]
- selftests: mlxsw: Add PCI reset test (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Implement PCI reset handlers (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Add support for new reset flow (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Move software reset code to a separate function (Amit Cohen)  [Orabug: 36811057]
- mlxsw: pci: Rename mlxsw_pci_sw_reset() (Amit Cohen)  [Orabug: 36811057]
- mlxsw: Extend MRSR pack() function to support new commands (Amit Cohen)  [Orabug: 36811057]
- net/mlx5e: Remove early assignment to netdev->features (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Add local loopback counter to vport rep stats (Or Har-Toov)  [Orabug: 36811057]
- net/mlx5: Query maximum frequency adjustment of the PTP hardware clock (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Convert scaled ppm values outside the s32 range for PHC frequency adjustments (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Initialize clock->ptp_info inside mlx5_init_timer_clock (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Refactor real time clock operation checks for PHC (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5e: Access array with enum values instead of magic numbers (Gal Pressman)  [Orabug: 36811057]
- net/mlx5: simplify mlx5_set_driver_version string assignments (Justin Stitt)  [Orabug: 36811057]
- net/mlx5: Annotate struct mlx5_flow_handle with __counted_by (Kees Cook)  [Orabug: 36811057]
- net/mlx5: Annotate struct mlx5_fc_bulk with __counted_by (Kees Cook)  [Orabug: 36811057]
- net/mlx5e: Some cleanup in mlx5e_tc_stats_matchall() (Amir Tzin)  [Orabug: 36811057]
- net/mlx5: Allow sync reset flow when BF MGT interface device is present (Moshe Shemesh)  [Orabug: 36811057]
- net/mlx5: print change on SW reset semaphore returns busy (Moshe Shemesh)  [Orabug: 36811057]
- vdpa/mlx5: clean up indenting in handle_ctrl_vlan() (Dan Carpenter)  [Orabug: 36811057]
- vdpa/mlx5: fix error code for deleting vlan (Dan Carpenter)  [Orabug: 36811057]
- vdpa/mlx5: Fix syntax errors in comments (Xiang wangx)  [Orabug: 36811057]
- macsec: Fix use-after-free while sending the offloading packet (Jianbo Liu)  [Orabug: 37268700]  {CVE-2024-50261}
- xfrm: Export symbol xfrm_dev_state_delete. (Steffen Klassert)  [Orabug: 37357287]
- xfrm: Fix unregister netdevice hang on hardware offload. (Steffen Klassert)  [Orabug: 37357287]
- xfrm: fix a data-race in xfrm_lookup_with_ifid() (Eric Dumazet)  [Orabug: 37357287]
- xfrm: generalize xdo_dev_state_update_curlft to allow statistics update (Leon Romanovsky)  [Orabug: 37357287]
- xfrm: copy_to_user_state fetch offloaded SA packets/bytes statistics (Raed Salem)  [Orabug: 37357287]
- xfrm: annotate data-race around use_time (Eric Dumazet)  [Orabug: 37357287]
- xfrm: consistently use time64_t in xfrm_timer_handler() (Eric Dumazet)  [Orabug: 37357287]
- cpufreq: intel_pstate: Update Balance-performance EPP for Granite Rapids (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update Balance performance EPP for Emerald Rapids (Pedro Henrique Kopper)  [Orabug: 37383554]
- cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update Meteor Lake EPPs (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Switch to new Intel CPU model defines (Tony Luck)  [Orabug: 37383554]
- cpufreq: Switch to new Intel CPU model defines (Tony Luck)  [Orabug: 37383554]
- x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h (Tony Luck)  [Orabug: 37383554]
- x86/cpu: Add model number for another Intel Arrow Lake mobile processor (Tony Luck)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update default EPPs for Meteor Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Allow model specific EPPs (Srinivas Pandruvada)  [Orabug: 37383554]
- x86/cpu: Add model number for Intel Clearwater Forest processor (Tony Luck)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update hybrid scaling factor for Meteor Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Prioritize firmware-provided balance performance EPP (Srinivas Pandruvada)  [Orabug: 37383554]
- x86/cpu: Add model number for Intel Arrow Lake mobile processor (Tony Luck)  [Orabug: 37383554]
- x86/cpu: Update Hybrids (Peter Zijlstra)  [Orabug: 37383554]
- cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Enable HWP IO boost for all servers (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Use firmware default EPP (Srinivas Pandruvada)  [Orabug: 37383554]
- net/mlx5: Add a timeout to acquire the command queue semaphore (Akiva Goldberger)  [Orabug: 37388415]
- PCI: Fix pci_enable_acs() support for the ACS quirks (Jason Gunthorpe)  [Orabug: 37477375]
- PCI: Clear Secondary Status errors after enumeration (Vidya Sagar)  [Orabug: 37477375]
- PCI/AER: Configure ECRC only if AER is native (Vidya Sagar)  [Orabug: 37477375]
- PCI: Extend ACS configurability (Vidya Sagar)  [Orabug: 37477375]
- NFSv4/pNFS: Do layout state recovery upon reboot (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Remove redundant call to unhash the layout (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Give nfs4_proc_layoutreturn() a flags argument (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Retry the layout return later in case of a timeout or reboot (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Handle server reboots in pnfs_poc_release() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Add a helper to defer failed layoutreturn calls (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Add support for the PNFS_LAYOUT_FILE_BULK_RETURN flag (Trond Myklebust)  [Orabug: 37477755]
- pNFS: Add a flag argument to pnfs_destroy_layouts_byclid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4: Clean up encode_nfs4_stateid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4.1: constify the stateid argument in nfs41_test_stateid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Remove redundant list check (Trond Myklebust)  [Orabug: 37477755]
- uek-rpm: Enable CONFIG_SENSORS_ARM_SCMI and CONFIG_MVL_MHU (Thomas Tai)  [Orabug: 37498899]

[5.15.0-305.176.3.el9uek]
- LTS version: v5.15.176 (Vijayendra Suman)
- mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (Seiji Nishikawa)
- dt-bindings: display: adi,adv7533: Drop single lane support (Biju Das)
- drm: adv7511: Drop dsi single lane support (Biju Das)
- net/sctp: Prevent autoclose integer overflow in sctp_association_init() (Nikolay Kuratov)
- sky2: Add device ID 11ab:4373 for Marvell 88E8075 (Pascal Hambourg)
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (Evgenii Shatokhin)
- RDMA/uverbs: Prevent integer overflow issue (Dan Carpenter)
- kcov: mark in_softirq_really() as __always_inline (Arnd Bergmann)
- modpost: fix the missed iteration for the max bit in do_input() (Masahiro Yamada)
- modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (Masahiro Yamada)
- usb: xhci: Avoid queuing redundant Stop Endpoint commands (Michal Pecio)
- ARC: build: Try to guess GCC variant of cross compiler (Leon Romanovsky)
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (Uros Bizjak)
- net: usb: qmi_wwan: add Telit FE910C04 compositions (Daniele Palmas)
- bpf: fix potential error return (Anton Protopopov)
- sound: usb: format: don't warn that raw DSD is unsupported (Adrian Ratiu)
- sound: usb: enable DSD output for ddHiFi TC44C (Adrian Ratiu)
- btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (Filipe Manana)
- drm/amdkfd: Correct the migration DMA map direction (Prike Liang)
- wifi: mac80211: wake the queues in case of failure in resume (Emmanuel Grumbach)
- btrfs: sysfs: fix direct super block member reads (Qu Wenruo)
- btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit (Anand Jain)
- btrfs: fix use-after-free when COWing tree bock and tracing is enabled (Filipe Manana)
- btrfs: rename and export __btrfs_cow_block() (Filipe Manana)
- ila: serialize calls to nf_register_net_hooks() (Eric Dumazet)
- af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet)
- af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet)
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (Maciej S. Szmigiero)
- net: restrict SO_REUSEPORT to inet sockets (Eric Dumazet)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (Li Zhijian)
- net: mv643xx_eth: fix an OF node reference leak (Joe Hattori)
- eth: bcmsysport: fix call balance of priv->clk handling routines (Vitalii Mordan)
- ALSA: usb-audio: US16x08: Initialize array before use (Tanya Agarwal)
- net: llc: reset skb->transport_header (Antonio Pastor)
- netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext (Pablo Neira Ayuso)
- drm/i915/dg1: Fix power gate sequence. (Rodrigo Vivi)
- netrom: check buffer length before accessing it (Ilya Shchipletsov)
- net: fix memory leak in tcp_conn_request() (Wang Liang)
- net: stmmac: restructure the error path of stmmac_probe_config_dt() (Joe Hattori)
- net: stmmac: don't create a MDIO bus if unnecessary (Andrew Halaney)
- net: stmmac: platform: provide devm_stmmac_probe_config_dt() (Bartosz Golaszewski)
- RDMA/hns: Fix missing flush CQE for DWQE (Chengchang Tang)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (Chengchang Tang)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (wenglianfa)
- RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() (Yunsheng Lin)
- RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() (Yixing Liu)
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (Stefan Ekenberg)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (Selvin Xavier)
- RDMA/bnxt_re: Fix max_qp_wrs reported (Selvin Xavier)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (Kalesh AP)
- RDMA/bnxt_re: Add check for path mtu in modify_qp (Saravanan Vajravel)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (Patrisious Haddad)
- xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic (Mathias Nyman)
- usb: xhci: Limit Stop Endpoint retries (Michal Pecio)
- xhci: retry Stop Endpoint on buggy NEC controllers (Michal Pecio)
- thunderbolt: Add support for Intel Panther Lake-M/P (Mika Westerberg)
- thunderbolt: Add support for Intel Lunar Lake (Mika Westerberg)
- thunderbolt: Add Intel Barlow Ridge PCI ID (Mika Westerberg)
- thunderbolt: Add support for Intel Meteor Lake (Mika Westerberg)
- thunderbolt: Add support for Intel Raptor Lake (George D Sworo)
- tracing: Have process_string() also allow arrays (Steven Rostedt)
- selinux: ignore unknown extended permissions (Thi?baud Weksteen)
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (Naman Jain)
- net: dsa: improve shutdown sequence (Vladimir Oltean)
- nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (Yang Erkun)
- btrfs: avoid monopolizing a core when activating a swap file (Filipe Manana)
- power: supply: gpio-charger: Fix set charge current limits (Dimitri Fedrau)
- tracing: Prevent bad count for tracing_cpumask_write (Lizhi Xu)
- tracing: Constify string literal data member in struct trace_event_call (Christian G?ttsche)
- ksmbd: fix racy issue from session lookup and expire (Namjae Jeon)
- lib: stackinit: hide never-taken branch from compiler (Kees Cook)
- drm/dp_mst: Verify request type in the corresponding down message reply (Imre Deak)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs (Catalin Marinas)
- arm64: mm: Rename asid2idx() to ctxid2asid() (Yunfeng Ye)
- ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write (Jordy Zomer)
- ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read (Jordy Zomer)
- drm/dp_mst: Fix MST sideband message body length check (Imre Deak)
- bpf: Check validity of link->type in bpf_link_show_fdinfo() (Hou Tao)
- MIPS: Probe toolchain support of -msym32 (Jiaxun Yang)
- vmalloc: fix accounting with i915 (Matthew Wilcox (Oracle))
- virtio-blk: don't keep queue frozen during system suspend (Ming Lei)
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (Cathy Avery)
- scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time (Ranjan Kumar)
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (Armin Wolf)
- regmap: Use correct format specifier for logging range errors (Mark Brown)
- ALSA: hda/conexant: fix Z60MR100 startup pop issue (bo liu)
- scsi: megaraid_sas: Fix for a potential deadlock (Tomas Henzl)
- scsi: qla1280: Fix hw revision numbering for ISP1020/1040 (Magnus Lindholm)
- watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 (James Hilliard)
- tracing/kprobe: Make trace_kprobe's module callback called after jump_label update (Masami Hiramatsu (Google))
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter)
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (Chen Ridong)
- dmaengine: dw: Select only supported masters for ACPI devices (Andy Shevchenko)
- dmaengine: mv_xor: fix child node refcount handling in early exit (Javier Carrasco)
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (Zijun Hu)
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (Zijun Hu)
- phy: core: Fix that API devm_phy_put() fails to release the phy (Zijun Hu)
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (Zijun Hu)
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (Zijun Hu)
- mtd: rawnand: arasan: Fix missing de-registration of NAND (Maciej Andrzejewski)
- mtd: rawnand: arasan: Fix double assertion of chip-select (Maciej Andrzejewski)
- mtd: diskonchip: Cast an operand to prevent potential overflow (Zichen Xie)
- nfsd: restore callback functionality for NFSv4.0 (NeilBrown)
- bpf: Check negative offsets in __bpf_skb_min_len() (Cong Wang)
- tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection (Zijian Zhang)
- tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() (Cong Wang)
- mm/vmstat: fix a W=1 clang compiler warning (Bart Van Assche)
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (Nikita Zhandarovich)
- drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update (Michel D?nzer)
- epoll: Add synchronous wakeup support for ep_poll_callback (Xuewen Yan)
- ceph: validate snapdirname option length when mounting (Ilya Dryomov)
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (Zijun Hu)
- of: Fix error path in of_parse_phandle_with_args_map() (Herve Codina)
- udmabuf: also check for F_SEAL_FUTURE_WRITE (Jann Horn)
- nilfs2: prevent use of deleted inode (Edward Adam Davis)
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu)
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (Trond Myklebust)
- tracing: Add "%s" check in test_event_printk() (Steven Rostedt)
- tracing: Add missing helper functions in event pointer dereference check (Steven Rostedt)
- tracing: Fix test_event_printk() to process entire print argument (Steven Rostedt)
- KVM: x86: Play nice with protected guests in complete_hypercall_exit() (Sean Christopherson)
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (Michael Kelley)
- btrfs: tree-checker: reject inline extent items with 0 ref count (Qu Wenruo)
- zram: refuse to use zero sized block device as backing device (Kairui Song)
- sh: clk: Fix clk_enable() to return 0 on NULL clk (Geert Uytterhoeven)
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (Murad Masimov)
- hwmon: (tmp513) Fix Current Register value interpretation (Murad Masimov)
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (Murad Masimov)
- hwmon: (tmp513) Use SI constants from units.h (Andy Shevchenko)
- hwmon: (tmp513) Simplify with dev_err_probe() (Andy Shevchenko)
- hwmon: (tmp513) Don't use "proxy" headers (Andy Shevchenko)
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (Ville Syrj?l?)
- USB: serial: option: add Telit FE910C04 rmnet compositions (Daniele Palmas)
- USB: serial: option: add MediaTek T7XX compositions (Jack Wu)
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (Mank Wang)
- USB: serial: option: add MeiG Smart SLM770A (Michal Hrusecky)
- USB: serial: option: add TCL IK512 MBIM & ECM (Daniel Swanemar)
- efivarfs: Fix error on non-existent file (James Bottomley)
- i2c: riic: Always round-up when calculating bus period (Geert Uytterhoeven)
- chelsio/chtls: prevent potential integer overflow on 32bit (Dan Carpenter)
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (Prathamesh Shete)
- net: mdiobus: fix an OF node reference leak (Joe Hattori)
- netfilter: ipset: Fix for recursive locking warning (Phil Sutter)
- net: ethernet: bgmac-platform: fix an OF node reference leak (Joe Hattori)
- net: hinic: Fix cleanup in create_rxqs/txqs() (Dan Carpenter)
- ionic: use ee->offset when returning sprom data (Shannon Nelson)
- ionic: Fix netdev notifier unregister on failure (Brett Creeley)
- netdevsim: prevent bad user input in nsim_dev_health_break_write() (Eric Dumazet)
- net/smc: check return value of sock_recvmsg when draining clc data (Guangguan Wang)
- net/smc: check smcd_v2_ext_offset when receiving proposal msg (Guangguan Wang)
- net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (Guangguan Wang)
- net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll (Guangguan Wang)
- erofs: fix incorrect symlink detection in fast symlink (Gao Xiang)
- i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun)
- usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled (Peng Hongchi)
- MIPS: Loongson64: DTS: Fix msi node for ls7a (Jiaxun Yang)
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (Ajit Khaparde)
- PCI: vmd: Create domain symlink before pci_bus_add_devices() (Jiwei Sun)
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (Pierre-Louis Bossart)
- usb: cdns3: Add quirk flag to enable suspend residency (Roger Quadros)
- ALSA: usb: Fix UBSAN warning in parse_audio_unit() (Takashi Iwai)
- PCI/AER: Disable AER service on suspend (Kai-Heng Feng)
- PCI: Use preserve_config in place of pci_flags (Vidya Sagar)
- net: sched: fix ordering of qlen adjustment (Lion Ackermann)
- LTS version: v5.15.175 (Vijayendra Suman)
- x86/static-call: fix 32-bit build (Juergen Gross)
- ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter)
- x86/xen: remove hypercall page (Juergen Gross)
- x86/xen: use new hypercall functions instead of hypercall page (Juergen Gross)
- x86/xen: add central hypercall functions (Juergen Gross)
- x86/xen: don't do PV iret hypercall through hypercall page (Juergen Gross)
- x86/static-call: provide a way to do very early static-call updates (Juergen Gross)
- objtool/x86: allow syscall instruction (Juergen Gross)
- x86: make get_cpu_vendor() accessible from Xen code (Juergen Gross)
- xen/netfront: fix crash when removing device (Juergen Gross)
- Revert "parisc: fix a possible DMA corruption" (Greg Kroah-Hartman)
- tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov)
- bpf: sync_linked_regs() must preserve subreg_def (Eduard Zingerman)
- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor)
- ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin)
- team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann)
- bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann)
- net/sched: netem: account for backlog updates from child qdisc (Martin Ottens)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (Paul Barker)
- qca_spi: Make driver probing reliable (Stefan Wahren)
- qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren)
- cxgb4: use port number to set mac addr (Anumula Murali Mohan Reddy)
- ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen)
- net: sparx5: fix the maximum frame length register (Daniel Machon)
- net: sparx5: fix FDMA performance issue (Daniel Machon)
- net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet)
- ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init() (Thomas Wei?schuh)
- ptp: kvm: Use decrypted memory in confidential guest on x86 (Jeremi Piotrowski)
- selftests: mlxsw: sharedbuffer: Remove duplicate test cases (Danielle Ratson)
- selftests: mlxsw: sharedbuffer: Remove h1 ingress test case (Danielle Ratson)
- tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet)
- batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel)
- batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel)
- batman-adv: Do not send uninitialized TT changes (Remi Pommarel)
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (Suraj Sonawane)
- exfat: fix potential deadlock on __exfat_get_dentry_set (Sungjong Seo)
- virtio/vsock: Fix accept_queue memory leak (Michal Luczaj)
- bpf, sockmap: Fix update element with same (Michal Luczaj)
- xfs: fix scrub tracepoints when inode-rooted btrees are involved (Darrick J. Wong)
- xfs: return from xfs_symlink_verify early on V4 filesystems (Darrick J. Wong)
- xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong)
- xfs: update btree keys correctly when _insrec splits an inode root block (Darrick J. Wong)
- drm/i915: Fix memory leak by correcting cache object name in error handler (Jiasheng Jiang)
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu)
- usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan)
- usb: dwc2: Fix HCD port connection race (Stefan Wahren)
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren)
- usb: dwc2: Fix HCD resume (Stefan Wahren)
- ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori)
- usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson)
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (Jaakko Salo)
- tcp: check space before adding MPTCP SYN options (MoYuanhao)
- LTS version: v5.15.174 (Vijayendra Suman)
- Bluetooth: hci_core: Fix calling mgmt_device_connected (Luiz Augusto von Dentz)
- net/smc: Fix af_ops of child socket pointing to released memory (Karsten Graul)
- media: venus: vdec: fixed possible memory leak issue (Ameer Hamza)
- serial: amba-pl011: fix build regression (Arnd Bergmann)
- drm/amdgpu: rework resume handling for display (v2) (Alex Deucher)
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (Wayne Lin)
- net: dsa: microchip: correct KSZ8795 static MAC table access (Tristram Ha)
- Bluetooth: L2CAP: Fix uaf in l2cap_connect (Luiz Augusto von Dentz)
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (Mark Rutland)
- arm64/sve: Discard stale CPU state when handling SVE traps (Mark Brown)
- gve: Fixes for napi_poll when budget is 0 (Ziwei Xiao)
- scsi: core: Fix scsi_mode_select() buffer length handling (Damien Le Moal)
- Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun)
- fou: remove warn in gue_gro_receive on unsupported protocol (Willem de Bruijn)
- ima: Fix use-after-free on a dentry's dname.name (Stefan Berger)
- crypto: hisilicon/qm - inject error before stopping queue (Weili Qian)
- drm/amd/display: Check BIOS images before it is used (Alex Hung)
- mmc: mtk-sd: Fix error handle of probe function (Andy-ld Lu)
- xhci: dbc: Fix STALL transfer event handling (Mathias Nyman)
- mm/damon/vaddr: fix issue in damon_va_evenly_split_region() (Zheng Yejian)
- mm/damon/vaddr-test: split a test function having >1024 bytes frame size (SeongJae Park)
- jffs2: Fix rtime decompressor (Richard Weinberger)
- jffs2: Prevent rtime decompress memory corruption (Kinsey Moore)
- KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang)
- KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang)
- KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang)
- tracing/eprobe: Fix to release eprobe when failed to add dyn_event (Masami Hiramatsu (Google))
- btrfs: fix missing snapshot drew unlock when root is dead during swap activation (Filipe Manana)
- sched/core: Prevent wakeup of ksoftirqd during idle load balance (K Prateek Nayak)
- sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy (K Prateek Nayak)
- sched/fair: Add NOHZ balancer flag for nohz.next_balance updates (Valentin Schneider)
- sched/core: Remove the unnecessary need_resched() check in nohz_csd_func() (K Prateek Nayak)
- modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner)
- modpost: Include '.text.*' in TEXT_SECTIONS (Nathan Chancellor)
- misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman)
- powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman)
- MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a (Xi Ruoyao)
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang)
- i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li)
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou)
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch)
- PCI: Detect and trust built-in Thunderbolt chips (Esther Shimanovich)
- i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (Jarkko Nikula)
- f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han)
- nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang)
- pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n)
- scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara)
- scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara)
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha)
- scsi: hisi_sas: Add cond_resched() for no forced preemption model (Yihang Li)
- tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak)
- pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU (Esben Haabendal)
- netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao)
- net/neighbor: clear error in case strict check is not set (Jakub Kicinski)
- rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov)
- ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman)
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (Luiz Augusto von Dentz)
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis)
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong)
- drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang)
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (Victor Zhao)
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya)
- jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal)
- jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal)
- jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal)
- dma-debug: fix a possible deadlock on radix_lock (Levi Yun)
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (Lang Yu)
- drm/amdgpu: Dereference the ATCS ACPI buffer (Prike Liang)
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (Victor Lu)
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (Manikandan Muralidharan)
- wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev)
- wifi: ath5k: add PCI ID for SX76X (Rosen Penev)
- net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin)
- net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin)
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin)
- net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin)
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin)
- af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin)
- net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina)
- net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman)
- net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman)
- samples/bpf: Fix a resource leak (Zhu Jun)
- r8169: don't apply UDP padding quirk on RTL8126A (Heiner Kallweit)
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev)
- drm/mcde: Enable module autoloading (Liao Chen)
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a)
- drm/vc4: hvs: Set AXI panic modes for the HVS (Dave Stevenson)
- soc: imx8m: Probe the SoC driver as platform driver (Marek Vasut)
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar)
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given)
- kcsan: Turn report_filterlist_lock into a raw_spinlock (Marco Elver)
- kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all() (Mark Brown)
- btrfs: avoid unnecessary device path update for the same device (Qu Wenruo)
- s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter)
- epoll: annotate racy check (Christian Brauner)
- iommu/arm-smmu: Defer probe of clients after smmu device bound (Pratyush Brahma)
- ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang)
- mmc: core: Further prevent card detect during shutdown (Ulf Hansson)
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (Hans de Goede)
- regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav)
- xsk: fix OOB map writes when deleting elements (Maciej Fijalkowski)
- dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig)
- bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski)
- bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che)
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi)
- scsi: ufs: core: sysfs: Prevent div by zero (Gwendal Grignou)
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap)
- scsi: qla2xxx: Fix use after free on unload (Quinn Tran)
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy)
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran)
- ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (Sahas Leelodharry)
- ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (Nazar Bilinskyi)
- ALSA: usb-audio: add mixer mapping for Corsair HS80 (Marie Ramlow)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (Mark Rutland)
- tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu)
- can: dev: can_set_termination(): allow sleeping GPIOs (Marc Kleine-Budde)
- watchdog: rti: of: honor timeout-sec property (Alexander Sverdlin)
- HID: wacom: fix when get product name maybe null pointer (WangYuli)
- bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao)
- bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao)
- ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa)
- drm/v3d: Enable Performance Counters before clearing them (Ma?ra Canal)
- spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao)
- tools: Override makefile ARCH variable if defined, but empty (Bj?rn T?pel)
- ALSA: usb-audio: Notify xrun for low-latency mode (Takashi Iwai)
- ALSA: pcm: Avoid reference to status->state (Takashi Iwai)
- ALSA: pcm: Add more disconnection checks at file ops (Takashi Iwai)
- tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang)
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao)
- bpftool: fix potential NULL pointer dereferencing in prog_dump() (Amir Mohammadi)
- bpftool: Remove asserts from JIT disassembler (Quentin Monnet)
- serial: amba-pl011: Fix RX stall when DMA is used (Kartik Rajput)
- serial: amba-pl011: Use port lock wrappers (Thomas Gleixner)
- dt-bindings: serial: rs485: Fix rs485-rts-delay property (Michal Simek)
- dt_bindings: rs485: Correct delay values (Lino Sanfilippo)
- gpio: grgpio: Add NULL check in grgpio_probe (Charles Han)
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski)
- geneve: do not assume mac header is set in geneve_xmit_skb() (Eric Dumazet)
- ethtool: Fix wrong mod state in case of verbose and no_mask bitset (Kory Maincent)
- netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso)
- netfilter: ipset: Hold module reference while requesting a module (Phil Sutter)
- net: sched: fix erspan_opt settings in cls_flower (Xin Long)
- igb: Fix potential invalid memory access in igb_init_module() (Yuan Can)
- net/qed: allow old cards not supporting "num_images" to work (Louis Leseur)
- net/smc: fix LGR and link use-after-free issue (Wen Gu)
- net/smc: Limit backlog connections (D. Wythe)
- tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima)
- dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov)
- net/ipv6: release expired exception dst cached in socket (Jiri Wiesner)
- can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov)
- net: hsr: avoid potential out-of-bound access in fill_frame_info() (Eric Dumazet)
- net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens)
- ptp: Add error handling for adjfine callback in ptp_clock_adjtime (Ajay Kaher)
- netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov)
- ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia)
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi)
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (Dario Binacchi)
- can: do not increase rx statistics when generating a CAN rx error message frame (Vincent Mailhol)
- can: peak_usb: CANFD: store 64-bits hw timestamps (Stephane Grosjean)
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana)
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi)
- drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach)
- drm/sti: avoid potential dereference of error pointers (Ma Ke)
- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (Ma Ke)
- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (Ma Ke)
- btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (Josef Bacik)
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun)
- nfsd: make sure exp active before svc_export_show (Yang Erkun)
- PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal)
- dm thin: Add missing destroy_work_on_stack() (Yuan Can)
- ovl: properly handle large files in ovl_security_fileattr (Oleksandr Tymoshenko)
- PCI: keystone: Add link up check to ks_pcie_other_map_bus() (Kishon Vijay Abraham I)
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li)
- scsi: ufs: exynos: Fix hibern8 notify callbacks (Peter Griffin)
- util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean)
- s390/entry: Mark IRQ entries to fix stack depot warnings (Vasily Gorbik)
- ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu)
- btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana)
- btrfs: add a sanity check for btrfs root in btrfs_search_slot() (Lizhi Xu)
- btrfs: add might_sleep() annotations (ChenXiaoSong)
- quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo)
- xfs: remove unknown compat feature check in superblock write validation (Long Li)
- xfs: fix log recovery when unknown rocompat bits are set (Darrick J. Wong)
- ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang)
- sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter)
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian)
- sunrpc: remove unnecessary test in rpc_task_set_client() (Thiago Rafael Becker)
- nfs: ignore SB_RDONLY when mounting nfs (Li Lingfeng)
- modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada)
- rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier)
- 9p/xen: fix release of IRQ (Alex Zenla)
- 9p/xen: fix init sequence (Alex Zenla)
- block: return unsigned int from bdev_io_min (Christoph Hellwig)
- jffs2: fix use of uninitialized variable (Qingfang Deng)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed)
- ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng)
- ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng)
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao)
- rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu)
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust)
- um: Always dump trace for specified task in show_stack (Tiwei Bie)
- um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie)
- um: Fix potential integer overflow during physmem setup (Tiwei Bie)
- rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson)
- SUNRPC: make sure cache entry active before cache_show (Yang Erkun)
- NFSD: Prevent a potential integer overflow (Chuck Lever)
- lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski)
- usb: dwc3: gadget: Fix looping of queued SG entries (Thinh Nguyen)
- usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen)
- ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai)
- ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar)
- ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang)
- ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang)
- ALSA: pcm: Add sanity NULL check for the default mmap fault handler (Takashi Iwai)
- media: v4l2-core: v4l2-dv-timings: check cvt/gtf result (Hans Verkuil)
- soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (Javier Carrasco)
- media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen)
- HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke)
- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon)
- sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen)
- um: vector: Do not use drvdata in release (Tiwei Bie)
- serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu)
- um: net: Do not use drvdata in release (Tiwei Bie)
- um: ubd: Do not use drvdata in release (Tiwei Bie)
- ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng)
- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (Javier Carrasco)
- cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (Jinjie Ruan)
- mtd: spi-nor: core: replace dummy buswidth from addr to data (Cheng Ming Lin)
- spi: Fix acpi deferred irq probe (Stanislaw Gruszka)
- netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park)
- gpio: exar: set value when external pull-up or pull-down is present (Sai Kumar Cholleti)
- Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman)
- serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea)
- Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil)
- driver core: bus: Fix double free in driver API bus_register() (Zijun Hu)
- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (Michal Pecio)
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura)
- exfat: fix uninit-value in __exfat_get_dentry_set (Namjae Jeon)
- locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass() (Ahmed Ehab)
- tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet)
- apparmor: test: Fix memory leak for aa_unpack_strdup() (Jinjie Ruan)
- comedi: Flush partial mappings in error case (Jann Horn)
- fsnotify: fix sending inotify event with unexpected filename (Amir Goldstein)
- PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner)
- KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta)
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (Gautam Menghani)
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers)
- perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter)
- ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen)
- jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov)
- ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o)
- ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park)
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens)
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu)
- ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (Hans de Goede)
- Revert "drivers: clk: zynqmp: update divider round rate logic" (Joel Guittet)
- usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan)
- ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai)
- xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen)
- ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (Namjae Jeon)
- parisc: fix a possible DMA corruption (Mikulas Patocka)
- apparmor: fix 'Do simple duplicate message elimination' (chao liu)
- ALSA: hda/realtek: Update ALC256 depop procedure (Kailang Yang)
- counter: stm32-timer-cnt: Add check for clk_enable() (Jiasheng Jiang)
- misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan)
- USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis)
- USB: chaoskey: fail open after removal (Oliver Neukum)
- usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum)
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park)
- iio: light: al3010: Fix an error handling path in al3010_probe() (Christophe JAILLET)
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (Saravanan Vajravel)
- net: hsr: fix hsr_init_sk() vs network/transport headers. (Eric Dumazet)
- spi: atmel-quadspi: Fix register name in verbose logging function (Cs?k?s, Bence)
- octeontx2-af: RPM: Fix mismatch in lmac type (Hariprasad Kelam)
- net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier)
- marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan)
- net: mdio-ipq4019: add missing error check (Rosen Penev)
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel)
- tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi)
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel)
- power: supply: bq27xxx: Fix registers of bq27426 (Barnab?s Cz?m?n)
- power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche)
- fs_parser: update mount_api doc to match function signature (Randy Dunlap)
- vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon)
- selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels (Michael Ellerman)
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (Si-Wei Liu)
- hwmon: (tps23861) Fix reporting of negative temperatures (Murad Masimov)
- NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever)
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (Ye Bin)
- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (Luis Chamberlain)
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever)
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever)
- remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region (Sibi Sankar)
- rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek)
- rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson)
- rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam)
- rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam)
- perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson)
- perf trace: Do not lose last events in a race (Benjamin Peterson)
- svcrdma: Address an integer overflow (Chuck Lever)
- m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli)
- m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois)
- perf trace: avoid garbage when not printing a trace event's arguments (Benjamin Peterson)
- f2fs: check curseg->inited before write_sum_page in change_curseg (Yongpeng Yang)
- f2fs: remove the unused flush argument to change_curseg (Christoph Hellwig)
- f2fs: open code allocate_segment_by_default (Christoph Hellwig)
- f2fs: remove struct segment_allocation default_salloc_ops (Christoph Hellwig)
- f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block (LongPing Wei)
- PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen)
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng)
- perf probe: Correct demangled symbols in C++ program (Leo Yan)
- perf probe: Fix libdw memory leak (Ian Rogers)
- PCI: Fix reset_method_store() memory leak (Todd Kjos)
- perf cs-etm: Don't flush when packet_queue fills up (James Clark)
- mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (Dan Carpenter)
- pinctrl: k210: Undef K210_PC_DEFAULT (zhang jiao)
- clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa)
- dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa)
- fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei)
- fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann)
- powerpc/kexec: Fix return of uninitialized variable (Zhang Zekun)
- powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek)
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov)
- RDMA/hns: Fix out-of-order issue of requester when setting FENCE (Junxian Huang)
- scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei)
- scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei)
- scsi: fusion: Remove unused variable 'rc' (Zeng Heng)
- scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin)
- mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong)
- clk: imx: clk-scu: fix clk enable state save and restore (Dong Aisheng)
- clk: imx: lpcg-scu: SW workaround for errata (e10858) (Peng Fan)
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (Michael Ellerman)
- powerpc/mm/fault: Fix kfence page fault reporting (Ritesh Harjani (IBM))
- mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal)
- cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko)
- mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson)
- mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan)
- pinctrl: zynqmp: drop excess struct member description (Bartosz Golaszewski)
- trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun)
- bpf: fix recursive lock when verdict program return SK_PASS (Jiayuan Chen)
- wireguard: selftests: load nf_conntrack if not present (Hangbin Liu)
- netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao)
- Bluetooth: fix use-after-free in device_for_each_child() (Dmitry Antipov)
- driver core: Introduce device_find_any_child() helper (Andy Shevchenko)
- ALSA: 6fire: Release resources at card release (Takashi Iwai)
- ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng)
- drm/amdkfd: Fix wrong usage of INIT_WORK() (Yuan Can)
- selftests: net: really check for bg process completion (Paolo Abeni)
- bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang)
- selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap (Zijian Zhang)
- selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap (Zijian Zhang)
- selftests, bpf: Add one test for sockmap with strparser (Liu Jian)
- selftests/bpf: Fix SENDPAGE data logic in test_sockmap (Zijian Zhang)
- selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap (Zijian Zhang)
- netlink: typographical error in nlmsg_type constants definition (Maurice Lambert)
- netfilter: nf_tables: must hold rcu read lock while iterating object type list (Florian Westphal)
- netfilter: nf_tables: skip transaction if update object is not implemented (Pablo Neira Ayuso)
- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (Zichen Xie)
- wifi: wfx: Fix error handling in wfx_core_init() (Yuan Can)
- drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach)
- drm/etnaviv: fix power register offset on GC300 (Doug Brown)
- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (Xiaolei Wang)
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (Dipendra Khadka)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (Dipendra Khadka)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (Dipendra Khadka)
- drm: fsl-dcu: enable PIXCLK on LS1021A (Matthias Schiffer)
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak)
- selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap (Zijian Zhang)
- selftests/bpf: Fix msg_verify_data in test_sockmap (Zijian Zhang)
- drm/bridge: tc358767: Fix link properties discovery (Tomi Valkeinen)
- netdevsim: copy addresses for both in and out paths (Hangbin Liu)
- libbpf: fix sym_is_subprog() logic for weak global subprogs (Andrii Nakryiko)
- bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen)
- libbpf: Fix output .symtab byte-order during linking (Tony Ambardar)
- drm/bridge: anx7625: Drop EDID cache on bridge power off (Pin-yen Lin)
- ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode (Macpaul Lin)
- ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang)
- ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer)
- ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer)
- ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer)
- dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov)
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (Baochen Qiang)
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (Baochen Qiang)
- drm/v3d: Address race-condition in MMU flush (Ma?ra Canal)
- drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen)
- drm/omap: Fix possible NULL dereference (Tomi Valkeinen)
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park)
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko)
- platform/x86: panasonic-laptop: Return errno correctly in show callback (Yao Zi)
- platform/x86: panasonic-laptop: Replace snprintf in show functions with sysfs_emit (Qing Wang)
- media: atomisp: Add check for rgby_data memory allocation failure (Li Huafei)
- media: atomisp: remove #ifdef HAS_NO_HMEM (Mauro Carvalho Chehab)
- media: venus: provide ctx queue lock for ioctl synchronization (Sergey Senozhatsky)
- venus: venc: add handling for VIDIOC_ENCODER_CMD (Dikshita Agarwal)
- media: venus : Addition of support for VIDIOC_TRY_ENCODER_CMD (Dikshita Agarwal)
- media: venus : Addition of EOS Event support for Encoder (Viswanath Boma)
- media: venus: vdec: decoded picture buffer handling during reconfig sequence (Mansur Alisha Shaik)
- media: venus: venc: Use pmruntime autosuspend (Stanimir Varbanov)
- firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu)
- selftests/resctrl: Protect against array overrun during iMC config parsing (Reinette Chatre)
- arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators (Chen-Yu Tsai)
- arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names (Chen-Yu Tsai)
- arm64: dts: mt8183: jacuzzi: Move panel under aux-bus (Hsin-Yi Wang)
- arm64: dts: mt8183: jacuzzi: remove unused ddc-i2c-bus (Hsin-Yi Wang)
- regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko)
- spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time? (Jinjie Ruan)
- spi: tegra210-quad: Avoid shift-out-of-bounds (Breno Leitao)
- pmdomain: ti-sci: Add missing of_node_put() for args.np (Zhang Zekun)
- ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara)
- pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle (Clark Wang)
- arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- cgroup/bpf: only cgroup v2 can be attached by bpf programs (Chen Ridong)
- Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline" (Chen Ridong)
- arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad (Chen-Yu Tsai)
- arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4 (Hsin-Te Yuan)
- arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4 (Hsin-Te Yuan)
- tpm: fix signed/unsigned bug when checking event logs (Gregory Price)
- mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski)
- soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter)
- soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- spi: spi-fsl-lpspi: downgrade log level for pio mode (Alexander Stein)
- clocksource/drivers:sp804: Make user selectable (Mark Brown)
- kcsan, seqlock: Fix incorrect assumption in read_seqbegin() (Marco Elver)
- kcsan, seqlock: Support seqcount_latch_t (Marco Elver)
- seqlock/latch: Provide raw_read_seqcount_latch_retry() (Peter Zijlstra)
- timekeeping: Consolidate fast timekeeper (Thomas Gleixner)
- time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda)
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET)
- crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong)
- crypto: caam - add error check to caam_rsa_set_priv_key_form (Chen Ridong)
- EDAC/igen6: Avoid segmentation fault on module unload (Orange Kao)
- crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C)
- crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang)
- EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh)
- thermal: core: Initialize thermal zones before registering them (Rafael J. Wysocki)
- crypto: qat - remove faulty arbiter config reset (Ahsan Atta)
- EDAC/bluefield: Fix potential integer overflow (David Thompson)
- firmware: google: Unregister driver_info on failure (Yuan Can)
- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (Christophe JAILLET)
- hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo)
- s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada)
- acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin)
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (Masahiro Yamada)
- m68k: mvme147: Reinstate early console (Daniel Palmer)
- m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven)
- m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer)
- nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig)
- initramfs: avoid filename buffer overrun (David Disseldorp)
- mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski)
- brd: defer automatic disk creation until module initialization succeeds (Yang Erkun)
- brd: remove brd_devices_mutex mutex (Tetsuo Handa)
- s390/cio: Do not unregister the subchannel based on DNV (Vineeth Vijayan)
- kselftest/arm64: mte: fix printf type warnings about longs (Andre Przywara)
- x86/barrier: Do not serialize MSR accesses on AMD (Borislav Petkov (AMD))
- nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan)
- cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r)
- rcu-tasks: Idle tasks on offline CPUs are in quiescent states (Paul E. McKenney)
- ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao)
- ARM: 9420/1: smp: Fix SMP for xip kernels (Harith G)
- ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (Eryk Zagorski)
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang)
- ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan)
- ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan)
- can: j1939: fix error in J1939 documentation. (Alexander H?lzl)
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (Kurt Borja)
- platform/x86: dell-smbios-base: Extends support to Alienware products (Kurt Borja)
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko)
- soc: qcom: Add check devm_kasprintf() returned value (Charles Han)
- net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin)
- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann)
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan)
- selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian)
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (Benjamin Gro?e)
- mac80211: fix user-power when emulating chanctx (Ben Greear)
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (Daniel Gabay)
- ASoC: Intel: sst: Support LPE0F28 ACPI HID (Hans de Goede)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede)
- ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (Hans de Goede)
- NFS: nfs_async_write_reschedule_io must not recurse into the writeback code (Trond Myklebust)
- mm: resolve faulty mmap_region() error path behaviour (Lorenzo Stoakes)
- mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (Lorenzo Stoakes)
- mm: unconditionally close VMAs on error (Lorenzo Stoakes)
- mm: avoid unsafe VMA hook invocation when error arises on mmap hook (Lorenzo Stoakes)
- mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (Paolo Abeni)
- NFSD: Never decrement pending_async_copies on error (Chuck Lever)
- NFSD: Initialize struct nfsd4_copy earlier (Chuck Lever)
- NFSD: Limit the number of concurrent async COPY operations (Chuck Lever)
- NFSD: Async COPY result needs to return a write verifier (Chuck Lever)
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (Dai Ngo)
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab)
- mmc: sunxi-mmc: Fix A100 compatible description (Andre Przywara)
- mmc: sunxi-mmc: Add D1 MMC variant (Samuel Holland)
- drm/bridge: tc358768: Fix DSI command tx (Francesco Dolcini)
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi)
- ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov)
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi)
- KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson)
- KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (Sean Christopherson)
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (Si-Wei Liu)
- ocfs2: uncache inode which has failed entering the group (Dmitry Antipov)
- mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (Jinjiang Tu)
- x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (Baoquan He)
- ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (Harith G)
- samples: pktgen: correct dev to DEV (Wei Fang)
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Moshe Shemesh)
- net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea)
- net/mlx5: fs, lock FTE when checking if active (Mark Bloch)
- drm/rockchip: vop: Fix a dereferenced before check warning (Andy Yan)
- netlink: terminate outstanding dump on socket close (Jakub Kicinski)
- clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos)
- leds: lp55xx: Remove redundant test for invalid channel number (Michal Vok??)
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (Mostafa Saleh)
- vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event (MengEn Sun)
- ftrace: Fix regression with module command in stack_trace_filter (guoweikang)
- ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev)
- media: uvcvideo: Require entities to have a non-zero unique ID (Thadeu Lima de Souza Cascardo)
- media: uvcvideo: Stop stream during unregister (Ricardo Ribalda)
- media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui)
- media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan)
- media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan)
- media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao)
- media: imx-jpeg: Ensure power suppliers be suspended before detach them (Ming Qian)
- media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan)
- media: imx-jpeg: Set video drvdata before register video device (Ming Qian)
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (Dragan Simic)
- LTS version: v5.15.173 (Vijayendra Suman)
- 9p: fix slab cache name creation for real (Linus Torvalds)
- udf: Avoid directory type conversion failure due to ENOMEM (Jan Kara)
- udf: Allocate name buffer in directory iterator on heap (Jan Kara)
- mm/memory: add non-anonymous page check in the copy_present_page() (Yuanzheng Song)
- io_uring: fix possible deadlock in io_register_iowq_max_workers() (Hagar Hemdan)
- md/raid10: improve code of mrdev in raid10_sync_request (Li Nan)
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (Hans de Goede)
- HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (Kenneth Albanowski)
- fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni)
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (Yuan Can)
- powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman)
- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (Ian Forbes)
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter)
- crypto: marvell/cesa - Disable hash algorithms (Herbert Xu)
- bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel)
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli)
- HID: multitouch: Add support for B2402FVA track point (Stefan Blum)
- block: Fix elevator_get_default() checking for NULL q->tag_set (SurajSonawane2415)
- irqchip/ocelot: Fix trigger register address (Sergey Matsievskiy)
- 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato)
- LTS version: v5.15.172 (Vijayendra Suman)
- ALSA: usb-audio: Add endianness annotations (Jan Sch?r)
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim)
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim)
- ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r)
- ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r)
- ucounts: fix counter leak in inc_rlimit_get_ucounts() (Andrei Vagin)
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner)
- irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier)
- USB: serial: option: add Quectel RG650V (Beno?t Monin)
- USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu)
- USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter)
- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (Dan Carpenter)
- usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu)
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens)
- net: do not delay dst_entries_add() in dst_release() (Eric Dumazet)
- net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov)
- btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana)
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu)
- io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (Jens Axboe)
- io_uring: use kiocb_{start,end}_write() helpers (Amir Goldstein)
- fs: create kiocb_{start,end}_write() helpers (Amir Goldstein)
- io_uring: rename kiocb_end_write() local helper (Amir Goldstein)
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (Benjamin Segall)
- ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (Takashi Iwai)
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie)
- dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai)
- dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai)
- dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai)
- thermal/drivers/qcom/lmh: Remove false lockdep backtrace (Dmitry Baryshkov)
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher)
- drm/amdgpu: Adjust debugfs eviction and IB access permissions (Alex Deucher)
- pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher)
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (Mauro Carvalho Chehab)
- media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab)
- media: pulse8-cec: fix data timestamp at pulse8_setup() (Mauro Carvalho Chehab)
- media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab)
- media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab)
- ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (Amelie Delaunay)
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov)
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (Johannes Thumshirn)
- media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab)
- media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab)
- media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab)
- media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab)
- net: arc: fix the device for dma_map_single/dma_unmap_single (Johan Jonker)
- net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case (N?colas F. R. A. Prado)
- net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (Diogo Silva)
- net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang)
- i40e: fix race condition by adding filter's intermediate sync state (Aleksandr Loktionov)
- can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi)
- sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long)
- net: enetc: set MAC address to the VF net_device (Wei Fang)
- security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong)
- nfs: avoid i_lock contention in nfs_clear_invalid_mapping (Mike Snitzer)
- NFSv3: handle out-of-order write replies. (NeilBrown)
- NFS: Add a tracepoint to show the results of nfs_set_cache_invalid() (Benjamin Coddington)
- NFSv3: only use NFS timeout for MOUNT when protocols are compatible (NeilBrown)
- HID: core: zero-initialize the report buffer (Jiri Kosina)
- ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner)
- ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner)
- ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner)
- ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner)
- arm64: dts: imx8mp: correct sdhc ipg clk (Peng Fan)
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (Heiko Stuebner)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven)



From el-errata at oss.oracle.com  Thu Feb 13 14:42:46 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:46 -0800
Subject: [El-errata] ELBA-2025-1240 Oracle Linux 9 sos bug fix and
 enhancement update
Message-ID: <mailman.103.1739457776.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1240

http://linux.oracle.com/errata/ELBA-2025-1240.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
sos-4.8.2-1.0.1.el9_5.noarch.rpm
sos-audit-4.8.2-1.0.1.el9_5.noarch.rpm

aarch64:
sos-4.8.2-1.0.1.el9_5.noarch.rpm
sos-audit-4.8.2-1.0.1.el9_5.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//sos-4.8.2-1.0.1.el9_5.src.rpm



Description of changes:

[4.8.2-1.0.1]
- Update the enabled and skipped plugins lists to match ExaData's
  requirements. [Orabug: 37440321]
- os detect string [Orabug: 28674897]
- Disable upload options [Orabug: 31969352]
- Disable upload-option to sos report collector [Orabug: 36068606]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Adding socket statistics command output [Orabug: 36594481]
- Remove file type check and append string to file name [Orabug: 37241057]
- Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37129232]
- Disable ethtool EEPROM dump for link down interfaces [Orabug: 37129428]
- Modify sos.spec to make python3-file-magic as dependency for sos package [Orabug: 36834417]
- Append .txt extension to files rejected by MOS policy [Orabug: 36727763]
- Collecting last 50k lines of ftrace file trace [Orabug: 36590767]
- Adding socket statistics command output [Orabug: 36594481]
- Add IO queue depth of all the devices on node [Orabug: 36594679]
- Disable upload option to sos report collector [Orabug: 36068606]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Collect all rsyslogs files for all-logs option [Orabug: 36402382]
- Set SIGPIPE to default action for Broken Pipe Error [Orabug: 35969973]
- Modifying dnf history info transaction index [Orabug: 35497720]
- Adding virsh guest cgroup configuration [Orabug: 35145501]
- Adding virsh qemu-monitor info tree command [Orabug: 35148435]
- Adding Plugin option support for ksplice and btrfs [Orabug: 35115193]
- append .txt to .com domain named files [Orabug: 34527958]
- Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313]
- Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351]
- Added sos-oraclelinux-vendor-vendorurl.patch
- Fix patch for Orabug 31969352 [Orabug: 32822570]
- [ovn_central] call podman exec without a timeout
  Resolves: bz1767359
- Adjusted ksplice plugin patches for path change [Orabug: 32881277]
- Fix os detect string for Oracle Linux [Orabug: 28674897]
- Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck)
- Disable upload options for OracleLinux [Orabug: 31969352]
- Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601]
- Allow a journal log size to be smaller than 100M [Orabug: 32454362]
- Do not exit on unknown plugin [Orabug: 32556170]
- Add in some btrfs commands [Orabug: 32727607]
- Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933]
- Fix ksplice plugin does not show description [Orabug: 32886513]

[4.8.2-1]
- Update to 4.8.2 in RHEL 9
  Resolves: RHEL-72942



From el-errata at oss.oracle.com  Thu Feb 13 14:42:47 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:47 -0800
Subject: [El-errata] ELBA-2025-1316 Oracle Linux 9 sos bug fix and
 enhancement update
Message-ID: <mailman.104.1739457776.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1316

http://linux.oracle.com/errata/ELBA-2025-1316.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
sos-4.8.2-2.0.1.el9_5.noarch.rpm
sos-audit-4.8.2-2.0.1.el9_5.noarch.rpm

aarch64:
sos-4.8.2-2.0.1.el9_5.noarch.rpm
sos-audit-4.8.2-2.0.1.el9_5.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//sos-4.8.2-2.0.1.el9_5.src.rpm



Description of changes:

[4.8.2-2.0.1]
- Update the enabled and skipped plugins lists to match ExaData's
  requirements. [Orabug: 37440321]
- os detect string [Orabug: 28674897]
- Disable upload options [Orabug: 31969352]
- Disable upload-option to sos report collector [Orabug: 36068606]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Adding socket statistics command output [Orabug: 36594481]
- Remove file type check and append string to file name [Orabug: 37241057]
- Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37129232]
- Disable ethtool EEPROM dump for link down interfaces [Orabug: 37129428]
- Modify sos.spec to make python3-file-magic as dependency for sos package [Orabug: 36834417]
- Append .txt extension to files rejected by MOS policy [Orabug: 36727763]
- Collecting last 50k lines of ftrace file trace [Orabug: 36590767]
- Adding socket statistics command output [Orabug: 36594481]
- Add IO queue depth of all the devices on node [Orabug: 36594679]
- Disable upload option to sos report collector [Orabug: 36068606]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Collect all rsyslogs files for all-logs option [Orabug: 36402382]
- Set SIGPIPE to default action for Broken Pipe Error [Orabug: 35969973]
- Modifying dnf history info transaction index [Orabug: 35497720]
- Adding virsh guest cgroup configuration [Orabug: 35145501]
- Adding virsh qemu-monitor info tree command [Orabug: 35148435]
- Adding Plugin option support for ksplice and btrfs [Orabug: 35115193]
- append .txt to .com domain named files [Orabug: 34527958]
- Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313]
- Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351]
- Added sos-oraclelinux-vendor-vendorurl.patch
- Fix patch for Orabug 31969352 [Orabug: 32822570]
- [ovn_central] call podman exec without a timeout
  Resolves: bz1767359
- Adjusted ksplice plugin patches for path change [Orabug: 32881277]
- Fix os detect string for Oracle Linux [Orabug: 28674897]
- Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck)
- Disable upload options for OracleLinux [Orabug: 31969352]
- Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601]
- Allow a journal log size to be smaller than 100M [Orabug: 32454362]
- Do not exit on unknown plugin [Orabug: 32556170]
- Add in some btrfs commands [Orabug: 32727607]
- Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933]
- Fix ksplice plugin does not show description [Orabug: 32886513]

[4.8.2-2]
- Add new plugin aap_containerized
  Resolves: RHEL-76057



From el-errata at oss.oracle.com  Thu Feb 13 14:42:48 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:48 -0800
Subject: [El-errata] ELSA-2025-1210 Moderate: Oracle Linux 9 tbb security
 update
Message-ID: <mailman.105.1739457776.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1210

http://linux.oracle.com/errata/ELSA-2025-1210.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-tbb-2020.3-8.el9_5.1.x86_64.rpm
tbb-2020.3-8.el9_5.1.i686.rpm
tbb-2020.3-8.el9_5.1.x86_64.rpm
tbb-devel-2020.3-8.el9_5.1.i686.rpm
tbb-devel-2020.3-8.el9_5.1.x86_64.rpm
tbb-doc-2020.3-8.el9_5.1.x86_64.rpm

aarch64:
python3-tbb-2020.3-8.el9_5.1.aarch64.rpm
tbb-2020.3-8.el9_5.1.aarch64.rpm
tbb-devel-2020.3-8.el9_5.1.aarch64.rpm
tbb-doc-2020.3-8.el9_5.1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//tbb-2020.3-8.el9_5.1.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[2020.3-8.1]
- Remove jQuery from Doxygen output (RHEL-77693)



From el-errata at oss.oracle.com  Thu Feb 13 14:42:50 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:50 -0800
Subject: [El-errata] ELSA-2025-1262 Important: Oracle Linux 9 kernel
 security update
Message-ID: <mailman.106.1739457778.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1262

http://linux.oracle.com/errata/ELSA-2025-1262.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-7.4.0-503.23.2.el9_5.x86_64.rpm
kernel-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-abi-stablelists-5.14.0-503.23.2.el9_5.noarch.rpm
kernel-core-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-core-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-devel-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-devel-matched-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-modules-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-modules-core-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-modules-extra-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-debug-uki-virt-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-devel-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-devel-matched-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-doc-5.14.0-503.23.2.el9_5.noarch.rpm
kernel-headers-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-modules-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-modules-core-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-modules-extra-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-tools-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-tools-libs-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-uki-virt-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-uki-virt-addons-5.14.0-503.23.2.el9_5.x86_64.rpm
perf-5.14.0-503.23.2.el9_5.x86_64.rpm
python3-perf-5.14.0-503.23.2.el9_5.x86_64.rpm
rtla-5.14.0-503.23.2.el9_5.x86_64.rpm
rv-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-cross-headers-5.14.0-503.23.2.el9_5.x86_64.rpm
kernel-tools-libs-devel-5.14.0-503.23.2.el9_5.x86_64.rpm
libperf-5.14.0-503.23.2.el9_5.x86_64.rpm

aarch64:
bpftool-7.4.0-503.23.2.el9_5.aarch64.rpm
kernel-headers-5.14.0-503.23.2.el9_5.aarch64.rpm
kernel-tools-5.14.0-503.23.2.el9_5.aarch64.rpm
kernel-tools-libs-5.14.0-503.23.2.el9_5.aarch64.rpm
perf-5.14.0-503.23.2.el9_5.aarch64.rpm
python3-perf-5.14.0-503.23.2.el9_5.aarch64.rpm
rtla-5.14.0-503.23.2.el9_5.aarch64.rpm
rv-5.14.0-503.23.2.el9_5.aarch64.rpm
kernel-cross-headers-5.14.0-503.23.2.el9_5.aarch64.rpm
kernel-tools-libs-devel-5.14.0-503.23.2.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-503.23.2.el9_5.src.rpm

Related CVEs:

CVE-2024-53104




Description of changes:

- [5.14.0-503.23.2.el9_5.OL9]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5]
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
- Add Oracle Linux IMA certificates

[5.14.0-503.23.2.el9_5]
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (CKI Backport Bot) [RHEL-78075 RHEL-69574] {CVE-2024-53104}



From el-errata at oss.oracle.com  Thu Feb 13 14:42:51 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:51 -0800
Subject: [El-errata] ELSA-2025-1300 Moderate: Oracle Linux 9
 gcc-toolset-14-gcc security update
Message-ID: <mailman.107.1739457783.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1300

http://linux.oracle.com/errata/ELSA-2025-1300.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-14-gcc-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-gcc-c++-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-gcc-gfortran-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-gcc-plugin-annobin-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-gcc-plugin-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-gcc-plugin-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libasan-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libasan-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libatomic-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libatomic-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libgccjit-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libgccjit-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libgccjit-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libgccjit-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libitm-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libitm-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-liblsan-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libquadmath-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libquadmath-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libstdc++-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libstdc++-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libstdc++-docs-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libtsan-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-libubsan-devel-14.2.1-1.3.el9_5.i686.rpm
gcc-toolset-14-libubsan-devel-14.2.1-1.3.el9_5.x86_64.rpm
gcc-toolset-14-offload-nvptx-14.2.1-1.3.el9_5.x86_64.rpm
libasan8-14.2.1-1.3.el9_5.i686.rpm
libasan8-14.2.1-1.3.el9_5.x86_64.rpm
libtsan2-14.2.1-1.3.el9_5.x86_64.rpm

aarch64:
gcc-toolset-14-gcc-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-gcc-c++-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-gcc-gfortran-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-gcc-plugin-annobin-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-gcc-plugin-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libasan-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libatomic-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libgccjit-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libgccjit-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libitm-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-liblsan-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libstdc++-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libstdc++-docs-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libtsan-devel-14.2.1-1.3.el9_5.aarch64.rpm
gcc-toolset-14-libubsan-devel-14.2.1-1.3.el9_5.aarch64.rpm
libasan8-14.2.1-1.3.el9_5.aarch64.rpm
libtsan2-14.2.1-1.3.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-14-gcc-14.2.1-1.3.el9_5.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[14.2.1-1.3]
- disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78383)



From el-errata at oss.oracle.com  Thu Feb 13 14:42:52 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:42:52 -0800
Subject: [El-errata] ELSA-2025-1330 Important: Oracle Linux 9 openssl
 security update
Message-ID: <mailman.108.1739457783.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1330

http://linux.oracle.com/errata/ELSA-2025-1330.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
openssl-3.2.2-6.0.1.el9_5.1.x86_64.rpm
openssl-devel-3.2.2-6.0.1.el9_5.1.i686.rpm
openssl-devel-3.2.2-6.0.1.el9_5.1.x86_64.rpm
openssl-libs-3.2.2-6.0.1.el9_5.1.i686.rpm
openssl-libs-3.2.2-6.0.1.el9_5.1.x86_64.rpm
openssl-perl-3.2.2-6.0.1.el9_5.1.x86_64.rpm

aarch64:
openssl-3.2.2-6.0.1.el9_5.1.aarch64.rpm
openssl-devel-3.2.2-6.0.1.el9_5.1.aarch64.rpm
openssl-libs-3.2.2-6.0.1.el9_5.1.aarch64.rpm
openssl-perl-3.2.2-6.0.1.el9_5.1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//openssl-3.2.2-6.0.1.el9_5.1.src.rpm

Related CVEs:

CVE-2024-12797




Description of changes:

[3.2.2-6.0.1.1]
- Enable openssl-fips-provider dependency [Orabug: 36504822]
- Temporary disable openssl-fips-provider dependency [Orabug: 36504822]
- Replace upstream references [Orabug: 34340177]

[1:3.2.2-6.1]
- RFC7250 handshakes with unauthenticated servers don't abort as expected (CVE-2024-12797)                                                                                                                                               
  Resolves: RHEL-76755


From el-errata at oss.oracle.com  Thu Feb 13 14:43:00 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:43:00 -0800
Subject: [El-errata] ELSA-2025-20095 Important: Oracle Linux 9 Unbreakable
 Enterprise kernel security update
Message-ID: <mailman.109.1739457790.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20095

http://linux.oracle.com/errata/ELSA-2025-20095.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-core-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-debug-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-devel-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-doc-5.15.0-305.176.4.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-container-5.15.0-305.176.4.el9uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-305.176.4.el9uek.x86_64.rpm



SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-uek-5.15.0-305.176.4.el9uek.src.rpm

Related CVEs:

CVE-2024-26595
CVE-2024-38538
CVE-2024-38556
CVE-2024-39494
CVE-2024-40906
CVE-2024-40939
CVE-2024-41080
CVE-2024-42073
CVE-2024-42138
CVE-2024-42268
CVE-2024-42315
CVE-2024-43864
CVE-2024-44940
CVE-2024-44949
CVE-2024-46809
CVE-2024-46841
CVE-2024-46871
CVE-2024-47730
CVE-2024-49950
CVE-2024-49974
CVE-2024-49996
CVE-2024-49998
CVE-2024-50036
CVE-2024-50055
CVE-2024-50121
CVE-2024-50241
CVE-2024-50261
CVE-2024-50264
CVE-2024-50265
CVE-2024-50267
CVE-2024-50268
CVE-2024-50269
CVE-2024-50273
CVE-2024-50275
CVE-2024-50278
CVE-2024-50279
CVE-2024-50282
CVE-2024-50283
CVE-2024-50287
CVE-2024-50290
CVE-2024-50292
CVE-2024-50295
CVE-2024-50296
CVE-2024-50299
CVE-2024-50301
CVE-2024-50302
CVE-2024-53052
CVE-2024-53061
CVE-2024-53063
CVE-2024-53066
CVE-2024-53073
CVE-2024-53088
CVE-2024-53096
CVE-2024-53099
CVE-2024-53101
CVE-2024-53103
CVE-2024-53104
CVE-2024-53112
CVE-2024-53113
CVE-2024-53119
CVE-2024-53120
CVE-2024-53122
CVE-2024-53125
CVE-2024-53129
CVE-2024-53130
CVE-2024-53131
CVE-2024-53135
CVE-2024-53140
CVE-2024-53141
CVE-2024-53142
CVE-2024-53145
CVE-2024-53146
CVE-2024-53148
CVE-2024-53150
CVE-2024-53151
CVE-2024-53155
CVE-2024-53156
CVE-2024-53157
CVE-2024-53158
CVE-2024-53161
CVE-2024-53164
CVE-2024-53165
CVE-2024-53171
CVE-2024-53172
CVE-2024-53173
CVE-2024-53174
CVE-2024-53180
CVE-2024-53181
CVE-2024-53183
CVE-2024-53184
CVE-2024-53194
CVE-2024-53197
CVE-2024-53198
CVE-2024-53214
CVE-2024-53215
CVE-2024-53217
CVE-2024-53227
CVE-2024-53237
CVE-2024-53239
CVE-2024-53240
CVE-2024-53241
CVE-2024-56531
CVE-2024-56532
CVE-2024-56533
CVE-2024-56539
CVE-2024-56548
CVE-2024-56558
CVE-2024-56562
CVE-2024-56567
CVE-2024-56568
CVE-2024-56569
CVE-2024-56570
CVE-2024-56571
CVE-2024-56572
CVE-2024-56574
CVE-2024-56575
CVE-2024-56576
CVE-2024-56578
CVE-2024-56581
CVE-2024-56586
CVE-2024-56587
CVE-2024-56589
CVE-2024-56590
CVE-2024-56593
CVE-2024-56594
CVE-2024-56595
CVE-2024-56596
CVE-2024-56597
CVE-2024-56598
CVE-2024-56600
CVE-2024-56601
CVE-2024-56602
CVE-2024-56603
CVE-2024-56605
CVE-2024-56606
CVE-2024-56610
CVE-2024-56614
CVE-2024-56615
CVE-2024-56616
CVE-2024-56619
CVE-2024-56622
CVE-2024-56623
CVE-2024-56626
CVE-2024-56627
CVE-2024-56629
CVE-2024-56630
CVE-2024-56633
CVE-2024-56634
CVE-2024-56636
CVE-2024-56637
CVE-2024-56640
CVE-2024-56642
CVE-2024-56643
CVE-2024-56644
CVE-2024-56648
CVE-2024-56650
CVE-2024-56659
CVE-2024-56661
CVE-2024-56662
CVE-2024-56670
CVE-2024-56679
CVE-2024-56681
CVE-2024-56688
CVE-2024-56690
CVE-2024-56691
CVE-2024-56693
CVE-2024-56694
CVE-2024-56698
CVE-2024-56700
CVE-2024-56701
CVE-2024-56704
CVE-2024-56705
CVE-2024-56708
CVE-2024-56715
CVE-2024-56716
CVE-2024-56723
CVE-2024-56724
CVE-2024-56726
CVE-2024-56728
CVE-2024-56739
CVE-2024-56741
CVE-2024-56745
CVE-2024-56746
CVE-2024-56747
CVE-2024-56748
CVE-2024-56754
CVE-2024-56756
CVE-2024-56759
CVE-2024-56763
CVE-2024-56766
CVE-2024-56767
CVE-2024-56769




Description of changes:

[5.15.0-305.176.4.el9uek]
- x86/asm: Make serialize() always_inline (Juergen Gross) 
- hwmon: (tmp513) Fix division of negative numbers (David Lechner) 
- Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (Pratyush Yadav) 
- Revert "regmap: detach regmap from dev on regmap_exit" (Greg Kroah-Hartman) 
- Revert "drm/amdgpu: rework resume handling for display (v2)" (Greg Kroah-Hartman) 
- Revert "PCI: Use preserve_config in place of pci_flags" (Terry Tritton) 
- virtio-net: synchronize probe with ndo_set_features (Jason Wang)  [Orabug: 36637822]
- virtio-net: synchronize operstate with admin state on up/down (Jason Wang)  [Orabug: 36637822]
- virtio: allow driver to disable the configure change notification (Jason Wang)  [Orabug: 36637822]
- virtio: rename virtio_config_enabled to virtio_config_core_enabled (Jason Wang)  [Orabug: 36637822]
- mlxsw: pci: Fix driver initialization with Spectrum-4 (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Fix driver initialization with old firmware (Ido Schimmel)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128 (Maksim Kiselev)  [Orabug: 36811057]
- net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5e: Fix MACsec state loss upon state update in offload path (Emeel Hakim)  [Orabug: 36811057]
- net/mlx5e: Change the warning when ignore_flow_level is not supported (Jianbo Liu)  [Orabug: 36811057]
- Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (Gavin Li)  [Orabug: 36811057]
- IB/mlx5: Don't expose debugfs entries for RRoCE general parameters if not supported (Mark Zhang)  [Orabug: 36811057]
- net/mlx5e: Ignore IPsec replay window values on sender side (Leon Romanovsky)  [Orabug: 36811057]
- net/mlx5e: Allow software parsing when IPsec crypto is enabled (Leon Romanovsky)  [Orabug: 36811057]
- net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Bridge, fix multicast packets sent to uplink (Moshe Shemesh)  [Orabug: 36811057]
- net/mlx5: Fix a WARN upon a callback command failure (Yishai Hadas)  [Orabug: 36811057]
- net/mlx5e: Fix peer flow lists handling (Vlad Buslov)  [Orabug: 36811057]
- net/mlx5: Fix query of sd_group field (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed)  [Orabug: 36811057]
- selftests: mlxsw: qos_pfc: Remove wrong description (Amit Cohen)  [Orabug: 36811057]
- mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path (Ido Schimmel)  [Orabug: 36811057]
- gpio: mlxbf3: add an error code check in mlxbf3_gpio_probe (Su Hui)  [Orabug: 36811057]
- vdpa/mlx5: Add mkey leak detection (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Introduce reference counting to mrs (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Use vq suspend/resume during .set_map (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Mark vq state for modification in hw vq (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Mark vq addrs for modification in hw vq (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Introduce per vq and device resume (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Allow modifying multiple vq fields in one modify command (Dragos Tatulea)  [Orabug: 36811057]
- vdpa/mlx5: Expose resumable vq capability (Dragos Tatulea)  [Orabug: 36811057]
- Revert "mlx5 updates 2023-12-20" (Jakub Kicinski)  [Orabug: 36811057]
- net/mlx5: DPLL, Implement fractional frequency offset get pin op (Jiri Pirko)  [Orabug: 36811057]
- net/mlx5: DPLL, Use struct to get values from mlx5_dpll_synce_status_get() (Jiri Pirko)  [Orabug: 36811057]
- net: macsec: move sci_to_cpu to macsec header (Radu Pirea (NXP OSS))  [Orabug: 36811057]
- net/mlx5: Implement management PF Ethernet profile (Armen Ratner)  [Orabug: 36811057]
- net/mlx5: Enable SD feature (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Block TLS device offload on combined SD netdev (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Support per-mdev queue counter (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Support cross-vhca RSS (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Let channels be SD-aware (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Create EN core HW resources for all secondary devices (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Create single netdev per SD group (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Add informative prints in kernel log (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement steering for primary and secondaries (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement devcom communication and primary election (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Implement basic query and instantiation (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: SD, Introduce SD lib (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Fix query of sd_group field (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Set NVE flood profile as part of FID configuration (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an "any" packet type (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add nve_flood_prf_id field to SFMR (Petr Machata)  [Orabug: 36811057]
- net/mlx5: DR, Use swap() instead of open coding it (Jiapeng Chong)  [Orabug: 36811057]
- net/mlx5: devcom, Add component size getter (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Decouple CQ from priv (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Add wrapping for auxiliary_driver ops and remove unused args (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Statify function mlx5e_monitor_counter_arm (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Move TISes from priv to mdev HW resources (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Remove TLS-specific logic in generic create TIS API (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: fs, Command to control TX flow table root (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: fs, Command to control L2TABLE entry silent mode (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Expose Management PCIe Index Register (MPIR) (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Add mlx5_ifc bits used for supporting single netdev Socket-Direct (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5: Manage ICM type of SW encap (Shun Hao)  [Orabug: 36811057]
- RDMA/mlx5: Support handling of SW encap ICM area (Shun Hao)  [Orabug: 36811057]
- net/mlx5: Introduce indirect-sw-encap ICM properties (Shun Hao)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: Use logical OR instead of bitwise OR in dwcmshc_probe() (Nathan Chancellor)  [Orabug: 36811057]
- mmc: sdhci-of-dwcmshc: Add support for T-Head TH1520 (Drew Fustini)  [Orabug: 36811057]
- mmc: sdhci: add __sdhci_execute_tuning() to header (Drew Fustini)  [Orabug: 36811057]
- mlxsw: spectrum: Use CFF mode where available (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add support for rFID family in CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add a family for bridge FIDs in CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Initialize flood profiles in CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add profile_id to flood profile (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an object to keep flood profiles (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add hooks for RSP table maintenance (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add a not-UC packet type (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op for packing SFMR (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op to get PGT address of a FID (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op to get PGT allocation size (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Add an op for flood table initialization (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Move mlxsw_sp_fid_flood_table_init() up (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Make mlxsw_sp_fid_ops.setup return an int (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Split a helper out of mlxsw_sp_fid_flood_table_mid() (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Rename FID ops, families, arrays (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Privatize FID families (Petr Machata)  [Orabug: 36811057]
- mlxsw: pci: Fix missing error checking (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: spectrum_router: Call RIF setup before obtaining FID (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_router: Add a helper to get subport number from a RIF (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Extract SFMR packing into a helper (Petr Machata)  [Orabug: 36811057]
- mlxsw: spectrum_fid: Drop unnecessary conditions (Petr Machata)  [Orabug: 36811057]
- mlxsw: pci: Permit enabling CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: core, pci: Add plumbing related to CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add to SFMR register the fields related to CFF flood mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Extract flood-mode specific part of mlxsw_reg_sfmr_pack() (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Drop unnecessary writes from mlxsw_reg_sfmr_pack() (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Mark SFGC & some SFMR fields as reserved in CFF mode (Petr Machata)  [Orabug: 36811057]
- mlxsw: reg: Add Switch FID Flooding Profiles Register (Petr Machata)  [Orabug: 36811057]
- mlxsw: resources: Add max_cap_nve_flood_prf (Petr Machata)  [Orabug: 36811057]
- mlxsw: cmd: Add MLXSW_CMD_MBOX_CONFIG_PROFILE_FLOOD_MODE_CFF (Petr Machata)  [Orabug: 36811057]
- mlxsw: cmd: Add cmd_mbox.query_fw.cff_support (Petr Machata)  [Orabug: 36811057]
- EDAC/bluefield: Convert to platform remove callback returning void (Uwe Kleine-K?nig)  [Orabug: 36811057]
- selftests: mlxsw: Add PCI reset test (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Implement PCI reset handlers (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Add support for new reset flow (Ido Schimmel)  [Orabug: 36811057]
- mlxsw: pci: Move software reset code to a separate function (Amit Cohen)  [Orabug: 36811057]
- mlxsw: pci: Rename mlxsw_pci_sw_reset() (Amit Cohen)  [Orabug: 36811057]
- mlxsw: Extend MRSR pack() function to support new commands (Amit Cohen)  [Orabug: 36811057]
- net/mlx5e: Remove early assignment to netdev->features (Tariq Toukan)  [Orabug: 36811057]
- net/mlx5e: Add local loopback counter to vport rep stats (Or Har-Toov)  [Orabug: 36811057]
- net/mlx5: Query maximum frequency adjustment of the PTP hardware clock (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Convert scaled ppm values outside the s32 range for PHC frequency adjustments (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Initialize clock->ptp_info inside mlx5_init_timer_clock (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5: Refactor real time clock operation checks for PHC (Rahul Rameshbabu)  [Orabug: 36811057]
- net/mlx5e: Access array with enum values instead of magic numbers (Gal Pressman)  [Orabug: 36811057]
- net/mlx5: simplify mlx5_set_driver_version string assignments (Justin Stitt)  [Orabug: 36811057]
- net/mlx5: Annotate struct mlx5_flow_handle with __counted_by (Kees Cook)  [Orabug: 36811057]
- net/mlx5: Annotate struct mlx5_fc_bulk with __counted_by (Kees Cook)  [Orabug: 36811057]
- net/mlx5e: Some cleanup in mlx5e_tc_stats_matchall() (Amir Tzin)  [Orabug: 36811057]
- net/mlx5: Allow sync reset flow when BF MGT interface device is present (Moshe Shemesh)  [Orabug: 36811057]
- net/mlx5: print change on SW reset semaphore returns busy (Moshe Shemesh)  [Orabug: 36811057]
- vdpa/mlx5: clean up indenting in handle_ctrl_vlan() (Dan Carpenter)  [Orabug: 36811057]
- vdpa/mlx5: fix error code for deleting vlan (Dan Carpenter)  [Orabug: 36811057]
- vdpa/mlx5: Fix syntax errors in comments (Xiang wangx)  [Orabug: 36811057]
- macsec: Fix use-after-free while sending the offloading packet (Jianbo Liu)  [Orabug: 37268700]  {CVE-2024-50261}
- xfrm: Export symbol xfrm_dev_state_delete. (Steffen Klassert)  [Orabug: 37357287]
- xfrm: Fix unregister netdevice hang on hardware offload. (Steffen Klassert)  [Orabug: 37357287]
- xfrm: fix a data-race in xfrm_lookup_with_ifid() (Eric Dumazet)  [Orabug: 37357287]
- xfrm: generalize xdo_dev_state_update_curlft to allow statistics update (Leon Romanovsky)  [Orabug: 37357287]
- xfrm: copy_to_user_state fetch offloaded SA packets/bytes statistics (Raed Salem)  [Orabug: 37357287]
- xfrm: annotate data-race around use_time (Eric Dumazet)  [Orabug: 37357287]
- xfrm: consistently use time64_t in xfrm_timer_handler() (Eric Dumazet)  [Orabug: 37357287]
- cpufreq: intel_pstate: Update Balance-performance EPP for Granite Rapids (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update Balance performance EPP for Emerald Rapids (Pedro Henrique Kopper)  [Orabug: 37383554]
- cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update Meteor Lake EPPs (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Switch to new Intel CPU model defines (Tony Luck)  [Orabug: 37383554]
- cpufreq: Switch to new Intel CPU model defines (Tony Luck)  [Orabug: 37383554]
- x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h (Tony Luck)  [Orabug: 37383554]
- x86/cpu: Add model number for another Intel Arrow Lake mobile processor (Tony Luck)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update default EPPs for Meteor Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Allow model specific EPPs (Srinivas Pandruvada)  [Orabug: 37383554]
- x86/cpu: Add model number for Intel Clearwater Forest processor (Tony Luck)  [Orabug: 37383554]
- cpufreq: intel_pstate: Update hybrid scaling factor for Meteor Lake (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Prioritize firmware-provided balance performance EPP (Srinivas Pandruvada)  [Orabug: 37383554]
- x86/cpu: Add model number for Intel Arrow Lake mobile processor (Tony Luck)  [Orabug: 37383554]
- x86/cpu: Update Hybrids (Peter Zijlstra)  [Orabug: 37383554]
- cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Enable HWP IO boost for all servers (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Srinivas Pandruvada)  [Orabug: 37383554]
- cpufreq: intel_pstate: Use firmware default EPP (Srinivas Pandruvada)  [Orabug: 37383554]
- net/mlx5: Add a timeout to acquire the command queue semaphore (Akiva Goldberger)  [Orabug: 37388415]
- PCI: Fix pci_enable_acs() support for the ACS quirks (Jason Gunthorpe)  [Orabug: 37477375]
- PCI: Clear Secondary Status errors after enumeration (Vidya Sagar)  [Orabug: 37477375]
- PCI/AER: Configure ECRC only if AER is native (Vidya Sagar)  [Orabug: 37477375]
- PCI: Extend ACS configurability (Vidya Sagar)  [Orabug: 37477375]
- NFSv4/pNFS: Do layout state recovery upon reboot (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Remove redundant call to unhash the layout (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Give nfs4_proc_layoutreturn() a flags argument (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Retry the layout return later in case of a timeout or reboot (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Handle server reboots in pnfs_poc_release() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pNFS: Add a helper to defer failed layoutreturn calls (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Add support for the PNFS_LAYOUT_FILE_BULK_RETURN flag (Trond Myklebust)  [Orabug: 37477755]
- pNFS: Add a flag argument to pnfs_destroy_layouts_byclid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4: Clean up encode_nfs4_stateid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4.1: constify the stateid argument in nfs41_test_stateid() (Trond Myklebust)  [Orabug: 37477755]
- NFSv4/pnfs: Remove redundant list check (Trond Myklebust)  [Orabug: 37477755]
- uek-rpm: Enable CONFIG_SENSORS_ARM_SCMI and CONFIG_MVL_MHU (Thomas Tai)  [Orabug: 37498899]

[5.15.0-305.176.3.el9uek]
- LTS version: v5.15.176 (Vijayendra Suman)
- mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (Seiji Nishikawa)
- dt-bindings: display: adi,adv7533: Drop single lane support (Biju Das)
- drm: adv7511: Drop dsi single lane support (Biju Das)
- net/sctp: Prevent autoclose integer overflow in sctp_association_init() (Nikolay Kuratov)
- sky2: Add device ID 11ab:4373 for Marvell 88E8075 (Pascal Hambourg)
- pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (Evgenii Shatokhin)
- RDMA/uverbs: Prevent integer overflow issue (Dan Carpenter)
- kcov: mark in_softirq_really() as __always_inline (Arnd Bergmann)
- modpost: fix the missed iteration for the max bit in do_input() (Masahiro Yamada)
- modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (Masahiro Yamada)
- usb: xhci: Avoid queuing redundant Stop Endpoint commands (Michal Pecio)
- ARC: build: Try to guess GCC variant of cross compiler (Leon Romanovsky)
- irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (Uros Bizjak)
- net: usb: qmi_wwan: add Telit FE910C04 compositions (Daniele Palmas)
- bpf: fix potential error return (Anton Protopopov)
- sound: usb: format: don't warn that raw DSD is unsupported (Adrian Ratiu)
- sound: usb: enable DSD output for ddHiFi TC44C (Adrian Ratiu)
- btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (Filipe Manana)
- drm/amdkfd: Correct the migration DMA map direction (Prike Liang)
- wifi: mac80211: wake the queues in case of failure in resume (Emmanuel Grumbach)
- btrfs: sysfs: fix direct super block member reads (Qu Wenruo)
- btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit (Anand Jain)
- btrfs: fix use-after-free when COWing tree bock and tracing is enabled (Filipe Manana)
- btrfs: rename and export __btrfs_cow_block() (Filipe Manana)
- ila: serialize calls to nf_register_net_hooks() (Eric Dumazet)
- af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet)
- af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet)
- net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (Maciej S. Szmigiero)
- net: restrict SO_REUSEPORT to inet sockets (Eric Dumazet)
- RDMA/rtrs: Ensure 'ib_sge list' is accessible (Li Zhijian)
- net: mv643xx_eth: fix an OF node reference leak (Joe Hattori)
- eth: bcmsysport: fix call balance of priv->clk handling routines (Vitalii Mordan)
- ALSA: usb-audio: US16x08: Initialize array before use (Tanya Agarwal)
- net: llc: reset skb->transport_header (Antonio Pastor)
- netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext (Pablo Neira Ayuso)
- drm/i915/dg1: Fix power gate sequence. (Rodrigo Vivi)
- netrom: check buffer length before accessing it (Ilya Shchipletsov)
- net: fix memory leak in tcp_conn_request() (Wang Liang)
- net: stmmac: restructure the error path of stmmac_probe_config_dt() (Joe Hattori)
- net: stmmac: don't create a MDIO bus if unnecessary (Andrew Halaney)
- net: stmmac: platform: provide devm_stmmac_probe_config_dt() (Bartosz Golaszewski)
- RDMA/hns: Fix missing flush CQE for DWQE (Chengchang Tang)
- RDMA/hns: Fix warning storm caused by invalid input in IO path (Chengchang Tang)
- RDMA/hns: Fix mapping error of zero-hop WQE buffer (wenglianfa)
- RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() (Yunsheng Lin)
- RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() (Yixing Liu)
- drm/bridge: adv7511_audio: Update Audio InfoFrame properly (Stefan Ekenberg)
- RDMA/bnxt_re: Fix the locking while accessing the QP table (Selvin Xavier)
- RDMA/bnxt_re: Fix max_qp_wrs reported (Selvin Xavier)
- RDMA/bnxt_re: Fix reporting hw_ver in query_device (Kalesh AP)
- RDMA/bnxt_re: Add check for path mtu in modify_qp (Saravanan Vajravel)
- RDMA/mlx5: Enforce same type port association for multiport RoCE (Patrisious Haddad)
- xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic (Mathias Nyman)
- usb: xhci: Limit Stop Endpoint retries (Michal Pecio)
- xhci: retry Stop Endpoint on buggy NEC controllers (Michal Pecio)
- thunderbolt: Add support for Intel Panther Lake-M/P (Mika Westerberg)
- thunderbolt: Add support for Intel Lunar Lake (Mika Westerberg)
- thunderbolt: Add Intel Barlow Ridge PCI ID (Mika Westerberg)
- thunderbolt: Add support for Intel Meteor Lake (Mika Westerberg)
- thunderbolt: Add support for Intel Raptor Lake (George D Sworo)
- tracing: Have process_string() also allow arrays (Steven Rostedt)
- selinux: ignore unknown extended permissions (Thi?baud Weksteen)
- x86/hyperv: Fix hv tsc page based sched_clock for hibernation (Naman Jain)
- net: dsa: improve shutdown sequence (Vladimir Oltean)
- nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (Yang Erkun)
- btrfs: avoid monopolizing a core when activating a swap file (Filipe Manana)
- power: supply: gpio-charger: Fix set charge current limits (Dimitri Fedrau)
- tracing: Prevent bad count for tracing_cpumask_write (Lizhi Xu)
- tracing: Constify string literal data member in struct trace_event_call (Christian G?ttsche)
- ksmbd: fix racy issue from session lookup and expire (Namjae Jeon)
- lib: stackinit: hide never-taken branch from compiler (Kees Cook)
- drm/dp_mst: Verify request type in the corresponding down message reply (Imre Deak)
- arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs (Catalin Marinas)
- arm64: mm: Rename asid2idx() to ctxid2asid() (Yunfeng Ye)
- ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write (Jordy Zomer)
- ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read (Jordy Zomer)
- drm/dp_mst: Fix MST sideband message body length check (Imre Deak)
- bpf: Check validity of link->type in bpf_link_show_fdinfo() (Hou Tao)
- MIPS: Probe toolchain support of -msym32 (Jiaxun Yang)
- vmalloc: fix accounting with i915 (Matthew Wilcox (Oracle))
- virtio-blk: don't keep queue frozen during system suspend (Ming Lei)
- scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (Cathy Avery)
- scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time (Ranjan Kumar)
- platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (Armin Wolf)
- regmap: Use correct format specifier for logging range errors (Mark Brown)
- ALSA: hda/conexant: fix Z60MR100 startup pop issue (bo liu)
- scsi: megaraid_sas: Fix for a potential deadlock (Tomas Henzl)
- scsi: qla1280: Fix hw revision numbering for ISP1020/1040 (Magnus Lindholm)
- watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 (James Hilliard)
- tracing/kprobe: Make trace_kprobe's module callback called after jump_label update (Masami Hiramatsu (Google))
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter)
- dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (Chen Ridong)
- dmaengine: dw: Select only supported masters for ACPI devices (Andy Shevchenko)
- dmaengine: mv_xor: fix child node refcount handling in early exit (Javier Carrasco)
- phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (Zijun Hu)
- phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (Zijun Hu)
- phy: core: Fix that API devm_phy_put() fails to release the phy (Zijun Hu)
- phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (Zijun Hu)
- phy: core: Fix an OF node refcount leakage in _of_phy_get() (Zijun Hu)
- mtd: rawnand: arasan: Fix missing de-registration of NAND (Maciej Andrzejewski)
- mtd: rawnand: arasan: Fix double assertion of chip-select (Maciej Andrzejewski)
- mtd: diskonchip: Cast an operand to prevent potential overflow (Zichen Xie)
- nfsd: restore callback functionality for NFSv4.0 (NeilBrown)
- bpf: Check negative offsets in __bpf_skb_min_len() (Cong Wang)
- tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection (Zijian Zhang)
- tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() (Cong Wang)
- mm/vmstat: fix a W=1 clang compiler warning (Bart Van Assche)
- media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (Nikita Zhandarovich)
- drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update (Michel D?nzer)
- epoll: Add synchronous wakeup support for ep_poll_callback (Xuewen Yan)
- ceph: validate snapdirname option length when mounting (Ilya Dryomov)
- of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (Zijun Hu)
- of: Fix error path in of_parse_phandle_with_args_map() (Herve Codina)
- udmabuf: also check for F_SEAL_FUTURE_WRITE (Jann Horn)
- nilfs2: prevent use of deleted inode (Edward Adam Davis)
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu)
- NFS/pnfs: Fix a live lock between recalled layouts and layoutget (Trond Myklebust)
- tracing: Add "%s" check in test_event_printk() (Steven Rostedt)
- tracing: Add missing helper functions in event pointer dereference check (Steven Rostedt)
- tracing: Fix test_event_printk() to process entire print argument (Steven Rostedt)
- KVM: x86: Play nice with protected guests in complete_hypercall_exit() (Sean Christopherson)
- Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (Michael Kelley)
- btrfs: tree-checker: reject inline extent items with 0 ref count (Qu Wenruo)
- zram: refuse to use zero sized block device as backing device (Kairui Song)
- sh: clk: Fix clk_enable() to return 0 on NULL clk (Geert Uytterhoeven)
- hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (Murad Masimov)
- hwmon: (tmp513) Fix Current Register value interpretation (Murad Masimov)
- hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (Murad Masimov)
- hwmon: (tmp513) Use SI constants from units.h (Andy Shevchenko)
- hwmon: (tmp513) Simplify with dev_err_probe() (Andy Shevchenko)
- hwmon: (tmp513) Don't use "proxy" headers (Andy Shevchenko)
- drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (Ville Syrj?l?)
- USB: serial: option: add Telit FE910C04 rmnet compositions (Daniele Palmas)
- USB: serial: option: add MediaTek T7XX compositions (Jack Wu)
- USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (Mank Wang)
- USB: serial: option: add MeiG Smart SLM770A (Michal Hrusecky)
- USB: serial: option: add TCL IK512 MBIM & ECM (Daniel Swanemar)
- efivarfs: Fix error on non-existent file (James Bottomley)
- i2c: riic: Always round-up when calculating bus period (Geert Uytterhoeven)
- chelsio/chtls: prevent potential integer overflow on 32bit (Dan Carpenter)
- mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (Prathamesh Shete)
- net: mdiobus: fix an OF node reference leak (Joe Hattori)
- netfilter: ipset: Fix for recursive locking warning (Phil Sutter)
- net: ethernet: bgmac-platform: fix an OF node reference leak (Joe Hattori)
- net: hinic: Fix cleanup in create_rxqs/txqs() (Dan Carpenter)
- ionic: use ee->offset when returning sprom data (Shannon Nelson)
- ionic: Fix netdev notifier unregister on failure (Brett Creeley)
- netdevsim: prevent bad user input in nsim_dev_health_break_write() (Eric Dumazet)
- net/smc: check return value of sock_recvmsg when draining clc data (Guangguan Wang)
- net/smc: check smcd_v2_ext_offset when receiving proposal msg (Guangguan Wang)
- net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (Guangguan Wang)
- net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll (Guangguan Wang)
- erofs: fix incorrect symlink detection in fast symlink (Gao Xiang)
- i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun)
- usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled (Peng Hongchi)
- MIPS: Loongson64: DTS: Fix msi node for ls7a (Jiaxun Yang)
- PCI: Add ACS quirk for Broadcom BCM5760X NIC (Ajit Khaparde)
- PCI: vmd: Create domain symlink before pci_bus_add_devices() (Jiwei Sun)
- ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (Pierre-Louis Bossart)
- usb: cdns3: Add quirk flag to enable suspend residency (Roger Quadros)
- ALSA: usb: Fix UBSAN warning in parse_audio_unit() (Takashi Iwai)
- PCI/AER: Disable AER service on suspend (Kai-Heng Feng)
- PCI: Use preserve_config in place of pci_flags (Vidya Sagar)
- net: sched: fix ordering of qlen adjustment (Lion Ackermann)
- LTS version: v5.15.175 (Vijayendra Suman)
- x86/static-call: fix 32-bit build (Juergen Gross)
- ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter)
- x86/xen: remove hypercall page (Juergen Gross)
- x86/xen: use new hypercall functions instead of hypercall page (Juergen Gross)
- x86/xen: add central hypercall functions (Juergen Gross)
- x86/xen: don't do PV iret hypercall through hypercall page (Juergen Gross)
- x86/static-call: provide a way to do very early static-call updates (Juergen Gross)
- objtool/x86: allow syscall instruction (Juergen Gross)
- x86: make get_cpu_vendor() accessible from Xen code (Juergen Gross)
- xen/netfront: fix crash when removing device (Juergen Gross)
- Revert "parisc: fix a possible DMA corruption" (Greg Kroah-Hartman)
- tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov)
- bpf: sync_linked_regs() must preserve subreg_def (Eduard Zingerman)
- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor)
- ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin)
- team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann)
- bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann)
- net/sched: netem: account for backlog updates from child qdisc (Martin Ottens)
- Documentation: PM: Clarify pm_runtime_resume_and_get() return value (Paul Barker)
- qca_spi: Make driver probing reliable (Stefan Wahren)
- qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren)
- cxgb4: use port number to set mac addr (Anumula Murali Mohan Reddy)
- ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen)
- net: sparx5: fix the maximum frame length register (Daniel Machon)
- net: sparx5: fix FDMA performance issue (Daniel Machon)
- net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet)
- ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init() (Thomas Wei?schuh)
- ptp: kvm: Use decrypted memory in confidential guest on x86 (Jeremi Piotrowski)
- selftests: mlxsw: sharedbuffer: Remove duplicate test cases (Danielle Ratson)
- selftests: mlxsw: sharedbuffer: Remove h1 ingress test case (Danielle Ratson)
- tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet)
- batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel)
- batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel)
- batman-adv: Do not send uninitialized TT changes (Remi Pommarel)
- acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (Suraj Sonawane)
- exfat: fix potential deadlock on __exfat_get_dentry_set (Sungjong Seo)
- virtio/vsock: Fix accept_queue memory leak (Michal Luczaj)
- bpf, sockmap: Fix update element with same (Michal Luczaj)
- xfs: fix scrub tracepoints when inode-rooted btrees are involved (Darrick J. Wong)
- xfs: return from xfs_symlink_verify early on V4 filesystems (Darrick J. Wong)
- xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong)
- xfs: update btree keys correctly when _insrec splits an inode root block (Darrick J. Wong)
- drm/i915: Fix memory leak by correcting cache object name in error handler (Jiasheng Jiang)
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu)
- usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan)
- usb: dwc2: Fix HCD port connection race (Stefan Wahren)
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren)
- usb: dwc2: Fix HCD resume (Stefan Wahren)
- ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori)
- usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson)
- ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (Jaakko Salo)
- tcp: check space before adding MPTCP SYN options (MoYuanhao)
- LTS version: v5.15.174 (Vijayendra Suman)
- Bluetooth: hci_core: Fix calling mgmt_device_connected (Luiz Augusto von Dentz)
- net/smc: Fix af_ops of child socket pointing to released memory (Karsten Graul)
- media: venus: vdec: fixed possible memory leak issue (Ameer Hamza)
- serial: amba-pl011: fix build regression (Arnd Bergmann)
- drm/amdgpu: rework resume handling for display (v2) (Alex Deucher)
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (Wayne Lin)
- net: dsa: microchip: correct KSZ8795 static MAC table access (Tristram Ha)
- Bluetooth: L2CAP: Fix uaf in l2cap_connect (Luiz Augusto von Dentz)
- arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (Mark Rutland)
- arm64/sve: Discard stale CPU state when handling SVE traps (Mark Brown)
- gve: Fixes for napi_poll when budget is 0 (Ziwei Xiao)
- scsi: core: Fix scsi_mode_select() buffer length handling (Damien Le Moal)
- Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun)
- fou: remove warn in gue_gro_receive on unsupported protocol (Willem de Bruijn)
- ima: Fix use-after-free on a dentry's dname.name (Stefan Berger)
- crypto: hisilicon/qm - inject error before stopping queue (Weili Qian)
- drm/amd/display: Check BIOS images before it is used (Alex Hung)
- mmc: mtk-sd: Fix error handle of probe function (Andy-ld Lu)
- xhci: dbc: Fix STALL transfer event handling (Mathias Nyman)
- mm/damon/vaddr: fix issue in damon_va_evenly_split_region() (Zheng Yejian)
- mm/damon/vaddr-test: split a test function having >1024 bytes frame size (SeongJae Park)
- jffs2: Fix rtime decompressor (Richard Weinberger)
- jffs2: Prevent rtime decompress memory corruption (Kinsey Moore)
- KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang)
- KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang)
- KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang)
- tracing/eprobe: Fix to release eprobe when failed to add dyn_event (Masami Hiramatsu (Google))
- btrfs: fix missing snapshot drew unlock when root is dead during swap activation (Filipe Manana)
- sched/core: Prevent wakeup of ksoftirqd during idle load balance (K Prateek Nayak)
- sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy (K Prateek Nayak)
- sched/fair: Add NOHZ balancer flag for nohz.next_balance updates (Valentin Schneider)
- sched/core: Remove the unnecessary need_resched() check in nohz_csd_func() (K Prateek Nayak)
- modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner)
- modpost: Include '.text.*' in TEXT_SECTIONS (Nathan Chancellor)
- misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman)
- powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman)
- MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a (Xi Ruoyao)
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang)
- i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li)
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou)
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch)
- PCI: Detect and trust built-in Thunderbolt chips (Esther Shimanovich)
- i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (Jarkko Nikula)
- f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han)
- nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang)
- pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n)
- scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara)
- scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara)
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha)
- scsi: hisi_sas: Add cond_resched() for no forced preemption model (Yihang Li)
- tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak)
- pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU (Esben Haabendal)
- netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao)
- net/neighbor: clear error in case strict check is not set (Jakub Kicinski)
- rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov)
- ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman)
- Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (Luiz Augusto von Dentz)
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis)
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong)
- drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang)
- drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (Victor Zhao)
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya)
- jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal)
- jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal)
- jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal)
- dma-debug: fix a possible deadlock on radix_lock (Levi Yun)
- drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (Lang Yu)
- drm/amdgpu: Dereference the ATCS ACPI buffer (Prike Liang)
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (Victor Lu)
- drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (Manikandan Muralidharan)
- wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev)
- wifi: ath5k: add PCI ID for SX76X (Rosen Penev)
- net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin)
- net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin)
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin)
- net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin)
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin)
- af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin)
- net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina)
- net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman)
- net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman)
- samples/bpf: Fix a resource leak (Zhu Jun)
- r8169: don't apply UDP padding quirk on RTL8126A (Heiner Kallweit)
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev)
- drm/mcde: Enable module autoloading (Liao Chen)
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a)
- drm/vc4: hvs: Set AXI panic modes for the HVS (Dave Stevenson)
- soc: imx8m: Probe the SoC driver as platform driver (Marek Vasut)
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar)
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given)
- kcsan: Turn report_filterlist_lock into a raw_spinlock (Marco Elver)
- kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all() (Mark Brown)
- btrfs: avoid unnecessary device path update for the same device (Qu Wenruo)
- s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter)
- epoll: annotate racy check (Christian Brauner)
- iommu/arm-smmu: Defer probe of clients after smmu device bound (Pratyush Brahma)
- ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang)
- mmc: core: Further prevent card detect during shutdown (Ulf Hansson)
- mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (Hans de Goede)
- regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav)
- xsk: fix OOB map writes when deleting elements (Maciej Fijalkowski)
- dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig)
- bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski)
- bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che)
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi)
- scsi: ufs: core: sysfs: Prevent div by zero (Gwendal Grignou)
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap)
- scsi: qla2xxx: Fix use after free on unload (Quinn Tran)
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy)
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran)
- ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (Sahas Leelodharry)
- ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (Nazar Bilinskyi)
- ALSA: usb-audio: add mixer mapping for Corsair HS80 (Marie Ramlow)
- arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (Mark Rutland)
- tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu)
- can: dev: can_set_termination(): allow sleeping GPIOs (Marc Kleine-Budde)
- watchdog: rti: of: honor timeout-sec property (Alexander Sverdlin)
- HID: wacom: fix when get product name maybe null pointer (WangYuli)
- bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao)
- bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao)
- ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa)
- drm/v3d: Enable Performance Counters before clearing them (Ma?ra Canal)
- spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao)
- tools: Override makefile ARCH variable if defined, but empty (Bj?rn T?pel)
- ALSA: usb-audio: Notify xrun for low-latency mode (Takashi Iwai)
- ALSA: pcm: Avoid reference to status->state (Takashi Iwai)
- ALSA: pcm: Add more disconnection checks at file ops (Takashi Iwai)
- tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang)
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao)
- bpftool: fix potential NULL pointer dereferencing in prog_dump() (Amir Mohammadi)
- bpftool: Remove asserts from JIT disassembler (Quentin Monnet)
- serial: amba-pl011: Fix RX stall when DMA is used (Kartik Rajput)
- serial: amba-pl011: Use port lock wrappers (Thomas Gleixner)
- dt-bindings: serial: rs485: Fix rs485-rts-delay property (Michal Simek)
- dt_bindings: rs485: Correct delay values (Lino Sanfilippo)
- gpio: grgpio: Add NULL check in grgpio_probe (Charles Han)
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski)
- geneve: do not assume mac header is set in geneve_xmit_skb() (Eric Dumazet)
- ethtool: Fix wrong mod state in case of verbose and no_mask bitset (Kory Maincent)
- netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso)
- netfilter: ipset: Hold module reference while requesting a module (Phil Sutter)
- net: sched: fix erspan_opt settings in cls_flower (Xin Long)
- igb: Fix potential invalid memory access in igb_init_module() (Yuan Can)
- net/qed: allow old cards not supporting "num_images" to work (Louis Leseur)
- net/smc: fix LGR and link use-after-free issue (Wen Gu)
- net/smc: Limit backlog connections (D. Wythe)
- tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima)
- dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov)
- net/ipv6: release expired exception dst cached in socket (Jiri Wiesner)
- can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov)
- net: hsr: avoid potential out-of-bound access in fill_frame_info() (Eric Dumazet)
- net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens)
- ptp: Add error handling for adjfine callback in ptp_clock_adjtime (Ajay Kaher)
- netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov)
- ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia)
- can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi)
- can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (Dario Binacchi)
- can: do not increase rx statistics when generating a CAN rx error message frame (Vincent Mailhol)
- can: peak_usb: CANFD: store 64-bits hw timestamps (Stephane Grosjean)
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana)
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi)
- drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach)
- drm/sti: avoid potential dereference of error pointers (Ma Ke)
- drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (Ma Ke)
- drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (Ma Ke)
- btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (Josef Bacik)
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun)
- nfsd: make sure exp active before svc_export_show (Yang Erkun)
- PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal)
- dm thin: Add missing destroy_work_on_stack() (Yuan Can)
- ovl: properly handle large files in ovl_security_fileattr (Oleksandr Tymoshenko)
- PCI: keystone: Add link up check to ks_pcie_other_map_bus() (Kishon Vijay Abraham I)
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li)
- scsi: ufs: exynos: Fix hibern8 notify callbacks (Peter Griffin)
- util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean)
- s390/entry: Mark IRQ entries to fix stack depot warnings (Vasily Gorbik)
- ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu)
- btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana)
- btrfs: add a sanity check for btrfs root in btrfs_search_slot() (Lizhi Xu)
- btrfs: add might_sleep() annotations (ChenXiaoSong)
- quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo)
- xfs: remove unknown compat feature check in superblock write validation (Long Li)
- xfs: fix log recovery when unknown rocompat bits are set (Darrick J. Wong)
- ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang)
- sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter)
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian)
- sunrpc: remove unnecessary test in rpc_task_set_client() (Thiago Rafael Becker)
- nfs: ignore SB_RDONLY when mounting nfs (Li Lingfeng)
- modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada)
- rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier)
- 9p/xen: fix release of IRQ (Alex Zenla)
- 9p/xen: fix init sequence (Alex Zenla)
- block: return unsigned int from bdev_io_min (Christoph Hellwig)
- jffs2: fix use of uninitialized variable (Qingfang Deng)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed)
- ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng)
- ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng)
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao)
- rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu)
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust)
- um: Always dump trace for specified task in show_stack (Tiwei Bie)
- um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie)
- um: Fix potential integer overflow during physmem setup (Tiwei Bie)
- rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson)
- SUNRPC: make sure cache entry active before cache_show (Yang Erkun)
- NFSD: Prevent a potential integer overflow (Chuck Lever)
- lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski)
- usb: dwc3: gadget: Fix looping of queued SG entries (Thinh Nguyen)
- usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen)
- ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai)
- ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar)
- ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang)
- ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang)
- ALSA: pcm: Add sanity NULL check for the default mmap fault handler (Takashi Iwai)
- media: v4l2-core: v4l2-dv-timings: check cvt/gtf result (Hans Verkuil)
- soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (Javier Carrasco)
- media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen)
- HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke)
- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon)
- sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen)
- um: vector: Do not use drvdata in release (Tiwei Bie)
- serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu)
- um: net: Do not use drvdata in release (Tiwei Bie)
- um: ubd: Do not use drvdata in release (Tiwei Bie)
- ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng)
- platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (Javier Carrasco)
- cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (Jinjie Ruan)
- mtd: spi-nor: core: replace dummy buswidth from addr to data (Cheng Ming Lin)
- spi: Fix acpi deferred irq probe (Stanislaw Gruszka)
- netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park)
- gpio: exar: set value when external pull-up or pull-down is present (Sai Kumar Cholleti)
- Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman)
- serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea)
- Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil)
- driver core: bus: Fix double free in driver API bus_register() (Zijun Hu)
- usb: xhci: Fix TD invalidation under pending Set TR Dequeue (Michal Pecio)
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura)
- exfat: fix uninit-value in __exfat_get_dentry_set (Namjae Jeon)
- locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass() (Ahmed Ehab)
- tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet)
- apparmor: test: Fix memory leak for aa_unpack_strdup() (Jinjie Ruan)
- comedi: Flush partial mappings in error case (Jann Horn)
- fsnotify: fix sending inotify event with unexpected filename (Amir Goldstein)
- PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner)
- KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta)
- powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (Gautam Menghani)
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers)
- perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter)
- ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen)
- jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov)
- ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o)
- ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park)
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens)
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu)
- ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (Hans de Goede)
- Revert "drivers: clk: zynqmp: update divider round rate logic" (Joel Guittet)
- usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan)
- ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai)
- xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen)
- ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (Namjae Jeon)
- parisc: fix a possible DMA corruption (Mikulas Patocka)
- apparmor: fix 'Do simple duplicate message elimination' (chao liu)
- ALSA: hda/realtek: Update ALC256 depop procedure (Kailang Yang)
- counter: stm32-timer-cnt: Add check for clk_enable() (Jiasheng Jiang)
- misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan)
- USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis)
- USB: chaoskey: fail open after removal (Oliver Neukum)
- usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum)
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park)
- iio: light: al3010: Fix an error handling path in al3010_probe() (Christophe JAILLET)
- bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (Saravanan Vajravel)
- net: hsr: fix hsr_init_sk() vs network/transport headers. (Eric Dumazet)
- spi: atmel-quadspi: Fix register name in verbose logging function (Cs?k?s, Bence)
- octeontx2-af: RPM: Fix mismatch in lmac type (Hariprasad Kelam)
- net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier)
- marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan)
- net: mdio-ipq4019: add missing error check (Rosen Penev)
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel)
- tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi)
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel)
- power: supply: bq27xxx: Fix registers of bq27426 (Barnab?s Cz?m?n)
- power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche)
- fs_parser: update mount_api doc to match function signature (Randy Dunlap)
- vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon)
- selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels (Michael Ellerman)
- vdpa/mlx5: Fix suboptimal range on iotlb iteration (Si-Wei Liu)
- hwmon: (tps23861) Fix reporting of negative temperatures (Murad Masimov)
- NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever)
- svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (Ye Bin)
- sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (Luis Chamberlain)
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever)
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever)
- remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region (Sibi Sankar)
- rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek)
- rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson)
- rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam)
- rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam)
- perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson)
- perf trace: Do not lose last events in a race (Benjamin Peterson)
- svcrdma: Address an integer overflow (Chuck Lever)
- m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli)
- m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois)
- perf trace: avoid garbage when not printing a trace event's arguments (Benjamin Peterson)
- f2fs: check curseg->inited before write_sum_page in change_curseg (Yongpeng Yang)
- f2fs: remove the unused flush argument to change_curseg (Christoph Hellwig)
- f2fs: open code allocate_segment_by_default (Christoph Hellwig)
- f2fs: remove struct segment_allocation default_salloc_ops (Christoph Hellwig)
- f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block (LongPing Wei)
- PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen)
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng)
- perf probe: Correct demangled symbols in C++ program (Leo Yan)
- perf probe: Fix libdw memory leak (Ian Rogers)
- PCI: Fix reset_method_store() memory leak (Todd Kjos)
- perf cs-etm: Don't flush when packet_queue fills up (James Clark)
- mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (Dan Carpenter)
- pinctrl: k210: Undef K210_PC_DEFAULT (zhang jiao)
- clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa)
- dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa)
- fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei)
- fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann)
- powerpc/kexec: Fix return of uninitialized variable (Zhang Zekun)
- powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek)
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov)
- RDMA/hns: Fix out-of-order issue of requester when setting FENCE (Junxian Huang)
- scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei)
- scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei)
- scsi: fusion: Remove unused variable 'rc' (Zeng Heng)
- scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin)
- mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong)
- clk: imx: clk-scu: fix clk enable state save and restore (Dong Aisheng)
- clk: imx: lpcg-scu: SW workaround for errata (e10858) (Peng Fan)
- powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (Michael Ellerman)
- powerpc/mm/fault: Fix kfence page fault reporting (Ritesh Harjani (IBM))
- mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal)
- cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko)
- mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko)
- mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson)
- mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan)
- pinctrl: zynqmp: drop excess struct member description (Bartosz Golaszewski)
- trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun)
- bpf: fix recursive lock when verdict program return SK_PASS (Jiayuan Chen)
- wireguard: selftests: load nf_conntrack if not present (Hangbin Liu)
- netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao)
- Bluetooth: fix use-after-free in device_for_each_child() (Dmitry Antipov)
- driver core: Introduce device_find_any_child() helper (Andy Shevchenko)
- ALSA: 6fire: Release resources at card release (Takashi Iwai)
- ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (Takashi Iwai)
- net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng)
- drm/amdkfd: Fix wrong usage of INIT_WORK() (Yuan Can)
- selftests: net: really check for bg process completion (Paolo Abeni)
- bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang)
- selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap (Zijian Zhang)
- selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap (Zijian Zhang)
- selftests, bpf: Add one test for sockmap with strparser (Liu Jian)
- selftests/bpf: Fix SENDPAGE data logic in test_sockmap (Zijian Zhang)
- selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap (Zijian Zhang)
- netlink: typographical error in nlmsg_type constants definition (Maurice Lambert)
- netfilter: nf_tables: must hold rcu read lock while iterating object type list (Florian Westphal)
- netfilter: nf_tables: skip transaction if update object is not implemented (Pablo Neira Ayuso)
- drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (Zichen Xie)
- wifi: wfx: Fix error handling in wfx_core_init() (Yuan Can)
- drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach)
- drm/etnaviv: fix power register offset on GC300 (Doug Brown)
- drm/etnaviv: Request pages from DMA32 zone on addressing_limited (Xiaolei Wang)
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (Dipendra Khadka)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (Dipendra Khadka)
- octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (Dipendra Khadka)
- drm: fsl-dcu: enable PIXCLK on LS1021A (Matthias Schiffer)
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak)
- selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap (Zijian Zhang)
- selftests/bpf: Fix msg_verify_data in test_sockmap (Zijian Zhang)
- drm/bridge: tc358767: Fix link properties discovery (Tomi Valkeinen)
- netdevsim: copy addresses for both in and out paths (Hangbin Liu)
- libbpf: fix sym_is_subprog() logic for weak global subprogs (Andrii Nakryiko)
- bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen)
- libbpf: Fix output .symtab byte-order during linking (Tony Ambardar)
- drm/bridge: anx7625: Drop EDID cache on bridge power off (Pin-yen Lin)
- ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode (Macpaul Lin)
- ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang)
- ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer)
- ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer)
- ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer)
- dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov)
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (Baochen Qiang)
- wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (Baochen Qiang)
- drm/v3d: Address race-condition in MMU flush (Ma?ra Canal)
- drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen)
- drm/omap: Fix possible NULL dereference (Tomi Valkeinen)
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park)
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko)
- platform/x86: panasonic-laptop: Return errno correctly in show callback (Yao Zi)
- platform/x86: panasonic-laptop: Replace snprintf in show functions with sysfs_emit (Qing Wang)
- media: atomisp: Add check for rgby_data memory allocation failure (Li Huafei)
- media: atomisp: remove #ifdef HAS_NO_HMEM (Mauro Carvalho Chehab)
- media: venus: provide ctx queue lock for ioctl synchronization (Sergey Senozhatsky)
- venus: venc: add handling for VIDIOC_ENCODER_CMD (Dikshita Agarwal)
- media: venus : Addition of support for VIDIOC_TRY_ENCODER_CMD (Dikshita Agarwal)
- media: venus : Addition of EOS Event support for Encoder (Viswanath Boma)
- media: venus: vdec: decoded picture buffer handling during reconfig sequence (Mansur Alisha Shaik)
- media: venus: venc: Use pmruntime autosuspend (Stanimir Varbanov)
- firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu)
- selftests/resctrl: Protect against array overrun during iMC config parsing (Reinette Chatre)
- arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators (Chen-Yu Tsai)
- arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names (Chen-Yu Tsai)
- arm64: dts: mt8183: jacuzzi: Move panel under aux-bus (Hsin-Yi Wang)
- arm64: dts: mt8183: jacuzzi: remove unused ddc-i2c-bus (Hsin-Yi Wang)
- regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko)
- spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time? (Jinjie Ruan)
- spi: tegra210-quad: Avoid shift-out-of-bounds (Breno Leitao)
- pmdomain: ti-sci: Add missing of_node_put() for args.np (Zhang Zekun)
- ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara)
- pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle (Clark Wang)
- arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu)
- cgroup/bpf: only cgroup v2 can be attached by bpf programs (Chen Ridong)
- Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline" (Chen Ridong)
- arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad (Chen-Yu Tsai)
- arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4 (Hsin-Te Yuan)
- arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4 (Hsin-Te Yuan)
- tpm: fix signed/unsigned bug when checking event logs (Gregory Price)
- mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski)
- soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter)
- soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- spi: spi-fsl-lpspi: downgrade log level for pio mode (Alexander Stein)
- clocksource/drivers:sp804: Make user selectable (Mark Brown)
- kcsan, seqlock: Fix incorrect assumption in read_seqbegin() (Marco Elver)
- kcsan, seqlock: Support seqcount_latch_t (Marco Elver)
- seqlock/latch: Provide raw_read_seqcount_latch_retry() (Peter Zijlstra)
- timekeeping: Consolidate fast timekeeper (Thomas Gleixner)
- time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda)
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET)
- crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong)
- crypto: caam - add error check to caam_rsa_set_priv_key_form (Chen Ridong)
- EDAC/igen6: Avoid segmentation fault on module unload (Orange Kao)
- crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C)
- crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang)
- EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh)
- thermal: core: Initialize thermal zones before registering them (Rafael J. Wysocki)
- crypto: qat - remove faulty arbiter config reset (Ahsan Atta)
- EDAC/bluefield: Fix potential integer overflow (David Thompson)
- firmware: google: Unregister driver_info on failure (Yuan Can)
- crypto: caam - Fix the pointer passed to caam_qi_shutdown() (Christophe JAILLET)
- hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo)
- s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada)
- acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin)
- arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (Masahiro Yamada)
- m68k: mvme147: Reinstate early console (Daniel Palmer)
- m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven)
- m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer)
- nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig)
- initramfs: avoid filename buffer overrun (David Disseldorp)
- mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski)
- brd: defer automatic disk creation until module initialization succeeds (Yang Erkun)
- brd: remove brd_devices_mutex mutex (Tetsuo Handa)
- s390/cio: Do not unregister the subchannel based on DNV (Vineeth Vijayan)
- kselftest/arm64: mte: fix printf type warnings about longs (Andre Przywara)
- x86/barrier: Do not serialize MSR accesses on AMD (Borislav Petkov (AMD))
- nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan)
- cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r)
- rcu-tasks: Idle tasks on offline CPUs are in quiescent states (Paul E. McKenney)
- ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao)
- ARM: 9420/1: smp: Fix SMP for xip kernels (Harith G)
- ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (Eryk Zagorski)
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang)
- ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan)
- ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan)
- can: j1939: fix error in J1939 documentation. (Alexander H?lzl)
- platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (Kurt Borja)
- platform/x86: dell-smbios-base: Extends support to Alienware products (Kurt Borja)
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko)
- soc: qcom: Add check devm_kasprintf() returned value (Charles Han)
- net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin)
- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann)
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan)
- selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian)
- usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (Benjamin Gro?e)
- mac80211: fix user-power when emulating chanctx (Ben Greear)
- wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (Daniel Gabay)
- ASoC: Intel: sst: Support LPE0F28 ACPI HID (Hans de Goede)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede)
- ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (Hans de Goede)
- NFS: nfs_async_write_reschedule_io must not recurse into the writeback code (Trond Myklebust)
- mm: resolve faulty mmap_region() error path behaviour (Lorenzo Stoakes)
- mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (Lorenzo Stoakes)
- mm: unconditionally close VMAs on error (Lorenzo Stoakes)
- mm: avoid unsafe VMA hook invocation when error arises on mmap hook (Lorenzo Stoakes)
- mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (Paolo Abeni)
- NFSD: Never decrement pending_async_copies on error (Chuck Lever)
- NFSD: Initialize struct nfsd4_copy earlier (Chuck Lever)
- NFSD: Limit the number of concurrent async COPY operations (Chuck Lever)
- NFSD: Async COPY result needs to return a write verifier (Chuck Lever)
- NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (Dai Ngo)
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab)
- mmc: sunxi-mmc: Fix A100 compatible description (Andre Przywara)
- mmc: sunxi-mmc: Add D1 MMC variant (Samuel Holland)
- drm/bridge: tc358768: Fix DSI command tx (Francesco Dolcini)
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi)
- ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov)
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi)
- KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson)
- KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (Sean Christopherson)
- vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (Si-Wei Liu)
- ocfs2: uncache inode which has failed entering the group (Dmitry Antipov)
- mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (Jinjiang Tu)
- x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (Baoquan He)
- ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (Harith G)
- samples: pktgen: correct dev to DEV (Wei Fang)
- net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Moshe Shemesh)
- net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea)
- net/mlx5: fs, lock FTE when checking if active (Mark Bloch)
- drm/rockchip: vop: Fix a dereferenced before check warning (Andy Yan)
- netlink: terminate outstanding dump on socket close (Jakub Kicinski)
- clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos)
- leds: lp55xx: Remove redundant test for invalid channel number (Michal Vok??)
- iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (Mostafa Saleh)
- vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event (MengEn Sun)
- ftrace: Fix regression with module command in stack_trace_filter (guoweikang)
- ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev)
- media: uvcvideo: Require entities to have a non-zero unique ID (Thadeu Lima de Souza Cascardo)
- media: uvcvideo: Stop stream during unregister (Ricardo Ribalda)
- media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui)
- media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan)
- media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan)
- media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao)
- media: imx-jpeg: Ensure power suppliers be suspended before detach them (Ming Qian)
- media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan)
- media: imx-jpeg: Set video drvdata before register video device (Ming Qian)
- arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (Dragan Simic)
- LTS version: v5.15.173 (Vijayendra Suman)
- 9p: fix slab cache name creation for real (Linus Torvalds)
- udf: Avoid directory type conversion failure due to ENOMEM (Jan Kara)
- udf: Allocate name buffer in directory iterator on heap (Jan Kara)
- mm/memory: add non-anonymous page check in the copy_present_page() (Yuanzheng Song)
- io_uring: fix possible deadlock in io_register_iowq_max_workers() (Hagar Hemdan)
- md/raid10: improve code of mrdev in raid10_sync_request (Li Nan)
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (Hans de Goede)
- HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (Kenneth Albanowski)
- fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni)
- vDPA/ifcvf: Fix pci_read_config_byte() return code handling (Yuan Can)
- powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman)
- drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (Ian Forbes)
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter)
- crypto: marvell/cesa - Disable hash algorithms (Herbert Xu)
- bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel)
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli)
- HID: multitouch: Add support for B2402FVA track point (Stefan Blum)
- block: Fix elevator_get_default() checking for NULL q->tag_set (SurajSonawane2415)
- irqchip/ocelot: Fix trigger register address (Sergey Matsievskiy)
- 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato)
- LTS version: v5.15.172 (Vijayendra Suman)
- ALSA: usb-audio: Add endianness annotations (Jan Sch?r)
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim)
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim)
- ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r)
- ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r)
- ucounts: fix counter leak in inc_rlimit_get_ucounts() (Andrei Vagin)
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner)
- irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier)
- USB: serial: option: add Quectel RG650V (Beno?t Monin)
- USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu)
- USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter)
- usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (Dan Carpenter)
- usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu)
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens)
- net: do not delay dst_entries_add() in dst_release() (Eric Dumazet)
- net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov)
- btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana)
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu)
- io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (Jens Axboe)
- io_uring: use kiocb_{start,end}_write() helpers (Amir Goldstein)
- fs: create kiocb_{start,end}_write() helpers (Amir Goldstein)
- io_uring: rename kiocb_end_write() local helper (Amir Goldstein)
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (Benjamin Segall)
- ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (Takashi Iwai)
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie)
- dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai)
- dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai)
- dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai)
- thermal/drivers/qcom/lmh: Remove false lockdep backtrace (Dmitry Baryshkov)
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher)
- drm/amdgpu: Adjust debugfs eviction and IB access permissions (Alex Deucher)
- pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher)
- media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (Mauro Carvalho Chehab)
- media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab)
- media: pulse8-cec: fix data timestamp at pulse8_setup() (Mauro Carvalho Chehab)
- media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab)
- media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab)
- ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (Amelie Delaunay)
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov)
- scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (Johannes Thumshirn)
- media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab)
- media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab)
- media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab)
- media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab)
- net: arc: fix the device for dma_map_single/dma_unmap_single (Johan Jonker)
- net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case (N?colas F. R. A. Prado)
- net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (Diogo Silva)
- net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang)
- i40e: fix race condition by adding filter's intermediate sync state (Aleksandr Loktionov)
- can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi)
- sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long)
- net: enetc: set MAC address to the VF net_device (Wei Fang)
- security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong)
- nfs: avoid i_lock contention in nfs_clear_invalid_mapping (Mike Snitzer)
- NFSv3: handle out-of-order write replies. (NeilBrown)
- NFS: Add a tracepoint to show the results of nfs_set_cache_invalid() (Benjamin Coddington)
- NFSv3: only use NFS timeout for MOUNT when protocols are compatible (NeilBrown)
- HID: core: zero-initialize the report buffer (Jiri Kosina)
- ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner)
- ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner)
- ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner)
- ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner)
- arm64: dts: imx8mp: correct sdhc ipg clk (Peng Fan)
- arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (Heiko Stuebner)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven)



From el-errata at oss.oracle.com  Thu Feb 13 14:43:06 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Thu, 13 Feb 2025 06:43:06 -0800
Subject: [El-errata] ELBA-2025-20093 Oracle Linux 8 oVirt 4.5 ovirt-engine
 bug fix update
Message-ID: <mailman.112.1739457795.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20093

http://linux.oracle.com/errata/ELBA-2025-20093.html

The following updated rpms for Oracle Linux 8 oVirt 4.5 have been uploaded to the Unbreakable Linux Network:

x86_64:
ovirt-engine-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-backend-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-dbscripts-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-health-check-bundler-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-restapi-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-base-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-plugin-cinderlib-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-plugin-imageio-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-common-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-setup-plugin-websocket-proxy-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-tools-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-tools-backup-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-vmconsole-proxy-helper-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-webadmin-portal-4.5.5-1.34.el8.noarch.rpm
ovirt-engine-websocket-proxy-4.5.5-1.34.el8.noarch.rpm
python3-ovirt-engine-lib-4.5.5-1.34.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//ovirt-engine-4.5.5-1.34.el8.src.rpm



Description of changes:

[4.5.5-1.34]
- Fix Sapphire Rapids CPU flags and add AMD EPYC-Rome, EPYC-Milan CPUs



From el-errata at oss.oracle.com  Fri Feb 14 17:07:08 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:08 -0800
Subject: [El-errata] ELBA-2025-20105 Oracle Linux 8 gcc-toolset-13-annobin
 bug fix update
Message-ID: <mailman.115.1739552840.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20105

http://linux.oracle.com/errata/ELBA-2025-20105.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el8_10.x86_64.rpm
gcc-toolset-13-annobin-docs-12.69-1.0.1.el8_10.noarch.rpm
gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el8_10.x86_64.rpm

aarch64:
gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el8_10.aarch64.rpm
gcc-toolset-13-annobin-docs-12.69-1.0.1.el8_10.noarch.rpm
gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-13-annobin-12.69-1.0.1.el8_10.src.rpm



Description of changes:

[12.69-1.0.1]
- NVR bump to rebuild with latest GCC.



From el-errata at oss.oracle.com  Fri Feb 14 17:07:09 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:09 -0800
Subject: [El-errata] ELSA-2025-20100 Important: Oracle Linux 8 Unbreakable
 Enterprise kernel security update
Message-ID: <mailman.116.1739552843.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20100

http://linux.oracle.com/errata/ELSA-2025-20100.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:


aarch64:
kernel-uek-5.4.17-2136.340.4.1.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.340.4.1.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.340.4.1.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.340.4.1.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.340.4.1.el8uek.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.340.4.1.el8uek.src.rpm

Related CVEs:

CVE-2024-38538
CVE-2024-38588
CVE-2024-49996
CVE-2024-50264
CVE-2024-50265
CVE-2024-50267
CVE-2024-50269
CVE-2024-50273
CVE-2024-50278
CVE-2024-50279
CVE-2024-50282
CVE-2024-50287
CVE-2024-50290
CVE-2024-50296
CVE-2024-50299
CVE-2024-50301
CVE-2024-50302
CVE-2024-53061
CVE-2024-53063
CVE-2024-53066
CVE-2024-53101
CVE-2024-53103
CVE-2024-53104
CVE-2024-53112
CVE-2024-53130
CVE-2024-53131
CVE-2024-53135
CVE-2024-53140
CVE-2024-53141
CVE-2024-53142
CVE-2024-53145
CVE-2024-53146
CVE-2024-53148
CVE-2024-53150
CVE-2024-53155
CVE-2024-53156
CVE-2024-53157
CVE-2024-53158
CVE-2024-53161
CVE-2024-53165
CVE-2024-53171
CVE-2024-53172
CVE-2024-53173
CVE-2024-53174
CVE-2024-53181
CVE-2024-53183
CVE-2024-53184
CVE-2024-53194
CVE-2024-53197
CVE-2024-53198
CVE-2024-53214
CVE-2024-53217
CVE-2024-53227
CVE-2024-53239
CVE-2024-53240
CVE-2024-56531
CVE-2024-56532
CVE-2024-56539
CVE-2024-56548
CVE-2024-56558
CVE-2024-56562
CVE-2024-56567
CVE-2024-56569
CVE-2024-56570
CVE-2024-56572
CVE-2024-56574
CVE-2024-56576
CVE-2024-56581
CVE-2024-56586
CVE-2024-56587
CVE-2024-56593
CVE-2024-56594
CVE-2024-56595
CVE-2024-56596
CVE-2024-56597
CVE-2024-56598
CVE-2024-56600
CVE-2024-56601
CVE-2024-56602
CVE-2024-56603
CVE-2024-56605
CVE-2024-56606
CVE-2024-56615
CVE-2024-56619
CVE-2024-56629
CVE-2024-56630
CVE-2024-56633
CVE-2024-56634
CVE-2024-56637
CVE-2024-56642
CVE-2024-56643
CVE-2024-56650
CVE-2024-56659
CVE-2024-56661
CVE-2024-56670
CVE-2024-56681
CVE-2024-56688
CVE-2024-56690
CVE-2024-56691
CVE-2024-56700
CVE-2024-56704
CVE-2024-56723
CVE-2024-56724
CVE-2024-56739
CVE-2024-56746
CVE-2024-56747
CVE-2024-56748
CVE-2024-56756




Description of changes:

[5.4.17-2136.340.4.1.el8uek]
- RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju)  [Orabug: 37566743]

[5.4.17-2136.340.4.el8uek]
- ftrace: use preempt_enable/disable notrace macros to avoid double fault (Koichiro Den)
- nfsd: restore callback functionality for NFSv4.0 (NeilBrown)
- i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun)
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu)
- af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet)
- af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet)
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter)

[5.4.17-2136.340.3.el8uek]
- Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha)  [Orabug: 37475435]
- vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu)  [Orabug: 37136890]
- Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang)  [Orabug: 37136890]
- rds: ib: Avoid UAF on RDS Socket's rs_trans_lock (H?kon Bugge)  [Orabug: 36693622]
- rds: ib: Fix blocked processes related to race in rds_rdma_free_dev_rs_worker() (H?kon Bugge)  [Orabug: 36693622]
- rds: ib: Fix deterministic UAF in rds_rdma_free_dev_rs_worker() (H?kon Bugge)  [Orabug: 36693622]
- Revert "KVM: SVM: Add a module parameter to override iommu AVIC usage" (Alejandro Jimenez)  [Orabug: 35001679]

[5.4.17-2136.340.2.el8uek]
- LTS tag: v5.4.288 (Alok Tiwari)
- ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter)
- xen/netfront: fix crash when removing device (Juergen Gross) [Orabug: 37427542] {CVE-2024-53240}
- KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta)
- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor)
- blk-iocost: fix weight updates of inner active iocgs (Tejun Heo)
- blk-iocost: clamp inuse and skip noops in __propagate_weights() (Tejun Heo)
- ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin)
- net/sched: netem: account for backlog updates from child qdisc (Martin Ottens)
- qca_spi: Make driver probing reliable (Stefan Wahren)
- qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren)
- ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen)
- net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) [Orabug: 37434237] {CVE-2024-56659}
- tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) [Orabug: 37506456] {CVE-2024-56661}
- batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel)
- batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel)
- batman-adv: Do not send uninitialized TT changes (Remi Pommarel)
- bpf, sockmap: Fix update element with same (Michal Luczaj)
- xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong)
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) [Orabug: 37434264] {CVE-2024-56670}
- usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan)
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren)
- ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori)
- usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson)
- LTS tag: v5.4.287 (Alok Tiwari)
- bpf, xdp: Update devmap comments to reflect napi/rcu usage (John Fastabend)
- ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) [Orabug: 37427489] {CVE-2024-53150}
- PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal)
- Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun)
- modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner)
- jffs2: Fix rtime decompressor (Richard Weinberger)
- jffs2: Prevent rtime decompress memory corruption (Kinsey Moore)
- KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang)
- KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang)
- KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang)
- perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter)
- bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) [Orabug: 37434047] {CVE-2024-56615}
- xdp: Simplify devmap cleanup (Bj?rn T?pel)
- misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman)
- powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman)
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang)
- i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li)
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou)
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch)
- f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) [Orabug: 37433861] {CVE-2024-56586}
- nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang)
- pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n)
- scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara)
- scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara)
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) [Orabug: 37433869] {CVE-2024-56587}
- tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak)
- netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao)
- net/neighbor: clear error in case strict check is not set (Jakub Kicinski)
- rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov)
- ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman)
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (Hilda Wu)
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) [Orabug: 37433908] {CVE-2024-56593}
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong)
- drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) [Orabug: 37433914] {CVE-2024-56594}
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) [Orabug: 37433920] {CVE-2024-56595}
- jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) [Orabug: 37433928] {CVE-2024-56596}
- jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) [Orabug: 37433934] {CVE-2024-56597}
- jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) [Orabug: 37433941] {CVE-2024-56598}
- wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev)
- wifi: ath5k: add PCI ID for SX76X (Rosen Penev)
- net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) [Orabug: 37433955] {CVE-2024-56600}
- net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) [Orabug: 37433962] {CVE-2024-56601}
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) [Orabug: 37433970] {CVE-2024-56602}
- net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) [Orabug: 37433977] {CVE-2024-56603}
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) [Orabug: 37433990] {CVE-2024-56605}
- af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) [Orabug: 37433996] {CVE-2024-56606}
- net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina)
- net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman)
- net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman)
- samples/bpf: Fix a resource leak (Zhu Jun)
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev)
- drm/mcde: Enable module autoloading (Liao Chen)
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a)
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar)
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given)
- s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter)
- mmc: core: Further prevent card detect during shutdown (Ulf Hansson)
- regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav)
- dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig)
- bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che)
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) [Orabug: 37434065] {CVE-2024-56619}
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap)
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy)
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran)
- ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang)
- tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu)
- HID: wacom: fix when get product name maybe null pointer (WangYuli) [Orabug: 37434108] {CVE-2024-56629}
- bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao)
- bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao)
- ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) [Orabug: 37434113] {CVE-2024-56630}
- spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao)
- tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) [Orabug: 37434127] {CVE-2024-56633}
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao)
- gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) [Orabug: 37434131] {CVE-2024-56634}
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski)
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers)
- x86/asm: Reorder early variables (Jiri Slaby)
- xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) [Orabug: 37433540] {CVE-2024-53198}
- xen/xenbus: fix locking (Juergen Gross)
- xenbus/backend: Protect xenbus callback with lock (SeongJae Park)
- xenbus/backend: Add memory pressure handler callback (SeongJae Park)
- xen/xenbus: reference count registered modules (Paul Durrant)
- netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso)
- netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) [Orabug: 37434143] {CVE-2024-56637}
- igb: Fix potential invalid memory access in igb_init_module() (Yuan Can)
- net/qed: allow old cards not supporting "num_images" to work (Louis Leseur)
- tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) [Orabug: 37434161] {CVE-2024-56642}
- tipc: add new AEAD key structure for user API (Tuong Lien)
- tipc: enable creating a "preliminary" node (Tuong Lien)
- tipc: add reference counter to bearer (Tuong Lien)
- dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) [Orabug: 37434167] {CVE-2024-56643}
- can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov)
- net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens)
- netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) [Orabug: 37434200] {CVE-2024-56650}
- ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia)
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi)
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana)
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi)
- drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach)
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun)
- nfsd: make sure exp active before svc_export_show (Yang Erkun) [Orabug: 37433745] {CVE-2024-56558}
- dm thin: Add missing destroy_work_on_stack() (Yuan Can)
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) [Orabug: 37433756] {CVE-2024-56562}
- util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean)
- ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) [Orabug: 37433772] {CVE-2024-56567}
- clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos)
- ftrace: Fix regression with module command in stack_trace_filter (guoweikang) [Orabug: 37433784] {CVE-2024-56569}
- ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) [Orabug: 37433789] {CVE-2024-56570}
- media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) [Orabug: 37433798] {CVE-2024-56572}
- media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan)
- media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan)
- media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) [Orabug: 37433805] {CVE-2024-56574}
- media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) [Orabug: 37433817] {CVE-2024-56576}
- btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) [Orabug: 37433832] {CVE-2024-56581}
- quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo)
- ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang)
- sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) [Orabug: 37433393] {CVE-2024-53165}
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) [Orabug: 37434314] {CVE-2024-56688}
- SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE (Trond Myklebust)
- SUNRPC: correct error code comment in xs_tcp_setup_socket() (Calum Mackay)
- modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada)
- rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier)
- 9p/xen: fix release of IRQ (Alex Zenla) [Orabug: 37434374] {CVE-2024-56704}
- 9p/xen: fix init sequence (Alex Zenla)
- block: return unsigned int from bdev_io_min (Christoph Hellwig)
- jffs2: fix use of uninitialized variable (Qingfang Deng)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) [Orabug: 37433414] {CVE-2024-53171}
- ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) [Orabug: 37433419] {CVE-2024-53172}
- ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng)
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) [Orabug: 37434456] {CVE-2024-56739}
- rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu)
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) [Orabug: 37433426] {CVE-2024-53173}
- um: Always dump trace for specified task in show_stack (Tiwei Bie)
- um: Clean up stacktrace dump (Johannes Berg)
- um: add show_stack_loglvl() (Dmitry Safonov)
- um/sysrq: remove needless variable sp (Dmitry Safonov)
- um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie)
- um: Fix potential integer overflow during physmem setup (Tiwei Bie) [Orabug: 37427464] {CVE-2024-53145}
- rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson)
- SUNRPC: make sure cache entry active before cache_show (Yang Erkun) [Orabug: 37433433] {CVE-2024-53174}
- NFSD: Prevent a potential integer overflow (Chuck Lever) [Orabug: 37427470] {CVE-2024-53146}
- lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski)
- usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen)
- ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai)
- ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar)
- ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang)
- ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang)
- media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) [Orabug: 37434358] {CVE-2024-56700}
- HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke)
- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon)
- sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen)
- um: vector: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433467] {CVE-2024-53181}
- serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu)
- um: net: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433475] {CVE-2024-53183}
- um: ubd: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433484] {CVE-2024-53184}
- ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng)
- spi: Fix acpi deferred irq probe (Stanislaw Gruszka)
- netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) [Orabug: 37388867] {CVE-2024-53141}
- Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman)
- serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea)
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura)
- tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet)
- comedi: Flush partial mappings in error case (Jann Horn) [Orabug: 37427482] {CVE-2024-53148}
- PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) [Orabug: 37433516] {CVE-2024-53194}
- ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen)
- jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov)
- ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o)
- ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park)
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) [Orabug: 37433532] {CVE-2024-53197}
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu)
- usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan)
- apparmor: fix 'Do simple duplicate message elimination' (chao liu)
- staging: greybus: uart: clean up TIOCGSERIAL (Johan Hovold)
- misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan)
- USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis)
- USB: chaoskey: fail open after removal (Oliver Neukum)
- usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum)
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park)
- ipmr: fix tables suspicious RCU usage (Paolo Abeni)
- ipmr: convert /proc handlers to rcu_read_lock() (Eric Dumazet)
- net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier)
- marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan)
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel)
- tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi)
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel)
- power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche)
- vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) [Orabug: 37433578] {CVE-2024-53214}
- NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever)
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever)
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) [Orabug: 37433594] {CVE-2024-53217}
- rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek)
- rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson)
- rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam)
- rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam)
- perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson)
- perf trace: Do not lose last events in a race (Benjamin Peterson)
- m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli)
- m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois)
- PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen)
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng)
- perf probe: Correct demangled symbols in C++ program (Leo Yan)
- perf cs-etm: Don't flush when packet_queue fills up (James Clark)
- clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa)
- clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand (Alexandru Ardelean)
- dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa)
- dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format (Alexandru Ardelean)
- fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) [Orabug: 37434478] {CVE-2024-56746}
- fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann)
- powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek)
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) [Orabug: 37427503] {CVE-2024-53155}
- scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434484] {CVE-2024-56747}
- scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434489] {CVE-2024-56748}
- scsi: fusion: Remove unused variable 'rc' (Zeng Heng)
- scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) [Orabug: 37433630] {CVE-2024-53227}
- mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong)
- mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal)
- cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) [Orabug: 37434429] {CVE-2024-56723}
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) [Orabug: 37434434] {CVE-2024-56724}
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) [Orabug: 37434330] {CVE-2024-56691}
- mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko)
- mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson)
- mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan)
- trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun)
- netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao)
- ALSA: 6fire: Release resources at card release (Takashi Iwai) [Orabug: 37433660] {CVE-2024-53239}
- ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433666] {CVE-2024-56531}
- ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433672] {CVE-2024-56532}
- net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng)
- selftests: net: really check for bg process completion (Paolo Abeni)
- bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang)
- drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach)
- drm/etnaviv: fix power register offset on GC300 (Doug Brown)
- drm/etnaviv: dump: fix sparse warnings (Marc Kleine-Budde)
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price)
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) [Orabug: 37433695] {CVE-2024-56539}
- bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen)
- ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang)
- ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer)
- ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer)
- ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer)
- dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov)
- drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen)
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) [Orabug: 37427509] {CVE-2024-53156}
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko)
- firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) [Orabug: 37427515] {CVE-2024-53157}
- regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko)
- ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara)
- tpm: fix signed/unsigned bug when checking event logs (Gregory Price)
- efi/tpm: Pass correct address to memblock_reserve (Jerry Snitselaar)
- mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski)
- soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) [Orabug: 37427524] {CVE-2024-53158}
- soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda)
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET)
- crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) [Orabug: 37434298] {CVE-2024-56681}
- crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C)
- crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) [Orabug: 37434323] {CVE-2024-56690}
- EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh)
- EDAC/bluefield: Fix potential integer overflow (David Thompson) [Orabug: 37427533] {CVE-2024-53161}
- firmware: google: Unregister driver_info on failure (Yuan Can)
- firmware: google: Unregister driver_info on failure and exit in gsmi (Arthur Heymans)
- hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) [Orabug: 37433720] {CVE-2024-56548}
- s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada)
- acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin)
- m68k: mvme147: Reinstate early console (Daniel Palmer)
- m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven)
- m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer)
- nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) [Orabug: 37434510] {CVE-2024-56756}
- initramfs: avoid filename buffer overrun (David Disseldorp) [Orabug: 37388874] {CVE-2024-53142}
- mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski)
- x86/xen/pvh: Annotate indirect branch as safe (Josh Poimboeuf)
- nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan)
- cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) [Orabug: 37206284] {CVE-2024-49996}
- ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao)
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang)
- ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan)
- ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan)
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko)
- soc: qcom: Add check devm_kasprintf() returned value (Charles Han)
- net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin)
- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann)
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan)
- selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian)
- mac80211: fix user-power when emulating chanctx (Ben Greear)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede)
- kbuild: Use uname for LINUX_COMPILE_HOST detection (Chris Down)
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab)
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388819] {CVE-2024-53130}
- ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov)
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388825] {CVE-2024-53131}
- KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) [Orabug: 37388846] {CVE-2024-53135}
- ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) [Orabug: 37388753] {CVE-2024-53112}
- net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea)
- net/mlx5: fs, lock FTE when checking if active (Mark Bloch)
- netlink: terminate outstanding dump on socket close (Jakub Kicinski) [Orabug: 37388861] {CVE-2024-53140}
- LTS tag: v5.4.286 (Alok Tiwari)
- 9p: fix slab cache name creation for real (Linus Torvalds)
- md/raid10: improve code of mrdev in raid10_sync_request (Li Nan)
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) [Orabug: 37331928] {CVE-2024-53101}
- powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman)
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter)
- bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel)
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli)
- 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato)
- ALSA: usb-audio: Add endianness annotations (Jan Sch?r)
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) [Orabug: 37298681] {CVE-2024-50264}
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) [Orabug: 37344480] {CVE-2024-53103}
- ftrace: Fix possible use-after-free issue in ftrace_location() (Zheng Yejian) [Orabug: 36753574] {CVE-2024-38588}
- NFSD: Fix NFSv4's PUTPUBFH operation (Chuck Lever)
- ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r)
- ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r)
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) [Orabug: 37298685] {CVE-2024-50265}
- irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier)
- USB: serial: option: add Quectel RG650V (Beno?t Monin)
- USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu)
- USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) [Orabug: 37298695] {CVE-2024-50267}
- usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) [Orabug: 37298703] {CVE-2024-50269}
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) [Orabug: 37344485] {CVE-2024-53104}
- net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) [Orabug: 36753372] {CVE-2024-38538}
- spi: fix use-after-free of the add_lock mutex (Michael Walle)
- spi: Fix deadlock when adding SPI controllers on SPI buses (Mark Brown)
- mtd: rawnand: protect access to rawnand devices while in suspend (Sean Nyekjaer)
- btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) [Orabug: 37298715] {CVE-2024-50273}
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) [Orabug: 37304779] {CVE-2024-53066}
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie)
- dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) [Orabug: 37298732] {CVE-2024-50278}
- dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) [Orabug: 37298737] {CVE-2024-50279}
- dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai)
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) [Orabug: 37298751] {CVE-2024-50282}
- pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher)
- media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) [Orabug: 37298782] {CVE-2024-50287}
- media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) [Orabug: 37298797] {CVE-2024-50290}
- media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) [Orabug: 37304763] {CVE-2024-53061}
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov)
- media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab)
- media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab)
- media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) [Orabug: 37304769] {CVE-2024-53063}
- media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab)
- net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) [Orabug: 37298811] {CVE-2024-50296}
- can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi)
- sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) [Orabug: 37298820] {CVE-2024-50299}
- net: enetc: set MAC address to the VF net_device (Wei Fang)
- enetc: simplify the return expression of enetc_vf_set_mac_addr() (Qinglang Miao)
- security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) [Orabug: 37298827] {CVE-2024-50301}
- HID: core: zero-initialize the report buffer (Jiri Kosina) [Orabug: 37298834] {CVE-2024-50302}
- ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner)
- ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner)
- ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner)
- ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven)

[5.4.17-2136.340.1.el8uek]
- rds/ib: avoid scq/rcq polling during rds connection shutdown (Arumugam Kolappan)  [Orabug: 37092563]
- RDMA/mlx5: Send UAR page index as ioctl attribute (Akiva Goldberger)  [Orabug: 37029739]
- RDMA: Pass entire uverbs attr bundle to create cq function (Akiva Goldberger)  [Orabug: 37029739]
- IB/uverbs: Enable CQ ioctl commands by default (Yishai Hadas)  [Orabug: 37029739]



From el-errata at oss.oracle.com  Fri Feb 14 17:07:11 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:11 -0800
Subject: [El-errata] ELEA-2025-1337 Oracle Linux 8 gcc-toolset-14-annobin
 bug fix and enhancement update
Message-ID: <mailman.119.1739552844.253.el-errata@oss.oracle.com>

Oracle Linux Enhancement Advisory ELEA-2025-1337

http://linux.oracle.com/errata/ELEA-2025-1337.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-14-annobin-annocheck-12.88-1.el8_10.x86_64.rpm
gcc-toolset-14-annobin-docs-12.88-1.el8_10.noarch.rpm
gcc-toolset-14-annobin-plugin-gcc-12.88-1.el8_10.x86_64.rpm

aarch64:
gcc-toolset-14-annobin-annocheck-12.88-1.el8_10.aarch64.rpm
gcc-toolset-14-annobin-docs-12.88-1.el8_10.noarch.rpm
gcc-toolset-14-annobin-plugin-gcc-12.88-1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-14-annobin-12.88-1.el8_10.src.rpm



Description of changes:

[12.88-1]
- Annocheck: Look for -fstack-clash-protection in DW_AT_producer string.  (RHEL-77142)

[12.87-1]
- Rebase for GTS 14.1 release.  (RHEL-76929)
- Annocheck: Fix locating string notes (again).  Add exception for glibc benchmark tests.  (RHEL-76456)
- Annocheck: Add crtoffloadtableS.o to list of known gcc binaries.  (RHEL-760404)
- Annocheck: Fix the --debug-dir option.
- Annocheck: Fix corrupt warning message when unable to locate separate debug info files.
- Annocheck: Remove spurious debugging messages.
- Annocheck: Always look for annobin notes in separate debug info files.  (RHEL-75778)
- Annocheck: Support multiple --debug-rpm and --debug-file options.  (RHEL-73349)
- Annocheck: Add support for sys-root'ed glibc packages.  (RHEL-71296)
- GCC Plugin: Tidy up use of gcc's diagnoatic headers.  (#32429)
- Testsuite: Use configured compiler when running tests.
- GCC Plugin: Fix building with gcc 15.  (#32429)
- Annocheck: Fix overly long debug messages.
- Annocheck: Rename rwx-seg test to load-segments.  Add more checks.  Add check for gaps as a future fail.
- Annocheck: Add --no-allow-excpetions to disable exceptions for known special binaries.
- Annocheck: Add --enable-future to enable future fail components in normal tests.
- Annocheck: Fix bug preventing the inclusion of the rpm name in reports.
- Annocheck: Add more exceptions for gcc binaries.  (RHEL-33365)
- Annocheck: Add --skip-passes option.
- Annocheck: Add exceptions for gcc binaries.  (RHEL-33365)
- Annocheck: Skip property note test for i386 binaries created by LLVM.  (#2323797)
- Annocheck: Skip FORTIFY and GLIBC_ASSERTIONS tests for LLVM produced binaries with unparseable DW_AT_producer attributes in their DWARF debug info.  (RHEL-65411)
- GCC Plugin: Change type of the .annobin.notes section from SHT_STRTAB to SHT_PROGBITS.

[12.70-3]
- NVR Bump to allow rebuilding with annotation.



From el-errata at oss.oracle.com  Fri Feb 14 17:07:13 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:13 -0800
Subject: [El-errata] ELSA-2025-1306 Moderate: Oracle Linux 8
 gcc-toolset-13-gcc security update
Message-ID: <mailman.120.1739552845.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1306

http://linux.oracle.com/errata/ELSA-2025-1306.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-13-gcc-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el8_10.i686.rpm
gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm
gcc-toolset-13-offload-nvptx-13.3.1-2.2.0.1.el8_10.x86_64.rpm
libasan8-13.3.1-2.2.0.1.el8_10.i686.rpm
libasan8-13.3.1-2.2.0.1.el8_10.x86_64.rpm
libtsan2-13.3.1-2.2.0.1.el8_10.x86_64.rpm

aarch64:
gcc-toolset-13-gcc-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm
libasan8-13.3.1-2.2.0.1.el8_10.aarch64.rpm
libtsan2-13.3.1-2.2.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-13-gcc-13.3.1-2.2.0.1.el8_10.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[13.3.1-2.2.0.1]
- Merge Oracle patches to 13.3.1-2.2.
  gfortran needs install-info at installation time.
  Orabug: 36472775

[13.3.1-2.2]
- disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78279)



From el-errata at oss.oracle.com  Fri Feb 14 17:07:14 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:14 -0800
Subject: [El-errata] ELSA-2025-1338 Moderate: Oracle Linux 8
 gcc-toolset-14-gcc security update
Message-ID: <mailman.121.1739552845.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1338

http://linux.oracle.com/errata/ELSA-2025-1338.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-14-gcc-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-gcc-c++-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-gcc-gfortran-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-gcc-plugin-annobin-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-gcc-plugin-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-gcc-plugin-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libasan-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libasan-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libatomic-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libatomic-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libgccjit-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libgccjit-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libgccjit-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libgccjit-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libitm-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libitm-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-liblsan-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libquadmath-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libquadmath-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libstdc++-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libstdc++-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libstdc++-docs-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libtsan-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-libubsan-devel-14.2.1-7.1.el8_10.i686.rpm
gcc-toolset-14-libubsan-devel-14.2.1-7.1.el8_10.x86_64.rpm
gcc-toolset-14-offload-nvptx-14.2.1-7.1.el8_10.x86_64.rpm
libasan8-14.2.1-7.1.el8_10.i686.rpm
libasan8-14.2.1-7.1.el8_10.x86_64.rpm
libtsan2-14.2.1-7.1.el8_10.x86_64.rpm

aarch64:
gcc-toolset-14-gcc-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-gcc-c++-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-gcc-gfortran-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-gcc-plugin-annobin-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-gcc-plugin-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libasan-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libatomic-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libgccjit-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libgccjit-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libitm-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-liblsan-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libstdc++-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libstdc++-docs-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libtsan-devel-14.2.1-7.1.el8_10.aarch64.rpm
gcc-toolset-14-libubsan-devel-14.2.1-7.1.el8_10.aarch64.rpm
libasan8-14.2.1-7.1.el8_10.aarch64.rpm
libtsan2-14.2.1-7.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-14-gcc-14.2.1-7.1.el8_10.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[14.2.1-7.1]
- disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78284)

[14.2.1-7]
- update from releases/gcc-14 branch (RHEL-74062)
  - PRs ada/113036, ada/113868, ada/115917, ada/117328, ada/117996,
	analyzer/115724, c/117641, c/117745, c/117802, c++/100358, c++/101463,
	c++/102594, c++/109859, c++/113108, c++/114854, c++/115008,
	c++/115430, c++/115657, c++/116108, c++/116634, c++/117158,
	c++/117317, c++/117614, c++/117615, c++/117792, c++/117825,
	c++/117845, c++/117880, c++/117925, c++/117985, c++/118060,
	c++/118069, driver/117942, fortran/84674, fortran/84869,
	fortran/105054, fortran/109105, fortran/109345, fortran/115070,
	fortran/115348, fortran/116388, fortran/117730, fortran/117763,
	fortran/117774, fortran/117791, fortran/117797, fortran/117819,
	fortran/117820, fortran/117843, fortran/117897, libgomp/117851,
	libstdc++/89624, libstdc++/106212, libstdc++/106676, libstdc++/108236,
	libstdc++/109517, libstdc++/109976, libstdc++/112349,
	libstdc++/112641, libstdc++/117520, libstdc++/117560,
	libstdc++/117822, libstdc++/117962, libstdc++/117966,
	libstdc++/118035, libstdc++/118093, middle-end/43374,
	middle-end/102674, middle-end/116997, middle-end/117433,
	middle-end/117458, middle-end/117459, middle-end/117847,
	middle-end/118024, modula2/114529, modula2/115003, modula2/115057,
	modula2/115164, modula2/115276, modula2/115328, modula2/115536,
	modula2/115540, modula2/115804, modula2/115823, modula2/115957,
	modula2/116048, modula2/116181, modula2/116378, modula2/116557,
	modula2/116918, modula2/117120, modula2/117371, modula2/117555,
	modula2/117660, modula2/117904, modula2/117948, other/116603,
	preprocessor/117118, rtl-optimization/113994, rtl-optimization/116799,
	rtl-optimization/117095, sanitizer/117960, target/64242,
	target/114801, target/114942, target/116371, target/116629,
	target/116999, target/117045, target/117105, target/117304,
	target/117357, target/117408, target/117418, target/117443,
	target/117500, target/117525, target/117562, target/117564,
	target/117642, target/117659, target/117675, target/117744,
	target/117926, testsuite/103298, testsuite/109360,
	tree-optimization/94589, tree-optimization/112376,
	tree-optimization/116463, tree-optimization/117142,
	tree-optimization/117254, tree-optimization/117307,
	tree-optimization/117333, tree-optimization/117398,
	tree-optimization/117417, tree-optimization/117439,
	tree-optimization/117574, tree-optimization/117594,
	tree-optimization/117612, tree-optimization/117912
- fix up -freport-bug default (#2330362, RHEL-73476)
- revert -mearly-ldp-fusion and -mlate-ldp-fusion default to enabled on
  aarch64 to match upstream (RHEL-74058)
- consider TARGET_EXPR invariant like SAVE_EXPR (PR c++/118509)
- have gfortran require install-info (RHEL-76087)

[14.2.1-1.2]
- bump NVR (RHEL-53492)



From el-errata at oss.oracle.com  Fri Feb 14 17:07:17 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:17 -0800
Subject: [El-errata] ELSA-2025-1351 Important: Oracle Linux 8 nodejs:20
 security update
Message-ID: <mailman.122.1739552845.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1351

http://linux.oracle.com/errata/ELSA-2025-1351.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-20.18.2-1.module+el8.10.0+90510+29816cee.x86_64.rpm
nodejs-devel-20.18.2-1.module+el8.10.0+90510+29816cee.x86_64.rpm
nodejs-docs-20.18.2-1.module+el8.10.0+90510+29816cee.noarch.rpm
nodejs-full-i18n-20.18.2-1.module+el8.10.0+90510+29816cee.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el8.10.0+90510+29816cee.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm
npm-10.8.2-1.20.18.2.1.module+el8.10.0+90510+29816cee.x86_64.rpm

aarch64:
nodejs-20.18.2-1.module+el8.10.0+90510+29816cee.aarch64.rpm
nodejs-devel-20.18.2-1.module+el8.10.0+90510+29816cee.aarch64.rpm
nodejs-docs-20.18.2-1.module+el8.10.0+90510+29816cee.noarch.rpm
nodejs-full-i18n-20.18.2-1.module+el8.10.0+90510+29816cee.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el8.10.0+90510+29816cee.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm
npm-10.8.2-1.20.18.2.1.module+el8.10.0+90510+29816cee.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-20.18.2-1.module+el8.10.0+90510+29816cee.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.10.0+90510+29816cee.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.10.0+90510+29816cee.src.rpm

Related CVEs:

CVE-2025-22150
CVE-2025-23083
CVE-2025-23085




Description of changes:

nodejs
[1:20.18.2-1]
- Update to version 20.18.2
  Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150
  Resolves: RHEL-76001 RHEL-76146

nodejs-nodemon
nodejs-packaging


From el-errata at oss.oracle.com  Fri Feb 14 17:07:24 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:24 -0800
Subject: [El-errata] ELSA-2025-1372 Important: Oracle Linux 8
 container-tools:ol8 security update
Message-ID: <mailman.123.1739552853.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1372

http://linux.oracle.com/errata/ELSA-2025-1372.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm
buildah-1.33.12-1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
buildah-tests-1.33.12-1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.noarch.rpm
conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm
containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm
containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpm
container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.noarch.rpm
crit-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm
criu-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm
criu-devel-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm
criu-libs-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm
crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm
fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm
libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm
libslirp-devel-4.4.0-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm
netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm
oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm
podman-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
podman-catatonit-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
podman-docker-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.noarch.rpm
podman-gvproxy-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
podman-plugins-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
podman-remote-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
podman-tests-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm
python3-criu-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm
python3-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.noarch.rpm
runc-1.1.12-6.module+el8.10.0+90509+b5e1e789.x86_64.rpm
skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.x86_64.rpm
skopeo-tests-1.14.5-3.module+el8.10.0+90449+0b7c8529.x86_64.rpm
slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm
udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.noarch.rpm

aarch64:
aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm
buildah-1.33.12-1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
buildah-tests-1.33.12-1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.noarch.rpm
conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm
containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm
containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.aarch64.rpm
container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.noarch.rpm
crit-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm
criu-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm
criu-devel-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm
criu-libs-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm
crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm
fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm
libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm
libslirp-devel-4.4.0-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm
netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm
oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm
podman-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
podman-catatonit-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
podman-docker-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.noarch.rpm
podman-gvproxy-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
podman-plugins-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
podman-remote-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
podman-tests-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm
python3-criu-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm
python3-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.noarch.rpm
runc-1.1.12-6.module+el8.10.0+90509+b5e1e789.aarch64.rpm
skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.aarch64.rpm
skopeo-tests-1.14.5-3.module+el8.10.0+90449+0b7c8529.aarch64.rpm
slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm
udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.33.12-1.module+el8.10.0+90509+b5e1e789.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//criu-3.18-5.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//podman-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.12-6.module+el8.10.0+90509+b5e1e789.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.src.rpm

Related CVEs:

CVE-2024-11218




Description of changes:

aardvark-dns
buildah
[2:1.33.12-1]
- update to the latest content of https://github.com/containers/buildah/tree/release-1.33
  (https://github.com/containers/buildah/commit/58af1cd)
- Resolves: RHEL-67612

cockpit-podman
conmon
containernetworking-plugins
containers-common
[1-82.0.1]
- Updated removed references [Orabug: 33473101] (Alex Burmashev)
- Adjust registries.conf (Nikita Gerasimov)
- remove references to RedHat registry (Nikita Gerasimov)

container-selinux
criu
crun
fuse-overlayfs
libslirp
netavark
oci-seccomp-bpf-hook
podman
[4.9.4-19.0.1]
- Fixes issue of container created in cgroupv2 not start in cgroupv1 [Orabug: 36136813]
- Fixes container memory limit not set after host is rebooted with cgroupv2 [Orabug: 36136802]
- Fixes issue of podman execvp error while using podmansh [Orabug: 36756665]

[4:4.9.4-19]
- update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel
  (https://github.com/containers/podman/commit/bfdd4c2)
- Resolves: RHEL-67601

python-podman
[4.9.0-3]
- sync with release-4.9 branch
- Resolves: RHEL-31069

runc
[1:1.1.12-6]
- Add CPU affinity feature from Kir Kolishkin
- Resolves: RHEL-74865

skopeo
slirp4netns
udica


From el-errata at oss.oracle.com  Fri Feb 14 17:07:31 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:31 -0800
Subject: [El-errata] ELSA-2025-20100 Important: Oracle Linux 8 Unbreakable
 Enterprise kernel security update
Message-ID: <mailman.124.1739552861.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20100

http://linux.oracle.com/errata/ELSA-2025-20100.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.340.4.1.el8uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.340.4.1.el8uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.340.4.1.el8uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.340.4.1.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.340.4.1.el8uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.340.4.1.el8uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.340.4.1.el8uek.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.340.4.1.el8uek.src.rpm

Related CVEs:

CVE-2024-38538
CVE-2024-38588
CVE-2024-49996
CVE-2024-50264
CVE-2024-50265
CVE-2024-50267
CVE-2024-50269
CVE-2024-50273
CVE-2024-50278
CVE-2024-50279
CVE-2024-50282
CVE-2024-50287
CVE-2024-50290
CVE-2024-50296
CVE-2024-50299
CVE-2024-50301
CVE-2024-50302
CVE-2024-53061
CVE-2024-53063
CVE-2024-53066
CVE-2024-53101
CVE-2024-53103
CVE-2024-53104
CVE-2024-53112
CVE-2024-53130
CVE-2024-53131
CVE-2024-53135
CVE-2024-53140
CVE-2024-53141
CVE-2024-53142
CVE-2024-53145
CVE-2024-53146
CVE-2024-53148
CVE-2024-53150
CVE-2024-53155
CVE-2024-53156
CVE-2024-53157
CVE-2024-53158
CVE-2024-53161
CVE-2024-53165
CVE-2024-53171
CVE-2024-53172
CVE-2024-53173
CVE-2024-53174
CVE-2024-53181
CVE-2024-53183
CVE-2024-53184
CVE-2024-53194
CVE-2024-53197
CVE-2024-53198
CVE-2024-53214
CVE-2024-53217
CVE-2024-53227
CVE-2024-53239
CVE-2024-53240
CVE-2024-56531
CVE-2024-56532
CVE-2024-56539
CVE-2024-56548
CVE-2024-56558
CVE-2024-56562
CVE-2024-56567
CVE-2024-56569
CVE-2024-56570
CVE-2024-56572
CVE-2024-56574
CVE-2024-56576
CVE-2024-56581
CVE-2024-56586
CVE-2024-56587
CVE-2024-56593
CVE-2024-56594
CVE-2024-56595
CVE-2024-56596
CVE-2024-56597
CVE-2024-56598
CVE-2024-56600
CVE-2024-56601
CVE-2024-56602
CVE-2024-56603
CVE-2024-56605
CVE-2024-56606
CVE-2024-56615
CVE-2024-56619
CVE-2024-56629
CVE-2024-56630
CVE-2024-56633
CVE-2024-56634
CVE-2024-56637
CVE-2024-56642
CVE-2024-56643
CVE-2024-56650
CVE-2024-56659
CVE-2024-56661
CVE-2024-56670
CVE-2024-56681
CVE-2024-56688
CVE-2024-56690
CVE-2024-56691
CVE-2024-56700
CVE-2024-56704
CVE-2024-56723
CVE-2024-56724
CVE-2024-56739
CVE-2024-56746
CVE-2024-56747
CVE-2024-56748
CVE-2024-56756




Description of changes:

[5.4.17-2136.340.4.1.el8uek]
- RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju)  [Orabug: 37566743]

[5.4.17-2136.340.4.el8uek]
- ftrace: use preempt_enable/disable notrace macros to avoid double fault (Koichiro Den)
- nfsd: restore callback functionality for NFSv4.0 (NeilBrown)
- i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun)
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu)
- af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet)
- af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet)
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter)

[5.4.17-2136.340.3.el8uek]
- Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha)  [Orabug: 37475435]
- vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu)  [Orabug: 37136890]
- Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang)  [Orabug: 37136890]
- rds: ib: Avoid UAF on RDS Socket's rs_trans_lock (H?kon Bugge)  [Orabug: 36693622]
- rds: ib: Fix blocked processes related to race in rds_rdma_free_dev_rs_worker() (H?kon Bugge)  [Orabug: 36693622]
- rds: ib: Fix deterministic UAF in rds_rdma_free_dev_rs_worker() (H?kon Bugge)  [Orabug: 36693622]
- Revert "KVM: SVM: Add a module parameter to override iommu AVIC usage" (Alejandro Jimenez)  [Orabug: 35001679]

[5.4.17-2136.340.2.el8uek]
- LTS tag: v5.4.288 (Alok Tiwari)
- ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter)
- xen/netfront: fix crash when removing device (Juergen Gross) [Orabug: 37427542] {CVE-2024-53240}
- KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta)
- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor)
- blk-iocost: fix weight updates of inner active iocgs (Tejun Heo)
- blk-iocost: clamp inuse and skip noops in __propagate_weights() (Tejun Heo)
- ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin)
- net/sched: netem: account for backlog updates from child qdisc (Martin Ottens)
- qca_spi: Make driver probing reliable (Stefan Wahren)
- qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren)
- ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen)
- net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) [Orabug: 37434237] {CVE-2024-56659}
- tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) [Orabug: 37506456] {CVE-2024-56661}
- batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel)
- batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel)
- batman-adv: Do not send uninitialized TT changes (Remi Pommarel)
- bpf, sockmap: Fix update element with same (Michal Luczaj)
- xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong)
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) [Orabug: 37434264] {CVE-2024-56670}
- usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan)
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren)
- ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori)
- usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson)
- LTS tag: v5.4.287 (Alok Tiwari)
- bpf, xdp: Update devmap comments to reflect napi/rcu usage (John Fastabend)
- ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) [Orabug: 37427489] {CVE-2024-53150}
- PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal)
- Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun)
- modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner)
- jffs2: Fix rtime decompressor (Richard Weinberger)
- jffs2: Prevent rtime decompress memory corruption (Kinsey Moore)
- KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang)
- KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang)
- KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang)
- perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter)
- bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) [Orabug: 37434047] {CVE-2024-56615}
- xdp: Simplify devmap cleanup (Bj?rn T?pel)
- misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman)
- powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman)
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang)
- i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li)
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou)
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch)
- f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) [Orabug: 37433861] {CVE-2024-56586}
- nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang)
- pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n)
- scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara)
- scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara)
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) [Orabug: 37433869] {CVE-2024-56587}
- tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak)
- netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao)
- net/neighbor: clear error in case strict check is not set (Jakub Kicinski)
- rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov)
- ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman)
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (Hilda Wu)
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) [Orabug: 37433908] {CVE-2024-56593}
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong)
- drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) [Orabug: 37433914] {CVE-2024-56594}
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) [Orabug: 37433920] {CVE-2024-56595}
- jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) [Orabug: 37433928] {CVE-2024-56596}
- jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) [Orabug: 37433934] {CVE-2024-56597}
- jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) [Orabug: 37433941] {CVE-2024-56598}
- wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev)
- wifi: ath5k: add PCI ID for SX76X (Rosen Penev)
- net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) [Orabug: 37433955] {CVE-2024-56600}
- net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) [Orabug: 37433962] {CVE-2024-56601}
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) [Orabug: 37433970] {CVE-2024-56602}
- net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) [Orabug: 37433977] {CVE-2024-56603}
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) [Orabug: 37433990] {CVE-2024-56605}
- af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) [Orabug: 37433996] {CVE-2024-56606}
- net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina)
- net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman)
- net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman)
- samples/bpf: Fix a resource leak (Zhu Jun)
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev)
- drm/mcde: Enable module autoloading (Liao Chen)
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a)
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar)
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given)
- s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter)
- mmc: core: Further prevent card detect during shutdown (Ulf Hansson)
- regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav)
- dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig)
- bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che)
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) [Orabug: 37434065] {CVE-2024-56619}
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap)
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy)
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran)
- ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang)
- tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu)
- HID: wacom: fix when get product name maybe null pointer (WangYuli) [Orabug: 37434108] {CVE-2024-56629}
- bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao)
- bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao)
- ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) [Orabug: 37434113] {CVE-2024-56630}
- spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao)
- tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) [Orabug: 37434127] {CVE-2024-56633}
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao)
- gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) [Orabug: 37434131] {CVE-2024-56634}
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski)
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers)
- x86/asm: Reorder early variables (Jiri Slaby)
- xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) [Orabug: 37433540] {CVE-2024-53198}
- xen/xenbus: fix locking (Juergen Gross)
- xenbus/backend: Protect xenbus callback with lock (SeongJae Park)
- xenbus/backend: Add memory pressure handler callback (SeongJae Park)
- xen/xenbus: reference count registered modules (Paul Durrant)
- netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso)
- netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) [Orabug: 37434143] {CVE-2024-56637}
- igb: Fix potential invalid memory access in igb_init_module() (Yuan Can)
- net/qed: allow old cards not supporting "num_images" to work (Louis Leseur)
- tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) [Orabug: 37434161] {CVE-2024-56642}
- tipc: add new AEAD key structure for user API (Tuong Lien)
- tipc: enable creating a "preliminary" node (Tuong Lien)
- tipc: add reference counter to bearer (Tuong Lien)
- dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) [Orabug: 37434167] {CVE-2024-56643}
- can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov)
- net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens)
- netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) [Orabug: 37434200] {CVE-2024-56650}
- ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia)
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi)
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana)
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi)
- drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach)
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun)
- nfsd: make sure exp active before svc_export_show (Yang Erkun) [Orabug: 37433745] {CVE-2024-56558}
- dm thin: Add missing destroy_work_on_stack() (Yuan Can)
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) [Orabug: 37433756] {CVE-2024-56562}
- util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean)
- ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) [Orabug: 37433772] {CVE-2024-56567}
- clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos)
- ftrace: Fix regression with module command in stack_trace_filter (guoweikang) [Orabug: 37433784] {CVE-2024-56569}
- ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) [Orabug: 37433789] {CVE-2024-56570}
- media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) [Orabug: 37433798] {CVE-2024-56572}
- media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan)
- media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan)
- media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) [Orabug: 37433805] {CVE-2024-56574}
- media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) [Orabug: 37433817] {CVE-2024-56576}
- btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) [Orabug: 37433832] {CVE-2024-56581}
- quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo)
- ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang)
- sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) [Orabug: 37433393] {CVE-2024-53165}
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) [Orabug: 37434314] {CVE-2024-56688}
- SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE (Trond Myklebust)
- SUNRPC: correct error code comment in xs_tcp_setup_socket() (Calum Mackay)
- modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada)
- rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier)
- 9p/xen: fix release of IRQ (Alex Zenla) [Orabug: 37434374] {CVE-2024-56704}
- 9p/xen: fix init sequence (Alex Zenla)
- block: return unsigned int from bdev_io_min (Christoph Hellwig)
- jffs2: fix use of uninitialized variable (Qingfang Deng)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) [Orabug: 37433414] {CVE-2024-53171}
- ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) [Orabug: 37433419] {CVE-2024-53172}
- ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng)
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) [Orabug: 37434456] {CVE-2024-56739}
- rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu)
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) [Orabug: 37433426] {CVE-2024-53173}
- um: Always dump trace for specified task in show_stack (Tiwei Bie)
- um: Clean up stacktrace dump (Johannes Berg)
- um: add show_stack_loglvl() (Dmitry Safonov)
- um/sysrq: remove needless variable sp (Dmitry Safonov)
- um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie)
- um: Fix potential integer overflow during physmem setup (Tiwei Bie) [Orabug: 37427464] {CVE-2024-53145}
- rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson)
- SUNRPC: make sure cache entry active before cache_show (Yang Erkun) [Orabug: 37433433] {CVE-2024-53174}
- NFSD: Prevent a potential integer overflow (Chuck Lever) [Orabug: 37427470] {CVE-2024-53146}
- lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski)
- usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen)
- ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai)
- ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar)
- ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang)
- ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang)
- media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) [Orabug: 37434358] {CVE-2024-56700}
- HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke)
- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon)
- sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen)
- um: vector: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433467] {CVE-2024-53181}
- serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu)
- um: net: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433475] {CVE-2024-53183}
- um: ubd: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433484] {CVE-2024-53184}
- ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng)
- spi: Fix acpi deferred irq probe (Stanislaw Gruszka)
- netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) [Orabug: 37388867] {CVE-2024-53141}
- Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman)
- serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea)
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura)
- tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet)
- comedi: Flush partial mappings in error case (Jann Horn) [Orabug: 37427482] {CVE-2024-53148}
- PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) [Orabug: 37433516] {CVE-2024-53194}
- ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen)
- jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov)
- ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o)
- ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park)
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) [Orabug: 37433532] {CVE-2024-53197}
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu)
- usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan)
- apparmor: fix 'Do simple duplicate message elimination' (chao liu)
- staging: greybus: uart: clean up TIOCGSERIAL (Johan Hovold)
- misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan)
- USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis)
- USB: chaoskey: fail open after removal (Oliver Neukum)
- usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum)
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park)
- ipmr: fix tables suspicious RCU usage (Paolo Abeni)
- ipmr: convert /proc handlers to rcu_read_lock() (Eric Dumazet)
- net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier)
- marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan)
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel)
- tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi)
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel)
- power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche)
- vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) [Orabug: 37433578] {CVE-2024-53214}
- NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever)
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever)
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) [Orabug: 37433594] {CVE-2024-53217}
- rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek)
- rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson)
- rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam)
- rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam)
- perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson)
- perf trace: Do not lose last events in a race (Benjamin Peterson)
- m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli)
- m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois)
- PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen)
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng)
- perf probe: Correct demangled symbols in C++ program (Leo Yan)
- perf cs-etm: Don't flush when packet_queue fills up (James Clark)
- clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa)
- clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand (Alexandru Ardelean)
- dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa)
- dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format (Alexandru Ardelean)
- fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) [Orabug: 37434478] {CVE-2024-56746}
- fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann)
- powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek)
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) [Orabug: 37427503] {CVE-2024-53155}
- scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434484] {CVE-2024-56747}
- scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434489] {CVE-2024-56748}
- scsi: fusion: Remove unused variable 'rc' (Zeng Heng)
- scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) [Orabug: 37433630] {CVE-2024-53227}
- mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong)
- mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal)
- cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) [Orabug: 37434429] {CVE-2024-56723}
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) [Orabug: 37434434] {CVE-2024-56724}
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) [Orabug: 37434330] {CVE-2024-56691}
- mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko)
- mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson)
- mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan)
- trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun)
- netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao)
- ALSA: 6fire: Release resources at card release (Takashi Iwai) [Orabug: 37433660] {CVE-2024-53239}
- ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433666] {CVE-2024-56531}
- ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433672] {CVE-2024-56532}
- net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng)
- selftests: net: really check for bg process completion (Paolo Abeni)
- bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang)
- drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach)
- drm/etnaviv: fix power register offset on GC300 (Doug Brown)
- drm/etnaviv: dump: fix sparse warnings (Marc Kleine-Budde)
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price)
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) [Orabug: 37433695] {CVE-2024-56539}
- bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen)
- ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang)
- ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer)
- ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer)
- ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer)
- dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov)
- drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen)
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) [Orabug: 37427509] {CVE-2024-53156}
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko)
- firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) [Orabug: 37427515] {CVE-2024-53157}
- regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko)
- ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara)
- tpm: fix signed/unsigned bug when checking event logs (Gregory Price)
- efi/tpm: Pass correct address to memblock_reserve (Jerry Snitselaar)
- mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski)
- soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) [Orabug: 37427524] {CVE-2024-53158}
- soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda)
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET)
- crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) [Orabug: 37434298] {CVE-2024-56681}
- crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C)
- crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) [Orabug: 37434323] {CVE-2024-56690}
- EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh)
- EDAC/bluefield: Fix potential integer overflow (David Thompson) [Orabug: 37427533] {CVE-2024-53161}
- firmware: google: Unregister driver_info on failure (Yuan Can)
- firmware: google: Unregister driver_info on failure and exit in gsmi (Arthur Heymans)
- hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) [Orabug: 37433720] {CVE-2024-56548}
- s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada)
- acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin)
- m68k: mvme147: Reinstate early console (Daniel Palmer)
- m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven)
- m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer)
- nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) [Orabug: 37434510] {CVE-2024-56756}
- initramfs: avoid filename buffer overrun (David Disseldorp) [Orabug: 37388874] {CVE-2024-53142}
- mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski)
- x86/xen/pvh: Annotate indirect branch as safe (Josh Poimboeuf)
- nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan)
- cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) [Orabug: 37206284] {CVE-2024-49996}
- ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao)
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang)
- ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan)
- ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan)
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko)
- soc: qcom: Add check devm_kasprintf() returned value (Charles Han)
- net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin)
- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann)
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan)
- selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian)
- mac80211: fix user-power when emulating chanctx (Ben Greear)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede)
- kbuild: Use uname for LINUX_COMPILE_HOST detection (Chris Down)
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab)
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388819] {CVE-2024-53130}
- ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov)
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388825] {CVE-2024-53131}
- KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) [Orabug: 37388846] {CVE-2024-53135}
- ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) [Orabug: 37388753] {CVE-2024-53112}
- net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea)
- net/mlx5: fs, lock FTE when checking if active (Mark Bloch)
- netlink: terminate outstanding dump on socket close (Jakub Kicinski) [Orabug: 37388861] {CVE-2024-53140}
- LTS tag: v5.4.286 (Alok Tiwari)
- 9p: fix slab cache name creation for real (Linus Torvalds)
- md/raid10: improve code of mrdev in raid10_sync_request (Li Nan)
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) [Orabug: 37331928] {CVE-2024-53101}
- powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman)
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter)
- bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel)
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli)
- 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato)
- ALSA: usb-audio: Add endianness annotations (Jan Sch?r)
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) [Orabug: 37298681] {CVE-2024-50264}
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) [Orabug: 37344480] {CVE-2024-53103}
- ftrace: Fix possible use-after-free issue in ftrace_location() (Zheng Yejian) [Orabug: 36753574] {CVE-2024-38588}
- NFSD: Fix NFSv4's PUTPUBFH operation (Chuck Lever)
- ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r)
- ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r)
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) [Orabug: 37298685] {CVE-2024-50265}
- irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier)
- USB: serial: option: add Quectel RG650V (Beno?t Monin)
- USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu)
- USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) [Orabug: 37298695] {CVE-2024-50267}
- usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) [Orabug: 37298703] {CVE-2024-50269}
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) [Orabug: 37344485] {CVE-2024-53104}
- net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) [Orabug: 36753372] {CVE-2024-38538}
- spi: fix use-after-free of the add_lock mutex (Michael Walle)
- spi: Fix deadlock when adding SPI controllers on SPI buses (Mark Brown)
- mtd: rawnand: protect access to rawnand devices while in suspend (Sean Nyekjaer)
- btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) [Orabug: 37298715] {CVE-2024-50273}
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) [Orabug: 37304779] {CVE-2024-53066}
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie)
- dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) [Orabug: 37298732] {CVE-2024-50278}
- dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) [Orabug: 37298737] {CVE-2024-50279}
- dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai)
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) [Orabug: 37298751] {CVE-2024-50282}
- pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher)
- media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) [Orabug: 37298782] {CVE-2024-50287}
- media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) [Orabug: 37298797] {CVE-2024-50290}
- media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) [Orabug: 37304763] {CVE-2024-53061}
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov)
- media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab)
- media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab)
- media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) [Orabug: 37304769] {CVE-2024-53063}
- media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab)
- net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) [Orabug: 37298811] {CVE-2024-50296}
- can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi)
- sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) [Orabug: 37298820] {CVE-2024-50299}
- net: enetc: set MAC address to the VF net_device (Wei Fang)
- enetc: simplify the return expression of enetc_vf_set_mac_addr() (Qinglang Miao)
- security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) [Orabug: 37298827] {CVE-2024-50301}
- HID: core: zero-initialize the report buffer (Jiri Kosina) [Orabug: 37298834] {CVE-2024-50302}
- ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner)
- ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner)
- ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner)
- ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven)

[5.4.17-2136.340.1.el8uek]
- rds/ib: avoid scq/rcq polling during rds connection shutdown (Arumugam Kolappan)  [Orabug: 37092563]
- RDMA/mlx5: Send UAR page index as ioctl attribute (Akiva Goldberger)  [Orabug: 37029739]
- RDMA: Pass entire uverbs attr bundle to create cq function (Akiva Goldberger)  [Orabug: 37029739]
- IB/uverbs: Enable CQ ioctl commands by default (Yishai Hadas)  [Orabug: 37029739]



From el-errata at oss.oracle.com  Fri Feb 14 17:07:38 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:38 -0800
Subject: [El-errata] ELBA-2025-20106 Oracle Linux 9 gcc-toolset-14-annobin
 bug fix update
Message-ID: <mailman.127.1739552868.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20106

http://linux.oracle.com/errata/ELBA-2025-20106.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-14-annobin-annocheck-12.70-2.0.1.el9.x86_64.rpm
gcc-toolset-14-annobin-docs-12.70-2.0.1.el9.noarch.rpm
gcc-toolset-14-annobin-plugin-gcc-12.70-2.0.1.el9.x86_64.rpm

aarch64:
gcc-toolset-14-annobin-annocheck-12.70-2.0.1.el9.aarch64.rpm
gcc-toolset-14-annobin-docs-12.70-2.0.1.el9.noarch.rpm
gcc-toolset-14-annobin-plugin-gcc-12.70-2.0.1.el9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-14-annobin-12.70-2.0.1.el9.src.rpm



Description of changes:

[12.70-2.0.1]
- Rebuild to match latest gcc-toolset-14-gcc



From el-errata at oss.oracle.com  Fri Feb 14 17:07:40 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:40 -0800
Subject: [El-errata] ELBA-2025-20108 Oracle Linux 9 gcc-toolset-13-annobin
 bug fix update
Message-ID: <mailman.128.1739552869.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20108

http://linux.oracle.com/errata/ELBA-2025-20108.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el9.x86_64.rpm
gcc-toolset-13-annobin-docs-12.69-1.0.1.el9.noarch.rpm
gcc-toolset-13-annobin-libannocheck-12.69-1.0.1.el9.x86_64.rpm
gcc-toolset-13-annobin-plugin-clang-12.69-1.0.1.el9.x86_64.rpm
gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el9.x86_64.rpm
gcc-toolset-13-annobin-plugin-llvm-12.69-1.0.1.el9.x86_64.rpm

aarch64:
gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el9.aarch64.rpm
gcc-toolset-13-annobin-docs-12.69-1.0.1.el9.noarch.rpm
gcc-toolset-13-annobin-libannocheck-12.69-1.0.1.el9.aarch64.rpm
gcc-toolset-13-annobin-plugin-clang-12.69-1.0.1.el9.aarch64.rpm
gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el9.aarch64.rpm
gcc-toolset-13-annobin-plugin-llvm-12.69-1.0.1.el9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-13-annobin-12.69-1.0.1.el9.src.rpm



Description of changes:

[12.69-1.0.1]
- NVR bump to rebuild with latest GCC.



From el-errata at oss.oracle.com  Fri Feb 14 17:07:41 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:41 -0800
Subject: [El-errata] ELSA-2025-1309 Moderate: Oracle Linux 9
 gcc-toolset-13-gcc security update
Message-ID: <mailman.129.1739552869.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1309

http://linux.oracle.com/errata/ELSA-2025-1309.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gcc-toolset-13-gcc-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el9_5.i686.rpm
gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm
gcc-toolset-13-offload-nvptx-13.3.1-2.2.0.1.el9_5.x86_64.rpm
libasan8-13.3.1-2.2.0.1.el9_5.i686.rpm
libasan8-13.3.1-2.2.0.1.el9_5.x86_64.rpm
libtsan2-13.3.1-2.2.0.1.el9_5.x86_64.rpm

aarch64:
gcc-toolset-13-gcc-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm
libasan8-13.3.1-2.2.0.1.el9_5.aarch64.rpm
libtsan2-13.3.1-2.2.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-13-gcc-13.3.1-2.2.0.1.el9_5.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[13.3.1-2.2.0.1]
- Merge Oracle patches to 13.3.1-2.2.
  Oracle history:
  November-20-2024 Qing Zhao <qing.zhao at oracle.com> 13.3.1-2.1.0.1
  - gfortran needs install-info at installation time.
    Orabug: 36472775

[13.3.1-2.2]
- disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78378)



From el-errata at oss.oracle.com  Fri Feb 14 17:07:42 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:42 -0800
Subject: [El-errata] ELSA-2025-1346 Moderate: Oracle Linux 9 gcc security
 update
Message-ID: <mailman.130.1739552872.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1346

http://linux.oracle.com/errata/ELSA-2025-1346.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
cpp-11.5.0-5.0.1.el9_5.x86_64.rpm
gcc-11.5.0-5.0.1.el9_5.x86_64.rpm
gcc-c++-11.5.0-5.0.1.el9_5.x86_64.rpm
gcc-gfortran-11.5.0-5.0.1.el9_5.x86_64.rpm
gcc-offload-nvptx-11.5.0-5.0.1.el9_5.x86_64.rpm
gcc-plugin-annobin-11.5.0-5.0.1.el9_5.x86_64.rpm
libasan-11.5.0-5.0.1.el9_5.i686.rpm
libasan-11.5.0-5.0.1.el9_5.x86_64.rpm
libatomic-11.5.0-5.0.1.el9_5.i686.rpm
libatomic-11.5.0-5.0.1.el9_5.x86_64.rpm
libgcc-11.5.0-5.0.1.el9_5.i686.rpm
libgcc-11.5.0-5.0.1.el9_5.x86_64.rpm
libgccjit-11.5.0-5.0.1.el9_5.i686.rpm
libgccjit-11.5.0-5.0.1.el9_5.x86_64.rpm
libgccjit-devel-11.5.0-5.0.1.el9_5.i686.rpm
libgccjit-devel-11.5.0-5.0.1.el9_5.x86_64.rpm
libgfortran-11.5.0-5.0.1.el9_5.i686.rpm
libgfortran-11.5.0-5.0.1.el9_5.x86_64.rpm
libgomp-11.5.0-5.0.1.el9_5.i686.rpm
libgomp-11.5.0-5.0.1.el9_5.x86_64.rpm
libgomp-offload-nvptx-11.5.0-5.0.1.el9_5.x86_64.rpm
libitm-11.5.0-5.0.1.el9_5.i686.rpm
libitm-11.5.0-5.0.1.el9_5.x86_64.rpm
libitm-devel-11.5.0-5.0.1.el9_5.i686.rpm
libitm-devel-11.5.0-5.0.1.el9_5.x86_64.rpm
liblsan-11.5.0-5.0.1.el9_5.x86_64.rpm
libquadmath-11.5.0-5.0.1.el9_5.i686.rpm
libquadmath-11.5.0-5.0.1.el9_5.x86_64.rpm
libquadmath-devel-11.5.0-5.0.1.el9_5.i686.rpm
libquadmath-devel-11.5.0-5.0.1.el9_5.x86_64.rpm
libstdc++-11.5.0-5.0.1.el9_5.i686.rpm
libstdc++-11.5.0-5.0.1.el9_5.x86_64.rpm
libstdc++-devel-11.5.0-5.0.1.el9_5.i686.rpm
libstdc++-devel-11.5.0-5.0.1.el9_5.x86_64.rpm
libstdc++-docs-11.5.0-5.0.1.el9_5.x86_64.rpm
libtsan-11.5.0-5.0.1.el9_5.x86_64.rpm
libubsan-11.5.0-5.0.1.el9_5.i686.rpm
libubsan-11.5.0-5.0.1.el9_5.x86_64.rpm
gcc-plugin-devel-11.5.0-5.0.1.el9_5.i686.rpm
gcc-plugin-devel-11.5.0-5.0.1.el9_5.x86_64.rpm
libstdc++-static-11.5.0-5.0.1.el9_5.i686.rpm
libstdc++-static-11.5.0-5.0.1.el9_5.x86_64.rpm

aarch64:
cpp-11.5.0-5.0.1.el9_5.aarch64.rpm
gcc-11.5.0-5.0.1.el9_5.aarch64.rpm
gcc-c++-11.5.0-5.0.1.el9_5.aarch64.rpm
gcc-gfortran-11.5.0-5.0.1.el9_5.aarch64.rpm
gcc-plugin-annobin-11.5.0-5.0.1.el9_5.aarch64.rpm
libasan-11.5.0-5.0.1.el9_5.aarch64.rpm
libatomic-11.5.0-5.0.1.el9_5.aarch64.rpm
libgcc-11.5.0-5.0.1.el9_5.aarch64.rpm
libgccjit-11.5.0-5.0.1.el9_5.aarch64.rpm
libgccjit-devel-11.5.0-5.0.1.el9_5.aarch64.rpm
libgfortran-11.5.0-5.0.1.el9_5.aarch64.rpm
libgomp-11.5.0-5.0.1.el9_5.aarch64.rpm
libitm-11.5.0-5.0.1.el9_5.aarch64.rpm
libitm-devel-11.5.0-5.0.1.el9_5.aarch64.rpm
liblsan-11.5.0-5.0.1.el9_5.aarch64.rpm
libstdc++-11.5.0-5.0.1.el9_5.aarch64.rpm
libstdc++-devel-11.5.0-5.0.1.el9_5.aarch64.rpm
libstdc++-docs-11.5.0-5.0.1.el9_5.aarch64.rpm
libtsan-11.5.0-5.0.1.el9_5.aarch64.rpm
libubsan-11.5.0-5.0.1.el9_5.aarch64.rpm
gcc-plugin-devel-11.5.0-5.0.1.el9_5.aarch64.rpm
libstdc++-static-11.5.0-5.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//gcc-11.5.0-5.0.1.el9_5.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[11.5.0-5.0.1]
- Merge Oracle patches to 11.5.0-5.
  Oracle history:


From el-errata at oss.oracle.com  Fri Feb 14 17:07:44 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 09:07:44 -0800
Subject: [El-errata] ELSA-2025-1350 Important: Oracle Linux 9 libxml2
 security update
Message-ID: <mailman.131.1739552872.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1350

http://linux.oracle.com/errata/ELSA-2025-1350.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxml2-2.9.13-6.el9_5.1.i686.rpm
libxml2-2.9.13-6.el9_5.1.x86_64.rpm
libxml2-devel-2.9.13-6.el9_5.1.i686.rpm
libxml2-devel-2.9.13-6.el9_5.1.x86_64.rpm
python3-libxml2-2.9.13-6.el9_5.1.x86_64.rpm

aarch64:
libxml2-2.9.13-6.el9_5.1.aarch64.rpm
libxml2-devel-2.9.13-6.el9_5.1.aarch64.rpm
python3-libxml2-2.9.13-6.el9_5.1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//libxml2-2.9.13-6.el9_5.1.src.rpm

Related CVEs:

CVE-2022-49043




Description of changes:

[2.9.13-6.1]
- Fix CVE-2022-49043 (RHEL-76298)



From el-errata at oss.oracle.com  Fri Feb 14 18:27:29 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 19:27:29 +0100
Subject: [El-errata] New Ksplice updates for RHCK 8 (ELSA-2025-1266)
Message-ID: <mailman.132.1739557665.253.el-errata@oss.oracle.com>

Synopsis: ELSA-2025-1266 can now be patched using Ksplice
CVEs: CVE-2024-53104

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2025-1266.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2025-1266.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running RHCK 8 install
these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2024-53104: Code execution in USB Video Class (UVC) driver.

A missing check when using the USB Video Class (UVC) driver could lead
to an out-of-bounds memory write. A local attacker could use this flaw
to execute arbitrary code in kernel mode.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.




From el-errata at oss.oracle.com  Fri Feb 14 22:32:03 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Fri, 14 Feb 2025 23:32:03 +0100
Subject: [El-errata] New openssl updates available via Ksplice
 (ELSA-2025-1330)
Message-ID: <mailman.133.1739572344.253.el-errata@oss.oracle.com>

Synopsis: ELSA-2025-1330 can now be patched using Ksplice
CVEs: CVE-2024-12797

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2025-1330.

INSTALLING THE UPDATES

We recommend that all users of Ksplice on OL 9 install these updates.

You can install these updates by running:

# ksplice -y user upgrade

32-bit applications should be restarted after upgrading the on-disk
openssl RPMs and statically linked applications using
openssl should be rebuilt to include these fixes.

Ksplice user-space patching requires installation of Ksplice-aware
packages and the system must be rebooted after the first installation of
these packages.  Refer to the installation instructions for the Enhanced
Ksplice Client in the Ksplice User's Guide for more details.  Systems
may be prepared for Ksplice patching by installing the Ksplice aware
packages in advance, prior to installing the enhanced Ksplice client.

DESCRIPTION

* CVE-2024-12797: Information leak when using TLS and DTLS connections with raw public keys.

A logic error when using TLS and DTLS connections with raw public keys
could lead to an incorrect authentication of a server. A remote attacker
could use this flaw to leak information about data being transmitted
over TLS/DTLS.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.



From el-errata at oss.oracle.com  Mon Feb 17 14:32:50 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 17 Feb 2025 06:32:50 -0800
Subject: [El-errata] ELBA-2025-20111 Oracle Linux 9 annobin bug fix update
Message-ID: <mailman.134.1739802782.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20111

http://linux.oracle.com/errata/ELBA-2025-20111.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
annobin-12.65-1.0.1.el9.x86_64.rpm
annobin-annocheck-12.65-1.0.1.el9.i686.rpm
annobin-annocheck-12.65-1.0.1.el9.x86_64.rpm
annobin-annocheck-12.65-1.0.1.el9.i686.rpm

aarch64:
annobin-12.65-1.0.1.el9.aarch64.rpm
annobin-annocheck-12.65-1.0.1.el9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//annobin-12.65-1.0.1.el9.src.rpm



Description of changes:

[12.65-1.0.1]
- NVR bump to rebuild with latest gcc.



From el-errata at oss.oracle.com  Mon Feb 17 14:32:53 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 17 Feb 2025 06:32:53 -0800
Subject: [El-errata] ELBA-2025-1343 Oracle Linux 9 .NET 9.0 bug fix and
 enhancement update
Message-ID: <mailman.135.1739802784.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1343

http://linux.oracle.com/errata/ELBA-2025-1343.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-host-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-hostfxr-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-runtime-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm
dotnet-templates-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.103-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el9_5.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-host-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-hostfxr-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-runtime-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm
dotnet-templates-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.103-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//dotnet9.0-9.0.103-1.0.1.el9_5.src.rpm



Description of changes:

[9.0.103-1.0.1]
- Update to .NET SDK 9.0.103 and Runtime 9.0.2



From el-errata at oss.oracle.com  Mon Feb 17 14:32:55 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 17 Feb 2025 06:32:55 -0800
Subject: [El-errata] ELSA-2025-1443 Important: Oracle Linux 9 nodejs:20
 security update
Message-ID: <mailman.136.1739802785.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1443

http://linux.oracle.com/errata/ELSA-2025-1443.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-20.18.2-1.module+el9.5.0+90512+230358da.x86_64.rpm
nodejs-devel-20.18.2-1.module+el9.5.0+90512+230358da.x86_64.rpm
nodejs-docs-20.18.2-1.module+el9.5.0+90512+230358da.noarch.rpm
nodejs-full-i18n-20.18.2-1.module+el9.5.0+90512+230358da.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
npm-10.8.2-1.20.18.2.1.module+el9.5.0+90512+230358da.x86_64.rpm

aarch64:
nodejs-20.18.2-1.module+el9.5.0+90512+230358da.aarch64.rpm
nodejs-devel-20.18.2-1.module+el9.5.0+90512+230358da.aarch64.rpm
nodejs-docs-20.18.2-1.module+el9.5.0+90512+230358da.noarch.rpm
nodejs-full-i18n-20.18.2-1.module+el9.5.0+90512+230358da.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
npm-10.8.2-1.20.18.2.1.module+el9.5.0+90512+230358da.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-20.18.2-1.module+el9.5.0+90512+230358da.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm

Related CVEs:

CVE-2025-22150
CVE-2025-23083
CVE-2025-23085




Description of changes:

nodejs
[1:20.18.2]
- Update to version 20.18.2
  Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150
  Resolves: RHEL-76363 RHEL-76554 RHEL-76540

[1:20.18.1-1]
- Update to version 20.18.1

nodejs-nodemon
nodejs-packaging


From el-errata at oss.oracle.com  Mon Feb 17 14:32:57 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 17 Feb 2025 06:32:57 -0800
Subject: [El-errata] ELSA-2025-1446 Moderate: Oracle Linux 9 nodejs:18
 security update
Message-ID: <mailman.137.1739802786.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1446

http://linux.oracle.com/errata/ELSA-2025-1446.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm
nodejs-devel-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm
nodejs-docs-18.20.6-1.module+el9.5.0+90514+74072e0a.noarch.rpm
nodejs-full-i18n-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm
npm-10.8.2-1.18.20.6.1.module+el9.5.0+90514+74072e0a.x86_64.rpm

aarch64:
nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm
nodejs-devel-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm
nodejs-docs-18.20.6-1.module+el9.5.0+90514+74072e0a.noarch.rpm
nodejs-full-i18n-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm
npm-10.8.2-1.18.20.6.1.module+el9.5.0+90514+74072e0a.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.src.rpm

Related CVEs:

CVE-2025-22150
CVE-2025-23085




Description of changes:

nodejs
[1:18.20.6-1]
- Update to version 18.20.6
  Resolves: RHEL-76801
  Fixes: CVE-2025-23085

[1:18.20.4-1]
- Update to 18.20.4
  Fixes: CVE-2024-22020 CVE-2024-28863

[1:18.20.2-2]
- Removes .ps1 files

nodejs-nodemon
nodejs-packaging


From el-errata at oss.oracle.com  Mon Feb 17 14:33:04 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 17 Feb 2025 06:33:04 -0800
Subject: [El-errata] ELSA-2025-20100 Important: Oracle Linux 7 Unbreakable
 Enterprise kernel security update
Message-ID: <mailman.140.1739802794.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20100

http://linux.oracle.com/errata/ELSA-2025-20100.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.340.4.1.el7uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.340.4.1.el7uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.340.4.1.el7uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.340.4.1.el7uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.340.4.1.el7uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.340.4.1.el7uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.340.4.1.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.340.4.1.el7uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.340.4.1.el7uek.src.rpm

Related CVEs:

CVE-2024-38538
CVE-2024-38588
CVE-2024-49996
CVE-2024-50264
CVE-2024-50265
CVE-2024-50267
CVE-2024-50269
CVE-2024-50273
CVE-2024-50278
CVE-2024-50279
CVE-2024-50282
CVE-2024-50287
CVE-2024-50290
CVE-2024-50296
CVE-2024-50299
CVE-2024-50301
CVE-2024-50302
CVE-2024-53061
CVE-2024-53063
CVE-2024-53066
CVE-2024-53101
CVE-2024-53103
CVE-2024-53104
CVE-2024-53112
CVE-2024-53130
CVE-2024-53131
CVE-2024-53135
CVE-2024-53140
CVE-2024-53141
CVE-2024-53142
CVE-2024-53145
CVE-2024-53146
CVE-2024-53148
CVE-2024-53150
CVE-2024-53155
CVE-2024-53156
CVE-2024-53157
CVE-2024-53158
CVE-2024-53161
CVE-2024-53165
CVE-2024-53171
CVE-2024-53172
CVE-2024-53173
CVE-2024-53174
CVE-2024-53181
CVE-2024-53183
CVE-2024-53184
CVE-2024-53194
CVE-2024-53197
CVE-2024-53198
CVE-2024-53214
CVE-2024-53217
CVE-2024-53227
CVE-2024-53239
CVE-2024-53240
CVE-2024-56531
CVE-2024-56532
CVE-2024-56539
CVE-2024-56548
CVE-2024-56558
CVE-2024-56562
CVE-2024-56567
CVE-2024-56569
CVE-2024-56570
CVE-2024-56572
CVE-2024-56574
CVE-2024-56576
CVE-2024-56581
CVE-2024-56586
CVE-2024-56587
CVE-2024-56593
CVE-2024-56594
CVE-2024-56595
CVE-2024-56596
CVE-2024-56597
CVE-2024-56598
CVE-2024-56600
CVE-2024-56601
CVE-2024-56602
CVE-2024-56603
CVE-2024-56605
CVE-2024-56606
CVE-2024-56615
CVE-2024-56619
CVE-2024-56629
CVE-2024-56630
CVE-2024-56633
CVE-2024-56634
CVE-2024-56637
CVE-2024-56642
CVE-2024-56643
CVE-2024-56650
CVE-2024-56659
CVE-2024-56661
CVE-2024-56670
CVE-2024-56681
CVE-2024-56688
CVE-2024-56690
CVE-2024-56691
CVE-2024-56700
CVE-2024-56704
CVE-2024-56723
CVE-2024-56724
CVE-2024-56739
CVE-2024-56746
CVE-2024-56747
CVE-2024-56748
CVE-2024-56756




Description of changes:

[5.4.17-2136.340.4.1.el7uek]
- RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju)  [Orabug: 37566743]

[5.4.17-2136.340.4.el7uek]
- ftrace: use preempt_enable/disable notrace macros to avoid double fault (Koichiro Den)
- nfsd: restore callback functionality for NFSv4.0 (NeilBrown)
- i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun)
- of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu)
- af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet)
- af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet)
- mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter)

[5.4.17-2136.340.3.el7uek]
- Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha)  [Orabug: 37475435]
- vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu)  [Orabug: 37136890]
- Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang)  [Orabug: 37136890]
- rds: ib: Avoid UAF on RDS Socket's rs_trans_lock (H?kon Bugge)  [Orabug: 36693622]
- rds: ib: Fix blocked processes related to race in rds_rdma_free_dev_rs_worker() (H?kon Bugge)  [Orabug: 36693622]
- rds: ib: Fix deterministic UAF in rds_rdma_free_dev_rs_worker() (H?kon Bugge)  [Orabug: 36693622]
- Revert "KVM: SVM: Add a module parameter to override iommu AVIC usage" (Alejandro Jimenez)  [Orabug: 35001679]

[5.4.17-2136.340.2.el7uek]
- LTS tag: v5.4.288 (Alok Tiwari)
- ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter)
- xen/netfront: fix crash when removing device (Juergen Gross) [Orabug: 37427542] {CVE-2024-53240}
- KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta)
- blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor)
- blk-iocost: fix weight updates of inner active iocgs (Tejun Heo)
- blk-iocost: clamp inuse and skip noops in __propagate_weights() (Tejun Heo)
- ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin)
- net/sched: netem: account for backlog updates from child qdisc (Martin Ottens)
- qca_spi: Make driver probing reliable (Stefan Wahren)
- qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren)
- ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen)
- net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) [Orabug: 37434237] {CVE-2024-56659}
- tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) [Orabug: 37506456] {CVE-2024-56661}
- batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel)
- batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel)
- batman-adv: Do not send uninitialized TT changes (Remi Pommarel)
- bpf, sockmap: Fix update element with same (Michal Luczaj)
- xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong)
- usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) [Orabug: 37434264] {CVE-2024-56670}
- usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan)
- usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren)
- ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori)
- usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson)
- LTS tag: v5.4.287 (Alok Tiwari)
- bpf, xdp: Update devmap comments to reflect napi/rcu usage (John Fastabend)
- ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) [Orabug: 37427489] {CVE-2024-53150}
- PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal)
- Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun)
- modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner)
- jffs2: Fix rtime decompressor (Richard Weinberger)
- jffs2: Prevent rtime decompress memory corruption (Kinsey Moore)
- KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang)
- KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang)
- KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang)
- perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter)
- bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) [Orabug: 37434047] {CVE-2024-56615}
- xdp: Simplify devmap cleanup (Bj?rn T?pel)
- misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman)
- powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman)
- usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang)
- i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li)
- PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou)
- PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch)
- f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) [Orabug: 37433861] {CVE-2024-56586}
- nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang)
- pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n)
- scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara)
- scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara)
- leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) [Orabug: 37433869] {CVE-2024-56587}
- tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak)
- netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao)
- net/neighbor: clear error in case strict check is not set (Jakub Kicinski)
- rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov)
- ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman)
- Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (Hilda Wu)
- wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) [Orabug: 37433908] {CVE-2024-56593}
- wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong)
- drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) [Orabug: 37433914] {CVE-2024-56594}
- jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) [Orabug: 37433920] {CVE-2024-56595}
- jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) [Orabug: 37433928] {CVE-2024-56596}
- jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) [Orabug: 37433934] {CVE-2024-56597}
- jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) [Orabug: 37433941] {CVE-2024-56598}
- wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev)
- wifi: ath5k: add PCI ID for SX76X (Rosen Penev)
- net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) [Orabug: 37433955] {CVE-2024-56600}
- net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) [Orabug: 37433962] {CVE-2024-56601}
- net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) [Orabug: 37433970] {CVE-2024-56602}
- net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) [Orabug: 37433977] {CVE-2024-56603}
- Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) [Orabug: 37433990] {CVE-2024-56605}
- af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) [Orabug: 37433996] {CVE-2024-56606}
- net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina)
- net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman)
- net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman)
- samples/bpf: Fix a resource leak (Zhu Jun)
- drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev)
- drm/mcde: Enable module autoloading (Liao Chen)
- drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a)
- media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar)
- media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given)
- s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter)
- mmc: core: Further prevent card detect during shutdown (Ulf Hansson)
- regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav)
- dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig)
- bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che)
- nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) [Orabug: 37434065] {CVE-2024-56619}
- scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap)
- scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy)
- scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran)
- ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang)
- tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu)
- HID: wacom: fix when get product name maybe null pointer (WangYuli) [Orabug: 37434108] {CVE-2024-56629}
- bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao)
- bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao)
- ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) [Orabug: 37434113] {CVE-2024-56630}
- spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao)
- tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) [Orabug: 37434127] {CVE-2024-56633}
- drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao)
- gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) [Orabug: 37434131] {CVE-2024-56634}
- gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski)
- crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers)
- x86/asm: Reorder early variables (Jiri Slaby)
- xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) [Orabug: 37433540] {CVE-2024-53198}
- xen/xenbus: fix locking (Juergen Gross)
- xenbus/backend: Protect xenbus callback with lock (SeongJae Park)
- xenbus/backend: Add memory pressure handler callback (SeongJae Park)
- xen/xenbus: reference count registered modules (Paul Durrant)
- netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso)
- netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) [Orabug: 37434143] {CVE-2024-56637}
- igb: Fix potential invalid memory access in igb_init_module() (Yuan Can)
- net/qed: allow old cards not supporting "num_images" to work (Louis Leseur)
- tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) [Orabug: 37434161] {CVE-2024-56642}
- tipc: add new AEAD key structure for user API (Tuong Lien)
- tipc: enable creating a "preliminary" node (Tuong Lien)
- tipc: add reference counter to bearer (Tuong Lien)
- dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) [Orabug: 37434167] {CVE-2024-56643}
- can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov)
- net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens)
- netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) [Orabug: 37434200] {CVE-2024-56650}
- ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia)
- can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi)
- can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi)
- watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana)
- iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi)
- drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach)
- nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun)
- nfsd: make sure exp active before svc_export_show (Yang Erkun) [Orabug: 37433745] {CVE-2024-56558}
- dm thin: Add missing destroy_work_on_stack() (Yuan Can)
- i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) [Orabug: 37433756] {CVE-2024-56562}
- util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean)
- ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) [Orabug: 37433772] {CVE-2024-56567}
- clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos)
- ftrace: Fix regression with module command in stack_trace_filter (guoweikang) [Orabug: 37433784] {CVE-2024-56569}
- ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) [Orabug: 37433789] {CVE-2024-56570}
- media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) [Orabug: 37433798] {CVE-2024-56572}
- media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan)
- media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan)
- media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) [Orabug: 37433805] {CVE-2024-56574}
- media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) [Orabug: 37433817] {CVE-2024-56576}
- btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) [Orabug: 37433832] {CVE-2024-56581}
- quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo)
- ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang)
- sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) [Orabug: 37433393] {CVE-2024-53165}
- sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) [Orabug: 37434314] {CVE-2024-56688}
- SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE (Trond Myklebust)
- SUNRPC: correct error code comment in xs_tcp_setup_socket() (Calum Mackay)
- modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada)
- rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier)
- 9p/xen: fix release of IRQ (Alex Zenla) [Orabug: 37434374] {CVE-2024-56704}
- 9p/xen: fix init sequence (Alex Zenla)
- block: return unsigned int from bdev_io_min (Christoph Hellwig)
- jffs2: fix use of uninitialized variable (Qingfang Deng)
- ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) [Orabug: 37433414] {CVE-2024-53171}
- ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) [Orabug: 37433419] {CVE-2024-53172}
- ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng)
- rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) [Orabug: 37434456] {CVE-2024-56739}
- rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu)
- rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) [Orabug: 37433426] {CVE-2024-53173}
- um: Always dump trace for specified task in show_stack (Tiwei Bie)
- um: Clean up stacktrace dump (Johannes Berg)
- um: add show_stack_loglvl() (Dmitry Safonov)
- um/sysrq: remove needless variable sp (Dmitry Safonov)
- um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie)
- um: Fix potential integer overflow during physmem setup (Tiwei Bie) [Orabug: 37427464] {CVE-2024-53145}
- rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson)
- SUNRPC: make sure cache entry active before cache_show (Yang Erkun) [Orabug: 37433433] {CVE-2024-53174}
- NFSD: Prevent a potential integer overflow (Chuck Lever) [Orabug: 37427470] {CVE-2024-53146}
- lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski)
- usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen)
- ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai)
- ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar)
- ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang)
- ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang)
- media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) [Orabug: 37434358] {CVE-2024-56700}
- HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke)
- block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song)
- arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon)
- sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen)
- um: vector: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433467] {CVE-2024-53181}
- serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu)
- um: net: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433475] {CVE-2024-53183}
- um: ubd: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433484] {CVE-2024-53184}
- ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng)
- spi: Fix acpi deferred irq probe (Stanislaw Gruszka)
- netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) [Orabug: 37388867] {CVE-2024-53141}
- Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman)
- serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea)
- Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura)
- tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet)
- comedi: Flush partial mappings in error case (Jann Horn) [Orabug: 37427482] {CVE-2024-53148}
- PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) [Orabug: 37433516] {CVE-2024-53194}
- ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen)
- jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov)
- ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o)
- ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park)
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) [Orabug: 37433532] {CVE-2024-53197}
- soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu)
- usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan)
- apparmor: fix 'Do simple duplicate message elimination' (chao liu)
- staging: greybus: uart: clean up TIOCGSERIAL (Johan Hovold)
- misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan)
- USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis)
- USB: chaoskey: fail open after removal (Oliver Neukum)
- usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum)
- usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park)
- ipmr: fix tables suspicious RCU usage (Paolo Abeni)
- ipmr: convert /proc handlers to rcu_read_lock() (Eric Dumazet)
- net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier)
- marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan)
- net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel)
- tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi)
- net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel)
- power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche)
- vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) [Orabug: 37433578] {CVE-2024-53214}
- NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever)
- NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever)
- NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) [Orabug: 37433594] {CVE-2024-53217}
- rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek)
- rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson)
- rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam)
- rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam)
- perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson)
- perf trace: Do not lose last events in a race (Benjamin Peterson)
- m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli)
- m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois)
- PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen)
- PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng)
- perf probe: Correct demangled symbols in C++ program (Leo Yan)
- perf cs-etm: Don't flush when packet_queue fills up (James Clark)
- clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa)
- clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand (Alexandru Ardelean)
- dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa)
- dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format (Alexandru Ardelean)
- fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) [Orabug: 37434478] {CVE-2024-56746}
- fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann)
- powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek)
- ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) [Orabug: 37427503] {CVE-2024-53155}
- scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434484] {CVE-2024-56747}
- scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434489] {CVE-2024-56748}
- scsi: fusion: Remove unused variable 'rc' (Zeng Heng)
- scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) [Orabug: 37433630] {CVE-2024-53227}
- mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong)
- mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal)
- cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can)
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) [Orabug: 37434429] {CVE-2024-56723}
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) [Orabug: 37434434] {CVE-2024-56724}
- mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) [Orabug: 37434330] {CVE-2024-56691}
- mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko)
- mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson)
- mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan)
- trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun)
- netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao)
- ALSA: 6fire: Release resources at card release (Takashi Iwai) [Orabug: 37433660] {CVE-2024-53239}
- ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433666] {CVE-2024-56531}
- ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433672] {CVE-2024-56532}
- net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng)
- selftests: net: really check for bg process completion (Paolo Abeni)
- bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang)
- bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang)
- drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach)
- drm/etnaviv: fix power register offset on GC300 (Doug Brown)
- drm/etnaviv: dump: fix sparse warnings (Marc Kleine-Budde)
- drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price)
- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) [Orabug: 37433695] {CVE-2024-56539}
- bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen)
- ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang)
- ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer)
- ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer)
- ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer)
- dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov)
- drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen)
- wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) [Orabug: 37427509] {CVE-2024-53156}
- drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko)
- firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) [Orabug: 37427515] {CVE-2024-53157}
- regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko)
- ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara)
- tpm: fix signed/unsigned bug when checking event logs (Gregory Price)
- efi/tpm: Pass correct address to memblock_reserve (Jerry Snitselaar)
- mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski)
- soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) [Orabug: 37427524] {CVE-2024-53158}
- soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan)
- time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda)
- crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET)
- crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) [Orabug: 37434298] {CVE-2024-56681}
- crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C)
- crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) [Orabug: 37434323] {CVE-2024-56690}
- EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh)
- EDAC/bluefield: Fix potential integer overflow (David Thompson) [Orabug: 37427533] {CVE-2024-53161}
- firmware: google: Unregister driver_info on failure (Yuan Can)
- firmware: google: Unregister driver_info on failure and exit in gsmi (Arthur Heymans)
- hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) [Orabug: 37433720] {CVE-2024-56548}
- s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada)
- acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin)
- m68k: mvme147: Reinstate early console (Daniel Palmer)
- m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven)
- m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer)
- nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) [Orabug: 37434510] {CVE-2024-56756}
- initramfs: avoid filename buffer overrun (David Disseldorp) [Orabug: 37388874] {CVE-2024-53142}
- mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski)
- x86/xen/pvh: Annotate indirect branch as safe (Josh Poimboeuf)
- nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan)
- cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) [Orabug: 37206284] {CVE-2024-49996}
- ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao)
- proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang)
- ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan)
- ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan)
- regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko)
- soc: qcom: Add check devm_kasprintf() returned value (Charles Han)
- net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin)
- x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann)
- ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan)
- selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian)
- mac80211: fix user-power when emulating chanctx (Ben Greear)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede)
- kbuild: Use uname for LINUX_COMPILE_HOST detection (Chris Down)
- media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab)
- nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388819] {CVE-2024-53130}
- ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov)
- nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388825] {CVE-2024-53131}
- KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) [Orabug: 37388846] {CVE-2024-53135}
- ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) [Orabug: 37388753] {CVE-2024-53112}
- net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea)
- net/mlx5: fs, lock FTE when checking if active (Mark Bloch)
- netlink: terminate outstanding dump on socket close (Jakub Kicinski) [Orabug: 37388861] {CVE-2024-53140}
- LTS tag: v5.4.286 (Alok Tiwari)
- 9p: fix slab cache name creation for real (Linus Torvalds)
- md/raid10: improve code of mrdev in raid10_sync_request (Li Nan)
- net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) [Orabug: 37331928] {CVE-2024-53101}
- powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman)
- sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter)
- bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel)
- HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli)
- 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato)
- ALSA: usb-audio: Add endianness annotations (Jan Sch?r)
- vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) [Orabug: 37298681] {CVE-2024-50264}
- hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) [Orabug: 37344480] {CVE-2024-53103}
- ftrace: Fix possible use-after-free issue in ftrace_location() (Zheng Yejian) [Orabug: 36753574] {CVE-2024-38588}
- NFSD: Fix NFSv4's PUTPUBFH operation (Chuck Lever)
- ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r)
- ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r)
- ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) [Orabug: 37298685] {CVE-2024-50265}
- irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier)
- USB: serial: option: add Quectel RG650V (Beno?t Monin)
- USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer)
- USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu)
- USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) [Orabug: 37298695] {CVE-2024-50267}
- usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) [Orabug: 37298703] {CVE-2024-50269}
- fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi)
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) [Orabug: 37344485] {CVE-2024-53104}
- net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) [Orabug: 36753372] {CVE-2024-38538}
- spi: fix use-after-free of the add_lock mutex (Michael Walle)
- spi: Fix deadlock when adding SPI controllers on SPI buses (Mark Brown)
- mtd: rawnand: protect access to rawnand devices while in suspend (Sean Nyekjaer)
- btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) [Orabug: 37298715] {CVE-2024-50273}
- nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) [Orabug: 37304779] {CVE-2024-53066}
- dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie)
- dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) [Orabug: 37298732] {CVE-2024-50278}
- dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai)
- dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) [Orabug: 37298737] {CVE-2024-50279}
- dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai)
- drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) [Orabug: 37298751] {CVE-2024-50282}
- pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher)
- media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) [Orabug: 37298782] {CVE-2024-50287}
- media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) [Orabug: 37298797] {CVE-2024-50290}
- media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) [Orabug: 37304763] {CVE-2024-53061}
- ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov)
- media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab)
- media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab)
- media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) [Orabug: 37304769] {CVE-2024-53063}
- media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab)
- net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) [Orabug: 37298811] {CVE-2024-50296}
- can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi)
- sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) [Orabug: 37298820] {CVE-2024-50299}
- net: enetc: set MAC address to the VF net_device (Wei Fang)
- enetc: simplify the return expression of enetc_vf_set_mac_addr() (Qinglang Miao)
- security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) [Orabug: 37298827] {CVE-2024-50301}
- HID: core: zero-initialize the report buffer (Jiri Kosina) [Orabug: 37298834] {CVE-2024-50302}
- ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner)
- ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner)
- ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner)
- ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner)
- arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner)
- arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner)
- arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas)
- arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven)

[5.4.17-2136.340.1.el7uek]
- rds/ib: avoid scq/rcq polling during rds connection shutdown (Arumugam Kolappan)  [Orabug: 37092563]
- RDMA/mlx5: Send UAR page index as ioctl attribute (Akiva Goldberger)  [Orabug: 37029739]
- RDMA: Pass entire uverbs attr bundle to create cq function (Akiva Goldberger)  [Orabug: 37029739]
- IB/uverbs: Enable CQ ioctl commands by default (Yishai Hadas)  [Orabug: 37029739]


From el-errata at oss.oracle.com  Mon Feb 17 14:33:10 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 17 Feb 2025 06:33:10 -0800
Subject: [El-errata] ELSA-2025-0714 Important: Oracle Linux 7 rsync security
 update
Message-ID: <mailman.143.1739802799.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0714

http://linux.oracle.com/errata/ELSA-2025-0714.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
rsync-3.1.2-12.0.1.el7_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//rsync-3.1.2-12.0.1.el7_9.src.rpm

Related CVEs:

CVE-2024-12085




Description of changes:

[3.1.2-12.0.1]
* Back port fix for CVE-2024-12085 [Orabug: 37524229]



From el-errata at oss.oracle.com  Tue Feb 18 15:27:13 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Tue, 18 Feb 2025 07:27:13 -0800
Subject: [El-errata] ELBA-2025-20107 Oracle Linux 8 oVirt 4.5
 ovirt-ansible-collection bug fix update
Message-ID: <mailman.144.1739892444.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20107

http://linux.oracle.com/errata/ELBA-2025-20107.html

The following updated rpms for Oracle Linux 8 oVirt 4.5 have been uploaded to the Unbreakable Linux Network:

x86_64:
ovirt-ansible-collection-3.2.0-1.20.el8.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//ovirt-ansible-collection-3.2.0-1.20.el8.src.rpm



Description of changes:

[3.2.0-1.20]
- Move proxy task earlier in deployment



From el-errata at oss.oracle.com  Wed Feb 19 13:13:46 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:13:46 -0800
Subject: [El-errata] ELSA-2025-20113 Critical: Oracle Linux 8 NetworkManager
 security update
Message-ID: <mailman.145.1739970838.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20113

http://linux.oracle.com/errata/ELSA-2025-20113.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-cloud-setup-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-adsl-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-bluetooth-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-config-connectivity-oracle-1.40.16-18.0.3.el8_10.noarch.rpm
NetworkManager-config-server-1.40.16-18.0.3.el8_10.noarch.rpm
NetworkManager-dispatcher-routing-rules-1.40.16-18.0.3.el8_10.noarch.rpm
NetworkManager-libnm-1.40.16-18.0.3.el8_10.i686.rpm
NetworkManager-libnm-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-ovs-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-ppp-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-team-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-tui-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-wifi-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-wwan-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-libnm-devel-1.40.16-18.0.3.el8_10.i686.rpm
NetworkManager-libnm-devel-1.40.16-18.0.3.el8_10.x86_64.rpm
NetworkManager-initscripts-updown-1.40.16-18.0.3.el8_10.noarch.rpm

aarch64:
NetworkManager-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-adsl-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-bluetooth-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-config-connectivity-oracle-1.40.16-18.0.3.el8_10.noarch.rpm
NetworkManager-config-server-1.40.16-18.0.3.el8_10.noarch.rpm
NetworkManager-dispatcher-routing-rules-1.40.16-18.0.3.el8_10.noarch.rpm
NetworkManager-libnm-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-ovs-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-ppp-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-team-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-tui-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-wifi-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-wwan-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-libnm-devel-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-cloud-setup-1.40.16-18.0.3.el8_10.aarch64.rpm
NetworkManager-initscripts-updown-1.40.16-18.0.3.el8_10.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//NetworkManager-1.40.16-18.0.3.el8_10.src.rpm



Description of changes:

[1:1.40.16-18.0.3]
- Drop 777 permissions from Networkmanager-dispatcher drop-in directory [Orabug: 37581862]

[1:1.40.16-18.0.2]
- Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910]



From el-errata at oss.oracle.com  Wed Feb 19 13:13:48 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:13:48 -0800
Subject: [El-errata] ELSA-2025-1517 Moderate: Oracle Linux 8 libxml2
 security update
Message-ID: <mailman.146.1739970841.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1517

http://linux.oracle.com/errata/ELSA-2025-1517.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxml2-2.9.7-18.el8_10.2.i686.rpm
libxml2-2.9.7-18.el8_10.2.x86_64.rpm
libxml2-devel-2.9.7-18.el8_10.2.i686.rpm
libxml2-devel-2.9.7-18.el8_10.2.x86_64.rpm
python3-libxml2-2.9.7-18.el8_10.2.x86_64.rpm

aarch64:
libxml2-2.9.7-18.el8_10.2.aarch64.rpm
libxml2-devel-2.9.7-18.el8_10.2.aarch64.rpm
python3-libxml2-2.9.7-18.el8_10.2.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//libxml2-2.9.7-18.el8_10.2.src.rpm

Related CVEs:

CVE-2022-49043




Description of changes:

[2.9.7-18.2]
- Fix CVE-2022-49043 (RHEL-76289)

[2.9.7-18.1]
- Fix CVE-2024-25062 (RHEL-31056)



From el-errata at oss.oracle.com  Wed Feb 19 13:13:54 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:13:54 -0800
Subject: [El-errata] ELBA-2025-20122 Oracle Linux 9 osbuild-composer bug fix
 update
Message-ID: <mailman.147.1739970843.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20122

http://linux.oracle.com/errata/ELBA-2025-20122.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
osbuild-composer-118-2.0.2.el9_5.x86_64.rpm
osbuild-composer-core-118-2.0.2.el9_5.x86_64.rpm
osbuild-composer-worker-118-2.0.2.el9_5.x86_64.rpm

aarch64:
osbuild-composer-118-2.0.2.el9_5.aarch64.rpm
osbuild-composer-core-118-2.0.2.el9_5.aarch64.rpm
osbuild-composer-worker-118-2.0.2.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//osbuild-composer-118-2.0.2.el9_5.src.rpm



Description of changes:

[118-2.0.2]
- Add support to create OpenScap images [JIRA: OLDIS-35301]



From el-errata at oss.oracle.com  Wed Feb 19 13:13:56 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:13:56 -0800
Subject: [El-errata] ELSA-2025-20114 Critical: Oracle Linux 9 NetworkManager
 security update
Message-ID: <mailman.148.1739970844.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-20114

http://linux.oracle.com/errata/ELSA-2025-20114.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-adsl-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-bluetooth-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-config-connectivity-oracle-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-config-server-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-initscripts-updown-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-libnm-1.48.10-5.0.3.el9_5.i686.rpm
NetworkManager-libnm-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-team-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-tui-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-wifi-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-wwan-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-cloud-setup-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-dispatcher-routing-rules-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-ovs-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-ppp-1.48.10-5.0.3.el9_5.x86_64.rpm
NetworkManager-libnm-devel-1.48.10-5.0.3.el9_5.i686.rpm
NetworkManager-libnm-devel-1.48.10-5.0.3.el9_5.x86_64.rpm

aarch64:
NetworkManager-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-adsl-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-bluetooth-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-config-connectivity-oracle-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-config-server-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-initscripts-updown-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-libnm-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-team-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-tui-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-wifi-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-wwan-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-cloud-setup-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-dispatcher-routing-rules-1.48.10-5.0.3.el9_5.noarch.rpm
NetworkManager-ovs-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-ppp-1.48.10-5.0.3.el9_5.aarch64.rpm
NetworkManager-libnm-devel-1.48.10-5.0.3.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//NetworkManager-1.48.10-5.0.3.el9_5.src.rpm



Description of changes:

[1.48.10-5.0.3]
- Drop 777 permissions from the NetworkManager-dispatcher drop-in directory [Orabug: 37581907]

[1.48.10-5.0.2]
- Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910]



From el-errata at oss.oracle.com  Wed Feb 19 13:13:57 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:13:57 -0800
Subject: [El-errata] ELBA-2025-1345 Oracle Linux 9 .NET 8.0 bug fix and
 enhancement update
Message-ID: <mailman.149.1739970845.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1345

http://linux.oracle.com/errata/ELBA-2025-1345.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
dotnet-hostfxr-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
dotnet-runtime-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-8.0-8.0.113-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el9_5.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm
dotnet-templates-8.0-8.0.113-1.0.1.el9_5.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el9_5.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
dotnet-hostfxr-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
dotnet-runtime-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-8.0-8.0.113-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el9_5.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm
dotnet-templates-8.0-8.0.113-1.0.1.el9_5.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//dotnet8.0-8.0.113-1.0.1.el9_5.src.rpm



Description of changes:

[8.0.113-1.0.1]
- Update to .NET SDK 8.0.113 and Runtime 8.0.13



From el-errata at oss.oracle.com  Wed Feb 19 13:13:58 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:13:58 -0800
Subject: [El-errata] ELBA-2025-1512 Oracle Linux 9 virt-v2v bug fix update
Message-ID: <mailman.150.1739970847.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1512

http://linux.oracle.com/errata/ELBA-2025-1512.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
virt-v2v-2.5.6-8.0.1.el9_5.x86_64.rpm
virt-v2v-bash-completion-2.5.6-8.0.1.el9_5.noarch.rpm
virt-v2v-man-pages-ja-2.5.6-8.0.1.el9_5.noarch.rpm
virt-v2v-man-pages-uk-2.5.6-8.0.1.el9_5.noarch.rpm



SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//virt-v2v-2.5.6-8.0.1.el9_5.src.rpm



Description of changes:

[1:2.5.6-8.0.1]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- replaced upstream references [Orabug:34089586]

[1:2.5.6-8]
- Migration Plan / vddk pod cannot remove open-vm-tools in case of dependencies
  Resolves: RHEL-78842
- CentOS 9 Migration from VMWare to Openshift Virt fails
  Resolves: RHEL-78844



From el-errata at oss.oracle.com  Wed Feb 19 13:14:00 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:14:00 -0800
Subject: [El-errata] ELSA-2025-0936 Moderate: Oracle Linux 9 mingw-glib2
 security update
Message-ID: <mailman.151.1739970848.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-0936

http://linux.oracle.com/errata/ELSA-2025-0936.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mingw32-glib2-2.78.6-2.el9.noarch.rpm
mingw32-glib2-static-2.78.6-2.el9.noarch.rpm
mingw64-glib2-2.78.6-2.el9.noarch.rpm
mingw64-glib2-static-2.78.6-2.el9.noarch.rpm



SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//mingw-glib2-2.78.6-2.el9.src.rpm

Related CVEs:

CVE-2024-52533




Description of changes:

[2.78.6-2]
- Resolves: RHEL-67088 - CVE-2024-52533 mingw-glib2: buffer overflow in set_connect_msg()



From el-errata at oss.oracle.com  Wed Feb 19 13:14:01 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Wed, 19 Feb 2025 05:14:01 -0800
Subject: [El-errata] ELSA-2025-1329 Moderate: Oracle Linux 9 doxygen
 security update
Message-ID: <mailman.152.1739970851.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1329

http://linux.oracle.com/errata/ELSA-2025-1329.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
doxygen-1.9.1-12.el9_5.x86_64.rpm
doxygen-doxywizard-1.9.1-12.el9_5.x86_64.rpm
doxygen-latex-1.9.1-12.el9_5.x86_64.rpm

aarch64:
doxygen-1.9.1-12.el9_5.aarch64.rpm
doxygen-doxywizard-1.9.1-12.el9_5.aarch64.rpm
doxygen-latex-1.9.1-12.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//doxygen-1.9.1-12.el9_5.src.rpm

Related CVEs:

CVE-2020-11023




Description of changes:

[1:1.9.1-12]
- Resolves: RHEL-78146, CVE-2020-11023, CVE-2020-11022



From el-errata at oss.oracle.com  Mon Feb 24 13:18:50 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 14:18:50 +0100
Subject: [El-errata] New Ksplice updates for UEKR7 5.15.0 on OL8 and OL9
 (ELSA-2025-20095)
Message-ID: <mailman.171.1740403150.253.el-errata@oss.oracle.com>

Synopsis: ELSA-2025-20095 can now be patched using Ksplice
CVEs: CVE-2023-52658 CVE-2024-38538 CVE-2024-39494 CVE-2024-42142 CVE-2024-42315 CVE-2024-43864 CVE-2024-49996 CVE-2024-50121 CVE-2024-50264 CVE-2024-50265 CVE-2024-50273 CVE-2024-50278 CVE-2024-50279 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53141 CVE-2024-53164 CVE-2024-53173 CVE-2024-53241 CVE-2024-56590 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56642 CVE-2024-56644 CVE-2024-56650 CVE-2024-56688 CVE-2024-57874

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2025-20095.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2025-20095.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR7 5.15.0 on
OL8 and OL9 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2023-52658: Denial-of-service in Mellanox Technologies MLX5 SRIOV E-Switch driver.

A logic error when entering switchdev mode with ns inconsistency in
Mellanox Technologies MLX5 SRIOV E-Switch driver could lead to a
kernel crash. A local attacker could use this flaw to cause a
denial-of-service.

Orabug: 36811057


* CVE-2024-38538: Data corruption in 802.1d Ethernet Bridging.

A missing check when sending a short skb in the 802.1d Ethernet
Bridging driver could lead to use of uninitialized memory. An
attacker could use this flaw to cause data corruption.


* CVE-2024-39494: Denial-of-service in Integrity Measurement Architecture (IMA) driver.

A logic error when using the Integrity Measurement Architecture (IMA)
driver could lead to a use-after-free. A local attacker could use this
flaw to cause a denial-of-service.


* CVE-2024-42142: Denial-of-service in Mellanox devices driver.

A logic error when using active-backup lag mode in the Mellanox devices
driver could lead to a NULL pointer dereference. A local attacker could
use this flaw to cause a denial-of-service.

Orabug: 36948578


* CVE-2024-42315: Denial-of-service in exFAT filesystem driver.

A locking error when using the exFAT filesystem driver could lead to a
deadlock. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-43864: Denial-of-service in Mellanox devices driver.

Incorrect return status checks when using the Mellanox devices driver
could lead to a invalid pointer dereference. A local attacker could use
this flaw to cause a denial-of-service.

Orabug: 36948578


* CVE-2024-49996: Privilege escalation in SMB3 and CIFS driver.

A missing check when parsing NFS reparse points in the SMB3 and CIFS
driver could lead to an out-of-bounds memory access. A remote attacker
could use this flaw to escalate privileges.


* CVE-2024-50121: Privilege escalation in NFS server version 4 driver.

A logic error when using the NFS server version 4 driver could lead to a
use-after-free. A local attacker could use this flaw to escalate
privileges.


* CVE-2024-50264: Privilege escalation in Virtual Socket protocol driver.

A missing variable initialization when during loopback communication in
the Virtual Socket protocol driver could lead to a use-after-free. A
local attacker could use this flaw to escalate privileges.


* CVE-2024-50265: Denial-of-service in OCFS2 filesystem driver.

A logic error when setting extended attributes in the OCFS2 filesystem
driver could lead to a NULL pointer dereference. A local attacker could
use this flaw to cause a denial-of-service.


* CVE-2024-50273: Denial-of-service in Btrfs filesystem driver.

A logic error when handling delayed reference counting in the Btrfs
filesystem driver could lead to a use-after-free. A local attacker could
use this flaw to cause a denial-of-service.


* CVE-2024-50278, CVE-2024-50279: Privilege escalation in Multiple Device Cache Target driver.

Logic errors when manipulating cache in the Multiple Device Cache Target
driver could lead to an out-of-bounds memory access. A local attacker
could use this flaw to escalate privileges.


* CVE-2024-53103: Privilege escalation in Virtual Socket protocol driver.

A missing variable initialization when destroying socket in the Virtual
Socket protocol driver could lead to a use-after-free. A local attacker
could use this flaw to escalate privileges.


* CVE-2024-53104: Code execution in USB Video Class (UVC) driver.

A missing check when using the USB Video Class (UVC) driver could lead
to an out-of-bounds memory write. A local attacker could use this flaw
to execute arbitrary code in kernel mode.


* CVE-2024-53112: Denial-of-service in OCFS2 filesystem driver.

A missing check when using OCFS2_IOC_GROUP_ADD ioctl in the OCFS2
filesystem driver could lead to a kernel assertion failure. A local
attacker could use this flaw to cause a denial-of-service.


* CVE-2024-53141: Privilege escalation in netfilter (IP set) subsystem.

A missing check when updating the bitmap for IP addresses in the
netfilter (IP set) subsystem could lead to an out-of-bounds memory
access. A local attacker could use this flaw to escalate privileges.


* CVE-2024-53164: Privilege escalation in CAKE network scheduler.

A logic error when using the Common Applications Kept Enhanced (CAKE)
network scheduler could lead to a use-after-free. A local attacker could
use this flaw to escalate privileges.


* CVE-2024-53173: Privilege escalation in NFS client driver.

A logic error when opening multiple files concurrently in the NFS client
driver could lead to a use-after-free. A local attacker could use this
flaw to escalate privileges.


* CVE-2024-56590: Privilege escalation in Bluetooth subsystem driver.

A logic error when using the Bluetooth subsystem driver could lead to an
out-of-bounds memory access. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-56600: Privilege escalation in Networking subsystem.

A missing variable initialization when creating a socket fails in the
Networking subsystem could lead to a use-after-free. A local attacker
could use this flaw to escalate privileges.


* CVE-2024-56601: Privilege escalation in TCP/IP networking driver.

A missing variable initialization when creating a socket fails in the
TCP/IP networking driver could lead to a use-after-free. A local
attacker could use this flaw to escalate privileges.


* CVE-2024-56602: Privilege escalation in IEEE Std 802.15.4 Low-Rate Wireless Personal Area Networks driver.

A missing variable initialization when creating a socket fails in the
IEEE Std 802.15.4 Low-Rate Wireless Personal Area Networks driver could
lead to a use-after-free. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-56603: Privilege escalation in CAN bus subsystem driver.

A missing variable initialization when creating a CAN socket fails in
the CAN bus subsystem driver could lead to a use-after-free. A local
attacker could use this flaw to escalate privileges.


* CVE-2024-56605: Privilege escalation in Bluetooth subsystem driver.

A missing variable initialization when creating a l2cap socket fails in
the Bluetooth subsystem driver could lead to a use-after-free. A local
attacker could use this flaw to escalate privileges.


* CVE-2024-56606: Privilege escalation in Packet socket driver.

A logic error when packet creation fails in the Packet socket driver
could lead to a use-after-free. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-56642: Privilege escalation in TIPC over IP/UDP driver.

A missing check when disabling a bearer in the TIPC over IP/UDP driver
could lead to a use-after-free. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-56644: Remote denial-of-service in IPv6 networking stack.

Incorrect reference counting when using the IPv6 networking stack could
lead to a memory leak. A remote attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-56650: Privilege escalation in netfilter driver.

A missing check when using the netfilter driver could lead to an
out-of-bounds memory access. A local attacker could use this flaw to
escalate privileges.


* CVE-2024-56688: Denial-of-service in Sun RPC driver.

A logic error when using the Sun RPC driver could lead to a NULL
pointer dereference. A local attacker could use this flaw to cause a
denial-of-service.


* CVE-2024-57874: Information leak in Ptrace subsystem.

A missing check when ptracing a process using the Ptrace subsystem could
lead to leaking of kernel memory. A local attacker could use this flaw
to extract sensitive information.


* Note: Oracle will not provide a zero-downtime update for CVE-2024-53241 (XSA-466).

CVE-2024-53241 (XSA-466) is an information leak from Xen guests.

Oracle has determined that patching CVE-2024-53241 (XSA-466) on a
running system would not be safe and recommends a reboot if Xen is used.


* Note: Oracle has determined some CVEs are not applicable.

The kernel is not affected by the following CVEs
since the code under consideration is not compiled.

CVE-2022-49034, CVE-2024-36476, CVE-2024-40939, CVE-2024-42073,
CVE-2024-42138, CVE-2024-43098, CVE-2024-44949, CVE-2024-45828,
CVE-2024-47143, CVE-2024-47408, CVE-2024-47730, CVE-2024-49571,
CVE-2024-50051, CVE-2024-50268, CVE-2024-50269, CVE-2024-50283,
CVE-2024-50287, CVE-2024-50292, CVE-2024-50295, CVE-2024-50296,
CVE-2024-53130, CVE-2024-53131, CVE-2024-53145, CVE-2024-53148,
CVE-2024-53158, CVE-2024-53161, CVE-2024-53165, CVE-2024-53181,
CVE-2024-53183, CVE-2024-53184, CVE-2024-53241, CVE-2024-53690,
CVE-2024-56548, CVE-2024-56562, CVE-2024-56567, CVE-2024-56572,
CVE-2024-56575, CVE-2024-56578, CVE-2024-56581, CVE-2024-56586,
CVE-2024-56595, CVE-2024-56596, CVE-2024-56597, CVE-2024-56598,
CVE-2024-56610, CVE-2024-56619, CVE-2024-56626, CVE-2024-56627,
CVE-2024-56643, CVE-2024-56659, CVE-2024-56678, CVE-2024-56679,
CVE-2024-56700, CVE-2024-56701, CVE-2024-56704, CVE-2024-56726,
CVE-2024-56728, CVE-2024-56741, CVE-2024-56754, CVE-2024-56766,
CVE-2024-56767, CVE-2024-56776, CVE-2024-56777, CVE-2024-56778,
CVE-2024-56781, CVE-2024-56785, CVE-2024-56787, CVE-2024-57791,
CVE-2024-57802, CVE-2024-57838, CVE-2024-57849, CVE-2024-57889,
CVE-2024-57900

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.




From el-errata at oss.oracle.com  Mon Feb 24 14:41:25 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:25 -0800
Subject: [El-errata] ELSA-2025-1613 Important: Oracle Linux 9 nodejs:22
 security update
Message-ID: <mailman.174.1740408093.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1613

http://linux.oracle.com/errata/ELSA-2025-1613.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm
nodejs-devel-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm
nodejs-docs-22.13.1-1.module+el9.5.0+90517+729550a4.noarch.rpm
nodejs-full-i18n-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm
nodejs-libs-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el9.5.0+90517+729550a4.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm
npm-10.9.2-1.22.13.1.1.module+el9.5.0+90517+729550a4.x86_64.rpm
v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el9.5.0+90517+729550a4.x86_64.rpm

aarch64:
nodejs-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm
nodejs-devel-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm
nodejs-docs-22.13.1-1.module+el9.5.0+90517+729550a4.noarch.rpm
nodejs-full-i18n-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm
nodejs-libs-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el9.5.0+90517+729550a4.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm
npm-10.9.2-1.22.13.1.1.module+el9.5.0+90517+729550a4.aarch64.rpm
v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el9.5.0+90517+729550a4.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-22.13.1-1.module+el9.5.0+90517+729550a4.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.5.0+90517+729550a4.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.5.0+90517+729550a4.src.rpm

Related CVEs:

CVE-2025-22150
CVE-2025-23083
CVE-2025-23085




Description of changes:

nodejs
[1:22.13.1-1]
- Update to version 22.13.1
  Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150
  Resolves: RHEL-76354

[1:22.11.0-1]
- Update to version 22.11.0

[22.4.1-4]
- Initial import of nodeJS 22

nodejs-nodemon
nodejs-packaging


From el-errata at oss.oracle.com  Mon Feb 24 14:41:26 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:26 -0800
Subject: [El-errata] ELSA-2025-1670 Important: Oracle Linux 9 bind9.18
 security update
Message-ID: <mailman.175.1740408096.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1670

http://linux.oracle.com/errata/ELSA-2025-1670.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind9.18-9.18.29-1.el9_5.1.x86_64.rpm
bind9.18-chroot-9.18.29-1.el9_5.1.x86_64.rpm
bind9.18-dnssec-utils-9.18.29-1.el9_5.1.x86_64.rpm
bind9.18-libs-9.18.29-1.el9_5.1.x86_64.rpm
bind9.18-utils-9.18.29-1.el9_5.1.x86_64.rpm
bind9.18-devel-9.18.29-1.el9_5.1.i686.rpm
bind9.18-devel-9.18.29-1.el9_5.1.x86_64.rpm
bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm
bind9.18-libs-9.18.29-1.el9_5.1.i686.rpm

aarch64:
bind9.18-9.18.29-1.el9_5.1.aarch64.rpm
bind9.18-chroot-9.18.29-1.el9_5.1.aarch64.rpm
bind9.18-dnssec-utils-9.18.29-1.el9_5.1.aarch64.rpm
bind9.18-libs-9.18.29-1.el9_5.1.aarch64.rpm
bind9.18-utils-9.18.29-1.el9_5.1.aarch64.rpm
bind9.18-devel-9.18.29-1.el9_5.1.aarch64.rpm
bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//bind9.18-9.18.29-1.el9_5.1.src.rpm

Related CVEs:

CVE-2024-11187
CVE-2024-12705




Description of changes:

[32:9.18.29-1.el9_5.1]
- Fix CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion
- Fix CVE-2024-12705 bind: bind9: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load



From el-errata at oss.oracle.com  Mon Feb 24 14:41:29 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:29 -0800
Subject: [El-errata] ELSA-2025-1681 Important: Oracle Linux 9 bind security
 update
Message-ID: <mailman.176.1740408099.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1681

http://linux.oracle.com/errata/ELSA-2025-1681.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind-9.16.23-24.0.1.el9_5.3.x86_64.rpm
bind-chroot-9.16.23-24.0.1.el9_5.3.x86_64.rpm
bind-dnssec-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-dnssec-utils-9.16.23-24.0.1.el9_5.3.x86_64.rpm
bind-libs-9.16.23-24.0.1.el9_5.3.x86_64.rpm
bind-license-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-utils-9.16.23-24.0.1.el9_5.3.x86_64.rpm
python3-bind-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-devel-9.16.23-24.0.1.el9_5.3.i686.rpm
bind-devel-9.16.23-24.0.1.el9_5.3.x86_64.rpm
bind-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-libs-9.16.23-24.0.1.el9_5.3.i686.rpm

aarch64:
bind-9.16.23-24.0.1.el9_5.3.aarch64.rpm
bind-chroot-9.16.23-24.0.1.el9_5.3.aarch64.rpm
bind-dnssec-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-dnssec-utils-9.16.23-24.0.1.el9_5.3.aarch64.rpm
bind-libs-9.16.23-24.0.1.el9_5.3.aarch64.rpm
bind-license-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-utils-9.16.23-24.0.1.el9_5.3.aarch64.rpm
python3-bind-9.16.23-24.0.1.el9_5.3.noarch.rpm
bind-devel-9.16.23-24.0.1.el9_5.3.aarch64.rpm
bind-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//bind-9.16.23-24.0.1.el9_5.3.src.rpm

Related CVEs:

CVE-2024-11187




Description of changes:

[32:9.16.23-24.0.1.el9_5.3]
- Fix bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187)



From el-errata at oss.oracle.com  Mon Feb 24 14:41:28 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:28 -0800
Subject: [El-errata] ELSA-2025-1671 Important: Oracle Linux 9 mysql security
 update
Message-ID: <mailman.177.1740408099.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1671

http://linux.oracle.com/errata/ELSA-2025-1671.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mysql-8.0.41-2.el9_5.x86_64.rpm
mysql-common-8.0.41-2.el9_5.x86_64.rpm
mysql-errmsg-8.0.41-2.el9_5.x86_64.rpm
mysql-server-8.0.41-2.el9_5.x86_64.rpm
mysql-devel-8.0.41-2.el9_5.x86_64.rpm
mysql-libs-8.0.41-2.el9_5.x86_64.rpm
mysql-test-8.0.41-2.el9_5.x86_64.rpm

aarch64:
mysql-8.0.41-2.el9_5.aarch64.rpm
mysql-common-8.0.41-2.el9_5.aarch64.rpm
mysql-errmsg-8.0.41-2.el9_5.aarch64.rpm
mysql-server-8.0.41-2.el9_5.aarch64.rpm
mysql-devel-8.0.41-2.el9_5.aarch64.rpm
mysql-libs-8.0.41-2.el9_5.aarch64.rpm
mysql-test-8.0.41-2.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//mysql-8.0.41-2.el9_5.src.rpm

Related CVEs:

CVE-2024-5535
CVE-2024-7264
CVE-2024-11053
CVE-2024-21193
CVE-2024-21194
CVE-2024-21196
CVE-2024-21197
CVE-2024-21198
CVE-2024-21199
CVE-2024-21201
CVE-2024-21203
CVE-2024-21212
CVE-2024-21213
CVE-2024-21218
CVE-2024-21219
CVE-2024-21230
CVE-2024-21231
CVE-2024-21236
CVE-2024-21237
CVE-2024-21238
CVE-2024-21239
CVE-2024-21241
CVE-2024-21247
CVE-2024-37371
CVE-2025-21490
CVE-2025-21491
CVE-2025-21494
CVE-2025-21497
CVE-2025-21500
CVE-2025-21501
CVE-2025-21503
CVE-2025-21504
CVE-2025-21505
CVE-2025-21518
CVE-2025-21519
CVE-2025-21520
CVE-2025-21521
CVE-2025-21522
CVE-2025-21523
CVE-2025-21525
CVE-2025-21529
CVE-2025-21531
CVE-2025-21534
CVE-2025-21536
CVE-2025-21540
CVE-2025-21543
CVE-2025-21546
CVE-2025-21555
CVE-2025-21559




Description of changes:

[8.0.41-2]
- Fix patching of logrotate

[8.0.41-1]
- Update to MySQL 8.0.41

[8.0.40-1]
- Update to MySQL 8.0.40

[8.0.39-1]
- Rebase to version 8.0.39

[8.0.37-2]
- Use signal to flush logs when rotating

[8.0.37-1]
- Update to MySQL 8.0.37
- Remove some legacy cmake options



From el-errata at oss.oracle.com  Mon Feb 24 14:41:31 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:31 -0800
Subject: [El-errata] ELSA-2025-1738 Important: Oracle Linux 9 libpq security
 update
Message-ID: <mailman.178.1740408100.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1738

http://linux.oracle.com/errata/ELSA-2025-1738.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libpq-13.20-1.el9_5.i686.rpm
libpq-13.20-1.el9_5.x86_64.rpm
libpq-devel-13.20-1.el9_5.i686.rpm
libpq-devel-13.20-1.el9_5.x86_64.rpm

aarch64:
libpq-13.20-1.el9_5.aarch64.rpm
libpq-devel-13.20-1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//libpq-13.20-1.el9_5.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

[13.20-1]
- Update to 13.20



From el-errata at oss.oracle.com  Mon Feb 24 14:41:33 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:33 -0800
Subject: [El-errata] ELSA-2025-1741 Important: Oracle Linux 9 postgresql:15
 security update
Message-ID: <mailman.179.1740408100.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1741

http://linux.oracle.com/errata/ELSA-2025-1741.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.x86_64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
postgresql-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-contrib-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-docs-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-plperl-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-plpython3-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-pltcl-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-private-devel-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-private-libs-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-server-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-server-devel-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-static-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-test-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-test-rpm-macros-15.12-1.module+el9.5.0+90527+e70c9846.noarch.rpm
postgresql-upgrade-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm
postgresql-upgrade-devel-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm

aarch64:
pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.aarch64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
postgresql-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-contrib-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-docs-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-plperl-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-plpython3-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-pltcl-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-private-devel-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-private-libs-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-server-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-server-devel-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-static-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-test-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-test-rpm-macros-15.12-1.module+el9.5.0+90527+e70c9846.noarch.rpm
postgresql-upgrade-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm
postgresql-upgrade-devel-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//postgresql-15.12-1.module+el9.5.0+90527+e70c9846.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

pgaudit
[1.7.0-1]
- Initial import for postgresql 15 module
- Update to 1.7.0
- Support postgresql 15
- Related: #2128410

pg_repack
[1.4.8-2]
- Add new build dependencies to fix build with lz4 enabled
- Related: RHEL-47350

postgres-decoderbufs
[1.9.7-1.Final]
- Iitial import for postgresql 15 stream
- Related: #2128410

postgresql
[15.12-1]
- Update to 15.12



From el-errata at oss.oracle.com  Mon Feb 24 14:41:34 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:34 -0800
Subject: [El-errata] ELSA-2025-1742 Important: Oracle Linux 9 postgresql
 security update
Message-ID: <mailman.180.1740408105.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1742

http://linux.oracle.com/errata/ELSA-2025-1742.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
postgresql-13.20-1.el9_5.x86_64.rpm
postgresql-contrib-13.20-1.el9_5.x86_64.rpm
postgresql-plperl-13.20-1.el9_5.x86_64.rpm
postgresql-plpython3-13.20-1.el9_5.x86_64.rpm
postgresql-pltcl-13.20-1.el9_5.x86_64.rpm
postgresql-private-libs-13.20-1.el9_5.x86_64.rpm
postgresql-server-13.20-1.el9_5.x86_64.rpm
postgresql-upgrade-13.20-1.el9_5.x86_64.rpm
postgresql-docs-13.20-1.el9_5.x86_64.rpm
postgresql-private-devel-13.20-1.el9_5.x86_64.rpm
postgresql-server-devel-13.20-1.el9_5.x86_64.rpm
postgresql-static-13.20-1.el9_5.x86_64.rpm
postgresql-test-13.20-1.el9_5.x86_64.rpm
postgresql-test-rpm-macros-13.20-1.el9_5.noarch.rpm
postgresql-upgrade-devel-13.20-1.el9_5.x86_64.rpm

aarch64:
postgresql-13.20-1.el9_5.aarch64.rpm
postgresql-contrib-13.20-1.el9_5.aarch64.rpm
postgresql-plperl-13.20-1.el9_5.aarch64.rpm
postgresql-plpython3-13.20-1.el9_5.aarch64.rpm
postgresql-pltcl-13.20-1.el9_5.aarch64.rpm
postgresql-private-libs-13.20-1.el9_5.aarch64.rpm
postgresql-server-13.20-1.el9_5.aarch64.rpm
postgresql-upgrade-13.20-1.el9_5.aarch64.rpm
postgresql-docs-13.20-1.el9_5.aarch64.rpm
postgresql-private-devel-13.20-1.el9_5.aarch64.rpm
postgresql-server-devel-13.20-1.el9_5.aarch64.rpm
postgresql-static-13.20-1.el9_5.aarch64.rpm
postgresql-test-13.20-1.el9_5.aarch64.rpm
postgresql-test-rpm-macros-13.20-1.el9_5.noarch.rpm
postgresql-upgrade-devel-13.20-1.el9_5.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//postgresql-13.20-1.el9_5.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:
[13.18-1]
- Update to 13.18


From el-errata at oss.oracle.com  Mon Feb 24 14:41:37 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:37 -0800
Subject: [El-errata] ELSA-2025-1743 Important: Oracle Linux 9 postgresql:16
 security update
Message-ID: <mailman.181.1740408105.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1743

http://linux.oracle.com/errata/ELSA-2025-1743.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-16.0-1.module+el9.4.0+90394+9e4f3cba.x86_64.rpm
pg_repack-1.5.1-1.module+el9.5.0+90450+cb2feb1d.x86_64.rpm
pgvector-0.6.2-1.module+el9.5.0+90425+0820a3c3.x86_64.rpm
postgres-decoderbufs-2.4.0-1.Final.module+el9.4.0+90394+9e4f3cba.x86_64.rpm
postgresql-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-contrib-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-docs-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-plperl-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-plpython3-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-pltcl-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-private-devel-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-private-libs-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-server-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-server-devel-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-static-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-test-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-test-rpm-macros-16.8-1.module+el9.5.0+90528+7da48ca1.noarch.rpm
postgresql-upgrade-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm
postgresql-upgrade-devel-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm

aarch64:
pgaudit-16.0-1.module+el9.4.0+90394+9e4f3cba.aarch64.rpm
pg_repack-1.5.1-1.module+el9.5.0+90450+cb2feb1d.aarch64.rpm
pgvector-0.6.2-1.module+el9.5.0+90425+0820a3c3.aarch64.rpm
postgres-decoderbufs-2.4.0-1.Final.module+el9.4.0+90394+9e4f3cba.aarch64.rpm
postgresql-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-contrib-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-docs-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-plperl-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-plpython3-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-pltcl-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-private-devel-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-private-libs-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-server-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-server-devel-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-static-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-test-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-test-rpm-macros-16.8-1.module+el9.5.0+90528+7da48ca1.noarch.rpm
postgresql-upgrade-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm
postgresql-upgrade-devel-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//pgaudit-16.0-1.module+el9.4.0+90394+9e4f3cba.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//pg_repack-1.5.1-1.module+el9.5.0+90450+cb2feb1d.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//pgvector-0.6.2-1.module+el9.5.0+90425+0820a3c3.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//postgres-decoderbufs-2.4.0-1.Final.module+el9.4.0+90394+9e4f3cba.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//postgresql-16.8-1.module+el9.5.0+90528+7da48ca1.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

pgaudit
pg_repack
[1.5.1-1]
- Update to v1.5.1

pgvector
[0.6.2-1]
- Initial packaging

postgres-decoderbufs
postgresql
[16.8-1]
- Update to 16.8
- Fix CVE-2025-1094



From el-errata at oss.oracle.com  Mon Feb 24 14:41:42 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:42 -0800
Subject: [El-errata] ELBA-2025-20121 Oracle Linux 8 osbuild-composer bug fix
 update
Message-ID: <mailman.182.1740408110.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20121

http://linux.oracle.com/errata/ELBA-2025-20121.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
osbuild-composer-101-2.0.5.el8_10.x86_64.rpm
osbuild-composer-worker-101-2.0.5.el8_10.x86_64.rpm
osbuild-composer-core-101-2.0.5.el8_10.x86_64.rpm

aarch64:
osbuild-composer-101-2.0.5.el8_10.aarch64.rpm
osbuild-composer-worker-101-2.0.5.el8_10.aarch64.rpm
osbuild-composer-core-101-2.0.5.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//osbuild-composer-101-2.0.5.el8_10.src.rpm



Description of changes:

[101-2.0.5]
- Add support to create OpenScap images [JIRA: OLDIS-35301]



From el-errata at oss.oracle.com  Mon Feb 24 14:41:44 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:44 -0800
Subject: [El-errata] ELBA-2025-1344 Oracle Linux 8 .NET 8.0 bug fix and
 enhancement update
Message-ID: <mailman.183.1740408112.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1344

http://linux.oracle.com/errata/ELBA-2025-1344.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
dotnet-hostfxr-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
dotnet-runtime-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-8.0-8.0.113-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el8_10.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm
dotnet-templates-8.0-8.0.113-1.0.1.el8_10.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el8_10.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
dotnet-hostfxr-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
dotnet-runtime-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-8.0-8.0.113-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el8_10.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm
dotnet-templates-8.0-8.0.113-1.0.1.el8_10.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//dotnet8.0-8.0.113-1.0.1.el8_10.src.rpm



Description of changes:

[8.0.113-1.0.1]
- Update to .NET SDK 8.0.113 and Runtime 8.0.13



From el-errata at oss.oracle.com  Mon Feb 24 14:41:45 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:45 -0800
Subject: [El-errata] ELBA-2025-1573 Oracle Linux 8 glibc bug fix update
Message-ID: <mailman.184.1740408114.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1573

http://linux.oracle.com/errata/ELBA-2025-1573.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
compat-libpthread-nonshared-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-2.28-251.0.2.el8_10.13.i686.rpm
glibc-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-all-langpacks-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-common-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-devel-2.28-251.0.2.el8_10.13.i686.rpm
glibc-devel-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-doc-2.28-251.0.2.el8_10.13.noarch.rpm
glibc-gconv-extra-2.28-251.0.2.el8_10.13.i686.rpm
glibc-gconv-extra-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-headers-2.28-251.0.2.el8_10.13.i686.rpm
glibc-headers-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-aa-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-af-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-agr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ak-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-am-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-an-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-anp-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ar-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-as-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ast-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ayc-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-az-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-be-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bem-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ber-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bg-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bhb-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bho-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bo-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-br-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-brx-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-bs-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-byn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ca-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ce-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-chr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-cmn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-crh-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-cs-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-csb-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-cv-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-cy-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-da-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-de-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-doi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-dsb-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-dv-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-dz-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-el-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-en-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-eo-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-es-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-et-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-eu-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fa-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ff-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fil-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fo-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fur-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-fy-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ga-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-gd-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-gez-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-gl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-gu-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-gv-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ha-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hak-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-he-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hif-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hne-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hsb-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ht-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hu-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-hy-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ia-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-id-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ig-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ik-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-is-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-it-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-iu-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ja-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ka-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-kab-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-kk-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-kl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-km-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-kn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ko-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-kok-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ks-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ku-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-kw-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ky-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lb-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lg-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-li-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lij-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ln-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lo-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lt-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lv-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-lzh-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mag-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mai-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mfe-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mg-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mhr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-miq-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mjw-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mk-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ml-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mni-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ms-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-mt-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-my-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nan-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nb-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nds-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ne-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nhn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-niu-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-nso-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-oc-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-om-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-or-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-os-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-pa-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-pap-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-pl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ps-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-pt-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-quz-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-raj-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ro-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ru-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-rw-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sa-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sah-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sat-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sc-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sd-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-se-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sgs-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-shn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-shs-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-si-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sid-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sk-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sm-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-so-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sq-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ss-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-st-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sv-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-sw-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-szl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ta-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tcy-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-te-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tg-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-th-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-the-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ti-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tig-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tk-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tl-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tn-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-to-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tpi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tr-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ts-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-tt-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ug-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-uk-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-unm-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ur-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-uz-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-ve-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-vi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-wa-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-wae-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-wal-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-wo-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-xh-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-yi-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-yo-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-yue-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-yuw-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-zh-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-langpack-zu-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-locale-source-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-minimal-langpack-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-utils-2.28-251.0.2.el8_10.13.x86_64.rpm
libnsl-2.28-251.0.2.el8_10.13.i686.rpm
libnsl-2.28-251.0.2.el8_10.13.x86_64.rpm
nscd-2.28-251.0.2.el8_10.13.x86_64.rpm
nss_db-2.28-251.0.2.el8_10.13.i686.rpm
nss_db-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-benchtests-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-nss-devel-2.28-251.0.2.el8_10.13.i686.rpm
glibc-nss-devel-2.28-251.0.2.el8_10.13.x86_64.rpm
glibc-static-2.28-251.0.2.el8_10.13.i686.rpm
glibc-static-2.28-251.0.2.el8_10.13.x86_64.rpm
nss_hesiod-2.28-251.0.2.el8_10.13.i686.rpm
nss_hesiod-2.28-251.0.2.el8_10.13.x86_64.rpm

aarch64:
compat-libpthread-nonshared-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-all-langpacks-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-common-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-devel-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-doc-2.28-251.0.2.el8_10.13.noarch.rpm
glibc-gconv-extra-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-headers-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-aa-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-af-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-agr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ak-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-am-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-an-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-anp-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ar-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-as-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ast-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ayc-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-az-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-be-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bem-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ber-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bg-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bhb-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bho-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bo-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-br-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-brx-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-bs-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-byn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ca-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ce-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-chr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-cmn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-crh-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-cs-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-csb-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-cv-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-cy-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-da-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-de-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-doi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-dsb-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-dv-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-dz-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-el-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-en-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-eo-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-es-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-et-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-eu-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fa-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ff-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fil-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fo-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fur-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-fy-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ga-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-gd-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-gez-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-gl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-gu-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-gv-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ha-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hak-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-he-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hif-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hne-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hsb-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ht-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hu-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-hy-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ia-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-id-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ig-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ik-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-is-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-it-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-iu-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ja-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ka-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-kab-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-kk-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-kl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-km-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-kn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ko-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-kok-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ks-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ku-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-kw-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ky-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lb-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lg-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-li-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lij-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ln-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lo-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lt-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lv-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-lzh-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mag-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mai-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mfe-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mg-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mhr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-miq-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mjw-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mk-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ml-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mni-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ms-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-mt-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-my-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nan-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nb-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nds-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ne-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nhn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-niu-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-nso-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-oc-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-om-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-or-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-os-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-pa-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-pap-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-pl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ps-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-pt-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-quz-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-raj-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ro-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ru-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-rw-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sa-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sah-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sat-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sc-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sd-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-se-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sgs-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-shn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-shs-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-si-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sid-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sk-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sm-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-so-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sq-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ss-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-st-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sv-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-sw-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-szl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ta-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tcy-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-te-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tg-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-th-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-the-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ti-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tig-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tk-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tl-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tn-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-to-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tpi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tr-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ts-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-tt-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ug-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-uk-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-unm-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ur-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-uz-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-ve-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-vi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-wa-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-wae-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-wal-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-wo-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-xh-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-yi-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-yo-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-yue-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-yuw-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-zh-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-langpack-zu-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-locale-source-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-minimal-langpack-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-utils-2.28-251.0.2.el8_10.13.aarch64.rpm
libnsl-2.28-251.0.2.el8_10.13.aarch64.rpm
nscd-2.28-251.0.2.el8_10.13.aarch64.rpm
nss_db-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-benchtests-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-nss-devel-2.28-251.0.2.el8_10.13.aarch64.rpm
glibc-static-2.28-251.0.2.el8_10.13.aarch64.rpm
nss_hesiod-2.28-251.0.2.el8_10.13.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//glibc-2.28-251.0.2.el8_10.13.src.rpm



Description of changes:

[2.28-251.0.2.13]
- Forward port of Oracle patches
  Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  Oracle history:
  January-28-2025 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-251.0.2.11
  - Forward port of Oracle patches
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  September-24-2024 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-251.0.2.5
  - Forward port of Oracle patches over 2.28-251.5
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  August-26-2024 Jose E. Marchesi <jose.marchesi at oracle.com> - 2.28-251.0.2.4
  - Forward port of Oracle patches over 2.28-251.4
    Reviewed-by: David Faust <david.faust at oracle.com>
  May-24-2024 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-251.0.2.2
  - Forward port of Oracle patches over 2.28-251.2
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  May-23-2024 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-251.0.2.1
  - Forward port of Oracle patches over 2.28-251.1
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  May-22-2024 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-251.0.2
  - Forward port of Oracle patches for ol8-u10
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  March-28-2024 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-251.0.1
  - Forward port of Oracle patches for ol8-u10-beta
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  March-5-2024 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-236.0.1.12
  - Forward port of Oracle patches.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  November-14-2023 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-236.0.1.7
  - Forward port of Oracle patches.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  October-4-2023 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-236.0.1.6
  - Forward port of Oracle patches.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  April-21-2023 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-225.0.3
  - OraBug 35317410 Glibc tunable to disable huge pages on pthread_create stacks
  - Created tunable glibc.pthread.stack_hugetlb to control when hugepages
    can be used for stack allocation.
  - In case THP are enabled and glibc.pthread.stack_hugetlb is set to
    0, glibc will madvise the kernel not to use allow hugepages for stack
    allocations.
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  April-11-2023 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-225.0.2
  - OraBug: 35268809 Fixed initialization of VDSO for tcache_key_initialize
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  March-28-2023 Cupertino Miranda <cupertino.miranda at oracle.com> - 2.28-225.0.1
  - Merge of Oracle patches for ol8u8 beta
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  September-28-2022 Patrick McGehearty <patrick.mcgehearty at oracle.com> - 2.28-211.0.1
  - Merge of Oracle patches for ol8u7 beta
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  August-8-2022 Patrick McGehearty <patrick.mcgehearty at oracle.com> - 2.28-189.5.0.2
  - Enable VDSO on x86_64, aarch64, i386, arm, and mips statically linked programs.
  - These changes enable reading the realtime clock without a kernel syscall.
    OraBug: 30478315
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  May-2-2022 Patrick McGehearty <patrick.mcgehearty at oracle.com> - 2.28-199.0.1
  - Merge of patches from c8s 199 with ol8u6 beta
    Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
  - Update siginfo constants from linux kernel (OraBug: 33734528)
  - Remove limit on MALLOC_MMAP_THRESHOLD tunable (Orabug: 29630826)
  - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive
  - spin mutex (Orabug: 27982358)
    Reviewed-by: Qing Zhao <qing.zhao at oracle.com>
  - add Ampere emag  to tunable cpu list (Patrick McGehearty)
  - add optimized memset for emag
  - add an ASIMD variant of strlen for falkor
    Orabug: 2700101.
  - Modify glibc-ora28849085.patch so it works with RHCK kernels. (Orabug: 28849085)
  - Make _IO_funlockfile match __funlockfile and _IO_flockfile match __flockfile
    Both should test
      if (stream->_flags & _IO_USER_LOCK) == 0)
        _IO_lock_lock (*stream->_lock);
    OraBug: 28481550.
    Reviewed-by: Qing Zhao <qing.zhao at oracle.com>

[2.28-251.13]
- Restore internal ABI to avoid tooling false positives (RHEL-8381)

[2.28-251.12]
- Fix missed wakeup in POSIX thread condition variables (RHEL-8381)



From el-errata at oss.oracle.com  Mon Feb 24 14:41:50 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:50 -0800
Subject: [El-errata] ELSA-2025-1582 Moderate: Oracle Linux 8 nodejs:18
 security update
Message-ID: <mailman.187.1740408117.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1582

http://linux.oracle.com/errata/ELSA-2025-1582.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-18.20.6-1.module+el8.10.0+90515+1118f177.x86_64.rpm
nodejs-devel-18.20.6-1.module+el8.10.0+90515+1118f177.x86_64.rpm
nodejs-docs-18.20.6-1.module+el8.10.0+90515+1118f177.noarch.rpm
nodejs-full-i18n-18.20.6-1.module+el8.10.0+90515+1118f177.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el8.10.0+90402+68b79193.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm
npm-10.8.2-1.18.20.6.1.module+el8.10.0+90515+1118f177.x86_64.rpm

aarch64:
nodejs-18.20.6-1.module+el8.10.0+90515+1118f177.aarch64.rpm
nodejs-devel-18.20.6-1.module+el8.10.0+90515+1118f177.aarch64.rpm
nodejs-docs-18.20.6-1.module+el8.10.0+90515+1118f177.noarch.rpm
nodejs-full-i18n-18.20.6-1.module+el8.10.0+90515+1118f177.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el8.10.0+90402+68b79193.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm
npm-10.8.2-1.18.20.6.1.module+el8.10.0+90515+1118f177.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-18.20.6-1.module+el8.10.0+90515+1118f177.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.10.0+90402+68b79193.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.9.0+90157+ed89dc20.src.rpm

Related CVEs:

CVE-2025-22150
CVE-2025-23085




Description of changes:

nodejs
[1:18.20.6-1]
- Update to version 18.20.6
  Resolves: RHEL-78326
  Fixes: CVE-2025-23085 CVE-2025-22150

nodejs-nodemon
nodejs-packaging


From el-errata at oss.oracle.com  Mon Feb 24 14:41:48 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:48 -0800
Subject: [El-errata] ELBA-2025-1682 Oracle Linux 8 httpd:2.4 bug fix and
 enhancement update
Message-ID: <mailman.188.1740408120.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-1682

http://linux.oracle.com/errata/ELBA-2025-1682.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
httpd-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
httpd-devel-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
httpd-filesystem-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm
httpd-manual-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm
httpd-tools-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
mod_http2-1.15.7-10.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
mod_ldap-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.x86_64.rpm
mod_proxy_html-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
mod_session-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm
mod_ssl-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm

aarch64:
httpd-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
httpd-devel-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
httpd-filesystem-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm
httpd-manual-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm
httpd-tools-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
mod_http2-1.15.7-10.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
mod_ldap-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.aarch64.rpm
mod_proxy_html-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
mod_session-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm
mod_ssl-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//httpd-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//mod_http2-1.15.7-10.module+el8.10.0+90523+b5e5f9e4.3.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.src.rpm



Description of changes:

httpd
[2.4.37-65.3.0.1]
- Replace index.html with Oracle's index page oracle_index.html

[2.4.37-65.3]
- Resolves: RHEL-56068 - Apache HTTPD no longer parse PHP files with
  unicode characters in the name

mod_http2
[1.15.7-10.3]
- Resolves: RHEL-58454 - mod_proxy_http2 failures after CVE-2024-38477 fix
- Resolves: RHEL-59017 - random failures in other requests on http/2 stream
  when client resets one request

mod_md


From el-errata at oss.oracle.com  Mon Feb 24 14:41:52 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:52 -0800
Subject: [El-errata] ELSA-2025-1611 Important: Oracle Linux 8 nodejs:22
 security update
Message-ID: <mailman.189.1740408120.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1611

http://linux.oracle.com/errata/ELSA-2025-1611.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm
nodejs-devel-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm
nodejs-docs-22.13.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm
nodejs-full-i18n-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm
nodejs-libs-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm
npm-10.9.2-1.22.13.1.1.module+el8.10.0+90518+cdafa262.x86_64.rpm
v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el8.10.0+90518+cdafa262.x86_64.rpm

aarch64:
nodejs-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm
nodejs-devel-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm
nodejs-docs-22.13.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm
nodejs-full-i18n-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm
nodejs-libs-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm
nodejs-packaging-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm
npm-10.9.2-1.22.13.1.1.module+el8.10.0+90518+cdafa262.aarch64.rpm
v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el8.10.0+90518+cdafa262.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-22.13.1-1.module+el8.10.0+90518+cdafa262.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.10.0+90518+cdafa262.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.10.0+90518+cdafa262.src.rpm

Related CVEs:

CVE-2025-22150
CVE-2025-23083
CVE-2025-23085




Description of changes:

nodejs
[22.13.1-1]
- Upgrade to version 22.13.1
  Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150
  Resolves: RHEL-76362 RHEL-76897

[22.11.0-1]
- Upgrade to nodejs 22.11.0.
  Resolves: RHEL-35991

[22.4.1-4]
- Exclude ix86 arches from building.
  Related: RHEL-35991

[22.4.1-4]
- Initial import of nodeJS 22
  Resolves: RHEL-35991

nodejs-nodemon
nodejs-packaging


From el-errata at oss.oracle.com  Mon Feb 24 14:41:54 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:54 -0800
Subject: [El-errata] ELSA-2025-1673 Important: Oracle Linux 8 mysql:8.0
 security update
Message-ID: <mailman.190.1740408123.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1673

http://linux.oracle.com/errata/ELSA-2025-1673.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
mecab-0.996-2.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mecab-devel-0.996-2.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mecab-ipadic-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mecab-ipadic-EUCJP-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-common-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-devel-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-errmsg-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-libs-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-server-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm
mysql-test-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm

aarch64:
mecab-0.996-2.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mecab-devel-0.996-2.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mecab-ipadic-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mecab-ipadic-EUCJP-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-common-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-devel-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-errmsg-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-libs-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-server-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm
mysql-test-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//mecab-0.996-2.module+el8.10.0+90521+d5cc5c65.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//mecab-ipadic-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//mysql-8.0.41-1.module+el8.10.0+90521+d5cc5c65.src.rpm

Related CVEs:

CVE-2024-5535
CVE-2024-7264
CVE-2024-11053
CVE-2024-21193
CVE-2024-21194
CVE-2024-21196
CVE-2024-21197
CVE-2024-21198
CVE-2024-21199
CVE-2024-21201
CVE-2024-21203
CVE-2024-21212
CVE-2024-21213
CVE-2024-21218
CVE-2024-21219
CVE-2024-21230
CVE-2024-21231
CVE-2024-21236
CVE-2024-21237
CVE-2024-21238
CVE-2024-21239
CVE-2024-21241
CVE-2024-21247
CVE-2024-37371
CVE-2025-21490
CVE-2025-21491
CVE-2025-21494
CVE-2025-21497
CVE-2025-21500
CVE-2025-21501
CVE-2025-21503
CVE-2025-21504
CVE-2025-21505
CVE-2025-21518
CVE-2025-21519
CVE-2025-21520
CVE-2025-21521
CVE-2025-21522
CVE-2025-21523
CVE-2025-21525
CVE-2025-21529
CVE-2025-21531
CVE-2025-21534
CVE-2025-21536
CVE-2025-21540
CVE-2025-21543
CVE-2025-21546
CVE-2025-21555
CVE-2025-21559




Description of changes:

mecab
[0.996-2.12]
- Bump version for 'mysql' module rebuild
  We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo
- Resolves: #2180411

mecab-ipadic
[2.7.0.20070801-17.0.1]
- Rename the LICENSE.Fedora to LICENSE.oracle

[2.7.0.20070801-17]
- Bump the release
- Resolves: RHEL-24525

mysql
[8.0.41-1]
- Update to MySQL 8.0.41



From el-errata at oss.oracle.com  Mon Feb 24 14:41:55 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:55 -0800
Subject: [El-errata] ELSA-2025-1675 Important: Oracle Linux 8 bind security
 update
Message-ID: <mailman.191.1740408123.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1675

http://linux.oracle.com/errata/ELSA-2025-1675.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind-9.11.36-16.el8_10.4.x86_64.rpm
bind-chroot-9.11.36-16.el8_10.4.x86_64.rpm
bind-devel-9.11.36-16.el8_10.4.i686.rpm
bind-devel-9.11.36-16.el8_10.4.x86_64.rpm
bind-export-devel-9.11.36-16.el8_10.4.i686.rpm
bind-export-devel-9.11.36-16.el8_10.4.x86_64.rpm
bind-export-libs-9.11.36-16.el8_10.4.i686.rpm
bind-export-libs-9.11.36-16.el8_10.4.x86_64.rpm
bind-libs-9.11.36-16.el8_10.4.i686.rpm
bind-libs-9.11.36-16.el8_10.4.x86_64.rpm
bind-libs-lite-9.11.36-16.el8_10.4.i686.rpm
bind-libs-lite-9.11.36-16.el8_10.4.x86_64.rpm
bind-license-9.11.36-16.el8_10.4.noarch.rpm
bind-lite-devel-9.11.36-16.el8_10.4.i686.rpm
bind-lite-devel-9.11.36-16.el8_10.4.x86_64.rpm
bind-pkcs11-9.11.36-16.el8_10.4.x86_64.rpm
bind-pkcs11-devel-9.11.36-16.el8_10.4.i686.rpm
bind-pkcs11-devel-9.11.36-16.el8_10.4.x86_64.rpm
bind-pkcs11-libs-9.11.36-16.el8_10.4.i686.rpm
bind-pkcs11-libs-9.11.36-16.el8_10.4.x86_64.rpm
bind-pkcs11-utils-9.11.36-16.el8_10.4.x86_64.rpm
bind-sdb-9.11.36-16.el8_10.4.x86_64.rpm
bind-sdb-chroot-9.11.36-16.el8_10.4.x86_64.rpm
bind-utils-9.11.36-16.el8_10.4.x86_64.rpm
python3-bind-9.11.36-16.el8_10.4.noarch.rpm

aarch64:
bind-9.11.36-16.el8_10.4.aarch64.rpm
bind-chroot-9.11.36-16.el8_10.4.aarch64.rpm
bind-devel-9.11.36-16.el8_10.4.aarch64.rpm
bind-export-devel-9.11.36-16.el8_10.4.aarch64.rpm
bind-export-libs-9.11.36-16.el8_10.4.aarch64.rpm
bind-libs-9.11.36-16.el8_10.4.aarch64.rpm
bind-libs-lite-9.11.36-16.el8_10.4.aarch64.rpm
bind-license-9.11.36-16.el8_10.4.noarch.rpm
bind-lite-devel-9.11.36-16.el8_10.4.aarch64.rpm
bind-pkcs11-9.11.36-16.el8_10.4.aarch64.rpm
bind-pkcs11-devel-9.11.36-16.el8_10.4.aarch64.rpm
bind-pkcs11-libs-9.11.36-16.el8_10.4.aarch64.rpm
bind-pkcs11-utils-9.11.36-16.el8_10.4.aarch64.rpm
bind-sdb-9.11.36-16.el8_10.4.aarch64.rpm
bind-sdb-chroot-9.11.36-16.el8_10.4.aarch64.rpm
bind-utils-9.11.36-16.el8_10.4.aarch64.rpm
python3-bind-9.11.36-16.el8_10.4.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//bind-9.11.36-16.el8_10.4.src.rpm

Related CVEs:

CVE-2024-11187




Description of changes:

[32:9.11.36-16.4]
- Change patches applying to use -P parameter

[32:9.11.36-16.3]
- Limit additional section records CPU processing (CVE-2024-11187)
- Correct ANY queries to not have additional data appended



From el-errata at oss.oracle.com  Mon Feb 24 14:41:57 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:57 -0800
Subject: [El-errata] ELSA-2025-1676 Important: Oracle Linux 8 bind9.16
 security update
Message-ID: <mailman.192.1740408126.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1676

http://linux.oracle.com/errata/ELSA-2025-1676.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind9.16-9.16.23-0.22.el8_10.2.x86_64.rpm
bind9.16-chroot-9.16.23-0.22.el8_10.2.x86_64.rpm
bind9.16-dnssec-utils-9.16.23-0.22.el8_10.2.x86_64.rpm
bind9.16-libs-9.16.23-0.22.el8_10.2.x86_64.rpm
bind9.16-license-9.16.23-0.22.el8_10.2.noarch.rpm
bind9.16-utils-9.16.23-0.22.el8_10.2.x86_64.rpm
python3-bind9.16-9.16.23-0.22.el8_10.2.noarch.rpm
bind9.16-devel-9.16.23-0.22.el8_10.2.i686.rpm
bind9.16-devel-9.16.23-0.22.el8_10.2.x86_64.rpm
bind9.16-doc-9.16.23-0.22.el8_10.2.noarch.rpm
bind9.16-libs-9.16.23-0.22.el8_10.2.i686.rpm

aarch64:
bind9.16-9.16.23-0.22.el8_10.2.aarch64.rpm
bind9.16-chroot-9.16.23-0.22.el8_10.2.aarch64.rpm
bind9.16-dnssec-utils-9.16.23-0.22.el8_10.2.aarch64.rpm
bind9.16-libs-9.16.23-0.22.el8_10.2.aarch64.rpm
bind9.16-license-9.16.23-0.22.el8_10.2.noarch.rpm
bind9.16-utils-9.16.23-0.22.el8_10.2.aarch64.rpm
python3-bind9.16-9.16.23-0.22.el8_10.2.noarch.rpm
bind9.16-devel-9.16.23-0.22.el8_10.2.aarch64.rpm
bind9.16-doc-9.16.23-0.22.el8_10.2.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//bind9.16-9.16.23-0.22.el8_10.2.src.rpm

Related CVEs:

CVE-2024-11187




Description of changes:

[32:9.16.23-0.22.2]
- Fix application of patch for CVE-2024-11187
- Resolves: RHEL-77103

[32:9.16.23-0.22.1]
- Limit additional section records CPU processing (CVE-2024-11187)
- Fix test backport changes



From el-errata at oss.oracle.com  Mon Feb 24 14:41:59 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:41:59 -0800
Subject: [El-errata] ELSA-2025-1736 Important: Oracle Linux 8 postgresql:13
 security update
Message-ID: <mailman.193.1740408128.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1736

http://linux.oracle.com/errata/ELSA-2025-1736.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.x86_64.rpm
pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.x86_64.rpm
postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.x86_64.rpm
postgresql-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-contrib-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-docs-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-plperl-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-plpython3-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-pltcl-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-server-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-server-devel-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-static-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-test-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-test-rpm-macros-13.20-1.module+el8.10.0+90526+050ec11b.noarch.rpm
postgresql-upgrade-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm
postgresql-upgrade-devel-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm

aarch64:
pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.aarch64.rpm
pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.aarch64.rpm
postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.aarch64.rpm
postgresql-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-contrib-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-docs-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-plperl-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-plpython3-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-pltcl-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-server-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-server-devel-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-static-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-test-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-test-rpm-macros-13.20-1.module+el8.10.0+90526+050ec11b.noarch.rpm
postgresql-upgrade-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm
postgresql-upgrade-devel-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//postgresql-13.20-1.module+el8.10.0+90526+050ec11b.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

pgaudit
[1.5.0-1]
- Update to version 1.5.0
  Related: #1855776

pg_repack
[1.4.6-3]
- Release bump - enable gating

postgres-decoderbufs
[0.10.0-2]
- Release bump for rebuild against libpq-12.1-3

postgresql
[13.20-1]
- Update to 13.20
- Fix CVE-2025-1094



From el-errata at oss.oracle.com  Mon Feb 24 14:42:01 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:42:01 -0800
Subject: [El-errata] ELSA-2025-1737 Important: Oracle Linux 8 libpq security
 update
Message-ID: <mailman.194.1740408129.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1737

http://linux.oracle.com/errata/ELSA-2025-1737.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
libpq-13.20-1.el8_10.i686.rpm
libpq-13.20-1.el8_10.x86_64.rpm
libpq-devel-13.20-1.el8_10.i686.rpm
libpq-devel-13.20-1.el8_10.x86_64.rpm

aarch64:
libpq-13.20-1.el8_10.aarch64.rpm
libpq-devel-13.20-1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//libpq-13.20-1.el8_10.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

[13.20-1]
- Update to 13.20



From el-errata at oss.oracle.com  Mon Feb 24 14:42:03 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:42:03 -0800
Subject: [El-errata] ELSA-2025-1739 Important: Oracle Linux 8 postgresql:15
 security update
Message-ID: <mailman.195.1740408132.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1739

http://linux.oracle.com/errata/ELSA-2025-1739.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.x86_64.rpm
pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.x86_64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.x86_64.rpm
postgresql-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-contrib-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-docs-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-plperl-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-plpython3-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-pltcl-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-private-devel-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-private-libs-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-server-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-server-devel-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-static-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-test-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-test-rpm-macros-15.12-1.module+el8.10.0+90529+917d02ef.noarch.rpm
postgresql-upgrade-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm
postgresql-upgrade-devel-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm

aarch64:
pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.aarch64.rpm
pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.aarch64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.aarch64.rpm
postgresql-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-contrib-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-docs-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-plperl-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-plpython3-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-pltcl-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-private-devel-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-private-libs-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-server-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-server-devel-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-static-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-test-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-test-rpm-macros-15.12-1.module+el8.10.0+90529+917d02ef.noarch.rpm
postgresql-upgrade-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm
postgresql-upgrade-devel-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//postgresql-15.12-1.module+el8.10.0+90529+917d02ef.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

pgaudit
[1.7.0-1]
- Update to 1.7.0
- Support postgresql 15
- Related: #2128241

pg_repack
[1.4.8-1]
- Update to version 1.4.8
- Postgresql 15 is supported
- Related: #2128241

postgres-decoderbufs
[1.9.7-1.Final]
- Iitial import for postgresql 15 stream
- Related: #2128241

postgresql
[15.12-1]
- Update to 15.12
- Fix CVE-2025-1094



From el-errata at oss.oracle.com  Mon Feb 24 14:42:05 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:42:05 -0800
Subject: [El-errata] ELSA-2025-1740 Important: Oracle Linux 8 postgresql:16
 security update
Message-ID: <mailman.196.1740408135.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1740

http://linux.oracle.com/errata/ELSA-2025-1740.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.x86_64.rpm
pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.x86_64.rpm
postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.x86_64.rpm
postgresql-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-contrib-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-docs-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-plperl-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-plpython3-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-pltcl-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-private-devel-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-private-libs-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-server-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-server-devel-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-static-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-test-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-test-rpm-macros-16.8-1.module+el8.10.0+90530+9eb57222.noarch.rpm
postgresql-upgrade-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm
postgresql-upgrade-devel-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm

aarch64:
pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.aarch64.rpm
pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.aarch64.rpm
postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.aarch64.rpm
postgresql-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-contrib-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-docs-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-plperl-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-plpython3-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-pltcl-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-private-devel-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-private-libs-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-server-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-server-devel-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-static-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-test-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-test-rpm-macros-16.8-1.module+el8.10.0+90530+9eb57222.noarch.rpm
postgresql-upgrade-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm
postgresql-upgrade-devel-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//postgresql-16.8-1.module+el8.10.0+90530+9eb57222.src.rpm

Related CVEs:

CVE-2025-1094




Description of changes:

pgaudit
[16.0-1]
- Update to 16.0
- Support postgresql 16
- Initial import for PG 16 module
- Resolves: RHEL-3636

pg_repack
[1.5.1-1]
- Update to 1.5.1

postgres-decoderbufs
[2.4.0-1.Final]
- Initial import for postgresql 16 stream
- Related: RHEL-3636

postgresql
[16.8-1]
- Update to 16.8
- Fix CVE-2025-1094



From el-errata at oss.oracle.com  Mon Feb 24 14:42:10 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Mon, 24 Feb 2025 06:42:10 -0800
Subject: [El-errata] ELSA-2025-1047 Important: Oracle Linux 7 libsoup
 security update
Message-ID: <mailman.199.1740408139.253.el-errata@oss.oracle.com>

Oracle Linux Security Advisory ELSA-2025-1047

http://linux.oracle.com/errata/ELSA-2025-1047.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
libsoup-2.62.2-2.0.3.el7.i686.rpm
libsoup-2.62.2-2.0.3.el7.x86_64.rpm
libsoup-devel-2.62.2-2.0.3.el7.i686.rpm
libsoup-devel-2.62.2-2.0.3.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//libsoup-2.62.2-2.0.3.el7.src.rpm

Related CVEs:

CVE-2024-52531




Description of changes:

[2.62.2-2.0.3]
- Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in
- soup_header_parse_param_list_strict [Orabug: 37557504]



From el-errata at oss.oracle.com  Tue Feb 25 17:19:27 2025
From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux)
Date: Tue, 25 Feb 2025 09:19:27 -0800
Subject: [El-errata] ELBA-2025-20128 Oracle Linux 9 oracle-ocne-release-el9
 bug fix update
Message-ID: <mailman.200.1740503979.253.el-errata@oss.oracle.com>

Oracle Linux Bug Fix Advisory ELBA-2025-20128

http://linux.oracle.com/errata/ELBA-2025-20128.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
oracle-ocne-release-el9-1.0-6.el9.x86_64.rpm

aarch64:
oracle-ocne-release-el9-1.0-6.el9.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//oracle-ocne-release-el9-1.0-6.el9.src.rpm



Description of changes:

[1.0-6.el9]
- Add developer channels for ocne

[1.0-6.el9]
- Deprecate the package with old name of olcne and rename it to ocne
- Added ocne 2.0 repositories for x86_64 and aarch64 on ol8 and ol9

[1.0-6.el9]
- Added olcne version 1.9 repository for x86_64 and aarch64 on ol8 and ol9

[1.0-6.el9]
- Disable all OCNE channels by default

[1.0-6.el9]
- Added olcne version 1.8 repository for x86_64 and aarch64 on ol8 and ol9

[1.0-8]
- Added olcne version 1.7 repository for x86_64 and ol8_developer_olcne repo for aarch64

[1.0-7]
- Added olcne version 1.6 repository for x86_64 [OraBug: 35182554]