| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20240901160803.673617007@linuxfoundation.org>
Date: Sun, 1 Sep 2024 18:15:30 +0200
From: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To: stable@...r.kernel.org
Cc: Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
patches@...ts.linux.dev,
linux-kernel@...r.kernel.org,
torvalds@...ux-foundation.org,
akpm@...ux-foundation.org,
linux@...ck-us.net,
shuah@...nel.org,
patches@...nelci.org,
lkft-triage@...ts.linaro.org,
pavel@...x.de,
jonathanh@...dia.com,
f.fainelli@...il.com,
sudipm.mukherjee@...il.com,
srw@...dewatkins.net,
rwarsow@....de,
conor@...nel.org,
allen.lkml@...il.com,
broonie@...nel.org
Subject: [PATCH 4.19 00/98] 4.19.321-rc1 review
This is the start of the stable review cycle for the 4.19.321 release.
There are 98 patches in this series, all will be posted as a response
to this one. If anyone has any issues with these being applied, please
let me know.
Responses should be made by Tue, 03 Sep 2024 16:07:34 +0000.
Anything received after that time might be too late.
The whole patch series can be found in one patch at:
https://www.kernel.org/pub/linux/kernel/v4.x/stable-review/patch-4.19.321-rc1.gz
or in the git tree and branch at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable-rc.git linux-4.19.y
and the diffstat can be found below.
thanks,
greg k-h
-------------
Pseudo-Shortlog of commits:
Greg Kroah-Hartman <gregkh@...uxfoundation.org>
Linux 4.19.321-rc1
Daniel Vetter <daniel.vetter@...ll.ch>
drm/fb-helper: set x/yres_virtual in drm_fb_helper_check_var
Vasily Averin <vvs@...tuozzo.com>
ipc: remove memcg accounting for sops objects in do_semtimedop()
Ben Hutchings <benh@...ian.org>
scsi: aacraid: Fix double-free on probe failure
Zijun Hu <quic_zijuhu@...cinc.com>
usb: core: sysfs: Unmerge @usb3_hardware_lpm_attr_group in remove_power_attributes()
Krzysztof Kozlowski <krzysztof.kozlowski@...aro.org>
usb: dwc3: st: fix probed platform device ref count on probe error path
Selvarasu Ganesan <selvarasu.g@...sung.com>
usb: dwc3: core: Prevent USB core invalid event buffer address access
Krzysztof Kozlowski <krzysztof.kozlowski@...aro.org>
usb: dwc3: omap: add missing depopulate in probe error path
ZHANG Yuntian <yt@...xa.com>
USB: serial: option: add MeiG Smart SRM825L
Ian Ray <ian.ray@...ealthcare.com>
cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller
Eric Dumazet <edumazet@...gle.com>
net: busy-poll: use ktime_get_ns() instead of local_clock()
Cong Wang <cong.wang@...edance.com>
gtp: fix a potential NULL pointer dereference
Krzysztof Kozlowski <krzysztof.kozlowski@...aro.org>
soundwire: stream: fix programming slave ports for non-continous port maps
Eric Dumazet <edumazet@...gle.com>
net: prevent mss overflow in skb_segment()
Matthew Wilcox (Oracle) <willy@...radead.org>
ida: Fix crash in ida_free when the bitmap is empty
Allison Henderson <allison.henderson@...cle.com>
net:rds: Fix possible deadlock in rds_message_put
Helge Deller <deller@....de>
fbmem: Check virtual screen sizes in fb_set_var()
Helge Deller <deller@....de>
fbcon: Prevent that screen size is smaller than font size
Vasily Averin <vvs@...tuozzo.com>
memcg: enable accounting of ipc resources
Chen Ridong <chenridong@...wei.com>
cgroup/cpuset: Prevent UAF in proc_cpuset_show()
Niklas Cassel <cassel@...nel.org>
ata: libata-core: Fix null pointer dereference on error
Ricardo Ribalda <ribalda@...omium.org>
media: uvcvideo: Fix integer overflow calculating timestamp
Long Li <leo.lilong@...wei.com>
filelock: Correct the filelock owner in fcntl_setlk/fcntl_setlk64
Damien Le Moal <dlemoal@...nel.org>
scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES
Mikulas Patocka <mpatocka@...hat.com>
dm suspend: return -ERESTARTSYS instead of -EINTR
Sascha Hauer <s.hauer@...gutronix.de>
wifi: mwifiex: duplicate static structs used in driver instances
Ma Ke <make24@...as.ac.cn>
pinctrl: single: fix potential NULL dereference in pcs_get_function()
Jesse Zhang <jesse.zhang@....com>
drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc
Alexander Lobakin <aleksander.lobakin@...el.com>
tools: move alignment-related macros to new <linux/align.h>
Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp>
Input: MT - limit max slots
Lee, Chun-Yi <joeyli.kernel@...il.com>
Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO
Takashi Iwai <tiwai@...e.de>
ALSA: timer: Relax start tick time check for slave timer elements
Ben Whitten <ben.whitten@...il.com>
mmc: dw_mmc: allow biu and ciu clocks to defer
Nikolay Kuratov <kniv@...dex-team.ru>
cxgb4: add forgotten u64 ivlan cast before shift
Jason Gerecke <jason.gerecke@...om.com>
HID: wacom: Defer calculation of resolution until resolution_code is known
Griffin Kroah-Hartman <griffin@...ah.com>
Bluetooth: MGMT: Add error handling to pair_device()
Dan Carpenter <dan.carpenter@...aro.org>
mmc: mmc_test: Fix NULL dereference on allocation failure
Dmitry Baryshkov <dmitry.baryshkov@...aro.org>
drm/msm/dpu: don't play tricks with debug macros
Jani Nikula <jani.nikula@...el.com>
drm/msm: use drm_debug_enabled() to check for debug categories
Sean Anderson <sean.anderson@...ux.dev>
net: xilinx: axienet: Always disable promiscuous mode
Eric Dumazet <edumazet@...gle.com>
ipv6: prevent UAF in ip6_send_skb()
Sebastian Andrzej Siewior <bigeasy@...utronix.de>
netfilter: nft_counter: Synchronize nft_counter_reset() against reader.
Kuniyuki Iwashima <kuniyu@...zon.com>
kcm: Serialise kcm_sendmsg() for the same socket.
Luiz Augusto von Dentz <luiz.von.dentz@...el.com>
Bluetooth: hci_core: Fix LE quote calculation
Luiz Augusto von Dentz <luiz.von.dentz@...el.com>
Bluetooth: hci_core: Fix not handling link timeouts propertly
Luiz Augusto von Dentz <luiz.von.dentz@...el.com>
Bluetooth: Make use of __check_timeout on hci_sched_le
Tetsuo Handa <penguin-kernel@...ove.sakura.ne.jp>
block: use "unsigned long" for blk_validate_block_size().
Eric Dumazet <edumazet@...gle.com>
gtp: pull network headers in gtp_dev_xmit()
Phil Chang <phil.chang@...iatek.com>
hrtimer: Prevent queuing of hrtimer without a function callback
Sagi Grimberg <sagi@...mberg.me>
nvmet-rdma: fix possible bad dereference when freeing rsps
Baokun Li <libaokun1@...wei.com>
ext4: set the type of max_zeroout to unsigned int to avoid overflow
Guanrui Huang <guanrui.huang@...ux.alibaba.com>
irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc
Abdulrasaq Lawani <abdulrasaqolawani@...il.com>
fbdev: offb: replace of_node_put with __free(device_node)
Krishna Kurapati <quic_kriskura@...cinc.com>
usb: dwc3: core: Skip setting event buffers for host only controllers
Alexander Gordeev <agordeev@...ux.ibm.com>
s390/iucv: fix receive buffer virtual vs physical address confusion
Oreoluwa Babatunde <quic_obabatun@...cinc.com>
openrisc: Call setup_memory() earlier in the init sequence
NeilBrown <neilb@...e.de>
NFS: avoid infinite loop in pnfs_update_layout.
Luiz Augusto von Dentz <luiz.von.dentz@...el.com>
Bluetooth: bnep: Fix out-of-bound access
Uwe Kleine-König <u.kleine-koenig@...gutronix.de>
usb: gadget: fsl: Increase size of name buffer for endpoints
Zhiguo Niu <zhiguo.niu@...soc.com>
f2fs: fix to do sanity check in update_sit_entry
David Sterba <dsterba@...e.com>
btrfs: delete pointless BUG_ON check on quota root in btrfs_qgroup_account_extent()
David Sterba <dsterba@...e.com>
btrfs: send: handle unexpected data in header buffer in begin_cmd()
David Sterba <dsterba@...e.com>
btrfs: handle invalid root reference found in may_destroy_subvol()
David Sterba <dsterba@...e.com>
btrfs: change BUG_ON to assertion when checking for delayed_node root
Michael Ellerman <mpe@...erman.id.au>
powerpc/boot: Only free if realloc() succeeds
Li zeming <zeming@...china.com>
powerpc/boot: Handle allocation failure in simple_realloc()
Helge Deller <deller@....de>
parisc: Use irq_enter_rcu() to fix warning at kernel/context_tracking.c:367
Li Nan <linan122@...wei.com>
md: clean up invalid BUG_ON in md_ioctl
Kees Cook <keescook@...omium.org>
net/sun3_82586: Avoid reading past buffer in debug output
Justin Tee <justin.tee@...adcom.com>
scsi: lpfc: Initialize status local variable in lpfc_sli4_repost_sgl_list()
Max Filippov <jcmvbkbc@...il.com>
fs: binfmt_elf_efpic: don't use missing interpreter's properties
Hans Verkuil <hverkuil-cisco@...all.nl>
media: pci: cx23885: check cx23885_vdev_init() return
Jan Kara <jack@...e.cz>
quota: Remove BUG_ON from dqget()
Baokun Li <libaokun1@...wei.com>
ext4: do not trim the group with corrupted block bitmap
Kunwu Chan <chentao@...inos.cn>
powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu
Miri Korenblit <miriam.rachel.korenblit@...el.com>
wifi: iwlwifi: abort scan when rfkill on but device enabled
Andreas Gruenbacher <agruenba@...hat.com>
gfs2: setattr_chown: Add missing initialization
Mike Christie <michael.christie@...cle.com>
scsi: spi: Fix sshdr use
Christian Brauner <christian.brauner@...ntu.com>
binfmt_misc: cleanup on filesystem umount
Chengfeng Ye <dg573847474@...il.com>
staging: ks7010: disable bh on tx_dev_lock
Wolfram Sang <wsa+renesas@...g-engineering.com>
i2c: riic: avoid potential division by zero
Jeff Johnson <quic_jjohnson@...cinc.com>
wifi: cw1200: Avoid processing an invalid TIM IE
Rand Deeb <rand.sec96@...il.com>
ssb: Fix division by zero issue in ssb_calc_clock_rate
Pawel Dembicki <paweldembicki@...il.com>
net: dsa: vsc73xx: pass value in phy_write operation
Dan Carpenter <dan.carpenter@...aro.org>
atm: idt77252: prevent use after free in dequeue_rx()
Cosmin Ratiu <cratiu@...dia.com>
net/mlx5e: Correctly report errors for ethtool rx flows
Alexander Lobakin <aleksander.lobakin@...el.com>
btrfs: rename bitmap_set_bits() -> btrfs_bitmap_set_bits()
Alexander Lobakin <aleksander.lobakin@...el.com>
s390/cio: rename bitmap_size() -> idset_bitmap_size()
Al Viro <viro@...iv.linux.org.uk>
memcg_write_event_control(): fix a user-triggerable oops
Bas Nieuwenhuizen <bas@...nieuwenhuizen.nl>
drm/amdgpu: Actually check flags for all context ops.
Zhen Lei <thunder.leizhen@...wei.com>
selinux: fix potential counting error in avc_add_xperms_decision()
Al Viro <viro@...iv.linux.org.uk>
fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE
Alexander Lobakin <aleksander.lobakin@...el.com>
bitmap: introduce generic optimized bitmap_size()
Mikulas Patocka <mpatocka@...hat.com>
dm persistent data: fix memory allocation failure
Khazhismel Kumykov <khazhy@...gle.com>
dm resume: don't return EINVAL when signalled
Haibo Xu <haibo1.xu@...el.com>
arm64: ACPI: NUMA: initialize all values of acpi_early_node_map to NUMA_NO_NODE
Mathias Nyman <mathias.nyman@...ux.intel.com>
xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration
Juan José Arboleda <soyjuanarbol@...il.com>
ALSA: usb-audio: Support Yamaha P-125 quirk entry
Jann Horn <jannh@...gle.com>
fuse: Initialize beyond-EOF page contents before setting uptodate
-------------
Diffstat:
Makefile | 4 +-
arch/arm64/kernel/acpi_numa.c | 2 +-
arch/openrisc/kernel/setup.c | 6 +-
arch/parisc/kernel/irq.c | 4 +-
arch/powerpc/boot/simple_alloc.c | 7 +-
arch/powerpc/sysdev/xics/icp-native.c | 2 +
drivers/ata/libata-core.c | 3 +
drivers/atm/idt77252.c | 9 +-
drivers/bluetooth/hci_ldisc.c | 3 +-
drivers/gpu/drm/amd/amdgpu/amdgpu_ctx.c | 8 +
drivers/gpu/drm/amd/amdgpu/amdgpu_vce.c | 3 +-
drivers/gpu/drm/drm_fb_helper.c | 3 +
drivers/gpu/drm/msm/disp/dpu1/dpu_kms.h | 14 +-
drivers/hid/wacom_wac.c | 4 +-
drivers/i2c/busses/i2c-riic.c | 2 +-
drivers/input/input-mt.c | 3 +
drivers/irqchip/irq-gic-v3-its.c | 2 -
drivers/md/dm-ioctl.c | 22 ++-
drivers/md/dm.c | 2 +-
drivers/md/md.c | 5 -
drivers/md/persistent-data/dm-space-map-metadata.c | 4 +-
drivers/media/pci/cx23885/cx23885-video.c | 8 +
drivers/media/usb/uvc/uvc_video.c | 10 +-
drivers/mmc/core/mmc_test.c | 9 +-
drivers/mmc/host/dw_mmc.c | 8 +
drivers/net/dsa/vitesse-vsc73xx.c | 2 +-
drivers/net/ethernet/chelsio/cxgb4/cxgb4_filter.c | 3 +-
drivers/net/ethernet/i825xx/sun3_82586.c | 2 +-
.../ethernet/mellanox/mlx5/core/en_fs_ethtool.c | 2 +-
drivers/net/ethernet/xilinx/xilinx_axienet_main.c | 4 +
drivers/net/gtp.c | 5 +-
drivers/net/wireless/intel/iwlwifi/mvm/scan.c | 2 +-
drivers/net/wireless/marvell/mwifiex/cfg80211.c | 32 ++-
drivers/net/wireless/st/cw1200/txrx.c | 2 +-
drivers/nvme/target/rdma.c | 16 +-
drivers/pinctrl/pinctrl-single.c | 2 +
drivers/s390/cio/idset.c | 12 +-
drivers/scsi/aacraid/comminit.c | 2 +
drivers/scsi/lpfc/lpfc_sli.c | 2 +-
drivers/scsi/mpt3sas/mpt3sas_base.c | 20 +-
drivers/scsi/scsi_transport_spi.c | 4 +-
drivers/soundwire/stream.c | 8 +-
drivers/ssb/main.c | 2 +-
drivers/staging/ks7010/ks7010_sdio.c | 4 +-
drivers/usb/class/cdc-acm.c | 3 +
drivers/usb/core/sysfs.c | 1 +
drivers/usb/dwc3/core.c | 21 ++
drivers/usb/dwc3/dwc3-omap.c | 4 +-
drivers/usb/dwc3/dwc3-st.c | 11 +-
drivers/usb/gadget/udc/fsl_udc_core.c | 2 +-
drivers/usb/host/xhci.c | 8 +-
drivers/usb/serial/option.c | 5 +
drivers/video/fbdev/core/fbcon.c | 28 +++
drivers/video/fbdev/core/fbmem.c | 20 +-
drivers/video/fbdev/offb.c | 3 +-
fs/binfmt_elf_fdpic.c | 2 +-
fs/binfmt_misc.c | 216 ++++++++++++++++-----
fs/btrfs/delayed-inode.c | 2 +-
fs/btrfs/free-space-cache.c | 8 +-
fs/btrfs/inode.c | 9 +-
fs/btrfs/qgroup.c | 2 -
fs/btrfs/send.c | 7 +-
fs/ext4/extents.c | 3 +-
fs/ext4/mballoc.c | 3 +
fs/f2fs/segment.c | 5 +-
fs/file.c | 28 ++-
fs/fuse/dev.c | 6 +-
fs/gfs2/inode.c | 2 +-
fs/locks.c | 4 +-
fs/nfs/pnfs.c | 8 +
fs/quota/dquot.c | 5 +-
include/linux/bitmap.h | 20 +-
include/linux/blkdev.h | 2 +-
include/linux/cpumask.h | 2 +-
include/linux/fbcon.h | 4 +
include/net/busy_poll.h | 2 +-
include/net/kcm.h | 1 +
ipc/msg.c | 2 +-
ipc/sem.c | 7 +-
ipc/shm.c | 2 +-
kernel/cgroup/cpuset.c | 13 +-
kernel/time/hrtimer.c | 2 +
lib/idr.c | 2 +-
lib/test_ida.c | 40 ++++
mm/memcontrol.c | 7 +-
net/bluetooth/bnep/core.c | 3 +-
net/bluetooth/hci_core.c | 58 +++---
net/bluetooth/mgmt.c | 4 +
net/core/skbuff.c | 3 +-
net/ipv6/ip6_output.c | 2 +
net/iucv/iucv.c | 3 +-
net/kcm/kcmsock.c | 4 +
net/netfilter/nft_counter.c | 5 +
net/rds/recv.c | 13 +-
security/selinux/avc.c | 2 +-
sound/core/timer.c | 2 +-
sound/usb/quirks-table.h | 1 +
tools/include/linux/align.h | 12 ++
tools/include/linux/bitmap.h | 8 +-
99 files changed, 662 insertions(+), 253 deletions(-)
Powered by blists - more mailing lists