From el-errata at oss.oracle.com Mon Feb 3 17:05:48 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 03 Feb 2025 09:05:48 -0800 Subject: [El-errata] ELBA-2025-0417 Oracle Linux 7 java-1.8.0-openjdk bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0417 http://linux.oracle.com/errata/ELBA-2025-0417.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: java-1.8.0-openjdk-1.8.0.442.b06-1.0.1.el7_9.i686.rpm java-1.8.0-openjdk-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.442.b06-1.0.1.el7_9.i686.rpm java-1.8.0-openjdk-accessibility-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.442.b06-1.0.1.el7_9.i686.rpm java-1.8.0-openjdk-demo-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.442.b06-1.0.1.el7_9.i686.rpm java-1.8.0-openjdk-devel-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.442.b06-1.0.1.el7_9.i686.rpm java-1.8.0-openjdk-headless-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm java-1.8.0-openjdk-javadoc-1.8.0.442.b06-1.0.1.el7_9.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.442.b06-1.0.1.el7_9.noarch.rpm java-1.8.0-openjdk-src-1.8.0.442.b06-1.0.1.el7_9.i686.rpm java-1.8.0-openjdk-src-1.8.0.442.b06-1.0.1.el7_9.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//java-1.8.0-openjdk-1.8.0.442.b06-1.0.1.el7_9.src.rpm Description of changes: [1:1.8.0.442.b06-1.0.1] - Update to 8u442-b06 (GA) [Orabug: 37506184] - Update release notes for 8u442-b06. - Add a simple -version check on both the JDK and JRE bin/java From el-errata at oss.oracle.com Mon Feb 3 17:05:50 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 03 Feb 2025 09:05:50 -0800 Subject: [El-errata] ELSA-2024-11344 Important: Oracle Linux 7 gstreamer1-plugins-base and gstreamer1-plugins-good security update Message-ID: Oracle Linux Security Advisory ELSA-2024-11344 http://linux.oracle.com/errata/ELSA-2024-11344.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: gstreamer1-plugins-base-1.10.4-2.0.1.el7.i686.rpm gstreamer1-plugins-base-1.10.4-2.0.1.el7.x86_64.rpm gstreamer1-plugins-base-devel-1.10.4-2.0.1.el7.i686.rpm gstreamer1-plugins-base-devel-1.10.4-2.0.1.el7.x86_64.rpm gstreamer1-plugins-base-devel-docs-1.10.4-2.0.1.el7.noarch.rpm gstreamer1-plugins-base-tools-1.10.4-2.0.1.el7.x86_64.rpm gstreamer1-plugins-good-1.10.4-2.0.1.el7.i686.rpm gstreamer1-plugins-good-1.10.4-2.0.1.el7.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//gstreamer1-plugins-base-1.10.4-2.0.1.el7.src.rpm http://oss.oracle.com/ol7/SRPMS-updates//gstreamer1-plugins-good-1.10.4-2.0.1.el7.src.rpm Related CVEs: CVE-2024-47537 CVE-2024-47538 CVE-2024-47540 CVE-2024-47606 CVE-2024-47607 CVE-2024-47613 CVE-2024-47615 Description of changes: gstreamer1-plugins-base [1.10.4-2.0.1] - Fixed CVE-2024-47607,CVE-2024-47538 and CVE-2024-47615 [Orabug: 37407070] gstreamer1-plugins-good [1.10.4-2.0.1] - Fixes CVE-2024-47537, CVE-2024-47540, CVE-2024-47613 and - CVE-2024-47607 [Orabug: 37407070] From el-errata at oss.oracle.com Mon Feb 3 17:06:01 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 03 Feb 2025 09:06:01 -0800 Subject: [El-errata] ELBA-2025-20083 Oracle Linux 8 adaptivemm bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20083 http://linux.oracle.com/errata/ELBA-2025-20083.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: adaptivemm-2.1.0-2.el8.x86_64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//adaptivemm-2.1.0-2.el8.src.rpm Description of changes: [2.1.0-2] - Rebuild to v2.1.0 for OL8, OL9, and OL10 - v2.1.0 adds a module to look for possible memory leaks [2.1.0-1] - Add module to look for possible memory leaks From el-errata at oss.oracle.com Mon Feb 3 17:06:11 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 03 Feb 2025 09:06:11 -0800 Subject: [El-errata] ELBA-2025-20083 Oracle Linux 8 adaptivemm bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20083 http://linux.oracle.com/errata/ELBA-2025-20083.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: adaptivemm-2.1.0-2.el8.x86_64.rpm aarch64: adaptivemm-2.1.0-2.el8.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//adaptivemm-2.1.0-2.el8.src.rpm Description of changes: [2.1.0-2] - Rebuild to v2.1.0 for OL8, OL9, and OL10 - v2.1.0 adds a module to look for possible memory leaks [2.1.0-1] - Add module to look for possible memory leaks From el-errata at oss.oracle.com Wed Feb 5 17:09:09 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:09 -0800 Subject: [El-errata] ELBA-2025-20086 Oracle Linux 9 dtrace bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20086 http://linux.oracle.com/errata/ELBA-2025-20086.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: aarch64: dtrace-2.0.2-5.el9.aarch64.rpm dtrace-devel-2.0.2-5.el9.aarch64.rpm dtrace-testsuite-2.0.2-5.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//dtrace-2.0.2-5.el9.src.rpm Description of changes: [2.0.2-1] - Translators to support kernels 6.10 and later. - FBT return probe argument support. - The print() action is augmented with type information. (Alan Maguire) - Support to discover and trace USDT probes after a tracing session has started. (Eugene Loh, Nick Alcock) - USDT probe argument support (translated types, mapping). (Nick Alcock) - Installation locations are now configurable. (Nick Alcock) - Valgrind is no longer a required build dependency. (Nick Alcock) - Self-grabs have been improved. (Nick Alcock) - New provider: rawfbt. (Kris Van Hees) - Various bug fixes. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) - Various code improvements. (Nick Alcock, Eugene Loh, Kris Van Hees) [Orabug: 37274251] From el-errata at oss.oracle.com Wed Feb 5 17:09:11 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:11 -0800 Subject: [El-errata] ELBA-2025-0909 Oracle Linux 9 alsa-sof-firmware bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0909 http://linux.oracle.com/errata/ELBA-2025-0909.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: alsa-sof-firmware-2024.09-1.el9_5.noarch.rpm aarch64: alsa-sof-firmware-2024.09-1.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//alsa-sof-firmware-2024.09-1.el9_5.src.rpm Description of changes: [2024.09-1] - Update to v2024.09 From el-errata at oss.oracle.com Wed Feb 5 17:09:12 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:12 -0800 Subject: [El-errata] ELBA-2025-0910 Oracle Linux 9 qemu-kvm bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0910 http://linux.oracle.com/errata/ELBA-2025-0910.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: qemu-guest-agent-9.0.0-10.el9_5.2.x86_64.rpm qemu-img-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-audio-pa-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-block-blkio-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-block-curl-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-block-rbd-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-common-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-core-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-device-display-virtio-gpu-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-device-display-virtio-gpu-pci-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-device-display-virtio-vga-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-device-usb-host-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-device-usb-redirect-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-docs-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-tools-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-ui-egl-headless-9.0.0-10.el9_5.2.x86_64.rpm qemu-kvm-ui-opengl-9.0.0-10.el9_5.2.x86_64.rpm qemu-pr-helper-9.0.0-10.el9_5.2.x86_64.rpm aarch64: qemu-guest-agent-9.0.0-10.el9_5.2.aarch64.rpm qemu-img-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-audio-pa-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-block-blkio-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-block-curl-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-block-rbd-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-common-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-core-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-device-display-virtio-gpu-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-device-display-virtio-gpu-pci-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-device-usb-host-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-device-usb-redirect-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-docs-9.0.0-10.el9_5.2.aarch64.rpm qemu-kvm-tools-9.0.0-10.el9_5.2.aarch64.rpm qemu-pr-helper-9.0.0-10.el9_5.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//qemu-kvm-9.0.0-10.el9_5.2.src.rpm Description of changes: [9.0.0-10.el9_5.2] - kvm-vhost-fail-device-start-if-iotlb-update-fails.patch [RHEL-73006] - Resolves: RHEL-73006 (qemu-kvm: vhost: reports error while updating IOTLB entries [rhel-9.5.z]) [9.0.0-10.el9_5.1] - kvm-migration-multifd-Avoid-the-final-FLUSH-in-complete.patch [RHEL-63874] - kvm-migration-Rename-thread-debug-names.patch [RHEL-63874] - kvm-migration-Use-MigrationStatus-instead-of-int.patch [RHEL-63874] - kvm-migration-Cleanup-incoming-migration-setup-state-cha.patch [RHEL-63874] - kvm-migration-postcopy-Add-postcopy-recover-setup-phase.patch [RHEL-63874] - kvm-migration-docs-Update-postcopy-recover-session-for-S.patch [RHEL-63874] - kvm-tests-migration-tests-Drop-most-WIN32-ifdefs-for-pos.patch [RHEL-63874] - kvm-tests-migration-tests-Always-enable-migration-events.patch [RHEL-63874] - kvm-tests-migration-tests-migration_event_wait.patch [RHEL-63874] - kvm-tests-migration-tests-Verify-postcopy-recover-setup-.patch [RHEL-63874] - kvm-tests-migration-tests-Cover-postcopy-failure-on-reco.patch [RHEL-63874] - Resolves: RHEL-63874 (Failure to resume paused post-copy migration is undetectable [rhel-9.5.z]) From el-errata at oss.oracle.com Wed Feb 5 17:09:14 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:14 -0800 Subject: [El-errata] ELBA-2025-0911 Oracle Linux 9 conntrack-tools bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0911 http://linux.oracle.com/errata/ELBA-2025-0911.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: conntrack-tools-1.4.7-4.el9_5.x86_64.rpm aarch64: conntrack-tools-1.4.7-4.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//conntrack-tools-1.4.7-4.el9_5.src.rpm Description of changes: [1.4.7-4] - Bump release for RHEL9.5 [1.4.7-3] - conntrack: Fix potential array out of bounds access From el-errata at oss.oracle.com Wed Feb 5 17:09:15 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:15 -0800 Subject: [El-errata] ELBA-2025-0913 Oracle Linux 9 mysql-selinux bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0913 http://linux.oracle.com/errata/ELBA-2025-0913.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: mysql-selinux-1.0.13-1.el9_5.noarch.rpm aarch64: mysql-selinux-1.0.13-1.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//mysql-selinux-1.0.13-1.el9_5.src.rpm Description of changes: [1.0.13-1] - Rebase to 1.0.13 From el-errata at oss.oracle.com Wed Feb 5 17:09:17 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:17 -0800 Subject: [El-errata] ELBA-2025-0915 Oracle Linux 9 389-ds-base bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0915 http://linux.oracle.com/errata/ELBA-2025-0915.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: 389-ds-base-2.5.2-5.el9_5.x86_64.rpm 389-ds-base-libs-2.5.2-5.el9_5.x86_64.rpm 389-ds-base-snmp-2.5.2-5.el9_5.x86_64.rpm python3-lib389-2.5.2-5.el9_5.noarch.rpm 389-ds-base-devel-2.5.2-5.el9_5.x86_64.rpm aarch64: 389-ds-base-2.5.2-5.el9_5.aarch64.rpm 389-ds-base-libs-2.5.2-5.el9_5.aarch64.rpm 389-ds-base-snmp-2.5.2-5.el9_5.aarch64.rpm python3-lib389-2.5.2-5.el9_5.noarch.rpm 389-ds-base-devel-2.5.2-5.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//389-ds-base-2.5.2-5.el9_5.src.rpm Description of changes: [2.5.2-5] - Resolves: RHEL-74350 - Some nsslapd-haproxy-trusted-ip values are discarded upon a restart. [rhel-9.5.z] [2.5.2-4] - Resolves: RHEL-70257 - Freelist ordering causes high wtime [rhel-9.5.z] [2.5.2-3] - Bump version to 2.5.2-3 - Resolves: RHEL-65775 - Wrong set of entries returned for some search filters [rhel-9.5.z] - Resolves: RHEL-66138 - deadlock during cleanAllRuv [rhel-9.5.z] - Resolves: RHEL-67163 - cleanallruv consums CPU and is slow [rhel-9.5.z] - Resolves: RHEL-70257 - Freelist ordering causes high wtime [rhel-9.5.z] From el-errata at oss.oracle.com Wed Feb 5 17:09:19 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:19 -0800 Subject: [El-errata] ELBA-2025-0918 Oracle Linux 9 libvirt bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0918 http://linux.oracle.com/errata/ELBA-2025-0918.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: libvirt-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-client-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-client-qemu-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-common-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-config-network-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-config-nwfilter-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-interface-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-network-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-nodedev-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-nwfilter-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-qemu-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-secret-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-core-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-disk-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-iscsi-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-logical-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-mpath-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-rbd-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-driver-storage-scsi-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-kvm-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-lock-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-log-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-plugin-lockd-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-proxy-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-libs-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-nss-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-ssh-proxy-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-daemon-plugin-sanlock-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-devel-10.5.0-7.4.0.1.el9_5.x86_64.rpm libvirt-docs-10.5.0-7.4.0.1.el9_5.x86_64.rpm aarch64: libvirt-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-client-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-client-qemu-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-common-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-config-network-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-config-nwfilter-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-interface-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-network-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-nodedev-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-nwfilter-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-qemu-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-secret-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-core-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-disk-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-iscsi-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-logical-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-mpath-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-rbd-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-driver-storage-scsi-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-kvm-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-lock-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-log-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-plugin-lockd-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-proxy-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-libs-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-nss-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-ssh-proxy-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-daemon-plugin-sanlock-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-devel-10.5.0-7.4.0.1.el9_5.aarch64.rpm libvirt-docs-10.5.0-7.4.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//libvirt-10.5.0-7.4.0.1.el9_5.src.rpm Description of changes: [10.5.0-7.4.0.1] - Set SOURCE_DATE_EPOCH from changelog [Orabug: 32019554] [10.5.0-7.4.el9_5] - qemu: Enable I/O APIC if needed (RHEL-69725) - qemu: Enable I/O APIC even more frequently (RHEL-69725) [10.5.0-7.3.el9_5] - libvirt_private.syms: Export virDomainIOMMUDefNew() (RHEL-69725) - qemu: Turn EIM IOMMU on automagically (RHEL-69725) - qemu_domain: Automagically add IOMMU if needed (RHEL-69725) From el-errata at oss.oracle.com Wed Feb 5 17:09:20 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:20 -0800 Subject: [El-errata] ELBA-2025-0919 Oracle Linux 9 haproxy bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0919 http://linux.oracle.com/errata/ELBA-2025-0919.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: haproxy-2.4.22-3.el9_5.1.x86_64.rpm aarch64: haproxy-2.4.22-3.el9_5.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//haproxy-2.4.22-3.el9_5.1.src.rpm Description of changes: [2.4.22-3.1] - Always clear retry flags in read/write functions to avoid CPU usage spikes - Fix "unable to load certificate chain from file" issue Resolves: RHEL-72955, RHEL-72952 From el-errata at oss.oracle.com Wed Feb 5 17:09:22 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:22 -0800 Subject: [El-errata] ELBA-2025-0921 Oracle Linux 9 linuxptp bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0921 http://linux.oracle.com/errata/ELBA-2025-0921.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: linuxptp-4.2-3.el9_5.1.x86_64.rpm aarch64: linuxptp-4.2-3.el9_5.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//linuxptp-4.2-3.el9_5.1.src.rpm Description of changes: [4.2-3.el9_5.1] - add option to ts2phc to specify minimum expected NMEA delay (RHEL-70168) - don't require -O option without -a and -w in phc2sys (RHEL-70678) From el-errata at oss.oracle.com Wed Feb 5 17:09:24 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:24 -0800 Subject: [El-errata] ELBA-2025-0924 Oracle Linux 9 ipa bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0924 http://linux.oracle.com/errata/ELBA-2025-0924.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: ipa-client-4.12.2-1.0.1.el9_5.4.x86_64.rpm ipa-client-common-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-client-epn-4.12.2-1.0.1.el9_5.4.x86_64.rpm ipa-client-samba-4.12.2-1.0.1.el9_5.4.x86_64.rpm ipa-common-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-selinux-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-selinux-luna-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-selinux-nfast-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-server-4.12.2-1.0.1.el9_5.4.x86_64.rpm ipa-server-common-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-server-dns-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-server-trust-ad-4.12.2-1.0.1.el9_5.4.x86_64.rpm python3-ipaclient-4.12.2-1.0.1.el9_5.4.noarch.rpm python3-ipalib-4.12.2-1.0.1.el9_5.4.noarch.rpm python3-ipaserver-4.12.2-1.0.1.el9_5.4.noarch.rpm python3-ipatests-4.12.2-1.0.1.el9_5.4.noarch.rpm aarch64: ipa-client-4.12.2-1.0.1.el9_5.4.aarch64.rpm ipa-client-common-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-client-epn-4.12.2-1.0.1.el9_5.4.aarch64.rpm ipa-client-samba-4.12.2-1.0.1.el9_5.4.aarch64.rpm ipa-common-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-selinux-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-selinux-luna-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-selinux-nfast-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-server-4.12.2-1.0.1.el9_5.4.aarch64.rpm ipa-server-common-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-server-dns-4.12.2-1.0.1.el9_5.4.noarch.rpm ipa-server-trust-ad-4.12.2-1.0.1.el9_5.4.aarch64.rpm python3-ipaclient-4.12.2-1.0.1.el9_5.4.noarch.rpm python3-ipalib-4.12.2-1.0.1.el9_5.4.noarch.rpm python3-ipaserver-4.12.2-1.0.1.el9_5.4.noarch.rpm python3-ipatests-4.12.2-1.0.1.el9_5.4.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//ipa-4.12.2-1.0.1.el9_5.4.src.rpm Description of changes: [4.12.2-1.0.1.4] - Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674] - Add bind to ipa-server-common Requires [Orabug: 36518596] [4.12.2-1.4] - Resolves: RHEL-76011 kinit with external idp user is failing From el-errata at oss.oracle.com Wed Feb 5 17:09:26 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:26 -0800 Subject: [El-errata] ELBA-2025-0926 Oracle Linux 9 iptables bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0926 http://linux.oracle.com/errata/ELBA-2025-0926.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: iptables-devel-1.8.10-11.el9_5.i686.rpm iptables-devel-1.8.10-11.el9_5.x86_64.rpm iptables-libs-1.8.10-11.el9_5.i686.rpm iptables-libs-1.8.10-11.el9_5.x86_64.rpm iptables-nft-1.8.10-11.el9_5.x86_64.rpm iptables-nft-services-1.8.10-11.el9_5.noarch.rpm iptables-utils-1.8.10-11.el9_5.x86_64.rpm aarch64: iptables-devel-1.8.10-11.el9_5.aarch64.rpm iptables-libs-1.8.10-11.el9_5.aarch64.rpm iptables-nft-1.8.10-11.el9_5.aarch64.rpm iptables-nft-services-1.8.10-11.el9_5.noarch.rpm iptables-utils-1.8.10-11.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//iptables-1.8.10-11.el9_5.src.rpm Description of changes: [[1.8.10-11.el9]] - libxtables: Attenuate effects of functions' internal static buffers (Phil Sutter) [RHEL-72027] [[1.8.10-10.el9]] - spec: Fix build on c9s (Phil Sutter) [RHEL-72005] [[1.8.10-9.el9]] - spec: Explicitly remove unpackaged files (Michel Lind) [RHEL-72005] [[1.8.10-8.el9]] - Revert "xshared: Print protocol numbers if --numeric was given" (Phil Sutter) [RHEL-70173] [[1.8.10-7.el9]] - Bump release for side-tag (Phil Sutter) [RHEL-69283 RHEL-69284] [[1.8.10-6.el9]] - Bump release for RHEL-9.5.z (Phil Sutter) [RHEL-69283 RHEL-69284] [[1.8.10-5.el9]] - xtables-monitor: Ignore ebtables policy rules unless tracing (Phil Sutter) [RHEL-47264] - xtables-monitor: Fix for ebtables rule events (Phil Sutter) [RHEL-47264] - tests: shell: New xtables-monitor test (Phil Sutter) [RHEL-47264] - xtables-monitor: Support arptables chain events (Phil Sutter) [RHEL-47264] - xtables-monitor: Align builtin chain and table output (Phil Sutter) [RHEL-47264] - xtables-monitor: Flush stdout after all lines of output (Phil Sutter) [RHEL-47264] - xtables-monitor: Proper re-init for rule's family (Phil Sutter) [RHEL-47264] - nft: Fix for zeroing existent builtin chains (Phil Sutter) [RHEL-49497] - nft: cache: Annotate faked base chains as such (Phil Sutter) [RHEL-49497] - nft: Fix for zeroing non-existent builtin chains (Phil Sutter) [RHEL-49497] [[1.8.10-4.el9]] - spec: Simplify legacy package integration (Phil Sutter) [RHEL-5797] [[1.8.10-3.el9]] - extensions: libxt_sctp: Add an extra assert() (Phil Sutter) [RHEL-40928] - spec: Add symlinks for merged extension DSOs (Phil Sutter) [RHEL-32463] - nft: Fix for broken recover_rule_compat() (Phil Sutter) [RHEL-26619] - spec: Ship ebtables-translate and man page (Phil Sutter) [RHEL-32922] [[1.8.10-2.el9]] - ebtables: Fix corner-case noflush restore bug (Phil Sutter) [RHEL-14147] [[1.8.10-1.el9]] - spec: Support for _excludedocs macro in alternatives installation (Phil Sutter) [RHEL-5810] - Rebase onto version 1.8.10 (Phil Sutter) [RHEL-14147] From el-errata at oss.oracle.com Wed Feb 5 17:09:27 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:27 -0800 Subject: [El-errata] ELBA-2025-0927 Oracle Linux 9 libnfnetlink bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0927 http://linux.oracle.com/errata/ELBA-2025-0927.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: libnfnetlink-1.0.1-23.el9_5.i686.rpm libnfnetlink-1.0.1-23.el9_5.x86_64.rpm libnfnetlink-devel-1.0.1-23.el9_5.i686.rpm libnfnetlink-devel-1.0.1-23.el9_5.x86_64.rpm aarch64: libnfnetlink-1.0.1-23.el9_5.aarch64.rpm libnfnetlink-devel-1.0.1-23.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//libnfnetlink-1.0.1-23.el9_5.src.rpm Description of changes: [1.0.1-23] - Bump release for CI [1.0.1-22] - libnfnetlink: Check getsockname() return code - include: Silence gcc warning in linux_list.h From el-errata at oss.oracle.com Wed Feb 5 17:09:29 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:29 -0800 Subject: [El-errata] ELBA-2025-0928 Oracle Linux 9 os-prober bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0928 http://linux.oracle.com/errata/ELBA-2025-0928.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: os-prober-1.77-12.0.1.el9_5.x86_64.rpm aarch64: os-prober-1.77-12.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//os-prober-1.77-12.0.1.el9_5.src.rpm Description of changes: [1.77-12.0.1] - Add patch os-prober-oracle.patch to add Oracle to the list of Linux distributions [1.77.12] - 50mounted-tests: trap do_unmount function on errors - Resolves: RHEL-41244 [1.77-11] - 90fallback: include possible kernel parameters from grub's default file - common.sh: do not resolve symbolic link on mapped device filesystems - Resolves: #RHEL-44705 From el-errata at oss.oracle.com Wed Feb 5 17:09:30 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:30 -0800 Subject: [El-errata] ELBA-2025-0929 Oracle Linux 9 firewalld bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0929 http://linux.oracle.com/errata/ELBA-2025-0929.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: firewall-applet-1.3.4-9.0.1.el9_5.noarch.rpm firewall-config-1.3.4-9.0.1.el9_5.noarch.rpm firewalld-1.3.4-9.0.1.el9_5.noarch.rpm firewalld-filesystem-1.3.4-9.0.1.el9_5.noarch.rpm python3-firewall-1.3.4-9.0.1.el9_5.noarch.rpm aarch64: firewall-applet-1.3.4-9.0.1.el9_5.noarch.rpm firewall-config-1.3.4-9.0.1.el9_5.noarch.rpm firewalld-1.3.4-9.0.1.el9_5.noarch.rpm firewalld-filesystem-1.3.4-9.0.1.el9_5.noarch.rpm python3-firewall-1.3.4-9.0.1.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//firewalld-1.3.4-9.0.1.el9_5.src.rpm Description of changes: [1.3.4-9.0.1] - Red Hat Satellite and Red Hat high availaibility reference found in cockpit UI [Orabug: 30257573] - discard empty RH-Satellite-6.xml [Orabug: 30328734] - Remove capsule file as well, since it references removed config [Orabug: 33513329] [1.3.4-9] - feat(service): (x)rootd file server [1.3.4-8] - fix(service): update highest port number for ceph From el-errata at oss.oracle.com Wed Feb 5 17:09:32 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:32 -0800 Subject: [El-errata] ELBA-2025-0930 Oracle Linux 9 ipset bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0930 http://linux.oracle.com/errata/ELBA-2025-0930.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: ipset-7.11-11.el9_5.x86_64.rpm ipset-libs-7.11-11.el9_5.i686.rpm ipset-libs-7.11-11.el9_5.x86_64.rpm ipset-service-7.11-11.el9_5.noarch.rpm ipset-devel-7.11-11.el9_5.i686.rpm ipset-devel-7.11-11.el9_5.x86_64.rpm aarch64: ipset-7.11-11.el9_5.aarch64.rpm ipset-libs-7.11-11.el9_5.aarch64.rpm ipset-service-7.11-11.el9_5.noarch.rpm ipset-devel-7.11-11.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//ipset-7.11-11.el9_5.src.rpm Description of changes: [7.11-11] - Bump release for gated side-tag [7.11-10] - Fix patch "Parse port before trying by service name" [7.11-9] - Fix for wrong comment in ipset-config file From el-errata at oss.oracle.com Wed Feb 5 17:09:34 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:34 -0800 Subject: [El-errata] ELSA-2025-0917 Moderate: Oracle Linux 9 keepalived security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0917 http://linux.oracle.com/errata/ELSA-2025-0917.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: keepalived-2.2.8-4.el9_5.x86_64.rpm aarch64: keepalived-2.2.8-4.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//keepalived-2.2.8-4.el9_5.src.rpm Related CVEs: CVE-2024-41184 Description of changes: [2.2.8-3] - Validate vrrp ipset names for CVE-2024-41184 Resolves: RHEL-49557 From el-errata at oss.oracle.com Wed Feb 5 17:09:35 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:35 -0800 Subject: [El-errata] ELSA-2025-0922 Important: Oracle Linux 9 podman security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0922 http://linux.oracle.com/errata/ELSA-2025-0922.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: podman-5.2.2-13.0.1.el9_5.x86_64.rpm podman-docker-5.2.2-13.0.1.el9_5.noarch.rpm podman-plugins-5.2.2-13.0.1.el9_5.x86_64.rpm podman-remote-5.2.2-13.0.1.el9_5.x86_64.rpm podman-tests-5.2.2-13.0.1.el9_5.x86_64.rpm aarch64: podman-5.2.2-13.0.1.el9_5.aarch64.rpm podman-docker-5.2.2-13.0.1.el9_5.noarch.rpm podman-plugins-5.2.2-13.0.1.el9_5.aarch64.rpm podman-remote-5.2.2-13.0.1.el9_5.aarch64.rpm podman-tests-5.2.2-13.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//podman-5.2.2-13.0.1.el9_5.src.rpm Related CVEs: CVE-2024-11218 Description of changes: [5.2.2-13.0.1] - podman: do not set rlimits to the default value [Orabug: 37310981] - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694] - Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404] [4:5.2.2-13] - update to the latest content of https://github.com/containers/podman/tree/v5.2-rhel (https://github.com/containers/podman/commit/173b20b) - Resolves: RHEL-67606 [4:5.2.2-12] - update to the latest content of https://github.com/containers/podman/tree/v5.2-rhel (https://github.com/containers/podman/commit/76d1690) - Resolves: RHEL-73592 From el-errata at oss.oracle.com Wed Feb 5 17:09:38 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:38 -0800 Subject: [El-errata] ELSA-2025-0925 Moderate: Oracle Linux 9 bzip2 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0925 http://linux.oracle.com/errata/ELSA-2025-0925.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bzip2-1.0.8-10.el9_5.x86_64.rpm bzip2-devel-1.0.8-10.el9_5.i686.rpm bzip2-devel-1.0.8-10.el9_5.x86_64.rpm bzip2-libs-1.0.8-10.el9_5.i686.rpm bzip2-libs-1.0.8-10.el9_5.x86_64.rpm aarch64: bzip2-1.0.8-10.el9_5.aarch64.rpm bzip2-devel-1.0.8-10.el9_5.aarch64.rpm bzip2-libs-1.0.8-10.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//bzip2-1.0.8-10.el9_5.src.rpm Related CVEs: CVE-2019-12900 Description of changes: [1.0.8-10] - Revert the previous commit (introduced a regression) Resolves: CVE-2019-12900 [1.0.8-9] - Fix out of bounds access in BZ2_decompress Resolves: RHEL-65198 From el-errata at oss.oracle.com Wed Feb 5 17:09:36 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:36 -0800 Subject: [El-errata] ELSA-2025-0923 Important: Oracle Linux 9 buildah security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0923 http://linux.oracle.com/errata/ELSA-2025-0923.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: buildah-1.37.6-1.0.1.el9_5.x86_64.rpm buildah-tests-1.37.6-1.0.1.el9_5.x86_64.rpm aarch64: buildah-1.37.6-1.0.1.el9_5.aarch64.rpm buildah-tests-1.37.6-1.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//buildah-1.37.6-1.0.1.el9_5.src.rpm Related CVEs: CVE-2024-11218 Description of changes: [1.37.6-1.0.1] - Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117178] [2:1.37.6-1] - update to the latest content of https://github.com/containers/buildah/tree/release-1.37 (https://github.com/containers/buildah/commit/fd39521) - Resolves: RHEL-67617 From el-errata at oss.oracle.com Wed Feb 5 17:09:46 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:46 -0800 Subject: [El-errata] ELBA-2025-20084 Oracle Linux 8 leapp-repository bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20084 http://linux.oracle.com/errata/ELBA-2025-20084.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: leapp-upgrade-el8toel9-0.20.0-2.0.18.el8.noarch.rpm leapp-upgrade-el8toel9-deps-0.20.0-2.0.18.el8.noarch.rpm aarch64: leapp-upgrade-el8toel9-0.20.0-2.0.18.el8.noarch.rpm leapp-upgrade-el8toel9-deps-0.20.0-2.0.18.el8.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//leapp-repository-0.20.0-2.0.18.el8.src.rpm Description of changes: [0.20.0-2.0.18] - Implemented Inhibitor for Oracle-ebs-server-R12-Preinstall [Orabug: 37096058] From el-errata at oss.oracle.com Wed Feb 5 17:09:48 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:48 -0800 Subject: [El-errata] ELBA-2025-20087 Oracle Linux 8 dtrace bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20087 http://linux.oracle.com/errata/ELBA-2025-20087.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: aarch64: dtrace-2.0.2-5.el8.aarch64.rpm dtrace-devel-2.0.2-5.el8.aarch64.rpm dtrace-testsuite-2.0.2-5.el8.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//dtrace-2.0.2-5.el8.src.rpm Description of changes: [2.0.2-1] - Translators to support kernels 6.10 and later. - FBT return probe argument support. - The print() action is augmented with type information. (Alan Maguire) - Support to discover and trace USDT probes after a tracing session has started. (Eugene Loh, Nick Alcock) - USDT probe argument support (translated types, mapping). (Nick Alcock) - Installation locations are now configurable. (Nick Alcock) - Valgrind is no longer a required build dependency. (Nick Alcock) - Self-grabs have been improved. (Nick Alcock) - New provider: rawfbt. (Kris Van Hees) - Various bug fixes. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) - Various code improvements. (Nick Alcock, Eugene Loh, Kris Van Hees) [Orabug: 37274251] From el-errata at oss.oracle.com Wed Feb 5 17:09:49 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:49 -0800 Subject: [El-errata] ELBA-2025-0935 Oracle Linux 8 389-ds:1.4 bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0935 http://linux.oracle.com/errata/ELBA-2025-0935.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: 389-ds-base-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm 389-ds-base-devel-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm 389-ds-base-legacy-tools-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm 389-ds-base-libs-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm 389-ds-base-snmp-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.x86_64.rpm python3-lib389-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.noarch.rpm aarch64: 389-ds-base-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm 389-ds-base-devel-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm 389-ds-base-legacy-tools-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm 389-ds-base-libs-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm 389-ds-base-snmp-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.aarch64.rpm python3-lib389-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//389-ds-base-1.4.3.39-11.module+el8.10.0+90504+a041e1fd.src.rpm Description of changes: [1.4.3.39-11] - Resolves: RHEL-72487 - IPA LDAP error code T3 when no exceeded time limit from a paged search result [rhel-8.10.z] From el-errata at oss.oracle.com Wed Feb 5 17:09:58 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:09:58 -0800 Subject: [El-errata] ELBA-2025-20087 Oracle Linux 8 dtrace bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20087 http://linux.oracle.com/errata/ELBA-2025-20087.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: dtrace-2.0.2-5.el8.x86_64.rpm dtrace-devel-2.0.2-5.el8.x86_64.rpm dtrace-testsuite-2.0.2-5.el8.x86_64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//dtrace-2.0.2-5.el8.src.rpm Description of changes: [2.0.2-1] - Translators to support kernels 6.10 and later. - FBT return probe argument support. - The print() action is augmented with type information. (Alan Maguire) - Support to discover and trace USDT probes after a tracing session has started. (Eugene Loh, Nick Alcock) - USDT probe argument support (translated types, mapping). (Nick Alcock) - Installation locations are now configurable. (Nick Alcock) - Valgrind is no longer a required build dependency. (Nick Alcock) - Self-grabs have been improved. (Nick Alcock) - New provider: rawfbt. (Kris Van Hees) - Various bug fixes. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) - Various code improvements. (Nick Alcock, Eugene Loh, Kris Van Hees) [Orabug: 37274251] From el-errata at oss.oracle.com Wed Feb 5 17:10:08 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:10:08 -0800 Subject: [El-errata] ELBA-2025-20086 Oracle Linux 9 dtrace bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20086 http://linux.oracle.com/errata/ELBA-2025-20086.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: dtrace-2.0.2-5.el9.x86_64.rpm dtrace-devel-2.0.2-5.el9.x86_64.rpm dtrace-testsuite-2.0.2-5.el9.x86_64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//dtrace-2.0.2-5.el9.src.rpm Description of changes: [2.0.2-1] - Translators to support kernels 6.10 and later. - FBT return probe argument support. - The print() action is augmented with type information. (Alan Maguire) - Support to discover and trace USDT probes after a tracing session has started. (Eugene Loh, Nick Alcock) - USDT probe argument support (translated types, mapping). (Nick Alcock) - Installation locations are now configurable. (Nick Alcock) - Valgrind is no longer a required build dependency. (Nick Alcock) - Self-grabs have been improved. (Nick Alcock) - New provider: rawfbt. (Kris Van Hees) - Various bug fixes. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) - Various code improvements. (Nick Alcock, Eugene Loh, Kris Van Hees) [Orabug: 37274251] From el-errata at oss.oracle.com Wed Feb 5 17:10:14 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 05 Feb 2025 09:10:14 -0800 Subject: [El-errata] ELBA-2025-20087 Oracle Linux 8 dtrace bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20087 http://linux.oracle.com/errata/ELBA-2025-20087.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: dtrace-2.0.2-5.el8.x86_64.rpm dtrace-devel-2.0.2-5.el8.x86_64.rpm dtrace-testsuite-2.0.2-5.el8.x86_64.rpm aarch64: dtrace-2.0.2-5.el8.aarch64.rpm dtrace-devel-2.0.2-5.el8.aarch64.rpm dtrace-testsuite-2.0.2-5.el8.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//dtrace-2.0.2-5.el8.src.rpm Description of changes: [2.0.2-1] - Translators to support kernels 6.10 and later. - FBT return probe argument support. - The print() action is augmented with type information. (Alan Maguire) - Support to discover and trace USDT probes after a tracing session has started. (Eugene Loh, Nick Alcock) - USDT probe argument support (translated types, mapping). (Nick Alcock) - Installation locations are now configurable. (Nick Alcock) - Valgrind is no longer a required build dependency. (Nick Alcock) - Self-grabs have been improved. (Nick Alcock) - New provider: rawfbt. (Kris Van Hees) - Various bug fixes. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) - Various code improvements. (Nick Alcock, Eugene Loh, Kris Van Hees) [Orabug: 37274251] From el-errata at oss.oracle.com Thu Feb 6 12:36:15 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 06 Feb 2025 04:36:15 -0800 Subject: [El-errata] ELBA-2025-0916 Oracle Linux 9 rust bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0916 http://linux.oracle.com/errata/ELBA-2025-0916.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: cargo-1.79.0-3.el9_5.x86_64.rpm clippy-1.79.0-3.el9_5.x86_64.rpm rust-1.79.0-3.el9_5.x86_64.rpm rust-analyzer-1.79.0-3.el9_5.x86_64.rpm rust-debugger-common-1.79.0-3.el9_5.noarch.rpm rust-doc-1.79.0-3.el9_5.x86_64.rpm rust-gdb-1.79.0-3.el9_5.noarch.rpm rust-lldb-1.79.0-3.el9_5.noarch.rpm rust-src-1.79.0-3.el9_5.noarch.rpm rust-std-static-1.79.0-3.el9_5.i686.rpm rust-std-static-1.79.0-3.el9_5.x86_64.rpm rust-std-static-wasm32-unknown-unknown-1.79.0-3.el9_5.noarch.rpm rust-std-static-wasm32-wasi-1.79.0-3.el9_5.noarch.rpm rust-std-static-wasm32-wasip1-1.79.0-3.el9_5.noarch.rpm rust-toolset-1.79.0-3.el9_5.noarch.rpm rustfmt-1.79.0-3.el9_5.x86_64.rpm aarch64: cargo-1.79.0-3.el9_5.aarch64.rpm clippy-1.79.0-3.el9_5.aarch64.rpm rust-1.79.0-3.el9_5.aarch64.rpm rust-analyzer-1.79.0-3.el9_5.aarch64.rpm rust-debugger-common-1.79.0-3.el9_5.noarch.rpm rust-doc-1.79.0-3.el9_5.aarch64.rpm rust-gdb-1.79.0-3.el9_5.noarch.rpm rust-lldb-1.79.0-3.el9_5.noarch.rpm rust-src-1.79.0-3.el9_5.noarch.rpm rust-std-static-1.79.0-3.el9_5.aarch64.rpm rust-std-static-wasm32-unknown-unknown-1.79.0-3.el9_5.noarch.rpm rust-std-static-wasm32-wasi-1.79.0-3.el9_5.noarch.rpm rust-std-static-wasm32-wasip1-1.79.0-3.el9_5.noarch.rpm rust-toolset-1.79.0-3.el9_5.noarch.rpm rustfmt-1.79.0-3.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//rust-1.79.0-3.el9_5.src.rpm Description of changes: [1.79.0-3] - Remove the subshell in the cargo_install macro From el-errata at oss.oracle.com Thu Feb 6 12:36:16 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 06 Feb 2025 04:36:16 -0800 Subject: [El-errata] ELBA-2025-0920 Oracle Linux 9 passt bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0920 http://linux.oracle.com/errata/ELBA-2025-0920.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: passt-0^20240806.gee36266-6.el9_5.x86_64.rpm passt-selinux-0^20240806.gee36266-6.el9_5.noarch.rpm aarch64: passt-0^20240806.gee36266-6.el9_5.aarch64.rpm passt-selinux-0^20240806.gee36266-6.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//passt-0^20240806.gee36266-6.el9_5.src.rpm Description of changes: [0^20240806-gee36266-6] - Resolves: RHEL-75645 [0^20240806-gee36266-5] - Resolves: RHEL-74301 [0^20240806-gee36266-4] - Resolves: RHEL-73251 [0^20240806-gee36266-3] - Resolves: RHEL-68948 From el-errata at oss.oracle.com Thu Feb 6 12:36:18 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 06 Feb 2025 04:36:18 -0800 Subject: [El-errata] ELBA-2025-0931 Oracle Linux 9 grub2 bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-0931 http://linux.oracle.com/errata/ELBA-2025-0931.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: grub2-common-2.06-93.0.1.el9_5.noarch.rpm grub2-efi-aa64-modules-2.06-93.0.1.el9_5.noarch.rpm grub2-efi-x64-2.06-93.0.1.el9_5.x86_64.rpm grub2-efi-x64-cdboot-2.06-93.0.1.el9_5.x86_64.rpm grub2-efi-x64-modules-2.06-93.0.1.el9_5.noarch.rpm grub2-pc-2.06-93.0.1.el9_5.x86_64.rpm grub2-pc-modules-2.06-93.0.1.el9_5.noarch.rpm grub2-tools-2.06-93.0.1.el9_5.x86_64.rpm grub2-tools-efi-2.06-93.0.1.el9_5.x86_64.rpm grub2-tools-extra-2.06-93.0.1.el9_5.x86_64.rpm grub2-tools-minimal-2.06-93.0.1.el9_5.x86_64.rpm aarch64: grub2-common-2.06-93.0.1.el9_5.noarch.rpm grub2-efi-aa64-2.06-93.0.1.el9_5.aarch64.rpm grub2-efi-aa64-cdboot-2.06-93.0.1.el9_5.aarch64.rpm grub2-efi-aa64-modules-2.06-93.0.1.el9_5.noarch.rpm grub2-efi-x64-modules-2.06-93.0.1.el9_5.noarch.rpm grub2-tools-2.06-93.0.1.el9_5.aarch64.rpm grub2-tools-extra-2.06-93.0.1.el9_5.aarch64.rpm grub2-tools-minimal-2.06-93.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//grub2-2.06-93.0.1.el9_5.src.rpm Description of changes: [2.06-93.0.1] - Rework the scripts to cover both in-place upgrade and update scenarios [Orabug: 36768566] - Restore correct order of processing config files [Orabug: 36758359] - Support setting custom kernels as default kernels [Orabug: 36043978] - Bump SBAT metadata for grub to 3 [Orabug: 34872719] - Fix CVE-2022-3775 [Orabug: 34871953] - Enable signing for aarch64 EFI - Fix signing certificate names - Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986] - Replaced bugzilla.oracle.com references [Orabug: 34202300] - Update provided certificate version to 202204 [JIRA: OLDIS-16371] - Various coverity fixes [JIRA: OLDIS-16371] - bump SBAT generation - Update bug url [Orabug: 34202300] - Revert provided certificate version back to 202102 [JIRA: OLDIS-16371] - Update signing certificate [JIRA: OLDIS-16371] - fix SBAT data [JIRA: OLDIS-16371] - Update requires [JIRA: OLDIS-16371] - Rebuild for SecureBoot signatures [Orabug: 33801813] - Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033] - Update Oracle SBAT data [Orabug: 32670033] - Use new signing certificate [Orabug: 32670033] - honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497] - set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597] - Update upstream references [Orabug: 26388226] - Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955] - Put "with" in menuentry instead of "using" [Orabug: 18504756] - Use different titles for UEK and RHCK kernels [Orabug: 18504756] [2.06-93] - cmd/search: Fix a possible NULL ptr dereference - Resolves: #RHEL-61263 From el-errata at oss.oracle.com Thu Feb 6 12:36:19 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 06 Feb 2025 04:36:19 -0800 Subject: [El-errata] ELBA-2025-1042 Oracle Linux 9 kernel bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1042 http://linux.oracle.com/errata/ELBA-2025-1042.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-7.4.0-503.23.1.el9_5.x86_64.rpm kernel-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-abi-stablelists-5.14.0-503.23.1.el9_5.noarch.rpm kernel-core-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-core-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-devel-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-devel-matched-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-modules-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-modules-core-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-modules-extra-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-debug-uki-virt-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-devel-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-devel-matched-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-doc-5.14.0-503.23.1.el9_5.noarch.rpm kernel-headers-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-modules-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-modules-core-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-modules-extra-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-tools-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-tools-libs-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-uki-virt-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-uki-virt-addons-5.14.0-503.23.1.el9_5.x86_64.rpm perf-5.14.0-503.23.1.el9_5.x86_64.rpm python3-perf-5.14.0-503.23.1.el9_5.x86_64.rpm rtla-5.14.0-503.23.1.el9_5.x86_64.rpm rv-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-cross-headers-5.14.0-503.23.1.el9_5.x86_64.rpm kernel-tools-libs-devel-5.14.0-503.23.1.el9_5.x86_64.rpm libperf-5.14.0-503.23.1.el9_5.x86_64.rpm aarch64: bpftool-7.4.0-503.23.1.el9_5.aarch64.rpm kernel-headers-5.14.0-503.23.1.el9_5.aarch64.rpm kernel-tools-5.14.0-503.23.1.el9_5.aarch64.rpm kernel-tools-libs-5.14.0-503.23.1.el9_5.aarch64.rpm perf-5.14.0-503.23.1.el9_5.aarch64.rpm python3-perf-5.14.0-503.23.1.el9_5.aarch64.rpm rtla-5.14.0-503.23.1.el9_5.aarch64.rpm rv-5.14.0-503.23.1.el9_5.aarch64.rpm kernel-cross-headers-5.14.0-503.23.1.el9_5.aarch64.rpm kernel-tools-libs-devel-5.14.0-503.23.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-503.23.1.el9_5.src.rpm Description of changes: - [5.14.0-503.23.1.el9_5.OL9] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5] - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535] - Add Oracle Linux IMA certificates [5.14.0-503.23.1.el9_5] - printk: nbcon: Fix illegal RCU usage on thread wakeup (Derek Barbosa) [RHEL-73036] From el-errata at oss.oracle.com Thu Feb 6 12:36:21 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 06 Feb 2025 04:36:21 -0800 Subject: [El-errata] ELSA-2025-0912 Moderate: Oracle Linux 9 mariadb:10.11 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0912 http://linux.oracle.com/errata/ELSA-2025-0912.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: galera-26.4.20-1.0.1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-backup-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-common-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-embedded-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-embedded-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-errmsg-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-gssapi-server-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-oqgraph-engine-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-pam-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-server-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-server-galera-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-server-utils-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm mariadb-test-10.11.10-1.module+el9.5.0+90507+82ceef20.x86_64.rpm aarch64: galera-26.4.20-1.0.1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-backup-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-common-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-embedded-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-embedded-devel-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-errmsg-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-gssapi-server-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-oqgraph-engine-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-pam-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-server-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-server-galera-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-server-utils-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm mariadb-test-10.11.10-1.module+el9.5.0+90507+82ceef20.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//galera-26.4.20-1.0.1.module+el9.5.0+90507+82ceef20.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//mariadb-10.11.10-1.module+el9.5.0+90507+82ceef20.src.rpm Related CVEs: CVE-2024-21096 Description of changes: galera [26.4.20-1.0.1] - Drop nmap-ncat requirement. [Orabug: 34116228] - Requirement to delete garbd-wrapper script and lp1184034 test case without using patches. [Orabug: 34116228] [26.4.20-1] - Rebase to 26.4.20 [26.4.19-1] - Rebase to 26.4.19 [26.4.18-1] - Rebase to 26.4.18 mariadb [3:10.11.10-1] - Rebase to 10.11.10 [3:10.11.9-1] - Rebase to 10.11.9 From el-errata at oss.oracle.com Thu Feb 6 12:36:23 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 06 Feb 2025 04:36:23 -0800 Subject: [El-errata] ELSA-2025-1066 Important: Oracle Linux 9 firefox security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1066 http://linux.oracle.com/errata/ELSA-2025-1066.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: firefox-128.7.0-1.0.1.el9_5.x86_64.rpm firefox-x11-128.7.0-1.0.1.el9_5.x86_64.rpm aarch64: firefox-128.7.0-1.0.1.el9_5.aarch64.rpm firefox-x11-128.7.0-1.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//firefox-128.7.0-1.0.1.el9_5.src.rpm Related CVEs: CVE-2025-1009 CVE-2025-1010 CVE-2025-1011 CVE-2025-1012 CVE-2025-1013 CVE-2025-1014 CVE-2025-1016 CVE-2025-1017 Description of changes: [128.7.0-1.0.1] - Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file [128.7.0] - Add debranding patches (Mustafa Gezen) - Add OpenELA default preferences (Louis Abel) [128.7.0-1] - Update to 128.7.0 build1 From el-errata at oss.oracle.com Mon Feb 10 22:07:14 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 23:07:14 +0100 Subject: [El-errata] New Ksplice updates for UEKR7 5.15.0 on OL8 and OL9 (ELSA-2025-20066) Message-ID: Synopsis: ELSA-2025-20066 can now be patched using Ksplice CVEs: CVE-2024-49974 CVE-2024-50261 CVE-2024-50301 Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Security Advisory, ELSA-2025-20066. More information about this errata can be found at https://linux.oracle.com/errata/ELSA-2025-20066.html INSTALLING THE UPDATES We recommend that all users of Ksplice Uptrack running UEKR7 5.15.0 on OL8 and OL9 install these updates. On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf, these updates will be installed automatically and you do not need to take any action. Alternatively, you can install these updates by running: # /usr/sbin/uptrack-upgrade -y DESCRIPTION * CVE-2024-49974: Remote denial-of-service in NFS server driver. A logic error when doing async copy operations in the NFS server driver could lead to memory and cpu exhaustion. A remote attacker could use this flaw to cause a denial-of-service. Orabug: 37516381 * CVE-2024-50261: Privilege escalation in IEEE 802.1AE MAC-level encryption (MACsec) driver. A logic error when using the IEEE 802.1AE MAC-level encryption (MACsec) driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. Orabug: 37516375 * CVE-2024-50301: Privilege escalation in Keyring subsystem. A missing check when checking if a key can be used in the Keyring subsystem could lead to an out-of-bounds memory access. A local attacker could use this flaw to escalate privileges. UPPORT Ksplice support is available at ksplice-support_ww at oracle.com. From el-errata at oss.oracle.com Mon Feb 10 22:35:45 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:35:45 -0800 Subject: [El-errata] ELBA-2025-20091 Oracle Linux 9 NetworkManager bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20091 http://linux.oracle.com/errata/ELBA-2025-20091.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: NetworkManager-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-adsl-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-bluetooth-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-config-connectivity-oracle-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-config-server-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-initscripts-updown-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-libnm-1.48.10-5.0.2.el9_5.i686.rpm NetworkManager-libnm-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-team-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-tui-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-wifi-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-wwan-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-cloud-setup-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-dispatcher-routing-rules-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-ovs-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-ppp-1.48.10-5.0.2.el9_5.x86_64.rpm NetworkManager-libnm-devel-1.48.10-5.0.2.el9_5.i686.rpm NetworkManager-libnm-devel-1.48.10-5.0.2.el9_5.x86_64.rpm aarch64: NetworkManager-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-adsl-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-bluetooth-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-config-connectivity-oracle-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-config-server-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-initscripts-updown-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-libnm-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-team-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-tui-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-wifi-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-wwan-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-cloud-setup-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-dispatcher-routing-rules-1.48.10-5.0.2.el9_5.noarch.rpm NetworkManager-ovs-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-ppp-1.48.10-5.0.2.el9_5.aarch64.rpm NetworkManager-libnm-devel-1.48.10-5.0.2.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//NetworkManager-1.48.10-5.0.2.el9_5.src.rpm Description of changes: [1.48.10-5.0.2] - Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910] From el-errata at oss.oracle.com Mon Feb 10 22:35:47 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:35:47 -0800 Subject: [El-errata] ELBA-2025-1104 Oracle Linux 9 tzdata bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1104 http://linux.oracle.com/errata/ELBA-2025-1104.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: tzdata-java-2025a-1.el9.noarch.rpm tzdata-2025a-1.el9.noarch.rpm aarch64: tzdata-java-2025a-1.el9.noarch.rpm tzdata-2025a-1.el9.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//tzdata-2025a-1.el9.src.rpm Description of changes: [2025a-1] Update to tzdata-2025a (RHEL-74308) - Paraguay is now permanently at -03. This impacts timestamps starting on 2025-03-22. - Includes improvements to pre-1991 data for the Philippines. - Etc/Unknown is now reserved. [2024b-3] - Don't use -source 1.6 and -target 1.6 with javac. (RHEL-70308) From el-errata at oss.oracle.com Mon Feb 10 22:35:48 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:35:48 -0800 Subject: [El-errata] ELSA-2025-0914 Moderate: Oracle Linux 9 galera and mariadb security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0914 http://linux.oracle.com/errata/ELSA-2025-0914.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: galera-26.4.20-1.0.1.el9_5.x86_64.rpm mariadb-10.5.27-1.el9_5.x86_64.rpm mariadb-backup-10.5.27-1.el9_5.x86_64.rpm mariadb-common-10.5.27-1.el9_5.x86_64.rpm mariadb-embedded-10.5.27-1.el9_5.x86_64.rpm mariadb-errmsg-10.5.27-1.el9_5.x86_64.rpm mariadb-gssapi-server-10.5.27-1.el9_5.x86_64.rpm mariadb-oqgraph-engine-10.5.27-1.el9_5.x86_64.rpm mariadb-pam-10.5.27-1.el9_5.x86_64.rpm mariadb-server-10.5.27-1.el9_5.x86_64.rpm mariadb-server-galera-10.5.27-1.el9_5.x86_64.rpm mariadb-server-utils-10.5.27-1.el9_5.x86_64.rpm mariadb-devel-10.5.27-1.el9_5.x86_64.rpm mariadb-embedded-devel-10.5.27-1.el9_5.x86_64.rpm mariadb-test-10.5.27-1.el9_5.x86_64.rpm aarch64: galera-26.4.20-1.0.1.el9_5.aarch64.rpm mariadb-10.5.27-1.el9_5.aarch64.rpm mariadb-backup-10.5.27-1.el9_5.aarch64.rpm mariadb-common-10.5.27-1.el9_5.aarch64.rpm mariadb-embedded-10.5.27-1.el9_5.aarch64.rpm mariadb-errmsg-10.5.27-1.el9_5.aarch64.rpm mariadb-gssapi-server-10.5.27-1.el9_5.aarch64.rpm mariadb-oqgraph-engine-10.5.27-1.el9_5.aarch64.rpm mariadb-pam-10.5.27-1.el9_5.aarch64.rpm mariadb-server-10.5.27-1.el9_5.aarch64.rpm mariadb-server-galera-10.5.27-1.el9_5.aarch64.rpm mariadb-server-utils-10.5.27-1.el9_5.aarch64.rpm mariadb-devel-10.5.27-1.el9_5.aarch64.rpm mariadb-embedded-devel-10.5.27-1.el9_5.aarch64.rpm mariadb-test-10.5.27-1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//galera-26.4.20-1.0.1.el9_5.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//mariadb-10.5.27-1.el9_5.src.rpm Related CVEs: CVE-2023-22084 CVE-2024-21096 Description of changes: galera [26.4.20-1.0.1] - Drop nmap-ncat requirement. [Orabug: 34116228] - Requirement to delete lp1184034 test case without using patches. [26.4.20-1] - Rebase to 26.4.20 [26.4.19-1] - Rebase to 26.4.19 [26.4.18-1] - Rebase to 26.4.18 mariadb [3:10.5.27-1] - Rebase to 10.5.27 [3:10.5.26-1] - Rebase to 10.5.26 [3:10.5.22-1] - Rebase to 10.5.22 [3:10.5.21-1] - Rebase to version 10.5.21 [3:10.5.20-2] - Use _fortify_level to disable fortification in debug builds [3:10.5.20-1] - Rebase to version 10.5.20 From el-errata at oss.oracle.com Mon Feb 10 22:35:44 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:35:44 -0800 Subject: [El-errata] ELBA-2025-20090 Oracle Linux 9 scap-security-guide bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20090 http://linux.oracle.com/errata/ELBA-2025-20090.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: scap-security-guide-0.1.75-1.0.2.el9.noarch.rpm scap-security-guide-doc-0.1.75-1.0.2.el9.noarch.rpm aarch64: scap-security-guide-0.1.75-1.0.2.el9.noarch.rpm scap-security-guide-doc-0.1.75-1.0.2.el9.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//scap-security-guide-0.1.75-1.0.2.el9.src.rpm Description of changes: [0.1.75-1.0.2] - Update OL9 STIG alignment [Orabug: 37560515] - Add CCN profile to OL9 [Orabug: 37560515] - Update all OL8 profiles, align STIG with V2R3 and align the others with upstream [Orabug: 37545355] From el-errata at oss.oracle.com Mon Feb 10 22:35:50 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:35:50 -0800 Subject: [El-errata] ELSA-2025-1184 Important: Oracle Linux 9 thunderbird security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1184 http://linux.oracle.com/errata/ELSA-2025-1184.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: thunderbird-128.7.0-1.0.1.el9_5.x86_64.rpm aarch64: thunderbird-128.7.0-1.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//thunderbird-128.7.0-1.0.1.el9_5.src.rpm Related CVEs: CVE-2025-0510 CVE-2025-1009 CVE-2025-1010 CVE-2025-1011 CVE-2025-1012 CVE-2025-1013 CVE-2025-1014 CVE-2025-1015 CVE-2025-1016 CVE-2025-1017 Description of changes: [128.7.0-1.0.1] - Fix prefs for new nss [Orabug: 37079813] - Add Oracle prefs [128.7.0] - Add OpenELA debranding [128.7.0-1] - Update to 128.2.0 build1 From el-errata at oss.oracle.com Mon Feb 10 22:35:59 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:35:59 -0800 Subject: [El-errata] ELBA-2025-20094 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20094 http://linux.oracle.com/errata/ELBA-2025-20094.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.339.5.2.el8uek.x86_64.rpm kernel-uek-container-5.4.17-2136.339.5.2.el8uek.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.339.5.2.el8uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.339.5.2.el8uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.339.5.2.el8uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.339.5.2.el8uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.339.5.2.el8uek.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.339.5.2.el8uek.src.rpm Description of changes: [5.4.17-2136.339.5.2.el8uek] - RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju) [Orabug: 37566741] From el-errata at oss.oracle.com Mon Feb 10 22:36:05 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:05 -0800 Subject: [El-errata] ELBA-2025-20094 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20094 http://linux.oracle.com/errata/ELBA-2025-20094.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.339.5.2.el7uek.x86_64.rpm kernel-uek-container-5.4.17-2136.339.5.2.el7uek.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.339.5.2.el7uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.339.5.2.el7uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.339.5.2.el7uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.339.5.2.el7uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.339.5.2.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.339.5.2.el7uek.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.339.5.2.el7uek.src.rpm Description of changes: [5.4.17-2136.339.5.2.el7uek] - RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju) [Orabug: 37566741] [5.4.17-2136.339.5.1.el7uek] - Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha) [Orabug: 37510955] - vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu) [Orabug: 37511007] - Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang) [Orabug: 37511007] [5.4.17-2136.339.5.el7uek] - tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov) - vhost_scsi: log write descriptors (Dongli Zhang) [Orabug: 37393533] - vhost-scsi: protect vq->log_base with vq->mutex (Dongli Zhang) [Orabug: 37393533] [5.4.17-2136.339.4.el7uek] - RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey (Kashyap Desai) - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K" (Aurelien Jarno) - mm: revert "mm: shmem: fix data-race in shmem_getattr()" (Andrew Morton) - net/ipv6: release expired exception dst cached in socket (Jiri Wiesner) [Orabug: 37434173] {CVE-2024-56644} - Revert "unicode: Don't special case ignorable code points" (Linus Torvalds) - powerpc/vdso: Flag VDSO64 entry points as functions (Christophe Leroy) - Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil) [5.4.17-2136.339.3.el7uek] - Revert "ocfs2: fix the la space leak when unmounting an ocfs2 volume" (Sherry Yang) [Orabug: 37364531] - rds: recv_payload_bad_checksum was not 0 after running rds-stress on UEK6 (William Kucharski) [Orabug: 37265127] - rds: If RDS Checksums are enabled for RDMA RDS operations, the extension headers will overflow causing incorrect operation (William Kucharski) [Orabug: 37265125] - rds: rds_message_alloc() needlessly zeroes m_used_sgs (William Kucharski) [Orabug: 37265123] - rds: tracepoint in rds_receive_csum_err() prints pointless information (William Kucharski) [Orabug: 37265121] - rds: rds_inc_init() should initialize the inc->i_conn_path field (William Kucharski) [Orabug: 37265117] - rds: Race condition in adding RDS payload checksum extension header may result in RDS header corruption (William Kucharski) [Orabug: 37265115] - md/raid10: fix task hung in raid10d (Li Nan) [Orabug: 37126683] - md/raid10: factor out code from wait_barrier() to stop_waiting_barrier() (Yu Kuai) [Orabug: 37126683] - md/raid10: avoid deadlock on recovery. (Vitaly Mayatskikh) [Orabug: 37126683] [5.4.17-2136.339.2.el7uek] - arm64/cpu_errata: Spectre-BHB mitigation for AMPERE1 expects a loop of 11 iterations. (Miguel Luis) [Orabug: 37027863] [5.4.17-2136.339.1.el7uek] - net/rds: report pending-messages count in RDS_INQ response (Devesh Sharma) [Orabug: 35596047] [Orabug: 35316633] - net/rds: Introduce RDS-INQ feature to RDS protocol (Devesh Sharma) [Orabug: 35316632] [Orabug: 37109336] - net/rds: Supporting SIOCOUTQ to read pending sends (Devesh Sharma) [Orabug: 34460809] [Orabug: 37072814] - mm/memory-failure: pass the folio and the page to collect_procs() (Matthew Wilcox (Oracle)) [Orabug: 37270264] - KVM: x86: Stop compiling vmenter.S with OBJECT_FILES_NON_STANDARD (Sean Christopherson) [Orabug: 37273706] - KVM: SVM: Create a stack frame in __svm_vcpu_run() for unwinding (Sean Christopherson) [Orabug: 37273706] - objtool: Default ignore INT3 for unreachable (Peter Zijlstra) [Orabug: 37273706] {CVE-2022-29901} - x86/spec_ctrl: AMD AutoIBRS cannot be dynamically enabled or disabled (Alexandre Chartre) [Orabug: 37310552] - x86/msr: Add functions to set/clear the bit of an MSR on all cpus (Alexandre Chartre) [Orabug: 37310552] From el-errata at oss.oracle.com Mon Feb 10 22:36:10 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:10 -0800 Subject: [El-errata] ELBA-2025-1104 Oracle Linux 7 tzdata bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1104 http://linux.oracle.com/errata/ELBA-2025-1104.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: tzdata-java-2025a-1.el7.noarch.rpm tzdata-2025a-1.el7.noarch.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//tzdata-2025a-1.el7.src.rpm Description of changes: [2025a-1] Update to tzdata-2025a (RHEL-74309) - Paraguay is now permanently at -03. This impacts timestamps starting on 2025-03-22. - Includes improvements to pre-1991 data for the Philippines. - Etc/Unknown is now reserved. From el-errata at oss.oracle.com Mon Feb 10 22:36:24 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:24 -0800 Subject: [El-errata] ELSA-2025-1068 Moderate: Oracle Linux 8 kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1068 http://linux.oracle.com/errata/ELSA-2025-1068.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-abi-stablelists-4.18.0-553.37.1.el8_10.noarch.rpm kernel-core-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-cross-headers-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-debug-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-debug-core-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-debug-devel-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-debug-modules-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-debug-modules-extra-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-devel-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-doc-4.18.0-553.37.1.el8_10.noarch.rpm kernel-headers-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-modules-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-modules-extra-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-tools-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-tools-libs-4.18.0-553.37.1.el8_10.x86_64.rpm perf-4.18.0-553.37.1.el8_10.x86_64.rpm python3-perf-4.18.0-553.37.1.el8_10.x86_64.rpm kernel-tools-libs-devel-4.18.0-553.37.1.el8_10.x86_64.rpm aarch64: bpftool-4.18.0-553.37.1.el8_10.aarch64.rpm kernel-cross-headers-4.18.0-553.37.1.el8_10.aarch64.rpm kernel-headers-4.18.0-553.37.1.el8_10.aarch64.rpm kernel-tools-4.18.0-553.37.1.el8_10.aarch64.rpm kernel-tools-libs-4.18.0-553.37.1.el8_10.aarch64.rpm perf-4.18.0-553.37.1.el8_10.aarch64.rpm python3-perf-4.18.0-553.37.1.el8_10.aarch64.rpm kernel-tools-libs-devel-4.18.0-553.37.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-4.18.0-553.37.1.el8_10.src.rpm Related CVEs: CVE-2024-26935 CVE-2024-50275 Description of changes: [4.18.0-553.37.1.el8_10.OL8] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3 - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652] [4.18.0-553.37.1.el8_10] - arm64/sve: Discard stale CPU state when handling SVE traps (Mark Salter) [RHEL-71535] {CVE-2024-50275} - scsi: core: Handle devices which return an unusually large VPD page count (Ewan D. Milne) [RHEL-34275] - scsi: core: Fix unremoved procfs host directory regression (Ewan D. Milne) [RHEL-34275] - scsi: core: Consult supported VPD page list prior to fetching page (Ewan D. Milne) [RHEL-34275] - NFSv4: Fix dropped lock for racing OPEN and delegation return (Benjamin Coddington) [RHEL-73889] From el-errata at oss.oracle.com Mon Feb 10 22:36:19 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:19 -0800 Subject: [El-errata] ELBA-2025-20092 Oracle Linux 8 NetworkManager bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20092 http://linux.oracle.com/errata/ELBA-2025-20092.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: NetworkManager-cloud-setup-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-adsl-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-bluetooth-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-config-connectivity-oracle-1.40.16-18.0.2.el8_10.noarch.rpm NetworkManager-config-server-1.40.16-18.0.2.el8_10.noarch.rpm NetworkManager-dispatcher-routing-rules-1.40.16-18.0.2.el8_10.noarch.rpm NetworkManager-libnm-1.40.16-18.0.2.el8_10.i686.rpm NetworkManager-libnm-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-ovs-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-ppp-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-team-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-tui-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-wifi-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-wwan-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-libnm-devel-1.40.16-18.0.2.el8_10.i686.rpm NetworkManager-libnm-devel-1.40.16-18.0.2.el8_10.x86_64.rpm NetworkManager-initscripts-updown-1.40.16-18.0.2.el8_10.noarch.rpm aarch64: NetworkManager-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-adsl-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-bluetooth-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-config-connectivity-oracle-1.40.16-18.0.2.el8_10.noarch.rpm NetworkManager-config-server-1.40.16-18.0.2.el8_10.noarch.rpm NetworkManager-dispatcher-routing-rules-1.40.16-18.0.2.el8_10.noarch.rpm NetworkManager-libnm-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-ovs-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-ppp-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-team-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-tui-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-wifi-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-wwan-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-libnm-devel-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-cloud-setup-1.40.16-18.0.2.el8_10.aarch64.rpm NetworkManager-initscripts-updown-1.40.16-18.0.2.el8_10.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//NetworkManager-1.40.16-18.0.2.el8_10.src.rpm Description of changes: [1:1.40.16-18.0.2] - Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910] From el-errata at oss.oracle.com Mon Feb 10 22:36:18 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:18 -0800 Subject: [El-errata] ELBA-2025-20088 Oracle Linux 8 scap-security-guide bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20088 http://linux.oracle.com/errata/ELBA-2025-20088.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: scap-security-guide-0.1.75-1.0.3.el8.noarch.rpm scap-security-guide-doc-0.1.75-1.0.3.el8.noarch.rpm aarch64: scap-security-guide-0.1.75-1.0.3.el8.noarch.rpm scap-security-guide-doc-0.1.75-1.0.3.el8.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//scap-security-guide-0.1.75-1.0.3.el8.src.rpm Description of changes: [0.1.75-1.0.3] - Update OL9 STIG alignment [Orabug: 37556437] - Add CCN profile for OL9 [Orabug: 37556437] - Update all OL8 profiles, align STIG with V2R3 and align the others with upstream [Orabug: 37545300] From el-errata at oss.oracle.com Mon Feb 10 22:36:21 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:21 -0800 Subject: [El-errata] ELBA-2025-20094 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20094 http://linux.oracle.com/errata/ELBA-2025-20094.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: aarch64: kernel-uek-5.4.17-2136.339.5.2.el8uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.339.5.2.el8uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.339.5.2.el8uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.339.5.2.el8uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.339.5.2.el8uek.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.339.5.2.el8uek.src.rpm Description of changes: [5.4.17-2136.339.5.2.el8uek] - RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju) [Orabug: 37566741] From el-errata at oss.oracle.com Mon Feb 10 22:36:12 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:12 -0800 Subject: [El-errata] ELSA-2025-0319 Important: Oracle Linux 7 raptor2 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0319 http://linux.oracle.com/errata/ELSA-2025-0319.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: raptor2-2.0.9-3.0.1.el7.i686.rpm raptor2-2.0.9-3.0.1.el7.x86_64.rpm raptor2-devel-2.0.9-3.0.1.el7.i686.rpm raptor2-devel-2.0.9-3.0.1.el7.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//raptor2-2.0.9-3.0.1.el7.src.rpm Related CVEs: CVE-2024-57823 Description of changes: [2.0.9-3.0.1] - CVE-2024-57823: memcpy integer underflow and heap read overflow [Orabug: 37476410] From el-errata at oss.oracle.com Mon Feb 10 22:36:22 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 10 Feb 2025 14:36:22 -0800 Subject: [El-errata] ELBA-2025-1104 Oracle Linux 8 tzdata bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1104 http://linux.oracle.com/errata/ELBA-2025-1104.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: tzdata-java-2025a-1.0.1.el8.noarch.rpm tzdata-2025a-1.0.1.el8.noarch.rpm aarch64: tzdata-java-2025a-1.0.1.el8.noarch.rpm tzdata-2025a-1.0.1.el8.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//tzdata-2025a-1.0.1.el8.src.rpm Description of changes: [2025a-1.0.1] - Use javac 1.6 or newer [2025a-1] Update to tzdata-2025a (RHEL-74309) - Paraguay is now permanently at -03. This impacts timestamps starting on 2025-03-22. - Includes improvements to pre-1991 data for the Philippines. - Etc/Unknown is now reserved. From el-errata at oss.oracle.com Wed Feb 12 06:21:49 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 12 Feb 2025 06:21:49 +0000 Subject: [El-errata] Fwd: New Ksplice updates for UEKR6 5.4.17 on OL7 and OL8 (ELBA-2025-20072) References: <74c3b849b81af8c42c517c00d04cc918.apache@ksplice.com> Message-ID: Synopsis: ELBA-2025-20072 can now be patched using Ksplice Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Bug Fix Advisory, ELBA-2025-20072. More information about this errata can be found at https://linux.oracle.com/errata/ELBA-2025-20072.html INSTALLING THE UPDATES We recommend that all users of Ksplice Uptrack running UEKR6 5.4.17 on OL7 and OL8 install these updates. On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf, these updates will be installed automatically and you do not need to take any action. Alternatively, you can install these updates by running: # /usr/sbin/uptrack-upgrade -y DESCRIPTION * Resource exhaustion in VFIO non-privileged userspace driver. A logic error when using the VFIO Type1 IOMMU DMA mapping support could lead to a memory leak, which can be observed by killing a QEMU instance immediately during creation. A local attacker could use this flaw to cause a denial-of-service. Orabug: 37511007 SUPPORT Ksplice support is available at ksplice-support_ww at oracle.com. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 833 bytes Desc: This is a digitally signed message part URL: From el-errata at oss.oracle.com Wed Feb 12 11:09:29 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 12 Feb 2025 11:09:29 +0000 Subject: [El-errata] New Ksplice updates for UEKR6 5.4.17 on OL7 and OL8 (ELBA-2025-20094) References: Message-ID: Synopsis: ELBA-2025-20094 can now be patched using Ksplice Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Bug Fix Advisory, ELBA-2025-20094. More information about this errata can be found at https://linux.oracle.com/errata/ELBA-2025-20094.html INSTALLING THE UPDATES We recommend that all users of Ksplice Uptrack running UEKR6 5.4.17 on OL7 and OL8 install these updates. On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf, these updates will be installed automatically and you do not need to take any action. Alternatively, you can install these updates by running: # /usr/sbin/uptrack-upgrade -y DESCRIPTION * Delayed send operations in the RDS Protocol driver. A logic error in the RDS Protocol driver can cause delayed work for send operations to fail to queue for execution when expected. This can lead to increased latency in RDS traffic. Orabug: 37566741 SUPPORT Ksplice support is available at ksplice-support_ww at oracle.com. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 833 bytes Desc: This is a digitally signed message part URL: From el-errata at oss.oracle.com Wed Feb 12 17:32:20 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 12 Feb 2025 21:32:20 +0400 Subject: [El-errata] New Ksplice updates for RHCK 9 (ELSA-2025-1262) Message-ID: Synopsis: ELSA-2025-1262 can now be patched using Ksplice CVEs: CVE-2024-53104 Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Security Advisory, ELSA-2025-1262. More information about this errata can be found at https://linux.oracle.com/errata/ELSA-2025-1262.html INSTALLING THE UPDATES We recommend that all users of Ksplice Uptrack running RHCK 9 install these updates. On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf, these updates will be installed automatically and you do not need to take any action. Alternatively, you can install these updates by running: # /usr/sbin/uptrack-upgrade -y DESCRIPTION * CVE-2024-53104: Code execution in USB Video Class (UVC) driver. A missing check when using the USB Video Class (UVC) driver could lead to an out-of-bounds memory write. A local attacker could use this flaw to execute arbitrary code in kernel mode. SUPPORT Ksplice support is available at ksplice-support_ww at oracle.com. From el-errata at oss.oracle.com Thu Feb 13 14:42:07 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:07 -0800 Subject: [El-errata] ELBA-2025-20098 Oracle Linux 7 linux-firmware bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20098 http://linux.oracle.com/errata/ELBA-2025-20098.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: iwl1000-firmware-39.31.5.1-999.38.el7.noarch.rpm iwl100-firmware-39.31.5.1-999.38.el7.noarch.rpm iwl105-firmware-18.168.6.1-999.38.el7.noarch.rpm iwl135-firmware-18.168.6.1-999.38.el7.noarch.rpm iwl2000-firmware-18.168.6.1-999.38.el7.noarch.rpm iwl2030-firmware-18.168.6.1-999.38.el7.noarch.rpm iwl3160-firmware-22.0.7.0-999.38.el7.noarch.rpm iwl3945-firmware-15.32.2.9-999.38.el7.noarch.rpm iwl4965-firmware-228.61.2.24-999.38.el7.noarch.rpm iwl5000-firmware-8.83.5.1_1-999.38.el7.noarch.rpm iwl5150-firmware-8.24.2.2-999.38.el7.noarch.rpm iwl6000-firmware-9.221.4.1-999.38.el7.noarch.rpm iwl6000g2a-firmware-17.168.5.3-999.38.el7.noarch.rpm iwl6000g2b-firmware-17.168.5.2-999.38.el7.noarch.rpm iwl6050-firmware-41.28.5.1-999.38.el7.noarch.rpm iwl7260-firmware-22.0.7.0-999.38.el7.noarch.rpm iwlax2xx-firmware-20250203-999.38.el7.noarch.rpm linux-firmware-20250203-999.38.git0fd450ee.el7.noarch.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//linux-firmware-20250203-999.38.git0fd450ee.el7.src.rpm Description of changes: [20250203-999.38.git0fd450ee.el7] - Rebase to latest upstream [Orabug: 37535629] [20241213-999.36.git2cdfe09e.el7] - Rebase to latest upstream [Orabug: 37405529] From el-errata at oss.oracle.com Thu Feb 13 14:42:09 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:09 -0800 Subject: [El-errata] ELSA-2025-1132 Important: Oracle Linux 7 firefox security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1132 http://linux.oracle.com/errata/ELSA-2025-1132.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: firefox-128.7.0-1.0.1.el7_9.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//firefox-128.7.0-1.0.1.el7_9.src.rpm Related CVEs: CVE-2025-1009 CVE-2025-1010 CVE-2025-1011 CVE-2025-1012 CVE-2025-1013 CVE-2025-1014 CVE-2025-1016 CVE-2025-1017 Description of changes: [128.7.0-1.0.1] - Update to 128.7.0 build1 [Orabug: 37564202][CVE-2025-1009][CVE-2025-1010] [CVE-2025-1011][CVE-2025-1012][CVE-2025-1013][CVE-2025-1014][CVE-2025-1016] [CVE-2025-1017] From el-errata at oss.oracle.com Thu Feb 13 14:42:14 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:14 -0800 Subject: [El-errata] ELBA-2025-20097 Oracle Linux 8 cockpit bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20097 http://linux.oracle.com/errata/ELBA-2025-20097.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: cockpit-310.4-1.0.2.el8_10.x86_64.rpm cockpit-bridge-310.4-1.0.2.el8_10.x86_64.rpm cockpit-doc-310.4-1.0.2.el8_10.noarch.rpm cockpit-system-310.4-1.0.2.el8_10.noarch.rpm cockpit-ws-310.4-1.0.2.el8_10.x86_64.rpm aarch64: cockpit-310.4-1.0.2.el8_10.aarch64.rpm cockpit-bridge-310.4-1.0.2.el8_10.aarch64.rpm cockpit-doc-310.4-1.0.2.el8_10.noarch.rpm cockpit-system-310.4-1.0.2.el8_10.noarch.rpm cockpit-ws-310.4-1.0.2.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//cockpit-310.4-1.0.2.el8_10.src.rpm Description of changes: [310.4-1.0.2] - Move update-motd out of cockpit_ws_t context [Orabug: 36013589] From el-errata at oss.oracle.com Thu Feb 13 14:42:15 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:15 -0800 Subject: [El-errata] ELBA-2025-20098 Oracle Linux 8 linux-firmware bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20098 http://linux.oracle.com/errata/ELBA-2025-20098.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: iwl1000-firmware-39.31.5.1-999.38.el8.noarch.rpm iwl100-firmware-39.31.5.1-999.38.el8.noarch.rpm iwl105-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl135-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl2000-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl2030-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl3160-firmware-25.30.13.0-999.38.el8.noarch.rpm iwl3945-firmware-15.32.2.9-999.38.el8.noarch.rpm iwl4965-firmware-228.61.2.24-999.38.el8.noarch.rpm iwl5000-firmware-8.83.5.1_1-999.38.el8.noarch.rpm iwl5150-firmware-8.24.2.2-999.38.el8.noarch.rpm iwl6000-firmware-9.221.4.1-999.38.el8.noarch.rpm iwl6000g2a-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl6000g2b-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl6050-firmware-41.28.5.1-999.38.el8.noarch.rpm iwl7260-firmware-25.30.13.0-999.38.el8.noarch.rpm iwlax2xx-firmware-20250203-999.38.el8.noarch.rpm libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm linux-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm linux-firmware-core-20250203-999.38.git0fd450ee.el8.noarch.rpm aarch64: iwl1000-firmware-39.31.5.1-999.38.el8.noarch.rpm iwl100-firmware-39.31.5.1-999.38.el8.noarch.rpm iwl105-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl135-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl2000-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl2030-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl3160-firmware-25.30.13.0-999.38.el8.noarch.rpm iwl3945-firmware-15.32.2.9-999.38.el8.noarch.rpm iwl4965-firmware-228.61.2.24-999.38.el8.noarch.rpm iwl5000-firmware-8.83.5.1_1-999.38.el8.noarch.rpm iwl5150-firmware-8.24.2.2-999.38.el8.noarch.rpm iwl6000-firmware-9.221.4.1-999.38.el8.noarch.rpm iwl6000g2a-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl6000g2b-firmware-18.168.6.1-999.38.el8.noarch.rpm iwl6050-firmware-41.28.5.1-999.38.el8.noarch.rpm iwl7260-firmware-25.30.13.0-999.38.el8.noarch.rpm iwlax2xx-firmware-20250203-999.38.el8.noarch.rpm libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm linux-firmware-20250203-999.38.git0fd450ee.el8.noarch.rpm linux-firmware-core-20250203-999.38.git0fd450ee.el8.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//linux-firmware-20250203-999.38.git0fd450ee.el8.src.rpm Description of changes: [20250203-999.38.git0fd450ee.el8] - Rebase to latest upstream [Orabug: 37535629] [20241213-999.36.git2cdfe09e.el8] - Rebase to latest upstream [Orabug: 37405529] From el-errata at oss.oracle.com Thu Feb 13 14:42:17 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:17 -0800 Subject: [El-errata] ELBA-2025-20101 Oracle Linux 8 annobin bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20101 http://linux.oracle.com/errata/ELBA-2025-20101.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: annobin-11.13-2.0.4.el8.x86_64.rpm annobin-annocheck-11.13-2.0.4.el8.x86_64.rpm annobin-annocheck-11.13-2.0.4.el8.i686.rpm aarch64: annobin-11.13-2.0.4.el8.aarch64.rpm annobin-annocheck-11.13-2.0.4.el8.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//annobin-11.13-2.0.4.el8.src.rpm Description of changes: [11.13-2.0.4] - Rebuild to match latest GCC. Oracle history: From el-errata at oss.oracle.com Thu Feb 13 14:42:18 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:18 -0800 Subject: [El-errata] ELBA-2025-20103 Oracle Linux 8 sudo bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20103 http://linux.oracle.com/errata/ELBA-2025-20103.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: sudo-1.9.5p2-1.0.1.el8_9.x86_64.rpm aarch64: sudo-1.9.5p2-1.0.1.el8_9.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//sudo-1.9.5p2-1.0.1.el8_9.src.rpm Description of changes: [1.9.5p2-1.0.1] - Fixes sudo -s unclosed sessions when use_pty option used [Orabug: 36952911] From el-errata at oss.oracle.com Thu Feb 13 14:42:21 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:21 -0800 Subject: [El-errata] ELBA-2025-1240 Oracle Linux 8 sos bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1240 http://linux.oracle.com/errata/ELBA-2025-1240.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: sos-4.8.2-1.0.1.el8_10.noarch.rpm sos-audit-4.8.2-1.0.1.el8_10.noarch.rpm aarch64: sos-4.8.2-1.0.1.el8_10.noarch.rpm sos-audit-4.8.2-1.0.1.el8_10.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//sos-4.8.2-1.0.1.el8_10.src.rpm Description of changes: [4.8.2-1.0.1] - Update the enabled and skipped plugins lists to match ExaData's requirements. [Orabug: 37440315] - Disable upload options [Orabug: 31969352] - Disable upload option to sos report collector [Orabug: 36069764] - Adding socket statistics command output [Orabug: 36491747] - Add irq debugfs to sosreport [Orabug: 36511145] - Added os detect string [Orabug: 28674897] - Added sos-oraclelinux-vendor-vendorurl.patch - Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37097463] - Disable ethtool EEPROM dump for link down interfaces [Orabug: 37050543] - Modify sos.spec to make python3-magic as dependency for sos package [Orabug: 36826342] - Add exadata plugin to collect exadata specific info [Orabug: 35312548] - Append .txt extension to files rejected by MOS policy [Orabug: 35801795] - Collecting last 50k lines of ftrace file trace [Orabug: 36448808] - Adding socket statistics command output [Orabug: 36491747] - Add IO queue depth of all the devices on node [Orabug: 35849258] - Disable upload option to sos report collector [Orabug: 36069764] - Add irq debugfs to sosreport [Orabug: 36511145] - Collect all rsyslogs files for all-logs option [Orabug: 36264341] - Set SIGPIPE to default action for BrokenPipeError [Orabug: 36016241] - Modifying dnf history info remove empty files [Orabug: 35350237] - Modifying dnf history info transaction index [Orabug: 35350237] - Adding virsh guest cgroup configuration [Orabug: 35088964] - Adding PluginOpt support for ksplice and btrfs [Orabug: 34993258] - Adding virsh qemu-monitor info-tree command [Orabug: 34650374] - append .txt to .com domain named files [Orabug: 34523347] - Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313] - Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351] - Fix ksplice plugin does not show description [Orabug: 32886513] - Adjusted ksplice plugin patches for path change [Orabug: 32881277] - Fix patch for Orabug 31969352 [Orabug: 32822570] - Add in some btrfs commands [Orabug: 32727607] - Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933] - Do not exit on unknown plugin [Orabug: 32556170] - Allow a journal log size to be smaller than 100M [Orabug: 32454362] - Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601] - Disable upload options for OracleLinux [Orabug: 31969352] - Added sos-oraclelinux-vendor-vendorurl.patch - Fix os detect string for Oracle Linux [Orabug: 28674897] - Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck) - [ovn_central] call podman exec without a timeout Resolves: bz1767359 [4.8.2-1] - Update to 4.8.2 in RHEL 8 Resolves: RHEL-72941 From el-errata at oss.oracle.com Thu Feb 13 14:42:23 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:23 -0800 Subject: [El-errata] ELBA-2025-1336 Oracle Linux 8 .NET 9.0 bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1336 http://linux.oracle.com/errata/ELBA-2025-1336.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-9.0.103-1.0.1.el8_10.x86_64.rpm dotnet-apphost-pack-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-host-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-hostfxr-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-runtime-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-sdk-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm dotnet-sdk-aot-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm dotnet-targeting-pack-9.0-9.0.2-1.0.1.el8_10.x86_64.rpm dotnet-templates-9.0-9.0.103-1.0.1.el8_10.x86_64.rpm netstandard-targeting-pack-2.1-9.0.103-1.0.1.el8_10.x86_64.rpm dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el8_10.x86_64.rpm aarch64: aspnetcore-runtime-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-9.0.103-1.0.1.el8_10.aarch64.rpm dotnet-apphost-pack-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-host-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-hostfxr-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-runtime-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-sdk-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm dotnet-sdk-aot-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm dotnet-targeting-pack-9.0-9.0.2-1.0.1.el8_10.aarch64.rpm dotnet-templates-9.0-9.0.103-1.0.1.el8_10.aarch64.rpm netstandard-targeting-pack-2.1-9.0.103-1.0.1.el8_10.aarch64.rpm dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//dotnet9.0-9.0.103-1.0.1.el8_10.src.rpm Description of changes: [9.0.103-1.0.1] - Add support for Oracle Linux [9.0.103-1] - Update to .NET SDK 9.0.103 and Runtime 9.0.2 - Resolves: RHEL-76903 From el-errata at oss.oracle.com Thu Feb 13 14:42:24 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:24 -0800 Subject: [El-errata] ELSA-2025-1215 Moderate: Oracle Linux 8 tbb security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1215 http://linux.oracle.com/errata/ELSA-2025-1215.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: python3-tbb-2018.2-10.el8_10.1.x86_64.rpm tbb-2018.2-10.el8_10.1.i686.rpm tbb-2018.2-10.el8_10.1.x86_64.rpm tbb-devel-2018.2-10.el8_10.1.i686.rpm tbb-devel-2018.2-10.el8_10.1.x86_64.rpm tbb-doc-2018.2-10.el8_10.1.x86_64.rpm aarch64: python3-tbb-2018.2-10.el8_10.1.aarch64.rpm tbb-2018.2-10.el8_10.1.aarch64.rpm tbb-devel-2018.2-10.el8_10.1.aarch64.rpm tbb-doc-2018.2-10.el8_10.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//tbb-2018.2-10.el8_10.1.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [2018.2-10.1] - Remove jQuery from Doxygen files (RHEL-77669) [2018.2-10] - Apply patches from (BZ #1907561) - Bump release From el-errata at oss.oracle.com Thu Feb 13 14:42:26 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:26 -0800 Subject: [El-errata] ELSA-2025-1266 Important: Oracle Linux 8 kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1266 http://linux.oracle.com/errata/ELSA-2025-1266.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-abi-stablelists-4.18.0-553.40.1.el8_10.noarch.rpm kernel-core-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-cross-headers-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-debug-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-debug-core-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-debug-devel-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-debug-modules-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-debug-modules-extra-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-devel-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-doc-4.18.0-553.40.1.el8_10.noarch.rpm kernel-headers-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-modules-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-modules-extra-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-tools-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-tools-libs-4.18.0-553.40.1.el8_10.x86_64.rpm perf-4.18.0-553.40.1.el8_10.x86_64.rpm python3-perf-4.18.0-553.40.1.el8_10.x86_64.rpm kernel-tools-libs-devel-4.18.0-553.40.1.el8_10.x86_64.rpm aarch64: bpftool-4.18.0-553.40.1.el8_10.aarch64.rpm kernel-cross-headers-4.18.0-553.40.1.el8_10.aarch64.rpm kernel-headers-4.18.0-553.40.1.el8_10.aarch64.rpm kernel-tools-4.18.0-553.40.1.el8_10.aarch64.rpm kernel-tools-libs-4.18.0-553.40.1.el8_10.aarch64.rpm perf-4.18.0-553.40.1.el8_10.aarch64.rpm python3-perf-4.18.0-553.40.1.el8_10.aarch64.rpm kernel-tools-libs-devel-4.18.0-553.40.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-4.18.0-553.40.1.el8_10.src.rpm Related CVEs: CVE-2024-53104 Description of changes: [4.18.0-553.40.1.el8_10.OL8] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3 - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652] [4.18.0-553.40.1.el8_10] - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Desnes Nunes) [RHEL-69571] {CVE-2024-53104} [4.18.0-553.39.1.el8_10] - gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag (Andreas Gruenbacher) [RHEL-73915] [4.18.0-553.38.1.el8_10] - net: usb: lan78xx: add Allied Telesis AT29M2-AF (Jose Ignacio Tornos Martinez) [RHEL-70891] - s390/pci: Allow allocation of more than 1 MSI interrupt (Mete Durlu) [RHEL-74385] - s390/pci: Refactor arch_setup_msi_irqs() (Mete Durlu) [RHEL-74385] - s390/pci: Fix leak of struct zpci_dev when zpci_add_device() fails (Mete Durlu) [RHEL-71451] - s390/pci: Ignore RID for isolated VFs (Mete Durlu) [RHEL-71451] - s390/pci: Use topology ID for multi-function devices (Mete Durlu) [RHEL-71451] - s390/pci: Sort PCI functions prior to creating virtual busses (Mete Durlu) [RHEL-71451] - s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() (Mete Durlu) [RHEL-74387] - s390/pci: Handle PCI error codes other than 0x3a (Mete Durlu) [RHEL-74383] From el-errata at oss.oracle.com Thu Feb 13 14:42:27 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:27 -0800 Subject: [El-errata] ELSA-2025-1283 Important: Oracle Linux 8 firefox security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1283 http://linux.oracle.com/errata/ELSA-2025-1283.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: firefox-128.7.0-1.0.1.el8_10.x86_64.rpm aarch64: firefox-128.7.0-1.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//firefox-128.7.0-1.0.1.el8_10.src.rpm Related CVEs: CVE-2025-1009 CVE-2025-1010 CVE-2025-1011 CVE-2025-1012 CVE-2025-1013 CVE-2025-1014 CVE-2025-1016 CVE-2025-1017 Description of changes: [128.7.0-1.0.1] - Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079789] [128.7.0] - Add debranding patches (Mustafa Gezen) - Add OpenELA default preferences (Louis Abel) [128.7.0-1] - Update to 128.7.0 build1 From el-errata at oss.oracle.com Thu Feb 13 14:42:29 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:29 -0800 Subject: [El-errata] ELSA-2025-1292 Important: Oracle Linux 8 thunderbird security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1292 http://linux.oracle.com/errata/ELSA-2025-1292.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: thunderbird-128.7.0-1.0.1.el8_10.x86_64.rpm aarch64: thunderbird-128.7.0-1.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//thunderbird-128.7.0-1.0.1.el8_10.src.rpm Related CVEs: CVE-2025-0510 CVE-2025-1009 CVE-2025-1010 CVE-2025-1011 CVE-2025-1012 CVE-2025-1013 CVE-2025-1014 CVE-2025-1015 CVE-2025-1016 CVE-2025-1017 Description of changes: [128.7.0-1.0.1] - Fix prefs for new nss [Orabug: 37079820] - Add Oracle prefs file [128.7.0] - Add OpenELA debranding [128.7.0-1] - Update to 128.2.0 build1 From el-errata at oss.oracle.com Thu Feb 13 14:42:30 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:30 -0800 Subject: [El-errata] ELSA-2025-1301 Moderate: Oracle Linux 8 gcc security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1301 http://linux.oracle.com/errata/ELSA-2025-1301.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: cpp-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-c++-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-gdb-plugin-8.5.0-23.0.1.el8_10.i686.rpm gcc-gdb-plugin-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-gfortran-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-offload-nvptx-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-plugin-annobin-8.5.0-23.0.1.el8_10.x86_64.rpm libasan-8.5.0-23.0.1.el8_10.i686.rpm libasan-8.5.0-23.0.1.el8_10.x86_64.rpm libatomic-8.5.0-23.0.1.el8_10.i686.rpm libatomic-8.5.0-23.0.1.el8_10.x86_64.rpm libatomic-static-8.5.0-23.0.1.el8_10.i686.rpm libatomic-static-8.5.0-23.0.1.el8_10.x86_64.rpm libgcc-8.5.0-23.0.1.el8_10.i686.rpm libgcc-8.5.0-23.0.1.el8_10.x86_64.rpm libgfortran-8.5.0-23.0.1.el8_10.i686.rpm libgfortran-8.5.0-23.0.1.el8_10.x86_64.rpm libgomp-8.5.0-23.0.1.el8_10.i686.rpm libgomp-8.5.0-23.0.1.el8_10.x86_64.rpm libgomp-offload-nvptx-8.5.0-23.0.1.el8_10.x86_64.rpm libitm-8.5.0-23.0.1.el8_10.i686.rpm libitm-8.5.0-23.0.1.el8_10.x86_64.rpm libitm-devel-8.5.0-23.0.1.el8_10.i686.rpm libitm-devel-8.5.0-23.0.1.el8_10.x86_64.rpm liblsan-8.5.0-23.0.1.el8_10.x86_64.rpm libquadmath-8.5.0-23.0.1.el8_10.i686.rpm libquadmath-8.5.0-23.0.1.el8_10.x86_64.rpm libquadmath-devel-8.5.0-23.0.1.el8_10.i686.rpm libquadmath-devel-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-8.5.0-23.0.1.el8_10.i686.rpm libstdc++-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-devel-8.5.0-23.0.1.el8_10.i686.rpm libstdc++-devel-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-docs-8.5.0-23.0.1.el8_10.x86_64.rpm libtsan-8.5.0-23.0.1.el8_10.x86_64.rpm libubsan-8.5.0-23.0.1.el8_10.i686.rpm libubsan-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-plugin-devel-8.5.0-23.0.1.el8_10.i686.rpm gcc-plugin-devel-8.5.0-23.0.1.el8_10.x86_64.rpm libgfortran-static-8.5.0-23.0.1.el8_10.i686.rpm libgfortran-static-8.5.0-23.0.1.el8_10.x86_64.rpm libquadmath-static-8.5.0-23.0.1.el8_10.i686.rpm libquadmath-static-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-static-8.5.0-23.0.1.el8_10.i686.rpm libstdc++-static-8.5.0-23.0.1.el8_10.x86_64.rpm aarch64: cpp-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-c++-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-gdb-plugin-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-gfortran-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-plugin-annobin-8.5.0-23.0.1.el8_10.aarch64.rpm libasan-8.5.0-23.0.1.el8_10.aarch64.rpm libatomic-8.5.0-23.0.1.el8_10.aarch64.rpm libatomic-static-8.5.0-23.0.1.el8_10.aarch64.rpm libgcc-8.5.0-23.0.1.el8_10.aarch64.rpm libgfortran-8.5.0-23.0.1.el8_10.aarch64.rpm libgomp-8.5.0-23.0.1.el8_10.aarch64.rpm libitm-8.5.0-23.0.1.el8_10.aarch64.rpm libitm-devel-8.5.0-23.0.1.el8_10.aarch64.rpm liblsan-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-devel-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-docs-8.5.0-23.0.1.el8_10.aarch64.rpm libtsan-8.5.0-23.0.1.el8_10.aarch64.rpm libubsan-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-plugin-devel-8.5.0-23.0.1.el8_10.aarch64.rpm libgfortran-static-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-static-8.5.0-23.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//gcc-8.5.0-23.0.1.el8_10.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [8.5.0-23.0.1] - Merge Oracle patches to 8.5.0-23. Oracle history: May-22-2024 Qing Zhao 8.5.0-22.0.1 - Merge Oracle patches to 8.5.0-22. Reviewed-by: Jose E. Marchesi March-27-2024 Qing Zhao 8.5.0-21.0.1 - Merge Oracle patches to 8.5.0-21. January-19-2024 Qing Zhao 8.5.0-20.0.3 - Fix Orabug 35283123, i.e, the same bug as GCC PR111407. gcc14-pr111407.patch Reviewed-by: Jose E. Marchesi January-5-2024 Jose E. Marchesi 8.5.0-20.0.2 - Restore support for -mpreserve-args in aarch64 targets, adapted to new AArch64 stack frame layout. Reviewed-by: Cupertino Miranda October-4-2023 David Faust 8.5.0-20.0.1 - Forward-port Oracle patches Reviewed-by: Jose E. Marchesi September-28-2023 David Faust 8.5.0-18.0.6 - Backport additional patches from gcc-9 to fix CVE-2023-4039 patches interaction with backported aarch64 -fstack-clash-protection support. [Orabug 35843962] Reviewed-by: Jose E. Marchesi August-31-2023 Qing Zhao 8.5.0-18.0.5 - CVE-2023-4039 GCC mitigation. Orabug 35751743. Includes removal of aarch64-preserve-args.patch. - CVE-2022-40982 "Intel Downfall" mitigation. Orabug 35751810. Add two patches originally from GCC upstream releases/gcc-11 branch. with major adjustment. gcc11-downfall-disable-gather-in-vec.patch gcc11-downfall-support-mno-gather.patch Reviewed-by: Jose E. Marchesi May-11-2023 Jose E. Marchesi 8.5.0-18.0.2 - Support for -mpreserve-args in aarch64. Orabug 35065765. Reviewed-by: Qing Zhao . March-28-2023 Qing Zhao 8.5.0-18.0.1 - Merge Oracle patches with gcc-8.5.0-18. Reviewed-by: Jose E. Marchesi January-12-2023 Qing Zhao 8.5.0-16.0.1 - Merge oracle patches with gcc-8.5.0-16. November-30-2022 Qing Zhao 8.5.0-15.0.2 - Fix Orabug 34679540 - PROFILE COLLECT BUILD AND WORK LOAD TEST ISSUES IN LINUX ARM64. Removing the buggy patch that has been removed from upstream gcc too: gcc10-pr91971.patch September-28-2022 Qing Zhao 8.5.0-15.0.1 - Merge oracle patches with gcc-8.5.0-15. June-29-2022 Qing Zhao 8.5.0-10.1.0.1 - Merge oracle patches with gcc-8.5.0-10.1.el8_6. Reviewed-by: Jose E. Marchesi May-4-2022 Qing Zhao 8.5.0-10.0.2 - Fix Orabug 34066706 only in OL GCC. report error when there is no PROGRAM_SUMMARY section in .gcda file. Reviewed-by: Jose E. Marchesi April-27-2022 Marek Polacek 8.5.0-10.1 - backport Default widths with -fdec-format-defaults patch (#2079578) March-22-2022 Qing Zhao 8.5.0-10.0.1 - Merge with oracle patches. January-5-2022 Qing Zhao 8.5.0-4.0.2 - Add patches to support marvell on Arm: gcc9-add-support-for-profile-extension.patch gcc10-add-initial-octeontx2-support.patch Reviewed-by: Jose E. Marchesi November-16-2021 Qing Zhao 8.5.0-4.0.1 - Merge oracle patches to security errata 8.5.0-4. Reviewed-by: Jose E. Marchesi October-14-2021 Indu Bhagat 8.5.0-3.0.2 - Fix Orabug 33451471 and backport CTF/BTF enhancements ctfc: Free CTF container elements in ctfc_delete_container () ctf: Do not warn for CTF not supported for GNU GIMPLE ICE in btf_finalize when compiling with -gbtf (PR debug/102507, Orabug 33451471) Reviewed-by: Jose E. Marchesi October-5-2021 Qing Zhao 8.5.0-3.0.1 - Merge the following oracle patches to OL8.5 beta: - Fix an aarch64 compilation error triggered by the oracle patch gcc9-multiple-changes-align.patch on OL8U5 source base. gcc-fix-aarch64-tune-params.patch - Fix Orabug 33281392 Update CTF and BTF support in OL8 GCC This commit brings the support for CTF/BTF debug formats at par with upstream. GCC now generates the CTF/BTF debug information by using the internal DWARF representation. For backward compatibility reasons, OL8 GCC continues to support -gt command line option. (Indu Bhagat 8.4.1-1.0.3) - Add complex divide improvement backport of upstream commit 54f0224d55a1b56dde092460ddf76913670e6efc (Patrick.McGehearty 8.4.1-1.0.2) - Fix Orabug 32301371 - bug using gcov with preserve paths option This is the same bug as GCC bug PR gcov-profile/88994 gcc9-pr88994.patch (Qing Zhao 8.3.1-5.1.0.2) - Fix generation of CTF type records for completed structs referred thru pointers. Orabug 31095790. (Jose E. Marchesi 8.3.1-5.0.4) - Fix Orabug 29838827 - provide an option to adjust the maximum depth of nested #include This is the same bug as gcc upstream PR90581 from Gcc9: gcc9-pr90581.patch - Fix Orabug 29541051 - confusing error message when there is a problem with ASAN_OPTIONS "ERROR: expected '='" This is the same bug as gcc upstream PR89832 from Gcc9: gcc9-pr89832.patch (Qing Zhao 8.3.1-5.0.3) - Update support for CTF Fix Orabug 30833294 GCC generates incorrect CTF for single element arrays Fix Orabug 30808764 CTF generation fails when __attribute__ ((mode (XX))) is used (Indu Bhagat 8.3.1-5.0.2) - Apply ares/neoverse support patches only ifarch aarch64. (Qing Zhao 8.3.1-4.5.0.6) - Add 4 patches from gcc9 to support Arm Ares and Neoverse-N1 for Aarch64 gcc9-add-vec-reverse.patch gcc9-multiple-changes-align.patch gcc9-initial-mcpu-ares-tuning.patch gcc9-add-support-for-neoverse-n1.patch (Indu Bhagat 8.3.1-4.5.0.5) - Update support for CTF Fix Orabug 30778534 gcc should generate CTF for functions at file-scope only Fix Orabug 30779193 CTF generation fails for some flavors of vla Fix Orabug 30784275 Fix issues wtih CTF generation for typedef constructs ctf-3-generation-and-emission-for-a-single-compilation.patch ctf-4-update-ctf-testsuite.patch (Indu Bhagat 8.3.1-4.5.0.4) - Add support for CTF in GCC Fix Orabug 30102948 gcc: Add CTF generation to compiler Fix Orabug 30102949 gcc: Add CTF generation to compiler (aarch64) ctf-1-new-function-lang_GNU_GIMPLE.patch ctf-2-command-line-options-gtLEVEL.patch ctf-3-generation-and-emission-for-a-single-compilation.patch ctf-4-update-ctf-testsuite.patch ctf-5-handle-ctf-sections-when-lto-enabled.patch (Qing Zhao 8.3.1-4.5.0.3) - CVE-2018-12207 / Intel SKX102 OL8 gcc: Intel Mitigation for CVE: CVE-2018-12207 - Allow -flto -Wa,-mbranches-within-32B-boundaries to pass -mbranches-within-32B-boundaries to GNU assembler. Without -lfto, -Wa,-mbranches-within-32B-boundaries to pass -mbranches-within-32B-boundaries to GNU assembler using existing GCC binaries. - Mitigation patch: gcc8-Fix-Wa-with-flto.patch (Qing Zhao 8.3.1-4.5.0.2) - Fix Orabug 29968294 - Heap corruption with fprofile-dir=%p prevents profiling parallel processes, needed for RDBMS: Add patch to fix PR86057 from Gcc9: gcc9-pr86057.patch - Fix Orabug 30044244 - Profile directory concatenated with object file path This is the same bug as gcc upstream PR91971: gcc9-pr85759.patch gcc10-pr91971.patch (Indu Bhagat 8.3.1-4.5.0.1) - Fix Orabug 29599147 - Need -fprofile-dir=%q{VAR} backported to gcc8 This is the similar GCC PR47618, add the fix from GCC9: gcc9-pr47618.patch - Fix Orabug 29272977 - DB SUPPORT: Need way to dump inlining report from GCC Add -fopt-info-inline support from GCC9: gcc9-opt-info-inline.patch - Fix Orabug 29273006 - DB SUPPORT: need way to turn off inlining of global functions Add -flive-patching support from GCC9: gcc9-fipa-reference-addressable.patch gcc9-fipa-stack-alignment.patch gcc9-add-fomit-frame-pointer-to-test.patch gcc9-extend-live-patching-option-handling.patch gcc9-ipa-stack-alignment-386-test.patch - Introduce 'oracle_release' into .spec file. Echo it to gcc/DEV-PHASE. - Backport 17 ampere patches from https://git.theobroma-systems.com/ampere-computing/gcc.git/log/?h=gcc-8_2_0-amp3-branch e18301133ea622f6d6796ded1d15466e70475cf8: Retpoline (Spectre-V2 mitigation) for aarch64. d735f3ae4712f66362326d179b4d7e9332c79677: Revert 2017-10-24 Richard Biener 271e2811e59c0c77fc022fa86a7030f20b4cac8e: Correct the maximum shift amount for shifted 0512749950d927de3dd695f2f2aacdfd30cf32fd: Add CPU support for Ampere Computing's eMAG. c8b87078f9e0714cb9cab602e12a18ceb12df05a: eMAG/Xgene: Procedural cost-model for X-Gene 74610471b3577c5d465c3fd095a65b796b1e074c: Updating cost table for xgene1. ddba1553ac412be5596e6e2962c148032c4cf231: [AArch64] Add Xgene1 prefetch tunings. b7ebb0a10a8900324074070188a0936ed81b28a4: [AArch64] Fix in xgene1_addrcost_table 393dc5c50d55d069f91627bf0be5bab812978850: X-Gene: Adapt tuning struct for GCC 8. b9136d58824af2118c4969c3edb42cad3318b08f: tree-ssa-list-find-pipeline: Add pipelining loads for list finds. 095496dd8a9491a17a9caec173281ad02e559df5: uncse: Added pass to undo common subexpression elimination. a7c8dc238e3656e9d2f9256ee76f933c8d7956fb: loop-prefetcher: Adapt defaults for X-Gene cores. 256307f293f1750851576e14c8a42b696eced2da: tree-ssa-cpp: Don't crash on SSA names without definition stmts. 6e32f53be4f6733f6bfe267ad2337aecaf4047f6: Introduce new option -funroll-more. 1ac2485a2fced091a5cce6343fe6a6337f850e73: New option to bypass aliasing-checks. 66d7d833bece61e58998ad53a609cd32e3ee4fad: cfgloopmanip: Allow forced creation of loop preheaders. c4f89d50e200538b1ac8889801705300e0b27ef2: Add new pass to optimise loops. [8.5.0-23] - rebuild for CVE-2020-11023 (RHEL-78274) From el-errata at oss.oracle.com Thu Feb 13 14:42:37 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:37 -0800 Subject: [El-errata] ELSA-2025-20095 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20095 http://linux.oracle.com/errata/ELSA-2025-20095.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-core-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-debug-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-debug-core-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-debug-devel-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-debug-modules-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-debug-modules-extra-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-devel-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-doc-5.15.0-305.176.4.el8uek.noarch.rpm kernel-uek-modules-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-modules-extra-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-container-5.15.0-305.176.4.el8uek.x86_64.rpm kernel-uek-container-debug-5.15.0-305.176.4.el8uek.x86_64.rpm aarch64: bpftool-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-core-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-debug-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-debug-core-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-debug-devel-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-debug-modules-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-debug-modules-extra-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-devel-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-doc-5.15.0-305.176.4.el8uek.noarch.rpm kernel-uek-modules-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-modules-extra-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-container-5.15.0-305.176.4.el8uek.aarch64.rpm kernel-uek-container-debug-5.15.0-305.176.4.el8uek.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.15.0-305.176.4.el8uek.src.rpm Related CVEs: CVE-2024-26595 CVE-2024-38538 CVE-2024-38556 CVE-2024-39494 CVE-2024-40906 CVE-2024-40939 CVE-2024-41080 CVE-2024-42073 CVE-2024-42138 CVE-2024-42268 CVE-2024-42315 CVE-2024-43864 CVE-2024-44940 CVE-2024-44949 CVE-2024-46809 CVE-2024-46841 CVE-2024-46871 CVE-2024-47730 CVE-2024-49950 CVE-2024-49974 CVE-2024-49996 CVE-2024-49998 CVE-2024-50036 CVE-2024-50055 CVE-2024-50121 CVE-2024-50241 CVE-2024-50261 CVE-2024-50264 CVE-2024-50265 CVE-2024-50267 CVE-2024-50268 CVE-2024-50269 CVE-2024-50273 CVE-2024-50275 CVE-2024-50278 CVE-2024-50279 CVE-2024-50282 CVE-2024-50283 CVE-2024-50287 CVE-2024-50290 CVE-2024-50292 CVE-2024-50295 CVE-2024-50296 CVE-2024-50299 CVE-2024-50301 CVE-2024-50302 CVE-2024-53052 CVE-2024-53061 CVE-2024-53063 CVE-2024-53066 CVE-2024-53073 CVE-2024-53088 CVE-2024-53096 CVE-2024-53099 CVE-2024-53101 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53113 CVE-2024-53119 CVE-2024-53120 CVE-2024-53122 CVE-2024-53125 CVE-2024-53129 CVE-2024-53130 CVE-2024-53131 CVE-2024-53135 CVE-2024-53140 CVE-2024-53141 CVE-2024-53142 CVE-2024-53145 CVE-2024-53146 CVE-2024-53148 CVE-2024-53150 CVE-2024-53151 CVE-2024-53155 CVE-2024-53156 CVE-2024-53157 CVE-2024-53158 CVE-2024-53161 CVE-2024-53164 CVE-2024-53165 CVE-2024-53171 CVE-2024-53172 CVE-2024-53173 CVE-2024-53174 CVE-2024-53180 CVE-2024-53181 CVE-2024-53183 CVE-2024-53184 CVE-2024-53194 CVE-2024-53197 CVE-2024-53198 CVE-2024-53214 CVE-2024-53215 CVE-2024-53217 CVE-2024-53227 CVE-2024-53237 CVE-2024-53239 CVE-2024-53240 CVE-2024-53241 CVE-2024-56531 CVE-2024-56532 CVE-2024-56533 CVE-2024-56539 CVE-2024-56548 CVE-2024-56558 CVE-2024-56562 CVE-2024-56567 CVE-2024-56568 CVE-2024-56569 CVE-2024-56570 CVE-2024-56571 CVE-2024-56572 CVE-2024-56574 CVE-2024-56575 CVE-2024-56576 CVE-2024-56578 CVE-2024-56581 CVE-2024-56586 CVE-2024-56587 CVE-2024-56589 CVE-2024-56590 CVE-2024-56593 CVE-2024-56594 CVE-2024-56595 CVE-2024-56596 CVE-2024-56597 CVE-2024-56598 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56610 CVE-2024-56614 CVE-2024-56615 CVE-2024-56616 CVE-2024-56619 CVE-2024-56622 CVE-2024-56623 CVE-2024-56626 CVE-2024-56627 CVE-2024-56629 CVE-2024-56630 CVE-2024-56633 CVE-2024-56634 CVE-2024-56636 CVE-2024-56637 CVE-2024-56640 CVE-2024-56642 CVE-2024-56643 CVE-2024-56644 CVE-2024-56648 CVE-2024-56650 CVE-2024-56659 CVE-2024-56661 CVE-2024-56662 CVE-2024-56670 CVE-2024-56679 CVE-2024-56681 CVE-2024-56688 CVE-2024-56690 CVE-2024-56691 CVE-2024-56693 CVE-2024-56694 CVE-2024-56698 CVE-2024-56700 CVE-2024-56701 CVE-2024-56704 CVE-2024-56705 CVE-2024-56708 CVE-2024-56715 CVE-2024-56716 CVE-2024-56723 CVE-2024-56724 CVE-2024-56726 CVE-2024-56728 CVE-2024-56739 CVE-2024-56741 CVE-2024-56745 CVE-2024-56746 CVE-2024-56747 CVE-2024-56748 CVE-2024-56754 CVE-2024-56756 CVE-2024-56759 CVE-2024-56763 CVE-2024-56766 CVE-2024-56767 CVE-2024-56769 Description of changes: [5.15.0-305.176.4.el8uek] - x86/asm: Make serialize() always_inline (Juergen Gross) - hwmon: (tmp513) Fix division of negative numbers (David Lechner) - Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (Pratyush Yadav) - Revert "regmap: detach regmap from dev on regmap_exit" (Greg Kroah-Hartman) - Revert "drm/amdgpu: rework resume handling for display (v2)" (Greg Kroah-Hartman) - Revert "PCI: Use preserve_config in place of pci_flags" (Terry Tritton) - virtio-net: synchronize probe with ndo_set_features (Jason Wang) [Orabug: 36637822] - virtio-net: synchronize operstate with admin state on up/down (Jason Wang) [Orabug: 36637822] - virtio: allow driver to disable the configure change notification (Jason Wang) [Orabug: 36637822] - virtio: rename virtio_config_enabled to virtio_config_core_enabled (Jason Wang) [Orabug: 36637822] - mlxsw: pci: Fix driver initialization with Spectrum-4 (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Fix driver initialization with old firmware (Ido Schimmel) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128 (Maksim Kiselev) [Orabug: 36811057] - net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5e: Fix MACsec state loss upon state update in offload path (Emeel Hakim) [Orabug: 36811057] - net/mlx5e: Change the warning when ignore_flow_level is not supported (Jianbo Liu) [Orabug: 36811057] - Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (Gavin Li) [Orabug: 36811057] - IB/mlx5: Don't expose debugfs entries for RRoCE general parameters if not supported (Mark Zhang) [Orabug: 36811057] - net/mlx5e: Ignore IPsec replay window values on sender side (Leon Romanovsky) [Orabug: 36811057] - net/mlx5e: Allow software parsing when IPsec crypto is enabled (Leon Romanovsky) [Orabug: 36811057] - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Bridge, fix multicast packets sent to uplink (Moshe Shemesh) [Orabug: 36811057] - net/mlx5: Fix a WARN upon a callback command failure (Yishai Hadas) [Orabug: 36811057] - net/mlx5e: Fix peer flow lists handling (Vlad Buslov) [Orabug: 36811057] - net/mlx5: Fix query of sd_group field (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed) [Orabug: 36811057] - selftests: mlxsw: qos_pfc: Remove wrong description (Amit Cohen) [Orabug: 36811057] - mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path (Ido Schimmel) [Orabug: 36811057] - gpio: mlxbf3: add an error code check in mlxbf3_gpio_probe (Su Hui) [Orabug: 36811057] - vdpa/mlx5: Add mkey leak detection (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Introduce reference counting to mrs (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Use vq suspend/resume during .set_map (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Mark vq state for modification in hw vq (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Mark vq addrs for modification in hw vq (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Introduce per vq and device resume (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Allow modifying multiple vq fields in one modify command (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Expose resumable vq capability (Dragos Tatulea) [Orabug: 36811057] - Revert "mlx5 updates 2023-12-20" (Jakub Kicinski) [Orabug: 36811057] - net/mlx5: DPLL, Implement fractional frequency offset get pin op (Jiri Pirko) [Orabug: 36811057] - net/mlx5: DPLL, Use struct to get values from mlx5_dpll_synce_status_get() (Jiri Pirko) [Orabug: 36811057] - net: macsec: move sci_to_cpu to macsec header (Radu Pirea (NXP OSS)) [Orabug: 36811057] - net/mlx5: Implement management PF Ethernet profile (Armen Ratner) [Orabug: 36811057] - net/mlx5: Enable SD feature (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Block TLS device offload on combined SD netdev (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Support per-mdev queue counter (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Support cross-vhca RSS (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Let channels be SD-aware (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Create EN core HW resources for all secondary devices (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Create single netdev per SD group (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Add informative prints in kernel log (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement steering for primary and secondaries (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement devcom communication and primary election (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement basic query and instantiation (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Introduce SD lib (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Fix query of sd_group field (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed) [Orabug: 36811057] - mlxsw: spectrum_fid: Set NVE flood profile as part of FID configuration (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an "any" packet type (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add nve_flood_prf_id field to SFMR (Petr Machata) [Orabug: 36811057] - net/mlx5: DR, Use swap() instead of open coding it (Jiapeng Chong) [Orabug: 36811057] - net/mlx5: devcom, Add component size getter (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Decouple CQ from priv (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Add wrapping for auxiliary_driver ops and remove unused args (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Statify function mlx5e_monitor_counter_arm (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Move TISes from priv to mdev HW resources (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Remove TLS-specific logic in generic create TIS API (Tariq Toukan) [Orabug: 36811057] - net/mlx5: fs, Command to control TX flow table root (Tariq Toukan) [Orabug: 36811057] - net/mlx5: fs, Command to control L2TABLE entry silent mode (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Expose Management PCIe Index Register (MPIR) (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Add mlx5_ifc bits used for supporting single netdev Socket-Direct (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Manage ICM type of SW encap (Shun Hao) [Orabug: 36811057] - RDMA/mlx5: Support handling of SW encap ICM area (Shun Hao) [Orabug: 36811057] - net/mlx5: Introduce indirect-sw-encap ICM properties (Shun Hao) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: Use logical OR instead of bitwise OR in dwcmshc_probe() (Nathan Chancellor) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: Add support for T-Head TH1520 (Drew Fustini) [Orabug: 36811057] - mmc: sdhci: add __sdhci_execute_tuning() to header (Drew Fustini) [Orabug: 36811057] - mlxsw: spectrum: Use CFF mode where available (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add support for rFID family in CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add a family for bridge FIDs in CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Initialize flood profiles in CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add profile_id to flood profile (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an object to keep flood profiles (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add hooks for RSP table maintenance (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add a not-UC packet type (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op for packing SFMR (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op to get PGT address of a FID (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op to get PGT allocation size (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op for flood table initialization (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Move mlxsw_sp_fid_flood_table_init() up (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Make mlxsw_sp_fid_ops.setup return an int (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Split a helper out of mlxsw_sp_fid_flood_table_mid() (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Rename FID ops, families, arrays (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Privatize FID families (Petr Machata) [Orabug: 36811057] - mlxsw: pci: Fix missing error checking (Ido Schimmel) [Orabug: 36811057] - mlxsw: spectrum_router: Call RIF setup before obtaining FID (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_router: Add a helper to get subport number from a RIF (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Extract SFMR packing into a helper (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Drop unnecessary conditions (Petr Machata) [Orabug: 36811057] - mlxsw: pci: Permit enabling CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: core, pci: Add plumbing related to CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add to SFMR register the fields related to CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Extract flood-mode specific part of mlxsw_reg_sfmr_pack() (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Drop unnecessary writes from mlxsw_reg_sfmr_pack() (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Mark SFGC & some SFMR fields as reserved in CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add Switch FID Flooding Profiles Register (Petr Machata) [Orabug: 36811057] - mlxsw: resources: Add max_cap_nve_flood_prf (Petr Machata) [Orabug: 36811057] - mlxsw: cmd: Add MLXSW_CMD_MBOX_CONFIG_PROFILE_FLOOD_MODE_CFF (Petr Machata) [Orabug: 36811057] - mlxsw: cmd: Add cmd_mbox.query_fw.cff_support (Petr Machata) [Orabug: 36811057] - EDAC/bluefield: Convert to platform remove callback returning void (Uwe Kleine-K?nig) [Orabug: 36811057] - selftests: mlxsw: Add PCI reset test (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Implement PCI reset handlers (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Add support for new reset flow (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Move software reset code to a separate function (Amit Cohen) [Orabug: 36811057] - mlxsw: pci: Rename mlxsw_pci_sw_reset() (Amit Cohen) [Orabug: 36811057] - mlxsw: Extend MRSR pack() function to support new commands (Amit Cohen) [Orabug: 36811057] - net/mlx5e: Remove early assignment to netdev->features (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Add local loopback counter to vport rep stats (Or Har-Toov) [Orabug: 36811057] - net/mlx5: Query maximum frequency adjustment of the PTP hardware clock (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Convert scaled ppm values outside the s32 range for PHC frequency adjustments (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Initialize clock->ptp_info inside mlx5_init_timer_clock (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Refactor real time clock operation checks for PHC (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5e: Access array with enum values instead of magic numbers (Gal Pressman) [Orabug: 36811057] - net/mlx5: simplify mlx5_set_driver_version string assignments (Justin Stitt) [Orabug: 36811057] - net/mlx5: Annotate struct mlx5_flow_handle with __counted_by (Kees Cook) [Orabug: 36811057] - net/mlx5: Annotate struct mlx5_fc_bulk with __counted_by (Kees Cook) [Orabug: 36811057] - net/mlx5e: Some cleanup in mlx5e_tc_stats_matchall() (Amir Tzin) [Orabug: 36811057] - net/mlx5: Allow sync reset flow when BF MGT interface device is present (Moshe Shemesh) [Orabug: 36811057] - net/mlx5: print change on SW reset semaphore returns busy (Moshe Shemesh) [Orabug: 36811057] - vdpa/mlx5: clean up indenting in handle_ctrl_vlan() (Dan Carpenter) [Orabug: 36811057] - vdpa/mlx5: fix error code for deleting vlan (Dan Carpenter) [Orabug: 36811057] - vdpa/mlx5: Fix syntax errors in comments (Xiang wangx) [Orabug: 36811057] - macsec: Fix use-after-free while sending the offloading packet (Jianbo Liu) [Orabug: 37268700] {CVE-2024-50261} - xfrm: Export symbol xfrm_dev_state_delete. (Steffen Klassert) [Orabug: 37357287] - xfrm: Fix unregister netdevice hang on hardware offload. (Steffen Klassert) [Orabug: 37357287] - xfrm: fix a data-race in xfrm_lookup_with_ifid() (Eric Dumazet) [Orabug: 37357287] - xfrm: generalize xdo_dev_state_update_curlft to allow statistics update (Leon Romanovsky) [Orabug: 37357287] - xfrm: copy_to_user_state fetch offloaded SA packets/bytes statistics (Raed Salem) [Orabug: 37357287] - xfrm: annotate data-race around use_time (Eric Dumazet) [Orabug: 37357287] - xfrm: consistently use time64_t in xfrm_timer_handler() (Eric Dumazet) [Orabug: 37357287] - cpufreq: intel_pstate: Update Balance-performance EPP for Granite Rapids (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Update Balance performance EPP for Emerald Rapids (Pedro Henrique Kopper) [Orabug: 37383554] - cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Update Meteor Lake EPPs (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Switch to new Intel CPU model defines (Tony Luck) [Orabug: 37383554] - cpufreq: Switch to new Intel CPU model defines (Tony Luck) [Orabug: 37383554] - x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h (Tony Luck) [Orabug: 37383554] - x86/cpu: Add model number for another Intel Arrow Lake mobile processor (Tony Luck) [Orabug: 37383554] - cpufreq: intel_pstate: Update default EPPs for Meteor Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Allow model specific EPPs (Srinivas Pandruvada) [Orabug: 37383554] - x86/cpu: Add model number for Intel Clearwater Forest processor (Tony Luck) [Orabug: 37383554] - cpufreq: intel_pstate: Update hybrid scaling factor for Meteor Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Prioritize firmware-provided balance performance EPP (Srinivas Pandruvada) [Orabug: 37383554] - x86/cpu: Add model number for Intel Arrow Lake mobile processor (Tony Luck) [Orabug: 37383554] - x86/cpu: Update Hybrids (Peter Zijlstra) [Orabug: 37383554] - cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Enable HWP IO boost for all servers (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Use firmware default EPP (Srinivas Pandruvada) [Orabug: 37383554] - net/mlx5: Add a timeout to acquire the command queue semaphore (Akiva Goldberger) [Orabug: 37388415] - PCI: Fix pci_enable_acs() support for the ACS quirks (Jason Gunthorpe) [Orabug: 37477375] - PCI: Clear Secondary Status errors after enumeration (Vidya Sagar) [Orabug: 37477375] - PCI/AER: Configure ECRC only if AER is native (Vidya Sagar) [Orabug: 37477375] - PCI: Extend ACS configurability (Vidya Sagar) [Orabug: 37477375] - NFSv4/pNFS: Do layout state recovery upon reboot (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Remove redundant call to unhash the layout (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Give nfs4_proc_layoutreturn() a flags argument (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Retry the layout return later in case of a timeout or reboot (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Handle server reboots in pnfs_poc_release() (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Add a helper to defer failed layoutreturn calls (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Add support for the PNFS_LAYOUT_FILE_BULK_RETURN flag (Trond Myklebust) [Orabug: 37477755] - pNFS: Add a flag argument to pnfs_destroy_layouts_byclid() (Trond Myklebust) [Orabug: 37477755] - NFSv4: Clean up encode_nfs4_stateid() (Trond Myklebust) [Orabug: 37477755] - NFSv4.1: constify the stateid argument in nfs41_test_stateid() (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Remove redundant list check (Trond Myklebust) [Orabug: 37477755] - uek-rpm: Enable CONFIG_SENSORS_ARM_SCMI and CONFIG_MVL_MHU (Thomas Tai) [Orabug: 37498899] [5.15.0-305.176.3.el8uek] - LTS version: v5.15.176 (Vijayendra Suman) - mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (Seiji Nishikawa) - dt-bindings: display: adi,adv7533: Drop single lane support (Biju Das) - drm: adv7511: Drop dsi single lane support (Biju Das) - net/sctp: Prevent autoclose integer overflow in sctp_association_init() (Nikolay Kuratov) - sky2: Add device ID 11ab:4373 for Marvell 88E8075 (Pascal Hambourg) - pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (Evgenii Shatokhin) - RDMA/uverbs: Prevent integer overflow issue (Dan Carpenter) - kcov: mark in_softirq_really() as __always_inline (Arnd Bergmann) - modpost: fix the missed iteration for the max bit in do_input() (Masahiro Yamada) - modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (Masahiro Yamada) - usb: xhci: Avoid queuing redundant Stop Endpoint commands (Michal Pecio) - ARC: build: Try to guess GCC variant of cross compiler (Leon Romanovsky) - irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (Uros Bizjak) - net: usb: qmi_wwan: add Telit FE910C04 compositions (Daniele Palmas) - bpf: fix potential error return (Anton Protopopov) - sound: usb: format: don't warn that raw DSD is unsupported (Adrian Ratiu) - sound: usb: enable DSD output for ddHiFi TC44C (Adrian Ratiu) - btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (Filipe Manana) - drm/amdkfd: Correct the migration DMA map direction (Prike Liang) - wifi: mac80211: wake the queues in case of failure in resume (Emmanuel Grumbach) - btrfs: sysfs: fix direct super block member reads (Qu Wenruo) - btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit (Anand Jain) - btrfs: fix use-after-free when COWing tree bock and tracing is enabled (Filipe Manana) - btrfs: rename and export __btrfs_cow_block() (Filipe Manana) - ila: serialize calls to nf_register_net_hooks() (Eric Dumazet) - af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet) - af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet) - net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (Maciej S. Szmigiero) - net: restrict SO_REUSEPORT to inet sockets (Eric Dumazet) - RDMA/rtrs: Ensure 'ib_sge list' is accessible (Li Zhijian) - net: mv643xx_eth: fix an OF node reference leak (Joe Hattori) - eth: bcmsysport: fix call balance of priv->clk handling routines (Vitalii Mordan) - ALSA: usb-audio: US16x08: Initialize array before use (Tanya Agarwal) - net: llc: reset skb->transport_header (Antonio Pastor) - netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext (Pablo Neira Ayuso) - drm/i915/dg1: Fix power gate sequence. (Rodrigo Vivi) - netrom: check buffer length before accessing it (Ilya Shchipletsov) - net: fix memory leak in tcp_conn_request() (Wang Liang) - net: stmmac: restructure the error path of stmmac_probe_config_dt() (Joe Hattori) - net: stmmac: don't create a MDIO bus if unnecessary (Andrew Halaney) - net: stmmac: platform: provide devm_stmmac_probe_config_dt() (Bartosz Golaszewski) - RDMA/hns: Fix missing flush CQE for DWQE (Chengchang Tang) - RDMA/hns: Fix warning storm caused by invalid input in IO path (Chengchang Tang) - RDMA/hns: Fix mapping error of zero-hop WQE buffer (wenglianfa) - RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() (Yunsheng Lin) - RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() (Yixing Liu) - drm/bridge: adv7511_audio: Update Audio InfoFrame properly (Stefan Ekenberg) - RDMA/bnxt_re: Fix the locking while accessing the QP table (Selvin Xavier) - RDMA/bnxt_re: Fix max_qp_wrs reported (Selvin Xavier) - RDMA/bnxt_re: Fix reporting hw_ver in query_device (Kalesh AP) - RDMA/bnxt_re: Add check for path mtu in modify_qp (Saravanan Vajravel) - RDMA/mlx5: Enforce same type port association for multiport RoCE (Patrisious Haddad) - xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic (Mathias Nyman) - usb: xhci: Limit Stop Endpoint retries (Michal Pecio) - xhci: retry Stop Endpoint on buggy NEC controllers (Michal Pecio) - thunderbolt: Add support for Intel Panther Lake-M/P (Mika Westerberg) - thunderbolt: Add support for Intel Lunar Lake (Mika Westerberg) - thunderbolt: Add Intel Barlow Ridge PCI ID (Mika Westerberg) - thunderbolt: Add support for Intel Meteor Lake (Mika Westerberg) - thunderbolt: Add support for Intel Raptor Lake (George D Sworo) - tracing: Have process_string() also allow arrays (Steven Rostedt) - selinux: ignore unknown extended permissions (Thi?baud Weksteen) - x86/hyperv: Fix hv tsc page based sched_clock for hibernation (Naman Jain) - net: dsa: improve shutdown sequence (Vladimir Oltean) - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (Yang Erkun) - btrfs: avoid monopolizing a core when activating a swap file (Filipe Manana) - power: supply: gpio-charger: Fix set charge current limits (Dimitri Fedrau) - tracing: Prevent bad count for tracing_cpumask_write (Lizhi Xu) - tracing: Constify string literal data member in struct trace_event_call (Christian G?ttsche) - ksmbd: fix racy issue from session lookup and expire (Namjae Jeon) - lib: stackinit: hide never-taken branch from compiler (Kees Cook) - drm/dp_mst: Verify request type in the corresponding down message reply (Imre Deak) - arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs (Catalin Marinas) - arm64: mm: Rename asid2idx() to ctxid2asid() (Yunfeng Ye) - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write (Jordy Zomer) - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read (Jordy Zomer) - drm/dp_mst: Fix MST sideband message body length check (Imre Deak) - bpf: Check validity of link->type in bpf_link_show_fdinfo() (Hou Tao) - MIPS: Probe toolchain support of -msym32 (Jiaxun Yang) - vmalloc: fix accounting with i915 (Matthew Wilcox (Oracle)) - virtio-blk: don't keep queue frozen during system suspend (Ming Lei) - scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (Cathy Avery) - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time (Ranjan Kumar) - platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (Armin Wolf) - regmap: Use correct format specifier for logging range errors (Mark Brown) - ALSA: hda/conexant: fix Z60MR100 startup pop issue (bo liu) - scsi: megaraid_sas: Fix for a potential deadlock (Tomas Henzl) - scsi: qla1280: Fix hw revision numbering for ISP1020/1040 (Magnus Lindholm) - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 (James Hilliard) - tracing/kprobe: Make trace_kprobe's module callback called after jump_label update (Masami Hiramatsu (Google)) - mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter) - dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (Chen Ridong) - dmaengine: dw: Select only supported masters for ACPI devices (Andy Shevchenko) - dmaengine: mv_xor: fix child node refcount handling in early exit (Javier Carrasco) - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (Zijun Hu) - phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (Zijun Hu) - phy: core: Fix that API devm_phy_put() fails to release the phy (Zijun Hu) - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (Zijun Hu) - phy: core: Fix an OF node refcount leakage in _of_phy_get() (Zijun Hu) - mtd: rawnand: arasan: Fix missing de-registration of NAND (Maciej Andrzejewski) - mtd: rawnand: arasan: Fix double assertion of chip-select (Maciej Andrzejewski) - mtd: diskonchip: Cast an operand to prevent potential overflow (Zichen Xie) - nfsd: restore callback functionality for NFSv4.0 (NeilBrown) - bpf: Check negative offsets in __bpf_skb_min_len() (Cong Wang) - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection (Zijian Zhang) - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() (Cong Wang) - mm/vmstat: fix a W=1 clang compiler warning (Bart Van Assche) - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (Nikita Zhandarovich) - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update (Michel D?nzer) - epoll: Add synchronous wakeup support for ep_poll_callback (Xuewen Yan) - ceph: validate snapdirname option length when mounting (Ilya Dryomov) - of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (Zijun Hu) - of: Fix error path in of_parse_phandle_with_args_map() (Herve Codina) - udmabuf: also check for F_SEAL_FUTURE_WRITE (Jann Horn) - nilfs2: prevent use of deleted inode (Edward Adam Davis) - of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu) - NFS/pnfs: Fix a live lock between recalled layouts and layoutget (Trond Myklebust) - tracing: Add "%s" check in test_event_printk() (Steven Rostedt) - tracing: Add missing helper functions in event pointer dereference check (Steven Rostedt) - tracing: Fix test_event_printk() to process entire print argument (Steven Rostedt) - KVM: x86: Play nice with protected guests in complete_hypercall_exit() (Sean Christopherson) - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (Michael Kelley) - btrfs: tree-checker: reject inline extent items with 0 ref count (Qu Wenruo) - zram: refuse to use zero sized block device as backing device (Kairui Song) - sh: clk: Fix clk_enable() to return 0 on NULL clk (Geert Uytterhoeven) - hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (Murad Masimov) - hwmon: (tmp513) Fix Current Register value interpretation (Murad Masimov) - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (Murad Masimov) - hwmon: (tmp513) Use SI constants from units.h (Andy Shevchenko) - hwmon: (tmp513) Simplify with dev_err_probe() (Andy Shevchenko) - hwmon: (tmp513) Don't use "proxy" headers (Andy Shevchenko) - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (Ville Syrj?l?) - USB: serial: option: add Telit FE910C04 rmnet compositions (Daniele Palmas) - USB: serial: option: add MediaTek T7XX compositions (Jack Wu) - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (Mank Wang) - USB: serial: option: add MeiG Smart SLM770A (Michal Hrusecky) - USB: serial: option: add TCL IK512 MBIM & ECM (Daniel Swanemar) - efivarfs: Fix error on non-existent file (James Bottomley) - i2c: riic: Always round-up when calculating bus period (Geert Uytterhoeven) - chelsio/chtls: prevent potential integer overflow on 32bit (Dan Carpenter) - mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (Prathamesh Shete) - net: mdiobus: fix an OF node reference leak (Joe Hattori) - netfilter: ipset: Fix for recursive locking warning (Phil Sutter) - net: ethernet: bgmac-platform: fix an OF node reference leak (Joe Hattori) - net: hinic: Fix cleanup in create_rxqs/txqs() (Dan Carpenter) - ionic: use ee->offset when returning sprom data (Shannon Nelson) - ionic: Fix netdev notifier unregister on failure (Brett Creeley) - netdevsim: prevent bad user input in nsim_dev_health_break_write() (Eric Dumazet) - net/smc: check return value of sock_recvmsg when draining clc data (Guangguan Wang) - net/smc: check smcd_v2_ext_offset when receiving proposal msg (Guangguan Wang) - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (Guangguan Wang) - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll (Guangguan Wang) - erofs: fix incorrect symlink detection in fast symlink (Gao Xiang) - i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun) - usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled (Peng Hongchi) - MIPS: Loongson64: DTS: Fix msi node for ls7a (Jiaxun Yang) - PCI: Add ACS quirk for Broadcom BCM5760X NIC (Ajit Khaparde) - PCI: vmd: Create domain symlink before pci_bus_add_devices() (Jiwei Sun) - ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (Pierre-Louis Bossart) - usb: cdns3: Add quirk flag to enable suspend residency (Roger Quadros) - ALSA: usb: Fix UBSAN warning in parse_audio_unit() (Takashi Iwai) - PCI/AER: Disable AER service on suspend (Kai-Heng Feng) - PCI: Use preserve_config in place of pci_flags (Vidya Sagar) - net: sched: fix ordering of qlen adjustment (Lion Ackermann) - LTS version: v5.15.175 (Vijayendra Suman) - x86/static-call: fix 32-bit build (Juergen Gross) - ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter) - x86/xen: remove hypercall page (Juergen Gross) - x86/xen: use new hypercall functions instead of hypercall page (Juergen Gross) - x86/xen: add central hypercall functions (Juergen Gross) - x86/xen: don't do PV iret hypercall through hypercall page (Juergen Gross) - x86/static-call: provide a way to do very early static-call updates (Juergen Gross) - objtool/x86: allow syscall instruction (Juergen Gross) - x86: make get_cpu_vendor() accessible from Xen code (Juergen Gross) - xen/netfront: fix crash when removing device (Juergen Gross) - Revert "parisc: fix a possible DMA corruption" (Greg Kroah-Hartman) - tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov) - bpf: sync_linked_regs() must preserve subreg_def (Eduard Zingerman) - blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor) - ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin) - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann) - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann) - net/sched: netem: account for backlog updates from child qdisc (Martin Ottens) - Documentation: PM: Clarify pm_runtime_resume_and_get() return value (Paul Barker) - qca_spi: Make driver probing reliable (Stefan Wahren) - qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren) - cxgb4: use port number to set mac addr (Anumula Murali Mohan Reddy) - ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen) - net: sparx5: fix the maximum frame length register (Daniel Machon) - net: sparx5: fix FDMA performance issue (Daniel Machon) - net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) - ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init() (Thomas Wei?schuh) - ptp: kvm: Use decrypted memory in confidential guest on x86 (Jeremi Piotrowski) - selftests: mlxsw: sharedbuffer: Remove duplicate test cases (Danielle Ratson) - selftests: mlxsw: sharedbuffer: Remove h1 ingress test case (Danielle Ratson) - tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) - batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel) - batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel) - batman-adv: Do not send uninitialized TT changes (Remi Pommarel) - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (Suraj Sonawane) - exfat: fix potential deadlock on __exfat_get_dentry_set (Sungjong Seo) - virtio/vsock: Fix accept_queue memory leak (Michal Luczaj) - bpf, sockmap: Fix update element with same (Michal Luczaj) - xfs: fix scrub tracepoints when inode-rooted btrees are involved (Darrick J. Wong) - xfs: return from xfs_symlink_verify early on V4 filesystems (Darrick J. Wong) - xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong) - xfs: update btree keys correctly when _insrec splits an inode root block (Darrick J. Wong) - drm/i915: Fix memory leak by correcting cache object name in error handler (Jiasheng Jiang) - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) - usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan) - usb: dwc2: Fix HCD port connection race (Stefan Wahren) - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren) - usb: dwc2: Fix HCD resume (Stefan Wahren) - ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori) - usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson) - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (Jaakko Salo) - tcp: check space before adding MPTCP SYN options (MoYuanhao) - LTS version: v5.15.174 (Vijayendra Suman) - Bluetooth: hci_core: Fix calling mgmt_device_connected (Luiz Augusto von Dentz) - net/smc: Fix af_ops of child socket pointing to released memory (Karsten Graul) - media: venus: vdec: fixed possible memory leak issue (Ameer Hamza) - serial: amba-pl011: fix build regression (Arnd Bergmann) - drm/amdgpu: rework resume handling for display (v2) (Alex Deucher) - drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (Wayne Lin) - net: dsa: microchip: correct KSZ8795 static MAC table access (Tristram Ha) - Bluetooth: L2CAP: Fix uaf in l2cap_connect (Luiz Augusto von Dentz) - arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (Mark Rutland) - arm64/sve: Discard stale CPU state when handling SVE traps (Mark Brown) - gve: Fixes for napi_poll when budget is 0 (Ziwei Xiao) - scsi: core: Fix scsi_mode_select() buffer length handling (Damien Le Moal) - Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun) - fou: remove warn in gue_gro_receive on unsupported protocol (Willem de Bruijn) - ima: Fix use-after-free on a dentry's dname.name (Stefan Berger) - crypto: hisilicon/qm - inject error before stopping queue (Weili Qian) - drm/amd/display: Check BIOS images before it is used (Alex Hung) - mmc: mtk-sd: Fix error handle of probe function (Andy-ld Lu) - xhci: dbc: Fix STALL transfer event handling (Mathias Nyman) - mm/damon/vaddr: fix issue in damon_va_evenly_split_region() (Zheng Yejian) - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (SeongJae Park) - jffs2: Fix rtime decompressor (Richard Weinberger) - jffs2: Prevent rtime decompress memory corruption (Kinsey Moore) - KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang) - KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang) - KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang) - tracing/eprobe: Fix to release eprobe when failed to add dyn_event (Masami Hiramatsu (Google)) - btrfs: fix missing snapshot drew unlock when root is dead during swap activation (Filipe Manana) - sched/core: Prevent wakeup of ksoftirqd during idle load balance (K Prateek Nayak) - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy (K Prateek Nayak) - sched/fair: Add NOHZ balancer flag for nohz.next_balance updates (Valentin Schneider) - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func() (K Prateek Nayak) - modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner) - modpost: Include '.text.*' in TEXT_SECTIONS (Nathan Chancellor) - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman) - powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman) - MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a (Xi Ruoyao) - usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang) - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li) - PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou) - PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch) - PCI: Detect and trust built-in Thunderbolt chips (Esther Shimanovich) - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (Jarkko Nikula) - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) - nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang) - pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n) - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara) - scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara) - leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) - scsi: hisi_sas: Add cond_resched() for no forced preemption model (Yihang Li) - tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak) - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU (Esben Haabendal) - netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao) - net/neighbor: clear error in case strict check is not set (Jakub Kicinski) - rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov) - ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman) - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (Luiz Augusto von Dentz) - wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) - wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong) - drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (Victor Zhao) - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) - jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) - jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) - jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) - dma-debug: fix a possible deadlock on radix_lock (Levi Yun) - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (Lang Yu) - drm/amdgpu: Dereference the ATCS ACPI buffer (Prike Liang) - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (Victor Lu) - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (Manikandan Muralidharan) - wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev) - wifi: ath5k: add PCI ID for SX76X (Rosen Penev) - net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) - net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) - net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) - af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) - net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina) - net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman) - net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman) - samples/bpf: Fix a resource leak (Zhu Jun) - r8169: don't apply UDP padding quirk on RTL8126A (Heiner Kallweit) - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev) - drm/mcde: Enable module autoloading (Liao Chen) - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a) - drm/vc4: hvs: Set AXI panic modes for the HVS (Dave Stevenson) - soc: imx8m: Probe the SoC driver as platform driver (Marek Vasut) - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar) - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given) - kcsan: Turn report_filterlist_lock into a raw_spinlock (Marco Elver) - kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all() (Mark Brown) - btrfs: avoid unnecessary device path update for the same device (Qu Wenruo) - s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter) - epoll: annotate racy check (Christian Brauner) - iommu/arm-smmu: Defer probe of clients after smmu device bound (Pratyush Brahma) - ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang) - mmc: core: Further prevent card detect during shutdown (Ulf Hansson) - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (Hans de Goede) - regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav) - xsk: fix OOB map writes when deleting elements (Maciej Fijalkowski) - dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig) - bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che) - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) - scsi: ufs: core: sysfs: Prevent div by zero (Gwendal Grignou) - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap) - scsi: qla2xxx: Fix use after free on unload (Quinn Tran) - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy) - scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran) - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (Sahas Leelodharry) - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (Nazar Bilinskyi) - ALSA: usb-audio: add mixer mapping for Corsair HS80 (Marie Ramlow) - arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (Mark Rutland) - tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu) - can: dev: can_set_termination(): allow sleeping GPIOs (Marc Kleine-Budde) - watchdog: rti: of: honor timeout-sec property (Alexander Sverdlin) - HID: wacom: fix when get product name maybe null pointer (WangYuli) - bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao) - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao) - ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) - drm/v3d: Enable Performance Counters before clearing them (Ma?ra Canal) - spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao) - tools: Override makefile ARCH variable if defined, but empty (Bj?rn T?pel) - ALSA: usb-audio: Notify xrun for low-latency mode (Takashi Iwai) - ALSA: pcm: Avoid reference to status->state (Takashi Iwai) - ALSA: pcm: Add more disconnection checks at file ops (Takashi Iwai) - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao) - bpftool: fix potential NULL pointer dereferencing in prog_dump() (Amir Mohammadi) - bpftool: Remove asserts from JIT disassembler (Quentin Monnet) - serial: amba-pl011: Fix RX stall when DMA is used (Kartik Rajput) - serial: amba-pl011: Use port lock wrappers (Thomas Gleixner) - dt-bindings: serial: rs485: Fix rs485-rts-delay property (Michal Simek) - dt_bindings: rs485: Correct delay values (Lino Sanfilippo) - gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) - gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski) - geneve: do not assume mac header is set in geneve_xmit_skb() (Eric Dumazet) - ethtool: Fix wrong mod state in case of verbose and no_mask bitset (Kory Maincent) - netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso) - netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) - net: sched: fix erspan_opt settings in cls_flower (Xin Long) - igb: Fix potential invalid memory access in igb_init_module() (Yuan Can) - net/qed: allow old cards not supporting "num_images" to work (Louis Leseur) - net/smc: fix LGR and link use-after-free issue (Wen Gu) - net/smc: Limit backlog connections (D. Wythe) - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) - dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) - net/ipv6: release expired exception dst cached in socket (Jiri Wiesner) - can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov) - net: hsr: avoid potential out-of-bound access in fill_frame_info() (Eric Dumazet) - net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens) - ptp: Add error handling for adjfine callback in ptp_clock_adjtime (Ajay Kaher) - netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia) - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi) - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (Dario Binacchi) - can: do not increase rx statistics when generating a CAN rx error message frame (Vincent Mailhol) - can: peak_usb: CANFD: store 64-bits hw timestamps (Stephane Grosjean) - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana) - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi) - drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach) - drm/sti: avoid potential dereference of error pointers (Ma Ke) - drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (Ma Ke) - drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (Ma Ke) - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (Josef Bacik) - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun) - nfsd: make sure exp active before svc_export_show (Yang Erkun) - PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal) - dm thin: Add missing destroy_work_on_stack() (Yuan Can) - ovl: properly handle large files in ovl_security_fileattr (Oleksandr Tymoshenko) - PCI: keystone: Add link up check to ks_pcie_other_map_bus() (Kishon Vijay Abraham I) - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) - scsi: ufs: exynos: Fix hibern8 notify callbacks (Peter Griffin) - util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean) - s390/entry: Mark IRQ entries to fix stack depot warnings (Vasily Gorbik) - ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) - btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) - btrfs: add a sanity check for btrfs root in btrfs_search_slot() (Lizhi Xu) - btrfs: add might_sleep() annotations (ChenXiaoSong) - quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo) - xfs: remove unknown compat feature check in superblock write validation (Long Li) - xfs: fix log recovery when unknown rocompat bits are set (Darrick J. Wong) - ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang) - sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) - sunrpc: remove unnecessary test in rpc_task_set_client() (Thiago Rafael Becker) - nfs: ignore SB_RDONLY when mounting nfs (Li Lingfeng) - modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada) - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier) - 9p/xen: fix release of IRQ (Alex Zenla) - 9p/xen: fix init sequence (Alex Zenla) - block: return unsigned int from bdev_io_min (Christoph Hellwig) - jffs2: fix use of uninitialized variable (Qingfang Deng) - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) - ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) - ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng) - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) - rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu) - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) - um: Always dump trace for specified task in show_stack (Tiwei Bie) - um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie) - um: Fix potential integer overflow during physmem setup (Tiwei Bie) - rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson) - SUNRPC: make sure cache entry active before cache_show (Yang Erkun) - NFSD: Prevent a potential integer overflow (Chuck Lever) - lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski) - usb: dwc3: gadget: Fix looping of queued SG entries (Thinh Nguyen) - usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen) - ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai) - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar) - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang) - ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang) - ALSA: pcm: Add sanity NULL check for the default mmap fault handler (Takashi Iwai) - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result (Hans Verkuil) - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (Javier Carrasco) - media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke) - block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon) - sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - um: vector: Do not use drvdata in release (Tiwei Bie) - serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu) - um: net: Do not use drvdata in release (Tiwei Bie) - um: ubd: Do not use drvdata in release (Tiwei Bie) - ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng) - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (Javier Carrasco) - cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (Jinjie Ruan) - mtd: spi-nor: core: replace dummy buswidth from addr to data (Cheng Ming Lin) - spi: Fix acpi deferred irq probe (Stanislaw Gruszka) - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) - gpio: exar: set value when external pull-up or pull-down is present (Sai Kumar Cholleti) - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman) - serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea) - Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil) - driver core: bus: Fix double free in driver API bus_register() (Zijun Hu) - usb: xhci: Fix TD invalidation under pending Set TR Dequeue (Michal Pecio) - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura) - exfat: fix uninit-value in __exfat_get_dentry_set (Namjae Jeon) - locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass() (Ahmed Ehab) - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet) - apparmor: test: Fix memory leak for aa_unpack_strdup() (Jinjie Ruan) - comedi: Flush partial mappings in error case (Jann Horn) - fsnotify: fix sending inotify event with unexpected filename (Amir Goldstein) - PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) - KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta) - powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (Gautam Menghani) - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers) - perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter) - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen) - jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov) - ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o) - ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park) - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu) - ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (Hans de Goede) - Revert "drivers: clk: zynqmp: update divider round rate logic" (Joel Guittet) - usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan) - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) - xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (Namjae Jeon) - parisc: fix a possible DMA corruption (Mikulas Patocka) - apparmor: fix 'Do simple duplicate message elimination' (chao liu) - ALSA: hda/realtek: Update ALC256 depop procedure (Kailang Yang) - counter: stm32-timer-cnt: Add check for clk_enable() (Jiasheng Jiang) - misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan) - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis) - USB: chaoskey: fail open after removal (Oliver Neukum) - usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum) - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park) - iio: light: al3010: Fix an error handling path in al3010_probe() (Christophe JAILLET) - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (Saravanan Vajravel) - net: hsr: fix hsr_init_sk() vs network/transport headers. (Eric Dumazet) - spi: atmel-quadspi: Fix register name in verbose logging function (Cs?k?s, Bence) - octeontx2-af: RPM: Fix mismatch in lmac type (Hariprasad Kelam) - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier) - marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan) - net: mdio-ipq4019: add missing error check (Rosen Penev) - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel) - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi) - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel) - power: supply: bq27xxx: Fix registers of bq27426 (Barnab?s Cz?m?n) - power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche) - fs_parser: update mount_api doc to match function signature (Randy Dunlap) - vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) - selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels (Michael Ellerman) - vdpa/mlx5: Fix suboptimal range on iotlb iteration (Si-Wei Liu) - hwmon: (tps23861) Fix reporting of negative temperatures (Murad Masimov) - NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever) - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (Ye Bin) - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (Luis Chamberlain) - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever) - NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region (Sibi Sankar) - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek) - rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson) - rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam) - rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam) - perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson) - perf trace: Do not lose last events in a race (Benjamin Peterson) - svcrdma: Address an integer overflow (Chuck Lever) - m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli) - m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois) - perf trace: avoid garbage when not printing a trace event's arguments (Benjamin Peterson) - f2fs: check curseg->inited before write_sum_page in change_curseg (Yongpeng Yang) - f2fs: remove the unused flush argument to change_curseg (Christoph Hellwig) - f2fs: open code allocate_segment_by_default (Christoph Hellwig) - f2fs: remove struct segment_allocation default_salloc_ops (Christoph Hellwig) - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block (LongPing Wei) - PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen) - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng) - perf probe: Correct demangled symbols in C++ program (Leo Yan) - perf probe: Fix libdw memory leak (Ian Rogers) - PCI: Fix reset_method_store() memory leak (Todd Kjos) - perf cs-etm: Don't flush when packet_queue fills up (James Clark) - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (Dan Carpenter) - pinctrl: k210: Undef K210_PC_DEFAULT (zhang jiao) - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa) - dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa) - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) - fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann) - powerpc/kexec: Fix return of uninitialized variable (Zhang Zekun) - powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek) - ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) - RDMA/hns: Fix out-of-order issue of requester when setting FENCE (Junxian Huang) - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) - scsi: fusion: Remove unused variable 'rc' (Zeng Heng) - scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) - mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong) - clk: imx: clk-scu: fix clk enable state save and restore (Dong Aisheng) - clk: imx: lpcg-scu: SW workaround for errata (e10858) (Peng Fan) - powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (Michael Ellerman) - powerpc/mm/fault: Fix kfence page fault reporting (Ritesh Harjani (IBM)) - mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal) - cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko) - mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson) - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan) - pinctrl: zynqmp: drop excess struct member description (Bartosz Golaszewski) - trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun) - bpf: fix recursive lock when verdict program return SK_PASS (Jiayuan Chen) - wireguard: selftests: load nf_conntrack if not present (Hangbin Liu) - netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao) - Bluetooth: fix use-after-free in device_for_each_child() (Dmitry Antipov) - driver core: Introduce device_find_any_child() helper (Andy Shevchenko) - ALSA: 6fire: Release resources at card release (Takashi Iwai) - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng) - drm/amdkfd: Fix wrong usage of INIT_WORK() (Yuan Can) - selftests: net: really check for bg process completion (Paolo Abeni) - bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang) - selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap (Zijian Zhang) - selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap (Zijian Zhang) - selftests, bpf: Add one test for sockmap with strparser (Liu Jian) - selftests/bpf: Fix SENDPAGE data logic in test_sockmap (Zijian Zhang) - selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap (Zijian Zhang) - netlink: typographical error in nlmsg_type constants definition (Maurice Lambert) - netfilter: nf_tables: must hold rcu read lock while iterating object type list (Florian Westphal) - netfilter: nf_tables: skip transaction if update object is not implemented (Pablo Neira Ayuso) - drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (Zichen Xie) - wifi: wfx: Fix error handling in wfx_core_init() (Yuan Can) - drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach) - drm/etnaviv: fix power register offset on GC300 (Doug Brown) - drm/etnaviv: Request pages from DMA32 zone on addressing_limited (Xiaolei Wang) - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price) - octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (Dipendra Khadka) - octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (Dipendra Khadka) - octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (Dipendra Khadka) - drm: fsl-dcu: enable PIXCLK on LS1021A (Matthias Schiffer) - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) - selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap (Zijian Zhang) - selftests/bpf: Fix msg_verify_data in test_sockmap (Zijian Zhang) - drm/bridge: tc358767: Fix link properties discovery (Tomi Valkeinen) - netdevsim: copy addresses for both in and out paths (Hangbin Liu) - libbpf: fix sym_is_subprog() logic for weak global subprogs (Andrii Nakryiko) - bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen) - libbpf: Fix output .symtab byte-order during linking (Tony Ambardar) - drm/bridge: anx7625: Drop EDID cache on bridge power off (Pin-yen Lin) - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode (Macpaul Lin) - ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang) - ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer) - ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer) - ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer) - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov) - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (Baochen Qiang) - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (Baochen Qiang) - drm/v3d: Address race-condition in MMU flush (Ma?ra Canal) - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen) - drm/omap: Fix possible NULL dereference (Tomi Valkeinen) - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko) - platform/x86: panasonic-laptop: Return errno correctly in show callback (Yao Zi) - platform/x86: panasonic-laptop: Replace snprintf in show functions with sysfs_emit (Qing Wang) - media: atomisp: Add check for rgby_data memory allocation failure (Li Huafei) - media: atomisp: remove #ifdef HAS_NO_HMEM (Mauro Carvalho Chehab) - media: venus: provide ctx queue lock for ioctl synchronization (Sergey Senozhatsky) - venus: venc: add handling for VIDIOC_ENCODER_CMD (Dikshita Agarwal) - media: venus : Addition of support for VIDIOC_TRY_ENCODER_CMD (Dikshita Agarwal) - media: venus : Addition of EOS Event support for Encoder (Viswanath Boma) - media: venus: vdec: decoded picture buffer handling during reconfig sequence (Mansur Alisha Shaik) - media: venus: venc: Use pmruntime autosuspend (Stanimir Varbanov) - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) - selftests/resctrl: Protect against array overrun during iMC config parsing (Reinette Chatre) - arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators (Chen-Yu Tsai) - arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names (Chen-Yu Tsai) - arm64: dts: mt8183: jacuzzi: Move panel under aux-bus (Hsin-Yi Wang) - arm64: dts: mt8183: jacuzzi: remove unused ddc-i2c-bus (Hsin-Yi Wang) - regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko) - spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time? (Jinjie Ruan) - spi: tegra210-quad: Avoid shift-out-of-bounds (Breno Leitao) - pmdomain: ti-sci: Add missing of_node_put() for args.np (Zhang Zekun) - ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara) - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle (Clark Wang) - arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - cgroup/bpf: only cgroup v2 can be attached by bpf programs (Chen Ridong) - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline" (Chen Ridong) - arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad (Chen-Yu Tsai) - arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4 (Hsin-Te Yuan) - arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4 (Hsin-Te Yuan) - tpm: fix signed/unsigned bug when checking event logs (Gregory Price) - mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski) - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - spi: spi-fsl-lpspi: downgrade log level for pio mode (Alexander Stein) - clocksource/drivers:sp804: Make user selectable (Mark Brown) - kcsan, seqlock: Fix incorrect assumption in read_seqbegin() (Marco Elver) - kcsan, seqlock: Support seqcount_latch_t (Marco Elver) - seqlock/latch: Provide raw_read_seqcount_latch_retry() (Peter Zijlstra) - timekeeping: Consolidate fast timekeeper (Thomas Gleixner) - time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda) - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET) - crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) - crypto: caam - add error check to caam_rsa_set_priv_key_form (Chen Ridong) - EDAC/igen6: Avoid segmentation fault on module unload (Orange Kao) - crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C) - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) - EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh) - thermal: core: Initialize thermal zones before registering them (Rafael J. Wysocki) - crypto: qat - remove faulty arbiter config reset (Ahsan Atta) - EDAC/bluefield: Fix potential integer overflow (David Thompson) - firmware: google: Unregister driver_info on failure (Yuan Can) - crypto: caam - Fix the pointer passed to caam_qi_shutdown() (Christophe JAILLET) - hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) - s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada) - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin) - arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (Masahiro Yamada) - m68k: mvme147: Reinstate early console (Daniel Palmer) - m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven) - m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer) - nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) - initramfs: avoid filename buffer overrun (David Disseldorp) - mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski) - brd: defer automatic disk creation until module initialization succeeds (Yang Erkun) - brd: remove brd_devices_mutex mutex (Tetsuo Handa) - s390/cio: Do not unregister the subchannel based on DNV (Vineeth Vijayan) - kselftest/arm64: mte: fix printf type warnings about longs (Andre Przywara) - x86/barrier: Do not serialize MSR accesses on AMD (Borislav Petkov (AMD)) - nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan) - cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) - rcu-tasks: Idle tasks on offline CPUs are in quiescent states (Paul E. McKenney) - ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao) - ARM: 9420/1: smp: Fix SMP for xip kernels (Harith G) - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (Eryk Zagorski) - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang) - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan) - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan) - can: j1939: fix error in J1939 documentation. (Alexander H?lzl) - platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (Kurt Borja) - platform/x86: dell-smbios-base: Extends support to Alienware products (Kurt Borja) - regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko) - soc: qcom: Add check devm_kasprintf() returned value (Charles Han) - net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin) - x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann) - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan) - selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian) - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (Benjamin Gro?e) - mac80211: fix user-power when emulating chanctx (Ben Greear) - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (Daniel Gabay) - ASoC: Intel: sst: Support LPE0F28 ACPI HID (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (Hans de Goede) - NFS: nfs_async_write_reschedule_io must not recurse into the writeback code (Trond Myklebust) - mm: resolve faulty mmap_region() error path behaviour (Lorenzo Stoakes) - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (Lorenzo Stoakes) - mm: unconditionally close VMAs on error (Lorenzo Stoakes) - mm: avoid unsafe VMA hook invocation when error arises on mmap hook (Lorenzo Stoakes) - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (Paolo Abeni) - NFSD: Never decrement pending_async_copies on error (Chuck Lever) - NFSD: Initialize struct nfsd4_copy earlier (Chuck Lever) - NFSD: Limit the number of concurrent async COPY operations (Chuck Lever) - NFSD: Async COPY result needs to return a write verifier (Chuck Lever) - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (Dai Ngo) - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab) - mmc: sunxi-mmc: Fix A100 compatible description (Andre Przywara) - mmc: sunxi-mmc: Add D1 MMC variant (Samuel Holland) - drm/bridge: tc358768: Fix DSI command tx (Francesco Dolcini) - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov) - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) - KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (Sean Christopherson) - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (Si-Wei Liu) - ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (Jinjiang Tu) - x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (Baoquan He) - ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (Harith G) - samples: pktgen: correct dev to DEV (Wei Fang) - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Moshe Shemesh) - net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea) - net/mlx5: fs, lock FTE when checking if active (Mark Bloch) - drm/rockchip: vop: Fix a dereferenced before check warning (Andy Yan) - netlink: terminate outstanding dump on socket close (Jakub Kicinski) - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos) - leds: lp55xx: Remove redundant test for invalid channel number (Michal Vok??) - iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (Mostafa Saleh) - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event (MengEn Sun) - ftrace: Fix regression with module command in stack_trace_filter (guoweikang) - ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) - media: uvcvideo: Require entities to have a non-zero unique ID (Thadeu Lima de Souza Cascardo) - media: uvcvideo: Stop stream during unregister (Ricardo Ribalda) - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan) - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan) - media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) - media: imx-jpeg: Ensure power suppliers be suspended before detach them (Ming Qian) - media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) - media: imx-jpeg: Set video drvdata before register video device (Ming Qian) - arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (Dragan Simic) - LTS version: v5.15.173 (Vijayendra Suman) - 9p: fix slab cache name creation for real (Linus Torvalds) - udf: Avoid directory type conversion failure due to ENOMEM (Jan Kara) - udf: Allocate name buffer in directory iterator on heap (Jan Kara) - mm/memory: add non-anonymous page check in the copy_present_page() (Yuanzheng Song) - io_uring: fix possible deadlock in io_register_iowq_max_workers() (Hagar Hemdan) - md/raid10: improve code of mrdev in raid10_sync_request (Li Nan) - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (Hans de Goede) - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (Kenneth Albanowski) - fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) - vDPA/ifcvf: Fix pci_read_config_byte() return code handling (Yuan Can) - powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman) - drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (Ian Forbes) - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter) - crypto: marvell/cesa - Disable hash algorithms (Herbert Xu) - bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel) - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli) - HID: multitouch: Add support for B2402FVA track point (Stefan Blum) - block: Fix elevator_get_default() checking for NULL q->tag_set (SurajSonawane2415) - irqchip/ocelot: Fix trigger register address (Sergey Matsievskiy) - 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato) - LTS version: v5.15.172 (Vijayendra Suman) - ALSA: usb-audio: Add endianness annotations (Jan Sch?r) - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) - ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r) - ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r) - ucounts: fix counter leak in inc_rlimit_get_ucounts() (Andrei Vagin) - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) - irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier) - USB: serial: option: add Quectel RG650V (Beno?t Monin) - USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu) - USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (Dan Carpenter) - usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) - net: do not delay dst_entries_add() in dst_release() (Eric Dumazet) - net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) - btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) - nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (Jens Axboe) - io_uring: use kiocb_{start,end}_write() helpers (Amir Goldstein) - fs: create kiocb_{start,end}_write() helpers (Amir Goldstein) - io_uring: rename kiocb_end_write() local helper (Amir Goldstein) - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (Benjamin Segall) - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (Takashi Iwai) - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie) - dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) - dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) - dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai) - thermal/drivers/qcom/lmh: Remove false lockdep backtrace (Dmitry Baryshkov) - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) - drm/amdgpu: Adjust debugfs eviction and IB access permissions (Alex Deucher) - pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher) - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (Mauro Carvalho Chehab) - media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) - media: pulse8-cec: fix data timestamp at pulse8_setup() (Mauro Carvalho Chehab) - media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) - media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) - ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (Amelie Delaunay) - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov) - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (Johannes Thumshirn) - media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab) - media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab) - media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) - media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab) - net: arc: fix the device for dma_map_single/dma_unmap_single (Johan Jonker) - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case (N?colas F. R. A. Prado) - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (Diogo Silva) - net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) - i40e: fix race condition by adding filter's intermediate sync state (Aleksandr Loktionov) - can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi) - sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) - net: enetc: set MAC address to the VF net_device (Wei Fang) - security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) - nfs: avoid i_lock contention in nfs_clear_invalid_mapping (Mike Snitzer) - NFSv3: handle out-of-order write replies. (NeilBrown) - NFS: Add a tracepoint to show the results of nfs_set_cache_invalid() (Benjamin Coddington) - NFSv3: only use NFS timeout for MOUNT when protocols are compatible (NeilBrown) - HID: core: zero-initialize the report buffer (Jiri Kosina) - ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner) - ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner) - ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner) - ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner) - arm64: dts: imx8mp: correct sdhc ipg clk (Peng Fan) - arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (Heiko Stuebner) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven) From el-errata at oss.oracle.com Thu Feb 13 14:42:42 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:42 -0800 Subject: [El-errata] ELBA-2025-20098 Oracle Linux 9 linux-firmware bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20098 http://linux.oracle.com/errata/ELBA-2025-20098.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: iwl1000-firmware-39.31.5.1-999.38.el9.noarch.rpm iwl100-firmware-39.31.5.1-999.38.el9.noarch.rpm iwl105-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl135-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl2000-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl2030-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl3160-firmware-25.30.13.0-999.38.el9.noarch.rpm iwl3945-firmware-15.32.2.9-999.38.el9.noarch.rpm iwl4965-firmware-228.61.2.24-999.38.el9.noarch.rpm iwl5000-firmware-8.83.5.1_1-999.38.el9.noarch.rpm iwl5150-firmware-8.24.2.2-999.38.el9.noarch.rpm iwl6000-firmware-9.221.4.1-999.38.el9.noarch.rpm iwl6000g2a-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl6000g2b-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl6050-firmware-41.28.5.1-999.38.el9.noarch.rpm iwl7260-firmware-25.30.13.0-999.38.el9.noarch.rpm iwlax2xx-firmware-20250203-999.38.el9.noarch.rpm libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm linux-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm linux-firmware-core-20250203-999.38.git0fd450ee.el9.noarch.rpm linux-firmware-whence-20250203-999.38.git0fd450ee.el9.noarch.rpm liquidio-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm netronome-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm aarch64: iwl1000-firmware-39.31.5.1-999.38.el9.noarch.rpm iwl100-firmware-39.31.5.1-999.38.el9.noarch.rpm iwl105-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl135-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl2000-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl2030-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl3160-firmware-25.30.13.0-999.38.el9.noarch.rpm iwl3945-firmware-15.32.2.9-999.38.el9.noarch.rpm iwl4965-firmware-228.61.2.24-999.38.el9.noarch.rpm iwl5000-firmware-8.83.5.1_1-999.38.el9.noarch.rpm iwl5150-firmware-8.24.2.2-999.38.el9.noarch.rpm iwl6000-firmware-9.221.4.1-999.38.el9.noarch.rpm iwl6000g2a-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl6000g2b-firmware-18.168.6.1-999.38.el9.noarch.rpm iwl6050-firmware-41.28.5.1-999.38.el9.noarch.rpm iwl7260-firmware-25.30.13.0-999.38.el9.noarch.rpm iwlax2xx-firmware-20250203-999.38.el9.noarch.rpm libertas-sd8686-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm libertas-sd8787-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm libertas-usb8388-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm libertas-usb8388-olpc-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm linux-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm linux-firmware-core-20250203-999.38.git0fd450ee.el9.noarch.rpm linux-firmware-whence-20250203-999.38.git0fd450ee.el9.noarch.rpm liquidio-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm netronome-firmware-20250203-999.38.git0fd450ee.el9.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//linux-firmware-20250203-999.38.git0fd450ee.el9.src.rpm Description of changes: [20250203-999.38.git0fd450ee.el9] - Rebase to latest upstream [Orabug: 37535629] - Avoid showing microcode reload error if it's up to date [Orabug: 37387663] From el-errata at oss.oracle.com Thu Feb 13 14:42:43 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:43 -0800 Subject: [El-errata] ELBA-2025-20104 Oracle Linux 9 osinfo-db bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20104 http://linux.oracle.com/errata/ELBA-2025-20104.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: osinfo-db-20240701-2.0.2.el9.noarch.rpm aarch64: osinfo-db-20240701-2.0.2.el9.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//osinfo-db-20240701-2.0.2.el9.src.rpm Description of changes: [20240701-2.0.2] - Add OL10.0 and RHEL10.0 data [Orabug: 37471589] From el-errata at oss.oracle.com Thu Feb 13 14:42:44 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:44 -0800 Subject: [El-errata] ELSA-2025-20095 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20095 http://linux.oracle.com/errata/ELSA-2025-20095.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: aarch64: bpftool-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-container-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-container-debug-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-core-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-debug-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-debug-core-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-debug-devel-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-debug-modules-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-debug-modules-extra-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-devel-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-doc-5.15.0-305.176.4.el9uek.noarch.rpm kernel-uek-modules-5.15.0-305.176.4.el9uek.aarch64.rpm kernel-uek-modules-extra-5.15.0-305.176.4.el9uek.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//kernel-uek-5.15.0-305.176.4.el9uek.src.rpm Related CVEs: CVE-2024-26595 CVE-2024-38538 CVE-2024-38556 CVE-2024-39494 CVE-2024-40906 CVE-2024-40939 CVE-2024-41080 CVE-2024-42073 CVE-2024-42138 CVE-2024-42268 CVE-2024-42315 CVE-2024-43864 CVE-2024-44940 CVE-2024-44949 CVE-2024-46809 CVE-2024-46841 CVE-2024-46871 CVE-2024-47730 CVE-2024-49950 CVE-2024-49974 CVE-2024-49996 CVE-2024-49998 CVE-2024-50036 CVE-2024-50055 CVE-2024-50121 CVE-2024-50241 CVE-2024-50261 CVE-2024-50264 CVE-2024-50265 CVE-2024-50267 CVE-2024-50268 CVE-2024-50269 CVE-2024-50273 CVE-2024-50275 CVE-2024-50278 CVE-2024-50279 CVE-2024-50282 CVE-2024-50283 CVE-2024-50287 CVE-2024-50290 CVE-2024-50292 CVE-2024-50295 CVE-2024-50296 CVE-2024-50299 CVE-2024-50301 CVE-2024-50302 CVE-2024-53052 CVE-2024-53061 CVE-2024-53063 CVE-2024-53066 CVE-2024-53073 CVE-2024-53088 CVE-2024-53096 CVE-2024-53099 CVE-2024-53101 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53113 CVE-2024-53119 CVE-2024-53120 CVE-2024-53122 CVE-2024-53125 CVE-2024-53129 CVE-2024-53130 CVE-2024-53131 CVE-2024-53135 CVE-2024-53140 CVE-2024-53141 CVE-2024-53142 CVE-2024-53145 CVE-2024-53146 CVE-2024-53148 CVE-2024-53150 CVE-2024-53151 CVE-2024-53155 CVE-2024-53156 CVE-2024-53157 CVE-2024-53158 CVE-2024-53161 CVE-2024-53164 CVE-2024-53165 CVE-2024-53171 CVE-2024-53172 CVE-2024-53173 CVE-2024-53174 CVE-2024-53180 CVE-2024-53181 CVE-2024-53183 CVE-2024-53184 CVE-2024-53194 CVE-2024-53197 CVE-2024-53198 CVE-2024-53214 CVE-2024-53215 CVE-2024-53217 CVE-2024-53227 CVE-2024-53237 CVE-2024-53239 CVE-2024-53240 CVE-2024-53241 CVE-2024-56531 CVE-2024-56532 CVE-2024-56533 CVE-2024-56539 CVE-2024-56548 CVE-2024-56558 CVE-2024-56562 CVE-2024-56567 CVE-2024-56568 CVE-2024-56569 CVE-2024-56570 CVE-2024-56571 CVE-2024-56572 CVE-2024-56574 CVE-2024-56575 CVE-2024-56576 CVE-2024-56578 CVE-2024-56581 CVE-2024-56586 CVE-2024-56587 CVE-2024-56589 CVE-2024-56590 CVE-2024-56593 CVE-2024-56594 CVE-2024-56595 CVE-2024-56596 CVE-2024-56597 CVE-2024-56598 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56610 CVE-2024-56614 CVE-2024-56615 CVE-2024-56616 CVE-2024-56619 CVE-2024-56622 CVE-2024-56623 CVE-2024-56626 CVE-2024-56627 CVE-2024-56629 CVE-2024-56630 CVE-2024-56633 CVE-2024-56634 CVE-2024-56636 CVE-2024-56637 CVE-2024-56640 CVE-2024-56642 CVE-2024-56643 CVE-2024-56644 CVE-2024-56648 CVE-2024-56650 CVE-2024-56659 CVE-2024-56661 CVE-2024-56662 CVE-2024-56670 CVE-2024-56679 CVE-2024-56681 CVE-2024-56688 CVE-2024-56690 CVE-2024-56691 CVE-2024-56693 CVE-2024-56694 CVE-2024-56698 CVE-2024-56700 CVE-2024-56701 CVE-2024-56704 CVE-2024-56705 CVE-2024-56708 CVE-2024-56715 CVE-2024-56716 CVE-2024-56723 CVE-2024-56724 CVE-2024-56726 CVE-2024-56728 CVE-2024-56739 CVE-2024-56741 CVE-2024-56745 CVE-2024-56746 CVE-2024-56747 CVE-2024-56748 CVE-2024-56754 CVE-2024-56756 CVE-2024-56759 CVE-2024-56763 CVE-2024-56766 CVE-2024-56767 CVE-2024-56769 Description of changes: [5.15.0-305.176.4.el9uek] - x86/asm: Make serialize() always_inline (Juergen Gross) - hwmon: (tmp513) Fix division of negative numbers (David Lechner) - Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (Pratyush Yadav) - Revert "regmap: detach regmap from dev on regmap_exit" (Greg Kroah-Hartman) - Revert "drm/amdgpu: rework resume handling for display (v2)" (Greg Kroah-Hartman) - Revert "PCI: Use preserve_config in place of pci_flags" (Terry Tritton) - virtio-net: synchronize probe with ndo_set_features (Jason Wang) [Orabug: 36637822] - virtio-net: synchronize operstate with admin state on up/down (Jason Wang) [Orabug: 36637822] - virtio: allow driver to disable the configure change notification (Jason Wang) [Orabug: 36637822] - virtio: rename virtio_config_enabled to virtio_config_core_enabled (Jason Wang) [Orabug: 36637822] - mlxsw: pci: Fix driver initialization with Spectrum-4 (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Fix driver initialization with old firmware (Ido Schimmel) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128 (Maksim Kiselev) [Orabug: 36811057] - net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5e: Fix MACsec state loss upon state update in offload path (Emeel Hakim) [Orabug: 36811057] - net/mlx5e: Change the warning when ignore_flow_level is not supported (Jianbo Liu) [Orabug: 36811057] - Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (Gavin Li) [Orabug: 36811057] - IB/mlx5: Don't expose debugfs entries for RRoCE general parameters if not supported (Mark Zhang) [Orabug: 36811057] - net/mlx5e: Ignore IPsec replay window values on sender side (Leon Romanovsky) [Orabug: 36811057] - net/mlx5e: Allow software parsing when IPsec crypto is enabled (Leon Romanovsky) [Orabug: 36811057] - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Bridge, fix multicast packets sent to uplink (Moshe Shemesh) [Orabug: 36811057] - net/mlx5: Fix a WARN upon a callback command failure (Yishai Hadas) [Orabug: 36811057] - net/mlx5e: Fix peer flow lists handling (Vlad Buslov) [Orabug: 36811057] - net/mlx5: Fix query of sd_group field (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed) [Orabug: 36811057] - selftests: mlxsw: qos_pfc: Remove wrong description (Amit Cohen) [Orabug: 36811057] - mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path (Ido Schimmel) [Orabug: 36811057] - gpio: mlxbf3: add an error code check in mlxbf3_gpio_probe (Su Hui) [Orabug: 36811057] - vdpa/mlx5: Add mkey leak detection (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Introduce reference counting to mrs (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Use vq suspend/resume during .set_map (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Mark vq state for modification in hw vq (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Mark vq addrs for modification in hw vq (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Introduce per vq and device resume (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Allow modifying multiple vq fields in one modify command (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Expose resumable vq capability (Dragos Tatulea) [Orabug: 36811057] - Revert "mlx5 updates 2023-12-20" (Jakub Kicinski) [Orabug: 36811057] - net/mlx5: DPLL, Implement fractional frequency offset get pin op (Jiri Pirko) [Orabug: 36811057] - net/mlx5: DPLL, Use struct to get values from mlx5_dpll_synce_status_get() (Jiri Pirko) [Orabug: 36811057] - net: macsec: move sci_to_cpu to macsec header (Radu Pirea (NXP OSS)) [Orabug: 36811057] - net/mlx5: Implement management PF Ethernet profile (Armen Ratner) [Orabug: 36811057] - net/mlx5: Enable SD feature (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Block TLS device offload on combined SD netdev (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Support per-mdev queue counter (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Support cross-vhca RSS (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Let channels be SD-aware (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Create EN core HW resources for all secondary devices (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Create single netdev per SD group (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Add informative prints in kernel log (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement steering for primary and secondaries (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement devcom communication and primary election (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement basic query and instantiation (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Introduce SD lib (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Fix query of sd_group field (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed) [Orabug: 36811057] - mlxsw: spectrum_fid: Set NVE flood profile as part of FID configuration (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an "any" packet type (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add nve_flood_prf_id field to SFMR (Petr Machata) [Orabug: 36811057] - net/mlx5: DR, Use swap() instead of open coding it (Jiapeng Chong) [Orabug: 36811057] - net/mlx5: devcom, Add component size getter (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Decouple CQ from priv (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Add wrapping for auxiliary_driver ops and remove unused args (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Statify function mlx5e_monitor_counter_arm (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Move TISes from priv to mdev HW resources (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Remove TLS-specific logic in generic create TIS API (Tariq Toukan) [Orabug: 36811057] - net/mlx5: fs, Command to control TX flow table root (Tariq Toukan) [Orabug: 36811057] - net/mlx5: fs, Command to control L2TABLE entry silent mode (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Expose Management PCIe Index Register (MPIR) (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Add mlx5_ifc bits used for supporting single netdev Socket-Direct (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Manage ICM type of SW encap (Shun Hao) [Orabug: 36811057] - RDMA/mlx5: Support handling of SW encap ICM area (Shun Hao) [Orabug: 36811057] - net/mlx5: Introduce indirect-sw-encap ICM properties (Shun Hao) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: Use logical OR instead of bitwise OR in dwcmshc_probe() (Nathan Chancellor) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: Add support for T-Head TH1520 (Drew Fustini) [Orabug: 36811057] - mmc: sdhci: add __sdhci_execute_tuning() to header (Drew Fustini) [Orabug: 36811057] - mlxsw: spectrum: Use CFF mode where available (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add support for rFID family in CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add a family for bridge FIDs in CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Initialize flood profiles in CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add profile_id to flood profile (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an object to keep flood profiles (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add hooks for RSP table maintenance (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add a not-UC packet type (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op for packing SFMR (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op to get PGT address of a FID (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op to get PGT allocation size (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op for flood table initialization (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Move mlxsw_sp_fid_flood_table_init() up (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Make mlxsw_sp_fid_ops.setup return an int (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Split a helper out of mlxsw_sp_fid_flood_table_mid() (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Rename FID ops, families, arrays (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Privatize FID families (Petr Machata) [Orabug: 36811057] - mlxsw: pci: Fix missing error checking (Ido Schimmel) [Orabug: 36811057] - mlxsw: spectrum_router: Call RIF setup before obtaining FID (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_router: Add a helper to get subport number from a RIF (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Extract SFMR packing into a helper (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Drop unnecessary conditions (Petr Machata) [Orabug: 36811057] - mlxsw: pci: Permit enabling CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: core, pci: Add plumbing related to CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add to SFMR register the fields related to CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Extract flood-mode specific part of mlxsw_reg_sfmr_pack() (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Drop unnecessary writes from mlxsw_reg_sfmr_pack() (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Mark SFGC & some SFMR fields as reserved in CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add Switch FID Flooding Profiles Register (Petr Machata) [Orabug: 36811057] - mlxsw: resources: Add max_cap_nve_flood_prf (Petr Machata) [Orabug: 36811057] - mlxsw: cmd: Add MLXSW_CMD_MBOX_CONFIG_PROFILE_FLOOD_MODE_CFF (Petr Machata) [Orabug: 36811057] - mlxsw: cmd: Add cmd_mbox.query_fw.cff_support (Petr Machata) [Orabug: 36811057] - EDAC/bluefield: Convert to platform remove callback returning void (Uwe Kleine-K?nig) [Orabug: 36811057] - selftests: mlxsw: Add PCI reset test (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Implement PCI reset handlers (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Add support for new reset flow (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Move software reset code to a separate function (Amit Cohen) [Orabug: 36811057] - mlxsw: pci: Rename mlxsw_pci_sw_reset() (Amit Cohen) [Orabug: 36811057] - mlxsw: Extend MRSR pack() function to support new commands (Amit Cohen) [Orabug: 36811057] - net/mlx5e: Remove early assignment to netdev->features (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Add local loopback counter to vport rep stats (Or Har-Toov) [Orabug: 36811057] - net/mlx5: Query maximum frequency adjustment of the PTP hardware clock (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Convert scaled ppm values outside the s32 range for PHC frequency adjustments (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Initialize clock->ptp_info inside mlx5_init_timer_clock (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Refactor real time clock operation checks for PHC (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5e: Access array with enum values instead of magic numbers (Gal Pressman) [Orabug: 36811057] - net/mlx5: simplify mlx5_set_driver_version string assignments (Justin Stitt) [Orabug: 36811057] - net/mlx5: Annotate struct mlx5_flow_handle with __counted_by (Kees Cook) [Orabug: 36811057] - net/mlx5: Annotate struct mlx5_fc_bulk with __counted_by (Kees Cook) [Orabug: 36811057] - net/mlx5e: Some cleanup in mlx5e_tc_stats_matchall() (Amir Tzin) [Orabug: 36811057] - net/mlx5: Allow sync reset flow when BF MGT interface device is present (Moshe Shemesh) [Orabug: 36811057] - net/mlx5: print change on SW reset semaphore returns busy (Moshe Shemesh) [Orabug: 36811057] - vdpa/mlx5: clean up indenting in handle_ctrl_vlan() (Dan Carpenter) [Orabug: 36811057] - vdpa/mlx5: fix error code for deleting vlan (Dan Carpenter) [Orabug: 36811057] - vdpa/mlx5: Fix syntax errors in comments (Xiang wangx) [Orabug: 36811057] - macsec: Fix use-after-free while sending the offloading packet (Jianbo Liu) [Orabug: 37268700] {CVE-2024-50261} - xfrm: Export symbol xfrm_dev_state_delete. (Steffen Klassert) [Orabug: 37357287] - xfrm: Fix unregister netdevice hang on hardware offload. (Steffen Klassert) [Orabug: 37357287] - xfrm: fix a data-race in xfrm_lookup_with_ifid() (Eric Dumazet) [Orabug: 37357287] - xfrm: generalize xdo_dev_state_update_curlft to allow statistics update (Leon Romanovsky) [Orabug: 37357287] - xfrm: copy_to_user_state fetch offloaded SA packets/bytes statistics (Raed Salem) [Orabug: 37357287] - xfrm: annotate data-race around use_time (Eric Dumazet) [Orabug: 37357287] - xfrm: consistently use time64_t in xfrm_timer_handler() (Eric Dumazet) [Orabug: 37357287] - cpufreq: intel_pstate: Update Balance-performance EPP for Granite Rapids (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Update Balance performance EPP for Emerald Rapids (Pedro Henrique Kopper) [Orabug: 37383554] - cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Update Meteor Lake EPPs (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Switch to new Intel CPU model defines (Tony Luck) [Orabug: 37383554] - cpufreq: Switch to new Intel CPU model defines (Tony Luck) [Orabug: 37383554] - x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h (Tony Luck) [Orabug: 37383554] - x86/cpu: Add model number for another Intel Arrow Lake mobile processor (Tony Luck) [Orabug: 37383554] - cpufreq: intel_pstate: Update default EPPs for Meteor Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Allow model specific EPPs (Srinivas Pandruvada) [Orabug: 37383554] - x86/cpu: Add model number for Intel Clearwater Forest processor (Tony Luck) [Orabug: 37383554] - cpufreq: intel_pstate: Update hybrid scaling factor for Meteor Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Prioritize firmware-provided balance performance EPP (Srinivas Pandruvada) [Orabug: 37383554] - x86/cpu: Add model number for Intel Arrow Lake mobile processor (Tony Luck) [Orabug: 37383554] - x86/cpu: Update Hybrids (Peter Zijlstra) [Orabug: 37383554] - cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Enable HWP IO boost for all servers (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Use firmware default EPP (Srinivas Pandruvada) [Orabug: 37383554] - net/mlx5: Add a timeout to acquire the command queue semaphore (Akiva Goldberger) [Orabug: 37388415] - PCI: Fix pci_enable_acs() support for the ACS quirks (Jason Gunthorpe) [Orabug: 37477375] - PCI: Clear Secondary Status errors after enumeration (Vidya Sagar) [Orabug: 37477375] - PCI/AER: Configure ECRC only if AER is native (Vidya Sagar) [Orabug: 37477375] - PCI: Extend ACS configurability (Vidya Sagar) [Orabug: 37477375] - NFSv4/pNFS: Do layout state recovery upon reboot (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Remove redundant call to unhash the layout (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Give nfs4_proc_layoutreturn() a flags argument (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Retry the layout return later in case of a timeout or reboot (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Handle server reboots in pnfs_poc_release() (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Add a helper to defer failed layoutreturn calls (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Add support for the PNFS_LAYOUT_FILE_BULK_RETURN flag (Trond Myklebust) [Orabug: 37477755] - pNFS: Add a flag argument to pnfs_destroy_layouts_byclid() (Trond Myklebust) [Orabug: 37477755] - NFSv4: Clean up encode_nfs4_stateid() (Trond Myklebust) [Orabug: 37477755] - NFSv4.1: constify the stateid argument in nfs41_test_stateid() (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Remove redundant list check (Trond Myklebust) [Orabug: 37477755] - uek-rpm: Enable CONFIG_SENSORS_ARM_SCMI and CONFIG_MVL_MHU (Thomas Tai) [Orabug: 37498899] [5.15.0-305.176.3.el9uek] - LTS version: v5.15.176 (Vijayendra Suman) - mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (Seiji Nishikawa) - dt-bindings: display: adi,adv7533: Drop single lane support (Biju Das) - drm: adv7511: Drop dsi single lane support (Biju Das) - net/sctp: Prevent autoclose integer overflow in sctp_association_init() (Nikolay Kuratov) - sky2: Add device ID 11ab:4373 for Marvell 88E8075 (Pascal Hambourg) - pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (Evgenii Shatokhin) - RDMA/uverbs: Prevent integer overflow issue (Dan Carpenter) - kcov: mark in_softirq_really() as __always_inline (Arnd Bergmann) - modpost: fix the missed iteration for the max bit in do_input() (Masahiro Yamada) - modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (Masahiro Yamada) - usb: xhci: Avoid queuing redundant Stop Endpoint commands (Michal Pecio) - ARC: build: Try to guess GCC variant of cross compiler (Leon Romanovsky) - irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (Uros Bizjak) - net: usb: qmi_wwan: add Telit FE910C04 compositions (Daniele Palmas) - bpf: fix potential error return (Anton Protopopov) - sound: usb: format: don't warn that raw DSD is unsupported (Adrian Ratiu) - sound: usb: enable DSD output for ddHiFi TC44C (Adrian Ratiu) - btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (Filipe Manana) - drm/amdkfd: Correct the migration DMA map direction (Prike Liang) - wifi: mac80211: wake the queues in case of failure in resume (Emmanuel Grumbach) - btrfs: sysfs: fix direct super block member reads (Qu Wenruo) - btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit (Anand Jain) - btrfs: fix use-after-free when COWing tree bock and tracing is enabled (Filipe Manana) - btrfs: rename and export __btrfs_cow_block() (Filipe Manana) - ila: serialize calls to nf_register_net_hooks() (Eric Dumazet) - af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet) - af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet) - net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (Maciej S. Szmigiero) - net: restrict SO_REUSEPORT to inet sockets (Eric Dumazet) - RDMA/rtrs: Ensure 'ib_sge list' is accessible (Li Zhijian) - net: mv643xx_eth: fix an OF node reference leak (Joe Hattori) - eth: bcmsysport: fix call balance of priv->clk handling routines (Vitalii Mordan) - ALSA: usb-audio: US16x08: Initialize array before use (Tanya Agarwal) - net: llc: reset skb->transport_header (Antonio Pastor) - netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext (Pablo Neira Ayuso) - drm/i915/dg1: Fix power gate sequence. (Rodrigo Vivi) - netrom: check buffer length before accessing it (Ilya Shchipletsov) - net: fix memory leak in tcp_conn_request() (Wang Liang) - net: stmmac: restructure the error path of stmmac_probe_config_dt() (Joe Hattori) - net: stmmac: don't create a MDIO bus if unnecessary (Andrew Halaney) - net: stmmac: platform: provide devm_stmmac_probe_config_dt() (Bartosz Golaszewski) - RDMA/hns: Fix missing flush CQE for DWQE (Chengchang Tang) - RDMA/hns: Fix warning storm caused by invalid input in IO path (Chengchang Tang) - RDMA/hns: Fix mapping error of zero-hop WQE buffer (wenglianfa) - RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() (Yunsheng Lin) - RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() (Yixing Liu) - drm/bridge: adv7511_audio: Update Audio InfoFrame properly (Stefan Ekenberg) - RDMA/bnxt_re: Fix the locking while accessing the QP table (Selvin Xavier) - RDMA/bnxt_re: Fix max_qp_wrs reported (Selvin Xavier) - RDMA/bnxt_re: Fix reporting hw_ver in query_device (Kalesh AP) - RDMA/bnxt_re: Add check for path mtu in modify_qp (Saravanan Vajravel) - RDMA/mlx5: Enforce same type port association for multiport RoCE (Patrisious Haddad) - xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic (Mathias Nyman) - usb: xhci: Limit Stop Endpoint retries (Michal Pecio) - xhci: retry Stop Endpoint on buggy NEC controllers (Michal Pecio) - thunderbolt: Add support for Intel Panther Lake-M/P (Mika Westerberg) - thunderbolt: Add support for Intel Lunar Lake (Mika Westerberg) - thunderbolt: Add Intel Barlow Ridge PCI ID (Mika Westerberg) - thunderbolt: Add support for Intel Meteor Lake (Mika Westerberg) - thunderbolt: Add support for Intel Raptor Lake (George D Sworo) - tracing: Have process_string() also allow arrays (Steven Rostedt) - selinux: ignore unknown extended permissions (Thi?baud Weksteen) - x86/hyperv: Fix hv tsc page based sched_clock for hibernation (Naman Jain) - net: dsa: improve shutdown sequence (Vladimir Oltean) - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (Yang Erkun) - btrfs: avoid monopolizing a core when activating a swap file (Filipe Manana) - power: supply: gpio-charger: Fix set charge current limits (Dimitri Fedrau) - tracing: Prevent bad count for tracing_cpumask_write (Lizhi Xu) - tracing: Constify string literal data member in struct trace_event_call (Christian G?ttsche) - ksmbd: fix racy issue from session lookup and expire (Namjae Jeon) - lib: stackinit: hide never-taken branch from compiler (Kees Cook) - drm/dp_mst: Verify request type in the corresponding down message reply (Imre Deak) - arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs (Catalin Marinas) - arm64: mm: Rename asid2idx() to ctxid2asid() (Yunfeng Ye) - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write (Jordy Zomer) - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read (Jordy Zomer) - drm/dp_mst: Fix MST sideband message body length check (Imre Deak) - bpf: Check validity of link->type in bpf_link_show_fdinfo() (Hou Tao) - MIPS: Probe toolchain support of -msym32 (Jiaxun Yang) - vmalloc: fix accounting with i915 (Matthew Wilcox (Oracle)) - virtio-blk: don't keep queue frozen during system suspend (Ming Lei) - scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (Cathy Avery) - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time (Ranjan Kumar) - platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (Armin Wolf) - regmap: Use correct format specifier for logging range errors (Mark Brown) - ALSA: hda/conexant: fix Z60MR100 startup pop issue (bo liu) - scsi: megaraid_sas: Fix for a potential deadlock (Tomas Henzl) - scsi: qla1280: Fix hw revision numbering for ISP1020/1040 (Magnus Lindholm) - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 (James Hilliard) - tracing/kprobe: Make trace_kprobe's module callback called after jump_label update (Masami Hiramatsu (Google)) - mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter) - dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (Chen Ridong) - dmaengine: dw: Select only supported masters for ACPI devices (Andy Shevchenko) - dmaengine: mv_xor: fix child node refcount handling in early exit (Javier Carrasco) - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (Zijun Hu) - phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (Zijun Hu) - phy: core: Fix that API devm_phy_put() fails to release the phy (Zijun Hu) - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (Zijun Hu) - phy: core: Fix an OF node refcount leakage in _of_phy_get() (Zijun Hu) - mtd: rawnand: arasan: Fix missing de-registration of NAND (Maciej Andrzejewski) - mtd: rawnand: arasan: Fix double assertion of chip-select (Maciej Andrzejewski) - mtd: diskonchip: Cast an operand to prevent potential overflow (Zichen Xie) - nfsd: restore callback functionality for NFSv4.0 (NeilBrown) - bpf: Check negative offsets in __bpf_skb_min_len() (Cong Wang) - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection (Zijian Zhang) - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() (Cong Wang) - mm/vmstat: fix a W=1 clang compiler warning (Bart Van Assche) - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (Nikita Zhandarovich) - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update (Michel D?nzer) - epoll: Add synchronous wakeup support for ep_poll_callback (Xuewen Yan) - ceph: validate snapdirname option length when mounting (Ilya Dryomov) - of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (Zijun Hu) - of: Fix error path in of_parse_phandle_with_args_map() (Herve Codina) - udmabuf: also check for F_SEAL_FUTURE_WRITE (Jann Horn) - nilfs2: prevent use of deleted inode (Edward Adam Davis) - of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu) - NFS/pnfs: Fix a live lock between recalled layouts and layoutget (Trond Myklebust) - tracing: Add "%s" check in test_event_printk() (Steven Rostedt) - tracing: Add missing helper functions in event pointer dereference check (Steven Rostedt) - tracing: Fix test_event_printk() to process entire print argument (Steven Rostedt) - KVM: x86: Play nice with protected guests in complete_hypercall_exit() (Sean Christopherson) - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (Michael Kelley) - btrfs: tree-checker: reject inline extent items with 0 ref count (Qu Wenruo) - zram: refuse to use zero sized block device as backing device (Kairui Song) - sh: clk: Fix clk_enable() to return 0 on NULL clk (Geert Uytterhoeven) - hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (Murad Masimov) - hwmon: (tmp513) Fix Current Register value interpretation (Murad Masimov) - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (Murad Masimov) - hwmon: (tmp513) Use SI constants from units.h (Andy Shevchenko) - hwmon: (tmp513) Simplify with dev_err_probe() (Andy Shevchenko) - hwmon: (tmp513) Don't use "proxy" headers (Andy Shevchenko) - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (Ville Syrj?l?) - USB: serial: option: add Telit FE910C04 rmnet compositions (Daniele Palmas) - USB: serial: option: add MediaTek T7XX compositions (Jack Wu) - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (Mank Wang) - USB: serial: option: add MeiG Smart SLM770A (Michal Hrusecky) - USB: serial: option: add TCL IK512 MBIM & ECM (Daniel Swanemar) - efivarfs: Fix error on non-existent file (James Bottomley) - i2c: riic: Always round-up when calculating bus period (Geert Uytterhoeven) - chelsio/chtls: prevent potential integer overflow on 32bit (Dan Carpenter) - mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (Prathamesh Shete) - net: mdiobus: fix an OF node reference leak (Joe Hattori) - netfilter: ipset: Fix for recursive locking warning (Phil Sutter) - net: ethernet: bgmac-platform: fix an OF node reference leak (Joe Hattori) - net: hinic: Fix cleanup in create_rxqs/txqs() (Dan Carpenter) - ionic: use ee->offset when returning sprom data (Shannon Nelson) - ionic: Fix netdev notifier unregister on failure (Brett Creeley) - netdevsim: prevent bad user input in nsim_dev_health_break_write() (Eric Dumazet) - net/smc: check return value of sock_recvmsg when draining clc data (Guangguan Wang) - net/smc: check smcd_v2_ext_offset when receiving proposal msg (Guangguan Wang) - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (Guangguan Wang) - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll (Guangguan Wang) - erofs: fix incorrect symlink detection in fast symlink (Gao Xiang) - i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun) - usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled (Peng Hongchi) - MIPS: Loongson64: DTS: Fix msi node for ls7a (Jiaxun Yang) - PCI: Add ACS quirk for Broadcom BCM5760X NIC (Ajit Khaparde) - PCI: vmd: Create domain symlink before pci_bus_add_devices() (Jiwei Sun) - ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (Pierre-Louis Bossart) - usb: cdns3: Add quirk flag to enable suspend residency (Roger Quadros) - ALSA: usb: Fix UBSAN warning in parse_audio_unit() (Takashi Iwai) - PCI/AER: Disable AER service on suspend (Kai-Heng Feng) - PCI: Use preserve_config in place of pci_flags (Vidya Sagar) - net: sched: fix ordering of qlen adjustment (Lion Ackermann) - LTS version: v5.15.175 (Vijayendra Suman) - x86/static-call: fix 32-bit build (Juergen Gross) - ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter) - x86/xen: remove hypercall page (Juergen Gross) - x86/xen: use new hypercall functions instead of hypercall page (Juergen Gross) - x86/xen: add central hypercall functions (Juergen Gross) - x86/xen: don't do PV iret hypercall through hypercall page (Juergen Gross) - x86/static-call: provide a way to do very early static-call updates (Juergen Gross) - objtool/x86: allow syscall instruction (Juergen Gross) - x86: make get_cpu_vendor() accessible from Xen code (Juergen Gross) - xen/netfront: fix crash when removing device (Juergen Gross) - Revert "parisc: fix a possible DMA corruption" (Greg Kroah-Hartman) - tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov) - bpf: sync_linked_regs() must preserve subreg_def (Eduard Zingerman) - blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor) - ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin) - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann) - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann) - net/sched: netem: account for backlog updates from child qdisc (Martin Ottens) - Documentation: PM: Clarify pm_runtime_resume_and_get() return value (Paul Barker) - qca_spi: Make driver probing reliable (Stefan Wahren) - qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren) - cxgb4: use port number to set mac addr (Anumula Murali Mohan Reddy) - ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen) - net: sparx5: fix the maximum frame length register (Daniel Machon) - net: sparx5: fix FDMA performance issue (Daniel Machon) - net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) - ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init() (Thomas Wei?schuh) - ptp: kvm: Use decrypted memory in confidential guest on x86 (Jeremi Piotrowski) - selftests: mlxsw: sharedbuffer: Remove duplicate test cases (Danielle Ratson) - selftests: mlxsw: sharedbuffer: Remove h1 ingress test case (Danielle Ratson) - tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) - batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel) - batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel) - batman-adv: Do not send uninitialized TT changes (Remi Pommarel) - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (Suraj Sonawane) - exfat: fix potential deadlock on __exfat_get_dentry_set (Sungjong Seo) - virtio/vsock: Fix accept_queue memory leak (Michal Luczaj) - bpf, sockmap: Fix update element with same (Michal Luczaj) - xfs: fix scrub tracepoints when inode-rooted btrees are involved (Darrick J. Wong) - xfs: return from xfs_symlink_verify early on V4 filesystems (Darrick J. Wong) - xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong) - xfs: update btree keys correctly when _insrec splits an inode root block (Darrick J. Wong) - drm/i915: Fix memory leak by correcting cache object name in error handler (Jiasheng Jiang) - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) - usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan) - usb: dwc2: Fix HCD port connection race (Stefan Wahren) - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren) - usb: dwc2: Fix HCD resume (Stefan Wahren) - ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori) - usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson) - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (Jaakko Salo) - tcp: check space before adding MPTCP SYN options (MoYuanhao) - LTS version: v5.15.174 (Vijayendra Suman) - Bluetooth: hci_core: Fix calling mgmt_device_connected (Luiz Augusto von Dentz) - net/smc: Fix af_ops of child socket pointing to released memory (Karsten Graul) - media: venus: vdec: fixed possible memory leak issue (Ameer Hamza) - serial: amba-pl011: fix build regression (Arnd Bergmann) - drm/amdgpu: rework resume handling for display (v2) (Alex Deucher) - drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (Wayne Lin) - net: dsa: microchip: correct KSZ8795 static MAC table access (Tristram Ha) - Bluetooth: L2CAP: Fix uaf in l2cap_connect (Luiz Augusto von Dentz) - arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (Mark Rutland) - arm64/sve: Discard stale CPU state when handling SVE traps (Mark Brown) - gve: Fixes for napi_poll when budget is 0 (Ziwei Xiao) - scsi: core: Fix scsi_mode_select() buffer length handling (Damien Le Moal) - Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun) - fou: remove warn in gue_gro_receive on unsupported protocol (Willem de Bruijn) - ima: Fix use-after-free on a dentry's dname.name (Stefan Berger) - crypto: hisilicon/qm - inject error before stopping queue (Weili Qian) - drm/amd/display: Check BIOS images before it is used (Alex Hung) - mmc: mtk-sd: Fix error handle of probe function (Andy-ld Lu) - xhci: dbc: Fix STALL transfer event handling (Mathias Nyman) - mm/damon/vaddr: fix issue in damon_va_evenly_split_region() (Zheng Yejian) - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (SeongJae Park) - jffs2: Fix rtime decompressor (Richard Weinberger) - jffs2: Prevent rtime decompress memory corruption (Kinsey Moore) - KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang) - KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang) - KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang) - tracing/eprobe: Fix to release eprobe when failed to add dyn_event (Masami Hiramatsu (Google)) - btrfs: fix missing snapshot drew unlock when root is dead during swap activation (Filipe Manana) - sched/core: Prevent wakeup of ksoftirqd during idle load balance (K Prateek Nayak) - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy (K Prateek Nayak) - sched/fair: Add NOHZ balancer flag for nohz.next_balance updates (Valentin Schneider) - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func() (K Prateek Nayak) - modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner) - modpost: Include '.text.*' in TEXT_SECTIONS (Nathan Chancellor) - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman) - powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman) - MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a (Xi Ruoyao) - usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang) - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li) - PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou) - PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch) - PCI: Detect and trust built-in Thunderbolt chips (Esther Shimanovich) - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (Jarkko Nikula) - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) - nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang) - pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n) - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara) - scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara) - leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) - scsi: hisi_sas: Add cond_resched() for no forced preemption model (Yihang Li) - tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak) - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU (Esben Haabendal) - netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao) - net/neighbor: clear error in case strict check is not set (Jakub Kicinski) - rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov) - ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman) - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (Luiz Augusto von Dentz) - wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) - wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong) - drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (Victor Zhao) - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) - jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) - jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) - jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) - dma-debug: fix a possible deadlock on radix_lock (Levi Yun) - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (Lang Yu) - drm/amdgpu: Dereference the ATCS ACPI buffer (Prike Liang) - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (Victor Lu) - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (Manikandan Muralidharan) - wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev) - wifi: ath5k: add PCI ID for SX76X (Rosen Penev) - net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) - net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) - net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) - af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) - net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina) - net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman) - net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman) - samples/bpf: Fix a resource leak (Zhu Jun) - r8169: don't apply UDP padding quirk on RTL8126A (Heiner Kallweit) - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev) - drm/mcde: Enable module autoloading (Liao Chen) - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a) - drm/vc4: hvs: Set AXI panic modes for the HVS (Dave Stevenson) - soc: imx8m: Probe the SoC driver as platform driver (Marek Vasut) - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar) - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given) - kcsan: Turn report_filterlist_lock into a raw_spinlock (Marco Elver) - kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all() (Mark Brown) - btrfs: avoid unnecessary device path update for the same device (Qu Wenruo) - s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter) - epoll: annotate racy check (Christian Brauner) - iommu/arm-smmu: Defer probe of clients after smmu device bound (Pratyush Brahma) - ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang) - mmc: core: Further prevent card detect during shutdown (Ulf Hansson) - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (Hans de Goede) - regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav) - xsk: fix OOB map writes when deleting elements (Maciej Fijalkowski) - dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig) - bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che) - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) - scsi: ufs: core: sysfs: Prevent div by zero (Gwendal Grignou) - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap) - scsi: qla2xxx: Fix use after free on unload (Quinn Tran) - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy) - scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran) - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (Sahas Leelodharry) - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (Nazar Bilinskyi) - ALSA: usb-audio: add mixer mapping for Corsair HS80 (Marie Ramlow) - arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (Mark Rutland) - tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu) - can: dev: can_set_termination(): allow sleeping GPIOs (Marc Kleine-Budde) - watchdog: rti: of: honor timeout-sec property (Alexander Sverdlin) - HID: wacom: fix when get product name maybe null pointer (WangYuli) - bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao) - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao) - ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) - drm/v3d: Enable Performance Counters before clearing them (Ma?ra Canal) - spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao) - tools: Override makefile ARCH variable if defined, but empty (Bj?rn T?pel) - ALSA: usb-audio: Notify xrun for low-latency mode (Takashi Iwai) - ALSA: pcm: Avoid reference to status->state (Takashi Iwai) - ALSA: pcm: Add more disconnection checks at file ops (Takashi Iwai) - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao) - bpftool: fix potential NULL pointer dereferencing in prog_dump() (Amir Mohammadi) - bpftool: Remove asserts from JIT disassembler (Quentin Monnet) - serial: amba-pl011: Fix RX stall when DMA is used (Kartik Rajput) - serial: amba-pl011: Use port lock wrappers (Thomas Gleixner) - dt-bindings: serial: rs485: Fix rs485-rts-delay property (Michal Simek) - dt_bindings: rs485: Correct delay values (Lino Sanfilippo) - gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) - gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski) - geneve: do not assume mac header is set in geneve_xmit_skb() (Eric Dumazet) - ethtool: Fix wrong mod state in case of verbose and no_mask bitset (Kory Maincent) - netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso) - netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) - net: sched: fix erspan_opt settings in cls_flower (Xin Long) - igb: Fix potential invalid memory access in igb_init_module() (Yuan Can) - net/qed: allow old cards not supporting "num_images" to work (Louis Leseur) - net/smc: fix LGR and link use-after-free issue (Wen Gu) - net/smc: Limit backlog connections (D. Wythe) - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) - dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) - net/ipv6: release expired exception dst cached in socket (Jiri Wiesner) - can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov) - net: hsr: avoid potential out-of-bound access in fill_frame_info() (Eric Dumazet) - net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens) - ptp: Add error handling for adjfine callback in ptp_clock_adjtime (Ajay Kaher) - netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia) - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi) - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (Dario Binacchi) - can: do not increase rx statistics when generating a CAN rx error message frame (Vincent Mailhol) - can: peak_usb: CANFD: store 64-bits hw timestamps (Stephane Grosjean) - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana) - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi) - drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach) - drm/sti: avoid potential dereference of error pointers (Ma Ke) - drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (Ma Ke) - drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (Ma Ke) - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (Josef Bacik) - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun) - nfsd: make sure exp active before svc_export_show (Yang Erkun) - PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal) - dm thin: Add missing destroy_work_on_stack() (Yuan Can) - ovl: properly handle large files in ovl_security_fileattr (Oleksandr Tymoshenko) - PCI: keystone: Add link up check to ks_pcie_other_map_bus() (Kishon Vijay Abraham I) - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) - scsi: ufs: exynos: Fix hibern8 notify callbacks (Peter Griffin) - util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean) - s390/entry: Mark IRQ entries to fix stack depot warnings (Vasily Gorbik) - ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) - btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) - btrfs: add a sanity check for btrfs root in btrfs_search_slot() (Lizhi Xu) - btrfs: add might_sleep() annotations (ChenXiaoSong) - quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo) - xfs: remove unknown compat feature check in superblock write validation (Long Li) - xfs: fix log recovery when unknown rocompat bits are set (Darrick J. Wong) - ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang) - sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) - sunrpc: remove unnecessary test in rpc_task_set_client() (Thiago Rafael Becker) - nfs: ignore SB_RDONLY when mounting nfs (Li Lingfeng) - modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada) - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier) - 9p/xen: fix release of IRQ (Alex Zenla) - 9p/xen: fix init sequence (Alex Zenla) - block: return unsigned int from bdev_io_min (Christoph Hellwig) - jffs2: fix use of uninitialized variable (Qingfang Deng) - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) - ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) - ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng) - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) - rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu) - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) - um: Always dump trace for specified task in show_stack (Tiwei Bie) - um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie) - um: Fix potential integer overflow during physmem setup (Tiwei Bie) - rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson) - SUNRPC: make sure cache entry active before cache_show (Yang Erkun) - NFSD: Prevent a potential integer overflow (Chuck Lever) - lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski) - usb: dwc3: gadget: Fix looping of queued SG entries (Thinh Nguyen) - usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen) - ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai) - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar) - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang) - ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang) - ALSA: pcm: Add sanity NULL check for the default mmap fault handler (Takashi Iwai) - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result (Hans Verkuil) - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (Javier Carrasco) - media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke) - block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon) - sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - um: vector: Do not use drvdata in release (Tiwei Bie) - serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu) - um: net: Do not use drvdata in release (Tiwei Bie) - um: ubd: Do not use drvdata in release (Tiwei Bie) - ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng) - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (Javier Carrasco) - cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (Jinjie Ruan) - mtd: spi-nor: core: replace dummy buswidth from addr to data (Cheng Ming Lin) - spi: Fix acpi deferred irq probe (Stanislaw Gruszka) - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) - gpio: exar: set value when external pull-up or pull-down is present (Sai Kumar Cholleti) - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman) - serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea) - Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil) - driver core: bus: Fix double free in driver API bus_register() (Zijun Hu) - usb: xhci: Fix TD invalidation under pending Set TR Dequeue (Michal Pecio) - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura) - exfat: fix uninit-value in __exfat_get_dentry_set (Namjae Jeon) - locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass() (Ahmed Ehab) - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet) - apparmor: test: Fix memory leak for aa_unpack_strdup() (Jinjie Ruan) - comedi: Flush partial mappings in error case (Jann Horn) - fsnotify: fix sending inotify event with unexpected filename (Amir Goldstein) - PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) - KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta) - powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (Gautam Menghani) - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers) - perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter) - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen) - jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov) - ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o) - ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park) - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu) - ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (Hans de Goede) - Revert "drivers: clk: zynqmp: update divider round rate logic" (Joel Guittet) - usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan) - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) - xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (Namjae Jeon) - parisc: fix a possible DMA corruption (Mikulas Patocka) - apparmor: fix 'Do simple duplicate message elimination' (chao liu) - ALSA: hda/realtek: Update ALC256 depop procedure (Kailang Yang) - counter: stm32-timer-cnt: Add check for clk_enable() (Jiasheng Jiang) - misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan) - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis) - USB: chaoskey: fail open after removal (Oliver Neukum) - usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum) - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park) - iio: light: al3010: Fix an error handling path in al3010_probe() (Christophe JAILLET) - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (Saravanan Vajravel) - net: hsr: fix hsr_init_sk() vs network/transport headers. (Eric Dumazet) - spi: atmel-quadspi: Fix register name in verbose logging function (Cs?k?s, Bence) - octeontx2-af: RPM: Fix mismatch in lmac type (Hariprasad Kelam) - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier) - marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan) - net: mdio-ipq4019: add missing error check (Rosen Penev) - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel) - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi) - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel) - power: supply: bq27xxx: Fix registers of bq27426 (Barnab?s Cz?m?n) - power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche) - fs_parser: update mount_api doc to match function signature (Randy Dunlap) - vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) - selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels (Michael Ellerman) - vdpa/mlx5: Fix suboptimal range on iotlb iteration (Si-Wei Liu) - hwmon: (tps23861) Fix reporting of negative temperatures (Murad Masimov) - NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever) - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (Ye Bin) - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (Luis Chamberlain) - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever) - NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region (Sibi Sankar) - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek) - rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson) - rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam) - rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam) - perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson) - perf trace: Do not lose last events in a race (Benjamin Peterson) - svcrdma: Address an integer overflow (Chuck Lever) - m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli) - m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois) - perf trace: avoid garbage when not printing a trace event's arguments (Benjamin Peterson) - f2fs: check curseg->inited before write_sum_page in change_curseg (Yongpeng Yang) - f2fs: remove the unused flush argument to change_curseg (Christoph Hellwig) - f2fs: open code allocate_segment_by_default (Christoph Hellwig) - f2fs: remove struct segment_allocation default_salloc_ops (Christoph Hellwig) - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block (LongPing Wei) - PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen) - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng) - perf probe: Correct demangled symbols in C++ program (Leo Yan) - perf probe: Fix libdw memory leak (Ian Rogers) - PCI: Fix reset_method_store() memory leak (Todd Kjos) - perf cs-etm: Don't flush when packet_queue fills up (James Clark) - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (Dan Carpenter) - pinctrl: k210: Undef K210_PC_DEFAULT (zhang jiao) - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa) - dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa) - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) - fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann) - powerpc/kexec: Fix return of uninitialized variable (Zhang Zekun) - powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek) - ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) - RDMA/hns: Fix out-of-order issue of requester when setting FENCE (Junxian Huang) - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) - scsi: fusion: Remove unused variable 'rc' (Zeng Heng) - scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) - mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong) - clk: imx: clk-scu: fix clk enable state save and restore (Dong Aisheng) - clk: imx: lpcg-scu: SW workaround for errata (e10858) (Peng Fan) - powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (Michael Ellerman) - powerpc/mm/fault: Fix kfence page fault reporting (Ritesh Harjani (IBM)) - mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal) - cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko) - mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson) - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan) - pinctrl: zynqmp: drop excess struct member description (Bartosz Golaszewski) - trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun) - bpf: fix recursive lock when verdict program return SK_PASS (Jiayuan Chen) - wireguard: selftests: load nf_conntrack if not present (Hangbin Liu) - netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao) - Bluetooth: fix use-after-free in device_for_each_child() (Dmitry Antipov) - driver core: Introduce device_find_any_child() helper (Andy Shevchenko) - ALSA: 6fire: Release resources at card release (Takashi Iwai) - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng) - drm/amdkfd: Fix wrong usage of INIT_WORK() (Yuan Can) - selftests: net: really check for bg process completion (Paolo Abeni) - bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang) - selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap (Zijian Zhang) - selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap (Zijian Zhang) - selftests, bpf: Add one test for sockmap with strparser (Liu Jian) - selftests/bpf: Fix SENDPAGE data logic in test_sockmap (Zijian Zhang) - selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap (Zijian Zhang) - netlink: typographical error in nlmsg_type constants definition (Maurice Lambert) - netfilter: nf_tables: must hold rcu read lock while iterating object type list (Florian Westphal) - netfilter: nf_tables: skip transaction if update object is not implemented (Pablo Neira Ayuso) - drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (Zichen Xie) - wifi: wfx: Fix error handling in wfx_core_init() (Yuan Can) - drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach) - drm/etnaviv: fix power register offset on GC300 (Doug Brown) - drm/etnaviv: Request pages from DMA32 zone on addressing_limited (Xiaolei Wang) - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price) - octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (Dipendra Khadka) - octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (Dipendra Khadka) - octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (Dipendra Khadka) - drm: fsl-dcu: enable PIXCLK on LS1021A (Matthias Schiffer) - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) - selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap (Zijian Zhang) - selftests/bpf: Fix msg_verify_data in test_sockmap (Zijian Zhang) - drm/bridge: tc358767: Fix link properties discovery (Tomi Valkeinen) - netdevsim: copy addresses for both in and out paths (Hangbin Liu) - libbpf: fix sym_is_subprog() logic for weak global subprogs (Andrii Nakryiko) - bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen) - libbpf: Fix output .symtab byte-order during linking (Tony Ambardar) - drm/bridge: anx7625: Drop EDID cache on bridge power off (Pin-yen Lin) - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode (Macpaul Lin) - ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang) - ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer) - ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer) - ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer) - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov) - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (Baochen Qiang) - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (Baochen Qiang) - drm/v3d: Address race-condition in MMU flush (Ma?ra Canal) - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen) - drm/omap: Fix possible NULL dereference (Tomi Valkeinen) - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko) - platform/x86: panasonic-laptop: Return errno correctly in show callback (Yao Zi) - platform/x86: panasonic-laptop: Replace snprintf in show functions with sysfs_emit (Qing Wang) - media: atomisp: Add check for rgby_data memory allocation failure (Li Huafei) - media: atomisp: remove #ifdef HAS_NO_HMEM (Mauro Carvalho Chehab) - media: venus: provide ctx queue lock for ioctl synchronization (Sergey Senozhatsky) - venus: venc: add handling for VIDIOC_ENCODER_CMD (Dikshita Agarwal) - media: venus : Addition of support for VIDIOC_TRY_ENCODER_CMD (Dikshita Agarwal) - media: venus : Addition of EOS Event support for Encoder (Viswanath Boma) - media: venus: vdec: decoded picture buffer handling during reconfig sequence (Mansur Alisha Shaik) - media: venus: venc: Use pmruntime autosuspend (Stanimir Varbanov) - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) - selftests/resctrl: Protect against array overrun during iMC config parsing (Reinette Chatre) - arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators (Chen-Yu Tsai) - arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names (Chen-Yu Tsai) - arm64: dts: mt8183: jacuzzi: Move panel under aux-bus (Hsin-Yi Wang) - arm64: dts: mt8183: jacuzzi: remove unused ddc-i2c-bus (Hsin-Yi Wang) - regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko) - spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time? (Jinjie Ruan) - spi: tegra210-quad: Avoid shift-out-of-bounds (Breno Leitao) - pmdomain: ti-sci: Add missing of_node_put() for args.np (Zhang Zekun) - ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara) - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle (Clark Wang) - arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - cgroup/bpf: only cgroup v2 can be attached by bpf programs (Chen Ridong) - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline" (Chen Ridong) - arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad (Chen-Yu Tsai) - arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4 (Hsin-Te Yuan) - arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4 (Hsin-Te Yuan) - tpm: fix signed/unsigned bug when checking event logs (Gregory Price) - mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski) - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - spi: spi-fsl-lpspi: downgrade log level for pio mode (Alexander Stein) - clocksource/drivers:sp804: Make user selectable (Mark Brown) - kcsan, seqlock: Fix incorrect assumption in read_seqbegin() (Marco Elver) - kcsan, seqlock: Support seqcount_latch_t (Marco Elver) - seqlock/latch: Provide raw_read_seqcount_latch_retry() (Peter Zijlstra) - timekeeping: Consolidate fast timekeeper (Thomas Gleixner) - time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda) - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET) - crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) - crypto: caam - add error check to caam_rsa_set_priv_key_form (Chen Ridong) - EDAC/igen6: Avoid segmentation fault on module unload (Orange Kao) - crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C) - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) - EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh) - thermal: core: Initialize thermal zones before registering them (Rafael J. Wysocki) - crypto: qat - remove faulty arbiter config reset (Ahsan Atta) - EDAC/bluefield: Fix potential integer overflow (David Thompson) - firmware: google: Unregister driver_info on failure (Yuan Can) - crypto: caam - Fix the pointer passed to caam_qi_shutdown() (Christophe JAILLET) - hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) - s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada) - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin) - arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (Masahiro Yamada) - m68k: mvme147: Reinstate early console (Daniel Palmer) - m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven) - m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer) - nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) - initramfs: avoid filename buffer overrun (David Disseldorp) - mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski) - brd: defer automatic disk creation until module initialization succeeds (Yang Erkun) - brd: remove brd_devices_mutex mutex (Tetsuo Handa) - s390/cio: Do not unregister the subchannel based on DNV (Vineeth Vijayan) - kselftest/arm64: mte: fix printf type warnings about longs (Andre Przywara) - x86/barrier: Do not serialize MSR accesses on AMD (Borislav Petkov (AMD)) - nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan) - cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) - rcu-tasks: Idle tasks on offline CPUs are in quiescent states (Paul E. McKenney) - ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao) - ARM: 9420/1: smp: Fix SMP for xip kernels (Harith G) - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (Eryk Zagorski) - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang) - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan) - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan) - can: j1939: fix error in J1939 documentation. (Alexander H?lzl) - platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (Kurt Borja) - platform/x86: dell-smbios-base: Extends support to Alienware products (Kurt Borja) - regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko) - soc: qcom: Add check devm_kasprintf() returned value (Charles Han) - net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin) - x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann) - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan) - selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian) - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (Benjamin Gro?e) - mac80211: fix user-power when emulating chanctx (Ben Greear) - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (Daniel Gabay) - ASoC: Intel: sst: Support LPE0F28 ACPI HID (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (Hans de Goede) - NFS: nfs_async_write_reschedule_io must not recurse into the writeback code (Trond Myklebust) - mm: resolve faulty mmap_region() error path behaviour (Lorenzo Stoakes) - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (Lorenzo Stoakes) - mm: unconditionally close VMAs on error (Lorenzo Stoakes) - mm: avoid unsafe VMA hook invocation when error arises on mmap hook (Lorenzo Stoakes) - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (Paolo Abeni) - NFSD: Never decrement pending_async_copies on error (Chuck Lever) - NFSD: Initialize struct nfsd4_copy earlier (Chuck Lever) - NFSD: Limit the number of concurrent async COPY operations (Chuck Lever) - NFSD: Async COPY result needs to return a write verifier (Chuck Lever) - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (Dai Ngo) - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab) - mmc: sunxi-mmc: Fix A100 compatible description (Andre Przywara) - mmc: sunxi-mmc: Add D1 MMC variant (Samuel Holland) - drm/bridge: tc358768: Fix DSI command tx (Francesco Dolcini) - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov) - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) - KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (Sean Christopherson) - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (Si-Wei Liu) - ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (Jinjiang Tu) - x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (Baoquan He) - ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (Harith G) - samples: pktgen: correct dev to DEV (Wei Fang) - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Moshe Shemesh) - net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea) - net/mlx5: fs, lock FTE when checking if active (Mark Bloch) - drm/rockchip: vop: Fix a dereferenced before check warning (Andy Yan) - netlink: terminate outstanding dump on socket close (Jakub Kicinski) - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos) - leds: lp55xx: Remove redundant test for invalid channel number (Michal Vok??) - iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (Mostafa Saleh) - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event (MengEn Sun) - ftrace: Fix regression with module command in stack_trace_filter (guoweikang) - ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) - media: uvcvideo: Require entities to have a non-zero unique ID (Thadeu Lima de Souza Cascardo) - media: uvcvideo: Stop stream during unregister (Ricardo Ribalda) - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan) - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan) - media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) - media: imx-jpeg: Ensure power suppliers be suspended before detach them (Ming Qian) - media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) - media: imx-jpeg: Set video drvdata before register video device (Ming Qian) - arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (Dragan Simic) - LTS version: v5.15.173 (Vijayendra Suman) - 9p: fix slab cache name creation for real (Linus Torvalds) - udf: Avoid directory type conversion failure due to ENOMEM (Jan Kara) - udf: Allocate name buffer in directory iterator on heap (Jan Kara) - mm/memory: add non-anonymous page check in the copy_present_page() (Yuanzheng Song) - io_uring: fix possible deadlock in io_register_iowq_max_workers() (Hagar Hemdan) - md/raid10: improve code of mrdev in raid10_sync_request (Li Nan) - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (Hans de Goede) - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (Kenneth Albanowski) - fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) - vDPA/ifcvf: Fix pci_read_config_byte() return code handling (Yuan Can) - powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman) - drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (Ian Forbes) - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter) - crypto: marvell/cesa - Disable hash algorithms (Herbert Xu) - bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel) - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli) - HID: multitouch: Add support for B2402FVA track point (Stefan Blum) - block: Fix elevator_get_default() checking for NULL q->tag_set (SurajSonawane2415) - irqchip/ocelot: Fix trigger register address (Sergey Matsievskiy) - 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato) - LTS version: v5.15.172 (Vijayendra Suman) - ALSA: usb-audio: Add endianness annotations (Jan Sch?r) - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) - ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r) - ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r) - ucounts: fix counter leak in inc_rlimit_get_ucounts() (Andrei Vagin) - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) - irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier) - USB: serial: option: add Quectel RG650V (Beno?t Monin) - USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu) - USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (Dan Carpenter) - usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) - net: do not delay dst_entries_add() in dst_release() (Eric Dumazet) - net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) - btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) - nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (Jens Axboe) - io_uring: use kiocb_{start,end}_write() helpers (Amir Goldstein) - fs: create kiocb_{start,end}_write() helpers (Amir Goldstein) - io_uring: rename kiocb_end_write() local helper (Amir Goldstein) - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (Benjamin Segall) - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (Takashi Iwai) - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie) - dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) - dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) - dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai) - thermal/drivers/qcom/lmh: Remove false lockdep backtrace (Dmitry Baryshkov) - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) - drm/amdgpu: Adjust debugfs eviction and IB access permissions (Alex Deucher) - pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher) - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (Mauro Carvalho Chehab) - media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) - media: pulse8-cec: fix data timestamp at pulse8_setup() (Mauro Carvalho Chehab) - media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) - media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) - ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (Amelie Delaunay) - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov) - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (Johannes Thumshirn) - media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab) - media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab) - media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) - media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab) - net: arc: fix the device for dma_map_single/dma_unmap_single (Johan Jonker) - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case (N?colas F. R. A. Prado) - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (Diogo Silva) - net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) - i40e: fix race condition by adding filter's intermediate sync state (Aleksandr Loktionov) - can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi) - sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) - net: enetc: set MAC address to the VF net_device (Wei Fang) - security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) - nfs: avoid i_lock contention in nfs_clear_invalid_mapping (Mike Snitzer) - NFSv3: handle out-of-order write replies. (NeilBrown) - NFS: Add a tracepoint to show the results of nfs_set_cache_invalid() (Benjamin Coddington) - NFSv3: only use NFS timeout for MOUNT when protocols are compatible (NeilBrown) - HID: core: zero-initialize the report buffer (Jiri Kosina) - ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner) - ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner) - ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner) - ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner) - arm64: dts: imx8mp: correct sdhc ipg clk (Peng Fan) - arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (Heiko Stuebner) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven) From el-errata at oss.oracle.com Thu Feb 13 14:42:46 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:46 -0800 Subject: [El-errata] ELBA-2025-1240 Oracle Linux 9 sos bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1240 http://linux.oracle.com/errata/ELBA-2025-1240.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: sos-4.8.2-1.0.1.el9_5.noarch.rpm sos-audit-4.8.2-1.0.1.el9_5.noarch.rpm aarch64: sos-4.8.2-1.0.1.el9_5.noarch.rpm sos-audit-4.8.2-1.0.1.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//sos-4.8.2-1.0.1.el9_5.src.rpm Description of changes: [4.8.2-1.0.1] - Update the enabled and skipped plugins lists to match ExaData's requirements. [Orabug: 37440321] - os detect string [Orabug: 28674897] - Disable upload options [Orabug: 31969352] - Disable upload-option to sos report collector [Orabug: 36068606] - Add irq debugfs to sosreport [Orabug: 36511145] - Adding socket statistics command output [Orabug: 36594481] - Remove file type check and append string to file name [Orabug: 37241057] - Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37129232] - Disable ethtool EEPROM dump for link down interfaces [Orabug: 37129428] - Modify sos.spec to make python3-file-magic as dependency for sos package [Orabug: 36834417] - Append .txt extension to files rejected by MOS policy [Orabug: 36727763] - Collecting last 50k lines of ftrace file trace [Orabug: 36590767] - Adding socket statistics command output [Orabug: 36594481] - Add IO queue depth of all the devices on node [Orabug: 36594679] - Disable upload option to sos report collector [Orabug: 36068606] - Add irq debugfs to sosreport [Orabug: 36511145] - Collect all rsyslogs files for all-logs option [Orabug: 36402382] - Set SIGPIPE to default action for Broken Pipe Error [Orabug: 35969973] - Modifying dnf history info transaction index [Orabug: 35497720] - Adding virsh guest cgroup configuration [Orabug: 35145501] - Adding virsh qemu-monitor info tree command [Orabug: 35148435] - Adding Plugin option support for ksplice and btrfs [Orabug: 35115193] - append .txt to .com domain named files [Orabug: 34527958] - Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313] - Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351] - Added sos-oraclelinux-vendor-vendorurl.patch - Fix patch for Orabug 31969352 [Orabug: 32822570] - [ovn_central] call podman exec without a timeout Resolves: bz1767359 - Adjusted ksplice plugin patches for path change [Orabug: 32881277] - Fix os detect string for Oracle Linux [Orabug: 28674897] - Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck) - Disable upload options for OracleLinux [Orabug: 31969352] - Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601] - Allow a journal log size to be smaller than 100M [Orabug: 32454362] - Do not exit on unknown plugin [Orabug: 32556170] - Add in some btrfs commands [Orabug: 32727607] - Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933] - Fix ksplice plugin does not show description [Orabug: 32886513] [4.8.2-1] - Update to 4.8.2 in RHEL 9 Resolves: RHEL-72942 From el-errata at oss.oracle.com Thu Feb 13 14:42:47 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:47 -0800 Subject: [El-errata] ELBA-2025-1316 Oracle Linux 9 sos bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1316 http://linux.oracle.com/errata/ELBA-2025-1316.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: sos-4.8.2-2.0.1.el9_5.noarch.rpm sos-audit-4.8.2-2.0.1.el9_5.noarch.rpm aarch64: sos-4.8.2-2.0.1.el9_5.noarch.rpm sos-audit-4.8.2-2.0.1.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//sos-4.8.2-2.0.1.el9_5.src.rpm Description of changes: [4.8.2-2.0.1] - Update the enabled and skipped plugins lists to match ExaData's requirements. [Orabug: 37440321] - os detect string [Orabug: 28674897] - Disable upload options [Orabug: 31969352] - Disable upload-option to sos report collector [Orabug: 36068606] - Add irq debugfs to sosreport [Orabug: 36511145] - Adding socket statistics command output [Orabug: 36594481] - Remove file type check and append string to file name [Orabug: 37241057] - Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37129232] - Disable ethtool EEPROM dump for link down interfaces [Orabug: 37129428] - Modify sos.spec to make python3-file-magic as dependency for sos package [Orabug: 36834417] - Append .txt extension to files rejected by MOS policy [Orabug: 36727763] - Collecting last 50k lines of ftrace file trace [Orabug: 36590767] - Adding socket statistics command output [Orabug: 36594481] - Add IO queue depth of all the devices on node [Orabug: 36594679] - Disable upload option to sos report collector [Orabug: 36068606] - Add irq debugfs to sosreport [Orabug: 36511145] - Collect all rsyslogs files for all-logs option [Orabug: 36402382] - Set SIGPIPE to default action for Broken Pipe Error [Orabug: 35969973] - Modifying dnf history info transaction index [Orabug: 35497720] - Adding virsh guest cgroup configuration [Orabug: 35145501] - Adding virsh qemu-monitor info tree command [Orabug: 35148435] - Adding Plugin option support for ksplice and btrfs [Orabug: 35115193] - append .txt to .com domain named files [Orabug: 34527958] - Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313] - Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351] - Added sos-oraclelinux-vendor-vendorurl.patch - Fix patch for Orabug 31969352 [Orabug: 32822570] - [ovn_central] call podman exec without a timeout Resolves: bz1767359 - Adjusted ksplice plugin patches for path change [Orabug: 32881277] - Fix os detect string for Oracle Linux [Orabug: 28674897] - Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck) - Disable upload options for OracleLinux [Orabug: 31969352] - Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601] - Allow a journal log size to be smaller than 100M [Orabug: 32454362] - Do not exit on unknown plugin [Orabug: 32556170] - Add in some btrfs commands [Orabug: 32727607] - Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933] - Fix ksplice plugin does not show description [Orabug: 32886513] [4.8.2-2] - Add new plugin aap_containerized Resolves: RHEL-76057 From el-errata at oss.oracle.com Thu Feb 13 14:42:48 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:48 -0800 Subject: [El-errata] ELSA-2025-1210 Moderate: Oracle Linux 9 tbb security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1210 http://linux.oracle.com/errata/ELSA-2025-1210.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: python3-tbb-2020.3-8.el9_5.1.x86_64.rpm tbb-2020.3-8.el9_5.1.i686.rpm tbb-2020.3-8.el9_5.1.x86_64.rpm tbb-devel-2020.3-8.el9_5.1.i686.rpm tbb-devel-2020.3-8.el9_5.1.x86_64.rpm tbb-doc-2020.3-8.el9_5.1.x86_64.rpm aarch64: python3-tbb-2020.3-8.el9_5.1.aarch64.rpm tbb-2020.3-8.el9_5.1.aarch64.rpm tbb-devel-2020.3-8.el9_5.1.aarch64.rpm tbb-doc-2020.3-8.el9_5.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//tbb-2020.3-8.el9_5.1.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [2020.3-8.1] - Remove jQuery from Doxygen output (RHEL-77693) From el-errata at oss.oracle.com Thu Feb 13 14:42:50 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:50 -0800 Subject: [El-errata] ELSA-2025-1262 Important: Oracle Linux 9 kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1262 http://linux.oracle.com/errata/ELSA-2025-1262.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-7.4.0-503.23.2.el9_5.x86_64.rpm kernel-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-abi-stablelists-5.14.0-503.23.2.el9_5.noarch.rpm kernel-core-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-core-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-devel-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-devel-matched-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-modules-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-modules-core-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-modules-extra-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-debug-uki-virt-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-devel-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-devel-matched-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-doc-5.14.0-503.23.2.el9_5.noarch.rpm kernel-headers-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-modules-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-modules-core-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-modules-extra-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-tools-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-tools-libs-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-uki-virt-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-uki-virt-addons-5.14.0-503.23.2.el9_5.x86_64.rpm perf-5.14.0-503.23.2.el9_5.x86_64.rpm python3-perf-5.14.0-503.23.2.el9_5.x86_64.rpm rtla-5.14.0-503.23.2.el9_5.x86_64.rpm rv-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-cross-headers-5.14.0-503.23.2.el9_5.x86_64.rpm kernel-tools-libs-devel-5.14.0-503.23.2.el9_5.x86_64.rpm libperf-5.14.0-503.23.2.el9_5.x86_64.rpm aarch64: bpftool-7.4.0-503.23.2.el9_5.aarch64.rpm kernel-headers-5.14.0-503.23.2.el9_5.aarch64.rpm kernel-tools-5.14.0-503.23.2.el9_5.aarch64.rpm kernel-tools-libs-5.14.0-503.23.2.el9_5.aarch64.rpm perf-5.14.0-503.23.2.el9_5.aarch64.rpm python3-perf-5.14.0-503.23.2.el9_5.aarch64.rpm rtla-5.14.0-503.23.2.el9_5.aarch64.rpm rv-5.14.0-503.23.2.el9_5.aarch64.rpm kernel-cross-headers-5.14.0-503.23.2.el9_5.aarch64.rpm kernel-tools-libs-devel-5.14.0-503.23.2.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-503.23.2.el9_5.src.rpm Related CVEs: CVE-2024-53104 Description of changes: - [5.14.0-503.23.2.el9_5.OL9] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5] - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535] - Add Oracle Linux IMA certificates [5.14.0-503.23.2.el9_5] - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (CKI Backport Bot) [RHEL-78075 RHEL-69574] {CVE-2024-53104} From el-errata at oss.oracle.com Thu Feb 13 14:42:51 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:51 -0800 Subject: [El-errata] ELSA-2025-1300 Moderate: Oracle Linux 9 gcc-toolset-14-gcc security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1300 http://linux.oracle.com/errata/ELSA-2025-1300.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-14-gcc-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-gcc-c++-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-gcc-gfortran-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-gcc-plugin-annobin-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-gcc-plugin-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-gcc-plugin-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libasan-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libasan-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libatomic-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libatomic-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libgccjit-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libgccjit-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libgccjit-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libgccjit-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libitm-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libitm-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-liblsan-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libquadmath-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libquadmath-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libstdc++-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libstdc++-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libstdc++-docs-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libtsan-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-libubsan-devel-14.2.1-1.3.el9_5.i686.rpm gcc-toolset-14-libubsan-devel-14.2.1-1.3.el9_5.x86_64.rpm gcc-toolset-14-offload-nvptx-14.2.1-1.3.el9_5.x86_64.rpm libasan8-14.2.1-1.3.el9_5.i686.rpm libasan8-14.2.1-1.3.el9_5.x86_64.rpm libtsan2-14.2.1-1.3.el9_5.x86_64.rpm aarch64: gcc-toolset-14-gcc-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-gcc-c++-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-gcc-gfortran-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-gcc-plugin-annobin-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-gcc-plugin-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libasan-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libatomic-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libgccjit-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libgccjit-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libitm-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-liblsan-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libstdc++-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libstdc++-docs-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libtsan-devel-14.2.1-1.3.el9_5.aarch64.rpm gcc-toolset-14-libubsan-devel-14.2.1-1.3.el9_5.aarch64.rpm libasan8-14.2.1-1.3.el9_5.aarch64.rpm libtsan2-14.2.1-1.3.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-14-gcc-14.2.1-1.3.el9_5.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [14.2.1-1.3] - disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78383) From el-errata at oss.oracle.com Thu Feb 13 14:42:52 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:42:52 -0800 Subject: [El-errata] ELSA-2025-1330 Important: Oracle Linux 9 openssl security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1330 http://linux.oracle.com/errata/ELSA-2025-1330.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: openssl-3.2.2-6.0.1.el9_5.1.x86_64.rpm openssl-devel-3.2.2-6.0.1.el9_5.1.i686.rpm openssl-devel-3.2.2-6.0.1.el9_5.1.x86_64.rpm openssl-libs-3.2.2-6.0.1.el9_5.1.i686.rpm openssl-libs-3.2.2-6.0.1.el9_5.1.x86_64.rpm openssl-perl-3.2.2-6.0.1.el9_5.1.x86_64.rpm aarch64: openssl-3.2.2-6.0.1.el9_5.1.aarch64.rpm openssl-devel-3.2.2-6.0.1.el9_5.1.aarch64.rpm openssl-libs-3.2.2-6.0.1.el9_5.1.aarch64.rpm openssl-perl-3.2.2-6.0.1.el9_5.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//openssl-3.2.2-6.0.1.el9_5.1.src.rpm Related CVEs: CVE-2024-12797 Description of changes: [3.2.2-6.0.1.1] - Enable openssl-fips-provider dependency [Orabug: 36504822] - Temporary disable openssl-fips-provider dependency [Orabug: 36504822] - Replace upstream references [Orabug: 34340177] [1:3.2.2-6.1] - RFC7250 handshakes with unauthenticated servers don't abort as expected (CVE-2024-12797) Resolves: RHEL-76755 From el-errata at oss.oracle.com Thu Feb 13 14:43:00 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:43:00 -0800 Subject: [El-errata] ELSA-2025-20095 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20095 http://linux.oracle.com/errata/ELSA-2025-20095.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-core-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-debug-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-debug-core-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-debug-devel-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-debug-modules-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-debug-modules-extra-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-devel-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-doc-5.15.0-305.176.4.el9uek.noarch.rpm kernel-uek-modules-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-modules-extra-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-container-5.15.0-305.176.4.el9uek.x86_64.rpm kernel-uek-container-debug-5.15.0-305.176.4.el9uek.x86_64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//kernel-uek-5.15.0-305.176.4.el9uek.src.rpm Related CVEs: CVE-2024-26595 CVE-2024-38538 CVE-2024-38556 CVE-2024-39494 CVE-2024-40906 CVE-2024-40939 CVE-2024-41080 CVE-2024-42073 CVE-2024-42138 CVE-2024-42268 CVE-2024-42315 CVE-2024-43864 CVE-2024-44940 CVE-2024-44949 CVE-2024-46809 CVE-2024-46841 CVE-2024-46871 CVE-2024-47730 CVE-2024-49950 CVE-2024-49974 CVE-2024-49996 CVE-2024-49998 CVE-2024-50036 CVE-2024-50055 CVE-2024-50121 CVE-2024-50241 CVE-2024-50261 CVE-2024-50264 CVE-2024-50265 CVE-2024-50267 CVE-2024-50268 CVE-2024-50269 CVE-2024-50273 CVE-2024-50275 CVE-2024-50278 CVE-2024-50279 CVE-2024-50282 CVE-2024-50283 CVE-2024-50287 CVE-2024-50290 CVE-2024-50292 CVE-2024-50295 CVE-2024-50296 CVE-2024-50299 CVE-2024-50301 CVE-2024-50302 CVE-2024-53052 CVE-2024-53061 CVE-2024-53063 CVE-2024-53066 CVE-2024-53073 CVE-2024-53088 CVE-2024-53096 CVE-2024-53099 CVE-2024-53101 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53113 CVE-2024-53119 CVE-2024-53120 CVE-2024-53122 CVE-2024-53125 CVE-2024-53129 CVE-2024-53130 CVE-2024-53131 CVE-2024-53135 CVE-2024-53140 CVE-2024-53141 CVE-2024-53142 CVE-2024-53145 CVE-2024-53146 CVE-2024-53148 CVE-2024-53150 CVE-2024-53151 CVE-2024-53155 CVE-2024-53156 CVE-2024-53157 CVE-2024-53158 CVE-2024-53161 CVE-2024-53164 CVE-2024-53165 CVE-2024-53171 CVE-2024-53172 CVE-2024-53173 CVE-2024-53174 CVE-2024-53180 CVE-2024-53181 CVE-2024-53183 CVE-2024-53184 CVE-2024-53194 CVE-2024-53197 CVE-2024-53198 CVE-2024-53214 CVE-2024-53215 CVE-2024-53217 CVE-2024-53227 CVE-2024-53237 CVE-2024-53239 CVE-2024-53240 CVE-2024-53241 CVE-2024-56531 CVE-2024-56532 CVE-2024-56533 CVE-2024-56539 CVE-2024-56548 CVE-2024-56558 CVE-2024-56562 CVE-2024-56567 CVE-2024-56568 CVE-2024-56569 CVE-2024-56570 CVE-2024-56571 CVE-2024-56572 CVE-2024-56574 CVE-2024-56575 CVE-2024-56576 CVE-2024-56578 CVE-2024-56581 CVE-2024-56586 CVE-2024-56587 CVE-2024-56589 CVE-2024-56590 CVE-2024-56593 CVE-2024-56594 CVE-2024-56595 CVE-2024-56596 CVE-2024-56597 CVE-2024-56598 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56610 CVE-2024-56614 CVE-2024-56615 CVE-2024-56616 CVE-2024-56619 CVE-2024-56622 CVE-2024-56623 CVE-2024-56626 CVE-2024-56627 CVE-2024-56629 CVE-2024-56630 CVE-2024-56633 CVE-2024-56634 CVE-2024-56636 CVE-2024-56637 CVE-2024-56640 CVE-2024-56642 CVE-2024-56643 CVE-2024-56644 CVE-2024-56648 CVE-2024-56650 CVE-2024-56659 CVE-2024-56661 CVE-2024-56662 CVE-2024-56670 CVE-2024-56679 CVE-2024-56681 CVE-2024-56688 CVE-2024-56690 CVE-2024-56691 CVE-2024-56693 CVE-2024-56694 CVE-2024-56698 CVE-2024-56700 CVE-2024-56701 CVE-2024-56704 CVE-2024-56705 CVE-2024-56708 CVE-2024-56715 CVE-2024-56716 CVE-2024-56723 CVE-2024-56724 CVE-2024-56726 CVE-2024-56728 CVE-2024-56739 CVE-2024-56741 CVE-2024-56745 CVE-2024-56746 CVE-2024-56747 CVE-2024-56748 CVE-2024-56754 CVE-2024-56756 CVE-2024-56759 CVE-2024-56763 CVE-2024-56766 CVE-2024-56767 CVE-2024-56769 Description of changes: [5.15.0-305.176.4.el9uek] - x86/asm: Make serialize() always_inline (Juergen Gross) - hwmon: (tmp513) Fix division of negative numbers (David Lechner) - Revert "mtd: spi-nor: core: replace dummy buswidth from addr to data" (Pratyush Yadav) - Revert "regmap: detach regmap from dev on regmap_exit" (Greg Kroah-Hartman) - Revert "drm/amdgpu: rework resume handling for display (v2)" (Greg Kroah-Hartman) - Revert "PCI: Use preserve_config in place of pci_flags" (Terry Tritton) - virtio-net: synchronize probe with ndo_set_features (Jason Wang) [Orabug: 36637822] - virtio-net: synchronize operstate with admin state on up/down (Jason Wang) [Orabug: 36637822] - virtio: allow driver to disable the configure change notification (Jason Wang) [Orabug: 36637822] - virtio: rename virtio_config_enabled to virtio_config_core_enabled (Jason Wang) [Orabug: 36637822] - mlxsw: pci: Fix driver initialization with Spectrum-4 (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Fix driver initialization with old firmware (Ido Schimmel) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: th1520: Increase tuning loop count to 128 (Maksim Kiselev) [Orabug: 36811057] - net/mlx5e: Switch to using _bh variant of of spinlock API in port timestamping NAPI poll context (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5e: Fix MACsec state loss upon state update in offload path (Emeel Hakim) [Orabug: 36811057] - net/mlx5e: Change the warning when ignore_flow_level is not supported (Jianbo Liu) [Orabug: 36811057] - Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (Gavin Li) [Orabug: 36811057] - IB/mlx5: Don't expose debugfs entries for RRoCE general parameters if not supported (Mark Zhang) [Orabug: 36811057] - net/mlx5e: Ignore IPsec replay window values on sender side (Leon Romanovsky) [Orabug: 36811057] - net/mlx5e: Allow software parsing when IPsec crypto is enabled (Leon Romanovsky) [Orabug: 36811057] - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Bridge, fix multicast packets sent to uplink (Moshe Shemesh) [Orabug: 36811057] - net/mlx5: Fix a WARN upon a callback command failure (Yishai Hadas) [Orabug: 36811057] - net/mlx5e: Fix peer flow lists handling (Vlad Buslov) [Orabug: 36811057] - net/mlx5: Fix query of sd_group field (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed) [Orabug: 36811057] - selftests: mlxsw: qos_pfc: Remove wrong description (Amit Cohen) [Orabug: 36811057] - mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path (Ido Schimmel) [Orabug: 36811057] - gpio: mlxbf3: add an error code check in mlxbf3_gpio_probe (Su Hui) [Orabug: 36811057] - vdpa/mlx5: Add mkey leak detection (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Introduce reference counting to mrs (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Use vq suspend/resume during .set_map (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Mark vq state for modification in hw vq (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Mark vq addrs for modification in hw vq (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Introduce per vq and device resume (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Allow modifying multiple vq fields in one modify command (Dragos Tatulea) [Orabug: 36811057] - vdpa/mlx5: Expose resumable vq capability (Dragos Tatulea) [Orabug: 36811057] - Revert "mlx5 updates 2023-12-20" (Jakub Kicinski) [Orabug: 36811057] - net/mlx5: DPLL, Implement fractional frequency offset get pin op (Jiri Pirko) [Orabug: 36811057] - net/mlx5: DPLL, Use struct to get values from mlx5_dpll_synce_status_get() (Jiri Pirko) [Orabug: 36811057] - net: macsec: move sci_to_cpu to macsec header (Radu Pirea (NXP OSS)) [Orabug: 36811057] - net/mlx5: Implement management PF Ethernet profile (Armen Ratner) [Orabug: 36811057] - net/mlx5: Enable SD feature (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Block TLS device offload on combined SD netdev (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Support per-mdev queue counter (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Support cross-vhca RSS (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Let channels be SD-aware (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Create EN core HW resources for all secondary devices (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Create single netdev per SD group (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Add informative prints in kernel log (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement steering for primary and secondaries (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement devcom communication and primary election (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Implement basic query and instantiation (Tariq Toukan) [Orabug: 36811057] - net/mlx5: SD, Introduce SD lib (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Fix query of sd_group field (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Use the correct lag ports number when creating TISes (Saeed Mahameed) [Orabug: 36811057] - mlxsw: spectrum_fid: Set NVE flood profile as part of FID configuration (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an "any" packet type (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add nve_flood_prf_id field to SFMR (Petr Machata) [Orabug: 36811057] - net/mlx5: DR, Use swap() instead of open coding it (Jiapeng Chong) [Orabug: 36811057] - net/mlx5: devcom, Add component size getter (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Decouple CQ from priv (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Add wrapping for auxiliary_driver ops and remove unused args (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Statify function mlx5e_monitor_counter_arm (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Move TISes from priv to mdev HW resources (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Remove TLS-specific logic in generic create TIS API (Tariq Toukan) [Orabug: 36811057] - net/mlx5: fs, Command to control TX flow table root (Tariq Toukan) [Orabug: 36811057] - net/mlx5: fs, Command to control L2TABLE entry silent mode (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Expose Management PCIe Index Register (MPIR) (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Add mlx5_ifc bits used for supporting single netdev Socket-Direct (Tariq Toukan) [Orabug: 36811057] - net/mlx5: Manage ICM type of SW encap (Shun Hao) [Orabug: 36811057] - RDMA/mlx5: Support handling of SW encap ICM area (Shun Hao) [Orabug: 36811057] - net/mlx5: Introduce indirect-sw-encap ICM properties (Shun Hao) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: Use logical OR instead of bitwise OR in dwcmshc_probe() (Nathan Chancellor) [Orabug: 36811057] - mmc: sdhci-of-dwcmshc: Add support for T-Head TH1520 (Drew Fustini) [Orabug: 36811057] - mmc: sdhci: add __sdhci_execute_tuning() to header (Drew Fustini) [Orabug: 36811057] - mlxsw: spectrum: Use CFF mode where available (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add support for rFID family in CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add a family for bridge FIDs in CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Initialize flood profiles in CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add profile_id to flood profile (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an object to keep flood profiles (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add hooks for RSP table maintenance (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add a not-UC packet type (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op for packing SFMR (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op to get PGT address of a FID (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op to get PGT allocation size (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Add an op for flood table initialization (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Move mlxsw_sp_fid_flood_table_init() up (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Make mlxsw_sp_fid_ops.setup return an int (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Split a helper out of mlxsw_sp_fid_flood_table_mid() (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Rename FID ops, families, arrays (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Privatize FID families (Petr Machata) [Orabug: 36811057] - mlxsw: pci: Fix missing error checking (Ido Schimmel) [Orabug: 36811057] - mlxsw: spectrum_router: Call RIF setup before obtaining FID (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_router: Add a helper to get subport number from a RIF (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Extract SFMR packing into a helper (Petr Machata) [Orabug: 36811057] - mlxsw: spectrum_fid: Drop unnecessary conditions (Petr Machata) [Orabug: 36811057] - mlxsw: pci: Permit enabling CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: core, pci: Add plumbing related to CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add to SFMR register the fields related to CFF flood mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Extract flood-mode specific part of mlxsw_reg_sfmr_pack() (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Drop unnecessary writes from mlxsw_reg_sfmr_pack() (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Mark SFGC & some SFMR fields as reserved in CFF mode (Petr Machata) [Orabug: 36811057] - mlxsw: reg: Add Switch FID Flooding Profiles Register (Petr Machata) [Orabug: 36811057] - mlxsw: resources: Add max_cap_nve_flood_prf (Petr Machata) [Orabug: 36811057] - mlxsw: cmd: Add MLXSW_CMD_MBOX_CONFIG_PROFILE_FLOOD_MODE_CFF (Petr Machata) [Orabug: 36811057] - mlxsw: cmd: Add cmd_mbox.query_fw.cff_support (Petr Machata) [Orabug: 36811057] - EDAC/bluefield: Convert to platform remove callback returning void (Uwe Kleine-K?nig) [Orabug: 36811057] - selftests: mlxsw: Add PCI reset test (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Implement PCI reset handlers (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Add support for new reset flow (Ido Schimmel) [Orabug: 36811057] - mlxsw: pci: Move software reset code to a separate function (Amit Cohen) [Orabug: 36811057] - mlxsw: pci: Rename mlxsw_pci_sw_reset() (Amit Cohen) [Orabug: 36811057] - mlxsw: Extend MRSR pack() function to support new commands (Amit Cohen) [Orabug: 36811057] - net/mlx5e: Remove early assignment to netdev->features (Tariq Toukan) [Orabug: 36811057] - net/mlx5e: Add local loopback counter to vport rep stats (Or Har-Toov) [Orabug: 36811057] - net/mlx5: Query maximum frequency adjustment of the PTP hardware clock (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Convert scaled ppm values outside the s32 range for PHC frequency adjustments (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Initialize clock->ptp_info inside mlx5_init_timer_clock (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5: Refactor real time clock operation checks for PHC (Rahul Rameshbabu) [Orabug: 36811057] - net/mlx5e: Access array with enum values instead of magic numbers (Gal Pressman) [Orabug: 36811057] - net/mlx5: simplify mlx5_set_driver_version string assignments (Justin Stitt) [Orabug: 36811057] - net/mlx5: Annotate struct mlx5_flow_handle with __counted_by (Kees Cook) [Orabug: 36811057] - net/mlx5: Annotate struct mlx5_fc_bulk with __counted_by (Kees Cook) [Orabug: 36811057] - net/mlx5e: Some cleanup in mlx5e_tc_stats_matchall() (Amir Tzin) [Orabug: 36811057] - net/mlx5: Allow sync reset flow when BF MGT interface device is present (Moshe Shemesh) [Orabug: 36811057] - net/mlx5: print change on SW reset semaphore returns busy (Moshe Shemesh) [Orabug: 36811057] - vdpa/mlx5: clean up indenting in handle_ctrl_vlan() (Dan Carpenter) [Orabug: 36811057] - vdpa/mlx5: fix error code for deleting vlan (Dan Carpenter) [Orabug: 36811057] - vdpa/mlx5: Fix syntax errors in comments (Xiang wangx) [Orabug: 36811057] - macsec: Fix use-after-free while sending the offloading packet (Jianbo Liu) [Orabug: 37268700] {CVE-2024-50261} - xfrm: Export symbol xfrm_dev_state_delete. (Steffen Klassert) [Orabug: 37357287] - xfrm: Fix unregister netdevice hang on hardware offload. (Steffen Klassert) [Orabug: 37357287] - xfrm: fix a data-race in xfrm_lookup_with_ifid() (Eric Dumazet) [Orabug: 37357287] - xfrm: generalize xdo_dev_state_update_curlft to allow statistics update (Leon Romanovsky) [Orabug: 37357287] - xfrm: copy_to_user_state fetch offloaded SA packets/bytes statistics (Raed Salem) [Orabug: 37357287] - xfrm: annotate data-race around use_time (Eric Dumazet) [Orabug: 37357287] - xfrm: consistently use time64_t in xfrm_timer_handler() (Eric Dumazet) [Orabug: 37357287] - cpufreq: intel_pstate: Update Balance-performance EPP for Granite Rapids (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Update Balance performance EPP for Emerald Rapids (Pedro Henrique Kopper) [Orabug: 37383554] - cpufreq: intel_pstate: Use Meteor Lake EPPs for Arrow Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Update Meteor Lake EPPs (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Switch to new Intel CPU model defines (Tony Luck) [Orabug: 37383554] - cpufreq: Switch to new Intel CPU model defines (Tony Luck) [Orabug: 37383554] - x86/cpu/vfm: Update arch/x86/include/asm/intel-family.h (Tony Luck) [Orabug: 37383554] - x86/cpu: Add model number for another Intel Arrow Lake mobile processor (Tony Luck) [Orabug: 37383554] - cpufreq: intel_pstate: Update default EPPs for Meteor Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Allow model specific EPPs (Srinivas Pandruvada) [Orabug: 37383554] - x86/cpu: Add model number for Intel Clearwater Forest processor (Tony Luck) [Orabug: 37383554] - cpufreq: intel_pstate: Update hybrid scaling factor for Meteor Lake (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Prioritize firmware-provided balance performance EPP (Srinivas Pandruvada) [Orabug: 37383554] - x86/cpu: Add model number for Intel Arrow Lake mobile processor (Tony Luck) [Orabug: 37383554] - x86/cpu: Update Hybrids (Peter Zijlstra) [Orabug: 37383554] - cpufreq: intel_pstate: Fix scaling for hybrid-capable systems with disabled E-cores (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Enable HWP IO boost for all servers (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Allow EPP 0x80 setting by the firmware (Srinivas Pandruvada) [Orabug: 37383554] - cpufreq: intel_pstate: Use firmware default EPP (Srinivas Pandruvada) [Orabug: 37383554] - net/mlx5: Add a timeout to acquire the command queue semaphore (Akiva Goldberger) [Orabug: 37388415] - PCI: Fix pci_enable_acs() support for the ACS quirks (Jason Gunthorpe) [Orabug: 37477375] - PCI: Clear Secondary Status errors after enumeration (Vidya Sagar) [Orabug: 37477375] - PCI/AER: Configure ECRC only if AER is native (Vidya Sagar) [Orabug: 37477375] - PCI: Extend ACS configurability (Vidya Sagar) [Orabug: 37477375] - NFSv4/pNFS: Do layout state recovery upon reboot (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Remove redundant call to unhash the layout (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Give nfs4_proc_layoutreturn() a flags argument (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Retry the layout return later in case of a timeout or reboot (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Handle server reboots in pnfs_poc_release() (Trond Myklebust) [Orabug: 37477755] - NFSv4/pNFS: Add a helper to defer failed layoutreturn calls (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Add support for the PNFS_LAYOUT_FILE_BULK_RETURN flag (Trond Myklebust) [Orabug: 37477755] - pNFS: Add a flag argument to pnfs_destroy_layouts_byclid() (Trond Myklebust) [Orabug: 37477755] - NFSv4: Clean up encode_nfs4_stateid() (Trond Myklebust) [Orabug: 37477755] - NFSv4.1: constify the stateid argument in nfs41_test_stateid() (Trond Myklebust) [Orabug: 37477755] - NFSv4/pnfs: Remove redundant list check (Trond Myklebust) [Orabug: 37477755] - uek-rpm: Enable CONFIG_SENSORS_ARM_SCMI and CONFIG_MVL_MHU (Thomas Tai) [Orabug: 37498899] [5.15.0-305.176.3.el9uek] - LTS version: v5.15.176 (Vijayendra Suman) - mm: vmscan: account for free pages to prevent infinite Loop in throttle_direct_reclaim() (Seiji Nishikawa) - dt-bindings: display: adi,adv7533: Drop single lane support (Biju Das) - drm: adv7511: Drop dsi single lane support (Biju Das) - net/sctp: Prevent autoclose integer overflow in sctp_association_init() (Nikolay Kuratov) - sky2: Add device ID 11ab:4373 for Marvell 88E8075 (Pascal Hambourg) - pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking (Evgenii Shatokhin) - RDMA/uverbs: Prevent integer overflow issue (Dan Carpenter) - kcov: mark in_softirq_really() as __always_inline (Arnd Bergmann) - modpost: fix the missed iteration for the max bit in do_input() (Masahiro Yamada) - modpost: fix input MODULE_DEVICE_TABLE() built for 64-bit on 32-bit host (Masahiro Yamada) - usb: xhci: Avoid queuing redundant Stop Endpoint commands (Michal Pecio) - ARC: build: Try to guess GCC variant of cross compiler (Leon Romanovsky) - irqchip/gic: Correct declaration of *percpu_base pointer in union gic_base (Uros Bizjak) - net: usb: qmi_wwan: add Telit FE910C04 compositions (Daniele Palmas) - bpf: fix potential error return (Anton Protopopov) - sound: usb: format: don't warn that raw DSD is unsupported (Adrian Ratiu) - sound: usb: enable DSD output for ddHiFi TC44C (Adrian Ratiu) - btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount (Filipe Manana) - drm/amdkfd: Correct the migration DMA map direction (Prike Liang) - wifi: mac80211: wake the queues in case of failure in resume (Emmanuel Grumbach) - btrfs: sysfs: fix direct super block member reads (Qu Wenruo) - btrfs: sysfs: convert scnprintf and snprintf to sysfs_emit (Anand Jain) - btrfs: fix use-after-free when COWing tree bock and tracing is enabled (Filipe Manana) - btrfs: rename and export __btrfs_cow_block() (Filipe Manana) - ila: serialize calls to nf_register_net_hooks() (Eric Dumazet) - af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet) - af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet) - net: wwan: iosm: Properly check for valid exec stage in ipc_mmio_init() (Maciej S. Szmigiero) - net: restrict SO_REUSEPORT to inet sockets (Eric Dumazet) - RDMA/rtrs: Ensure 'ib_sge list' is accessible (Li Zhijian) - net: mv643xx_eth: fix an OF node reference leak (Joe Hattori) - eth: bcmsysport: fix call balance of priv->clk handling routines (Vitalii Mordan) - ALSA: usb-audio: US16x08: Initialize array before use (Tanya Agarwal) - net: llc: reset skb->transport_header (Antonio Pastor) - netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext (Pablo Neira Ayuso) - drm/i915/dg1: Fix power gate sequence. (Rodrigo Vivi) - netrom: check buffer length before accessing it (Ilya Shchipletsov) - net: fix memory leak in tcp_conn_request() (Wang Liang) - net: stmmac: restructure the error path of stmmac_probe_config_dt() (Joe Hattori) - net: stmmac: don't create a MDIO bus if unnecessary (Andrew Halaney) - net: stmmac: platform: provide devm_stmmac_probe_config_dt() (Bartosz Golaszewski) - RDMA/hns: Fix missing flush CQE for DWQE (Chengchang Tang) - RDMA/hns: Fix warning storm caused by invalid input in IO path (Chengchang Tang) - RDMA/hns: Fix mapping error of zero-hop WQE buffer (wenglianfa) - RDMA/hns: Remove redundant 'bt_level' for hem_list_alloc_item() (Yunsheng Lin) - RDMA/hns: Remove redundant 'attr_mask' in modify_qp_init_to_init() (Yixing Liu) - drm/bridge: adv7511_audio: Update Audio InfoFrame properly (Stefan Ekenberg) - RDMA/bnxt_re: Fix the locking while accessing the QP table (Selvin Xavier) - RDMA/bnxt_re: Fix max_qp_wrs reported (Selvin Xavier) - RDMA/bnxt_re: Fix reporting hw_ver in query_device (Kalesh AP) - RDMA/bnxt_re: Add check for path mtu in modify_qp (Saravanan Vajravel) - RDMA/mlx5: Enforce same type port association for multiport RoCE (Patrisious Haddad) - xhci: Turn NEC specific quirk for handling Stop Endpoint errors generic (Mathias Nyman) - usb: xhci: Limit Stop Endpoint retries (Michal Pecio) - xhci: retry Stop Endpoint on buggy NEC controllers (Michal Pecio) - thunderbolt: Add support for Intel Panther Lake-M/P (Mika Westerberg) - thunderbolt: Add support for Intel Lunar Lake (Mika Westerberg) - thunderbolt: Add Intel Barlow Ridge PCI ID (Mika Westerberg) - thunderbolt: Add support for Intel Meteor Lake (Mika Westerberg) - thunderbolt: Add support for Intel Raptor Lake (George D Sworo) - tracing: Have process_string() also allow arrays (Steven Rostedt) - selinux: ignore unknown extended permissions (Thi?baud Weksteen) - x86/hyperv: Fix hv tsc page based sched_clock for hibernation (Naman Jain) - net: dsa: improve shutdown sequence (Vladimir Oltean) - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net (Yang Erkun) - btrfs: avoid monopolizing a core when activating a swap file (Filipe Manana) - power: supply: gpio-charger: Fix set charge current limits (Dimitri Fedrau) - tracing: Prevent bad count for tracing_cpumask_write (Lizhi Xu) - tracing: Constify string literal data member in struct trace_event_call (Christian G?ttsche) - ksmbd: fix racy issue from session lookup and expire (Namjae Jeon) - lib: stackinit: hide never-taken branch from compiler (Kees Cook) - drm/dp_mst: Verify request type in the corresponding down message reply (Imre Deak) - arm64: Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit ASIDs (Catalin Marinas) - arm64: mm: Rename asid2idx() to ctxid2asid() (Yunfeng Ye) - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write (Jordy Zomer) - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read (Jordy Zomer) - drm/dp_mst: Fix MST sideband message body length check (Imre Deak) - bpf: Check validity of link->type in bpf_link_show_fdinfo() (Hou Tao) - MIPS: Probe toolchain support of -msym32 (Jiaxun Yang) - vmalloc: fix accounting with i915 (Matthew Wilcox (Oracle)) - virtio-blk: don't keep queue frozen during system suspend (Ming Lei) - scsi: storvsc: Do not flag MAINTENANCE_IN return of SRB_STATUS_DATA_OVERRUN as an error (Cathy Avery) - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver load time (Ranjan Kumar) - platform/x86: asus-nb-wmi: Ignore unknown event 0xCF (Armin Wolf) - regmap: Use correct format specifier for logging range errors (Mark Brown) - ALSA: hda/conexant: fix Z60MR100 startup pop issue (bo liu) - scsi: megaraid_sas: Fix for a potential deadlock (Tomas Henzl) - scsi: qla1280: Fix hw revision numbering for ISP1020/1040 (Magnus Lindholm) - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04 (James Hilliard) - tracing/kprobe: Make trace_kprobe's module callback called after jump_label update (Masami Hiramatsu (Google)) - mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter) - dmaengine: at_xdmac: avoid null_prt_deref in at_xdmac_prep_dma_memset (Chen Ridong) - dmaengine: dw: Select only supported masters for ACPI devices (Andy Shevchenko) - dmaengine: mv_xor: fix child node refcount handling in early exit (Javier Carrasco) - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy (Zijun Hu) - phy: core: Fix that API devm_of_phy_provider_unregister() fails to unregister the phy provider (Zijun Hu) - phy: core: Fix that API devm_phy_put() fails to release the phy (Zijun Hu) - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup() (Zijun Hu) - phy: core: Fix an OF node refcount leakage in _of_phy_get() (Zijun Hu) - mtd: rawnand: arasan: Fix missing de-registration of NAND (Maciej Andrzejewski) - mtd: rawnand: arasan: Fix double assertion of chip-select (Maciej Andrzejewski) - mtd: diskonchip: Cast an operand to prevent potential overflow (Zichen Xie) - nfsd: restore callback functionality for NFSv4.0 (NeilBrown) - bpf: Check negative offsets in __bpf_skb_min_len() (Cong Wang) - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection (Zijian Zhang) - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress() (Cong Wang) - mm/vmstat: fix a W=1 clang compiler warning (Bart Van Assche) - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg (Nikita Zhandarovich) - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update (Michel D?nzer) - epoll: Add synchronous wakeup support for ep_poll_callback (Xuewen Yan) - ceph: validate snapdirname option length when mounting (Ilya Dryomov) - of: Fix refcount leakage for OF node returned by __of_get_dma_parent() (Zijun Hu) - of: Fix error path in of_parse_phandle_with_args_map() (Herve Codina) - udmabuf: also check for F_SEAL_FUTURE_WRITE (Jann Horn) - nilfs2: prevent use of deleted inode (Edward Adam Davis) - of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu) - NFS/pnfs: Fix a live lock between recalled layouts and layoutget (Trond Myklebust) - tracing: Add "%s" check in test_event_printk() (Steven Rostedt) - tracing: Add missing helper functions in event pointer dereference check (Steven Rostedt) - tracing: Fix test_event_printk() to process entire print argument (Steven Rostedt) - KVM: x86: Play nice with protected guests in complete_hypercall_exit() (Sean Christopherson) - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet (Michael Kelley) - btrfs: tree-checker: reject inline extent items with 0 ref count (Qu Wenruo) - zram: refuse to use zero sized block device as backing device (Kairui Song) - sh: clk: Fix clk_enable() to return 0 on NULL clk (Geert Uytterhoeven) - hwmon: (tmp513) Fix interpretation of values of Temperature Result and Limit Registers (Murad Masimov) - hwmon: (tmp513) Fix Current Register value interpretation (Murad Masimov) - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit Registers (Murad Masimov) - hwmon: (tmp513) Use SI constants from units.h (Andy Shevchenko) - hwmon: (tmp513) Simplify with dev_err_probe() (Andy Shevchenko) - hwmon: (tmp513) Don't use "proxy" headers (Andy Shevchenko) - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() (Ville Syrj?l?) - USB: serial: option: add Telit FE910C04 rmnet compositions (Daniele Palmas) - USB: serial: option: add MediaTek T7XX compositions (Jack Wu) - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready (Mank Wang) - USB: serial: option: add MeiG Smart SLM770A (Michal Hrusecky) - USB: serial: option: add TCL IK512 MBIM & ECM (Daniel Swanemar) - efivarfs: Fix error on non-existent file (James Bottomley) - i2c: riic: Always round-up when calculating bus period (Geert Uytterhoeven) - chelsio/chtls: prevent potential integer overflow on 32bit (Dan Carpenter) - mmc: sdhci-tegra: Remove SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk (Prathamesh Shete) - net: mdiobus: fix an OF node reference leak (Joe Hattori) - netfilter: ipset: Fix for recursive locking warning (Phil Sutter) - net: ethernet: bgmac-platform: fix an OF node reference leak (Joe Hattori) - net: hinic: Fix cleanup in create_rxqs/txqs() (Dan Carpenter) - ionic: use ee->offset when returning sprom data (Shannon Nelson) - ionic: Fix netdev notifier unregister on failure (Brett Creeley) - netdevsim: prevent bad user input in nsim_dev_health_break_write() (Eric Dumazet) - net/smc: check return value of sock_recvmsg when draining clc data (Guangguan Wang) - net/smc: check smcd_v2_ext_offset when receiving proposal msg (Guangguan Wang) - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg (Guangguan Wang) - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll (Guangguan Wang) - erofs: fix incorrect symlink detection in fast symlink (Gao Xiang) - i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun) - usb: dwc2: gadget: Don't write invalid mapped sg entries into dma_desc with iommu enabled (Peng Hongchi) - MIPS: Loongson64: DTS: Fix msi node for ls7a (Jiaxun Yang) - PCI: Add ACS quirk for Broadcom BCM5760X NIC (Ajit Khaparde) - PCI: vmd: Create domain symlink before pci_bus_add_devices() (Jiwei Sun) - ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP (Pierre-Louis Bossart) - usb: cdns3: Add quirk flag to enable suspend residency (Roger Quadros) - ALSA: usb: Fix UBSAN warning in parse_audio_unit() (Takashi Iwai) - PCI/AER: Disable AER service on suspend (Kai-Heng Feng) - PCI: Use preserve_config in place of pci_flags (Vidya Sagar) - net: sched: fix ordering of qlen adjustment (Lion Ackermann) - LTS version: v5.15.175 (Vijayendra Suman) - x86/static-call: fix 32-bit build (Juergen Gross) - ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter) - x86/xen: remove hypercall page (Juergen Gross) - x86/xen: use new hypercall functions instead of hypercall page (Juergen Gross) - x86/xen: add central hypercall functions (Juergen Gross) - x86/xen: don't do PV iret hypercall through hypercall page (Juergen Gross) - x86/static-call: provide a way to do very early static-call updates (Juergen Gross) - objtool/x86: allow syscall instruction (Juergen Gross) - x86: make get_cpu_vendor() accessible from Xen code (Juergen Gross) - xen/netfront: fix crash when removing device (Juergen Gross) - Revert "parisc: fix a possible DMA corruption" (Greg Kroah-Hartman) - tracing/kprobes: Skip symbol counting logic for module symbols in create_local_trace_kprobe() (Nikolay Kuratov) - bpf: sync_linked_regs() must preserve subreg_def (Eduard Zingerman) - blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor) - ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin) - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann) - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL (Daniel Borkmann) - net/sched: netem: account for backlog updates from child qdisc (Martin Ottens) - Documentation: PM: Clarify pm_runtime_resume_and_get() return value (Paul Barker) - qca_spi: Make driver probing reliable (Stefan Wahren) - qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren) - cxgb4: use port number to set mac addr (Anumula Murali Mohan Reddy) - ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen) - net: sparx5: fix the maximum frame length register (Daniel Machon) - net: sparx5: fix FDMA performance issue (Daniel Machon) - net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) - ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from kvm_arch_ptp_init() (Thomas Wei?schuh) - ptp: kvm: Use decrypted memory in confidential guest on x86 (Jeremi Piotrowski) - selftests: mlxsw: sharedbuffer: Remove duplicate test cases (Danielle Ratson) - selftests: mlxsw: sharedbuffer: Remove h1 ingress test case (Danielle Ratson) - tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) - batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel) - batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel) - batman-adv: Do not send uninitialized TT changes (Remi Pommarel) - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl (Suraj Sonawane) - exfat: fix potential deadlock on __exfat_get_dentry_set (Sungjong Seo) - virtio/vsock: Fix accept_queue memory leak (Michal Luczaj) - bpf, sockmap: Fix update element with same (Michal Luczaj) - xfs: fix scrub tracepoints when inode-rooted btrees are involved (Darrick J. Wong) - xfs: return from xfs_symlink_verify early on V4 filesystems (Darrick J. Wong) - xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong) - xfs: update btree keys correctly when _insrec splits an inode root block (Darrick J. Wong) - drm/i915: Fix memory leak by correcting cache object name in error handler (Jiasheng Jiang) - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) - usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan) - usb: dwc2: Fix HCD port connection race (Stefan Wahren) - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren) - usb: dwc2: Fix HCD resume (Stefan Wahren) - ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori) - usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson) - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5 (Jaakko Salo) - tcp: check space before adding MPTCP SYN options (MoYuanhao) - LTS version: v5.15.174 (Vijayendra Suman) - Bluetooth: hci_core: Fix calling mgmt_device_connected (Luiz Augusto von Dentz) - net/smc: Fix af_ops of child socket pointing to released memory (Karsten Graul) - media: venus: vdec: fixed possible memory leak issue (Ameer Hamza) - serial: amba-pl011: fix build regression (Arnd Bergmann) - drm/amdgpu: rework resume handling for display (v2) (Alex Deucher) - drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (Wayne Lin) - net: dsa: microchip: correct KSZ8795 static MAC table access (Tristram Ha) - Bluetooth: L2CAP: Fix uaf in l2cap_connect (Luiz Augusto von Dentz) - arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard hint (Mark Rutland) - arm64/sve: Discard stale CPU state when handling SVE traps (Mark Brown) - gve: Fixes for napi_poll when budget is 0 (Ziwei Xiao) - scsi: core: Fix scsi_mode_select() buffer length handling (Damien Le Moal) - Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun) - fou: remove warn in gue_gro_receive on unsupported protocol (Willem de Bruijn) - ima: Fix use-after-free on a dentry's dname.name (Stefan Berger) - crypto: hisilicon/qm - inject error before stopping queue (Weili Qian) - drm/amd/display: Check BIOS images before it is used (Alex Hung) - mmc: mtk-sd: Fix error handle of probe function (Andy-ld Lu) - xhci: dbc: Fix STALL transfer event handling (Mathias Nyman) - mm/damon/vaddr: fix issue in damon_va_evenly_split_region() (Zheng Yejian) - mm/damon/vaddr-test: split a test function having >1024 bytes frame size (SeongJae Park) - jffs2: Fix rtime decompressor (Richard Weinberger) - jffs2: Prevent rtime decompress memory corruption (Kinsey Moore) - KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang) - KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang) - KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang) - tracing/eprobe: Fix to release eprobe when failed to add dyn_event (Masami Hiramatsu (Google)) - btrfs: fix missing snapshot drew unlock when root is dead during swap activation (Filipe Manana) - sched/core: Prevent wakeup of ksoftirqd during idle load balance (K Prateek Nayak) - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU turning busy (K Prateek Nayak) - sched/fair: Add NOHZ balancer flag for nohz.next_balance updates (Valentin Schneider) - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func() (K Prateek Nayak) - modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner) - modpost: Include '.text.*' in TEXT_SECTIONS (Nathan Chancellor) - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman) - powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman) - MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a (Xi Ruoyao) - usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang) - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li) - PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou) - PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch) - PCI: Detect and trust built-in Thunderbolt chips (Esther Shimanovich) - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request (Jarkko Nikula) - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) - nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang) - pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n) - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara) - scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara) - leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) - scsi: hisi_sas: Add cond_resched() for no forced preemption model (Yihang Li) - tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak) - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU (Esben Haabendal) - netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao) - net/neighbor: clear error in case strict check is not set (Jakub Kicinski) - rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov) - ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman) - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet (Luiz Augusto von Dentz) - wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) - wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong) - drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov (Victor Zhao) - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) - jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) - jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) - jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) - dma-debug: fix a possible deadlock on radix_lock (Levi Yun) - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr (Lang Yu) - drm/amdgpu: Dereference the ATCS ACPI buffer (Prike Liang) - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih (Victor Lu) - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel (Manikandan Muralidharan) - wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev) - wifi: ath5k: add PCI ID for SX76X (Rosen Penev) - net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) - net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) - net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) - af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) - net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina) - net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman) - net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman) - samples/bpf: Fix a resource leak (Zhu Jun) - r8169: don't apply UDP padding quirk on RTL8126A (Heiner Kallweit) - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev) - drm/mcde: Enable module autoloading (Liao Chen) - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a) - drm/vc4: hvs: Set AXI panic modes for the HVS (Dave Stevenson) - soc: imx8m: Probe the SoC driver as platform driver (Marek Vasut) - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar) - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given) - kcsan: Turn report_filterlist_lock into a raw_spinlock (Marco Elver) - kselftest/arm64: Don't leak pipe fds in pac.exec_sign_all() (Mark Brown) - btrfs: avoid unnecessary device path update for the same device (Qu Wenruo) - s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter) - epoll: annotate racy check (Christian Brauner) - iommu/arm-smmu: Defer probe of clients after smmu device bound (Pratyush Brahma) - ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang) - mmc: core: Further prevent card detect during shutdown (Ulf Hansson) - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10 tablet (Hans de Goede) - regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav) - xsk: fix OOB map writes when deleting elements (Maciej Fijalkowski) - dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig) - bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che) - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) - scsi: ufs: core: sysfs: Prevent div by zero (Gwendal Grignou) - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap) - scsi: qla2xxx: Fix use after free on unload (Quinn Tran) - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy) - scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran) - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG) (Sahas Leelodharry) - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8 (Nazar Bilinskyi) - ALSA: usb-audio: add mixer mapping for Corsair HS80 (Marie Ramlow) - arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL (Mark Rutland) - tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu) - can: dev: can_set_termination(): allow sleeping GPIOs (Marc Kleine-Budde) - watchdog: rti: of: honor timeout-sec property (Alexander Sverdlin) - HID: wacom: fix when get product name maybe null pointer (WangYuli) - bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao) - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao) - ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) - drm/v3d: Enable Performance Counters before clearing them (Ma?ra Canal) - spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao) - tools: Override makefile ARCH variable if defined, but empty (Bj?rn T?pel) - ALSA: usb-audio: Notify xrun for low-latency mode (Takashi Iwai) - ALSA: pcm: Avoid reference to status->state (Takashi Iwai) - ALSA: pcm: Add more disconnection checks at file ops (Takashi Iwai) - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao) - bpftool: fix potential NULL pointer dereferencing in prog_dump() (Amir Mohammadi) - bpftool: Remove asserts from JIT disassembler (Quentin Monnet) - serial: amba-pl011: Fix RX stall when DMA is used (Kartik Rajput) - serial: amba-pl011: Use port lock wrappers (Thomas Gleixner) - dt-bindings: serial: rs485: Fix rs485-rts-delay property (Michal Simek) - dt_bindings: rs485: Correct delay values (Lino Sanfilippo) - gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) - gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski) - geneve: do not assume mac header is set in geneve_xmit_skb() (Eric Dumazet) - ethtool: Fix wrong mod state in case of verbose and no_mask bitset (Kory Maincent) - netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso) - netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) - net: sched: fix erspan_opt settings in cls_flower (Xin Long) - igb: Fix potential invalid memory access in igb_init_module() (Yuan Can) - net/qed: allow old cards not supporting "num_images" to work (Louis Leseur) - net/smc: fix LGR and link use-after-free issue (Wen Gu) - net/smc: Limit backlog connections (D. Wythe) - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) - dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) - net/ipv6: release expired exception dst cached in socket (Jiri Wiesner) - can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov) - net: hsr: avoid potential out-of-bound access in fill_frame_info() (Eric Dumazet) - net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens) - ptp: Add error handling for adjfine callback in ptp_clock_adjtime (Ajay Kaher) - netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia) - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi) - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation fails (Dario Binacchi) - can: do not increase rx statistics when generating a CAN rx error message frame (Vincent Mailhol) - can: peak_usb: CANFD: store 64-bits hw timestamps (Stephane Grosjean) - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana) - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi) - drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach) - drm/sti: avoid potential dereference of error pointers (Ma Ke) - drm/sti: avoid potential dereference of error pointers in sti_gdp_atomic_check (Ma Ke) - drm/sti: avoid potential dereference of error pointers in sti_hqvdp_atomic_check (Ma Ke) - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (Josef Bacik) - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun) - nfsd: make sure exp active before svc_export_show (Yang Erkun) - PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal) - dm thin: Add missing destroy_work_on_stack() (Yuan Can) - ovl: properly handle large files in ovl_security_fileattr (Oleksandr Tymoshenko) - PCI: keystone: Add link up check to ks_pcie_other_map_bus() (Kishon Vijay Abraham I) - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) - scsi: ufs: exynos: Fix hibern8 notify callbacks (Peter Griffin) - util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean) - s390/entry: Mark IRQ entries to fix stack depot warnings (Vasily Gorbik) - ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) - btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) - btrfs: add a sanity check for btrfs root in btrfs_search_slot() (Lizhi Xu) - btrfs: add might_sleep() annotations (ChenXiaoSong) - quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo) - xfs: remove unknown compat feature check in superblock write validation (Long Li) - xfs: fix log recovery when unknown rocompat bits are set (Darrick J. Wong) - ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang) - sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) - sunrpc: remove unnecessary test in rpc_task_set_client() (Thiago Rafael Becker) - nfs: ignore SB_RDONLY when mounting nfs (Li Lingfeng) - modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada) - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier) - 9p/xen: fix release of IRQ (Alex Zenla) - 9p/xen: fix init sequence (Alex Zenla) - block: return unsigned int from bdev_io_min (Christoph Hellwig) - jffs2: fix use of uninitialized variable (Qingfang Deng) - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) - ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) - ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng) - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) - rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu) - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) - um: Always dump trace for specified task in show_stack (Tiwei Bie) - um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie) - um: Fix potential integer overflow during physmem setup (Tiwei Bie) - rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson) - SUNRPC: make sure cache entry active before cache_show (Yang Erkun) - NFSD: Prevent a potential integer overflow (Chuck Lever) - lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski) - usb: dwc3: gadget: Fix looping of queued SG entries (Thinh Nguyen) - usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen) - ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai) - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar) - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang) - ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang) - ALSA: pcm: Add sanity NULL check for the default mmap fault handler (Takashi Iwai) - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result (Hans Verkuil) - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting() (Javier Carrasco) - media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke) - block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon) - sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - um: vector: Do not use drvdata in release (Tiwei Bie) - serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu) - um: net: Do not use drvdata in release (Tiwei Bie) - um: ubd: Do not use drvdata in release (Tiwei Bie) - ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng) - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement (Javier Carrasco) - cpufreq: mediatek-hw: Fix wrong return value in mtk_cpufreq_get_cpu_power() (Jinjie Ruan) - mtd: spi-nor: core: replace dummy buswidth from addr to data (Cheng Ming Lin) - spi: Fix acpi deferred irq probe (Stanislaw Gruszka) - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) - gpio: exar: set value when external pull-up or pull-down is present (Sai Kumar Cholleti) - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman) - serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea) - Revert "usb: gadget: composite: fix OS descriptors w_value logic" (Michal Vrastil) - driver core: bus: Fix double free in driver API bus_register() (Zijun Hu) - usb: xhci: Fix TD invalidation under pending Set TR Dequeue (Michal Pecio) - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura) - exfat: fix uninit-value in __exfat_get_dentry_set (Namjae Jeon) - locking/lockdep: Avoid creating new name string literals in lockdep_set_subclass() (Ahmed Ehab) - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet) - apparmor: test: Fix memory leak for aa_unpack_strdup() (Jinjie Ruan) - comedi: Flush partial mappings in error case (Jann Horn) - fsnotify: fix sending inotify event with unexpected filename (Amir Goldstein) - PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) - KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta) - powerpc/pseries: Fix KVM guest detection for disabling hardlockup detector (Gautam Menghani) - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers) - perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter) - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen) - jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov) - ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o) - ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park) - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu) - ASoC: Intel: sst: Fix used of uninitialized ctx to log an error (Hans de Goede) - Revert "drivers: clk: zynqmp: update divider round rate logic" (Joel Guittet) - usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan) - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) - xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (Namjae Jeon) - parisc: fix a possible DMA corruption (Mikulas Patocka) - apparmor: fix 'Do simple duplicate message elimination' (chao liu) - ALSA: hda/realtek: Update ALC256 depop procedure (Kailang Yang) - counter: stm32-timer-cnt: Add check for clk_enable() (Jiasheng Jiang) - misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan) - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis) - USB: chaoskey: fail open after removal (Oliver Neukum) - usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum) - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park) - iio: light: al3010: Fix an error handling path in al3010_probe() (Christophe JAILLET) - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down (Saravanan Vajravel) - net: hsr: fix hsr_init_sk() vs network/transport headers. (Eric Dumazet) - spi: atmel-quadspi: Fix register name in verbose logging function (Cs?k?s, Bence) - octeontx2-af: RPM: Fix mismatch in lmac type (Hariprasad Kelam) - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier) - marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan) - net: mdio-ipq4019: add missing error check (Rosen Penev) - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel) - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi) - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel) - power: supply: bq27xxx: Fix registers of bq27426 (Barnab?s Cz?m?n) - power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche) - fs_parser: update mount_api doc to match function signature (Randy Dunlap) - vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) - selftests/mount_setattr: Fix failures on 64K PAGE_SIZE kernels (Michael Ellerman) - vdpa/mlx5: Fix suboptimal range on iotlb iteration (Si-Wei Liu) - hwmon: (tps23861) Fix reporting of negative temperatures (Murad Masimov) - NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever) - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() (Ye Bin) - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table (Luis Chamberlain) - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever) - NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region (Sibi Sankar) - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek) - rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson) - rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam) - rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam) - perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson) - perf trace: Do not lose last events in a race (Benjamin Peterson) - svcrdma: Address an integer overflow (Chuck Lever) - m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli) - m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois) - perf trace: avoid garbage when not printing a trace event's arguments (Benjamin Peterson) - f2fs: check curseg->inited before write_sum_page in change_curseg (Yongpeng Yang) - f2fs: remove the unused flush argument to change_curseg (Christoph Hellwig) - f2fs: open code allocate_segment_by_default (Christoph Hellwig) - f2fs: remove struct segment_allocation default_salloc_ops (Christoph Hellwig) - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block (LongPing Wei) - PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen) - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng) - perf probe: Correct demangled symbols in C++ program (Leo Yan) - perf probe: Fix libdw memory leak (Ian Rogers) - PCI: Fix reset_method_store() memory leak (Todd Kjos) - perf cs-etm: Don't flush when packet_queue fills up (James Clark) - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb() (Dan Carpenter) - pinctrl: k210: Undef K210_PC_DEFAULT (zhang jiao) - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa) - dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa) - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) - fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann) - powerpc/kexec: Fix return of uninitialized variable (Zhang Zekun) - powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek) - ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) - RDMA/hns: Fix out-of-order issue of requester when setting FENCE (Junxian Huang) - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) - scsi: fusion: Remove unused variable 'rc' (Zeng Heng) - scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) - mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong) - clk: imx: clk-scu: fix clk enable state save and restore (Dong Aisheng) - clk: imx: lpcg-scu: SW workaround for errata (e10858) (Peng Fan) - powerpc/pseries: Fix dtl_access_lock to be a rw_semaphore (Michael Ellerman) - powerpc/mm/fault: Fix kfence page fault reporting (Ritesh Harjani (IBM)) - mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal) - cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) - mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko) - mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson) - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan) - pinctrl: zynqmp: drop excess struct member description (Bartosz Golaszewski) - trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun) - bpf: fix recursive lock when verdict program return SK_PASS (Jiayuan Chen) - wireguard: selftests: load nf_conntrack if not present (Hangbin Liu) - netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao) - Bluetooth: fix use-after-free in device_for_each_child() (Dmitry Antipov) - driver core: Introduce device_find_any_child() helper (Andy Shevchenko) - ALSA: 6fire: Release resources at card release (Takashi Iwai) - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) - net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng) - drm/amdkfd: Fix wrong usage of INIT_WORK() (Yuan Can) - selftests: net: really check for bg process completion (Paolo Abeni) - bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang) - selftests/bpf: Add push/pop checking for msg_verify_data in test_sockmap (Zijian Zhang) - selftests/bpf: Fix total_bytes in msg_loop_rx in test_sockmap (Zijian Zhang) - selftests, bpf: Add one test for sockmap with strparser (Liu Jian) - selftests/bpf: Fix SENDPAGE data logic in test_sockmap (Zijian Zhang) - selftests/bpf: Add txmsg_pass to pull/push/pop in test_sockmap (Zijian Zhang) - netlink: typographical error in nlmsg_type constants definition (Maurice Lambert) - netfilter: nf_tables: must hold rcu read lock while iterating object type list (Florian Westphal) - netfilter: nf_tables: skip transaction if update object is not implemented (Pablo Neira Ayuso) - drm/msm/dpu: cast crtc_clk calculation to u64 in _dpu_core_perf_calc_clk() (Zichen Xie) - wifi: wfx: Fix error handling in wfx_core_init() (Yuan Can) - drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach) - drm/etnaviv: fix power register offset on GC300 (Doug Brown) - drm/etnaviv: Request pages from DMA32 zone on addressing_limited (Xiaolei Wang) - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price) - octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c (Dipendra Khadka) - octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c (Dipendra Khadka) - octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c (Dipendra Khadka) - drm: fsl-dcu: enable PIXCLK on LS1021A (Matthias Schiffer) - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) - selftests/bpf: Fix txmsg_redir of test_txmsg_pull in test_sockmap (Zijian Zhang) - selftests/bpf: Fix msg_verify_data in test_sockmap (Zijian Zhang) - drm/bridge: tc358767: Fix link properties discovery (Tomi Valkeinen) - netdevsim: copy addresses for both in and out paths (Hangbin Liu) - libbpf: fix sym_is_subprog() logic for weak global subprogs (Andrii Nakryiko) - bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen) - libbpf: Fix output .symtab byte-order during linking (Tony Ambardar) - drm/bridge: anx7625: Drop EDID cache on bridge power off (Pin-yen Lin) - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode (Macpaul Lin) - ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang) - ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer) - ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer) - ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer) - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov) - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2 (Baochen Qiang) - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1 (Baochen Qiang) - drm/v3d: Address race-condition in MMU flush (Ma?ra Canal) - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen) - drm/omap: Fix possible NULL dereference (Tomi Valkeinen) - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko) - platform/x86: panasonic-laptop: Return errno correctly in show callback (Yao Zi) - platform/x86: panasonic-laptop: Replace snprintf in show functions with sysfs_emit (Qing Wang) - media: atomisp: Add check for rgby_data memory allocation failure (Li Huafei) - media: atomisp: remove #ifdef HAS_NO_HMEM (Mauro Carvalho Chehab) - media: venus: provide ctx queue lock for ioctl synchronization (Sergey Senozhatsky) - venus: venc: add handling for VIDIOC_ENCODER_CMD (Dikshita Agarwal) - media: venus : Addition of support for VIDIOC_TRY_ENCODER_CMD (Dikshita Agarwal) - media: venus : Addition of EOS Event support for Encoder (Viswanath Boma) - media: venus: vdec: decoded picture buffer handling during reconfig sequence (Mansur Alisha Shaik) - media: venus: venc: Use pmruntime autosuspend (Stanimir Varbanov) - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) - selftests/resctrl: Protect against array overrun during iMC config parsing (Reinette Chatre) - arm64: dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed regulators (Chen-Yu Tsai) - arm64: dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names (Chen-Yu Tsai) - arm64: dts: mt8183: jacuzzi: Move panel under aux-bus (Hsin-Yi Wang) - arm64: dts: mt8183: jacuzzi: remove unused ddc-i2c-bus (Hsin-Yi Wang) - regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko) - spi: zynqmp-gqspi: Undo runtime PM changes at driver exit time? (Jinjie Ruan) - spi: tegra210-quad: Avoid shift-out-of-bounds (Breno Leitao) - pmdomain: ti-sci: Add missing of_node_put() for args.np (Zhang Zekun) - ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara) - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle (Clark Wang) - arm64: dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - arm64: dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - arm64: dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns (Daolong Zhu) - cgroup/bpf: only cgroup v2 can be attached by bpf programs (Chen Ridong) - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline" (Chen Ridong) - arm64: dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source trackpad (Chen-Yu Tsai) - arm64: dts: mt8183: kukui: Fix the address of eeprom at i2c4 (Hsin-Te Yuan) - arm64: dts: mt8183: krane: Fix the address of eeprom at i2c4 (Hsin-Te Yuan) - tpm: fix signed/unsigned bug when checking event logs (Gregory Price) - mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski) - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - spi: spi-fsl-lpspi: downgrade log level for pio mode (Alexander Stein) - clocksource/drivers:sp804: Make user selectable (Mark Brown) - kcsan, seqlock: Fix incorrect assumption in read_seqbegin() (Marco Elver) - kcsan, seqlock: Support seqcount_latch_t (Marco Elver) - seqlock/latch: Provide raw_read_seqcount_latch_retry() (Peter Zijlstra) - timekeeping: Consolidate fast timekeeper (Thomas Gleixner) - time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda) - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET) - crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) - crypto: caam - add error check to caam_rsa_set_priv_key_form (Chen Ridong) - EDAC/igen6: Avoid segmentation fault on module unload (Orange Kao) - crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C) - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) - EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh) - thermal: core: Initialize thermal zones before registering them (Rafael J. Wysocki) - crypto: qat - remove faulty arbiter config reset (Ahsan Atta) - EDAC/bluefield: Fix potential integer overflow (David Thompson) - firmware: google: Unregister driver_info on failure (Yuan Can) - crypto: caam - Fix the pointer passed to caam_qi_shutdown() (Christophe JAILLET) - hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) - s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada) - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin) - arm64: fix .data.rel.ro size assertion when CONFIG_LTO_CLANG (Masahiro Yamada) - m68k: mvme147: Reinstate early console (Daniel Palmer) - m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven) - m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer) - nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) - initramfs: avoid filename buffer overrun (David Disseldorp) - mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski) - brd: defer automatic disk creation until module initialization succeeds (Yang Erkun) - brd: remove brd_devices_mutex mutex (Tetsuo Handa) - s390/cio: Do not unregister the subchannel based on DNV (Vineeth Vijayan) - kselftest/arm64: mte: fix printf type warnings about longs (Andre Przywara) - x86/barrier: Do not serialize MSR accesses on AMD (Borislav Petkov (AMD)) - nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan) - cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) - rcu-tasks: Idle tasks on offline CPUs are in quiescent states (Paul E. McKenney) - ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao) - ARM: 9420/1: smp: Fix SMP for xip kernels (Harith G) - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry (Eryk Zagorski) - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang) - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan) - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan) - can: j1939: fix error in J1939 documentation. (Alexander H?lzl) - platform/x86: dell-wmi-base: Handle META key Lock/Unlock events (Kurt Borja) - platform/x86: dell-smbios-base: Extends support to Alienware products (Kurt Borja) - regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko) - soc: qcom: Add check devm_kasprintf() returned value (Charles Han) - net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin) - x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann) - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan) - selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian) - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver (Benjamin Gro?e) - mac80211: fix user-power when emulating chanctx (Ben Greear) - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend (Daniel Gabay) - ASoC: Intel: sst: Support LPE0F28 ACPI HID (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated codec (Hans de Goede) - NFS: nfs_async_write_reschedule_io must not recurse into the writeback code (Trond Myklebust) - mm: resolve faulty mmap_region() error path behaviour (Lorenzo Stoakes) - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (Lorenzo Stoakes) - mm: unconditionally close VMAs on error (Lorenzo Stoakes) - mm: avoid unsafe VMA hook invocation when error arises on mmap hook (Lorenzo Stoakes) - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (Paolo Abeni) - NFSD: Never decrement pending_async_copies on error (Chuck Lever) - NFSD: Initialize struct nfsd4_copy earlier (Chuck Lever) - NFSD: Limit the number of concurrent async COPY operations (Chuck Lever) - NFSD: Async COPY result needs to return a write verifier (Chuck Lever) - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (Dai Ngo) - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab) - mmc: sunxi-mmc: Fix A100 compatible description (Andre Przywara) - mmc: sunxi-mmc: Add D1 MMC variant (Samuel Holland) - drm/bridge: tc358768: Fix DSI command tx (Francesco Dolcini) - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov) - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) - KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (Sean Christopherson) - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (Si-Wei Liu) - ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (Jinjiang Tu) - x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (Baoquan He) - ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (Harith G) - samples: pktgen: correct dev to DEV (Wei Fang) - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (Moshe Shemesh) - net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea) - net/mlx5: fs, lock FTE when checking if active (Mark Bloch) - drm/rockchip: vop: Fix a dereferenced before check warning (Andy Yan) - netlink: terminate outstanding dump on socket close (Jakub Kicinski) - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos) - leds: lp55xx: Remove redundant test for invalid channel number (Michal Vok??) - iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated tables (Mostafa Saleh) - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event (MengEn Sun) - ftrace: Fix regression with module command in stack_trace_filter (guoweikang) - ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) - media: uvcvideo: Require entities to have a non-zero unique ID (Thadeu Lima de Souza Cascardo) - media: uvcvideo: Stop stream during unregister (Ricardo Ribalda) - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan) - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan) - media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) - media: imx-jpeg: Ensure power suppliers be suspended before detach them (Ming Qian) - media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) - media: imx-jpeg: Set video drvdata before register video device (Ming Qian) - arm64: dts: allwinner: pinephone: Add mount matrix to accelerometer (Dragan Simic) - LTS version: v5.15.173 (Vijayendra Suman) - 9p: fix slab cache name creation for real (Linus Torvalds) - udf: Avoid directory type conversion failure due to ENOMEM (Jan Kara) - udf: Allocate name buffer in directory iterator on heap (Jan Kara) - mm/memory: add non-anonymous page check in the copy_present_page() (Yuanzheng Song) - io_uring: fix possible deadlock in io_register_iowq_max_workers() (Hagar Hemdan) - md/raid10: improve code of mrdev in raid10_sync_request (Li Nan) - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard (Hans de Goede) - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad (Kenneth Albanowski) - fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) - vDPA/ifcvf: Fix pci_read_config_byte() return code handling (Yuan Can) - powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman) - drm/vmwgfx: Limit display layout ioctl array size to VMWGFX_NUM_DISPLAY_UNITS (Ian Forbes) - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter) - crypto: marvell/cesa - Disable hash algorithms (Herbert Xu) - bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel) - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli) - HID: multitouch: Add support for B2402FVA track point (Stefan Blum) - block: Fix elevator_get_default() checking for NULL q->tag_set (SurajSonawane2415) - irqchip/ocelot: Fix trigger register address (Sergey Matsievskiy) - 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato) - LTS version: v5.15.172 (Vijayendra Suman) - ALSA: usb-audio: Add endianness annotations (Jan Sch?r) - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) - ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r) - ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r) - ucounts: fix counter leak in inc_rlimit_get_ucounts() (Andrei Vagin) - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) - irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier) - USB: serial: option: add Quectel RG650V (Beno?t Monin) - USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu) - USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (Dan Carpenter) - usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) - net: do not delay dst_entries_add() in dst_release() (Eric Dumazet) - net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) - btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) - nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write (Jens Axboe) - io_uring: use kiocb_{start,end}_write() helpers (Amir Goldstein) - fs: create kiocb_{start,end}_write() helpers (Amir Goldstein) - io_uring: rename kiocb_end_write() local helper (Amir Goldstein) - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone (Benjamin Segall) - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam (Takashi Iwai) - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie) - dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) - dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) - dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai) - thermal/drivers/qcom/lmh: Remove false lockdep backtrace (Dmitry Baryshkov) - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) - drm/amdgpu: Adjust debugfs eviction and IB access permissions (Alex Deucher) - pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher) - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl() (Mauro Carvalho Chehab) - media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) - media: pulse8-cec: fix data timestamp at pulse8_setup() (Mauro Carvalho Chehab) - media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) - media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) - ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove (Amelie Delaunay) - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov) - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer (Johannes Thumshirn) - media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab) - media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab) - media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) - media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab) - net: arc: fix the device for dma_map_single/dma_unmap_single (Johan Jonker) - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case (N?colas F. R. A. Prado) - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag (Diogo Silva) - net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) - i40e: fix race condition by adding filter's intermediate sync state (Aleksandr Loktionov) - can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi) - sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) - net: enetc: set MAC address to the VF net_device (Wei Fang) - security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) - nfs: avoid i_lock contention in nfs_clear_invalid_mapping (Mike Snitzer) - NFSv3: handle out-of-order write replies. (NeilBrown) - NFS: Add a tracepoint to show the results of nfs_set_cache_invalid() (Benjamin Coddington) - NFSv3: only use NFS timeout for MOUNT when protocols are compatible (NeilBrown) - HID: core: zero-initialize the report buffer (Jiri Kosina) - ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner) - ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner) - ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner) - ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner) - arm64: dts: imx8mp: correct sdhc ipg clk (Peng Fan) - arm64: dts: rockchip: Fix LED triggers on rk3308-roc-cc (Heiko Stuebner) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven) From el-errata at oss.oracle.com Thu Feb 13 14:43:06 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Thu, 13 Feb 2025 06:43:06 -0800 Subject: [El-errata] ELBA-2025-20093 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20093 http://linux.oracle.com/errata/ELBA-2025-20093.html The following updated rpms for Oracle Linux 8 oVirt 4.5 have been uploaded to the Unbreakable Linux Network: x86_64: ovirt-engine-4.5.5-1.34.el8.noarch.rpm ovirt-engine-backend-4.5.5-1.34.el8.noarch.rpm ovirt-engine-dbscripts-4.5.5-1.34.el8.noarch.rpm ovirt-engine-health-check-bundler-4.5.5-1.34.el8.noarch.rpm ovirt-engine-restapi-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-base-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-plugin-cinderlib-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-plugin-imageio-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-plugin-ovirt-engine-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-plugin-ovirt-engine-common-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.5.5-1.34.el8.noarch.rpm ovirt-engine-setup-plugin-websocket-proxy-4.5.5-1.34.el8.noarch.rpm ovirt-engine-tools-4.5.5-1.34.el8.noarch.rpm ovirt-engine-tools-backup-4.5.5-1.34.el8.noarch.rpm ovirt-engine-vmconsole-proxy-helper-4.5.5-1.34.el8.noarch.rpm ovirt-engine-webadmin-portal-4.5.5-1.34.el8.noarch.rpm ovirt-engine-websocket-proxy-4.5.5-1.34.el8.noarch.rpm python3-ovirt-engine-lib-4.5.5-1.34.el8.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//ovirt-engine-4.5.5-1.34.el8.src.rpm Description of changes: [4.5.5-1.34] - Fix Sapphire Rapids CPU flags and add AMD EPYC-Rome, EPYC-Milan CPUs From el-errata at oss.oracle.com Fri Feb 14 17:07:08 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:08 -0800 Subject: [El-errata] ELBA-2025-20105 Oracle Linux 8 gcc-toolset-13-annobin bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20105 http://linux.oracle.com/errata/ELBA-2025-20105.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el8_10.x86_64.rpm gcc-toolset-13-annobin-docs-12.69-1.0.1.el8_10.noarch.rpm gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el8_10.x86_64.rpm aarch64: gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el8_10.aarch64.rpm gcc-toolset-13-annobin-docs-12.69-1.0.1.el8_10.noarch.rpm gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-13-annobin-12.69-1.0.1.el8_10.src.rpm Description of changes: [12.69-1.0.1] - NVR bump to rebuild with latest GCC. From el-errata at oss.oracle.com Fri Feb 14 17:07:09 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:09 -0800 Subject: [El-errata] ELSA-2025-20100 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20100 http://linux.oracle.com/errata/ELSA-2025-20100.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: aarch64: kernel-uek-5.4.17-2136.340.4.1.el8uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.340.4.1.el8uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.340.4.1.el8uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.340.4.1.el8uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.340.4.1.el8uek.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.340.4.1.el8uek.src.rpm Related CVEs: CVE-2024-38538 CVE-2024-38588 CVE-2024-49996 CVE-2024-50264 CVE-2024-50265 CVE-2024-50267 CVE-2024-50269 CVE-2024-50273 CVE-2024-50278 CVE-2024-50279 CVE-2024-50282 CVE-2024-50287 CVE-2024-50290 CVE-2024-50296 CVE-2024-50299 CVE-2024-50301 CVE-2024-50302 CVE-2024-53061 CVE-2024-53063 CVE-2024-53066 CVE-2024-53101 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53130 CVE-2024-53131 CVE-2024-53135 CVE-2024-53140 CVE-2024-53141 CVE-2024-53142 CVE-2024-53145 CVE-2024-53146 CVE-2024-53148 CVE-2024-53150 CVE-2024-53155 CVE-2024-53156 CVE-2024-53157 CVE-2024-53158 CVE-2024-53161 CVE-2024-53165 CVE-2024-53171 CVE-2024-53172 CVE-2024-53173 CVE-2024-53174 CVE-2024-53181 CVE-2024-53183 CVE-2024-53184 CVE-2024-53194 CVE-2024-53197 CVE-2024-53198 CVE-2024-53214 CVE-2024-53217 CVE-2024-53227 CVE-2024-53239 CVE-2024-53240 CVE-2024-56531 CVE-2024-56532 CVE-2024-56539 CVE-2024-56548 CVE-2024-56558 CVE-2024-56562 CVE-2024-56567 CVE-2024-56569 CVE-2024-56570 CVE-2024-56572 CVE-2024-56574 CVE-2024-56576 CVE-2024-56581 CVE-2024-56586 CVE-2024-56587 CVE-2024-56593 CVE-2024-56594 CVE-2024-56595 CVE-2024-56596 CVE-2024-56597 CVE-2024-56598 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56615 CVE-2024-56619 CVE-2024-56629 CVE-2024-56630 CVE-2024-56633 CVE-2024-56634 CVE-2024-56637 CVE-2024-56642 CVE-2024-56643 CVE-2024-56650 CVE-2024-56659 CVE-2024-56661 CVE-2024-56670 CVE-2024-56681 CVE-2024-56688 CVE-2024-56690 CVE-2024-56691 CVE-2024-56700 CVE-2024-56704 CVE-2024-56723 CVE-2024-56724 CVE-2024-56739 CVE-2024-56746 CVE-2024-56747 CVE-2024-56748 CVE-2024-56756 Description of changes: [5.4.17-2136.340.4.1.el8uek] - RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju) [Orabug: 37566743] [5.4.17-2136.340.4.el8uek] - ftrace: use preempt_enable/disable notrace macros to avoid double fault (Koichiro Den) - nfsd: restore callback functionality for NFSv4.0 (NeilBrown) - i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun) - of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu) - af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet) - af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet) - mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter) [5.4.17-2136.340.3.el8uek] - Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha) [Orabug: 37475435] - vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu) [Orabug: 37136890] - Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang) [Orabug: 37136890] - rds: ib: Avoid UAF on RDS Socket's rs_trans_lock (H?kon Bugge) [Orabug: 36693622] - rds: ib: Fix blocked processes related to race in rds_rdma_free_dev_rs_worker() (H?kon Bugge) [Orabug: 36693622] - rds: ib: Fix deterministic UAF in rds_rdma_free_dev_rs_worker() (H?kon Bugge) [Orabug: 36693622] - Revert "KVM: SVM: Add a module parameter to override iommu AVIC usage" (Alejandro Jimenez) [Orabug: 35001679] [5.4.17-2136.340.2.el8uek] - LTS tag: v5.4.288 (Alok Tiwari) - ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter) - xen/netfront: fix crash when removing device (Juergen Gross) [Orabug: 37427542] {CVE-2024-53240} - KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta) - blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor) - blk-iocost: fix weight updates of inner active iocgs (Tejun Heo) - blk-iocost: clamp inuse and skip noops in __propagate_weights() (Tejun Heo) - ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin) - net/sched: netem: account for backlog updates from child qdisc (Martin Ottens) - qca_spi: Make driver probing reliable (Stefan Wahren) - qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren) - ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen) - net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) [Orabug: 37434237] {CVE-2024-56659} - tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) [Orabug: 37506456] {CVE-2024-56661} - batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel) - batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel) - batman-adv: Do not send uninitialized TT changes (Remi Pommarel) - bpf, sockmap: Fix update element with same (Michal Luczaj) - xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong) - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) [Orabug: 37434264] {CVE-2024-56670} - usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan) - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren) - ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori) - usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson) - LTS tag: v5.4.287 (Alok Tiwari) - bpf, xdp: Update devmap comments to reflect napi/rcu usage (John Fastabend) - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) [Orabug: 37427489] {CVE-2024-53150} - PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal) - Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun) - modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner) - jffs2: Fix rtime decompressor (Richard Weinberger) - jffs2: Prevent rtime decompress memory corruption (Kinsey Moore) - KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang) - KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang) - KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang) - perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter) - bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) [Orabug: 37434047] {CVE-2024-56615} - xdp: Simplify devmap cleanup (Bj?rn T?pel) - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman) - powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman) - usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang) - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li) - PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou) - PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch) - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) [Orabug: 37433861] {CVE-2024-56586} - nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang) - pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n) - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara) - scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara) - leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) [Orabug: 37433869] {CVE-2024-56587} - tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak) - netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao) - net/neighbor: clear error in case strict check is not set (Jakub Kicinski) - rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov) - ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman) - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (Hilda Wu) - wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) [Orabug: 37433908] {CVE-2024-56593} - wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong) - drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) [Orabug: 37433914] {CVE-2024-56594} - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) [Orabug: 37433920] {CVE-2024-56595} - jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) [Orabug: 37433928] {CVE-2024-56596} - jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) [Orabug: 37433934] {CVE-2024-56597} - jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) [Orabug: 37433941] {CVE-2024-56598} - wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev) - wifi: ath5k: add PCI ID for SX76X (Rosen Penev) - net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) [Orabug: 37433955] {CVE-2024-56600} - net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) [Orabug: 37433962] {CVE-2024-56601} - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) [Orabug: 37433970] {CVE-2024-56602} - net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) [Orabug: 37433977] {CVE-2024-56603} - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) [Orabug: 37433990] {CVE-2024-56605} - af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) [Orabug: 37433996] {CVE-2024-56606} - net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina) - net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman) - net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman) - samples/bpf: Fix a resource leak (Zhu Jun) - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev) - drm/mcde: Enable module autoloading (Liao Chen) - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a) - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar) - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given) - s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter) - mmc: core: Further prevent card detect during shutdown (Ulf Hansson) - regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav) - dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig) - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che) - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) [Orabug: 37434065] {CVE-2024-56619} - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap) - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy) - scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran) - ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang) - tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu) - HID: wacom: fix when get product name maybe null pointer (WangYuli) [Orabug: 37434108] {CVE-2024-56629} - bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao) - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao) - ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) [Orabug: 37434113] {CVE-2024-56630} - spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao) - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) [Orabug: 37434127] {CVE-2024-56633} - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao) - gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) [Orabug: 37434131] {CVE-2024-56634} - gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski) - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers) - x86/asm: Reorder early variables (Jiri Slaby) - xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) [Orabug: 37433540] {CVE-2024-53198} - xen/xenbus: fix locking (Juergen Gross) - xenbus/backend: Protect xenbus callback with lock (SeongJae Park) - xenbus/backend: Add memory pressure handler callback (SeongJae Park) - xen/xenbus: reference count registered modules (Paul Durrant) - netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso) - netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) [Orabug: 37434143] {CVE-2024-56637} - igb: Fix potential invalid memory access in igb_init_module() (Yuan Can) - net/qed: allow old cards not supporting "num_images" to work (Louis Leseur) - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) [Orabug: 37434161] {CVE-2024-56642} - tipc: add new AEAD key structure for user API (Tuong Lien) - tipc: enable creating a "preliminary" node (Tuong Lien) - tipc: add reference counter to bearer (Tuong Lien) - dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) [Orabug: 37434167] {CVE-2024-56643} - can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov) - net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens) - netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) [Orabug: 37434200] {CVE-2024-56650} - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia) - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi) - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana) - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi) - drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach) - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun) - nfsd: make sure exp active before svc_export_show (Yang Erkun) [Orabug: 37433745] {CVE-2024-56558} - dm thin: Add missing destroy_work_on_stack() (Yuan Can) - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) [Orabug: 37433756] {CVE-2024-56562} - util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean) - ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) [Orabug: 37433772] {CVE-2024-56567} - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos) - ftrace: Fix regression with module command in stack_trace_filter (guoweikang) [Orabug: 37433784] {CVE-2024-56569} - ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) [Orabug: 37433789] {CVE-2024-56570} - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) [Orabug: 37433798] {CVE-2024-56572} - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan) - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan) - media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) [Orabug: 37433805] {CVE-2024-56574} - media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) [Orabug: 37433817] {CVE-2024-56576} - btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) [Orabug: 37433832] {CVE-2024-56581} - quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo) - ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang) - sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) [Orabug: 37433393] {CVE-2024-53165} - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) [Orabug: 37434314] {CVE-2024-56688} - SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE (Trond Myklebust) - SUNRPC: correct error code comment in xs_tcp_setup_socket() (Calum Mackay) - modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada) - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier) - 9p/xen: fix release of IRQ (Alex Zenla) [Orabug: 37434374] {CVE-2024-56704} - 9p/xen: fix init sequence (Alex Zenla) - block: return unsigned int from bdev_io_min (Christoph Hellwig) - jffs2: fix use of uninitialized variable (Qingfang Deng) - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) [Orabug: 37433414] {CVE-2024-53171} - ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) [Orabug: 37433419] {CVE-2024-53172} - ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng) - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) [Orabug: 37434456] {CVE-2024-56739} - rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu) - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) [Orabug: 37433426] {CVE-2024-53173} - um: Always dump trace for specified task in show_stack (Tiwei Bie) - um: Clean up stacktrace dump (Johannes Berg) - um: add show_stack_loglvl() (Dmitry Safonov) - um/sysrq: remove needless variable sp (Dmitry Safonov) - um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie) - um: Fix potential integer overflow during physmem setup (Tiwei Bie) [Orabug: 37427464] {CVE-2024-53145} - rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson) - SUNRPC: make sure cache entry active before cache_show (Yang Erkun) [Orabug: 37433433] {CVE-2024-53174} - NFSD: Prevent a potential integer overflow (Chuck Lever) [Orabug: 37427470] {CVE-2024-53146} - lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski) - usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen) - ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai) - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar) - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang) - ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang) - media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) [Orabug: 37434358] {CVE-2024-56700} - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke) - block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon) - sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - um: vector: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433467] {CVE-2024-53181} - serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu) - um: net: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433475] {CVE-2024-53183} - um: ubd: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433484] {CVE-2024-53184} - ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng) - spi: Fix acpi deferred irq probe (Stanislaw Gruszka) - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) [Orabug: 37388867] {CVE-2024-53141} - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman) - serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea) - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura) - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet) - comedi: Flush partial mappings in error case (Jann Horn) [Orabug: 37427482] {CVE-2024-53148} - PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) [Orabug: 37433516] {CVE-2024-53194} - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen) - jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov) - ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o) - ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park) - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) [Orabug: 37433532] {CVE-2024-53197} - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu) - usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan) - apparmor: fix 'Do simple duplicate message elimination' (chao liu) - staging: greybus: uart: clean up TIOCGSERIAL (Johan Hovold) - misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan) - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis) - USB: chaoskey: fail open after removal (Oliver Neukum) - usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum) - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park) - ipmr: fix tables suspicious RCU usage (Paolo Abeni) - ipmr: convert /proc handlers to rcu_read_lock() (Eric Dumazet) - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier) - marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan) - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel) - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi) - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel) - power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche) - vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) [Orabug: 37433578] {CVE-2024-53214} - NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever) - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever) - NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) [Orabug: 37433594] {CVE-2024-53217} - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek) - rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson) - rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam) - rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam) - perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson) - perf trace: Do not lose last events in a race (Benjamin Peterson) - m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli) - m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois) - PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen) - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng) - perf probe: Correct demangled symbols in C++ program (Leo Yan) - perf cs-etm: Don't flush when packet_queue fills up (James Clark) - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa) - clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand (Alexandru Ardelean) - dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa) - dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format (Alexandru Ardelean) - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) [Orabug: 37434478] {CVE-2024-56746} - fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann) - powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek) - ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) [Orabug: 37427503] {CVE-2024-53155} - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434484] {CVE-2024-56747} - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434489] {CVE-2024-56748} - scsi: fusion: Remove unused variable 'rc' (Zeng Heng) - scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) [Orabug: 37433630] {CVE-2024-53227} - mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong) - mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal) - cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) [Orabug: 37434429] {CVE-2024-56723} - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) [Orabug: 37434434] {CVE-2024-56724} - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) [Orabug: 37434330] {CVE-2024-56691} - mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko) - mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson) - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan) - trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun) - netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao) - ALSA: 6fire: Release resources at card release (Takashi Iwai) [Orabug: 37433660] {CVE-2024-53239} - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433666] {CVE-2024-56531} - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433672] {CVE-2024-56532} - net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng) - selftests: net: really check for bg process completion (Paolo Abeni) - bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang) - drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach) - drm/etnaviv: fix power register offset on GC300 (Doug Brown) - drm/etnaviv: dump: fix sparse warnings (Marc Kleine-Budde) - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price) - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) [Orabug: 37433695] {CVE-2024-56539} - bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen) - ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang) - ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer) - ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer) - ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer) - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov) - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen) - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) [Orabug: 37427509] {CVE-2024-53156} - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko) - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) [Orabug: 37427515] {CVE-2024-53157} - regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko) - ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara) - tpm: fix signed/unsigned bug when checking event logs (Gregory Price) - efi/tpm: Pass correct address to memblock_reserve (Jerry Snitselaar) - mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski) - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) [Orabug: 37427524] {CVE-2024-53158} - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda) - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET) - crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) [Orabug: 37434298] {CVE-2024-56681} - crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C) - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) [Orabug: 37434323] {CVE-2024-56690} - EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh) - EDAC/bluefield: Fix potential integer overflow (David Thompson) [Orabug: 37427533] {CVE-2024-53161} - firmware: google: Unregister driver_info on failure (Yuan Can) - firmware: google: Unregister driver_info on failure and exit in gsmi (Arthur Heymans) - hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) [Orabug: 37433720] {CVE-2024-56548} - s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada) - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin) - m68k: mvme147: Reinstate early console (Daniel Palmer) - m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven) - m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer) - nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) [Orabug: 37434510] {CVE-2024-56756} - initramfs: avoid filename buffer overrun (David Disseldorp) [Orabug: 37388874] {CVE-2024-53142} - mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski) - x86/xen/pvh: Annotate indirect branch as safe (Josh Poimboeuf) - nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan) - cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) [Orabug: 37206284] {CVE-2024-49996} - ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao) - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang) - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan) - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan) - regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko) - soc: qcom: Add check devm_kasprintf() returned value (Charles Han) - net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin) - x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann) - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan) - selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian) - mac80211: fix user-power when emulating chanctx (Ben Greear) - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede) - kbuild: Use uname for LINUX_COMPILE_HOST detection (Chris Down) - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab) - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388819] {CVE-2024-53130} - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov) - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388825] {CVE-2024-53131} - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) [Orabug: 37388846] {CVE-2024-53135} - ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) [Orabug: 37388753] {CVE-2024-53112} - net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea) - net/mlx5: fs, lock FTE when checking if active (Mark Bloch) - netlink: terminate outstanding dump on socket close (Jakub Kicinski) [Orabug: 37388861] {CVE-2024-53140} - LTS tag: v5.4.286 (Alok Tiwari) - 9p: fix slab cache name creation for real (Linus Torvalds) - md/raid10: improve code of mrdev in raid10_sync_request (Li Nan) - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) [Orabug: 37331928] {CVE-2024-53101} - powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman) - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter) - bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel) - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli) - 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato) - ALSA: usb-audio: Add endianness annotations (Jan Sch?r) - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) [Orabug: 37298681] {CVE-2024-50264} - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) [Orabug: 37344480] {CVE-2024-53103} - ftrace: Fix possible use-after-free issue in ftrace_location() (Zheng Yejian) [Orabug: 36753574] {CVE-2024-38588} - NFSD: Fix NFSv4's PUTPUBFH operation (Chuck Lever) - ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r) - ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r) - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) [Orabug: 37298685] {CVE-2024-50265} - irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier) - USB: serial: option: add Quectel RG650V (Beno?t Monin) - USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu) - USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) [Orabug: 37298695] {CVE-2024-50267} - usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) [Orabug: 37298703] {CVE-2024-50269} - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) [Orabug: 37344485] {CVE-2024-53104} - net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) [Orabug: 36753372] {CVE-2024-38538} - spi: fix use-after-free of the add_lock mutex (Michael Walle) - spi: Fix deadlock when adding SPI controllers on SPI buses (Mark Brown) - mtd: rawnand: protect access to rawnand devices while in suspend (Sean Nyekjaer) - btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) [Orabug: 37298715] {CVE-2024-50273} - nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) [Orabug: 37304779] {CVE-2024-53066} - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie) - dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) [Orabug: 37298732] {CVE-2024-50278} - dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) [Orabug: 37298737] {CVE-2024-50279} - dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai) - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) [Orabug: 37298751] {CVE-2024-50282} - pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher) - media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) [Orabug: 37298782] {CVE-2024-50287} - media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) [Orabug: 37298797] {CVE-2024-50290} - media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) [Orabug: 37304763] {CVE-2024-53061} - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov) - media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab) - media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab) - media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) [Orabug: 37304769] {CVE-2024-53063} - media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab) - net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) [Orabug: 37298811] {CVE-2024-50296} - can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi) - sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) [Orabug: 37298820] {CVE-2024-50299} - net: enetc: set MAC address to the VF net_device (Wei Fang) - enetc: simplify the return expression of enetc_vf_set_mac_addr() (Qinglang Miao) - security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) [Orabug: 37298827] {CVE-2024-50301} - HID: core: zero-initialize the report buffer (Jiri Kosina) [Orabug: 37298834] {CVE-2024-50302} - ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner) - ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner) - ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner) - ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven) [5.4.17-2136.340.1.el8uek] - rds/ib: avoid scq/rcq polling during rds connection shutdown (Arumugam Kolappan) [Orabug: 37092563] - RDMA/mlx5: Send UAR page index as ioctl attribute (Akiva Goldberger) [Orabug: 37029739] - RDMA: Pass entire uverbs attr bundle to create cq function (Akiva Goldberger) [Orabug: 37029739] - IB/uverbs: Enable CQ ioctl commands by default (Yishai Hadas) [Orabug: 37029739] From el-errata at oss.oracle.com Fri Feb 14 17:07:11 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:11 -0800 Subject: [El-errata] ELEA-2025-1337 Oracle Linux 8 gcc-toolset-14-annobin bug fix and enhancement update Message-ID: Oracle Linux Enhancement Advisory ELEA-2025-1337 http://linux.oracle.com/errata/ELEA-2025-1337.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-14-annobin-annocheck-12.88-1.el8_10.x86_64.rpm gcc-toolset-14-annobin-docs-12.88-1.el8_10.noarch.rpm gcc-toolset-14-annobin-plugin-gcc-12.88-1.el8_10.x86_64.rpm aarch64: gcc-toolset-14-annobin-annocheck-12.88-1.el8_10.aarch64.rpm gcc-toolset-14-annobin-docs-12.88-1.el8_10.noarch.rpm gcc-toolset-14-annobin-plugin-gcc-12.88-1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-14-annobin-12.88-1.el8_10.src.rpm Description of changes: [12.88-1] - Annocheck: Look for -fstack-clash-protection in DW_AT_producer string. (RHEL-77142) [12.87-1] - Rebase for GTS 14.1 release. (RHEL-76929) - Annocheck: Fix locating string notes (again). Add exception for glibc benchmark tests. (RHEL-76456) - Annocheck: Add crtoffloadtableS.o to list of known gcc binaries. (RHEL-760404) - Annocheck: Fix the --debug-dir option. - Annocheck: Fix corrupt warning message when unable to locate separate debug info files. - Annocheck: Remove spurious debugging messages. - Annocheck: Always look for annobin notes in separate debug info files. (RHEL-75778) - Annocheck: Support multiple --debug-rpm and --debug-file options. (RHEL-73349) - Annocheck: Add support for sys-root'ed glibc packages. (RHEL-71296) - GCC Plugin: Tidy up use of gcc's diagnoatic headers. (#32429) - Testsuite: Use configured compiler when running tests. - GCC Plugin: Fix building with gcc 15. (#32429) - Annocheck: Fix overly long debug messages. - Annocheck: Rename rwx-seg test to load-segments. Add more checks. Add check for gaps as a future fail. - Annocheck: Add --no-allow-excpetions to disable exceptions for known special binaries. - Annocheck: Add --enable-future to enable future fail components in normal tests. - Annocheck: Fix bug preventing the inclusion of the rpm name in reports. - Annocheck: Add more exceptions for gcc binaries. (RHEL-33365) - Annocheck: Add --skip-passes option. - Annocheck: Add exceptions for gcc binaries. (RHEL-33365) - Annocheck: Skip property note test for i386 binaries created by LLVM. (#2323797) - Annocheck: Skip FORTIFY and GLIBC_ASSERTIONS tests for LLVM produced binaries with unparseable DW_AT_producer attributes in their DWARF debug info. (RHEL-65411) - GCC Plugin: Change type of the .annobin.notes section from SHT_STRTAB to SHT_PROGBITS. [12.70-3] - NVR Bump to allow rebuilding with annotation. From el-errata at oss.oracle.com Fri Feb 14 17:07:13 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:13 -0800 Subject: [El-errata] ELSA-2025-1306 Moderate: Oracle Linux 8 gcc-toolset-13-gcc security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1306 http://linux.oracle.com/errata/ELSA-2025-1306.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-13-gcc-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el8_10.i686.rpm gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el8_10.x86_64.rpm gcc-toolset-13-offload-nvptx-13.3.1-2.2.0.1.el8_10.x86_64.rpm libasan8-13.3.1-2.2.0.1.el8_10.i686.rpm libasan8-13.3.1-2.2.0.1.el8_10.x86_64.rpm libtsan2-13.3.1-2.2.0.1.el8_10.x86_64.rpm aarch64: gcc-toolset-13-gcc-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el8_10.aarch64.rpm libasan8-13.3.1-2.2.0.1.el8_10.aarch64.rpm libtsan2-13.3.1-2.2.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-13-gcc-13.3.1-2.2.0.1.el8_10.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [13.3.1-2.2.0.1] - Merge Oracle patches to 13.3.1-2.2. gfortran needs install-info at installation time. Orabug: 36472775 [13.3.1-2.2] - disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78279) From el-errata at oss.oracle.com Fri Feb 14 17:07:14 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:14 -0800 Subject: [El-errata] ELSA-2025-1338 Moderate: Oracle Linux 8 gcc-toolset-14-gcc security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1338 http://linux.oracle.com/errata/ELSA-2025-1338.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-14-gcc-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-gcc-c++-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-gcc-gfortran-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-gcc-plugin-annobin-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-gcc-plugin-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-gcc-plugin-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libasan-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libasan-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libatomic-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libatomic-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libgccjit-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libgccjit-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libgccjit-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libgccjit-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libitm-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libitm-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-liblsan-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libquadmath-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libquadmath-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libstdc++-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libstdc++-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libstdc++-docs-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libtsan-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-libubsan-devel-14.2.1-7.1.el8_10.i686.rpm gcc-toolset-14-libubsan-devel-14.2.1-7.1.el8_10.x86_64.rpm gcc-toolset-14-offload-nvptx-14.2.1-7.1.el8_10.x86_64.rpm libasan8-14.2.1-7.1.el8_10.i686.rpm libasan8-14.2.1-7.1.el8_10.x86_64.rpm libtsan2-14.2.1-7.1.el8_10.x86_64.rpm aarch64: gcc-toolset-14-gcc-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-gcc-c++-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-gcc-gfortran-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-gcc-plugin-annobin-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-gcc-plugin-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libasan-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libatomic-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libgccjit-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libgccjit-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libitm-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-liblsan-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libstdc++-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libstdc++-docs-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libtsan-devel-14.2.1-7.1.el8_10.aarch64.rpm gcc-toolset-14-libubsan-devel-14.2.1-7.1.el8_10.aarch64.rpm libasan8-14.2.1-7.1.el8_10.aarch64.rpm libtsan2-14.2.1-7.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-14-gcc-14.2.1-7.1.el8_10.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [14.2.1-7.1] - disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78284) [14.2.1-7] - update from releases/gcc-14 branch (RHEL-74062) - PRs ada/113036, ada/113868, ada/115917, ada/117328, ada/117996, analyzer/115724, c/117641, c/117745, c/117802, c++/100358, c++/101463, c++/102594, c++/109859, c++/113108, c++/114854, c++/115008, c++/115430, c++/115657, c++/116108, c++/116634, c++/117158, c++/117317, c++/117614, c++/117615, c++/117792, c++/117825, c++/117845, c++/117880, c++/117925, c++/117985, c++/118060, c++/118069, driver/117942, fortran/84674, fortran/84869, fortran/105054, fortran/109105, fortran/109345, fortran/115070, fortran/115348, fortran/116388, fortran/117730, fortran/117763, fortran/117774, fortran/117791, fortran/117797, fortran/117819, fortran/117820, fortran/117843, fortran/117897, libgomp/117851, libstdc++/89624, libstdc++/106212, libstdc++/106676, libstdc++/108236, libstdc++/109517, libstdc++/109976, libstdc++/112349, libstdc++/112641, libstdc++/117520, libstdc++/117560, libstdc++/117822, libstdc++/117962, libstdc++/117966, libstdc++/118035, libstdc++/118093, middle-end/43374, middle-end/102674, middle-end/116997, middle-end/117433, middle-end/117458, middle-end/117459, middle-end/117847, middle-end/118024, modula2/114529, modula2/115003, modula2/115057, modula2/115164, modula2/115276, modula2/115328, modula2/115536, modula2/115540, modula2/115804, modula2/115823, modula2/115957, modula2/116048, modula2/116181, modula2/116378, modula2/116557, modula2/116918, modula2/117120, modula2/117371, modula2/117555, modula2/117660, modula2/117904, modula2/117948, other/116603, preprocessor/117118, rtl-optimization/113994, rtl-optimization/116799, rtl-optimization/117095, sanitizer/117960, target/64242, target/114801, target/114942, target/116371, target/116629, target/116999, target/117045, target/117105, target/117304, target/117357, target/117408, target/117418, target/117443, target/117500, target/117525, target/117562, target/117564, target/117642, target/117659, target/117675, target/117744, target/117926, testsuite/103298, testsuite/109360, tree-optimization/94589, tree-optimization/112376, tree-optimization/116463, tree-optimization/117142, tree-optimization/117254, tree-optimization/117307, tree-optimization/117333, tree-optimization/117398, tree-optimization/117417, tree-optimization/117439, tree-optimization/117574, tree-optimization/117594, tree-optimization/117612, tree-optimization/117912 - fix up -freport-bug default (#2330362, RHEL-73476) - revert -mearly-ldp-fusion and -mlate-ldp-fusion default to enabled on aarch64 to match upstream (RHEL-74058) - consider TARGET_EXPR invariant like SAVE_EXPR (PR c++/118509) - have gfortran require install-info (RHEL-76087) [14.2.1-1.2] - bump NVR (RHEL-53492) From el-errata at oss.oracle.com Fri Feb 14 17:07:17 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:17 -0800 Subject: [El-errata] ELSA-2025-1351 Important: Oracle Linux 8 nodejs:20 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1351 http://linux.oracle.com/errata/ELSA-2025-1351.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: nodejs-20.18.2-1.module+el8.10.0+90510+29816cee.x86_64.rpm nodejs-devel-20.18.2-1.module+el8.10.0+90510+29816cee.x86_64.rpm nodejs-docs-20.18.2-1.module+el8.10.0+90510+29816cee.noarch.rpm nodejs-full-i18n-20.18.2-1.module+el8.10.0+90510+29816cee.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el8.10.0+90510+29816cee.noarch.rpm nodejs-packaging-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm npm-10.8.2-1.20.18.2.1.module+el8.10.0+90510+29816cee.x86_64.rpm aarch64: nodejs-20.18.2-1.module+el8.10.0+90510+29816cee.aarch64.rpm nodejs-devel-20.18.2-1.module+el8.10.0+90510+29816cee.aarch64.rpm nodejs-docs-20.18.2-1.module+el8.10.0+90510+29816cee.noarch.rpm nodejs-full-i18n-20.18.2-1.module+el8.10.0+90510+29816cee.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el8.10.0+90510+29816cee.noarch.rpm nodejs-packaging-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90510+29816cee.noarch.rpm npm-10.8.2-1.20.18.2.1.module+el8.10.0+90510+29816cee.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//nodejs-20.18.2-1.module+el8.10.0+90510+29816cee.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.10.0+90510+29816cee.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.10.0+90510+29816cee.src.rpm Related CVEs: CVE-2025-22150 CVE-2025-23083 CVE-2025-23085 Description of changes: nodejs [1:20.18.2-1] - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76001 RHEL-76146 nodejs-nodemon nodejs-packaging From el-errata at oss.oracle.com Fri Feb 14 17:07:24 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:24 -0800 Subject: [El-errata] ELSA-2025-1372 Important: Oracle Linux 8 container-tools:ol8 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1372 http://linux.oracle.com/errata/ELSA-2025-1372.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm buildah-1.33.12-1.module+el8.10.0+90509+b5e1e789.x86_64.rpm buildah-tests-1.33.12-1.module+el8.10.0+90509+b5e1e789.x86_64.rpm cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.noarch.rpm conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpm container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.noarch.rpm crit-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm criu-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm criu-devel-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm criu-libs-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm libslirp-devel-4.4.0-2.module+el8.10.0+90449+0b7c8529.x86_64.rpm netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm podman-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm podman-catatonit-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm podman-docker-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.noarch.rpm podman-gvproxy-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm podman-plugins-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm podman-remote-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm podman-tests-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.x86_64.rpm python3-criu-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpm python3-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.noarch.rpm runc-1.1.12-6.module+el8.10.0+90509+b5e1e789.x86_64.rpm skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.x86_64.rpm skopeo-tests-1.14.5-3.module+el8.10.0+90449+0b7c8529.x86_64.rpm slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.x86_64.rpm udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.noarch.rpm aarch64: aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm buildah-1.33.12-1.module+el8.10.0+90509+b5e1e789.aarch64.rpm buildah-tests-1.33.12-1.module+el8.10.0+90509+b5e1e789.aarch64.rpm cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.noarch.rpm conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.aarch64.rpm container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.noarch.rpm crit-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm criu-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm criu-devel-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm criu-libs-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm libslirp-devel-4.4.0-2.module+el8.10.0+90449+0b7c8529.aarch64.rpm netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm podman-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm podman-catatonit-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm podman-docker-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.noarch.rpm podman-gvproxy-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm podman-plugins-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm podman-remote-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm podman-tests-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.aarch64.rpm python3-criu-3.18-5.module+el8.10.0+90449+0b7c8529.aarch64.rpm python3-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.noarch.rpm runc-1.1.12-6.module+el8.10.0+90509+b5e1e789.aarch64.rpm skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.aarch64.rpm skopeo-tests-1.14.5-3.module+el8.10.0+90449+0b7c8529.aarch64.rpm slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.aarch64.rpm udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.33.12-1.module+el8.10.0+90509+b5e1e789.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//criu-3.18-5.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//podman-4.9.4-19.0.1.module+el8.10.0+90509+b5e1e789.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.12-6.module+el8.10.0+90509+b5e1e789.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.src.rpm Related CVEs: CVE-2024-11218 Description of changes: aardvark-dns buildah [2:1.33.12-1] - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 (https://github.com/containers/buildah/commit/58af1cd) - Resolves: RHEL-67612 cockpit-podman conmon containernetworking-plugins containers-common [1-82.0.1] - Updated removed references [Orabug: 33473101] (Alex Burmashev) - Adjust registries.conf (Nikita Gerasimov) - remove references to RedHat registry (Nikita Gerasimov) container-selinux criu crun fuse-overlayfs libslirp netavark oci-seccomp-bpf-hook podman [4.9.4-19.0.1] - Fixes issue of container created in cgroupv2 not start in cgroupv1 [Orabug: 36136813] - Fixes container memory limit not set after host is rebooted with cgroupv2 [Orabug: 36136802] - Fixes issue of podman execvp error while using podmansh [Orabug: 36756665] [4:4.9.4-19] - update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel (https://github.com/containers/podman/commit/bfdd4c2) - Resolves: RHEL-67601 python-podman [4.9.0-3] - sync with release-4.9 branch - Resolves: RHEL-31069 runc [1:1.1.12-6] - Add CPU affinity feature from Kir Kolishkin - Resolves: RHEL-74865 skopeo slirp4netns udica From el-errata at oss.oracle.com Fri Feb 14 17:07:31 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:31 -0800 Subject: [El-errata] ELSA-2025-20100 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20100 http://linux.oracle.com/errata/ELSA-2025-20100.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.340.4.1.el8uek.x86_64.rpm kernel-uek-container-5.4.17-2136.340.4.1.el8uek.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.340.4.1.el8uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.340.4.1.el8uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.340.4.1.el8uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.340.4.1.el8uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.340.4.1.el8uek.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.340.4.1.el8uek.src.rpm Related CVEs: CVE-2024-38538 CVE-2024-38588 CVE-2024-49996 CVE-2024-50264 CVE-2024-50265 CVE-2024-50267 CVE-2024-50269 CVE-2024-50273 CVE-2024-50278 CVE-2024-50279 CVE-2024-50282 CVE-2024-50287 CVE-2024-50290 CVE-2024-50296 CVE-2024-50299 CVE-2024-50301 CVE-2024-50302 CVE-2024-53061 CVE-2024-53063 CVE-2024-53066 CVE-2024-53101 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53130 CVE-2024-53131 CVE-2024-53135 CVE-2024-53140 CVE-2024-53141 CVE-2024-53142 CVE-2024-53145 CVE-2024-53146 CVE-2024-53148 CVE-2024-53150 CVE-2024-53155 CVE-2024-53156 CVE-2024-53157 CVE-2024-53158 CVE-2024-53161 CVE-2024-53165 CVE-2024-53171 CVE-2024-53172 CVE-2024-53173 CVE-2024-53174 CVE-2024-53181 CVE-2024-53183 CVE-2024-53184 CVE-2024-53194 CVE-2024-53197 CVE-2024-53198 CVE-2024-53214 CVE-2024-53217 CVE-2024-53227 CVE-2024-53239 CVE-2024-53240 CVE-2024-56531 CVE-2024-56532 CVE-2024-56539 CVE-2024-56548 CVE-2024-56558 CVE-2024-56562 CVE-2024-56567 CVE-2024-56569 CVE-2024-56570 CVE-2024-56572 CVE-2024-56574 CVE-2024-56576 CVE-2024-56581 CVE-2024-56586 CVE-2024-56587 CVE-2024-56593 CVE-2024-56594 CVE-2024-56595 CVE-2024-56596 CVE-2024-56597 CVE-2024-56598 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56615 CVE-2024-56619 CVE-2024-56629 CVE-2024-56630 CVE-2024-56633 CVE-2024-56634 CVE-2024-56637 CVE-2024-56642 CVE-2024-56643 CVE-2024-56650 CVE-2024-56659 CVE-2024-56661 CVE-2024-56670 CVE-2024-56681 CVE-2024-56688 CVE-2024-56690 CVE-2024-56691 CVE-2024-56700 CVE-2024-56704 CVE-2024-56723 CVE-2024-56724 CVE-2024-56739 CVE-2024-56746 CVE-2024-56747 CVE-2024-56748 CVE-2024-56756 Description of changes: [5.4.17-2136.340.4.1.el8uek] - RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju) [Orabug: 37566743] [5.4.17-2136.340.4.el8uek] - ftrace: use preempt_enable/disable notrace macros to avoid double fault (Koichiro Den) - nfsd: restore callback functionality for NFSv4.0 (NeilBrown) - i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun) - of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu) - af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet) - af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet) - mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter) [5.4.17-2136.340.3.el8uek] - Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha) [Orabug: 37475435] - vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu) [Orabug: 37136890] - Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang) [Orabug: 37136890] - rds: ib: Avoid UAF on RDS Socket's rs_trans_lock (H?kon Bugge) [Orabug: 36693622] - rds: ib: Fix blocked processes related to race in rds_rdma_free_dev_rs_worker() (H?kon Bugge) [Orabug: 36693622] - rds: ib: Fix deterministic UAF in rds_rdma_free_dev_rs_worker() (H?kon Bugge) [Orabug: 36693622] - Revert "KVM: SVM: Add a module parameter to override iommu AVIC usage" (Alejandro Jimenez) [Orabug: 35001679] [5.4.17-2136.340.2.el8uek] - LTS tag: v5.4.288 (Alok Tiwari) - ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter) - xen/netfront: fix crash when removing device (Juergen Gross) [Orabug: 37427542] {CVE-2024-53240} - KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta) - blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor) - blk-iocost: fix weight updates of inner active iocgs (Tejun Heo) - blk-iocost: clamp inuse and skip noops in __propagate_weights() (Tejun Heo) - ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin) - net/sched: netem: account for backlog updates from child qdisc (Martin Ottens) - qca_spi: Make driver probing reliable (Stefan Wahren) - qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren) - ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen) - net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) [Orabug: 37434237] {CVE-2024-56659} - tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) [Orabug: 37506456] {CVE-2024-56661} - batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel) - batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel) - batman-adv: Do not send uninitialized TT changes (Remi Pommarel) - bpf, sockmap: Fix update element with same (Michal Luczaj) - xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong) - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) [Orabug: 37434264] {CVE-2024-56670} - usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan) - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren) - ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori) - usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson) - LTS tag: v5.4.287 (Alok Tiwari) - bpf, xdp: Update devmap comments to reflect napi/rcu usage (John Fastabend) - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) [Orabug: 37427489] {CVE-2024-53150} - PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal) - Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun) - modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner) - jffs2: Fix rtime decompressor (Richard Weinberger) - jffs2: Prevent rtime decompress memory corruption (Kinsey Moore) - KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang) - KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang) - KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang) - perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter) - bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) [Orabug: 37434047] {CVE-2024-56615} - xdp: Simplify devmap cleanup (Bj?rn T?pel) - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman) - powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman) - usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang) - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li) - PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou) - PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch) - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) [Orabug: 37433861] {CVE-2024-56586} - nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang) - pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n) - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara) - scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara) - leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) [Orabug: 37433869] {CVE-2024-56587} - tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak) - netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao) - net/neighbor: clear error in case strict check is not set (Jakub Kicinski) - rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov) - ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman) - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (Hilda Wu) - wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) [Orabug: 37433908] {CVE-2024-56593} - wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong) - drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) [Orabug: 37433914] {CVE-2024-56594} - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) [Orabug: 37433920] {CVE-2024-56595} - jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) [Orabug: 37433928] {CVE-2024-56596} - jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) [Orabug: 37433934] {CVE-2024-56597} - jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) [Orabug: 37433941] {CVE-2024-56598} - wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev) - wifi: ath5k: add PCI ID for SX76X (Rosen Penev) - net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) [Orabug: 37433955] {CVE-2024-56600} - net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) [Orabug: 37433962] {CVE-2024-56601} - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) [Orabug: 37433970] {CVE-2024-56602} - net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) [Orabug: 37433977] {CVE-2024-56603} - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) [Orabug: 37433990] {CVE-2024-56605} - af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) [Orabug: 37433996] {CVE-2024-56606} - net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina) - net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman) - net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman) - samples/bpf: Fix a resource leak (Zhu Jun) - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev) - drm/mcde: Enable module autoloading (Liao Chen) - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a) - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar) - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given) - s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter) - mmc: core: Further prevent card detect during shutdown (Ulf Hansson) - regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav) - dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig) - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che) - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) [Orabug: 37434065] {CVE-2024-56619} - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap) - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy) - scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran) - ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang) - tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu) - HID: wacom: fix when get product name maybe null pointer (WangYuli) [Orabug: 37434108] {CVE-2024-56629} - bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao) - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao) - ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) [Orabug: 37434113] {CVE-2024-56630} - spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao) - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) [Orabug: 37434127] {CVE-2024-56633} - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao) - gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) [Orabug: 37434131] {CVE-2024-56634} - gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski) - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers) - x86/asm: Reorder early variables (Jiri Slaby) - xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) [Orabug: 37433540] {CVE-2024-53198} - xen/xenbus: fix locking (Juergen Gross) - xenbus/backend: Protect xenbus callback with lock (SeongJae Park) - xenbus/backend: Add memory pressure handler callback (SeongJae Park) - xen/xenbus: reference count registered modules (Paul Durrant) - netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso) - netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) [Orabug: 37434143] {CVE-2024-56637} - igb: Fix potential invalid memory access in igb_init_module() (Yuan Can) - net/qed: allow old cards not supporting "num_images" to work (Louis Leseur) - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) [Orabug: 37434161] {CVE-2024-56642} - tipc: add new AEAD key structure for user API (Tuong Lien) - tipc: enable creating a "preliminary" node (Tuong Lien) - tipc: add reference counter to bearer (Tuong Lien) - dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) [Orabug: 37434167] {CVE-2024-56643} - can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov) - net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens) - netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) [Orabug: 37434200] {CVE-2024-56650} - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia) - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi) - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana) - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi) - drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach) - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun) - nfsd: make sure exp active before svc_export_show (Yang Erkun) [Orabug: 37433745] {CVE-2024-56558} - dm thin: Add missing destroy_work_on_stack() (Yuan Can) - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) [Orabug: 37433756] {CVE-2024-56562} - util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean) - ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) [Orabug: 37433772] {CVE-2024-56567} - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos) - ftrace: Fix regression with module command in stack_trace_filter (guoweikang) [Orabug: 37433784] {CVE-2024-56569} - ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) [Orabug: 37433789] {CVE-2024-56570} - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) [Orabug: 37433798] {CVE-2024-56572} - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan) - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan) - media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) [Orabug: 37433805] {CVE-2024-56574} - media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) [Orabug: 37433817] {CVE-2024-56576} - btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) [Orabug: 37433832] {CVE-2024-56581} - quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo) - ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang) - sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) [Orabug: 37433393] {CVE-2024-53165} - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) [Orabug: 37434314] {CVE-2024-56688} - SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE (Trond Myklebust) - SUNRPC: correct error code comment in xs_tcp_setup_socket() (Calum Mackay) - modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada) - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier) - 9p/xen: fix release of IRQ (Alex Zenla) [Orabug: 37434374] {CVE-2024-56704} - 9p/xen: fix init sequence (Alex Zenla) - block: return unsigned int from bdev_io_min (Christoph Hellwig) - jffs2: fix use of uninitialized variable (Qingfang Deng) - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) [Orabug: 37433414] {CVE-2024-53171} - ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) [Orabug: 37433419] {CVE-2024-53172} - ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng) - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) [Orabug: 37434456] {CVE-2024-56739} - rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu) - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) [Orabug: 37433426] {CVE-2024-53173} - um: Always dump trace for specified task in show_stack (Tiwei Bie) - um: Clean up stacktrace dump (Johannes Berg) - um: add show_stack_loglvl() (Dmitry Safonov) - um/sysrq: remove needless variable sp (Dmitry Safonov) - um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie) - um: Fix potential integer overflow during physmem setup (Tiwei Bie) [Orabug: 37427464] {CVE-2024-53145} - rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson) - SUNRPC: make sure cache entry active before cache_show (Yang Erkun) [Orabug: 37433433] {CVE-2024-53174} - NFSD: Prevent a potential integer overflow (Chuck Lever) [Orabug: 37427470] {CVE-2024-53146} - lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski) - usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen) - ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai) - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar) - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang) - ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang) - media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) [Orabug: 37434358] {CVE-2024-56700} - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke) - block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon) - sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - um: vector: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433467] {CVE-2024-53181} - serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu) - um: net: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433475] {CVE-2024-53183} - um: ubd: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433484] {CVE-2024-53184} - ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng) - spi: Fix acpi deferred irq probe (Stanislaw Gruszka) - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) [Orabug: 37388867] {CVE-2024-53141} - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman) - serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea) - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura) - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet) - comedi: Flush partial mappings in error case (Jann Horn) [Orabug: 37427482] {CVE-2024-53148} - PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) [Orabug: 37433516] {CVE-2024-53194} - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen) - jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov) - ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o) - ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park) - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) [Orabug: 37433532] {CVE-2024-53197} - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu) - usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan) - apparmor: fix 'Do simple duplicate message elimination' (chao liu) - staging: greybus: uart: clean up TIOCGSERIAL (Johan Hovold) - misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan) - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis) - USB: chaoskey: fail open after removal (Oliver Neukum) - usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum) - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park) - ipmr: fix tables suspicious RCU usage (Paolo Abeni) - ipmr: convert /proc handlers to rcu_read_lock() (Eric Dumazet) - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier) - marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan) - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel) - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi) - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel) - power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche) - vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) [Orabug: 37433578] {CVE-2024-53214} - NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever) - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever) - NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) [Orabug: 37433594] {CVE-2024-53217} - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek) - rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson) - rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam) - rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam) - perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson) - perf trace: Do not lose last events in a race (Benjamin Peterson) - m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli) - m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois) - PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen) - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng) - perf probe: Correct demangled symbols in C++ program (Leo Yan) - perf cs-etm: Don't flush when packet_queue fills up (James Clark) - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa) - clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand (Alexandru Ardelean) - dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa) - dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format (Alexandru Ardelean) - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) [Orabug: 37434478] {CVE-2024-56746} - fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann) - powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek) - ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) [Orabug: 37427503] {CVE-2024-53155} - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434484] {CVE-2024-56747} - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434489] {CVE-2024-56748} - scsi: fusion: Remove unused variable 'rc' (Zeng Heng) - scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) [Orabug: 37433630] {CVE-2024-53227} - mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong) - mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal) - cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) [Orabug: 37434429] {CVE-2024-56723} - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) [Orabug: 37434434] {CVE-2024-56724} - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) [Orabug: 37434330] {CVE-2024-56691} - mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko) - mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson) - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan) - trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun) - netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao) - ALSA: 6fire: Release resources at card release (Takashi Iwai) [Orabug: 37433660] {CVE-2024-53239} - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433666] {CVE-2024-56531} - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433672] {CVE-2024-56532} - net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng) - selftests: net: really check for bg process completion (Paolo Abeni) - bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang) - drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach) - drm/etnaviv: fix power register offset on GC300 (Doug Brown) - drm/etnaviv: dump: fix sparse warnings (Marc Kleine-Budde) - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price) - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) [Orabug: 37433695] {CVE-2024-56539} - bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen) - ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang) - ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer) - ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer) - ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer) - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov) - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen) - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) [Orabug: 37427509] {CVE-2024-53156} - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko) - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) [Orabug: 37427515] {CVE-2024-53157} - regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko) - ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara) - tpm: fix signed/unsigned bug when checking event logs (Gregory Price) - efi/tpm: Pass correct address to memblock_reserve (Jerry Snitselaar) - mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski) - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) [Orabug: 37427524] {CVE-2024-53158} - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda) - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET) - crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) [Orabug: 37434298] {CVE-2024-56681} - crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C) - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) [Orabug: 37434323] {CVE-2024-56690} - EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh) - EDAC/bluefield: Fix potential integer overflow (David Thompson) [Orabug: 37427533] {CVE-2024-53161} - firmware: google: Unregister driver_info on failure (Yuan Can) - firmware: google: Unregister driver_info on failure and exit in gsmi (Arthur Heymans) - hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) [Orabug: 37433720] {CVE-2024-56548} - s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada) - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin) - m68k: mvme147: Reinstate early console (Daniel Palmer) - m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven) - m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer) - nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) [Orabug: 37434510] {CVE-2024-56756} - initramfs: avoid filename buffer overrun (David Disseldorp) [Orabug: 37388874] {CVE-2024-53142} - mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski) - x86/xen/pvh: Annotate indirect branch as safe (Josh Poimboeuf) - nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan) - cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) [Orabug: 37206284] {CVE-2024-49996} - ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao) - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang) - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan) - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan) - regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko) - soc: qcom: Add check devm_kasprintf() returned value (Charles Han) - net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin) - x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann) - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan) - selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian) - mac80211: fix user-power when emulating chanctx (Ben Greear) - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede) - kbuild: Use uname for LINUX_COMPILE_HOST detection (Chris Down) - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab) - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388819] {CVE-2024-53130} - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov) - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388825] {CVE-2024-53131} - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) [Orabug: 37388846] {CVE-2024-53135} - ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) [Orabug: 37388753] {CVE-2024-53112} - net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea) - net/mlx5: fs, lock FTE when checking if active (Mark Bloch) - netlink: terminate outstanding dump on socket close (Jakub Kicinski) [Orabug: 37388861] {CVE-2024-53140} - LTS tag: v5.4.286 (Alok Tiwari) - 9p: fix slab cache name creation for real (Linus Torvalds) - md/raid10: improve code of mrdev in raid10_sync_request (Li Nan) - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) [Orabug: 37331928] {CVE-2024-53101} - powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman) - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter) - bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel) - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli) - 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato) - ALSA: usb-audio: Add endianness annotations (Jan Sch?r) - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) [Orabug: 37298681] {CVE-2024-50264} - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) [Orabug: 37344480] {CVE-2024-53103} - ftrace: Fix possible use-after-free issue in ftrace_location() (Zheng Yejian) [Orabug: 36753574] {CVE-2024-38588} - NFSD: Fix NFSv4's PUTPUBFH operation (Chuck Lever) - ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r) - ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r) - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) [Orabug: 37298685] {CVE-2024-50265} - irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier) - USB: serial: option: add Quectel RG650V (Beno?t Monin) - USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu) - USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) [Orabug: 37298695] {CVE-2024-50267} - usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) [Orabug: 37298703] {CVE-2024-50269} - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) [Orabug: 37344485] {CVE-2024-53104} - net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) [Orabug: 36753372] {CVE-2024-38538} - spi: fix use-after-free of the add_lock mutex (Michael Walle) - spi: Fix deadlock when adding SPI controllers on SPI buses (Mark Brown) - mtd: rawnand: protect access to rawnand devices while in suspend (Sean Nyekjaer) - btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) [Orabug: 37298715] {CVE-2024-50273} - nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) [Orabug: 37304779] {CVE-2024-53066} - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie) - dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) [Orabug: 37298732] {CVE-2024-50278} - dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) [Orabug: 37298737] {CVE-2024-50279} - dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai) - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) [Orabug: 37298751] {CVE-2024-50282} - pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher) - media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) [Orabug: 37298782] {CVE-2024-50287} - media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) [Orabug: 37298797] {CVE-2024-50290} - media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) [Orabug: 37304763] {CVE-2024-53061} - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov) - media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab) - media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab) - media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) [Orabug: 37304769] {CVE-2024-53063} - media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab) - net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) [Orabug: 37298811] {CVE-2024-50296} - can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi) - sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) [Orabug: 37298820] {CVE-2024-50299} - net: enetc: set MAC address to the VF net_device (Wei Fang) - enetc: simplify the return expression of enetc_vf_set_mac_addr() (Qinglang Miao) - security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) [Orabug: 37298827] {CVE-2024-50301} - HID: core: zero-initialize the report buffer (Jiri Kosina) [Orabug: 37298834] {CVE-2024-50302} - ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner) - ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner) - ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner) - ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven) [5.4.17-2136.340.1.el8uek] - rds/ib: avoid scq/rcq polling during rds connection shutdown (Arumugam Kolappan) [Orabug: 37092563] - RDMA/mlx5: Send UAR page index as ioctl attribute (Akiva Goldberger) [Orabug: 37029739] - RDMA: Pass entire uverbs attr bundle to create cq function (Akiva Goldberger) [Orabug: 37029739] - IB/uverbs: Enable CQ ioctl commands by default (Yishai Hadas) [Orabug: 37029739] From el-errata at oss.oracle.com Fri Feb 14 17:07:38 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:38 -0800 Subject: [El-errata] ELBA-2025-20106 Oracle Linux 9 gcc-toolset-14-annobin bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20106 http://linux.oracle.com/errata/ELBA-2025-20106.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-14-annobin-annocheck-12.70-2.0.1.el9.x86_64.rpm gcc-toolset-14-annobin-docs-12.70-2.0.1.el9.noarch.rpm gcc-toolset-14-annobin-plugin-gcc-12.70-2.0.1.el9.x86_64.rpm aarch64: gcc-toolset-14-annobin-annocheck-12.70-2.0.1.el9.aarch64.rpm gcc-toolset-14-annobin-docs-12.70-2.0.1.el9.noarch.rpm gcc-toolset-14-annobin-plugin-gcc-12.70-2.0.1.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-14-annobin-12.70-2.0.1.el9.src.rpm Description of changes: [12.70-2.0.1] - Rebuild to match latest gcc-toolset-14-gcc From el-errata at oss.oracle.com Fri Feb 14 17:07:40 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:40 -0800 Subject: [El-errata] ELBA-2025-20108 Oracle Linux 9 gcc-toolset-13-annobin bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20108 http://linux.oracle.com/errata/ELBA-2025-20108.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el9.x86_64.rpm gcc-toolset-13-annobin-docs-12.69-1.0.1.el9.noarch.rpm gcc-toolset-13-annobin-libannocheck-12.69-1.0.1.el9.x86_64.rpm gcc-toolset-13-annobin-plugin-clang-12.69-1.0.1.el9.x86_64.rpm gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el9.x86_64.rpm gcc-toolset-13-annobin-plugin-llvm-12.69-1.0.1.el9.x86_64.rpm aarch64: gcc-toolset-13-annobin-annocheck-12.69-1.0.1.el9.aarch64.rpm gcc-toolset-13-annobin-docs-12.69-1.0.1.el9.noarch.rpm gcc-toolset-13-annobin-libannocheck-12.69-1.0.1.el9.aarch64.rpm gcc-toolset-13-annobin-plugin-clang-12.69-1.0.1.el9.aarch64.rpm gcc-toolset-13-annobin-plugin-gcc-12.69-1.0.1.el9.aarch64.rpm gcc-toolset-13-annobin-plugin-llvm-12.69-1.0.1.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-13-annobin-12.69-1.0.1.el9.src.rpm Description of changes: [12.69-1.0.1] - NVR bump to rebuild with latest GCC. From el-errata at oss.oracle.com Fri Feb 14 17:07:41 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:41 -0800 Subject: [El-errata] ELSA-2025-1309 Moderate: Oracle Linux 9 gcc-toolset-13-gcc security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1309 http://linux.oracle.com/errata/ELSA-2025-1309.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: gcc-toolset-13-gcc-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libquadmath-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el9_5.i686.rpm gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el9_5.x86_64.rpm gcc-toolset-13-offload-nvptx-13.3.1-2.2.0.1.el9_5.x86_64.rpm libasan8-13.3.1-2.2.0.1.el9_5.i686.rpm libasan8-13.3.1-2.2.0.1.el9_5.x86_64.rpm libtsan2-13.3.1-2.2.0.1.el9_5.x86_64.rpm aarch64: gcc-toolset-13-gcc-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-gcc-c++-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-gcc-gfortran-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-gcc-plugin-annobin-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-gcc-plugin-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libasan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libatomic-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libgccjit-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libgccjit-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libitm-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-liblsan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libstdc++-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libstdc++-docs-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libtsan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm gcc-toolset-13-libubsan-devel-13.3.1-2.2.0.1.el9_5.aarch64.rpm libasan8-13.3.1-2.2.0.1.el9_5.aarch64.rpm libtsan2-13.3.1-2.2.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//gcc-toolset-13-gcc-13.3.1-2.2.0.1.el9_5.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [13.3.1-2.2.0.1] - Merge Oracle patches to 13.3.1-2.2. Oracle history: November-20-2024 Qing Zhao 13.3.1-2.1.0.1 - gfortran needs install-info at installation time. Orabug: 36472775 [13.3.1-2.2] - disable jQuery use, don't ship jquery.js (CVE-2020-11023, RHEL-78378) From el-errata at oss.oracle.com Fri Feb 14 17:07:42 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:42 -0800 Subject: [El-errata] ELSA-2025-1346 Moderate: Oracle Linux 9 gcc security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1346 http://linux.oracle.com/errata/ELSA-2025-1346.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: cpp-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-c++-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-gfortran-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-offload-nvptx-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-plugin-annobin-11.5.0-5.0.1.el9_5.x86_64.rpm libasan-11.5.0-5.0.1.el9_5.i686.rpm libasan-11.5.0-5.0.1.el9_5.x86_64.rpm libatomic-11.5.0-5.0.1.el9_5.i686.rpm libatomic-11.5.0-5.0.1.el9_5.x86_64.rpm libgcc-11.5.0-5.0.1.el9_5.i686.rpm libgcc-11.5.0-5.0.1.el9_5.x86_64.rpm libgccjit-11.5.0-5.0.1.el9_5.i686.rpm libgccjit-11.5.0-5.0.1.el9_5.x86_64.rpm libgccjit-devel-11.5.0-5.0.1.el9_5.i686.rpm libgccjit-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libgfortran-11.5.0-5.0.1.el9_5.i686.rpm libgfortran-11.5.0-5.0.1.el9_5.x86_64.rpm libgomp-11.5.0-5.0.1.el9_5.i686.rpm libgomp-11.5.0-5.0.1.el9_5.x86_64.rpm libgomp-offload-nvptx-11.5.0-5.0.1.el9_5.x86_64.rpm libitm-11.5.0-5.0.1.el9_5.i686.rpm libitm-11.5.0-5.0.1.el9_5.x86_64.rpm libitm-devel-11.5.0-5.0.1.el9_5.i686.rpm libitm-devel-11.5.0-5.0.1.el9_5.x86_64.rpm liblsan-11.5.0-5.0.1.el9_5.x86_64.rpm libquadmath-11.5.0-5.0.1.el9_5.i686.rpm libquadmath-11.5.0-5.0.1.el9_5.x86_64.rpm libquadmath-devel-11.5.0-5.0.1.el9_5.i686.rpm libquadmath-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-11.5.0-5.0.1.el9_5.i686.rpm libstdc++-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-devel-11.5.0-5.0.1.el9_5.i686.rpm libstdc++-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-docs-11.5.0-5.0.1.el9_5.x86_64.rpm libtsan-11.5.0-5.0.1.el9_5.x86_64.rpm libubsan-11.5.0-5.0.1.el9_5.i686.rpm libubsan-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-plugin-devel-11.5.0-5.0.1.el9_5.i686.rpm gcc-plugin-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-static-11.5.0-5.0.1.el9_5.i686.rpm libstdc++-static-11.5.0-5.0.1.el9_5.x86_64.rpm aarch64: cpp-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-c++-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-gfortran-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-plugin-annobin-11.5.0-5.0.1.el9_5.aarch64.rpm libasan-11.5.0-5.0.1.el9_5.aarch64.rpm libatomic-11.5.0-5.0.1.el9_5.aarch64.rpm libgcc-11.5.0-5.0.1.el9_5.aarch64.rpm libgccjit-11.5.0-5.0.1.el9_5.aarch64.rpm libgccjit-devel-11.5.0-5.0.1.el9_5.aarch64.rpm libgfortran-11.5.0-5.0.1.el9_5.aarch64.rpm libgomp-11.5.0-5.0.1.el9_5.aarch64.rpm libitm-11.5.0-5.0.1.el9_5.aarch64.rpm libitm-devel-11.5.0-5.0.1.el9_5.aarch64.rpm liblsan-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-devel-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-docs-11.5.0-5.0.1.el9_5.aarch64.rpm libtsan-11.5.0-5.0.1.el9_5.aarch64.rpm libubsan-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-plugin-devel-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-static-11.5.0-5.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//gcc-11.5.0-5.0.1.el9_5.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [11.5.0-5.0.1] - Merge Oracle patches to 11.5.0-5. Oracle history: From el-errata at oss.oracle.com Fri Feb 14 17:07:44 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 09:07:44 -0800 Subject: [El-errata] ELSA-2025-1350 Important: Oracle Linux 9 libxml2 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1350 http://linux.oracle.com/errata/ELSA-2025-1350.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: libxml2-2.9.13-6.el9_5.1.i686.rpm libxml2-2.9.13-6.el9_5.1.x86_64.rpm libxml2-devel-2.9.13-6.el9_5.1.i686.rpm libxml2-devel-2.9.13-6.el9_5.1.x86_64.rpm python3-libxml2-2.9.13-6.el9_5.1.x86_64.rpm aarch64: libxml2-2.9.13-6.el9_5.1.aarch64.rpm libxml2-devel-2.9.13-6.el9_5.1.aarch64.rpm python3-libxml2-2.9.13-6.el9_5.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//libxml2-2.9.13-6.el9_5.1.src.rpm Related CVEs: CVE-2022-49043 Description of changes: [2.9.13-6.1] - Fix CVE-2022-49043 (RHEL-76298) From el-errata at oss.oracle.com Fri Feb 14 18:27:29 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 19:27:29 +0100 Subject: [El-errata] New Ksplice updates for RHCK 8 (ELSA-2025-1266) Message-ID: Synopsis: ELSA-2025-1266 can now be patched using Ksplice CVEs: CVE-2024-53104 Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Security Advisory, ELSA-2025-1266. More information about this errata can be found at https://linux.oracle.com/errata/ELSA-2025-1266.html INSTALLING THE UPDATES We recommend that all users of Ksplice Uptrack running RHCK 8 install these updates. On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf, these updates will be installed automatically and you do not need to take any action. Alternatively, you can install these updates by running: # /usr/sbin/uptrack-upgrade -y DESCRIPTION * CVE-2024-53104: Code execution in USB Video Class (UVC) driver. A missing check when using the USB Video Class (UVC) driver could lead to an out-of-bounds memory write. A local attacker could use this flaw to execute arbitrary code in kernel mode. SUPPORT Ksplice support is available at ksplice-support_ww at oracle.com. From el-errata at oss.oracle.com Fri Feb 14 22:32:03 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Fri, 14 Feb 2025 23:32:03 +0100 Subject: [El-errata] New openssl updates available via Ksplice (ELSA-2025-1330) Message-ID: Synopsis: ELSA-2025-1330 can now be patched using Ksplice CVEs: CVE-2024-12797 Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Security Advisory, ELSA-2025-1330. INSTALLING THE UPDATES We recommend that all users of Ksplice on OL 9 install these updates. You can install these updates by running: # ksplice -y user upgrade 32-bit applications should be restarted after upgrading the on-disk openssl RPMs and statically linked applications using openssl should be rebuilt to include these fixes. Ksplice user-space patching requires installation of Ksplice-aware packages and the system must be rebooted after the first installation of these packages. Refer to the installation instructions for the Enhanced Ksplice Client in the Ksplice User's Guide for more details. Systems may be prepared for Ksplice patching by installing the Ksplice aware packages in advance, prior to installing the enhanced Ksplice client. DESCRIPTION * CVE-2024-12797: Information leak when using TLS and DTLS connections with raw public keys. A logic error when using TLS and DTLS connections with raw public keys could lead to an incorrect authentication of a server. A remote attacker could use this flaw to leak information about data being transmitted over TLS/DTLS. SUPPORT Ksplice support is available at ksplice-support_ww at oracle.com. From el-errata at oss.oracle.com Mon Feb 17 14:32:50 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 17 Feb 2025 06:32:50 -0800 Subject: [El-errata] ELBA-2025-20111 Oracle Linux 9 annobin bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20111 http://linux.oracle.com/errata/ELBA-2025-20111.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: annobin-12.65-1.0.1.el9.x86_64.rpm annobin-annocheck-12.65-1.0.1.el9.i686.rpm annobin-annocheck-12.65-1.0.1.el9.x86_64.rpm annobin-annocheck-12.65-1.0.1.el9.i686.rpm aarch64: annobin-12.65-1.0.1.el9.aarch64.rpm annobin-annocheck-12.65-1.0.1.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//annobin-12.65-1.0.1.el9.src.rpm Description of changes: [12.65-1.0.1] - NVR bump to rebuild with latest gcc. From el-errata at oss.oracle.com Mon Feb 17 14:32:53 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 17 Feb 2025 06:32:53 -0800 Subject: [El-errata] ELBA-2025-1343 Oracle Linux 9 .NET 9.0 bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1343 http://linux.oracle.com/errata/ELBA-2025-1343.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-apphost-pack-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-host-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-hostfxr-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-runtime-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-sdk-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm dotnet-sdk-aot-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm dotnet-targeting-pack-9.0-9.0.2-1.0.1.el9_5.x86_64.rpm dotnet-templates-9.0-9.0.103-1.0.1.el9_5.x86_64.rpm netstandard-targeting-pack-2.1-9.0.103-1.0.1.el9_5.x86_64.rpm dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el9_5.x86_64.rpm aarch64: aspnetcore-runtime-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm aspnetcore-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm aspnetcore-targeting-pack-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-apphost-pack-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-host-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-hostfxr-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-runtime-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-runtime-dbg-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-sdk-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm dotnet-sdk-aot-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm dotnet-sdk-dbg-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm dotnet-targeting-pack-9.0-9.0.2-1.0.1.el9_5.aarch64.rpm dotnet-templates-9.0-9.0.103-1.0.1.el9_5.aarch64.rpm netstandard-targeting-pack-2.1-9.0.103-1.0.1.el9_5.aarch64.rpm dotnet-sdk-9.0-source-built-artifacts-9.0.103-1.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//dotnet9.0-9.0.103-1.0.1.el9_5.src.rpm Description of changes: [9.0.103-1.0.1] - Update to .NET SDK 9.0.103 and Runtime 9.0.2 From el-errata at oss.oracle.com Mon Feb 17 14:32:55 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 17 Feb 2025 06:32:55 -0800 Subject: [El-errata] ELSA-2025-1443 Important: Oracle Linux 9 nodejs:20 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1443 http://linux.oracle.com/errata/ELSA-2025-1443.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: nodejs-20.18.2-1.module+el9.5.0+90512+230358da.x86_64.rpm nodejs-devel-20.18.2-1.module+el9.5.0+90512+230358da.x86_64.rpm nodejs-docs-20.18.2-1.module+el9.5.0+90512+230358da.noarch.rpm nodejs-full-i18n-20.18.2-1.module+el9.5.0+90512+230358da.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm npm-10.8.2-1.20.18.2.1.module+el9.5.0+90512+230358da.x86_64.rpm aarch64: nodejs-20.18.2-1.module+el9.5.0+90512+230358da.aarch64.rpm nodejs-devel-20.18.2-1.module+el9.5.0+90512+230358da.aarch64.rpm nodejs-docs-20.18.2-1.module+el9.5.0+90512+230358da.noarch.rpm nodejs-full-i18n-20.18.2-1.module+el9.5.0+90512+230358da.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm npm-10.8.2-1.20.18.2.1.module+el9.5.0+90512+230358da.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//nodejs-20.18.2-1.module+el9.5.0+90512+230358da.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm Related CVEs: CVE-2025-22150 CVE-2025-23083 CVE-2025-23085 Description of changes: nodejs [1:20.18.2] - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76363 RHEL-76554 RHEL-76540 [1:20.18.1-1] - Update to version 20.18.1 nodejs-nodemon nodejs-packaging From el-errata at oss.oracle.com Mon Feb 17 14:32:57 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 17 Feb 2025 06:32:57 -0800 Subject: [El-errata] ELSA-2025-1446 Moderate: Oracle Linux 9 nodejs:18 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1446 http://linux.oracle.com/errata/ELSA-2025-1446.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm nodejs-devel-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm nodejs-docs-18.20.6-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-full-i18n-18.20.6-1.module+el9.5.0+90514+74072e0a.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm npm-10.8.2-1.18.20.6.1.module+el9.5.0+90514+74072e0a.x86_64.rpm aarch64: nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm nodejs-devel-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm nodejs-docs-18.20.6-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-full-i18n-18.20.6-1.module+el9.5.0+90514+74072e0a.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90514+74072e0a.noarch.rpm npm-10.8.2-1.18.20.6.1.module+el9.5.0+90514+74072e0a.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//nodejs-18.20.6-1.module+el9.5.0+90514+74072e0a.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.5.0+90514+74072e0a.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.5.0+90514+74072e0a.src.rpm Related CVEs: CVE-2025-22150 CVE-2025-23085 Description of changes: nodejs [1:18.20.6-1] - Update to version 18.20.6 Resolves: RHEL-76801 Fixes: CVE-2025-23085 [1:18.20.4-1] - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 [1:18.20.2-2] - Removes .ps1 files nodejs-nodemon nodejs-packaging From el-errata at oss.oracle.com Mon Feb 17 14:33:04 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 17 Feb 2025 06:33:04 -0800 Subject: [El-errata] ELSA-2025-20100 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20100 http://linux.oracle.com/errata/ELSA-2025-20100.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.340.4.1.el7uek.x86_64.rpm kernel-uek-container-5.4.17-2136.340.4.1.el7uek.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.340.4.1.el7uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.340.4.1.el7uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.340.4.1.el7uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.340.4.1.el7uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.340.4.1.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.340.4.1.el7uek.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.340.4.1.el7uek.src.rpm Related CVEs: CVE-2024-38538 CVE-2024-38588 CVE-2024-49996 CVE-2024-50264 CVE-2024-50265 CVE-2024-50267 CVE-2024-50269 CVE-2024-50273 CVE-2024-50278 CVE-2024-50279 CVE-2024-50282 CVE-2024-50287 CVE-2024-50290 CVE-2024-50296 CVE-2024-50299 CVE-2024-50301 CVE-2024-50302 CVE-2024-53061 CVE-2024-53063 CVE-2024-53066 CVE-2024-53101 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53130 CVE-2024-53131 CVE-2024-53135 CVE-2024-53140 CVE-2024-53141 CVE-2024-53142 CVE-2024-53145 CVE-2024-53146 CVE-2024-53148 CVE-2024-53150 CVE-2024-53155 CVE-2024-53156 CVE-2024-53157 CVE-2024-53158 CVE-2024-53161 CVE-2024-53165 CVE-2024-53171 CVE-2024-53172 CVE-2024-53173 CVE-2024-53174 CVE-2024-53181 CVE-2024-53183 CVE-2024-53184 CVE-2024-53194 CVE-2024-53197 CVE-2024-53198 CVE-2024-53214 CVE-2024-53217 CVE-2024-53227 CVE-2024-53239 CVE-2024-53240 CVE-2024-56531 CVE-2024-56532 CVE-2024-56539 CVE-2024-56548 CVE-2024-56558 CVE-2024-56562 CVE-2024-56567 CVE-2024-56569 CVE-2024-56570 CVE-2024-56572 CVE-2024-56574 CVE-2024-56576 CVE-2024-56581 CVE-2024-56586 CVE-2024-56587 CVE-2024-56593 CVE-2024-56594 CVE-2024-56595 CVE-2024-56596 CVE-2024-56597 CVE-2024-56598 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56615 CVE-2024-56619 CVE-2024-56629 CVE-2024-56630 CVE-2024-56633 CVE-2024-56634 CVE-2024-56637 CVE-2024-56642 CVE-2024-56643 CVE-2024-56650 CVE-2024-56659 CVE-2024-56661 CVE-2024-56670 CVE-2024-56681 CVE-2024-56688 CVE-2024-56690 CVE-2024-56691 CVE-2024-56700 CVE-2024-56704 CVE-2024-56723 CVE-2024-56724 CVE-2024-56739 CVE-2024-56746 CVE-2024-56747 CVE-2024-56748 CVE-2024-56756 Description of changes: [5.4.17-2136.340.4.1.el7uek] - RDS: avoid queueing delayed work on an offlined cpu (Praveen Kumar Kannoju) [Orabug: 37566743] [5.4.17-2136.340.4.el7uek] - ftrace: use preempt_enable/disable notrace macros to avoid double fault (Koichiro Den) - nfsd: restore callback functionality for NFSv4.0 (NeilBrown) - i2c: pnx: Fix timeout in wait functions (Vladimir Riabchun) - of/irq: Fix using uninitialized variable @addr_len in API of_irq_parse_one() (Zijun Hu) - af_packet: fix vlan_get_tci() vs MSG_PEEK (Eric Dumazet) - af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK (Eric Dumazet) - mtd: rawnand: fix double free in atmel_pmecc_create_user() (Dan Carpenter) [5.4.17-2136.340.3.el7uek] - Revert "xen/swiotlb: add alignment check for dma buffers" (Harshvardhan Jha) [Orabug: 37475435] - vfio/iommu_type1: Fix some sanity checks in detach group (Keqian Zhu) [Orabug: 37136890] - Revert "vfio/iommu_type1: Fix some sanity checks in detach group" (Dongli Zhang) [Orabug: 37136890] - rds: ib: Avoid UAF on RDS Socket's rs_trans_lock (H?kon Bugge) [Orabug: 36693622] - rds: ib: Fix blocked processes related to race in rds_rdma_free_dev_rs_worker() (H?kon Bugge) [Orabug: 36693622] - rds: ib: Fix deterministic UAF in rds_rdma_free_dev_rs_worker() (H?kon Bugge) [Orabug: 36693622] - Revert "KVM: SVM: Add a module parameter to override iommu AVIC usage" (Alejandro Jimenez) [Orabug: 35001679] [5.4.17-2136.340.2.el7uek] - LTS tag: v5.4.288 (Alok Tiwari) - ALSA: usb-audio: Fix a DMA to stack memory bug (Dan Carpenter) - xen/netfront: fix crash when removing device (Juergen Gross) [Orabug: 37427542] {CVE-2024-53240} - KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow status (Raghavendra Rao Ananta) - blk-iocost: Avoid using clamp() on inuse in __propagate_weights() (Nathan Chancellor) - blk-iocost: fix weight updates of inner active iocgs (Tejun Heo) - blk-iocost: clamp inuse and skip noops in __propagate_weights() (Tejun Heo) - ACPICA: events/evxfregn: don't release the ContextMutex that was never acquired (Daniil Tatianin) - net/sched: netem: account for backlog updates from child qdisc (Martin Ottens) - qca_spi: Make driver probing reliable (Stefan Wahren) - qca_spi: Fix clock speed for multiple QCA7000 (Stefan Wahren) - ACPI: resource: Fix memory resource type union access (Ilpo J?rvinen) - net: lapb: increase LAPB_HEADER_LEN (Eric Dumazet) [Orabug: 37434237] {CVE-2024-56659} - tipc: fix NULL deref in cleanup_bearer() (Eric Dumazet) [Orabug: 37506456] {CVE-2024-56661} - batman-adv: Do not let TT changes list grows indefinitely (Remi Pommarel) - batman-adv: Remove uninitialized data in full table TT response (Remi Pommarel) - batman-adv: Do not send uninitialized TT changes (Remi Pommarel) - bpf, sockmap: Fix update element with same (Michal Luczaj) - xfs: don't drop errno values when we fail to ficlone the entire range (Darrick J. Wong) - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer (Lianqin Hu) [Orabug: 37434264] {CVE-2024-56670} - usb: ehci-hcd: fix call balance of clocks handling routines (Vitalii Mordan) - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature (Stefan Wahren) - ata: sata_highbank: fix OF node reference leak in highbank_initialize_phys() (Joe Hattori) - usb: host: max3421-hcd: Correctly abort a USB request. (Mark Tomlinson) - LTS tag: v5.4.287 (Alok Tiwari) - bpf, xdp: Update devmap comments to reflect napi/rcu usage (John Fastabend) - ALSA: usb-audio: Fix out of bounds reads when finding clock sources (Takashi Iwai) [Orabug: 37427489] {CVE-2024-53150} - PCI: rockchip-ep: Fix address translation unit programming (Damien Le Moal) - Revert "drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()" (Zhang Zekun) - modpost: Add .irqentry.text to OTHER_SECTIONS (Thomas Gleixner) - jffs2: Fix rtime decompressor (Richard Weinberger) - jffs2: Prevent rtime decompress memory corruption (Kinsey Moore) - KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE (Kunkun Jiang) - KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device (Kunkun Jiang) - KVM: arm64: vgic-its: Add a data length check in vgic_its_save_* (Jing Zhang) - perf/x86/intel/pt: Fix buffer full but size is 0 case (Adrian Hunter) - bpf: fix OOB devmap writes when deleting elements (Maciej Fijalkowski) [Orabug: 37434047] {CVE-2024-56615} - xdp: Simplify devmap cleanup (Bj?rn T?pel) - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle (Parker Newman) - powerpc/prom_init: Fixup missing powermac #size-cells (Michael Ellerman) - usb: chipidea: udc: handle USB Error Interrupt if IOC not set (Xu Yang) - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to avoid deadlock (Defa Li) - PCI: Add ACS quirk for Wangxun FF5xxx NICs (Mengyuan Lou) - PCI: Add 'reset_subordinate' to reset hierarchy below bridge (Keith Busch) - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode. (Qi Han) [Orabug: 37433861] {CVE-2024-56586} - nvdimm: rectify the illogical code within nd_dax_probe() (Yi Yang) - pinctrl: qcom-pmic-gpio: add support for PM8937 (Barnab?s Cz?m?n) - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset (Kai M?kisara) - scsi: st: Don't modify unknown block number in MTIOCGET (Kai M?kisara) - leds: class: Protect brightness_show() with led_cdev->led_access mutex (Mukesh Ojha) [Orabug: 37433869] {CVE-2024-56587} - tracing: Use atomic64_inc_return() in trace_clock_counter() (Uros Bizjak) - netpoll: Use rcu_access_pointer() in __netpoll_setup (Breno Leitao) - net/neighbor: clear error in case strict check is not set (Jakub Kicinski) - rocker: fix link status detection in rocker_carrier_init() (Dmitry Antipov) - ASoC: hdmi-codec: reorder channel allocation list (Jonas Karlman) - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables (Hilda Wu) - wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() (Norbert van Bolhuis) [Orabug: 37433908] {CVE-2024-56593} - wifi: ipw2x00: libipw_rx_any(): fix bad alignment (Jiapeng Chong) - drm/amdgpu: set the right AMDGPU sg segment limitation (Prike Liang) [Orabug: 37433914] {CVE-2024-56594} - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree (Nihar Chaithanya) [Orabug: 37433920] {CVE-2024-56595} - jfs: fix array-index-out-of-bounds in jfs_readdir (Ghanshyam Agrawal) [Orabug: 37433928] {CVE-2024-56596} - jfs: fix shift-out-of-bounds in dbSplit (Ghanshyam Agrawal) [Orabug: 37433934] {CVE-2024-56597} - jfs: array-index-out-of-bounds fix in dtReadFirst (Ghanshyam Agrawal) [Orabug: 37433941] {CVE-2024-56598} - wifi: ath5k: add PCI ID for Arcadyan devices (Rosen Penev) - wifi: ath5k: add PCI ID for SX76X (Rosen Penev) - net: inet6: do not leave a dangling sk pointer in inet6_create() (Ignat Korchagin) [Orabug: 37433955] {CVE-2024-56600} - net: inet: do not leave a dangling sk pointer in inet_create() (Ignat Korchagin) [Orabug: 37433962] {CVE-2024-56601} - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (Ignat Korchagin) [Orabug: 37433970] {CVE-2024-56602} - net: af_can: do not leave a dangling sk pointer in can_create() (Ignat Korchagin) [Orabug: 37433977] {CVE-2024-56603} - Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() (Ignat Korchagin) [Orabug: 37433990] {CVE-2024-56605} - af_packet: avoid erroring out after sock_init_data() in packet_create() (Ignat Korchagin) [Orabug: 37433996] {CVE-2024-56606} - net/sched: cbs: Fix integer overflow in cbs_set_port_rate() (Elena Salomatkina) - net: ethernet: fs_enet: Use %pa to format resource_size_t (Simon Horman) - net: fec_mpc52xx_phy: Use %pa to format resource_size_t (Simon Horman) - samples/bpf: Fix a resource leak (Zhu Jun) - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check() (Igor Artemiev) - drm/mcde: Enable module autoloading (Liao Chen) - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model (Joaqu?n Ignacio Aramend?a) - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108 (Rohan Barar) - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera (David Given) - s390/cpum_sf: Handle CPU hotplug remove during sampling (Thomas Richter) - mmc: core: Further prevent card detect during shutdown (Ulf Hansson) - regmap: detach regmap from dev on regmap_exit (Cosmin Tanislav) - dma-buf: fix dma_fence_array_signaled v4 (Christian K?nig) - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again (Liequan Che) - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() (Ryusuke Konishi) [Orabug: 37434065] {CVE-2024-56619} - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt (Saurav Kashyap) - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts (Anil Gurumurthy) - scsi: qla2xxx: Fix NVMe and NPIV connect issue (Quinn Tran) - ocfs2: update seq_file index in ocfs2_dlm_seq_next (Wengang Wang) - tracing: Fix cmp_entries_dup() to respect sort() comparison rules (Kuan-Wei Chiu) - HID: wacom: fix when get product name maybe null pointer (WangYuli) [Orabug: 37434108] {CVE-2024-56629} - bpf: Fix exact match conditions in trie_get_next_key() (Hou Tao) - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie (Hou Tao) - ocfs2: free inode when ocfs2_get_init_inode() fails (Tetsuo Handa) [Orabug: 37434113] {CVE-2024-56630} - spi: mpc52xx: Add cancel_work_sync before module remove (Pei Xiao) - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg (Zijian Zhang) [Orabug: 37434127] {CVE-2024-56633} - drm/sti: Add __iomem for mixer_dbg_mxn's parameter (Pei Xiao) - gpio: grgpio: Add NULL check in grgpio_probe (Charles Han) [Orabug: 37434131] {CVE-2024-56634} - gpio: grgpio: use a helper variable to store the address of ofdev->dev (Bartosz Golaszewski) - crypto: x86/aegis128 - access 32-bit arguments as 32-bit (Eric Biggers) - x86/asm: Reorder early variables (Jiri Slaby) - xen: Fix the issue of resource not being properly released in xenbus_dev_probe() (Qiu-ji Chen) [Orabug: 37433540] {CVE-2024-53198} - xen/xenbus: fix locking (Juergen Gross) - xenbus/backend: Protect xenbus callback with lock (SeongJae Park) - xenbus/backend: Add memory pressure handler callback (SeongJae Park) - xen/xenbus: reference count registered modules (Paul Durrant) - netfilter: nft_set_hash: skip duplicated elements pending gc run (Pablo Neira Ayuso) - netfilter: ipset: Hold module reference while requesting a module (Phil Sutter) [Orabug: 37434143] {CVE-2024-56637} - igb: Fix potential invalid memory access in igb_init_module() (Yuan Can) - net/qed: allow old cards not supporting "num_images" to work (Louis Leseur) - tipc: Fix use-after-free of kernel socket in cleanup_bearer(). (Kuniyuki Iwashima) [Orabug: 37434161] {CVE-2024-56642} - tipc: add new AEAD key structure for user API (Tuong Lien) - tipc: enable creating a "preliminary" node (Tuong Lien) - tipc: add reference counter to bearer (Tuong Lien) - dccp: Fix memory leak in dccp_feat_change_recv (Ivan Solodovnikov) [Orabug: 37434167] {CVE-2024-56643} - can: j1939: j1939_session_new(): fix skb reference counting (Dmitry Antipov) - net/sched: tbf: correct backlog statistic for GSO packets (Martin Ottens) - netfilter: x_tables: fix LED ID check in led_tg_check() (Dmitry Antipov) [Orabug: 37434200] {CVE-2024-56650} - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init() (Jinghao Jia) - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics (Dario Binacchi) - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is NULL (Dario Binacchi) - watchdog: mediatek: Make sure system reset gets asserted in mtk_wdt_restart() (Yassine Oudjana) - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call (Oleksandr Ocheretnyi) - drm/etnaviv: flush shader L1 cache after user commandstream (Lucas Stach) - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur (Yang Erkun) - nfsd: make sure exp active before svc_export_show (Yang Erkun) [Orabug: 37433745] {CVE-2024-56558} - dm thin: Add missing destroy_work_on_stack() (Yuan Can) - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs() (Frank Li) [Orabug: 37433756] {CVE-2024-56562} - util_macros.h: fix/rework find_closest() macros (Alexandru Ardelean) - ad7780: fix division by zero in ad7780_write_raw() (Zicheng Qu) [Orabug: 37433772] {CVE-2024-56567} - clk: qcom: gcc-qcs404: fix initial rate of GPLL3 (Gabor Juhos) - ftrace: Fix regression with module command in stack_trace_filter (guoweikang) [Orabug: 37433784] {CVE-2024-56569} - ovl: Filter invalid inodes with missing lookup function (Vasiliy Kovalev) [Orabug: 37433789] {CVE-2024-56570} - media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() (Gaosheng Cui) [Orabug: 37433798] {CVE-2024-56572} - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate() (Jinjie Ruan) - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled (Jinjie Ruan) - media: ts2020: fix null-ptr-deref in ts2020_probe() (Li Zetao) [Orabug: 37433805] {CVE-2024-56574} - media: i2c: tc358743: Fix crash in the probe error path when using polling (Alexander Shiyan) [Orabug: 37433817] {CVE-2024-56576} - btrfs: ref-verify: fix use-after-free after invalid ref action (Filipe Manana) [Orabug: 37433832] {CVE-2024-56581} - quota: flush quota_release_work upon quota writeback (Ojaswin Mujoo) - ASoC: fsl_micfil: fix the naming style for mask definition (Shengjiu Wang) - sh: intc: Fix use-after-free bug in register_intc_controller() (Dan Carpenter) [Orabug: 37433393] {CVE-2024-53165} - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport (Liu Jian) [Orabug: 37434314] {CVE-2024-56688} - SUNRPC: Replace internal use of SOCKWQ_ASYNC_NOSPACE (Trond Myklebust) - SUNRPC: correct error code comment in xs_tcp_setup_socket() (Calum Mackay) - modpost: remove incorrect code in do_eisa_entry() (Masahiro Yamada) - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification (Maxime Chevallier) - 9p/xen: fix release of IRQ (Alex Zenla) [Orabug: 37434374] {CVE-2024-56704} - 9p/xen: fix init sequence (Alex Zenla) - block: return unsigned int from bdev_io_min (Christoph Hellwig) - jffs2: fix use of uninitialized variable (Qingfang Deng) - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit (Waqar Hameed) [Orabug: 37433414] {CVE-2024-53171} - ubi: fastmap: Fix duplicate slab cache names while attaching (Zhihao Cheng) [Orabug: 37433419] {CVE-2024-53172} - ubifs: Correct the total block count by deducting journal reservation (Zhihao Cheng) - rtc: check if __rtc_read_time was successful in rtc_timer_do_work() (Yongliang Gao) [Orabug: 37434456] {CVE-2024-56739} - rtc: abx80x: Fix WDT bit position of the status register (Nobuhiro Iwamatsu) - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - NFSv4.0: Fix a use-after-free problem in the asynchronous open() (Trond Myklebust) [Orabug: 37433426] {CVE-2024-53173} - um: Always dump trace for specified task in show_stack (Tiwei Bie) - um: Clean up stacktrace dump (Johannes Berg) - um: add show_stack_loglvl() (Dmitry Safonov) - um/sysrq: remove needless variable sp (Dmitry Safonov) - um: Fix the return value of elf_core_copy_task_fpregs (Tiwei Bie) - um: Fix potential integer overflow during physmem setup (Tiwei Bie) [Orabug: 37427464] {CVE-2024-53145} - rpmsg: glink: Propagate TX failures in intentless mode as well (Bjorn Andersson) - SUNRPC: make sure cache entry active before cache_show (Yang Erkun) [Orabug: 37433433] {CVE-2024-53174} - NFSD: Prevent a potential integer overflow (Chuck Lever) [Orabug: 37427470] {CVE-2024-53146} - lib: string_helpers: silence snprintf() output truncation warning (Bartosz Golaszewski) - usb: dwc3: gadget: Fix checking for number of TRBs left (Thinh Nguyen) - ALSA: hda/realtek: Apply quirk for Medion E15433 (Takashi Iwai) - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max (Dinesh Kumar) - ALSA: hda/realtek: Set PCBeep to default value for ALC274 (Kailang Yang) - ALSA: hda/realtek: Update ALC225 depop procedure (Kailang Yang) - media: wl128x: Fix atomicity violation in fmc_send_cmd() (Qiu-ji Chen) [Orabug: 37434358] {CVE-2024-56700} - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values (Jason Gerecke) - block: fix ordering between checking BLK_MQ_S_STOPPED request adding (Muchun Song) - arm64: tls: Fix context-switching of tpidrro_el0 when kpti is enabled (Will Deacon) - sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - um: vector: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433467] {CVE-2024-53181} - serial: 8250: omap: Move pm_runtime_get_sync (Bin Liu) - um: net: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433475] {CVE-2024-53183} - um: ubd: Do not use drvdata in release (Tiwei Bie) [Orabug: 37433484] {CVE-2024-53184} - ubi: wl: Put source PEB into correct list if trying locking LEB failed (Zhihao Cheng) - spi: Fix acpi deferred irq probe (Stanislaw Gruszka) - netfilter: ipset: add missing range check in bitmap_ip_uadt (Jeongjun Park) [Orabug: 37388867] {CVE-2024-53141} - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit" (Greg Kroah-Hartman) - serial: sh-sci: Clean sci_ports[0] after at earlycon exit (Claudiu Beznea) - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}() (Andrej Shadura) - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler (Nicolas Bouchinet) - comedi: Flush partial mappings in error case (Jann Horn) [Orabug: 37427482] {CVE-2024-53148} - PCI: Fix use-after-free of slot->bus on hot remove (Lukas Wunner) [Orabug: 37433516] {CVE-2024-53194} - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata() (Qiu-ji Chen) - jfs: xattr: check invalid xattr size more strictly (Artem Sadovnikov) - ext4: fix FS_IOC_GETFSMAP handling (Theodore Ts'o) - ext4: supress data-race warnings in ext4_free_inodes_{count,set}() (Jeongjun Park) - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno?t Sevens) [Orabug: 37433532] {CVE-2024-53197} - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe() (Manikanta Mylavarapu) - usb: ehci-spear: fix call balance of sehci clk handling routines (Vitalii Mordan) - apparmor: fix 'Do simple duplicate message elimination' (chao liu) - staging: greybus: uart: clean up TIOCGSERIAL (Johan Hovold) - misc: apds990x: Fix missing pm_runtime_disable() (Jinjie Ruan) - USB: chaoskey: Fix possible deadlock chaoskey_list_lock (Edward Adam Davis) - USB: chaoskey: fail open after removal (Oliver Neukum) - usb: yurex: make waiting on yurex_write interruptible (Oliver Neukum) - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read() (Jeongjun Park) - ipmr: fix tables suspicious RCU usage (Paolo Abeni) - ipmr: convert /proc handlers to rcu_read_lock() (Eric Dumazet) - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken (Maxime Chevallier) - marvell: pxa168_eth: fix call balance of pep->clk handling routines (Vitalii Mordan) - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL configuration (Oleksij Rempel) - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets (Pavan Chebbi) - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device (Oleksij Rempel) - power: supply: core: Remove might_sleep() from power_supply_put() (Bart Van Assche) - vfio/pci: Properly hide first-in-list PCIe extended capability (Avihai Horon) [Orabug: 37433578] {CVE-2024-53214} - NFSD: Fix nfsd4_shutdown_copy() (Chuck Lever) - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir() (Chuck Lever) - NFSD: Prevent NULL dereference in nfsd4_process_cb_update() (Chuck Lever) [Orabug: 37433594] {CVE-2024-53217} - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length (Jonathan Marek) - rpmsg: glink: Fix GLINK command prefix (Bjorn Andersson) - rpmsg: glink: Send READ_NOTIFY command in FIFO full case (Arun Kumar Neelakantam) - rpmsg: glink: Add TX_DATA_CONT command while sending (Arun Kumar Neelakantam) - perf trace: Avoid garbage when not printing a syscall's arguments (Benjamin Peterson) - perf trace: Do not lose last events in a race (Benjamin Peterson) - m68k: coldfire/device.c: only build FEC when HW macros are defined (Antonio Quartulli) - m68k: mcfgpio: Fix incorrect register offset for CONFIG_M5441x (Jean-Michel Hautbois) - PCI: cpqphp: Fix PCIBIOS_* return value confusion (Ilpo J?rvinen) - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads (weiyufeng) - perf probe: Correct demangled symbols in C++ program (Leo Yan) - perf cs-etm: Don't flush when packet_queue fills up (James Clark) - clk: clk-axi-clkgen: make sure to enable the AXI bus clock (Nuno Sa) - clk: axi-clkgen: use devm_platform_ioremap_resource() short-hand (Alexandru Ardelean) - dt-bindings: clock: axi-clkgen: include AXI clk (Nuno Sa) - dt-bindings: clock: adi,axi-clkgen: convert old binding to yaml format (Alexandru Ardelean) - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem() (Zhen Lei) [Orabug: 37434478] {CVE-2024-56746} - fbdev/sh7760fb: Alloc DMA memory from hardware device (Thomas Zimmermann) - powerpc/sstep: make emulate_vsx_load and emulate_vsx_store static (Michal Suchanek) - ocfs2: fix uninitialized value in ocfs2_file_read_iter() (Dmitry Antipov) [Orabug: 37427503] {CVE-2024-53155} - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434484] {CVE-2024-56747} - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() (Zhen Lei) [Orabug: 37434489] {CVE-2024-56748} - scsi: fusion: Remove unused variable 'rc' (Zeng Heng) - scsi: bfa: Fix use-after-free in bfad_im_module_exit() (Ye Bin) [Orabug: 37433630] {CVE-2024-53227} - mfd: rt5033: Fix missing regmap_del_irq_chip() (Zhang Changzhong) - mtd: rawnand: atmel: Fix possible memory leak (Miquel Raynal) - cpufreq: loongson2: Unregister platform_driver on failure (Yuan Can) - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices (Andy Shevchenko) [Orabug: 37434429] {CVE-2024-56723} - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device (Andy Shevchenko) [Orabug: 37434434] {CVE-2024-56724} - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device (Andy Shevchenko) [Orabug: 37434330] {CVE-2024-56691} - mfd: intel_soc_pmic_bxtwc: Use dev_err_probe() (Andy Shevchenko) - mfd: da9052-spi: Change read-mask to write-mask (Marcus Folkesson) - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race (Jinjie Ruan) - trace/trace_event_perf: remove duplicate samples on the first tracepoint event (Levi Yun) - netpoll: Use rcu_access_pointer() in netpoll_poll_lock (Breno Leitao) - ALSA: 6fire: Release resources at card release (Takashi Iwai) [Orabug: 37433660] {CVE-2024-53239} - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433666] {CVE-2024-56531} - ALSA: us122l: Use snd_card_free_when_closed() at disconnection (Takashi Iwai) [Orabug: 37433672] {CVE-2024-56532} - net: rfkill: gpio: Add check for clk_enable() (Mingwei Zheng) - selftests: net: really check for bg process completion (Paolo Abeni) - bpf, sockmap: Fix sk_msg_reset_curr (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_pop_data (Zijian Zhang) - bpf, sockmap: Several fixes to bpf_msg_push_data (Zijian Zhang) - drm/etnaviv: hold GPU lock across perfmon sampling (Lucas Stach) - drm/etnaviv: fix power register offset on GC300 (Doug Brown) - drm/etnaviv: dump: fix sparse warnings (Marc Kleine-Budde) - drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/panfrost: Remove unused id_mask from struct panfrost_model (Steven Price) - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() (Alper Nebi Yasak) [Orabug: 37433695] {CVE-2024-56539} - bpf: Fix the xdp_adjust_tail sample prog issue (Yuan Chen) - ASoC: fsl_micfil: fix regmap_write_bits usage (Shengjiu Wang) - ASoC: fsl_micfil: use GENMASK to define register bit fields (Sascha Hauer) - ASoC: fsl_micfil: do not define SHIFT/MASK for single bits (Sascha Hauer) - ASoC: fsl_micfil: Drop unnecessary register read (Sascha Hauer) - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc (Igor Prusov) - drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - drm/omap: Fix locking in omap_gem_new_dmabuf() (Tomi Valkeinen) - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service() (Jeongjun Park) [Orabug: 37427509] {CVE-2024-53156} - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused (Andy Shevchenko) - firmware: arm_scpi: Check the DVFS OPP count returned by the firmware (Luo Qiu) [Orabug: 37427515] {CVE-2024-53157} - regmap: irq: Set lockdep class for hierarchical IRQ domains (Andy Shevchenko) - ARM: dts: cubieboard4: Fix DCDC5 regulator constraints (Andre Przywara) - tpm: fix signed/unsigned bug when checking event logs (Gregory Price) - efi/tpm: Pass correct address to memblock_reserve (Jerry Snitselaar) - mmc: mmc_spi: drop buggy snprintf() (Bartosz Golaszewski) - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() (Dan Carpenter) [Orabug: 37427524] {CVE-2024-53158} - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq() (Jinjie Ruan) - time: Fix references to _msecs_to_jiffies() handling of values (Miguel Ojeda) - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw() (Christophe JAILLET) - crypto: bcm - add error check in the ahash_hmac_init function (Chen Ridong) [Orabug: 37434298] {CVE-2024-56681} - crypto: cavium - Fix the if condition to exit loop after timeout (Everest K.C) - crypto: pcrypt - Call crypto layer directly when padata_do_parallel() return -EBUSY (Yi Yang) [Orabug: 37434323] {CVE-2024-56690} - EDAC/fsl_ddr: Fix bad bit shift operations (Priyanka Singh) - EDAC/bluefield: Fix potential integer overflow (David Thompson) [Orabug: 37427533] {CVE-2024-53161} - firmware: google: Unregister driver_info on failure (Yuan Can) - firmware: google: Unregister driver_info on failure and exit in gsmi (Arthur Heymans) - hfsplus: don't query the device logical block size multiple times (Thadeu Lima de Souza Cascardo) [Orabug: 37433720] {CVE-2024-56548} - s390/syscalls: Avoid creation of arch/arch/ directory (Masahiro Yamada) - acpi/arm64: Adjust error handling procedure in gtdt_parse_timer_block() (Aleksandr Mishin) - m68k: mvme147: Reinstate early console (Daniel Palmer) - m68k: mvme16x: Add and use "mvme16x.h" (Geert Uytterhoeven) - m68k: mvme147: Fix SCSI controller IRQ numbers (Daniel Palmer) - nvme-pci: fix freeing of the HMB descriptor table (Christoph Hellwig) [Orabug: 37434510] {CVE-2024-56756} - initramfs: avoid filename buffer overrun (David Disseldorp) [Orabug: 37388874] {CVE-2024-53142} - mips: asm: fix warning when disabling MIPS_FP_SUPPORT (Jonas Gorski) - x86/xen/pvh: Annotate indirect branch as safe (Josh Poimboeuf) - nvme: fix metadata handling in nvme-passthrough (Puranjay Mohan) - cifs: Fix buffer overflow when parsing NFS reparse points (Pali Roh?r) [Orabug: 37206284] {CVE-2024-49996} - ipmr: Fix access to mfc_cache_list without lock held (Breno Leitao) - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width (David Wang) - ASoC: stm: Prevent potential division by zero in stm32_sai_get_clk_div() (Luo Yifan) - ASoC: stm: Prevent potential division by zero in stm32_sai_mclk_round_rate() (Luo Yifan) - regulator: rk808: Add apply_bit for BUCK3 on RK809 (Mikhail Rudenko) - soc: qcom: Add check devm_kasprintf() returned value (Charles Han) - net: usb: qmi_wwan: add Quectel RG650V (Beno?t Monin) - x86/amd_nb: Fix compile-testing without CONFIG_AMD_NB (Arnd Bergmann) - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13 (Piyush Raj Chouhan) - selftests/watchdog-test: Fix system accidentally reset after watchdog-test (Li Zhijian) - mac80211: fix user-power when emulating chanctx (Ben Greear) - ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10 tablet (Hans de Goede) - kbuild: Use uname for LINUX_COMPILE_HOST detection (Chris Down) - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (Mauro Carvalho Chehab) - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388819] {CVE-2024-53130} - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (Dmitry Antipov) - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (Ryusuke Konishi) [Orabug: 37388825] {CVE-2024-53131} - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (Sean Christopherson) [Orabug: 37388846] {CVE-2024-53135} - ocfs2: uncache inode which has failed entering the group (Dmitry Antipov) [Orabug: 37388753] {CVE-2024-53112} - net/mlx5e: kTLS, Fix incorrect page refcounting (Dragos Tatulea) - net/mlx5: fs, lock FTE when checking if active (Mark Bloch) - netlink: terminate outstanding dump on socket close (Jakub Kicinski) [Orabug: 37388861] {CVE-2024-53140} - LTS tag: v5.4.286 (Alok Tiwari) - 9p: fix slab cache name creation for real (Linus Torvalds) - md/raid10: improve code of mrdev in raid10_sync_request (Li Nan) - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - fs: Fix uninitialized value issue in from_kuid and from_kgid (Alessandro Zanni) [Orabug: 37331928] {CVE-2024-53101} - powerpc/powernv: Free name on error in opal_event_init() (Michael Ellerman) - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML (Julian Vetter) - bpf: use kvzmalloc to allocate BPF verifier environment (Rik van Riel) - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad (WangYuli) - 9p: Avoid creating multiple slab caches with the same name (Pedro Falcato) - ALSA: usb-audio: Add endianness annotations (Jan Sch?r) - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (Hyunwoo Kim) [Orabug: 37298681] {CVE-2024-50264} - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (Hyunwoo Kim) [Orabug: 37344480] {CVE-2024-53103} - ftrace: Fix possible use-after-free issue in ftrace_location() (Zheng Yejian) [Orabug: 36753574] {CVE-2024-38588} - NFSD: Fix NFSv4's PUTPUBFH operation (Chuck Lever) - ALSA: usb-audio: Add quirks for Dell WD19 dock (Jan Sch?r) - ALSA: usb-audio: Support jack detection on Dell dock (Jan Sch?r) - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (Andrew Kanner) [Orabug: 37298685] {CVE-2024-50265} - irqchip/gic-v3: Force propagation of the active state with a read-back (Marc Zyngier) - USB: serial: option: add Quectel RG650V (Beno?t Monin) - USB: serial: option: add Fibocom FG132 0x0112 composition (Reinhard Speyerer) - USB: serial: qcserial: add support for Sierra Wireless EM86xx (Jack Wu) - USB: serial: io_edgeport: fix use after free in debug printk (Dan Carpenter) [Orabug: 37298695] {CVE-2024-50267} - usb: musb: sunxi: Fix accessing an released usb phy (Zijun Hu) [Orabug: 37298703] {CVE-2024-50269} - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (Qi Xi) - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) [Orabug: 37344485] {CVE-2024-53104} - net: bridge: xmit: make sure we have at least eth header len bytes (Nikolay Aleksandrov) [Orabug: 36753372] {CVE-2024-38538} - spi: fix use-after-free of the add_lock mutex (Michael Walle) - spi: Fix deadlock when adding SPI controllers on SPI buses (Mark Brown) - mtd: rawnand: protect access to rawnand devices while in suspend (Sean Nyekjaer) - btrfs: reinitialize delayed ref list after deleting it from the list (Filipe Manana) [Orabug: 37298715] {CVE-2024-50273} - nfs: Fix KMSAN warning in decode_getfattr_attrs() (Roberto Sassu) [Orabug: 37304779] {CVE-2024-53066} - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t overflow (Zichen Xie) - dm cache: fix potential out-of-bounds access on the first resume (Ming-Hung Tsai) [Orabug: 37298732] {CVE-2024-50278} - dm cache: optimize dirty bit checking with find_next_bit when resizing (Ming-Hung Tsai) - dm cache: fix out-of-bounds access to the dirty bitset when resizing (Ming-Hung Tsai) [Orabug: 37298737] {CVE-2024-50279} - dm cache: correct the number of origin blocks to match the target length (Ming-Hung Tsai) - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() (Alex Deucher) [Orabug: 37298751] {CVE-2024-50282} - pwm: imx-tpm: Use correct MODULO value for EPWM mode (Erik Schumacher) - media: v4l2-tpg: prevent the risk of a division by zero (Mauro Carvalho Chehab) [Orabug: 37298782] {CVE-2024-50287} - media: cx24116: prevent overflows on SNR calculus (Mauro Carvalho Chehab) [Orabug: 37298797] {CVE-2024-50290} - media: s5p-jpeg: prevent buffer overflows (Mauro Carvalho Chehab) [Orabug: 37304763] {CVE-2024-53061} - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init() (Murad Masimov) - media: adv7604: prevent underflow condition when reporting colorspace (Mauro Carvalho Chehab) - media: dvb_frontend: don't play tricks with underflow values (Mauro Carvalho Chehab) - media: dvbdev: prevent the risk of out of memory access (Mauro Carvalho Chehab) [Orabug: 37304769] {CVE-2024-53063} - media: stb0899_algo: initialize cfr before using it (Mauro Carvalho Chehab) - net: hns3: fix kernel crash when uninstalling driver (Peiyang Wang) [Orabug: 37298811] {CVE-2024-50296} - can: c_can: fix {rx,tx}_errors statistics (Dario Binacchi) - sctp: properly validate chunk size in sctp_sf_ootb() (Xin Long) [Orabug: 37298820] {CVE-2024-50299} - net: enetc: set MAC address to the VF net_device (Wei Fang) - enetc: simplify the return expression of enetc_vf_set_mac_addr() (Qinglang Miao) - security/keys: fix slab-out-of-bounds in key_task_permission (Chen Ridong) [Orabug: 37298827] {CVE-2024-50301} - HID: core: zero-initialize the report buffer (Jiri Kosina) [Orabug: 37298834] {CVE-2024-50302} - ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin (Heiko Stuebner) - ARM: dts: rockchip: Fix the spi controller on rk3036 (Heiko Stuebner) - ARM: dts: rockchip: drop grf reference from rk3036 hdmi (Heiko Stuebner) - ARM: dts: rockchip: fix rk3036 acodec node (Heiko Stuebner) - arm64: dts: rockchip: Remove #cooling-cells from fan on Theobroma lion (Heiko Stuebner) - arm64: dts: rockchip: Fix bluetooth properties on Rock960 boards (Heiko Stuebner) - arm64: dts: rockchip: Remove hdmi's 2nd interrupt on rk3328 (Diederik de Haas) - arm64: dts: rockchip: Fix rt5651 compatible value on rk3399-sapphire-excavator (Geert Uytterhoeven) [5.4.17-2136.340.1.el7uek] - rds/ib: avoid scq/rcq polling during rds connection shutdown (Arumugam Kolappan) [Orabug: 37092563] - RDMA/mlx5: Send UAR page index as ioctl attribute (Akiva Goldberger) [Orabug: 37029739] - RDMA: Pass entire uverbs attr bundle to create cq function (Akiva Goldberger) [Orabug: 37029739] - IB/uverbs: Enable CQ ioctl commands by default (Yishai Hadas) [Orabug: 37029739] From el-errata at oss.oracle.com Mon Feb 17 14:33:10 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 17 Feb 2025 06:33:10 -0800 Subject: [El-errata] ELSA-2025-0714 Important: Oracle Linux 7 rsync security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0714 http://linux.oracle.com/errata/ELSA-2025-0714.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: rsync-3.1.2-12.0.1.el7_9.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//rsync-3.1.2-12.0.1.el7_9.src.rpm Related CVEs: CVE-2024-12085 Description of changes: [3.1.2-12.0.1] * Back port fix for CVE-2024-12085 [Orabug: 37524229] From el-errata at oss.oracle.com Tue Feb 18 15:27:13 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Tue, 18 Feb 2025 07:27:13 -0800 Subject: [El-errata] ELBA-2025-20107 Oracle Linux 8 oVirt 4.5 ovirt-ansible-collection bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20107 http://linux.oracle.com/errata/ELBA-2025-20107.html The following updated rpms for Oracle Linux 8 oVirt 4.5 have been uploaded to the Unbreakable Linux Network: x86_64: ovirt-ansible-collection-3.2.0-1.20.el8.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//ovirt-ansible-collection-3.2.0-1.20.el8.src.rpm Description of changes: [3.2.0-1.20] - Move proxy task earlier in deployment From el-errata at oss.oracle.com Wed Feb 19 13:13:46 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:13:46 -0800 Subject: [El-errata] ELSA-2025-20113 Critical: Oracle Linux 8 NetworkManager security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20113 http://linux.oracle.com/errata/ELSA-2025-20113.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: NetworkManager-cloud-setup-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-adsl-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-bluetooth-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-config-connectivity-oracle-1.40.16-18.0.3.el8_10.noarch.rpm NetworkManager-config-server-1.40.16-18.0.3.el8_10.noarch.rpm NetworkManager-dispatcher-routing-rules-1.40.16-18.0.3.el8_10.noarch.rpm NetworkManager-libnm-1.40.16-18.0.3.el8_10.i686.rpm NetworkManager-libnm-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-ovs-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-ppp-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-team-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-tui-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-wifi-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-wwan-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-libnm-devel-1.40.16-18.0.3.el8_10.i686.rpm NetworkManager-libnm-devel-1.40.16-18.0.3.el8_10.x86_64.rpm NetworkManager-initscripts-updown-1.40.16-18.0.3.el8_10.noarch.rpm aarch64: NetworkManager-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-adsl-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-bluetooth-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-config-connectivity-oracle-1.40.16-18.0.3.el8_10.noarch.rpm NetworkManager-config-server-1.40.16-18.0.3.el8_10.noarch.rpm NetworkManager-dispatcher-routing-rules-1.40.16-18.0.3.el8_10.noarch.rpm NetworkManager-libnm-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-ovs-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-ppp-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-team-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-tui-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-wifi-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-wwan-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-libnm-devel-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-cloud-setup-1.40.16-18.0.3.el8_10.aarch64.rpm NetworkManager-initscripts-updown-1.40.16-18.0.3.el8_10.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//NetworkManager-1.40.16-18.0.3.el8_10.src.rpm Description of changes: [1:1.40.16-18.0.3] - Drop 777 permissions from Networkmanager-dispatcher drop-in directory [Orabug: 37581862] [1:1.40.16-18.0.2] - Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910] From el-errata at oss.oracle.com Wed Feb 19 13:13:48 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:13:48 -0800 Subject: [El-errata] ELSA-2025-1517 Moderate: Oracle Linux 8 libxml2 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1517 http://linux.oracle.com/errata/ELSA-2025-1517.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: libxml2-2.9.7-18.el8_10.2.i686.rpm libxml2-2.9.7-18.el8_10.2.x86_64.rpm libxml2-devel-2.9.7-18.el8_10.2.i686.rpm libxml2-devel-2.9.7-18.el8_10.2.x86_64.rpm python3-libxml2-2.9.7-18.el8_10.2.x86_64.rpm aarch64: libxml2-2.9.7-18.el8_10.2.aarch64.rpm libxml2-devel-2.9.7-18.el8_10.2.aarch64.rpm python3-libxml2-2.9.7-18.el8_10.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//libxml2-2.9.7-18.el8_10.2.src.rpm Related CVEs: CVE-2022-49043 Description of changes: [2.9.7-18.2] - Fix CVE-2022-49043 (RHEL-76289) [2.9.7-18.1] - Fix CVE-2024-25062 (RHEL-31056) From el-errata at oss.oracle.com Wed Feb 19 13:13:54 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:13:54 -0800 Subject: [El-errata] ELBA-2025-20122 Oracle Linux 9 osbuild-composer bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20122 http://linux.oracle.com/errata/ELBA-2025-20122.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: osbuild-composer-118-2.0.2.el9_5.x86_64.rpm osbuild-composer-core-118-2.0.2.el9_5.x86_64.rpm osbuild-composer-worker-118-2.0.2.el9_5.x86_64.rpm aarch64: osbuild-composer-118-2.0.2.el9_5.aarch64.rpm osbuild-composer-core-118-2.0.2.el9_5.aarch64.rpm osbuild-composer-worker-118-2.0.2.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//osbuild-composer-118-2.0.2.el9_5.src.rpm Description of changes: [118-2.0.2] - Add support to create OpenScap images [JIRA: OLDIS-35301] From el-errata at oss.oracle.com Wed Feb 19 13:13:56 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:13:56 -0800 Subject: [El-errata] ELSA-2025-20114 Critical: Oracle Linux 9 NetworkManager security update Message-ID: Oracle Linux Security Advisory ELSA-2025-20114 http://linux.oracle.com/errata/ELSA-2025-20114.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: NetworkManager-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-adsl-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-bluetooth-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-config-connectivity-oracle-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-config-server-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-initscripts-updown-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-libnm-1.48.10-5.0.3.el9_5.i686.rpm NetworkManager-libnm-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-team-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-tui-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-wifi-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-wwan-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-cloud-setup-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-dispatcher-routing-rules-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-ovs-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-ppp-1.48.10-5.0.3.el9_5.x86_64.rpm NetworkManager-libnm-devel-1.48.10-5.0.3.el9_5.i686.rpm NetworkManager-libnm-devel-1.48.10-5.0.3.el9_5.x86_64.rpm aarch64: NetworkManager-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-adsl-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-bluetooth-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-config-connectivity-oracle-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-config-server-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-initscripts-updown-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-libnm-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-team-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-tui-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-wifi-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-wwan-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-cloud-setup-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-dispatcher-routing-rules-1.48.10-5.0.3.el9_5.noarch.rpm NetworkManager-ovs-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-ppp-1.48.10-5.0.3.el9_5.aarch64.rpm NetworkManager-libnm-devel-1.48.10-5.0.3.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//NetworkManager-1.48.10-5.0.3.el9_5.src.rpm Description of changes: [1.48.10-5.0.3] - Drop 777 permissions from the NetworkManager-dispatcher drop-in directory [Orabug: 37581907] [1.48.10-5.0.2] - Add a dropin file to make Networkmanager-dispatcher persistent [Orabug: 36989910] From el-errata at oss.oracle.com Wed Feb 19 13:13:57 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:13:57 -0800 Subject: [El-errata] ELBA-2025-1345 Oracle Linux 9 .NET 8.0 bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1345 http://linux.oracle.com/errata/ELBA-2025-1345.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm dotnet-apphost-pack-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm dotnet-hostfxr-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm dotnet-runtime-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm dotnet-sdk-8.0-8.0.113-1.0.1.el9_5.x86_64.rpm dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el9_5.x86_64.rpm dotnet-targeting-pack-8.0-8.0.13-1.0.1.el9_5.x86_64.rpm dotnet-templates-8.0-8.0.113-1.0.1.el9_5.x86_64.rpm dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el9_5.x86_64.rpm aarch64: aspnetcore-runtime-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm dotnet-apphost-pack-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm dotnet-hostfxr-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm dotnet-runtime-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm dotnet-sdk-8.0-8.0.113-1.0.1.el9_5.aarch64.rpm dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el9_5.aarch64.rpm dotnet-targeting-pack-8.0-8.0.13-1.0.1.el9_5.aarch64.rpm dotnet-templates-8.0-8.0.113-1.0.1.el9_5.aarch64.rpm dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//dotnet8.0-8.0.113-1.0.1.el9_5.src.rpm Description of changes: [8.0.113-1.0.1] - Update to .NET SDK 8.0.113 and Runtime 8.0.13 From el-errata at oss.oracle.com Wed Feb 19 13:13:58 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:13:58 -0800 Subject: [El-errata] ELBA-2025-1512 Oracle Linux 9 virt-v2v bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1512 http://linux.oracle.com/errata/ELBA-2025-1512.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: virt-v2v-2.5.6-8.0.1.el9_5.x86_64.rpm virt-v2v-bash-completion-2.5.6-8.0.1.el9_5.noarch.rpm virt-v2v-man-pages-ja-2.5.6-8.0.1.el9_5.noarch.rpm virt-v2v-man-pages-uk-2.5.6-8.0.1.el9_5.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//virt-v2v-2.5.6-8.0.1.el9_5.src.rpm Description of changes: [1:2.5.6-8.0.1] - Replaced bugzilla.oracle.com references [Orabug: 34202300] - replaced upstream references [Orabug:34089586] [1:2.5.6-8] - Migration Plan / vddk pod cannot remove open-vm-tools in case of dependencies Resolves: RHEL-78842 - CentOS 9 Migration from VMWare to Openshift Virt fails Resolves: RHEL-78844 From el-errata at oss.oracle.com Wed Feb 19 13:14:00 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:14:00 -0800 Subject: [El-errata] ELSA-2025-0936 Moderate: Oracle Linux 9 mingw-glib2 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-0936 http://linux.oracle.com/errata/ELSA-2025-0936.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: mingw32-glib2-2.78.6-2.el9.noarch.rpm mingw32-glib2-static-2.78.6-2.el9.noarch.rpm mingw64-glib2-2.78.6-2.el9.noarch.rpm mingw64-glib2-static-2.78.6-2.el9.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//mingw-glib2-2.78.6-2.el9.src.rpm Related CVEs: CVE-2024-52533 Description of changes: [2.78.6-2] - Resolves: RHEL-67088 - CVE-2024-52533 mingw-glib2: buffer overflow in set_connect_msg() From el-errata at oss.oracle.com Wed Feb 19 13:14:01 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Wed, 19 Feb 2025 05:14:01 -0800 Subject: [El-errata] ELSA-2025-1329 Moderate: Oracle Linux 9 doxygen security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1329 http://linux.oracle.com/errata/ELSA-2025-1329.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: doxygen-1.9.1-12.el9_5.x86_64.rpm doxygen-doxywizard-1.9.1-12.el9_5.x86_64.rpm doxygen-latex-1.9.1-12.el9_5.x86_64.rpm aarch64: doxygen-1.9.1-12.el9_5.aarch64.rpm doxygen-doxywizard-1.9.1-12.el9_5.aarch64.rpm doxygen-latex-1.9.1-12.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//doxygen-1.9.1-12.el9_5.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [1:1.9.1-12] - Resolves: RHEL-78146, CVE-2020-11023, CVE-2020-11022 From el-errata at oss.oracle.com Mon Feb 24 13:18:50 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 14:18:50 +0100 Subject: [El-errata] New Ksplice updates for UEKR7 5.15.0 on OL8 and OL9 (ELSA-2025-20095) Message-ID: Synopsis: ELSA-2025-20095 can now be patched using Ksplice CVEs: CVE-2023-52658 CVE-2024-38538 CVE-2024-39494 CVE-2024-42142 CVE-2024-42315 CVE-2024-43864 CVE-2024-49996 CVE-2024-50121 CVE-2024-50264 CVE-2024-50265 CVE-2024-50273 CVE-2024-50278 CVE-2024-50279 CVE-2024-53103 CVE-2024-53104 CVE-2024-53112 CVE-2024-53141 CVE-2024-53164 CVE-2024-53173 CVE-2024-53241 CVE-2024-56590 CVE-2024-56600 CVE-2024-56601 CVE-2024-56602 CVE-2024-56603 CVE-2024-56605 CVE-2024-56606 CVE-2024-56642 CVE-2024-56644 CVE-2024-56650 CVE-2024-56688 CVE-2024-57874 Users with Oracle Linux Premier Support can now use Ksplice to patch against the latest Oracle Linux Security Advisory, ELSA-2025-20095. More information about this errata can be found at https://linux.oracle.com/errata/ELSA-2025-20095.html INSTALLING THE UPDATES We recommend that all users of Ksplice Uptrack running UEKR7 5.15.0 on OL8 and OL9 install these updates. On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf, these updates will be installed automatically and you do not need to take any action. Alternatively, you can install these updates by running: # /usr/sbin/uptrack-upgrade -y DESCRIPTION * CVE-2023-52658: Denial-of-service in Mellanox Technologies MLX5 SRIOV E-Switch driver. A logic error when entering switchdev mode with ns inconsistency in Mellanox Technologies MLX5 SRIOV E-Switch driver could lead to a kernel crash. A local attacker could use this flaw to cause a denial-of-service. Orabug: 36811057 * CVE-2024-38538: Data corruption in 802.1d Ethernet Bridging. A missing check when sending a short skb in the 802.1d Ethernet Bridging driver could lead to use of uninitialized memory. An attacker could use this flaw to cause data corruption. * CVE-2024-39494: Denial-of-service in Integrity Measurement Architecture (IMA) driver. A logic error when using the Integrity Measurement Architecture (IMA) driver could lead to a use-after-free. A local attacker could use this flaw to cause a denial-of-service. * CVE-2024-42142: Denial-of-service in Mellanox devices driver. A logic error when using active-backup lag mode in the Mellanox devices driver could lead to a NULL pointer dereference. A local attacker could use this flaw to cause a denial-of-service. Orabug: 36948578 * CVE-2024-42315: Denial-of-service in exFAT filesystem driver. A locking error when using the exFAT filesystem driver could lead to a deadlock. A local attacker could use this flaw to cause a denial-of-service. * CVE-2024-43864: Denial-of-service in Mellanox devices driver. Incorrect return status checks when using the Mellanox devices driver could lead to a invalid pointer dereference. A local attacker could use this flaw to cause a denial-of-service. Orabug: 36948578 * CVE-2024-49996: Privilege escalation in SMB3 and CIFS driver. A missing check when parsing NFS reparse points in the SMB3 and CIFS driver could lead to an out-of-bounds memory access. A remote attacker could use this flaw to escalate privileges. * CVE-2024-50121: Privilege escalation in NFS server version 4 driver. A logic error when using the NFS server version 4 driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-50264: Privilege escalation in Virtual Socket protocol driver. A missing variable initialization when during loopback communication in the Virtual Socket protocol driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-50265: Denial-of-service in OCFS2 filesystem driver. A logic error when setting extended attributes in the OCFS2 filesystem driver could lead to a NULL pointer dereference. A local attacker could use this flaw to cause a denial-of-service. * CVE-2024-50273: Denial-of-service in Btrfs filesystem driver. A logic error when handling delayed reference counting in the Btrfs filesystem driver could lead to a use-after-free. A local attacker could use this flaw to cause a denial-of-service. * CVE-2024-50278, CVE-2024-50279: Privilege escalation in Multiple Device Cache Target driver. Logic errors when manipulating cache in the Multiple Device Cache Target driver could lead to an out-of-bounds memory access. A local attacker could use this flaw to escalate privileges. * CVE-2024-53103: Privilege escalation in Virtual Socket protocol driver. A missing variable initialization when destroying socket in the Virtual Socket protocol driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-53104: Code execution in USB Video Class (UVC) driver. A missing check when using the USB Video Class (UVC) driver could lead to an out-of-bounds memory write. A local attacker could use this flaw to execute arbitrary code in kernel mode. * CVE-2024-53112: Denial-of-service in OCFS2 filesystem driver. A missing check when using OCFS2_IOC_GROUP_ADD ioctl in the OCFS2 filesystem driver could lead to a kernel assertion failure. A local attacker could use this flaw to cause a denial-of-service. * CVE-2024-53141: Privilege escalation in netfilter (IP set) subsystem. A missing check when updating the bitmap for IP addresses in the netfilter (IP set) subsystem could lead to an out-of-bounds memory access. A local attacker could use this flaw to escalate privileges. * CVE-2024-53164: Privilege escalation in CAKE network scheduler. A logic error when using the Common Applications Kept Enhanced (CAKE) network scheduler could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-53173: Privilege escalation in NFS client driver. A logic error when opening multiple files concurrently in the NFS client driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56590: Privilege escalation in Bluetooth subsystem driver. A logic error when using the Bluetooth subsystem driver could lead to an out-of-bounds memory access. A local attacker could use this flaw to escalate privileges. * CVE-2024-56600: Privilege escalation in Networking subsystem. A missing variable initialization when creating a socket fails in the Networking subsystem could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56601: Privilege escalation in TCP/IP networking driver. A missing variable initialization when creating a socket fails in the TCP/IP networking driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56602: Privilege escalation in IEEE Std 802.15.4 Low-Rate Wireless Personal Area Networks driver. A missing variable initialization when creating a socket fails in the IEEE Std 802.15.4 Low-Rate Wireless Personal Area Networks driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56603: Privilege escalation in CAN bus subsystem driver. A missing variable initialization when creating a CAN socket fails in the CAN bus subsystem driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56605: Privilege escalation in Bluetooth subsystem driver. A missing variable initialization when creating a l2cap socket fails in the Bluetooth subsystem driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56606: Privilege escalation in Packet socket driver. A logic error when packet creation fails in the Packet socket driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56642: Privilege escalation in TIPC over IP/UDP driver. A missing check when disabling a bearer in the TIPC over IP/UDP driver could lead to a use-after-free. A local attacker could use this flaw to escalate privileges. * CVE-2024-56644: Remote denial-of-service in IPv6 networking stack. Incorrect reference counting when using the IPv6 networking stack could lead to a memory leak. A remote attacker could use this flaw to cause a denial-of-service. * CVE-2024-56650: Privilege escalation in netfilter driver. A missing check when using the netfilter driver could lead to an out-of-bounds memory access. A local attacker could use this flaw to escalate privileges. * CVE-2024-56688: Denial-of-service in Sun RPC driver. A logic error when using the Sun RPC driver could lead to a NULL pointer dereference. A local attacker could use this flaw to cause a denial-of-service. * CVE-2024-57874: Information leak in Ptrace subsystem. A missing check when ptracing a process using the Ptrace subsystem could lead to leaking of kernel memory. A local attacker could use this flaw to extract sensitive information. * Note: Oracle will not provide a zero-downtime update for CVE-2024-53241 (XSA-466). CVE-2024-53241 (XSA-466) is an information leak from Xen guests. Oracle has determined that patching CVE-2024-53241 (XSA-466) on a running system would not be safe and recommends a reboot if Xen is used. * Note: Oracle has determined some CVEs are not applicable. The kernel is not affected by the following CVEs since the code under consideration is not compiled. CVE-2022-49034, CVE-2024-36476, CVE-2024-40939, CVE-2024-42073, CVE-2024-42138, CVE-2024-43098, CVE-2024-44949, CVE-2024-45828, CVE-2024-47143, CVE-2024-47408, CVE-2024-47730, CVE-2024-49571, CVE-2024-50051, CVE-2024-50268, CVE-2024-50269, CVE-2024-50283, CVE-2024-50287, CVE-2024-50292, CVE-2024-50295, CVE-2024-50296, CVE-2024-53130, CVE-2024-53131, CVE-2024-53145, CVE-2024-53148, CVE-2024-53158, CVE-2024-53161, CVE-2024-53165, CVE-2024-53181, CVE-2024-53183, CVE-2024-53184, CVE-2024-53241, CVE-2024-53690, CVE-2024-56548, CVE-2024-56562, CVE-2024-56567, CVE-2024-56572, CVE-2024-56575, CVE-2024-56578, CVE-2024-56581, CVE-2024-56586, CVE-2024-56595, CVE-2024-56596, CVE-2024-56597, CVE-2024-56598, CVE-2024-56610, CVE-2024-56619, CVE-2024-56626, CVE-2024-56627, CVE-2024-56643, CVE-2024-56659, CVE-2024-56678, CVE-2024-56679, CVE-2024-56700, CVE-2024-56701, CVE-2024-56704, CVE-2024-56726, CVE-2024-56728, CVE-2024-56741, CVE-2024-56754, CVE-2024-56766, CVE-2024-56767, CVE-2024-56776, CVE-2024-56777, CVE-2024-56778, CVE-2024-56781, CVE-2024-56785, CVE-2024-56787, CVE-2024-57791, CVE-2024-57802, CVE-2024-57838, CVE-2024-57849, CVE-2024-57889, CVE-2024-57900 SUPPORT Ksplice support is available at ksplice-support_ww at oracle.com. From el-errata at oss.oracle.com Mon Feb 24 14:41:25 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:25 -0800 Subject: [El-errata] ELSA-2025-1613 Important: Oracle Linux 9 nodejs:22 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1613 http://linux.oracle.com/errata/ELSA-2025-1613.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: nodejs-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm nodejs-devel-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm nodejs-docs-22.13.1-1.module+el9.5.0+90517+729550a4.noarch.rpm nodejs-full-i18n-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm nodejs-libs-22.13.1-1.module+el9.5.0+90517+729550a4.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el9.5.0+90517+729550a4.noarch.rpm nodejs-packaging-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm npm-10.9.2-1.22.13.1.1.module+el9.5.0+90517+729550a4.x86_64.rpm v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el9.5.0+90517+729550a4.x86_64.rpm aarch64: nodejs-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm nodejs-devel-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm nodejs-docs-22.13.1-1.module+el9.5.0+90517+729550a4.noarch.rpm nodejs-full-i18n-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm nodejs-libs-22.13.1-1.module+el9.5.0+90517+729550a4.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el9.5.0+90517+729550a4.noarch.rpm nodejs-packaging-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el9.5.0+90517+729550a4.noarch.rpm npm-10.9.2-1.22.13.1.1.module+el9.5.0+90517+729550a4.aarch64.rpm v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el9.5.0+90517+729550a4.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//nodejs-22.13.1-1.module+el9.5.0+90517+729550a4.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.5.0+90517+729550a4.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.5.0+90517+729550a4.src.rpm Related CVEs: CVE-2025-22150 CVE-2025-23083 CVE-2025-23085 Description of changes: nodejs [1:22.13.1-1] - Update to version 22.13.1 Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76354 [1:22.11.0-1] - Update to version 22.11.0 [22.4.1-4] - Initial import of nodeJS 22 nodejs-nodemon nodejs-packaging From el-errata at oss.oracle.com Mon Feb 24 14:41:26 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:26 -0800 Subject: [El-errata] ELSA-2025-1670 Important: Oracle Linux 9 bind9.18 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1670 http://linux.oracle.com/errata/ELSA-2025-1670.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bind9.18-9.18.29-1.el9_5.1.x86_64.rpm bind9.18-chroot-9.18.29-1.el9_5.1.x86_64.rpm bind9.18-dnssec-utils-9.18.29-1.el9_5.1.x86_64.rpm bind9.18-libs-9.18.29-1.el9_5.1.x86_64.rpm bind9.18-utils-9.18.29-1.el9_5.1.x86_64.rpm bind9.18-devel-9.18.29-1.el9_5.1.i686.rpm bind9.18-devel-9.18.29-1.el9_5.1.x86_64.rpm bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm bind9.18-libs-9.18.29-1.el9_5.1.i686.rpm aarch64: bind9.18-9.18.29-1.el9_5.1.aarch64.rpm bind9.18-chroot-9.18.29-1.el9_5.1.aarch64.rpm bind9.18-dnssec-utils-9.18.29-1.el9_5.1.aarch64.rpm bind9.18-libs-9.18.29-1.el9_5.1.aarch64.rpm bind9.18-utils-9.18.29-1.el9_5.1.aarch64.rpm bind9.18-devel-9.18.29-1.el9_5.1.aarch64.rpm bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//bind9.18-9.18.29-1.el9_5.1.src.rpm Related CVEs: CVE-2024-11187 CVE-2024-12705 Description of changes: [32:9.18.29-1.el9_5.1] - Fix CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion - Fix CVE-2024-12705 bind: bind9: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load From el-errata at oss.oracle.com Mon Feb 24 14:41:29 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:29 -0800 Subject: [El-errata] ELSA-2025-1681 Important: Oracle Linux 9 bind security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1681 http://linux.oracle.com/errata/ELSA-2025-1681.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bind-9.16.23-24.0.1.el9_5.3.x86_64.rpm bind-chroot-9.16.23-24.0.1.el9_5.3.x86_64.rpm bind-dnssec-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-dnssec-utils-9.16.23-24.0.1.el9_5.3.x86_64.rpm bind-libs-9.16.23-24.0.1.el9_5.3.x86_64.rpm bind-license-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-utils-9.16.23-24.0.1.el9_5.3.x86_64.rpm python3-bind-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-devel-9.16.23-24.0.1.el9_5.3.i686.rpm bind-devel-9.16.23-24.0.1.el9_5.3.x86_64.rpm bind-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-libs-9.16.23-24.0.1.el9_5.3.i686.rpm aarch64: bind-9.16.23-24.0.1.el9_5.3.aarch64.rpm bind-chroot-9.16.23-24.0.1.el9_5.3.aarch64.rpm bind-dnssec-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-dnssec-utils-9.16.23-24.0.1.el9_5.3.aarch64.rpm bind-libs-9.16.23-24.0.1.el9_5.3.aarch64.rpm bind-license-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-utils-9.16.23-24.0.1.el9_5.3.aarch64.rpm python3-bind-9.16.23-24.0.1.el9_5.3.noarch.rpm bind-devel-9.16.23-24.0.1.el9_5.3.aarch64.rpm bind-doc-9.16.23-24.0.1.el9_5.3.noarch.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//bind-9.16.23-24.0.1.el9_5.3.src.rpm Related CVEs: CVE-2024-11187 Description of changes: [32:9.16.23-24.0.1.el9_5.3] - Fix bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187) From el-errata at oss.oracle.com Mon Feb 24 14:41:28 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:28 -0800 Subject: [El-errata] ELSA-2025-1671 Important: Oracle Linux 9 mysql security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1671 http://linux.oracle.com/errata/ELSA-2025-1671.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: mysql-8.0.41-2.el9_5.x86_64.rpm mysql-common-8.0.41-2.el9_5.x86_64.rpm mysql-errmsg-8.0.41-2.el9_5.x86_64.rpm mysql-server-8.0.41-2.el9_5.x86_64.rpm mysql-devel-8.0.41-2.el9_5.x86_64.rpm mysql-libs-8.0.41-2.el9_5.x86_64.rpm mysql-test-8.0.41-2.el9_5.x86_64.rpm aarch64: mysql-8.0.41-2.el9_5.aarch64.rpm mysql-common-8.0.41-2.el9_5.aarch64.rpm mysql-errmsg-8.0.41-2.el9_5.aarch64.rpm mysql-server-8.0.41-2.el9_5.aarch64.rpm mysql-devel-8.0.41-2.el9_5.aarch64.rpm mysql-libs-8.0.41-2.el9_5.aarch64.rpm mysql-test-8.0.41-2.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//mysql-8.0.41-2.el9_5.src.rpm Related CVEs: CVE-2024-5535 CVE-2024-7264 CVE-2024-11053 CVE-2024-21193 CVE-2024-21194 CVE-2024-21196 CVE-2024-21197 CVE-2024-21198 CVE-2024-21199 CVE-2024-21201 CVE-2024-21203 CVE-2024-21212 CVE-2024-21213 CVE-2024-21218 CVE-2024-21219 CVE-2024-21230 CVE-2024-21231 CVE-2024-21236 CVE-2024-21237 CVE-2024-21238 CVE-2024-21239 CVE-2024-21241 CVE-2024-21247 CVE-2024-37371 CVE-2025-21490 CVE-2025-21491 CVE-2025-21494 CVE-2025-21497 CVE-2025-21500 CVE-2025-21501 CVE-2025-21503 CVE-2025-21504 CVE-2025-21505 CVE-2025-21518 CVE-2025-21519 CVE-2025-21520 CVE-2025-21521 CVE-2025-21522 CVE-2025-21523 CVE-2025-21525 CVE-2025-21529 CVE-2025-21531 CVE-2025-21534 CVE-2025-21536 CVE-2025-21540 CVE-2025-21543 CVE-2025-21546 CVE-2025-21555 CVE-2025-21559 Description of changes: [8.0.41-2] - Fix patching of logrotate [8.0.41-1] - Update to MySQL 8.0.41 [8.0.40-1] - Update to MySQL 8.0.40 [8.0.39-1] - Rebase to version 8.0.39 [8.0.37-2] - Use signal to flush logs when rotating [8.0.37-1] - Update to MySQL 8.0.37 - Remove some legacy cmake options From el-errata at oss.oracle.com Mon Feb 24 14:41:31 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:31 -0800 Subject: [El-errata] ELSA-2025-1738 Important: Oracle Linux 9 libpq security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1738 http://linux.oracle.com/errata/ELSA-2025-1738.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: libpq-13.20-1.el9_5.i686.rpm libpq-13.20-1.el9_5.x86_64.rpm libpq-devel-13.20-1.el9_5.i686.rpm libpq-devel-13.20-1.el9_5.x86_64.rpm aarch64: libpq-13.20-1.el9_5.aarch64.rpm libpq-devel-13.20-1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//libpq-13.20-1.el9_5.src.rpm Related CVEs: CVE-2025-1094 Description of changes: [13.20-1] - Update to 13.20 From el-errata at oss.oracle.com Mon Feb 24 14:41:33 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:33 -0800 Subject: [El-errata] ELSA-2025-1741 Important: Oracle Linux 9 postgresql:15 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1741 http://linux.oracle.com/errata/ELSA-2025-1741.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.x86_64.rpm pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.x86_64.rpm postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.x86_64.rpm postgresql-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-contrib-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-docs-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-plperl-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-plpython3-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-pltcl-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-private-devel-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-private-libs-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-server-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-server-devel-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-static-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-test-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-test-rpm-macros-15.12-1.module+el9.5.0+90527+e70c9846.noarch.rpm postgresql-upgrade-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm postgresql-upgrade-devel-15.12-1.module+el9.5.0+90527+e70c9846.x86_64.rpm aarch64: pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.aarch64.rpm pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.aarch64.rpm postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.aarch64.rpm postgresql-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-contrib-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-docs-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-plperl-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-plpython3-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-pltcl-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-private-devel-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-private-libs-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-server-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-server-devel-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-static-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-test-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-test-rpm-macros-15.12-1.module+el9.5.0+90527+e70c9846.noarch.rpm postgresql-upgrade-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm postgresql-upgrade-devel-15.12-1.module+el9.5.0+90527+e70c9846.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//postgresql-15.12-1.module+el9.5.0+90527+e70c9846.src.rpm Related CVEs: CVE-2025-1094 Description of changes: pgaudit [1.7.0-1] - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: #2128410 pg_repack [1.4.8-2] - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 postgres-decoderbufs [1.9.7-1.Final] - Iitial import for postgresql 15 stream - Related: #2128410 postgresql [15.12-1] - Update to 15.12 From el-errata at oss.oracle.com Mon Feb 24 14:41:34 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:34 -0800 Subject: [El-errata] ELSA-2025-1742 Important: Oracle Linux 9 postgresql security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1742 http://linux.oracle.com/errata/ELSA-2025-1742.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: postgresql-13.20-1.el9_5.x86_64.rpm postgresql-contrib-13.20-1.el9_5.x86_64.rpm postgresql-plperl-13.20-1.el9_5.x86_64.rpm postgresql-plpython3-13.20-1.el9_5.x86_64.rpm postgresql-pltcl-13.20-1.el9_5.x86_64.rpm postgresql-private-libs-13.20-1.el9_5.x86_64.rpm postgresql-server-13.20-1.el9_5.x86_64.rpm postgresql-upgrade-13.20-1.el9_5.x86_64.rpm postgresql-docs-13.20-1.el9_5.x86_64.rpm postgresql-private-devel-13.20-1.el9_5.x86_64.rpm postgresql-server-devel-13.20-1.el9_5.x86_64.rpm postgresql-static-13.20-1.el9_5.x86_64.rpm postgresql-test-13.20-1.el9_5.x86_64.rpm postgresql-test-rpm-macros-13.20-1.el9_5.noarch.rpm postgresql-upgrade-devel-13.20-1.el9_5.x86_64.rpm aarch64: postgresql-13.20-1.el9_5.aarch64.rpm postgresql-contrib-13.20-1.el9_5.aarch64.rpm postgresql-plperl-13.20-1.el9_5.aarch64.rpm postgresql-plpython3-13.20-1.el9_5.aarch64.rpm postgresql-pltcl-13.20-1.el9_5.aarch64.rpm postgresql-private-libs-13.20-1.el9_5.aarch64.rpm postgresql-server-13.20-1.el9_5.aarch64.rpm postgresql-upgrade-13.20-1.el9_5.aarch64.rpm postgresql-docs-13.20-1.el9_5.aarch64.rpm postgresql-private-devel-13.20-1.el9_5.aarch64.rpm postgresql-server-devel-13.20-1.el9_5.aarch64.rpm postgresql-static-13.20-1.el9_5.aarch64.rpm postgresql-test-13.20-1.el9_5.aarch64.rpm postgresql-test-rpm-macros-13.20-1.el9_5.noarch.rpm postgresql-upgrade-devel-13.20-1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//postgresql-13.20-1.el9_5.src.rpm Related CVEs: CVE-2025-1094 Description of changes: [13.18-1] - Update to 13.18 From el-errata at oss.oracle.com Mon Feb 24 14:41:37 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:37 -0800 Subject: [El-errata] ELSA-2025-1743 Important: Oracle Linux 9 postgresql:16 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1743 http://linux.oracle.com/errata/ELSA-2025-1743.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: pgaudit-16.0-1.module+el9.4.0+90394+9e4f3cba.x86_64.rpm pg_repack-1.5.1-1.module+el9.5.0+90450+cb2feb1d.x86_64.rpm pgvector-0.6.2-1.module+el9.5.0+90425+0820a3c3.x86_64.rpm postgres-decoderbufs-2.4.0-1.Final.module+el9.4.0+90394+9e4f3cba.x86_64.rpm postgresql-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-contrib-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-docs-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-plperl-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-plpython3-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-pltcl-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-private-devel-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-private-libs-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-server-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-server-devel-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-static-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-test-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-test-rpm-macros-16.8-1.module+el9.5.0+90528+7da48ca1.noarch.rpm postgresql-upgrade-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm postgresql-upgrade-devel-16.8-1.module+el9.5.0+90528+7da48ca1.x86_64.rpm aarch64: pgaudit-16.0-1.module+el9.4.0+90394+9e4f3cba.aarch64.rpm pg_repack-1.5.1-1.module+el9.5.0+90450+cb2feb1d.aarch64.rpm pgvector-0.6.2-1.module+el9.5.0+90425+0820a3c3.aarch64.rpm postgres-decoderbufs-2.4.0-1.Final.module+el9.4.0+90394+9e4f3cba.aarch64.rpm postgresql-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-contrib-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-docs-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-plperl-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-plpython3-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-pltcl-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-private-devel-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-private-libs-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-server-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-server-devel-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-static-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-test-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-test-rpm-macros-16.8-1.module+el9.5.0+90528+7da48ca1.noarch.rpm postgresql-upgrade-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm postgresql-upgrade-devel-16.8-1.module+el9.5.0+90528+7da48ca1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//pgaudit-16.0-1.module+el9.4.0+90394+9e4f3cba.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//pg_repack-1.5.1-1.module+el9.5.0+90450+cb2feb1d.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//pgvector-0.6.2-1.module+el9.5.0+90425+0820a3c3.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//postgres-decoderbufs-2.4.0-1.Final.module+el9.4.0+90394+9e4f3cba.src.rpm http://oss.oracle.com/ol9/SRPMS-updates//postgresql-16.8-1.module+el9.5.0+90528+7da48ca1.src.rpm Related CVEs: CVE-2025-1094 Description of changes: pgaudit pg_repack [1.5.1-1] - Update to v1.5.1 pgvector [0.6.2-1] - Initial packaging postgres-decoderbufs postgresql [16.8-1] - Update to 16.8 - Fix CVE-2025-1094 From el-errata at oss.oracle.com Mon Feb 24 14:41:42 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:42 -0800 Subject: [El-errata] ELBA-2025-20121 Oracle Linux 8 osbuild-composer bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20121 http://linux.oracle.com/errata/ELBA-2025-20121.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: osbuild-composer-101-2.0.5.el8_10.x86_64.rpm osbuild-composer-worker-101-2.0.5.el8_10.x86_64.rpm osbuild-composer-core-101-2.0.5.el8_10.x86_64.rpm aarch64: osbuild-composer-101-2.0.5.el8_10.aarch64.rpm osbuild-composer-worker-101-2.0.5.el8_10.aarch64.rpm osbuild-composer-core-101-2.0.5.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//osbuild-composer-101-2.0.5.el8_10.src.rpm Description of changes: [101-2.0.5] - Add support to create OpenScap images [JIRA: OLDIS-35301] From el-errata at oss.oracle.com Mon Feb 24 14:41:44 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:44 -0800 Subject: [El-errata] ELBA-2025-1344 Oracle Linux 8 .NET 8.0 bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1344 http://linux.oracle.com/errata/ELBA-2025-1344.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm dotnet-apphost-pack-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm dotnet-hostfxr-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm dotnet-runtime-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm dotnet-sdk-8.0-8.0.113-1.0.1.el8_10.x86_64.rpm dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el8_10.x86_64.rpm dotnet-targeting-pack-8.0-8.0.13-1.0.1.el8_10.x86_64.rpm dotnet-templates-8.0-8.0.113-1.0.1.el8_10.x86_64.rpm dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el8_10.x86_64.rpm aarch64: aspnetcore-runtime-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm aspnetcore-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm aspnetcore-targeting-pack-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm dotnet-apphost-pack-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm dotnet-hostfxr-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm dotnet-runtime-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm dotnet-runtime-dbg-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm dotnet-sdk-8.0-8.0.113-1.0.1.el8_10.aarch64.rpm dotnet-sdk-dbg-8.0-8.0.113-1.0.1.el8_10.aarch64.rpm dotnet-targeting-pack-8.0-8.0.13-1.0.1.el8_10.aarch64.rpm dotnet-templates-8.0-8.0.113-1.0.1.el8_10.aarch64.rpm dotnet-sdk-8.0-source-built-artifacts-8.0.113-1.0.1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//dotnet8.0-8.0.113-1.0.1.el8_10.src.rpm Description of changes: [8.0.113-1.0.1] - Update to .NET SDK 8.0.113 and Runtime 8.0.13 From el-errata at oss.oracle.com Mon Feb 24 14:41:45 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:45 -0800 Subject: [El-errata] ELBA-2025-1573 Oracle Linux 8 glibc bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1573 http://linux.oracle.com/errata/ELBA-2025-1573.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: compat-libpthread-nonshared-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-2.28-251.0.2.el8_10.13.i686.rpm glibc-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-all-langpacks-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-common-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-devel-2.28-251.0.2.el8_10.13.i686.rpm glibc-devel-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-doc-2.28-251.0.2.el8_10.13.noarch.rpm glibc-gconv-extra-2.28-251.0.2.el8_10.13.i686.rpm glibc-gconv-extra-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-headers-2.28-251.0.2.el8_10.13.i686.rpm glibc-headers-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-aa-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-af-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-agr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ak-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-am-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-an-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-anp-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ar-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-as-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ast-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ayc-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-az-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-be-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bem-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ber-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bg-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bhb-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bho-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bo-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-br-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-brx-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-bs-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-byn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ca-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ce-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-chr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-cmn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-crh-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-cs-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-csb-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-cv-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-cy-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-da-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-de-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-doi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-dsb-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-dv-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-dz-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-el-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-en-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-eo-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-es-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-et-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-eu-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fa-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ff-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fil-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fo-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fur-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-fy-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ga-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-gd-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-gez-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-gl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-gu-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-gv-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ha-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hak-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-he-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hif-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hne-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hsb-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ht-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hu-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-hy-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ia-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-id-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ig-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ik-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-is-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-it-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-iu-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ja-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ka-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-kab-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-kk-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-kl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-km-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-kn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ko-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-kok-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ks-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ku-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-kw-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ky-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lb-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lg-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-li-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lij-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ln-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lo-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lt-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lv-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-lzh-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mag-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mai-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mfe-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mg-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mhr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-miq-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mjw-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mk-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ml-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mni-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ms-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-mt-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-my-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nan-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nb-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nds-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ne-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nhn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-niu-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-nso-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-oc-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-om-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-or-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-os-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-pa-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-pap-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-pl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ps-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-pt-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-quz-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-raj-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ro-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ru-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-rw-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sa-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sah-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sat-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sc-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sd-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-se-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sgs-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-shn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-shs-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-si-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sid-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sk-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sm-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-so-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sq-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ss-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-st-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sv-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-sw-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-szl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ta-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tcy-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-te-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tg-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-th-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-the-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ti-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tig-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tk-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tl-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tn-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-to-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tpi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tr-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ts-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-tt-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ug-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-uk-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-unm-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ur-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-uz-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-ve-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-vi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-wa-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-wae-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-wal-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-wo-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-xh-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-yi-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-yo-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-yue-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-yuw-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-zh-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-langpack-zu-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-locale-source-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-minimal-langpack-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-utils-2.28-251.0.2.el8_10.13.x86_64.rpm libnsl-2.28-251.0.2.el8_10.13.i686.rpm libnsl-2.28-251.0.2.el8_10.13.x86_64.rpm nscd-2.28-251.0.2.el8_10.13.x86_64.rpm nss_db-2.28-251.0.2.el8_10.13.i686.rpm nss_db-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-benchtests-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-nss-devel-2.28-251.0.2.el8_10.13.i686.rpm glibc-nss-devel-2.28-251.0.2.el8_10.13.x86_64.rpm glibc-static-2.28-251.0.2.el8_10.13.i686.rpm glibc-static-2.28-251.0.2.el8_10.13.x86_64.rpm nss_hesiod-2.28-251.0.2.el8_10.13.i686.rpm nss_hesiod-2.28-251.0.2.el8_10.13.x86_64.rpm aarch64: compat-libpthread-nonshared-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-all-langpacks-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-common-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-devel-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-doc-2.28-251.0.2.el8_10.13.noarch.rpm glibc-gconv-extra-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-headers-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-aa-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-af-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-agr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ak-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-am-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-an-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-anp-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ar-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-as-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ast-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ayc-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-az-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-be-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bem-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ber-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bg-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bhb-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bho-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bo-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-br-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-brx-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-bs-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-byn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ca-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ce-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-chr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-cmn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-crh-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-cs-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-csb-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-cv-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-cy-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-da-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-de-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-doi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-dsb-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-dv-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-dz-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-el-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-en-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-eo-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-es-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-et-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-eu-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fa-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ff-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fil-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fo-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fur-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-fy-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ga-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-gd-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-gez-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-gl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-gu-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-gv-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ha-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hak-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-he-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hif-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hne-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hsb-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ht-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hu-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-hy-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ia-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-id-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ig-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ik-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-is-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-it-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-iu-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ja-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ka-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-kab-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-kk-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-kl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-km-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-kn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ko-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-kok-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ks-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ku-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-kw-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ky-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lb-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lg-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-li-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lij-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ln-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lo-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lt-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lv-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-lzh-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mag-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mai-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mfe-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mg-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mhr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-miq-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mjw-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mk-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ml-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mni-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ms-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-mt-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-my-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nan-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nb-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nds-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ne-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nhn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-niu-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-nso-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-oc-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-om-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-or-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-os-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-pa-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-pap-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-pl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ps-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-pt-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-quz-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-raj-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ro-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ru-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-rw-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sa-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sah-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sat-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sc-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sd-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-se-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sgs-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-shn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-shs-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-si-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sid-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sk-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sm-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-so-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sq-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ss-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-st-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sv-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-sw-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-szl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ta-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tcy-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-te-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tg-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-th-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-the-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ti-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tig-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tk-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tl-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tn-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-to-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tpi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tr-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ts-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-tt-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ug-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-uk-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-unm-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ur-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-uz-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-ve-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-vi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-wa-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-wae-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-wal-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-wo-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-xh-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-yi-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-yo-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-yue-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-yuw-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-zh-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-langpack-zu-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-locale-source-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-minimal-langpack-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-utils-2.28-251.0.2.el8_10.13.aarch64.rpm libnsl-2.28-251.0.2.el8_10.13.aarch64.rpm nscd-2.28-251.0.2.el8_10.13.aarch64.rpm nss_db-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-benchtests-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-nss-devel-2.28-251.0.2.el8_10.13.aarch64.rpm glibc-static-2.28-251.0.2.el8_10.13.aarch64.rpm nss_hesiod-2.28-251.0.2.el8_10.13.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//glibc-2.28-251.0.2.el8_10.13.src.rpm Description of changes: [2.28-251.0.2.13] - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi Oracle history: January-28-2025 Cupertino Miranda - 2.28-251.0.2.11 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi September-24-2024 Cupertino Miranda - 2.28-251.0.2.5 - Forward port of Oracle patches over 2.28-251.5 Reviewed-by: Jose E. Marchesi August-26-2024 Jose E. Marchesi - 2.28-251.0.2.4 - Forward port of Oracle patches over 2.28-251.4 Reviewed-by: David Faust May-24-2024 Cupertino Miranda - 2.28-251.0.2.2 - Forward port of Oracle patches over 2.28-251.2 Reviewed-by: Jose E. Marchesi May-23-2024 Cupertino Miranda - 2.28-251.0.2.1 - Forward port of Oracle patches over 2.28-251.1 Reviewed-by: Jose E. Marchesi May-22-2024 Cupertino Miranda - 2.28-251.0.2 - Forward port of Oracle patches for ol8-u10 Reviewed-by: Jose E. Marchesi March-28-2024 Cupertino Miranda - 2.28-251.0.1 - Forward port of Oracle patches for ol8-u10-beta Reviewed-by: Jose E. Marchesi March-5-2024 Cupertino Miranda - 2.28-236.0.1.12 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi November-14-2023 Cupertino Miranda - 2.28-236.0.1.7 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi October-4-2023 Cupertino Miranda - 2.28-236.0.1.6 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi April-21-2023 Cupertino Miranda - 2.28-225.0.3 - OraBug 35317410 Glibc tunable to disable huge pages on pthread_create stacks - Created tunable glibc.pthread.stack_hugetlb to control when hugepages can be used for stack allocation. - In case THP are enabled and glibc.pthread.stack_hugetlb is set to 0, glibc will madvise the kernel not to use allow hugepages for stack allocations. Reviewed-by: Jose E. Marchesi April-11-2023 Cupertino Miranda - 2.28-225.0.2 - OraBug: 35268809 Fixed initialization of VDSO for tcache_key_initialize Reviewed-by: Jose E. Marchesi March-28-2023 Cupertino Miranda - 2.28-225.0.1 - Merge of Oracle patches for ol8u8 beta Reviewed-by: Jose E. Marchesi September-28-2022 Patrick McGehearty - 2.28-211.0.1 - Merge of Oracle patches for ol8u7 beta Reviewed-by: Jose E. Marchesi August-8-2022 Patrick McGehearty - 2.28-189.5.0.2 - Enable VDSO on x86_64, aarch64, i386, arm, and mips statically linked programs. - These changes enable reading the realtime clock without a kernel syscall. OraBug: 30478315 Reviewed-by: Jose E. Marchesi May-2-2022 Patrick McGehearty - 2.28-199.0.1 - Merge of patches from c8s 199 with ol8u6 beta Reviewed-by: Jose E. Marchesi - Update siginfo constants from linux kernel (OraBug: 33734528) - Remove limit on MALLOC_MMAP_THRESHOLD tunable (Orabug: 29630826) - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive - spin mutex (Orabug: 27982358) Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list (Patrick McGehearty) - add optimized memset for emag - add an ASIMD variant of strlen for falkor Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. (Orabug: 28849085) - Make _IO_funlockfile match __funlockfile and _IO_flockfile match __flockfile Both should test if (stream->_flags & _IO_USER_LOCK) == 0) _IO_lock_lock (*stream->_lock); OraBug: 28481550. Reviewed-by: Qing Zhao [2.28-251.13] - Restore internal ABI to avoid tooling false positives (RHEL-8381) [2.28-251.12] - Fix missed wakeup in POSIX thread condition variables (RHEL-8381) From el-errata at oss.oracle.com Mon Feb 24 14:41:50 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:50 -0800 Subject: [El-errata] ELSA-2025-1582 Moderate: Oracle Linux 8 nodejs:18 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1582 http://linux.oracle.com/errata/ELSA-2025-1582.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: nodejs-18.20.6-1.module+el8.10.0+90515+1118f177.x86_64.rpm nodejs-devel-18.20.6-1.module+el8.10.0+90515+1118f177.x86_64.rpm nodejs-docs-18.20.6-1.module+el8.10.0+90515+1118f177.noarch.rpm nodejs-full-i18n-18.20.6-1.module+el8.10.0+90515+1118f177.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el8.10.0+90402+68b79193.noarch.rpm nodejs-packaging-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm npm-10.8.2-1.18.20.6.1.module+el8.10.0+90515+1118f177.x86_64.rpm aarch64: nodejs-18.20.6-1.module+el8.10.0+90515+1118f177.aarch64.rpm nodejs-devel-18.20.6-1.module+el8.10.0+90515+1118f177.aarch64.rpm nodejs-docs-18.20.6-1.module+el8.10.0+90515+1118f177.noarch.rpm nodejs-full-i18n-18.20.6-1.module+el8.10.0+90515+1118f177.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el8.10.0+90402+68b79193.noarch.rpm nodejs-packaging-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.9.0+90157+ed89dc20.noarch.rpm npm-10.8.2-1.18.20.6.1.module+el8.10.0+90515+1118f177.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//nodejs-18.20.6-1.module+el8.10.0+90515+1118f177.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.10.0+90402+68b79193.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.9.0+90157+ed89dc20.src.rpm Related CVEs: CVE-2025-22150 CVE-2025-23085 Description of changes: nodejs [1:18.20.6-1] - Update to version 18.20.6 Resolves: RHEL-78326 Fixes: CVE-2025-23085 CVE-2025-22150 nodejs-nodemon nodejs-packaging From el-errata at oss.oracle.com Mon Feb 24 14:41:48 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:48 -0800 Subject: [El-errata] ELBA-2025-1682 Oracle Linux 8 httpd:2.4 bug fix and enhancement update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-1682 http://linux.oracle.com/errata/ELBA-2025-1682.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: httpd-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm httpd-devel-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm httpd-filesystem-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm httpd-manual-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm httpd-tools-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm mod_http2-1.15.7-10.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm mod_ldap-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.x86_64.rpm mod_proxy_html-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm mod_session-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm mod_ssl-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.x86_64.rpm aarch64: httpd-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm httpd-devel-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm httpd-filesystem-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm httpd-manual-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.noarch.rpm httpd-tools-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm mod_http2-1.15.7-10.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm mod_ldap-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.aarch64.rpm mod_proxy_html-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm mod_session-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm mod_ssl-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//httpd-2.4.37-65.0.1.module+el8.10.0+90523+b5e5f9e4.3.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//mod_http2-1.15.7-10.module+el8.10.0+90523+b5e5f9e4.3.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//mod_md-2.0.8-8.module+el8.9.0+90011+2f9c6a23.src.rpm Description of changes: httpd [2.4.37-65.3.0.1] - Replace index.html with Oracle's index page oracle_index.html [2.4.37-65.3] - Resolves: RHEL-56068 - Apache HTTPD no longer parse PHP files with unicode characters in the name mod_http2 [1.15.7-10.3] - Resolves: RHEL-58454 - mod_proxy_http2 failures after CVE-2024-38477 fix - Resolves: RHEL-59017 - random failures in other requests on http/2 stream when client resets one request mod_md From el-errata at oss.oracle.com Mon Feb 24 14:41:52 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:52 -0800 Subject: [El-errata] ELSA-2025-1611 Important: Oracle Linux 8 nodejs:22 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1611 http://linux.oracle.com/errata/ELSA-2025-1611.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: nodejs-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm nodejs-devel-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm nodejs-docs-22.13.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm nodejs-full-i18n-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm nodejs-libs-22.13.1-1.module+el8.10.0+90518+cdafa262.x86_64.rpm nodejs-nodemon-3.0.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm nodejs-packaging-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm npm-10.9.2-1.22.13.1.1.module+el8.10.0+90518+cdafa262.x86_64.rpm v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el8.10.0+90518+cdafa262.x86_64.rpm aarch64: nodejs-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm nodejs-devel-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm nodejs-docs-22.13.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm nodejs-full-i18n-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm nodejs-libs-22.13.1-1.module+el8.10.0+90518+cdafa262.aarch64.rpm nodejs-nodemon-3.0.1-1.module+el8.10.0+90518+cdafa262.noarch.rpm nodejs-packaging-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.10.0+90518+cdafa262.noarch.rpm npm-10.9.2-1.22.13.1.1.module+el8.10.0+90518+cdafa262.aarch64.rpm v8-12.4-devel-12.4.254.21-1.22.13.1.1.module+el8.10.0+90518+cdafa262.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//nodejs-22.13.1-1.module+el8.10.0+90518+cdafa262.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el8.10.0+90518+cdafa262.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-2021.06-4.module+el8.10.0+90518+cdafa262.src.rpm Related CVEs: CVE-2025-22150 CVE-2025-23083 CVE-2025-23085 Description of changes: nodejs [22.13.1-1] - Upgrade to version 22.13.1 Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76362 RHEL-76897 [22.11.0-1] - Upgrade to nodejs 22.11.0. Resolves: RHEL-35991 [22.4.1-4] - Exclude ix86 arches from building. Related: RHEL-35991 [22.4.1-4] - Initial import of nodeJS 22 Resolves: RHEL-35991 nodejs-nodemon nodejs-packaging From el-errata at oss.oracle.com Mon Feb 24 14:41:54 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:54 -0800 Subject: [El-errata] ELSA-2025-1673 Important: Oracle Linux 8 mysql:8.0 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1673 http://linux.oracle.com/errata/ELSA-2025-1673.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: mecab-0.996-2.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mecab-devel-0.996-2.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mecab-ipadic-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mecab-ipadic-EUCJP-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-common-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-devel-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-errmsg-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-libs-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-server-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm mysql-test-8.0.41-1.module+el8.10.0+90521+d5cc5c65.x86_64.rpm aarch64: mecab-0.996-2.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mecab-devel-0.996-2.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mecab-ipadic-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mecab-ipadic-EUCJP-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-common-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-devel-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-errmsg-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-libs-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-server-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm mysql-test-8.0.41-1.module+el8.10.0+90521+d5cc5c65.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//mecab-0.996-2.module+el8.10.0+90521+d5cc5c65.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//mecab-ipadic-2.7.0.20070801-17.0.1.module+el8.10.0+90521+d5cc5c65.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//mysql-8.0.41-1.module+el8.10.0+90521+d5cc5c65.src.rpm Related CVEs: CVE-2024-5535 CVE-2024-7264 CVE-2024-11053 CVE-2024-21193 CVE-2024-21194 CVE-2024-21196 CVE-2024-21197 CVE-2024-21198 CVE-2024-21199 CVE-2024-21201 CVE-2024-21203 CVE-2024-21212 CVE-2024-21213 CVE-2024-21218 CVE-2024-21219 CVE-2024-21230 CVE-2024-21231 CVE-2024-21236 CVE-2024-21237 CVE-2024-21238 CVE-2024-21239 CVE-2024-21241 CVE-2024-21247 CVE-2024-37371 CVE-2025-21490 CVE-2025-21491 CVE-2025-21494 CVE-2025-21497 CVE-2025-21500 CVE-2025-21501 CVE-2025-21503 CVE-2025-21504 CVE-2025-21505 CVE-2025-21518 CVE-2025-21519 CVE-2025-21520 CVE-2025-21521 CVE-2025-21522 CVE-2025-21523 CVE-2025-21525 CVE-2025-21529 CVE-2025-21531 CVE-2025-21534 CVE-2025-21536 CVE-2025-21540 CVE-2025-21543 CVE-2025-21546 CVE-2025-21555 CVE-2025-21559 Description of changes: mecab [0.996-2.12] - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo - Resolves: #2180411 mecab-ipadic [2.7.0.20070801-17.0.1] - Rename the LICENSE.Fedora to LICENSE.oracle [2.7.0.20070801-17] - Bump the release - Resolves: RHEL-24525 mysql [8.0.41-1] - Update to MySQL 8.0.41 From el-errata at oss.oracle.com Mon Feb 24 14:41:55 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:55 -0800 Subject: [El-errata] ELSA-2025-1675 Important: Oracle Linux 8 bind security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1675 http://linux.oracle.com/errata/ELSA-2025-1675.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bind-9.11.36-16.el8_10.4.x86_64.rpm bind-chroot-9.11.36-16.el8_10.4.x86_64.rpm bind-devel-9.11.36-16.el8_10.4.i686.rpm bind-devel-9.11.36-16.el8_10.4.x86_64.rpm bind-export-devel-9.11.36-16.el8_10.4.i686.rpm bind-export-devel-9.11.36-16.el8_10.4.x86_64.rpm bind-export-libs-9.11.36-16.el8_10.4.i686.rpm bind-export-libs-9.11.36-16.el8_10.4.x86_64.rpm bind-libs-9.11.36-16.el8_10.4.i686.rpm bind-libs-9.11.36-16.el8_10.4.x86_64.rpm bind-libs-lite-9.11.36-16.el8_10.4.i686.rpm bind-libs-lite-9.11.36-16.el8_10.4.x86_64.rpm bind-license-9.11.36-16.el8_10.4.noarch.rpm bind-lite-devel-9.11.36-16.el8_10.4.i686.rpm bind-lite-devel-9.11.36-16.el8_10.4.x86_64.rpm bind-pkcs11-9.11.36-16.el8_10.4.x86_64.rpm bind-pkcs11-devel-9.11.36-16.el8_10.4.i686.rpm bind-pkcs11-devel-9.11.36-16.el8_10.4.x86_64.rpm bind-pkcs11-libs-9.11.36-16.el8_10.4.i686.rpm bind-pkcs11-libs-9.11.36-16.el8_10.4.x86_64.rpm bind-pkcs11-utils-9.11.36-16.el8_10.4.x86_64.rpm bind-sdb-9.11.36-16.el8_10.4.x86_64.rpm bind-sdb-chroot-9.11.36-16.el8_10.4.x86_64.rpm bind-utils-9.11.36-16.el8_10.4.x86_64.rpm python3-bind-9.11.36-16.el8_10.4.noarch.rpm aarch64: bind-9.11.36-16.el8_10.4.aarch64.rpm bind-chroot-9.11.36-16.el8_10.4.aarch64.rpm bind-devel-9.11.36-16.el8_10.4.aarch64.rpm bind-export-devel-9.11.36-16.el8_10.4.aarch64.rpm bind-export-libs-9.11.36-16.el8_10.4.aarch64.rpm bind-libs-9.11.36-16.el8_10.4.aarch64.rpm bind-libs-lite-9.11.36-16.el8_10.4.aarch64.rpm bind-license-9.11.36-16.el8_10.4.noarch.rpm bind-lite-devel-9.11.36-16.el8_10.4.aarch64.rpm bind-pkcs11-9.11.36-16.el8_10.4.aarch64.rpm bind-pkcs11-devel-9.11.36-16.el8_10.4.aarch64.rpm bind-pkcs11-libs-9.11.36-16.el8_10.4.aarch64.rpm bind-pkcs11-utils-9.11.36-16.el8_10.4.aarch64.rpm bind-sdb-9.11.36-16.el8_10.4.aarch64.rpm bind-sdb-chroot-9.11.36-16.el8_10.4.aarch64.rpm bind-utils-9.11.36-16.el8_10.4.aarch64.rpm python3-bind-9.11.36-16.el8_10.4.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//bind-9.11.36-16.el8_10.4.src.rpm Related CVEs: CVE-2024-11187 Description of changes: [32:9.11.36-16.4] - Change patches applying to use -P parameter [32:9.11.36-16.3] - Limit additional section records CPU processing (CVE-2024-11187) - Correct ANY queries to not have additional data appended From el-errata at oss.oracle.com Mon Feb 24 14:41:57 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:57 -0800 Subject: [El-errata] ELSA-2025-1676 Important: Oracle Linux 8 bind9.16 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1676 http://linux.oracle.com/errata/ELSA-2025-1676.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bind9.16-9.16.23-0.22.el8_10.2.x86_64.rpm bind9.16-chroot-9.16.23-0.22.el8_10.2.x86_64.rpm bind9.16-dnssec-utils-9.16.23-0.22.el8_10.2.x86_64.rpm bind9.16-libs-9.16.23-0.22.el8_10.2.x86_64.rpm bind9.16-license-9.16.23-0.22.el8_10.2.noarch.rpm bind9.16-utils-9.16.23-0.22.el8_10.2.x86_64.rpm python3-bind9.16-9.16.23-0.22.el8_10.2.noarch.rpm bind9.16-devel-9.16.23-0.22.el8_10.2.i686.rpm bind9.16-devel-9.16.23-0.22.el8_10.2.x86_64.rpm bind9.16-doc-9.16.23-0.22.el8_10.2.noarch.rpm bind9.16-libs-9.16.23-0.22.el8_10.2.i686.rpm aarch64: bind9.16-9.16.23-0.22.el8_10.2.aarch64.rpm bind9.16-chroot-9.16.23-0.22.el8_10.2.aarch64.rpm bind9.16-dnssec-utils-9.16.23-0.22.el8_10.2.aarch64.rpm bind9.16-libs-9.16.23-0.22.el8_10.2.aarch64.rpm bind9.16-license-9.16.23-0.22.el8_10.2.noarch.rpm bind9.16-utils-9.16.23-0.22.el8_10.2.aarch64.rpm python3-bind9.16-9.16.23-0.22.el8_10.2.noarch.rpm bind9.16-devel-9.16.23-0.22.el8_10.2.aarch64.rpm bind9.16-doc-9.16.23-0.22.el8_10.2.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//bind9.16-9.16.23-0.22.el8_10.2.src.rpm Related CVEs: CVE-2024-11187 Description of changes: [32:9.16.23-0.22.2] - Fix application of patch for CVE-2024-11187 - Resolves: RHEL-77103 [32:9.16.23-0.22.1] - Limit additional section records CPU processing (CVE-2024-11187) - Fix test backport changes From el-errata at oss.oracle.com Mon Feb 24 14:41:59 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:41:59 -0800 Subject: [El-errata] ELSA-2025-1736 Important: Oracle Linux 8 postgresql:13 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1736 http://linux.oracle.com/errata/ELSA-2025-1736.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.x86_64.rpm pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.x86_64.rpm postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.x86_64.rpm postgresql-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-contrib-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-docs-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-plperl-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-plpython3-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-pltcl-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-server-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-server-devel-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-static-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-test-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-test-rpm-macros-13.20-1.module+el8.10.0+90526+050ec11b.noarch.rpm postgresql-upgrade-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm postgresql-upgrade-devel-13.20-1.module+el8.10.0+90526+050ec11b.x86_64.rpm aarch64: pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.aarch64.rpm pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.aarch64.rpm postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.aarch64.rpm postgresql-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-contrib-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-docs-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-plperl-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-plpython3-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-pltcl-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-server-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-server-devel-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-static-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-test-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-test-rpm-macros-13.20-1.module+el8.10.0+90526+050ec11b.noarch.rpm postgresql-upgrade-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm postgresql-upgrade-devel-13.20-1.module+el8.10.0+90526+050ec11b.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//postgresql-13.20-1.module+el8.10.0+90526+050ec11b.src.rpm Related CVEs: CVE-2025-1094 Description of changes: pgaudit [1.5.0-1] - Update to version 1.5.0 Related: #1855776 pg_repack [1.4.6-3] - Release bump - enable gating postgres-decoderbufs [0.10.0-2] - Release bump for rebuild against libpq-12.1-3 postgresql [13.20-1] - Update to 13.20 - Fix CVE-2025-1094 From el-errata at oss.oracle.com Mon Feb 24 14:42:01 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:42:01 -0800 Subject: [El-errata] ELSA-2025-1737 Important: Oracle Linux 8 libpq security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1737 http://linux.oracle.com/errata/ELSA-2025-1737.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: libpq-13.20-1.el8_10.i686.rpm libpq-13.20-1.el8_10.x86_64.rpm libpq-devel-13.20-1.el8_10.i686.rpm libpq-devel-13.20-1.el8_10.x86_64.rpm aarch64: libpq-13.20-1.el8_10.aarch64.rpm libpq-devel-13.20-1.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//libpq-13.20-1.el8_10.src.rpm Related CVEs: CVE-2025-1094 Description of changes: [13.20-1] - Update to 13.20 From el-errata at oss.oracle.com Mon Feb 24 14:42:03 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:42:03 -0800 Subject: [El-errata] ELSA-2025-1739 Important: Oracle Linux 8 postgresql:15 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1739 http://linux.oracle.com/errata/ELSA-2025-1739.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.x86_64.rpm pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.x86_64.rpm postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.x86_64.rpm postgresql-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-contrib-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-docs-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-plperl-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-plpython3-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-pltcl-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-private-devel-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-private-libs-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-server-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-server-devel-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-static-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-test-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-test-rpm-macros-15.12-1.module+el8.10.0+90529+917d02ef.noarch.rpm postgresql-upgrade-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm postgresql-upgrade-devel-15.12-1.module+el8.10.0+90529+917d02ef.x86_64.rpm aarch64: pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.aarch64.rpm pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.aarch64.rpm postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.aarch64.rpm postgresql-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-contrib-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-docs-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-plperl-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-plpython3-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-pltcl-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-private-devel-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-private-libs-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-server-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-server-devel-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-static-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-test-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-test-rpm-macros-15.12-1.module+el8.10.0+90529+917d02ef.noarch.rpm postgresql-upgrade-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm postgresql-upgrade-devel-15.12-1.module+el8.10.0+90529+917d02ef.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//postgresql-15.12-1.module+el8.10.0+90529+917d02ef.src.rpm Related CVEs: CVE-2025-1094 Description of changes: pgaudit [1.7.0-1] - Update to 1.7.0 - Support postgresql 15 - Related: #2128241 pg_repack [1.4.8-1] - Update to version 1.4.8 - Postgresql 15 is supported - Related: #2128241 postgres-decoderbufs [1.9.7-1.Final] - Iitial import for postgresql 15 stream - Related: #2128241 postgresql [15.12-1] - Update to 15.12 - Fix CVE-2025-1094 From el-errata at oss.oracle.com Mon Feb 24 14:42:05 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:42:05 -0800 Subject: [El-errata] ELSA-2025-1740 Important: Oracle Linux 8 postgresql:16 security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1740 http://linux.oracle.com/errata/ELSA-2025-1740.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.x86_64.rpm pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.x86_64.rpm postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.x86_64.rpm postgresql-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-contrib-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-docs-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-plperl-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-plpython3-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-pltcl-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-private-devel-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-private-libs-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-server-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-server-devel-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-static-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-test-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-test-rpm-macros-16.8-1.module+el8.10.0+90530+9eb57222.noarch.rpm postgresql-upgrade-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm postgresql-upgrade-devel-16.8-1.module+el8.10.0+90530+9eb57222.x86_64.rpm aarch64: pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.aarch64.rpm pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.aarch64.rpm postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.aarch64.rpm postgresql-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-contrib-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-docs-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-plperl-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-plpython3-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-pltcl-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-private-devel-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-private-libs-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-server-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-server-devel-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-static-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-test-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-test-rpm-macros-16.8-1.module+el8.10.0+90530+9eb57222.noarch.rpm postgresql-upgrade-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm postgresql-upgrade-devel-16.8-1.module+el8.10.0+90530+9eb57222.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//postgresql-16.8-1.module+el8.10.0+90530+9eb57222.src.rpm Related CVEs: CVE-2025-1094 Description of changes: pgaudit [16.0-1] - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pg_repack [1.5.1-1] - Update to 1.5.1 postgres-decoderbufs [2.4.0-1.Final] - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql [16.8-1] - Update to 16.8 - Fix CVE-2025-1094 From el-errata at oss.oracle.com Mon Feb 24 14:42:10 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Mon, 24 Feb 2025 06:42:10 -0800 Subject: [El-errata] ELSA-2025-1047 Important: Oracle Linux 7 libsoup security update Message-ID: Oracle Linux Security Advisory ELSA-2025-1047 http://linux.oracle.com/errata/ELSA-2025-1047.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: libsoup-2.62.2-2.0.3.el7.i686.rpm libsoup-2.62.2-2.0.3.el7.x86_64.rpm libsoup-devel-2.62.2-2.0.3.el7.i686.rpm libsoup-devel-2.62.2-2.0.3.el7.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//libsoup-2.62.2-2.0.3.el7.src.rpm Related CVEs: CVE-2024-52531 Description of changes: [2.62.2-2.0.3] - Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in - soup_header_parse_param_list_strict [Orabug: 37557504] From el-errata at oss.oracle.com Tue Feb 25 17:19:27 2025 From: el-errata at oss.oracle.com (Errata Announcements for Oracle Linux) Date: Tue, 25 Feb 2025 09:19:27 -0800 Subject: [El-errata] ELBA-2025-20128 Oracle Linux 9 oracle-ocne-release-el9 bug fix update Message-ID: Oracle Linux Bug Fix Advisory ELBA-2025-20128 http://linux.oracle.com/errata/ELBA-2025-20128.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: oracle-ocne-release-el9-1.0-6.el9.x86_64.rpm aarch64: oracle-ocne-release-el9-1.0-6.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//oracle-ocne-release-el9-1.0-6.el9.src.rpm Description of changes: [1.0-6.el9] - Add developer channels for ocne [1.0-6.el9] - Deprecate the package with old name of olcne and rename it to ocne - Added ocne 2.0 repositories for x86_64 and aarch64 on ol8 and ol9 [1.0-6.el9] - Added olcne version 1.9 repository for x86_64 and aarch64 on ol8 and ol9 [1.0-6.el9] - Disable all OCNE channels by default [1.0-6.el9] - Added olcne version 1.8 repository for x86_64 and aarch64 on ol8 and ol9 [1.0-8] - Added olcne version 1.7 repository for x86_64 and ol8_developer_olcne repo for aarch64 [1.0-7] - Added olcne version 1.6 repository for x86_64 [OraBug: 35182554]