linux-aws-6.2 6.2.0-1014.14~22.04.1 source package in Ubuntu

Changelog

linux-aws-6.2 (6.2.0-1014.14~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1014.14~22.04.1 -proposed tracker (LP: #2038211)

  [ Ubuntu: 6.2.0-1014.14 ]

  * lunar/linux-aws: 6.2.0-1014.14 -proposed tracker (LP: #2038212)
  * lunar/linux: 6.2.0-35.35 -proposed tracker (LP: #2038229)
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * CVE-2023-4244
    - netfilter: nf_tables: don't skip expired elements during walk
    - netfilter: nf_tables: integrate pipapo into commit protocol
    - netfilter: nft_set_rbtree: fix overlap expiration walk
    - netfilter: nf_tables: adapt set backend to use GC transaction API
    - netfilter: nft_set_hash: mark set element as dead when deleting from packet
      path
    - netfilter: nf_tables: drop map element references from preparation phase
    - netfilter: nf_tables: GC transaction API to avoid race with control plane
    - netfilter: nf_tables: remove busy mark and gc batch API
    - netfilter: nf_tables: don't fail inserts if duplicate has expired
    - netfilter: nf_tables: fix kdoc warnings after gc rework
    - netfilter: nf_tables: fix GC transaction races with netns and netlink event
      exit path
    - netfilter: nf_tables: GC transaction race with netns dismantle
    - netfilter: nf_tables: GC transaction race with abort path
    - netfilter: nf_tables: use correct lock to protect gc_list
    - netfilter: nf_tables: defer gc run if previous batch is still pending
    - netfilter: nft_dynset: disallow object maps
    - netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
  * CVE-2023-5197
    - netfilter: nf_tables: skip bound chain in netns release path
    - netfilter: nf_tables: disallow rule removal from chain binding
  * CVE-2023-4921
    - net: sched: sch_qfq: Fix UAF in qfq_dequeue()
  * CVE-2023-4881
    - netfilter: nftables: exthdr: fix 4-byte stack OOB write
  * CVE-2023-4623
    - net/sched: sch_hfsc: Ensure inner classes have fsc curve
  * CVE-2023-4622
    - af_unix: Fix null-ptr-deref in unix_stream_sendpage().
  * CVE-2023-42756
    - netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
  * CVE-2023-42755
    - net/sched: Retire rsvp classifier
    - [Config] remove NET_CLS_RSVP and NET_CLS_RSVP6
  * CVE-2023-42753
    - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
      ip_set_hash_netportnet.c
  * CVE-2023-42752
    - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU
    - net: add SKB_HEAD_ALIGN() helper
    - net: remove osize variable in __alloc_skb()
    - net: factorize code in kmalloc_reserve()
    - net: deal with integer overflows in kmalloc_reserve()
  * CVE-2023-34319
    - xen/netback: Fix buffer overrun triggered by unusual packet

linux-aws-6.2 (6.2.0-1013.13~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1013.13~22.04.1 -proposed tracker (LP: #2033762)

  [ Ubuntu: 6.2.0-1013.13 ]

  * lunar/linux-aws: 6.2.0-1013.13 -proposed tracker (LP: #2033763)
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * lunar/linux: 6.2.0-34.34 -proposed tracker (LP: #2033779)
  * CVE-2023-20569
    - x86/cpu, kvm: Add support for CPUID_80000021_EAX
    - tools headers x86 cpufeatures: Sync with the kernel sources
    - x86/alternative: Optimize returns patching
    - x86/retbleed: Add __x86_return_thunk alignment checks
    - x86/srso: Add a Speculative RAS Overflow mitigation
    - x86/srso: Add IBPB_BRTYPE support
    - x86/srso: Add SRSO_NO support
    - x86/srso: Add IBPB
    - x86/srso: Add IBPB on VMEXIT
    - x86/srso: Fix return thunks in generated code
    - x86/srso: Add a forgotten NOENDBR annotation
    - x86/srso: Tie SBPB bit setting to microcode patch detection
    - Documentation/hw-vuln: Unify filename specification in index
    - Documentation/srso: Document IBPB aspect and fix formatting
    - x86/srso: Fix build breakage with the LLVM linker
    - x86: Move gds_ucode_mitigated() declaration to header
    - x86/retpoline: Don't clobber RFLAGS during srso_safe_ret()
    - x86/srso: Disable the mitigation on unaffected configurations
    - x86/retpoline,kprobes: Fix position of thunk sections with CONFIG_LTO_CLANG
    - x86/retpoline,kprobes: Skip optprobe check for indirect jumps with
      retpolines and IBT
    - x86/cpu: Fix __x86_return_thunk symbol type
    - x86/cpu: Fix up srso_safe_ret() and __x86_return_thunk()
    - objtool/x86: Fix SRSO mess
    - x86/alternative: Make custom return thunk unconditional
    - x86/cpu: Clean up SRSO return thunk mess
    - x86/cpu: Rename original retbleed methods
    - x86/cpu: Rename srso_(.*)_alias to srso_alias_\1
    - x86/cpu: Cleanup the untrain mess
    - x86/srso: Explain the untraining sequences a bit more
    - objtool/x86: Fixup frame-pointer vs rethunk
    - x86/static_call: Fix __static_call_fixup()
    - x86/srso: Correct the mitigation status when SMT is disabled
    - Ubuntu: [Config]: enable Speculative Return Stack Overflow mitigation
  * Please enable Renesas RZ platform serial installer (LP: #2022361)
    - [Config] enable hihope RZ/G2M serial console
    - [Config] Mark sh-sci as built-in
  * dGPU cannot resume because system firmware stuck in IPCS method
    (LP: #2021572)
    - drm/i915/tc: Abort DP AUX transfer on a disconnected TC port
    - drm/i915/tc: switch to intel_de_* register accessors in display code
    - drm/i915: Enable a PIPEDMC whenever its corresponding pipe is enabled
    - drm/i915/tc: Fix TC port link ref init for DP MST during HW readout
    - drm/i915/tc: Fix system resume MST mode restore for DP-alt sinks
    - drm/i915/tc: Wait for IOM/FW PHY initialization of legacy TC ports
    - drm/i915/tc: Factor out helpers converting HPD mask to TC mode
    - drm/i915/tc: Fix target TC mode for a disconnected legacy port
    - drm/i915/tc: Fix TC mode for a legacy port if the PHY is not ready
    - drm/i915/tc: Fix initial TC mode on disabled legacy ports
    - drm/i915/tc: Make the TC mode readout consistent in all PHY states
    - drm/i915: Add encoder hook to get the PLL type used by TC ports
    - drm/i915/tc: Assume a TC port is legacy if VBT says the port has HDMI
    - drm/i915/tc: Factor out a function querying active links on a TC port
    - drm/i915/tc: Check the PLL type used by an enabled TC port
    - drm/i915/tc: Group the TC PHY setup/query functions per platform
    - drm/i915/tc: Use the adlp prefix for ADLP TC PHY functions
    - drm/i915/tc: Rename tc_phy_status_complete() to tc_phy_is_ready()
    - drm/i915/tc: Use the tc_phy prefix for all TC PHY functions
    - drm/i915/tc: Move TC port fields to a new intel_tc_port struct
    - drm/i915/tc: Check for TC PHY explicitly in
      intel_tc_port_fia_max_lane_count()
    - drm/i915/tc: Move the intel_tc_port struct declaration to intel_tc.c
    - drm/i915/tc: Add TC PHY hook to get the PHY HPD live status
    - drm/i915/tc: Add TC PHY hooks to get the PHY ready/owned state
    - drm/i915/tc: Add TC PHY hook to read out the PHY HW state
    - drm/i915/tc: Add generic TC PHY connect/disconnect handlers
    - drm/i915/tc: Factor out tc_phy_verify_legacy_or_dp_alt_mode()
    - drm/i915/tc: Add TC PHY hooks to connect/disconnect the PHY
    - drm/i915/tc: Fix up the legacy VBT flag only in disconnected mode
    - drm/i915/tc: Check TC mode instead of the VBT legacy flag
    - drm/i915/tc: Block/unblock TC-cold in the PHY connect/disconnect hooks
    - drm/i915/tc: Remove redundant wakeref=0 check from unblock_tc_cold()
    - drm/i915/tc: Drop tc_cold_block()/unblock()'s power domain parameter
    - drm/i915/tc: Add TC PHY hook to get the TC-cold blocking power domain
    - drm/i915/tc: Add asserts in TC PHY hooks that the required power is on
    - drm/i915/tc: Add TC PHY hook to init the PHY
    - drm/i915/adlp/tc: Use the DE HPD ISR register for hotplug detection
    - drm/i915/tc: Get power ref for reading the HPD live status register
    - drm/i915/tc: Don't connect the PHY in intel_tc_port_connected()
    - drm/i915/adlp/tc: Align the connect/disconnect PHY sequence with bspec
    - drm/i915: Move shared DPLL disabling into CRTC disable hook
    - drm/i915: Disable DPLLs before disconnecting the TC PHY
    - drm/i915: Remove TC PHY disconnect workaround
    - drm/i915: Remove the encoder update_prepare()/complete() hooks
    - drm/i915/dp_mst: Fix active port PLL selection for secondary MST streams
    - drm/i915: Fix PIPEDMC disabling for a bigjoiner configuration
    - drm/i915: Add helpers to reference/unreference a DPLL for a CRTC
    - drm/i915: Make the CRTC state consistent during sanitize-disabling
    - drm/i915: Update connector atomic state before crtc sanitize-disabling
    - drm/i915: Separate intel_crtc_disable_noatomic_begin/complete()
    - drm/i915: Factor out set_encoder_for_connector()
    - drm/i915: Add support for disabling any CRTCs during HW readout/sanitization
    - drm/i915/dp: Prevent link training fallback on disconnected port
    - drm/i915/dp: Factor out intel_dp_get_active_pipes()
    - drm/i915: Factor out a helper for handling atomic modeset locks/state
    - drm/i915/tc: Call TypeC port flush_work/cleanup without modeset locks held
    - drm/i915/tc: Reset TypeC PHYs left enabled in DP-alt mode after the sink
      disconnects
  * amdgpu: Fixes for S0i3 resume on Phoenix (LP: #2033654)
    - drm/amd/pm: skip the RLC stop when S0i3 suspend for SMU v13.0.4/11
    - drm/amdgpu: skip fence GFX interrupts disable/enable for S0ix
    - drm/amd: flush any delayed gfxoff on suspend entry
  * Fix panel brightness issues on HP laptops (LP: #2032704)
    - ACPI: video: Put ACPI video and its child devices into D0 on boot
  * Fix ACPI TAD  on some Intel based systems (LP: #2032767)
    - ACPI: TAD: Install SystemCMOS address space handler for ACPI000E
  * kdump doesn't work with UEFI secure boot and kernel lockdown enabled on
    ARM64 (LP: #2033007)
    - [Config]: Enable CONFIG_KEXEC_IMAGE_VERIFY_SIG
  * Request backport of xen timekeeping performance improvements (LP: #2033122)
    - x86/xen/time: prefer tsc as clocksource when it is invariant
  * Fix numerous AER related issues (LP: #2033025)
    - SAUCE: PCI/AER: Disable AER service during suspend, again
    - SAUCE: PCI/DPC: Disable DPC service during suspend, again
  * Enable D3cold at s2idle for Intel DG2 GPU (LP: #2033452)
    - drm/i915/dgfx: Enable d3cold at s2idle
  * CVE-2023-4569
    - netfilter: nf_tables: deactivate catchall elements in next generation
  * Fix non-working MT7921e when pre-boot WiFi is enabled (LP: #2026322)
    - wifi: mt76: mt7921e: fix init command fail with enabled device
  * Fix unreliable ethernet cable detection on I219 NIC (LP: #2028122)
    - e1000e: Use PME poll to circumvent unreliable ACPI wake
  * [SRU][Ubuntu 22.04.1] Unable to interpret the frequency values in
    cpuinfo_min_freq and cpuino_max_freq sysfs files. (LP: #2030924)
    - cpufreq: intel_pstate: Fix scaling for hybrid-capable
  * CVE-2023-40283
    - Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
  * CVE-2023-20588
    - x86/bugs: Increase the x86 bugs vector size to two u32s
    - x86/CPU/AMD: Do not leak quotient data after a division by 0
    - x86/CPU/AMD: Fix the DIV(0) initial fix attempt
  * CVE-2023-4194
    - net: tun_chr_open(): set sk_uid from current_fsuid()
    - net: tap_open(): set sk_uid from current_fsuid()
  * CVE-2023-4155
    - KVM: SEV: snapshot the GHCB before accessing it
    - KVM: SEV: only access GHCB fields once
  * CVE-2023-1206
    - tcp: Reduce chance of collisions in inet6_hashfn().
  * Lunar update: upstream stable patchset 2023-08-03 (LP: #2029808)
    - RDMA/bnxt_re: Fix the page_size used during the MR creation
    - phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix CNTL2_DIF_TX_CTL0 value
    - RDMA/efa: Fix unsupported page sizes in device
    - RDMA/hns: Fix timeout attr in query qp for HIP08
    - RDMA/hns: Fix base address table allocation
    - RDMA/hns: Modify the value of long message loopback slice
    - dmaengine: at_xdmac: fix potential Oops in at_xdmac_prep_interleaved()
    - RDMA/bnxt_re: Fix a possible memory leak
    - RDMA/bnxt_re: Fix return value of bnxt_re_process_raw_qp_pkt_rx
    - iommu/rockchip: Fix unwind goto issue
    - iommu/amd: Don't block updates to GATag if guest mode is on
    - iommu/amd: Handle GALog overflows
    - iommu/amd: Fix up merge conflict resolution
    - nfsd: make a copy of struct iattr before calling notify_change
    - dmaengine: pl330: rename _start to prevent build error
    - riscv: Fix unused variable warning when BUILTIN_DTB is set
    - net/mlx5: Drain health before unregistering devlink
    - net/mlx5: SF, Drain health before removing device
    - net/mlx5: fw_tracer, Fix event handling
    - net/mlx5e: Don't attach netdev profile while handling internal error
    - net: mellanox: mlxbf_gige: Fix skb_panic splat under memory pressure
    - netrom: fix info-leak in nr_write_internal()
    - af_packet: Fix data-races of pkt_sk(sk)->num.
    - tls: improve lockless access safety of tls_err_abort()
    - amd-xgbe: fix the false linkup in xgbe_phy_status
    - perf ftrace latency: Remove unnecessary "--" from --use-nsec option
    - mtd: rawnand: ingenic: fix empty stub helper definitions
    - RDMA/irdma: Prevent QP use after free
    - RDMA/irdma: Fix Local Invalidate fencing
    - af_packet: do not use READ_ONCE() in packet_bind()
    - tcp: deny tcp_disconnect() when threads are waiting
    - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set
    - net/smc: Scan from current RMB list when no position specified
    - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK
    - net/sched: sch_ingress: Only create under TC_H_INGRESS
    - net/sched: sch_clsact: Only create under TC_H_CLSACT
    - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs
    - net/sched: Prohibit regrafting ingress or clsact Qdiscs
    - net: sched: fix NULL pointer dereference in mq_attach
    - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report
    - udp6: Fix race condition in udp6_sendmsg & connect
    - nfsd: fix double fget() bug in __write_ports_addfd()
    - nvme: fix the name of Zone Append for verbose logging
    - net/mlx5e: Fix error handling in mlx5e_refresh_tirs
    - net/mlx5: Read embedded cpu after init bit cleared
    - iommu/mediatek: Flush IOTLB completely only if domain has been attached
    - tcp: fix mishandling when the sack compression is deferred.
    - net: dsa: mv88e6xxx: Increase wait after reset deactivation
    - mtd: rawnand: marvell: ensure timing values are written
    - mtd: rawnand: marvell: don't set the NAND frequency select
    - rtnetlink: call validate_linkmsg in rtnl_create_link
    - mptcp: avoid unneeded __mptcp_nmpc_socket() usage
    - mptcp: add annotations around msk->subflow accesses
    - mptcp: avoid unneeded address copy
    - mptcp: simplify subflow_syn_recv_sock()
    - mptcp: consolidate passive msk socket initialization
    - mptcp: fix data race around msk->first access
    - mptcp: add annotations around sk->sk_shutdown accesses
    - drm/amdgpu: release gpu full access after "amdgpu_device_ip_late_init"
    - watchdog: menz069_wdt: fix watchdog initialisation
    - ALSA: hda: Glenfly: add HD Audio PCI IDs and HDMI Codec Vendor IDs.
    - ASoC: Intel: soc-acpi-cht: Add quirk for Nextbook Ares 8A tablet
    - drm/amdgpu: Use the default reset when loading or reloading the driver
    - mailbox: mailbox-test: Fix potential double-free in
      mbox_test_message_write()
    - btrfs: abort transaction when sibling keys check fails for leaves
    - ARM: 9295/1: unwind:fix unwind abort for uleb128 case
    - hwmon: (k10temp) Add PCI ID for family 19, model 78h
    - media: rcar-vin: Select correct interrupt mode for V4L2_FIELD_ALTERNATE
    - platform/x86: intel_scu_pcidrv: Add back PCI ID for Medfield
    - platform/mellanox: fix potential race in mlxbf-tmfifo driver
    - drm/amdgpu: set gfx9 onwards APU atomics support to be true
    - fbdev: imsttfb: Fix use after free bug in imsttfb_probe
    - fbdev: modedb: Add 1920x1080 at 60 Hz video mode
    - fbdev: stifb: Fix info entry in sti_struct on error path
    - nbd: Fix debugfs_create_dir error checking
    - block/rnbd: replace REQ_OP_FLUSH with REQ_OP_WRITE
    - nvme-pci: add NVME_QUIRK_BOGUS_NID for HS-SSD-FUTURE 2048G
    - nvme-pci: add quirk for missing secondary temperature thresholds
    - ASoC: amd: yc: Add DMI entry to support System76 Pangolin 12
    - ASoC: dwc: limit the number of overrun messages
    - um: harddog: fix modular build
    - xfrm: Check if_id in inbound policy/secpath match
    - ASoC: dt-bindings: Adjust #sound-dai-cells on TI's single-DAI codecs
    - ALSA: hda/realtek: Add quirks for ASUS GU604V and GU603V
    - ASoC: ssm2602: Add workaround for playback distortions
    - media: dvb_demux: fix a bug for the continuity counter
    - media: dvb-usb: az6027: fix three null-ptr-deref in az6027_i2c_xfer()
    - media: dvb-usb-v2: ec168: fix null-ptr-deref in ec168_i2c_xfer()
    - media: dvb-usb-v2: ce6230: fix null-ptr-deref in ce6230_i2c_master_xfer()
    - media: dvb-usb-v2: rtl28xxu: fix null-ptr-deref in rtl28xxu_i2c_xfer
    - media: dvb-usb: digitv: fix null-ptr-deref in digitv_i2c_xfer()
    - media: dvb-usb: dw2102: fix uninit-value in su3000_read_mac_address
    - media: netup_unidvb: fix irq init by register it at the end of probe
    - media: dvb_ca_en50221: fix a size write bug
    - media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb()
    - media: mn88443x: fix !CONFIG_OF error by drop of_match_ptr from ID table
    - media: dvb-core: Fix use-after-free due on race condition at dvb_net
    - media: dvb-core: Fix use-after-free due to race at dvb_register_device()
    - media: dvb-core: Fix use-after-free due to race condition at dvb_ca_en50221
    - ASoC: SOF: debug: conditionally bump runtime_pm counter on exceptions
    - ASoC: SOF: pcm: fix pm_runtime imbalance in error handling
    - ASoC: SOF: sof-client-probes: fix pm_runtime imbalance in error handling
    - ASoC: SOF: pm: save io region state in case of errors in resume
    - s390/pkey: zeroize key blobs
    - s390/topology: honour nr_cpu_ids when adding CPUs
    - ACPI: resource: Add IRQ override quirk for LG UltraPC 17U70P
    - wifi: rtl8xxxu: fix authentication timeout due to incorrect RCR value
    - ARM: dts: stm32: add pin map for CAN controller on stm32f7
    - arm64/mm: mark private VM_FAULT_X defines as vm_fault_t
    - arm64: vdso: Pass (void *) to virt_to_page()
    - wifi: mac80211: simplify chanctx allocation
    - wifi: mac80211: consider reserved chanctx for mindef
    - wifi: mac80211: recalc chanctx mindef before assigning
    - wifi: iwlwifi: mvm: Add locking to the rate read flow
    - scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed
    - wifi: b43: fix incorrect __packed annotation
    - netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with
      CONFIG_NF_NAT
    - nvme-multipath: don't call blk_mark_disk_dead in nvme_mpath_remove_disk
    - nvme: do not let the user delete a ctrl before a complete initialization
    - ALSA: oss: avoid missing-prototype warnings
    - drm/msm: Be more shouty if per-process pgtables aren't working
    - atm: hide unused procfs functions
    - ceph: silence smatch warning in reconnect_caps_cb()
    - drm/amdgpu: skip disabling fence driver src_irqs when device is unplugged
    - ublk: fix AB-BA lockdep warning
    - nvme-pci: Add quirk for Teamgroup MP33 SSD
    - block: Deny writable memory mapping if block is read-only
    - KVM: arm64: vgic: Fix a circular locking issue
    - KVM: arm64: vgic: Wrap vgic_its_create() with config_lock
    - KVM: arm64: vgic: Fix locking comment
    - media: mediatek: vcodec: Only apply 4K frame sizes on decoder formats
    - mailbox: mailbox-test: fix a locking issue in mbox_test_message_write()
    - drivers: base: cacheinfo: Fix shared_cpu_map changes in event of CPU hotplug
    - media: uvcvideo: Don't expose unsupported formats to userspace
    - iio: accel: st_accel: Fix invalid mount_matrix on devices without ACPI _ONT
      method
    - iio: adc: mxs-lradc: fix the order of two cleanup operations
    - HID: google: add jewel USB id
    - HID: wacom: avoid integer overflow in wacom_intuos_inout()
    - iio: imu: inv_icm42600: fix timestamp reset
    - dt-bindings: iio: adc: renesas,rcar-gyroadc: Fix adi,ad7476 compatible value
    - iio: light: vcnl4035: fixed chip ID check
    - iio: adc: stm32-adc: skip adc-channels setup if none is present
    - iio: adc: ad_sigma_delta: Fix IRQ issue by setting IRQ_DISABLE_UNLAZY flag
    - iio: dac: mcp4725: Fix i2c_master_send() return value handling
    - iio: addac: ad74413: fix resistance input processing
    - iio: adc: ad7192: Change "shorted" channels to differential
    - iio: adc: stm32-adc: skip adc-diff-channels setup if none is present
    - iio: dac: build ad5758 driver when AD5758 is selected
    - net: usb: qmi_wwan: Set DTR quirk for BroadMobi BM818
    - dt-bindings: usb: snps,dwc3: Fix "snps,hsphy_interface" type
    - usb: cdns3: fix NCM gadget RX speed 20x slow than expection at iMX8QM
    - usb: gadget: f_fs: Add unbind event before functionfs_unbind
    - md/raid5: fix miscalculation of 'end_sector' in raid5_read_one_chunk()
    - misc: fastrpc: return -EPIPE to invocations on device removal
    - misc: fastrpc: reject new invocations during device removal
    - scsi: stex: Fix gcc 13 warnings
    - ata: libata-scsi: Use correct device no in ata_find_dev()
    - drm/amdgpu: enable tmz by default for GC 11.0.1
    - drm/amd/pm: reverse mclk and fclk clocks levels for SMU v13.0.4
    - drm/amd/pm: reverse mclk and fclk clocks levels for vangogh
    - drm/amd/pm: resolve reboot exception for si oland
    - drm/amd/pm: reverse mclk clocks levels for SMU v13.0.5
    - drm/amd/pm: reverse mclk and fclk clocks levels for yellow carp
    - drm/amd/pm: reverse mclk and fclk clocks levels for renoir
    - mmc: vub300: fix invalid response handling
    - mmc: pwrseq: sd8787: Fix WILC CHIP_EN and RESETN toggling order
    - tty: serial: fsl_lpuart: use UARTCTRL_TXINV to send break instead of
      UARTCTRL_SBK
    - btrfs: fix csum_tree_block page iteration to avoid tripping on
      -Werror=array-bounds
    - phy: qcom-qmp-combo: fix init-count imbalance
    - phy: qcom-qmp-pcie-msm8996: fix init-count imbalance
    - block: fix revalidate performance regression
    - powerpc/iommu: Limit number of TCEs to 512 for H_STUFF_TCE hcall
    - iommu/amd: Fix domain flush size when syncing iotlb
    - tpm, tpm_tis: correct tpm_tis_flags enumeration values
    - riscv: perf: Fix callchain parse error with kernel tracepoint events
    - io_uring: undeprecate epoll_ctl support
    - selinux: don't use make's grouped targets feature yet
    - mtdchar: mark bits of ioctl handler noinline
    - tracing/timerlat: Always wakeup the timerlat thread
    - tracing/histograms: Allow variables to have some modifiers
    - tracing/probe: trace_probe_primary_from_call(): checked list_first_entry
    - selftests: mptcp: connect: skip if MPTCP is not supported
    - selftests: mptcp: pm nl: skip if MPTCP is not supported
    - selftests: mptcp: join: skip if MPTCP is not supported
    - selftests: mptcp: sockopt: skip if MPTCP is not supported
    - selftests: mptcp: userspace pm: skip if MPTCP is not supported
    - mptcp: fix connect timeout handling
    - mptcp: fix active subflow finalization
    - ext4: add EA_INODE checking to ext4_iget()
    - ext4: set lockdep subclass for the ea_inode in ext4_xattr_inode_cache_find()
    - ext4: disallow ea_inodes with extended attributes
    - ext4: add lockdep annotations for i_data_sem for ea_inode's
    - fbcon: Fix null-ptr-deref in soft_cursor
    - serial: 8250_tegra: Fix an error handling path in tegra_uart_probe()
    - serial: cpm_uart: Fix a COMPILE_TEST dependency
    - powerpc/xmon: Use KSYM_NAME_LEN in array size
    - test_firmware: fix a memory leak with reqs buffer
    - test_firmware: fix the memory leak of the allocated firmware buffer
    - KVM: arm64: Populate fault info for watchpoint
    - KVM: x86: Account fastpath-only VM-Exits in vCPU stats
    - ksmbd: fix credit count leakage
    - ksmbd: fix UAF issue from opinfo->conn
    - ksmbd: fix incorrect AllocationSize set in smb2_get_info
    - ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
    - ksmbd: fix multiple out-of-bounds read during context decoding
    - KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()
    - fs/ntfs3: Validate MFT flags before replaying logs
    - regmap: Account for register length when chunking
    - tpm, tpm_tis: Request threaded interrupt handler
    - iommu/amd/pgtbl_v2: Fix domain max address
    - drm/amd/display: Have Payload Properly Created After Resume
    - tls: rx: strp: don't use GFP_KERNEL in softirq context
    - selftests: mptcp: diag: skip if MPTCP is not supported
    - selftests: mptcp: simult flows: skip if MPTCP is not supported
    - selftests: mptcp: join: avoid using 'cmp --bytes'
    - ext4: enable the lazy init thread when remounting read/write
    - iommu: Make IPMMU_VMSA dependencies more strict
    - [Config] updateconfigs for IPMMU_VMSA
    - iommu/amd: Add missing domain type checks
    - efi: Bump stub image version for macOS HVF compatibility
    - rxrpc: Truncate UTS_RELEASE for rxrpc version
    - net: renesas: rswitch: Fix return value in error path of xmit
    - KVM: arm64: Prevent unconditional donation of unmapped regions from the host
    - KVM: arm64: Reload PTE after invoking walker callback on preorder traversal
    - iio: ad4130: Make sure clock provider gets removed
    - iio: adc: mt6370: Fix ibus and ibat scaling value of some specific vendor ID
      chips
    - iio: accel: kx022a fix irq getting
    - misc: fastrpc: Reassign memory ownership only for remote heap
    - module/decompress: Fix error checking on zstd decompression
    - dmaengine: at_hdmac: Repair bitfield macros for peripheral ID handling
    - dmaengine: at_hdmac: Extend the Flow Controller bitfield to three bits
    - test_firmware: prevent race conditions by a correct implementation of
      locking
    - KVM: arm64: Drop last page ref in kvm_pgtable_stage2_free_removed()
    - KVM: x86/mmu: Grab memslot for correct address space in NX recovery worker
    - Upstream stable to v6.1.33, v6.3.7
    - scsi: megaraid_sas: Add flexible array member for SGLs
    - net: sfp: fix state loss when updating state_hw_mask
    - spi: mt65xx: make sure operations completed before unloading
    - platform/surface: aggregator: Allow completion work-items to be executed in
      parallel
    - platform/surface: aggregator_tabletsw: Add support for book mode in KIP
      subsystem
    - spi: qup: Request DMA before enabling clocks
    - afs: Fix setting of mtime when creating a file/dir/symlink
    - wifi: mt76: mt7615: fix possible race in mt7615_mac_sta_poll
    - bpf, sockmap: Avoid potential NULL dereference in
      sk_psock_verdict_data_ready()
    - neighbour: fix unaligned access to pneigh_entry
    - net: dsa: lan9303: allow vid != 0 in port_fdb_{add|del} methods
    - net/ipv4: ping_group_range: allow GID from 2147483648 to 4294967294
    - bpf: Fix UAF in task local storage
    - bpf: Fix elem_size not being set for inner maps
    - net/ipv6: fix bool/int mismatch for skip_notify_on_dev_down
    - net/smc: Avoid to access invalid RMBs' MRs in SMCRv1 ADD LINK CONT
    - net: enetc: correct the statistics of rx bytes
    - net: enetc: correct rx_bytes statistics of XDP
    - net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
    - Bluetooth: hci_sync: add lock to protect HCI_UNREGISTER
    - Bluetooth: Fix l2cap_disconnect_req deadlock
    - Bluetooth: ISO: don't try to remove CIG if there are bound CIS left
    - Bluetooth: L2CAP: Add missing checks for invalid DCID
    - wifi: mac80211: use correct iftype HE cap
    - wifi: cfg80211: reject bad AP MLD address
    - wifi: mac80211: mlme: fix non-inheritence element
    - wifi: mac80211: don't translate beacon/presp addrs
    - qed/qede: Fix scheduling while atomic
    - wifi: cfg80211: fix locking in sched scan stop work
    - selftests/bpf: Verify optval=NULL case
    - selftests/bpf: Fix sockopt_sk selftest
    - netfilter: nft_bitwise: fix register tracking
    - netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelper
    - netfilter: ipset: Add schedule point in call_ad().
    - netfilter: nf_tables: out-of-bound check in chain blob
    - ipv6: rpl: Fix Route of Death.
    - tcp: gso: really support BIG TCP
    - rfs: annotate lockless accesses to sk->sk_rxhash
    - rfs: annotate lockless accesses to RFS sock flow table
    - net: sched: add rcu annotations around qdisc->qdisc_sleeping
    - drm/i915/selftests: Add some missing error propagation
    - net: sched: move rtm_tca_policy declaration to include file
    - net: sched: act_police: fix sparse errors in tcf_police_dump()
    - net: sched: fix possible refcount leak in tc_chain_tmplt_add()
    - bpf: Add extra path pointer check to d_path helper
    - drm/amdgpu: fix Null pointer dereference error in amdgpu_device_recover_vram
    - lib: cpu_rmap: Fix potential use-after-free in irq_cpu_rmap_release()
    - net: bcmgenet: Fix EEE implementation
    - bnxt_en: Don't issue AP reset during ethtool's reset operation
    - bnxt_en: Query default VLAN before VNIC setup on a VF
    - bnxt_en: Skip firmware fatal error recovery if chip is not accessible
    - bnxt_en: Prevent kernel panic when receiving unexpected PHC_UPDATE event
    - bnxt_en: Implement .set_port / .unset_port UDP tunnel callbacks
    - batman-adv: Broken sync while rescheduling delayed work
    - Input: xpad - delete a Razer DeathAdder mouse VID/PID entry
    - Input: psmouse - fix OOB access in Elantech protocol
    - Input: fix open count when closing inhibited device
    - ALSA: hda: Fix kctl->id initialization
    - ALSA: ymfpci: Fix kctl->id initialization
    - ALSA: gus: Fix kctl->id initialization
    - ALSA: cmipci: Fix kctl->id initialization
    - ALSA: hda/realtek: Add quirk for Clevo NS50AU
    - ALSA: ice1712,ice1724: fix the kcontrol->id initialization
    - ALSA: hda/realtek: Add a quirk for HP Slim Desktop S01
    - ALSA: hda/realtek: Add quirks for Asus ROG 2024 laptops using CS35L41
    - drm/i915/gt: Use the correct error value when kernel_context() fails
    - drm/amdgpu: fix xclk freq on CHIP_STONEY
    - drm/amdgpu: change reserved vram info print
    - drm/amd/pm: Fix power context allocation in SMU13
    - drm/amd/display: Reduce sdp bw after urgent to 90%
    - wifi: iwlwifi: mvm: Fix -Warray-bounds bug in iwl_mvm_wait_d3_notif()
    - can: j1939: j1939_sk_send_loop_abort(): improved error queue handling in
      J1939 Socket
    - can: j1939: change j1939_netdev_lock type to mutex
    - can: j1939: avoid possible use-after-free when j1939_can_rx_register fails
    - mptcp: only send RM_ADDR in nl_cmd_remove
    - mptcp: add address into userspace pm list
    - mptcp: update userspace pm infos
    - selftests: mptcp: update userspace pm addr tests
    - selftests: mptcp: update userspace pm subflow tests
    - ceph: fix use-after-free bug for inodes when flushing capsnaps
    - s390/dasd: Use correct lock while counting channel queue length
    - Bluetooth: Fix use-after-free in hci_remove_ltk/hci_remove_irk
    - Bluetooth: fix debugfs registration
    - Bluetooth: hci_qca: fix debugfs registration
    - tee: amdtee: Add return_origin to 'struct tee_cmd_load_ta'
    - rbd: move RBD_OBJ_FLAG_COPYUP_ENABLED flag setting
    - rbd: get snapshot context after exclusive lock is ensured to be held
    - virtio_net: use control_buf for coalesce params
    - soc: qcom: icc-bwmon: fix incorrect error code passed to dev_err_probe()
    - pinctrl: meson-axg: add missing GPIOA_18 gpio group
    - usb: usbfs: Enforce page requirements for mmap
    - usb: usbfs: Use consistent mmap functions
    - mm: page_table_check: Make it dependent on EXCLUSIVE_SYSTEM_RAM
    - mm: page_table_check: Ensure user pages are not slab pages
    - arm64: dts: qcom: sc8280xp: Flush RSC sleep & wake votes
    - ARM: at91: pm: fix imbalanced reference counter for ethernet devices
    - ARM: dts: at91: sama7g5ek: fix debounce delay property for shdwc
    - ASoC: codecs: wsa883x: do not set can_multi_write flag
    - ASoC: codecs: wsa881x: do not set can_multi_write flag
    - arm64: dts: qcom: sc7180-lite: Fix SDRAM freq for misidentified sc7180-lite
      boards
    - arm64: dts: imx8qm-mek: correct GPIOs for USDHC2 CD and WP signals
    - arm64: dts: imx8-ss-dma: assign default clock rate for lpuarts
    - ASoC: mediatek: mt8195-afe-pcm: Convert to platform remove callback
      returning void
    - ASoC: mediatek: mt8195: fix use-after-free in driver remove path
    - ASoC: simple-card-utils: fix PCM constraint error check
    - blk-mq: fix blk_mq_hw_ctx active request accounting
    - arm64: dts: imx8mn-beacon: Fix SPI CS pinmux
    - i2c: mv64xxx: Fix reading invalid status value in atomic mode
    - firmware: arm_ffa: Set handle field to zero in memory descriptor
    - gpio: sim: fix memory corruption when adding named lines and unnamed hogs
    - i2c: sprd: Delete i2c adapter in .remove's error path
    - riscv: mm: Ensure prot of VM_WRITE and VM_EXEC must be readable
    - eeprom: at24: also select REGMAP
    - soundwire: stream: Add missing clear of alloc_slave_rt
    - riscv: fix kprobe __user string arg print fault issue
    - [Config] updateconfigs for ARCH_HAS_NON_OVERLAPPING_ADDRESS_SPACE
    - vduse: avoid empty string for dev name
    - vhost: support PACKED when setting-getting vring_base
    - vhost_vdpa: support PACKED when setting-getting vring_base
    - ksmbd: fix out-of-bound read in deassemble_neg_contexts()
    - ksmbd: fix out-of-bound read in parse_lease_state()
    - ksmbd: check the validation of pdu_size in ksmbd_conn_handler_loop
    - ext4: only check dquot_initialize_needed() when debugging
    - wifi: rtw89: correct PS calculation for SUPPORTS_DYNAMIC_PS
    - wifi: rtw88: correct PS calculation for SUPPORTS_DYNAMIC_PS
    - Bluetooth: Split bt_iso_qos into dedicated structures
    - Bluetooth: ISO: consider right CIS when removing CIG at cleanup
    - Bluetooth: ISO: Fix CIG auto-allocation to select configurable CIG
    - netfilter: nf_tables: Add null check for nla_nest_start_noflag() in
      nft_dump_basechain_hook()
    - drm/lima: fix sched context destroy
    - net: openvswitch: fix upcall counter access before allocation
    - bnxt_en: Fix bnxt_hwrm_update_rss_hash_cfg()
    - Input: cyttsp5 - fix array length
    - soc: qcom: rpmh-rsc: drop redundant unsigned >=0 comparision
    - arm64: dts: qcom: sm6375-pdx225: Fix remoteproc firmware paths
    - vdpa/mlx5: Fix hang when cvq commands are triggered during device unregister
    - ksmbd: fix posix_acls and acls dereferencing possible ERR_PTR()
    - Upstream stable to v6.1.34, v6.3.8
  * CVE-2023-4273
    - exfat: check if filename entries exceeds max filename length
  * CVE-2023-4128
    - net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
      free
    - net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
      free
    - net/sched: cls_route: No longer copy tcf_result on update to avoid use-
      after-free
  * CVE-2023-3212
    - gfs2: Don't deref jdesc in evict

linux-aws-6.2 (6.2.0-1012.12~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1012.12~22.04.1 -proposed tracker (LP: #2034139)

  [ Ubuntu: 6.2.0-1012.12 ]

  * lunar/linux-aws: 6.2.0-1012.12 -proposed tracker (LP: #2034141)
  * lunar/linux: 6.2.0-33.33 -proposed tracker (LP: #2034158)
  * Packaging resync (LP: #1786013)
    - [Packaging] update helper scripts
  * CVE-2023-21264
    - KVM: arm64: Prevent unconditional donation of unmapped regions from the host
  * CVE-2023-4569
    - netfilter: nf_tables: deactivate catchall elements in next generation
  * CVE-2023-40283
    - Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
  * CVE-2023-20588
    - x86/bugs: Increase the x86 bugs vector size to two u32s
    - x86/CPU/AMD: Do not leak quotient data after a division by 0
    - x86/CPU/AMD: Fix the DIV(0) initial fix attempt
  * CVE-2023-4128
    - net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-
      free
    - net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-
      free
    - net/sched: cls_route: No longer copy tcf_result on update to avoid use-
      after-free

linux-aws-6.2 (6.2.0-1011.11~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1011.11~22.04.1 -proposed tracker (LP: #2030364)

  [ Ubuntu: 6.2.0-1011.11 ]

  * lunar/linux-aws: 6.2.0-1011.11 -proposed tracker (LP: #2030365)
  * lunar/linux: 6.2.0-32.32 -proposed tracker (LP: #2031134)
  * libgnutls report "trap invalid opcode" when trying to install packages over
    https (LP: #2031093)
    - [Config]: disable CONFIG_GDS_FORCE_MITIGATION
  * lunar/linux: 6.2.0-30.30 -proposed tracker (LP: #2030381)
  * CVE-2022-40982
    - init: Provide arch_cpu_finalize_init()
    - x86/cpu: Switch to arch_cpu_finalize_init()
    - ARM: cpu: Switch to arch_cpu_finalize_init()
    - ia64/cpu: Switch to arch_cpu_finalize_init()
    - m68k/cpu: Switch to arch_cpu_finalize_init()
    - mips/cpu: Switch to arch_cpu_finalize_init()
    - sh/cpu: Switch to arch_cpu_finalize_init()
    - sparc/cpu: Switch to arch_cpu_finalize_init()
    - um/cpu: Switch to arch_cpu_finalize_init()
    - init: Remove check_bugs() leftovers
    - init: Invoke arch_cpu_finalize_init() earlier
    - init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()
    - x86/init: Initialize signal frame size late
    - x86/fpu: Remove cpuinfo argument from init functions
    - x86/fpu: Mark init functions __init
    - x86/fpu: Move FPU initialization into arch_cpu_finalize_init()
    - x86/mem_encrypt: Unbreak the AMD_MEM_ENCRYPT=n build
    - x86/xen: Fix secondary processors' FPU initialization
    - x86/speculation: Add Gather Data Sampling mitigation
    - x86/speculation: Add force option to GDS mitigation
    - x86/speculation: Add Kconfig option for GDS
    - KVM: Add GDS_NO support to KVM
    - Documentation/x86: Fix backwards on/off logic about YMM support
    - [Config]: Enable CONFIG_ARCH_HAS_CPU_FINALIZE_INIT and
      CONFIG_GDS_FORCE_MITIGATION
  * CVE-2023-4015
    - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
      set/chain
    - netfilter: nf_tables: unbind non-anonymous set if rule construction fails
    - netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
  * CVE-2023-3995
    - netfilter: nf_tables: disallow rule addition to bound chain via
      NFTA_RULE_CHAIN_ID
  * CVE-2023-3777
    - netfilter: nf_tables: skip bound chain on rule flush
  * CVE-2023-3609
    - net/sched: cls_u32: Fix reference counter leak leading to overflow
  * NULL pointer dereference on CS35L41 HDA AMP (LP: #2029199)
    - ASoC: cs35l41: Refactor error release code
    - ALSA: cs35l41: Add shared boost feature
    - ASoC: dt-bindings: cirrus, cs35l41: Document CS35l41 shared boost
    - ALSA: hda: cs35l41: Ensure firmware/tuning pairs are always loaded
    - ALSA: hda: cs35l41: Enable Amp High Pass Filter
    - ALSA: cs35l41: Use mbox command to enable speaker output for external boost
    - ALSA: cs35l41: Poll for Power Up/Down rather than waiting a fixed delay
    - ALSA: hda: cs35l41: Check mailbox status of pause command after firmware
      load
    - ALSA: hda: cs35l41: Ensure we correctly re-sync regmap before system
      suspending.
    - ALSA: hda: cs35l41: Ensure we pass up any errors during system suspend.
    - ALSA: hda: cs35l41: Move Play and Pause into separate functions
    - ALSA: hda: hda_component: Add pre and post playback hooks to hda_component
    - ALSA: hda: cs35l41: Use pre and post playback hooks
    - ALSA: hda: cs35l41: Rework System Suspend to ensure correct call separation
    - ALSA: hda: cs35l41: Add device_link between HDA and cs35l41_hda
    - ALSA: hda: cs35l41: Ensure amp is only unmuted during playback
  * Reboot command powers off the system (LP: #2029332)
    - x86/smp: Make stop_other_cpus() more robust
    - x86/smp: Dont access non-existing CPUID leaf
  * losetup with mknod fails on jammy with kernel 5.15.0-69-generic
    (LP: #2015400)
    - loop: deprecate autoloading callback loop_probe()
    - loop: do not enforce max_loop hard limit by (new) default
  * Fix UBSAN in Intel EDAC driver (LP: #2028746)
    - EDAC/skx_common: Enable EDAC support for the "near" memory
    - EDAC/skx_common: Delete duplicated and unreachable code
    - EDAC/i10nm: Add Intel Emerald Rapids server support
    - EDAC/i10nm: Make more configurations CPU model specific
    - EDAC/i10nm: Add Intel Granite Rapids server support
    - EDAC/i10nm: Skip the absent memory controllers
  * Make TTY switching possible for NVIDIA when it's boot VGA (LP: #2028749)
    - drm/gma500: Use drm_aperture_remove_conflicting_pci_framebuffers
    - video/aperture: use generic code to figure out the vga default device
    - drm/aperture: Remove primary argument
    - video/aperture: Only kick vgacon when the pdev is decoding vga
    - video/aperture: Move vga handling to pci function
    - video/aperture: Drop primary argument
    - video/aperture: Only remove sysfb on the default vga pci device
    - fbdev: Simplify fb_is_primary_device for x86
    - video/aperture: Provide a VGA helper for gma500 and internal use
  * Fix AMD gpu hang when screen off/on (LP: #2028740)
    - drm/amd/display: Keep PHY active for dp config
  * Various backlight issues with the 6.0/6.1 kernel (LP: #2023638)
    - ACPI: video: Stop trying to use vendor backlight control on laptops from
      after ~2012
  * FM350(mtk_t7xx) failed to suspend, or early wake while suspending
    (LP: #2020743)
    - net: wwan: t7xx: Ensure init is completed before system sleep
  * Include the MAC address pass through function on RTL8153DD-CG (LP: #2020295)
    - r8152: add USB device driver for config selection
  * CVE-2023-20593
    - x86/cpu/amd: Move the errata checking functionality up
    - x86/cpu/amd: Add a Zenbleed fix
  * CVE-2023-4004
    - netfilter: nft_set_pipapo: fix improper element removal
  * CVE-2023-3611
    - net/sched: sch_qfq: refactor parsing of netlink parameters
    - net/sched: sch_qfq: account for stab overhead in qfq_enqueue
  * CVE-2023-3610
    - netfilter: nf_tables: fix chain binding transaction logic
  * CVE-2023-2898
    - f2fs: fix to avoid NULL pointer dereference f2fs_write_end_io()
  * Fix speaker volume too low on HP G10 laptops (LP: #2023197)
    - ALSA: hda/realtek: Enable 4 amplifiers instead of 2 on a HP platform
  * stacked overlay file system mounts that have chroot() called against them
    appear to be getting locked (by the kernel most likely?) (LP: #2016398)
    - SAUCE: overlayfs: fix reference count mismatch
  * arm64+ast2600: No Output from BMC's VGA port (LP: #2026776)
    - drm/ast: Fix ARM compatibility
  * Fix eDP only displays 3/4 area after switching to mirror mode with external
    HDMI 4K monitor (LP: #2024273)
    - drm/i915: Allow arbitrary refresh rates with VRR eDP panels
  * Fix AMDGPU: the screen freeze with W7500 (LP: #2027957)
    - drm/amd/pm: share the code around SMU13 pcie parameters update
    - drm/amd/pm: conditionally disable pcie lane/speed switching for SMU13
    - drm/amd: Move helper for dynamic speed switch check out of smu13
    - drm/amd: Align SMU11 SMU_MSG_OverridePcieParameters implementation with
      SMU13
  * UBSAN: shift-out-of-bounds in amd_sfh (LP: #2027773)
    - HID: amd_sfh: Rename the float32 variable
    - HID: amd_sfh: Fix for shift-out-of-bounds
  * cifs: fix mid leak during reconnection after timeout threshold
    (LP: #2029138)
    - cifs: fix mid leak during reconnection after timeout threshold
  * Lunar update: upstream stable patchset 2023-07-28 (LP: #2028979)
    - usb: dwc3: fix gadget mode suspend interrupt handler issue
    - tpm, tpm_tis: Avoid cache incoherency in test for interrupts
    - tpm, tpm_tis: Only handle supported interrupts
    - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume
    - tpm, tpm_tis: startup chip before testing for interrupts
    - tpm: Re-enable TPM chip boostrapping non-tpm_tis TPM drivers
    - tpm: Prevent hwrng from activating during resume
    - watchdog: sp5100_tco: Immediately trigger upon starting.
    - drm/amd/display: hpd rx irq not working with eDP interface
    - ocfs2: Switch to security_inode_init_security()
    - platform/x86/intel/ifs: Annotate work queue on stack so object debug does
      not complain
    - ALSA: hda/ca0132: add quirk for EVGA X299 DARK
    - ALSA: hda: Fix unhandled register update during auto-suspend period
    - ALSA: hda/realtek: Enable headset onLenovo M70/M90
    - SUNRPC: Don't change task->tk_status after the call to rpc_exit_task
    - mmc: sdhci-esdhc-imx: make "no-mmc-hs400" works
    - mmc: block: ensure error propagation for non-blk
    - power: supply: axp288_fuel_gauge: Fix external_power_changed race
    - power: supply: bq25890: Fix external_power_changed race
    - ASoC: rt5682: Disable jack detection interrupt during suspend
    - net: cdc_ncm: Deal with too low values of dwNtbOutMaxSize
    - m68k: Move signal frame following exception on 68020/030
    - xtensa: fix signal delivery to FDPIC process
    - xtensa: add __bswap{si,di}2 helpers
    - parisc: Use num_present_cpus() in alternative patching code
    - parisc: Handle kgdb breakpoints only in kernel context
    - parisc: Fix flush_dcache_page() for usage from irq context
    - parisc: Allow to reboot machine after system halt
    - parisc: Enable LOCKDEP support
    - parisc: Handle kprobes breakpoints only in kernel context
    - gpio: mockup: Fix mode of debugfs files
    - btrfs: use nofs when cleaning up aborted transactions
    - dt-binding: cdns,usb3: Fix cdns,on-chip-buff-size type
    - drm/mgag200: Fix gamma lut not initialized.
    - drm/radeon: reintroduce radeon_dp_work_func content
    - drm/amd/pm: add missing NotifyPowerSource message mapping for SMU13.0.7
    - drm/amd/pm: Fix output of pp_od_clk_voltage
    - Revert "binder_alloc: add missing mmap_lock calls when using the VMA"
    - Revert "android: binder: stop saving a pointer to the VMA"
    - binder: add lockless binder_alloc_(set|get)_vma()
    - binder: fix UAF caused by faulty buffer cleanup
    - binder: fix UAF of alloc->vma in race with munmap()
    - selftests/memfd: Fix unknown type name build failure
    - drm/amd/amdgpu: limit one queue per gang
    - perf/x86/uncore: Correct the number of CHAs on SPR
    - x86/topology: Fix erroneous smp_num_siblings on Intel Hybrid platforms
    - irqchip/mips-gic: Don't touch vl_map if a local interrupt is not routable
    - irqchip/mips-gic: Use raw spinlock for gic_lock
    - debugobjects: Don't wake up kswapd from fill_pool()
    - fbdev: udlfb: Fix endpoint check
    - net: fix stack overflow when LRO is disabled for virtual interfaces
    - udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated().
    - USB: core: Add routines for endpoint checks in old drivers
    - USB: sisusbvga: Add endpoint checks
    - media: radio-shark: Add endpoint checks
    - ASoC: lpass: Fix for KASAN use_after_free out of bounds
    - net: fix skb leak in __skb_tstamp_tx()
    - drm: fix drmm_mutex_init()
    - selftests: fib_tests: mute cleanup error message
    - octeontx2-pf: Fix TSOv6 offload
    - bpf: Fix mask generation for 32-bit narrow loads of 64-bit fields
    - bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
    - lan966x: Fix unloading/loading of the driver
    - ipv6: Fix out-of-bounds access in ipv6_find_tlv()
    - cifs: mapchars mount option ignored
    - power: supply: leds: Fix blink to LED on transition
    - power: supply: mt6360: add a check of devm_work_autocancel in
      mt6360_charger_probe
    - power: supply: bq27xxx: Fix bq27xxx_battery_update() race condition
    - power: supply: bq27xxx: Fix I2C IRQ race on remove
    - power: supply: bq27xxx: Fix poll_interval handling and races on remove
    - power: supply: bq27xxx: Add cache parameter to
      bq27xxx_battery_current_and_status()
    - power: supply: bq27xxx: Move bq27xxx_battery_update() down
    - power: supply: bq27xxx: Ensure power_supply_changed() is called on current
      sign changes
    - power: supply: bq27xxx: After charger plug in/out wait 0.5s for things to
      stabilize
    - power: supply: bq25890: Call power_supply_changed() after updating input
      current or voltage
    - power: supply: bq24190: Call power_supply_changed() after updating input
      current
    - power: supply: sbs-charger: Fix INHIBITED bit for Status reg
    - optee: fix uninited async notif value
    - firmware: arm_ffa: Check if ffa_driver remove is present before executing
    - firmware: arm_ffa: Fix FFA device names for logical partitions
    - fs: fix undefined behavior in bit shift for SB_NOUSER
    - regulator: pca9450: Fix BUCK2 enable_mask
    - platform/x86: ISST: Remove 8 socket limit
    - coresight: Fix signedness bug in tmc_etr_buf_insert_barrier_packet()
    - ARM: dts: imx6qdl-mba6: Add missing pvcie-supply regulator
    - xen/pvcalls-back: fix double frees with pvcalls_new_active_socket()
    - x86/show_trace_log_lvl: Ensure stack pointer is aligned, again
    - ASoC: Intel: Skylake: Fix declaration of enum skl_ch_cfg
    - ASoC: Intel: avs: Fix declaration of enum avs_channel_config
    - ASoC: Intel: avs: Access path components under lock
    - cxl: Wait Memory_Info_Valid before access memory related info
    - sctp: fix an issue that plpmtu can never go to complete state
    - forcedeth: Fix an error handling path in nv_probe()
    - platform/mellanox: mlxbf-pmc: fix sscanf() error checking
    - net/mlx5e: Fix SQ wake logic in ptp napi_poll context
    - net/mlx5e: Fix deadlock in tc route query code
    - net/mlx5e: Use correct encap attribute during invalidation
    - net/mlx5e: do as little as possible in napi poll when budget is 0
    - net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE) CPUs
    - net/mlx5: Handle pairing of E-switch via uplink un/load APIs
    - net/mlx5: DR, Check force-loopback RC QP capability independently from RoCE
    - net/mlx5: Fix error message when failing to allocate device memory
    - net/mlx5: Collect command failures data only for known commands
    - net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device
    - net/mlx5: Devcom, serialize devcom registration
    - arm64: dts: imx8mn-var-som: fix PHY detection bug by adding deassert delay
    - firmware: arm_ffa: Set reserved/MBZ fields to zero in the memory descriptors
    - regulator: mt6359: add read check for PMIC MT6359
    - net/smc: Reset connection when trying to use SMCRv2 fails.
    - 3c589_cs: Fix an error handling path in tc589_probe()
    - net: phy: mscc: add VSC8502 to MODULE_DEVICE_TABLE
    - wifi: rtw89: 8852b: adjust quota to avoid SER L1 caused by access null page
    - zsmalloc: move LRU update from zs_map_object() to zs_malloc()
    - mm/vmemmap/devdax: fix kernel crash when probing devdax devices
    - cifs: fix smb1 mount regression
    - cxl: Move cxl_await_media_ready() to before capacity info retrieval
    - net: ethernet: mtk_eth_soc: fix QoS on DSA MAC on non MTK_NETSYS_V2 SoCs
    - Upstream stable to v6.1.31, v6.3.5
    - inet: Add IP_LOCAL_PORT_RANGE socket option
    - ipv{4,6}/raw: fix output xfrm lookup wrt protocol
    - firmware: arm_ffa: Fix usage of partition info get count flag
    - selftests/bpf: Fix pkg-config call building sign-file
    - platform/x86/amd/pmf: Fix CnQF and auto-mode after resume
    - tls: rx: device: fix checking decryption status
    - tls: rx: strp: set the skb->len of detached / CoW'ed skbs
    - tls: rx: strp: fix determining record length in copy mode
    - tls: rx: strp: force mixed decrypted records into copy mode
    - tls: rx: strp: factor out copying skb data
    - tls: rx: strp: preserve decryption status of skbs when needed
    - net/mlx5: E-switch, Devcom, sync devcom events and devcom comp register
    - gpio-f7188x: fix chip name and pin count on Nuvoton chip
    - bpf, sockmap: Pass skb ownership through read_skb
    - bpf, sockmap: Convert schedule_work into delayed_work
    - bpf, sockmap: Reschedule is now done through backlog
    - bpf, sockmap: Improved check for empty queue
    - bpf, sockmap: Handle fin correctly
    - bpf, sockmap: TCP data stall on recv before accept
    - bpf, sockmap: Wake up polling after data copy
    - bpf, sockmap: Incorrectly handling copied_seq
    - blk-mq: fix race condition in active queue accounting
    - vfio/type1: check pfn valid before converting to struct page
    - net: page_pool: use in_softirq() instead
    - page_pool: fix inconsistency for page_pool_ring_[un]lock()
    - net: phy: mscc: enable VSC8501/2 RGMII RX clock
    - wifi: iwlwifi: mvm: support wowlan info notification version 2
    - drm/amd: Don't allow s0ix on APUs older than Raven
    - bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
    - Revert "thermal/drivers/mellanox: Use generic thermal_zone_get_trip()
      function"
    - block: fix bio-cache for passthru IO
    - cpufreq: amd-pstate: Update policy->cur in amd_pstate_adjust_perf()
    - cpufreq: amd-pstate: Add ->fast_switch() callback
    - netfilter: ctnetlink: Support offloaded conntrack entry deletion
    - tools headers UAPI: Sync the linux/in.h with the kernel sources
    - gpiolib: fix allocation of mixed dynamic/static GPIOs
    - net: fec: add dma_wmb to ensure correct descriptor values
    - cxl/port: Fix NULL pointer access in devm_cxl_add_port()
    - blk-wbt: fix that wbt can't be disabled by default
    - Upstream stable to v6.1.32, v6.3.6
  * sysfs msi_irqs directory empty with kernel-5.19 when being a xen guest
    (LP: #2022354) // Lunar update: upstream stable patchset 2023-07-28
    (LP: #2028979)
    - x86/pci/xen: populate MSI sysfs entries
  * Lunar update: upstream stable patchset 2023-07-26 (LP: #2028808)
    - drm/fbdev-generic: prohibit potential out-of-bounds access
    - drm/mipi-dsi: Set the fwnode for mipi_dsi_device
    - ARM: 9296/1: HP Jornada 7XX: fix kernel-doc warnings
    - net: skb_partial_csum_set() fix against transport header magic value
    - net: mdio: mvusb: Fix an error handling path in mvusb_mdio_probe()
    - scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in W-LUN suspend
    - tick/broadcast: Make broadcast device replacement work correctly
    - linux/dim: Do nothing if no time delta between samples
    - net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
    - net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs().
    - net: phy: bcm7xx: Correct read from expansion register
    - netfilter: nf_tables: always release netdev hooks from notifier
    - netfilter: conntrack: fix possible bug_on with enable_hooks=1
    - bonding: fix send_peer_notif overflow
    - netlink: annotate accesses to nlk->cb_running
    - net: annotate sk->sk_err write from do_recvmmsg()
    - net: deal with most data-races in sk_wait_event()
    - net: add vlan_get_protocol_and_depth() helper
    - tcp: add annotations around sk->sk_shutdown accesses
    - gve: Remove the code of clearing PBA bit
    - net: mscc: ocelot: fix stat counter register values
    - net: datagram: fix data-races in datagram_poll()
    - af_unix: Fix a data race of sk->sk_receive_queue->qlen.
    - af_unix: Fix data races around sk->sk_shutdown.
    - drm/i915/guc: Don't capture Gen8 regs on Xe devices
    - drm/i915: Fix NULL ptr deref by checking new_crtc_state
    - drm/i915/dp: prevent potential div-by-zero
    - drm/i915: Expand force_probe to block probe of devices as well.
    - drm/i915: taint kernel when force probing unsupported devices
    - fbdev: arcfb: Fix error handling in arcfb_probe()
    - ext4: reflect error codes from ext4_multi_mount_protect() to its callers
    - ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
    - ext4: allow ext4_get_group_info() to fail
    - refscale: Move shutdown from wait_event() to wait_event_idle()
    - selftests: cgroup: Add 'malloc' failures checks in test_memcontrol
    - rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
    - open: return EINVAL for O_DIRECTORY | O_CREAT
    - fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
    - drm/displayid: add displayid_get_header() and check bounds better
    - drm/amd/display: populate subvp cmd info only for the top pipe
    - drm/amd/display: Correct DML calculation to align HW formula
    - platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750 data
    - drm/amd/display: Enable HostVM based on rIOMMU active
    - drm/amd/display: Use DC_LOG_DC in the trasform pixel function
    - regmap: cache: Return error in cache sync operations for REGCACHE_NONE
    - remoteproc: imx_dsp_rproc: Add custom memory copy implementation for i.MX
      DSP Cores
    - arm64: dts: qcom: msm8996: Add missing DWC3 quirks
    - media: cx23885: Fix a null-ptr-deref bug in buffer_prepare() and
      buffer_finish()
    - media: pci: tw68: Fix null-ptr-deref bug in buf prepare and finish
    - media: pvrusb2: VIDEO_PVRUSB2 depends on DVB_CORE to use dvb_* symbols
    - ACPI: processor: Check for null return of devm_kzalloc() in fch_misc_setup()
    - drm/rockchip: dw_hdmi: cleanup drm encoder during unbind
    - arm64: dts: imx8mq-librem5: Remove dis_u3_susphy_quirk from usb_dwc3_0
    - firmware: arm_sdei: Fix sleep from invalid context BUG
    - ACPI: EC: Fix oops when removing custom query handlers
    - drm/amd/display: fixed dcn30+ underflow issue
    - remoteproc: stm32_rproc: Add mutex protection for workqueue
    - drm/tegra: Avoid potential 32-bit integer overflow
    - drm/msm/dp: Clean up handling of DP AUX interrupts
    - ACPICA: Avoid undefined behavior: applying zero offset to null pointer
    - ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in
      acpi_db_display_objects
    - arm64: dts: qcom: sdm845-polaris: Drop inexistent properties
    - irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4
    - ACPI: video: Remove desktops without backlight DMI quirks
    - drm/amd/display: Correct DML calculation to follow HW SPEC
    - drm/amd: Fix an out of bounds error in BIOS parser
    - drm/amdgpu: Fix sdma v4 sw fini error
    - media: Prefer designated initializers over memset for subdev pad ops
    - media: mediatek: vcodec: Fix potential array out-of-bounds in decoder
      queue_setup
    - wifi: ath: Silence memcpy run-time false positive warning
    - bpf: Annotate data races in bpf_local_storage
    - wifi: brcmfmac: pcie: Provide a buffer of random bytes to the device
    - wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
    - ext2: Check block size validity during mount
    - scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
    - scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery
    - bnxt: avoid overflow in bnxt_get_nvram_directory()
    - net: pasemi: Fix return type of pasemi_mac_start_tx()
    - net: Catch invalid index in XPS mapping
    - netdev: Enforce index cap in netdev_get_tx_queue
    - scsi: target: iscsit: Free cmds before session free
    - lib: cpu_rmap: Avoid use after free on rmap->obj array entries
    - scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to race
      condition
    - gfs2: Fix inode height consistency check
    - scsi: ufs: ufs-pci: Add support for Intel Lunar Lake
    - ext4: set goal start correctly in ext4_mb_normalize_request
    - ext4: Fix best extent lstart adjustment logic in ext4_mb_new_inode_pa()
    - crypto: jitter - permanent and intermittent health errors
    - f2fs: Fix system crash due to lack of free space in LFS
    - f2fs: fix to drop all dirty pages during umount() if cp_error is set
    - f2fs: fix to check readonly condition correctly
    - samples/bpf: Fix fout leak in hbm's run_bpf_prog
    - bpf: Add preempt_count_{sub,add} into btf id deny list
    - md: fix soft lockup in status_resync
    - wifi: iwlwifi: pcie: fix possible NULL pointer dereference
    - wifi: iwlwifi: add a new PCI device ID for BZ device
    - wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf
    - wifi: iwlwifi: mvm: fix ptk_pn memory leak
    - block, bfq: Fix division by zero error on zero wsum
    - wifi: ath11k: Ignore frags from uninitialized peer in dp.
    - wifi: iwlwifi: fix iwl_mvm_max_amsdu_size() for MLO
    - null_blk: Always check queue mode setting from configfs
    - wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace
    - wifi: ath11k: Fix SKB corruption in REO destination ring
    - nbd: fix incomplete validation of ioctl arg
    - ipvs: Update width of source for ip_vs_sync_conn_options
    - Bluetooth: btusb: Add new PID/VID 04ca:3801 for MT7663
    - Bluetooth: Add new quirk for broken local ext features page 2
    - Bluetooth: btrtl: add support for the RTL8723CS
    - Bluetooth: Improve support for Actions Semi ATS2851 based devices
    - Bluetooth: btrtl: check for NULL in btrtl_set_quirks()
    - Bluetooth: btintel: Add LE States quirk support
    - Bluetooth: hci_bcm: Fall back to getting bdaddr from EFI if not set
    - Bluetooth: Add new quirk for broken set random RPA timeout for ATS2851
    - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
    - Bluetooth: btrtl: Add the support for RTL8851B
    - HID: apple: Set the tilde quirk flag on the Geyser 4 and later
    - staging: axis-fifo: initialize timeouts in init only
    - ASoC: amd: yc: Add DMI entries to support HP OMEN 16-n0xxx (8A42)
    - HID: logitech-hidpp: Don't use the USB serial for USB devices
    - HID: logitech-hidpp: Reconcile USB and Unifying serials
    - spi: spi-imx: fix MX51_ECSPI_* macros when cs > 3
    - usb: typec: ucsi: acpi: add quirk for ASUS Zenbook UM325
    - ALSA: hda: LNL: add HD Audio PCI ID
    - ASoC: amd: Add Dell G15 5525 to quirks list
    - ASoC: amd: yc: Add ThinkBook 14 G5+ ARP to quirks list for acp6x
    - HID: apple: Set the tilde quirk flag on the Geyser 3
    - HID: Ignore battery for ELAN touchscreen on ROG Flow X13 GV301RA
    - HID: wacom: generic: Set battery quirk only when we see battery data
    - usb: typec: tcpm: fix multiple times discover svids error
    - serial: 8250: Reinit port->pm on port specific driver unbind
    - mcb-pci: Reallocate memory region to avoid memory overlapping
    - sched: Fix KCSAN noinstr violation
    - lkdtm/stackleak: Fix noinstr violation
    - recordmcount: Fix memory leaks in the uwrite function
    - soundwire: dmi-quirks: add remapping for Intel 'Rooks County' NUC M15
    - phy: st: miphy28lp: use _poll_timeout functions for waits
    - soundwire: qcom: gracefully handle too many ports in DT
    - soundwire: bus: Fix unbalanced pm_runtime_put() causing usage count
      underflow
    - mfd: intel_soc_pmic_chtwc: Add Lenovo Yoga Book X90F to intel_cht_wc_models
    - mfd: dln2: Fix memory leak in dln2_probe()
    - mfd: intel-lpss: Add Intel Meteor Lake PCH-S LPSS PCI IDs
    - parisc: Replace regular spinlock with spin_trylock on panic path
    - drm/amdgpu: drop gfx_v11_0_cp_ecc_error_irq_funcs
    - xfrm: don't check the default policy if the policy allows the packet
    - Revert "Fix XFRM-I support for nested ESP tunnels"
    - drm/msm/dp: unregister audio driver during unbind
    - drm/msm/dpu: Assign missing writeback log_mask
    - drm/msm/dpu: Move non-MDP_TOP INTF_INTR offsets out of hwio header
    - drm/msm/dpu: Remove duplicate register defines from INTF
    - dt-bindings: display/msm: dsi-controller-main: Document qcom, master-dsi and
      qcom, sync-dual-dsi
    - ASoC: fsl_micfil: Fix error handler with pm_runtime_enable
    - cpupower: Make TSC read per CPU for Mperf monitor
    - xfrm: Reject optional tunnel/BEET mode templates in outbound policies
    - af_key: Reject optional tunnel/BEET mode templates in outbound policies
    - drm/msm: Fix submit error-path leaks
    - selftests: seg6: disable DAD on IPv6 router cfg for srv6_end_dt4_l3vpn_test
    - selftets: seg6: disable rp_filter by default in srv6_end_dt4_l3vpn_test
    - net: fec: Better handle pm_runtime_get() failing in .remove()
    - net: phy: dp83867: add w/a for packet errors seen with short cables
    - ALSA: firewire-digi00x: prevent potential use after free
    - wifi: mt76: connac: fix stats->tx_bytes calculation
    - ALSA: hda/realtek: Apply HP B&O top speaker profile to Pavilion 15
    - sfc: disable RXFCS and RXALL features by default
    - vsock: avoid to close connected socket after the timeout
    - tcp: fix possible sk_priority leak in tcp_v4_send_reset()
    - serial: arc_uart: fix of_iomap leak in `arc_serial_probe`
    - serial: 8250_bcm7271: balance clk_enable calls
    - serial: 8250_bcm7271: fix leak in `brcmuart_probe`
    - erspan: get the proto with the md version for collect_md
    - net: dsa: rzn1-a5psw: enable management frames for CPU port
    - net: dsa: rzn1-a5psw: fix STP states handling
    - net: dsa: rzn1-a5psw: disable learning for standalone ports
    - net: hns3: fix output information incomplete for dumping tx queue info with
      debugfs
    - net: hns3: fix sending pfc frames after reset issue
    - net: hns3: fix reset delay time to avoid configuration timeout
    - net: hns3: fix reset timeout when enable full VF
    - media: netup_unidvb: fix use-after-free at del_timer()
    - SUNRPC: double free xprt_ctxt while still in use
    - SUNRPC: always free ctxt when freeing deferred request
    - SUNRPC: Fix trace_svc_register() call site
    - ASoC: mediatek: mt8186: Fix use-after-free in driver remove path
    - ASoC: SOF: topology: Fix logic for copying tuples
    - drm/exynos: fix g2d_open/close helper function definitions
    - net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()
    - virtio-net: Maintain reverse cleanup order
    - virtio_net: Fix error unwinding of XDP initialization
    - tipc: add tipc_bearer_min_mtu to calculate min mtu
    - tipc: do not update mtu if msg_max is too small in mtu negotiation
    - tipc: check the bearer min mtu properly when setting it by netlink
    - s390/cio: include subchannels without devices also for evaluation
    - can: dev: fix missing CAN XL support in can_put_echo_skb()
    - net: bcmgenet: Remove phy_stop() from bcmgenet_netif_stop()
    - net: bcmgenet: Restore phy_stop() depending upon suspend/close
    - ice: introduce clear_reset_state operation
    - ice: Fix ice VF reset during iavf initialization
    - wifi: cfg80211: Drop entries with invalid BSSIDs in RNR
    - wifi: mac80211: fortify the spinlock against deadlock by interrupt
    - wifi: mac80211: fix min center freq offset tracing
    - wifi: mac80211: Abort running color change when stopping the AP
    - wifi: iwlwifi: mvm: fix cancel_delayed_work_sync() deadlock
    - wifi: iwlwifi: fw: fix DBGI dump
    - wifi: iwlwifi: fix OEM's name in the ppag approved list
    - wifi: iwlwifi: mvm: fix OEM's name in the tas approved list
    - wifi: iwlwifi: mvm: don't trust firmware n_channels
    - scsi: storvsc: Don't pass unused PFNs to Hyper-V host
    - tun: Fix memory leak for detached NAPI queue.
    - cassini: Fix a memory leak in the error handling path of cas_init_one()
    - net: dsa: mv88e6xxx: Fix mv88e6393x EPC write command offset
    - igb: fix bit_shift to be in [1..8] range
    - vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit()
    - net: wwan: iosm: fix NULL pointer dereference when removing device
    - net: pcs: xpcs: fix C73 AN not getting enabled
    - net: selftests: Fix optstring
    - netfilter: nf_tables: fix nft_trans type confusion
    - netfilter: nft_set_rbtree: fix null deref on element insertion
    - bridge: always declare tunnel functions
    - ALSA: usb-audio: Add a sample rate workaround for Line6 Pod Go
    - USB: usbtmc: Fix direction for 0-length ioctl control messages
    - usb-storage: fix deadlock when a scsi command timeouts more than once
    - USB: UHCI: adjust zhaoxin UHCI controllers OverCurrent bit value
    - usb: dwc3: gadget: Improve dwc3_gadget_suspend() and dwc3_gadget_resume()
    - usb: dwc3: debugfs: Resume dwc3 before accessing registers
    - usb: gadget: u_ether: Fix host MAC address case
    - usb: typec: altmodes/displayport: fix pin_assignment_show
    - Revert "usb: gadget: udc: core: Prevent redundant calls to pullup"
    - Revert "usb: gadget: udc: core: Invoke usb_gadget_connect only when started"
    - xhci-pci: Only run d3cold avoidance quirk for s2idle
    - xhci: Fix incorrect tracking of free space on transfer rings
    - ALSA: hda: Fix Oops by 9.1 surround channel names
    - ALSA: hda/realtek: Add quirk for Clevo L140AU
    - ALSA: hda/realtek: Add a quirk for HP EliteDesk 805
    - ALSA: hda/realtek: Add quirk for 2nd ASUS GU603
    - ALSA: hda/realtek: Add quirk for HP EliteBook G10 laptops
    - can: j1939: recvmsg(): allow MSG_CMSG_COMPAT flag
    - can: isotp: recvmsg(): allow MSG_CMSG_COMPAT flag
    - can: kvaser_pciefd: Set CAN_STATE_STOPPED in kvaser_pciefd_stop()
    - can: kvaser_pciefd: Call request_irq() before enabling interrupts
    - can: kvaser_pciefd: Empty SRB buffer in probe
    - can: kvaser_pciefd: Clear listen-only bit if not explicitly requested
    - can: kvaser_pciefd: Do not send EFLUSH command on TFD interrupt
    - can: kvaser_pciefd: Disable interrupts in probe error path
    - wifi: rtw88: use work to update rate to avoid RCU warning
    - SMB3: Close all deferred handles of inode in case of handle lease break
    - SMB3: drop reference to cfile before sending oplock break
    - ksmbd: smb2: Allow messages padded to 8byte boundary
    - ksmbd: allocate one more byte for implied bcc[0]
    - ksmbd: fix wrong UserName check in session_user
    - ksmbd: fix global-out-of-bounds in smb2_find_context_vals
    - KVM: Fix vcpu_array[0] races
    - statfs: enforce statfs[64] structure initialization
    - maple_tree: make maple state reusable after mas_empty_area()
    - mm: fix zswap writeback race condition
    - serial: Add support for Advantech PCI-1611U card
    - serial: 8250_exar: Add support for USR298x PCI Modems
    - serial: qcom-geni: fix enabling deactivated interrupt
    - thunderbolt: Clear registers properly when auto clear isn't in use
    - vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid UAF
    - ceph: force updating the msg pointer in non-split case
    - drm/amd/pm: fix possible power mode mismatch between driver and PMFW
    - drm/amdgpu/gmc11: implement get_vbios_fb_size()
    - drm/amdgpu/gfx10: Disable gfxoff before disabling powergating.
    - drm/amdgpu/gfx11: Adjust gfxoff before powergating on gfx11 as well
    - dt-bindings: ata: ahci-ceva: Cover all 4 iommus entries
    - powerpc/iommu: DMA address offset is incorrectly calculated with 2MB TCEs
    - powerpc/iommu: Incorrect DDW Table is referenced for SR-IOV device
    - tpm/tpm_tis: Disable interrupts for more Lenovo devices
    - powerpc/64s/radix: Fix soft dirty tracking
    - nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()
    - s390/dasd: fix command reject error on ESE devices
    - s390/crypto: use vector instructions only if available for ChaCha20
    - s390/qdio: fix do_sqbs() inline assembly constraint
    - arm64: mte: Do not set PG_mte_tagged if tags were not initialized
    - rethook: use preempt_{disable, enable}_notrace in rethook_trampoline_handler
    - rethook, fprobe: do not trace rethook related functions
    - remoteproc: imx_dsp_rproc: Fix kernel test robot sparse warning
    - drm/amd/amdgpu: introduce gc_*_mes_2.bin v2
    - drm/amdgpu: reserve the old gc_11_0_*_mes.bin
    - drm/nouveau/disp: More DP_RECEIVER_CAP_SIZE array fixes
    - xfrm: release all offloaded policy memory
    - xfrm: Fix leak of dev tracker
    - media: pvrusb2: fix DVB_CORE dependency
    - net: fec: remove the xdp_return_frame when lack of tx BDs
    - iavf: send VLAN offloading caps once after VFR
    - wifi: brcmfmac: Check for probe() id argument being NULL
    - wifi: rtw88: correct qsel_to_ep[] type as int
    - KVM: arm64: Infer the PA offset from IPA in stage-2 map walker
    - perf script: Skip aggregation for stat events
    - iommu/arm-smmu-qcom: Fix missing adreno_smmu's
    - arm64: Also reset KASAN tag if page is not PG_mte_tagged
    - Upstream stable to v6.1.30, v6.3.4
  * Lunar update: v6.2.16 upstream stable release (LP: #2028580)
    - USB: dwc3: gadget: drop dead hibernation code
    - usb: dwc3: gadget: Execute gadget stop after halting the controller
    - crypto: ccp - Clear PSP interrupt status register before calling handler
    - ASoC: codecs: constify static sdw_slave_ops struct
    - ASoC: codecs: wcd938x: fix accessing regmap on unattached devices
    - mtd: spi-nor: Add a RWW flag
    - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s28hx SEMPER
      flash
    - qcom: llcc/edac: Support polling mode for ECC handling
    - soc: qcom: llcc: Do not create EDAC platform device on SDM845
    - mailbox: zynq: Switch to flexible array to simplify code
    - mailbox: zynqmp: Fix counts of child nodes
    - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s25hx SEMPER
      flash
    - fs/ntfs3: Fix null-ptr-deref on inode->i_op in ntfs_lookup()
    - drm/amd/display: Ext displays with dock can't recognized after resume
    - KVM: x86/mmu: Avoid indirect call for get_cr3
    - KVM: x86: Do not unload MMU roots when only toggling CR0.WP with TDP enabled
    - KVM: x86: Make use of kvm_read_cr*_bits() when testing bits
    - KVM: VMX: Make CR0.WP a guest owned bit
    - KVM: x86/mmu: Refresh CR0.WP prior to checking for emulated permission
      faults
    - RDMA/rxe: Remove rxe_alloc()
    - RDMA/rxe: Change rxe_dbg to rxe_dbg_dev
    - RDMA/rxe: Extend dbg log messages to err and info
    - ASoC: Intel: soc-acpi-byt: Fix "WM510205" match no longer working
    - scsi: qedi: Fix use after free bug in qedi_remove()
    - drm/amd/display: Add missing WA and MCLK validation
    - drm/amd/display: Return error code on DSC atomic check failure
    - drm/amd/display: Fixes for dcn32_clk_mgr implementation
    - drm/amd/display: Reset OUTBOX0 r/w pointer on DMUB reset
    - drm/amd/display: Do not clear GPINT register when releasing DMUB from reset
    - drm/amd/display: Update bounding box values for DCN321
    - rxrpc: Fix potential data race in rxrpc_wait_to_be_connected()
    - ixgbe: Fix panic during XDP_TX with > 64 CPUs
    - octeonxt2-af: mcs: Fix per port bypass config
    - octeontx2-af: mcs: Write TCAM_DATA and TCAM_MASK registers at once
    - octeontx2-af: mcs: Config parser to skip 8B header
    - octeontx2-af: mcs: Fix MCS block interrupt
    - octeontx2-pf: mcs: Fix NULL pointer dereferences
    - octeontx2-pf: mcs: Match macsec ethertype along with DMAC
    - octeontx2-pf: mcs: Clear stats before freeing resource
    - octeontx2-pf: mcs: Fix shared counters logic
    - octeontx2-pf: mcs: Do not reset PN while updating secy
    - net/ncsi: clear Tx enable mode when handling a Config required AEN
    - tcp: fix skb_copy_ubufs() vs BIG TCP
    - net/sched: cls_api: remove block_cb from driver_list before freeing
    - sit: update dev->needed_headroom in ipip6_tunnel_bind_dev()
    - selftests: srv6: make srv6_end_dt46_l3vpn_test more robust
    - net: ipv6: fix skb hash for some RST packets
    - net: dsa: mv88e6xxx: add mv88e6321 rsvd2cpu
    - writeback: fix call of incorrect macro
    - block: Skip destroyed blkg when restart in blkg_destroy_all()
    - watchdog: dw_wdt: Fix the error handling path of dw_wdt_drv_probe()
    - RISC-V: mm: Enable huge page support to kernel_page_present() function
    - i2c: tegra: Fix PEC support for SMBUS block read
    - net/sched: act_mirred: Add carrier check
    - r8152: fix flow control issue of RTL8156A
    - r8152: fix the poor throughput for 2.5G devices
    - r8152: move setting r8153b_rx_agg_chg_indicate()
    - sfc: Fix module EEPROM reporting for QSFP modules
    - rxrpc: Fix hard call timeout units
    - rxrpc: Make it so that a waiting process can be aborted
    - rxrpc: Fix timeout of a call that hasn't yet been granted a channel
    - riscv: compat_syscall_table: Fixup compile warning
    - net: ethernet: mtk_eth_soc: drop generic vlan rx offload, only use DSA
      untagging
    - drm/i915/mtl: Add the missing CPU transcoder mask in intel_device_info
    - selftests: netfilter: fix libmnl pkg-config usage
    - octeontx2-af: Secure APR table update with the lock
    - octeontx2-af: Fix start and end bit for scan config
    - octeontx2-af: Fix depth of cam and mem table.
    - octeontx2-pf: Increase the size of dmac filter flows
    - octeontx2-af: Add validation for lmac type
    - octeontx2-af: Update correct mask to filter IPv4 fragments
    - octeontx2-af: Update/Fix NPC field hash extract feature
    - octeontx2-af: Fix issues with NPC field hash extract
    - octeontx2-af: Skip PFs if not enabled
    - octeontx2-pf: Disable packet I/O for graceful exit
    - octeontx2-vf: Detach LF resources on probe cleanup
    - ionic: remove noise from ethtool rxnfc error msg
    - ethtool: Fix uninitialized number of lanes
    - ionic: catch failure from devlink_alloc
    - af_packet: Don't send zero-byte data in packet_sendmsg_spkt().
    - drm/amdgpu: add a missing lock for AMDGPU_SCHED
    - ALSA: caiaq: input: Add error handling for unsupported input methods in
      `snd_usb_caiaq_input_init`
    - KVM: s390: pv: fix asynchronous teardown for small VMs
    - KVM: s390: fix race in gmap_make_secure()
    - net: dsa: mt7530: fix corrupt frames using trgmii on 40 MHz XTAL MT7621
    - net: dsa: mt7530: split-off common parts from mt7531_setup
    - net: dsa: mt7530: fix network connectivity with multiple CPU ports
    - ice: block LAN in case of VF to VF offload
    - virtio_net: suppress cpu stall when free_unused_bufs
    - net: enetc: check the index of the SFI rather than the handle
    - net: fec: correct the counting of XDP sent frames
    - perf record: Fix "read LOST count failed" msg with sample read
    - perf build: Support python/perf.so testing
    - perf scripts intel-pt-events.py: Fix IPC output for Python 2
    - perf script: Fix Python support when no libtraceevent
    - perf hist: Improve srcfile sort key performance (really)
    - perf vendor events s390: Remove UTF-8 characters from JSON file
    - perf tests record_offcpu.sh: Fix redirection of stderr to stdin
    - perf ftrace: Make system wide the default target for latency subcommand
    - perf vendor events power9: Remove UTF-8 characters from JSON files
    - perf pmu: zfree() expects a pointer to a pointer to zero it after freeing
      its contents
    - perf map: Delete two variable initialisations before null pointer checks in
      sort__sym_from_cmp()
    - perf cs-etm: Fix timeless decode mode detection
    - crypto: sun8i-ss - Fix a test in sun8i_ss_setup_ivs()
    - crypto: api - Add scaffolding to change completion function signature
    - crypto: engine - Use crypto_request_complete
    - crypto: engine - fix crypto_queue backlog handling
    - perf symbols: Fix return incorrect build_id size in elf_read_build_id()
    - perf tracepoint: Fix memory leak in is_valid_tracepoint()
    - perf stat: Separate bperf from bpf_profiler
    - KVM: x86/mmu: Change tdp_mmu to a read-only parameter
    - KVM: x86/mmu: Move TDP MMU VM init/uninit behind tdp_mmu_enabled
    - KVM: x86/mmu: Replace open coded usage of tdp_mmu_page with
      is_tdp_mmu_page()
    - KVM: x86: Preserve TDP MMU roots until they are explicitly invalidated
    - ksmbd: Implements sess->ksmbd_chann_list as xarray
    - ksmbd: fix racy issue from session setup and logoff
    - ksmbd: block asynchronous requests when making a delay on session setup
    - ksmbd: destroy expired sessions
    - ksmbd: fix racy issue from smb2 close and logoff with multichannel
    - wifi: iwlwifi: mvm: fix potential memory leak
    - cifs: check only tcon status on tcon related functions
    - cifs: avoid potential races when handling multiple dfs tcons
    - netfilter: nf_tables: extended netlink error reporting for netdevice
    - netfilter: nf_tables: rename function to destroy hook list
    - netfilter: nf_tables: hit ENOENT on unexisting chain/flowtable update with
      missing attributes
    - x86/retbleed: Fix return thunk alignment
    - btrfs: fix btrfs_prev_leaf() to not return the same key twice
    - btrfs: zoned: fix wrong use of bitops API in btrfs_ensure_empty_zones
    - btrfs: properly reject clear_cache and v1 cache for block-group-tree
    - btrfs: fix assertion of exclop condition when starting balance
    - btrfs: fix encoded write i_size corruption with no-holes
    - btrfs: don't free qgroup space unless specified
    - btrfs: zero the buffer before marking it dirty in btrfs_redirty_list_add
    - btrfs: make clear_cache mount option to rebuild FST without disabling it
    - btrfs: print-tree: parent bytenr must be aligned to sector size
    - btrfs: fix space cache inconsistency after error loading it from disk
    - btrfs: zoned: zone finish data relocation BG with last IO
    - btrfs: zoned: fix full zone super block reading on ZNS
    - btrfs: fix backref walking not returning all inode refs
    - cifs: fix pcchunk length type in smb2_copychunk_range
    - cifs: release leases for deferred close handles when freezing
    - platform/x86/intel-uncore-freq: Return error on write frequency
    - platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts on the
      Juno Tablet
    - platform/x86: thinkpad_acpi: Fix platform profiles on T490
    - platform/x86: hp-wmi: add micmute to hp_wmi_keymap struct
    - platform/x86: touchscreen_dmi: Add info for the Dexp Ursus KX210i
    - platform/x86: thinkpad_acpi: Add profile force ability
    - inotify: Avoid reporting event with invalid wd
    - smb3: fix problem remounting a share after shutdown
    - SMB3: force unmount was failing to close deferred close files
    - sh: math-emu: fix macro redefined warning
    - sh: mcount.S: fix build error when PRINTK is not enabled
    - sh: init: use OF_EARLY_FLATTREE for early init
    - sh: nmi_debug: fix return value of __setup handler
    - proc_sysctl: update docs for __register_sysctl_table()
    - proc_sysctl: enhance documentation
    - remoteproc: stm32: Call of_node_put() on iteration error
    - remoteproc: st: Call of_node_put() on iteration error
    - remoteproc: imx_dsp_rproc: Call of_node_put() on iteration error
    - remoteproc: imx_rproc: Call of_node_put() on iteration error
    - remoteproc: rcar_rproc: Call of_node_put() on iteration error
    - sysctl: clarify register_sysctl_init() base directory order
    - ARM: dts: aspeed: asrock: Correct firmware flash SPI clocks
    - ARM: dts: exynos: fix WM8960 clock name in Itop Elite
    - ARM: dts: s5pv210: correct MIPI CSIS clock name
    - ARM: dts: aspeed: romed8hm3: Fix GPIO polarity of system-fault LED
    - drm/msm/adreno: fix runtime PM imbalance at gpu load
    - drm/bridge: lt8912b: Fix DSI Video Mode
    - drm/i915/color: Fix typo for Plane CSC indexes
    - drm/msm: fix NULL-deref on snapshot tear down
    - drm/msm: fix NULL-deref on irq uninstall
    - drm/msm: fix drm device leak on bind errors
    - drm/msm: fix vram leak on bind errors
    - drm/msm: fix missing wq allocation error handling
    - drm/msm: fix workqueue leak on bind errors
    - drm/i915/dsi: Use unconditional msleep() instead of intel_dsi_msleep()
    - f2fs: factor out victim_entry usage from general rb_tree use
    - f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
    - f2fs: fix potential corruption when moving a directory
    - irqchip/loongson-pch-pic: Fix pch_pic_acpi_init calling
    - irqchip/loongson-pch-pic: Fix registration of syscore_ops
    - irqchip/loongson-eiointc: Fix returned value on parsing MADT
    - irqchip/loongson-eiointc: Fix incorrect use of acpi_get_vec_parent
    - irqchip/loongson-eiointc: Fix registration of syscore_ops
    - drm/panel: otm8009a: Set backlight parent to panel device
    - drm/amd/display: Add NULL plane_state check for cursor disable logic
    - drm/amd/display: Fix 4to1 MPC black screen with DPP RCO
    - drm/amd/display: filter out invalid bits in pipe_fuses
    - drm/amd/display: fix flickering caused by S/G mode
    - drm/amdgpu: drop redundant sched job cleanup when cs is aborted
    - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini
    - drm/amdgpu: fix an amdgpu_irq_put() issue in gmc_v9_0_hw_fini()
    - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini
    - drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy gfx
      ras
    - drm/amdgpu/jpeg: Remove harvest checking for JPEG3
    - drm/amdgpu: change gfx 11.0.4 external_id range
    - drm/amdgpu: Fix vram recover doesn't work after whole GPU reset (v2)
    - drm/amd/display: Enforce 60us prefetch for 200Mhz DCFCLK modes
    - drm/amd/pm: parse pp_handle under appropriate conditions
    - drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend
    - drm/amd/pm: avoid potential UBSAN issue on legacy asics
    - drm/amd: Load MES microcode during early_init
    - drm/amd: Add a new helper for loading/validating microcode
    - drm/amd: Use `amdgpu_ucode_*` helpers for MES
    - HID: wacom: Set a default resolution for older tablets
    - HID: wacom: insert timestamp to packed Bluetooth (BT) events
    - fs/ntfs3: Refactoring of various minor issues
    - drm/msm/adreno: adreno_gpu: Use suspend() instead of idle() on load error
    - drm/i915/mtl: Add workarounds Wa_14017066071 and Wa_14017654203
    - drm/i915/mtl: Add Wa_14017856879
    - drm/i915: disable sampler indirect state in bindless heap
    - drm/i915/mtl: update scaler source and destination limits for MTL
    - drm/i915: Check pipe source size when using skl+ scalers
    - drm/amd/display: Fix Z8 support configurations
    - drm/amd/display: Add minimum Z8 residency debug option
    - drm/amd/display: Update minimum stutter residency for DCN314 Z8
    - drm/amd/display: Lowering min Z8 residency time
    - drm/amd/display: Update Z8 SR exit/enter latencies
    - drm/amd/display: Change default Z8 watermark values
    - drm: Add missing DP DSC extended capability definitions.
    - drm/dsc: fix drm_edp_dsc_sink_output_bpp() DPCD high byte usage
    - locking/rwsem: Add __always_inline annotation to __down_read_common() and
      inlined callers
    - ext4: fix WARNING in mb_find_extent
    - ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum
    - ext4: fix data races when using cached status extents
    - ext4: avoid deadlock in fs reclaim with page writeback
    - ext4: check iomap type only if ext4_iomap_begin() does not fail
    - ext4: improve error recovery code paths in __ext4_remount()
    - ext4: improve error handling from ext4_dirhash()
    - ext4: fix deadlock when converting an inline directory in nojournal mode
    - ext4: add bounds checking in get_max_inline_xattr_value_size()
    - ext4: bail out of ext4_xattr_ibody_get() fails for any reason
    - ext4: fix lockdep warning when enabling MMP
    - ext4: remove a BUG_ON in ext4_mb_release_group_pa()
    - ext4: fix invalid free tracking in ext4_xattr_move_to_block()
    - drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values
    - x86/amd_nb: Add PCI ID for family 19h model 78h
    - x86: fix clear_user_rep_good() exception handling annotation
    - spi: fsl-spi: Re-organise transfer bits_per_word adaptation
    - spi: fsl-cpm: Use 16 bit mode for large transfers with even size
    - drm/amd/display: Fix hang when skipping modeset
    - Linux 6.2.16
  * CVE-2023-31084 // CVE-2023-31084 was assigned to this bug.
    - media: dvb-core: Fix kernel WARNING for blocking operation in wait_event*()
  * CVE-2023-3776
    - net/sched: cls_fw: Fix improper refcount update leads to use-after-free
  * Packaging resync (LP: #1786013)
    - [Packaging] resync update-dkms-versions helper
    - [Packaging] resync getabis

linux-aws-6.2 (6.2.0-1010.10~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1010.10~22.04.1 -proposed tracker (LP: #2030530)

  [ Ubuntu: 6.2.0-1010.10 ]

  * lunar/linux-aws: 6.2.0-1010.10 -proposed tracker (LP: #2030531)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync update-dkms-versions helper
  * lunar/linux: 6.2.0-31.31 -proposed tracker (LP: #2031146)
  * libgnutls report "trap invalid opcode" when trying to install packages over
    https (LP: #2031093)
    - [Config]: disable CONFIG_GDS_FORCE_MITIGATION
  * lunar/linux: 6.2.0-28.29 -proposed tracker (LP: #2030547)
  * CVE-2022-40982
    - init: Provide arch_cpu_finalize_init()
    - x86/cpu: Switch to arch_cpu_finalize_init()
    - ARM: cpu: Switch to arch_cpu_finalize_init()
    - ia64/cpu: Switch to arch_cpu_finalize_init()
    - m68k/cpu: Switch to arch_cpu_finalize_init()
    - mips/cpu: Switch to arch_cpu_finalize_init()
    - sh/cpu: Switch to arch_cpu_finalize_init()
    - sparc/cpu: Switch to arch_cpu_finalize_init()
    - um/cpu: Switch to arch_cpu_finalize_init()
    - init: Remove check_bugs() leftovers
    - init: Invoke arch_cpu_finalize_init() earlier
    - init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()
    - x86/init: Initialize signal frame size late
    - x86/fpu: Remove cpuinfo argument from init functions
    - x86/fpu: Mark init functions __init
    - x86/fpu: Move FPU initialization into arch_cpu_finalize_init()
    - x86/mem_encrypt: Unbreak the AMD_MEM_ENCRYPT=n build
    - x86/xen: Fix secondary processors' FPU initialization
    - x86/speculation: Add Gather Data Sampling mitigation
    - x86/speculation: Add force option to GDS mitigation
    - x86/speculation: Add Kconfig option for GDS
    - KVM: Add GDS_NO support to KVM
    - Documentation/x86: Fix backwards on/off logic about YMM support
    - [Config]: Enable CONFIG_ARCH_HAS_CPU_FINALIZE_INIT and
      CONFIG_GDS_FORCE_MITIGATION
  * CVE-2023-4015
    - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
      set/chain
    - netfilter: nf_tables: unbind non-anonymous set if rule construction fails
    - netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
  * CVE-2023-3777
    - netfilter: nf_tables: skip bound chain on rule flush
  * CVE-2023-3995
    - netfilter: nf_tables: disallow rule addition to bound chain via
      NFTA_RULE_CHAIN_ID
  * CVE-2023-20593
    - x86/cpu/amd: Move the errata checking functionality up
    - x86/cpu/amd: Add a Zenbleed fix
  * CVE-2023-3776
    - net/sched: cls_fw: Fix improper refcount update leads to use-after-free
  * CVE-2023-4004
    - netfilter: nft_set_pipapo: fix improper element removal
  * CVE-2023-3611
    - net/sched: sch_qfq: refactor parsing of netlink parameters
    - net/sched: sch_qfq: account for stab overhead in qfq_enqueue
  * CVE-2023-3610
    - netfilter: nf_tables: fix chain binding transaction logic
  * CVE-2023-3609
    - net/sched: cls_u32: Fix reference counter leak leading to overflow

linux-aws-6.2 (6.2.0-1009.9~22.04.3) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1009.9~22.04.3 -proposed tracker (LP: #2029292)

  * Packaging resync (LP: #1786013)
    - [Packaging] resync update-dkms-versions helper
    - [Packaging] update variants

linux-aws-6.2 (6.2.0-1009.9~22.04.2) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1009.9~22.04.2 -proposed tracker (LP: #2026472)

  * Packaging resync (LP: #1786013)
    - debian/dkms-versions -- update from kernel-versions (main/2023.07.10)

linux-aws-6.2 (6.2.0-1009.9~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1009.9~22.04.1 -proposed tracker (LP: #2026472)

  [ Ubuntu: 6.2.0-1009.9 ]

  * lunar/linux-aws: 6.2.0-1009.9 -proposed tracker (LP: #2026473)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync getabis
  * lunar/linux: 6.2.0-27.28 -proposed tracker (LP: #2026488)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync update-dkms-versions helper
    - [Packaging] update annotations scripts
  * CVE-2023-2640 // CVE-2023-32629
    - Revert "UBUNTU: SAUCE: overlayfs: handle idmapped mounts in
      ovl_do_(set|remove)xattr"
    - Revert "UBUNTU: SAUCE: overlayfs: Skip permission checking for
      trusted.overlayfs.* xattrs"
    - SAUCE: overlayfs: default to userxattr when mounted from non initial user
      namespace
  * UNII-4 5.9G Band support request on 8852BE (LP: #2023952)
    - wifi: rtw89: 8851b: add 8851B basic chip_info
    - wifi: rtw89: introduce realtek ACPI DSM method
    - wifi: rtw89: regd: judge UNII-4 according to BIOS and chip
    - wifi: rtw89: support U-NII-4 channels on 5GHz band
  * Disable hv-kvp-daemon if /dev/vmbus/hv_kvp is not present (LP: #2024900)
    - [Packaging] disable hv-kvp-daemon if needed
  * A deadlock issue in scsi rescan task while resuming from S3 (LP: #2018566)
    - ata: libata-scsi: Avoid deadlock on rescan after device resume
  * [SRU] Intel Sapphire Rapids HBM support needs CONFIG_NUMA_EMU (LP: #2008745)
    - [Config] Intel Sapphire Rapids HBM support needs CONFIG_NUMA_EMU
  * Lunar update: v6.2.15 upstream stable release (LP: #2025067)
    - ASOC: Intel: sof_sdw: add quirk for Intel 'Rooks County' NUC M15
    - ASoC: Intel: soc-acpi: add table for Intel 'Rooks County' NUC M15
    - ASoC: soc-pcm: fix hw->formats cleared by soc_pcm_hw_init() for dpcm
    - x86/hyperv: Block root partition functionality in a Confidential VM
    - ASoC: amd: yc: Add DMI entries to support Victus by HP Laptop 16-e1xxx
      (8A22)
    - iio: adc: palmas_gpadc: fix NULL dereference on rmmod
    - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer Iconia One 7 B1-750
    - ASoC: da7213.c: add missing pm_runtime_disable()
    - net: wwan: t7xx: do not compile with -Werror
    - wifi: mt76: mt7921: Fix use-after-free in fw features query.
    - selftests mount: Fix mount_setattr_test builds failed
    - scsi: mpi3mr: Handle soft reset in progress fault code (0xF002)
    - net: sfp: add quirk enabling 2500Base-x for HG MXPD-483II
    - platform/x86: thinkpad_acpi: Add missing T14s Gen1 type to s2idle quirk list
    - wifi: ath11k: reduce the MHI timeout to 20s
    - tracing: Error if a trace event has an array for a __field()
    - asm-generic/io.h: suppress endianness warnings for readq() and writeq()
    - asm-generic/io.h: suppress endianness warnings for relaxed accessors
    - x86/cpu: Add model number for Intel Arrow Lake processor
    - wifi: mt76: mt7921e: Set memory space enable in PCI_COMMAND if unset
    - ASoC: amd: ps: update the acp clock source.
    - arm64: Always load shadow stack pointer directly from the task struct
    - arm64: Stash shadow stack pointer in the task struct on interrupt
    - powerpc/boot: Fix boot wrapper code generation with CONFIG_POWER10_CPU
    - PCI: kirin: Select REGMAP_MMIO
    - PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock
    - PCI: qcom: Fix the incorrect register usage in v2.7.0 config
    - bus: mhi: host: pci_generic: Revert "Add a secondary AT port to Telit FN990"
    - phy: qcom-qmp-pcie: sc8180x PCIe PHY has 2 lanes
    - IMA: allow/fix UML builds
    - wifi: rtw88: usb: fix priority queue to endpoint mapping
    - usb: gadget: udc: core: Invoke usb_gadget_connect only when started
    - usb: gadget: udc: core: Prevent redundant calls to pullup
    - usb: dwc3: gadget: Stall and restart EP0 if host is unresponsive
    - USB: dwc3: fix runtime pm imbalance on probe errors
    - USB: dwc3: fix runtime pm imbalance on unbind
    - hwmon: (k10temp) Check range scale when CUR_TEMP register is read-write
    - hwmon: (adt7475) Use device_property APIs when configuring polarity
    - tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
    - posix-cpu-timers: Implement the missing timer_wait_running callback
    - media: ov8856: Do not check for for module version
    - drm/vmwgfx: Fix Legacy Display Unit atomic drm support
    - blk-stat: fix QUEUE_FLAG_STATS clear
    - blk-mq: release crypto keyslot before reporting I/O complete
    - blk-crypto: make blk_crypto_evict_key() return void
    - blk-crypto: make blk_crypto_evict_key() more robust
    - staging: iio: resolver: ads1210: fix config mode
    - tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH
    - xhci: fix debugfs register accesses while suspended
    - serial: fix TIOCSRS485 locking
    - serial: 8250: Fix serial8250_tx_empty() race with DMA Tx
    - serial: max310x: fix IO data corruption in batched operations
    - tick/nohz: Fix cpu_is_hotpluggable() by checking with nohz subsystem
    - fs: fix sysctls.c built
    - MIPS: fw: Allow firmware to pass a empty env
    - ipmi:ssif: Add send_retries increment
    - ipmi: fix SSIF not responding under certain cond.
    - iio: addac: stx104: Fix race condition when converting analog-to-digital
    - iio: addac: stx104: Fix race condition for stx104_write_raw()
    - kheaders: Use array declaration instead of char
    - wifi: mt76: add missing locking to protect against concurrent rx/status
      calls
    - wifi: rtw89: correct 5 MHz mask setting
    - pwm: meson: Fix axg ao mux parents
    - pwm: meson: Fix g12a ao clk81 name
    - soundwire: qcom: correct setting ignore bit on v1.5.1
    - pinctrl: qcom: lpass-lpi: set output value before enabling output
    - ring-buffer: Ensure proper resetting of atomic variables in
      ring_buffer_reset_online_cpus
    - ring-buffer: Sync IRQ works before buffer destruction
    - crypto: api - Demote BUG_ON() in crypto_unregister_alg() to a WARN_ON()
    - crypto: safexcel - Cleanup ring IRQ workqueues on load failure
    - crypto: arm64/aes-neonbs - fix crash with CFI enabled
    - crypto: testmgr - fix RNG performance in fuzz tests
    - crypto: ccp - Don't initialize CCP for PSP 0x1649
    - rcu: Avoid stack overflow due to __rcu_irq_enter_check_tick() being kprobe-
      ed
    - reiserfs: Add security prefix to xattr name in reiserfs_security_write()
    - cpufreq: qcom-cpufreq-hw: fix double IO unmap and resource release on exit
    - KVM: x86/pmu: Disallow legacy LBRs if architectural LBRs are available
    - KVM: nVMX: Emulate NOPs in L2, and PAUSE if it's not intercepted
    - KVM: arm64: Avoid vcpu->mutex v. kvm->lock inversion in CPU_ON
    - KVM: arm64: Avoid lock inversion when setting the VM register width
    - KVM: arm64: Use config_lock to protect data ordered against KVM_RUN
    - KVM: arm64: Use config_lock to protect vgic state
    - KVM: arm64: vgic: Don't acquire its_lock before config_lock
    - relayfs: fix out-of-bounds access in relay_file_read
    - drm/amd/display: Remove stutter only configurations
    - drm/amd/display: limit timing for single dimm memory
    - drm/amd/display: fix PSR-SU/DSC interoperability support
    - drm/amd/display: fix a divided-by-zero error
    - KVM: RISC-V: Retry fault if vma_lookup() results become invalid
    - ksmbd: fix racy issue under cocurrent smb2 tree disconnect
    - ksmbd: call rcu_barrier() in ksmbd_server_exit()
    - ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
    - ksmbd: fix memleak in session setup
    - ksmbd: not allow guest user on multichannel
    - ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
    - ACPI: video: Remove acpi_backlight=video quirk for Lenovo ThinkPad W530
    - i2c: omap: Fix standard mode false ACK readings
    - riscv: mm: remove redundant parameter of create_fdt_early_page_table
    - tracing: Fix permissions for the buffer_percent file
    - drm/amd/pm: re-enable the gfx imu when smu resume
    - iommu/amd: Fix "Guest Virtual APIC Table Root Pointer" configuration in IRTE
    - RISC-V: Align SBI probe implementation with spec
    - Revert "ubifs: dirty_cow_znode: Fix memleak in error handling path"
    - ubifs: Fix memleak when insert_old_idx() failed
    - ubi: Fix return value overwrite issue in try_write_vid_and_data()
    - ubifs: Free memory for tmpfile name
    - ubifs: Fix memory leak in do_rename
    - ceph: fix potential use-after-free bug when trimming caps
    - fs: dlm: fix DLM_IFL_CB_PENDING gets overwritten
    - xfs: don't consider future format versions valid
    - cxl/hdm: Fail upon detecting 0-sized decoders
    - bus: mhi: host: Remove duplicate ee check for syserr
    - bus: mhi: host: Use mhi_tryset_pm_state() for setting fw error state
    - bus: mhi: host: Range check CHDBOFF and ERDBOFF
    - ASoC: dt-bindings: qcom,lpass-rx-macro: correct minItems for clocks
    - kunit: fix bug in the order of lines in debugfs logs
    - rcu: Fix missing TICK_DEP_MASK_RCU_EXP dependency check
    - selftests/resctrl: Return NULL if malloc_and_init_memory() did not alloc mem
    - selftests/resctrl: Move ->setup() call outside of test specific branches
    - selftests/resctrl: Allow ->setup() to return errors
    - selftests/resctrl: Check for return value after write_schemata()
    - selinux: fix Makefile dependencies of flask.h
    - selinux: ensure av_permissions.h is built when needed
    - tpm, tpm_tis: Do not skip reset of original interrupt vector
    - tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register
    - tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed
    - tpm, tpm_tis: Claim locality before writing interrupt registers
    - tpm, tpm: Implement usage counter for locality
    - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume
    - erofs: stop parsing non-compact HEAD index if clusterofs is invalid
    - erofs: initialize packed inode after root inode is assigned
    - erofs: fix potential overflow calculating xattr_isize
    - drm/rockchip: Drop unbalanced obj unref
    - drm/i915/dg2: Drop one PCI ID
    - drm/vgem: add missing mutex_destroy
    - drm/probe-helper: Cancel previous job before starting new one
    - drm/amdgpu: register a vga_switcheroo client for MacBooks with apple-gmux
    - tools/x86/kcpuid: Fix avx512bw and avx512lvl fields in Fn00000007
    - soc: ti: k3-ringacc: Add try_module_get() to k3_dmaring_request_dual_ring()
    - soc: ti: pm33xx: Fix refcount leak in am33xx_pm_probe
    - arm64: dts: renesas: r8a77990: Remove bogus voltages from OPP table
    - arm64: dts: renesas: r8a774c0: Remove bogus voltages from OPP table
    - arm64: dts: renesas: r9a07g044: Update IRQ numbers for SSI channels
    - arm64: dts: renesas: r9a07g054: Update IRQ numbers for SSI channels
    - arm64: dts: renesas: r9a07g043: Update IRQ numbers for SSI channels
    - drm/mediatek: dp: Only trigger DRM HPD events if bridge is attached
    - drm/msm/disp/dpu: check for crtc enable rather than crtc active to release
      shared resources
    - EDAC/skx: Fix overflows on the DRAM row address mapping arrays
    - ARM: dts: qcom-apq8064: Fix opp table child name
    - regulator: core: Shorten off-on-delay-us for always-on/boot-on by time since
      booted
    - arm64: dts: ti: k3-am62-main: Fix GPIO numbers in DT
    - arm64: dts: ti: k3-am62a7-sk: Fix DDR size to full 4GB
    - arm64: dts: ti: k3-j721e-main: Remove ti,strobe-sel property
    - arm64: dts: broadcom: bcmbca: bcm4908: fix NAND interrupt name
    - arm64: dts: broadcom: bcmbca: bcm4908: fix LED nodenames
    - arm64: dts: broadcom: bcmbca: bcm4908: fix procmon nodename
    - arm64: dts: qcom: msm8998: Fix stm-stimulus-base reg name
    - arm64: dts: qcom: sc7280: fix EUD port properties
    - arm64: dts: qcom: sdm845: correct dynamic power coefficients
    - arm64: dts: qcom: sdm845: Fix the PCI I/O port range
    - arm64: dts: qcom: msm8998: Fix the PCI I/O port range
    - arm64: dts: qcom: sc7280: Fix the PCI I/O port range
    - arm64: dts: qcom: ipq8074: Fix the PCI I/O port range
    - arm64: dts: qcom: ipq6018: Add/remove some newlines
    - arm64: dts: qcom: ipq6018: Fix the PCI I/O port range
    - arm64: dts: qcom: msm8996: Fix the PCI I/O port range
    - arm64: dts: qcom: sm8250: Fix the PCI I/O port range
    - arm64: dts: qcom: sc8280xp: Fix the PCI I/O port range
    - arm64: dts: qcom: sm8150: Fix the PCI I/O port range
    - arm64: dts: qcom: sm8450: Fix the PCI I/O port range
    - ARM: dts: qcom: ipq4019: Fix the PCI I/O port range
    - ARM: dts: qcom: ipq8064: Fix the PCI I/O port range
    - arm64: dts: qcom: msm8976: Add and provide xo clk to rpmcc
    - ARM: dts: qcom: sdx55: Fix the unit address of PCIe EP node
    - x86/MCE/AMD: Use an u64 for bank_map
    - media: bdisp: Add missing check for create_workqueue
    - media: platform: mtk-mdp3: Add missing check and free for ida_alloc
    - media: amphion: decoder implement display delay enable
    - media: av7110: prevent underflow in write_ts_to_decoder()
    - firmware: qcom_scm: Clear download bit during reboot
    - drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and adv7535
    - media: max9286: Free control handler
    - accel: Link to compute accelerator subsystem intro
    - arm64: dts: ti: k3-am625: Correct L2 cache size to 512KB
    - arm64: dts: ti: k3-am62a7: Correct L2 cache size to 512KB
    - drm/msm/adreno: drop bogus pm_runtime_set_active()
    - drm: msm: adreno: Disable preemption on Adreno 510
    - virt/coco/sev-guest: Double-buffer messages
    - arm64: dts: qcom: sm8350-microsoft-surface: fix USB dual-role mode property
    - drm/amd/display/dc/dce60/Makefile: Fix previous attempt to silence known
      override-init warnings
    - ACPI: processor: Fix evaluating _PDC method when running as Xen dom0
    - mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data
    - arm64: dts: qcom: sm8450: fix pcie1 gpios properties name
    - drm: rcar-du: Fix a NULL vs IS_ERR() bug
    - ARM: dts: gta04: fix excess dma channel usage
    - firmware: arm_scmi: Fix xfers allocation on Rx channel
    - perf/arm-cmn: Move overlapping wp_combine field
    - perf/amlogic: Fix config1/config2 parsing issue
    - ARM: dts: stm32: fix spi1 pin assignment on stm32mp15
    - arm64: dts: apple: t8103: Disable unused PCIe ports
    - cpufreq: mediatek: fix passing zero to 'PTR_ERR'
    - cpufreq: mediatek: fix KP caused by handler usage after
      regulator_put/clk_put
    - cpufreq: mediatek: raise proc/sram max voltage for MT8516
    - cpufreq: mediatek: Raise proc and sram max voltage for MT7622/7623
    - cpufreq: qcom-cpufreq-hw: Revert adding cpufreq qos
    - arm64: dts: mediatek: mt8192-asurada: Fix voltage constraint for Vgpu
    - ACPI: VIOT: Initialize the correct IOMMU fwspec
    - drm/lima/lima_drv: Add missing unwind goto in lima_pdev_probe()
    - drm/mediatek: dp: Change the aux retries times when receiving AUX_DEFER
    - mailbox: mpfs: switch to txdone_poll
    - soc: bcm: brcmstb: biuctrl: fix of_iomap leak
    - soc: renesas: renesas-soc: Release 'chipid' from ioremap()
    - gpu: host1x: Fix potential double free if IOMMU is disabled
    - gpu: host1x: Fix memory leak of device names
    - arm64: dts: qcom: sc7280-herobrine-villager: correct trackpad supply
    - arm64: dts: qcom: sc7180-trogdor-lazor: correct trackpad supply
    - arm64: dts: qcom: sc7180-trogdor-pazquel: correct trackpad supply
    - arm64: dts: qcom: msm8998-oneplus-cheeseburger: revert "fix backlight pin
      function"
    - arm64: dts: qcom: msm8994-kitakami: drop unit address from PMI8994 regulator
    - arm64: dts: qcom: msm8994-msft-lumia-octagon: drop unit address from PMI8994
      regulator
    - arm64: dts: qcom: apq8096-db820c: drop unit address from PMI8994 regulator
    - drm/ttm/pool: Fix ttm_pool_alloc error path
    - regulator: core: Consistently set mutex_owner when using
      ww_mutex_lock_slow()
    - regulator: core: Avoid lockdep reports when resolving supplies
    - x86/apic: Fix atomic update of offset in reserve_eilvt_offset()
    - soc: qcom: rpmh-rsc: Support RSC v3 minor versions
    - arm64: dts: qcom: msm8994-angler: Fix cont_splash_mem mapping
    - arm64: dts: qcom: msm8994-angler: removed clash with smem_region
    - arm64: dts: sc7180: Rename qspi data12 as data23
    - arm64: dts: sc7280: Rename qspi data12 as data23
    - arm64: dts: sdm845: Rename qspi data12 as data23
    - media: mtk-jpeg: Fixes jpeghw multi-core judgement
    - media: mtk-jpeg: Fixes jpeg enc&dec worker sw flow
    - media: mediatek: vcodec: Use 4K frame size when supported by stateful
      decoder
    - media: mediatek: vcodec: Make MM21 the default capture format
    - media: mediatek: vcodec: Force capture queue format to MM21
    - media: mediatek: vcodec: add params to record lat and core lat_buf count
    - media: mediatek: vcodec: using each instance lat_buf count replace core
      ready list
    - media: mediatek: vcodec: move lat_buf to the top of core list
    - media: mediatek: vcodec: add core decode done event
    - media: mediatek: vcodec: remove unused lat_buf
    - media: mediatek: vcodec: making sure queue_work successfully
    - media: mediatek: vcodec: change lat thread decode error condition
    - media: cedrus: fix use after free bug in cedrus_remove due to race condition
    - media: rkvdec: fix use after free bug in rkvdec_remove
    - platform/x86/amd/pmf: Move out of BIOS SMN pair for driver probe
    - platform/x86/amd: pmc: Don't try to read SMU version on Picasso
    - platform/x86/amd: pmc: Hide SMU version and program attributes for Picasso
    - platform/x86/amd: pmc: Don't dump data after resume from s0i3 on picasso
    - platform/x86/amd: pmc: Move idlemask check into `amd_pmc_idlemask_read`
    - platform/x86/amd: pmc: Utilize SMN index 0 for driver probe
    - platform/x86/amd: pmc: Move out of BIOS SMN pair for STB init
    - media: dm1105: Fix use after free bug in dm1105_remove due to race condition
    - media: saa7134: fix use after free bug in saa7134_finidev due to race
      condition
    - media: platform: mtk-mdp3: fix potential frame size overflow in
      mdp_try_fmt_mplane()
    - media: vsp1: Replace vb2_is_streaming() with vb2_start_streaming_called()
    - platform: Provide a remove callback that returns no value
    - media: rcar_fdp1: Convert to platform remove callback returning void
    - media: rcar_fdp1: Fix refcount leak in probe and remove function
    - media: v4l: async: Return async sub-devices to subnotifier list
    - media: hi846: Fix memleak in hi846_init_controls()
    - drm/amd/display: Fix potential null dereference
    - media: rc: gpio-ir-recv: Fix support for wake-up
    - media: venus: dec: Fix handling of the start cmd
    - media: venus: dec: Fix capture formats enumeration order
    - regulator: stm32-pwr: fix of_iomap leak
    - x86/ioapic: Don't return 0 from arch_dynirq_lower_bound()
    - arm64: kgdb: Set PSTATE.SS to 1 to re-enable single-step
    - perf/arm-cmn: Fix port detection for CMN-700
    - media: mediatek: vcodec: fix decoder disable pm crash
    - media: mediatek: vcodec: add remove function for decoder platform driver
    - debugobject: Prevent init race with static objects
    - drm/i915: Make intel_get_crtc_new_encoder() less oopsy
    - tick/common: Align tick period with the HZ tick.
    - ACPI: bus: Ensure that notify handlers are not running after removal
    - cpufreq: use correct unit when verify cur freq
    - rpmsg: glink: Propagate TX failures in intentless mode as well
    - hwmon: (pmbus/fsp-3y) Fix functionality bitmask in FSP-3Y YM-2151E
    - platform/chrome: cros_typec_switch: Add missing fwnode_handle_put()
    - wifi: ath6kl: minor fix for allocation size
    - wifi: ath9k: hif_usb: fix memory leak of remain_skbs
    - wifi: ath11k: Use platform_get_irq() to get the interrupt
    - wifi: ath5k: Use platform_get_irq() to get the interrupt
    - wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list()
    - wifi: ath11k: fix SAC bug on peer addition with sta band migration
    - wifi: rtl8xxxu: Remove always true condition in rtl8xxxu_print_chipinfo
    - wifi: brcmfmac: support CQM RSSI notification with older firmware
    - wifi: ath6kl: reduce WARN to dev_dbg() in callback
    - tools: bpftool: Remove invalid \' json escape
    - wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser()
    - wifi: rtw88: mac: Return the original error from rtw_mac_power_switch()
    - bpf: take into account liveness when propagating precision
    - bpf: fix precision propagation verbose logging
    - crypto: qat - fix concurrency issue when device state changes
    - scm: fix MSG_CTRUNC setting condition for SO_PASSSEC
    - wifi: ath11k: fix deinitialization of firmware resources
    - selftests/bpf: Fix a fd leak in an error path in network_helpers.c
    - bpf: Remove misleading spec_v1 check on var-offset stack read
    - net: pcs: xpcs: remove double-read of link state when using AN
    - vlan: partially enable SIOCSHWTSTAMP in container
    - net/packet: annotate accesses to po->xmit
    - net/packet: convert po->origdev to an atomic flag
    - net/packet: convert po->auxdata to an atomic flag
    - libbpf: Fix ld_imm64 copy logic for ksym in light skeleton.
    - net: dsa: qca8k: remove assignment of an_enabled in pcs_get_state()
    - netfilter: keep conntrack reference until IPsecv6 policy checks are done
    - bpf: return long from bpf_map_ops funcs
    - bpf: Fix __reg_bound_offset 64->32 var_off subreg propagation
    - scsi: target: Move sess cmd counter to new struct
    - scsi: target: Move cmd counter allocation
    - scsi: target: Pass in cmd counter to use during cmd setup
    - scsi: target: iscsit: isert: Alloc per conn cmd counter
    - scsi: target: iscsit: Stop/wait on cmds during conn close
    - scsi: target: Fix multiple LUN_RESET handling
    - scsi: target: iscsit: Fix TAS handling during conn cleanup
    - scsi: megaraid: Fix mega_cmd_done() CMDID_INT_CMDS
    - net: sunhme: Fix uninitialized return code
    - f2fs: handle dqget error in f2fs_transfer_project_quota()
    - f2fs: fix uninitialized skipped_gc_rwsem
    - f2fs: apply zone capacity to all zone type
    - f2fs: compress: fix to call f2fs_wait_on_page_writeback() in
      f2fs_write_raw_pages()
    - f2fs: fix scheduling while atomic in decompression path
    - crypto: caam - Clear some memory in instantiate_rng
    - crypto: sa2ul - Select CRYPTO_DES
    - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg()
    - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg()
    - scsi: hisi_sas: Handle NCQ error when IPTT is valid
    - wifi: rt2x00: Fix memory leak when handling surveys
    - bpf: rename list_head -> graph_root in field info types
    - bpf: Add __bpf_kfunc tag for marking kernel functions as kfuncs
    - bpf: Migrate release_on_unlock logic to non-owning ref semantics
    - bpf: Add basic bpf_rb_{root,node} support
    - bpf: Add bpf_rbtree_{add,remove,first} kfuncs
    - bpf: Add support for bpf_rb_root and bpf_rb_node in kfunc args
    - bpf: Add callback validation to kfunc verifier logic
    - bpf: factor out fetching basic kfunc metadata
    - bpf: Fix struct_meta lookup for bpf_obj_free_fields kfunc call
    - f2fs: fix iostat lock protection
    - net: qrtr: correct types of trace event parameters
    - selftests: xsk: Use correct UMEM size in testapp_invalid_desc
    - selftests: xsk: Disable IPv6 on VETH1
    - selftests: xsk: Deflakify STATS_RX_DROPPED test
    - selftests/bpf: Wait for receive in cg_storage_multi test
    - bpftool: Fix bug for long instructions in program CFG dumps
    - crypto: drbg - Only fail when jent is unavailable in FIPS mode
    - xsk: Fix unaligned descriptor validation
    - f2fs: fix to avoid use-after-free for cached IPU bio
    - wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table
    - bpf/btf: Fix is_int_ptr()
    - scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()
    - net: ethernet: stmmac: dwmac-rk: rework optional clock handling
    - net: ethernet: stmmac: dwmac-rk: fix optional phy regulator handling
    - wifi: ath11k: fix writing to unintended memory region
    - bpf, sockmap: fix deadlocks in the sockhash and sockmap
    - nvmet: fix error handling in nvmet_execute_identify_cns_cs_ns()
    - nvmet: fix Identify Namespace handling
    - nvmet: fix Identify Controller handling
    - nvmet: fix Identify Active Namespace ID list handling
    - nvmet: fix I/O Command Set specific Identify Controller
    - nvme: fix async event trace event
    - nvme-fcloop: fix "inconsistent {IN-HARDIRQ-W} -> {HARDIRQ-ON-W} usage"
    - selftests/bpf: Use read_perf_max_sample_freq() in perf_event_stackmap
    - selftests/bpf: Fix leaked bpf_link in get_stackid_cannot_attach
    - blk-mq: don't plug for head insertions in blk_execute_rq_nowait
    - wifi: iwlwifi: debug: fix crash in __iwl_err()
    - wifi: iwlwifi: mvm: fix A-MSDU checks
    - wifi: iwlwifi: trans: don't trigger d3 interrupt twice
    - wifi: iwlwifi: mvm: don't set CHECKSUM_COMPLETE for unsupported protocols
    - bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
    - f2fs: fix to check return value of f2fs_do_truncate_blocks()
    - f2fs: fix to check return value of inc_valid_block_count()
    - md/raid10: fix task hung in raid10d
    - md/raid10: fix leak of 'r10bio->remaining' for recovery
    - md/raid10: fix memleak for 'conf->bio_split'
    - md/raid10: fix memleak of md thread
    - md/raid10: don't call bio_start_io_acct twice for bio which experienced read
      error
    - wifi: iwlwifi: mvm: don't drop unencrypted MCAST frames
    - wifi: iwlwifi: yoyo: skip dump correctly on hw error
    - wifi: iwlwifi: yoyo: Fix possible division by zero
    - wifi: iwlwifi: mvm: initialize seq variable
    - wifi: iwlwifi: fw: move memset before early return
    - jdb2: Don't refuse invalidation of already invalidated buffers
    - io_uring/rsrc: use nospec'ed indexes
    - wifi: iwlwifi: make the loop for card preparation effective
    - wifi: mt76: remove redundent MCU_UNI_CMD_* definitions
    - wifi: mt76: mt7921: fix wrong command to set STA channel
    - wifi: mt76: mt7921: fix PCI DMA hang after reboot
    - wifi: mt76: mt7915: unlock on error in mt7915_thermal_temp_store()
    - wifi: mt76: mt7996: fix radiotap bitfield
    - wifi: mt76: mt7915: expose device tree match table
    - wifi: mt76: mt7915: add error message in
      mt7915_thermal_set_cur_throttle_state()
    - wifi: mt76: mt7915: rework init flow in mt7915_thermal_init()
    - wifi: mt76: handle failure of vzalloc in mt7615_coredump_work
    - wifi: mt76: mt7996: let non-bufferable MMPDUs use correct hw queue
    - wifi: mt76: mt7996: fix pointer calculation in ie countdown event
    - wifi: mt76: mt7996: fix eeprom tx path bitfields
    - wifi: mt76: add flexible polling wait-interval support
    - wifi: mt76: mt7921e: fix probe timeout after reboot
    - wifi: mt76: fix 6GHz high channel not be scanned
    - mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
    - wifi: mt76: mt7921: fix missing unwind goto in `mt7921u_probe`
    - wifi: mt76: mt7921e: improve reliability of dma reset
    - wifi: mt76: mt7921e: stop chip reset worker in unregister hook
    - wifi: mt76: connac: fix txd multicast rate setting
    - wifi: iwlwifi: mvm: check firmware response size
    - netfilter: conntrack: restore IPS_CONFIRMED out of
      nf_conntrack_hash_check_insert()
    - wifi: mt76: mt7996: rely on mt76_connac_txp_common structure
    - wifi: mt76: mt7996: fill txd by host driver
    - netfilter: conntrack: fix wrong ct->timeout value
    - wifi: iwlwifi: fw: fix memory leak in debugfs
    - ixgbe: Allow flow hash to be set via ethtool
    - ixgbe: Enable setting RSS table to default values
    - net/mlx5e: Don't clone flow post action attributes second time
    - net/mlx5: E-switch, Create per vport table based on devlink encap mode
    - net/mlx5: E-switch, Don't destroy indirect table in split rule
    - net/mlx5e: Fix error flow in representor failing to add vport rx rule
    - net/mlx5: Remove "recovery" arg from mlx5_load_one() function
    - net/mlx5: Suspend auxiliary devices only in case of PCI device suspend
    - Revert "net/mlx5: Remove "recovery" arg from mlx5_load_one() function"
    - net/mlx5: Use recovery timeout on sync reset flow
    - net/mlx5e: Nullify table pointer when failing to create
    - Revert "net/mlx5e: Don't use termination table when redundant"
    - net: stmmac:fix system hang when setting up tag_8021q VLAN for DSA ports
    - bpf: Fix race between btf_put and btf_idr walk.
    - bpf: Don't EFAULT for getsockopt with optval=NULL
    - netfilter: nf_tables: don't write table validation state without mutex
    - net: dpaa: Fix uninitialized variable in dpaa_stop()
    - net/sched: sch_fq: fix integer overflow of "credit"
    - ipv4: Fix potential uninit variable access bug in __ip_make_skb()
    - rxrpc: Fix error when reading rxrpc tokens
    - Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to
      unfinished work"
    - netlink: Use copy_to_user() for optval in netlink_getsockopt().
    - net: amd: Fix link leak when verifying config failed
    - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp.
    - ipmi: ASPEED_BT_IPMI_BMC: select REGMAP_MMIO instead of depending on it
    - ASoC: cs35l41: Only disable internal boost
    - drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
    - drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler()
    - pstore: Revert pmsg_lock back to a normal mutex
    - usb: host: xhci-rcar: remove leftover quirk handling
    - usb: dwc3: gadget: Change condition for processing suspend event
    - serial: stm32: Re-assert RTS/DE GPIO in RS485 mode only if more data are
      transmitted
    - fpga: bridge: fix kernel-doc parameter description
    - iommufd/selftest: Catch overflow of uptr and length
    - iio: light: max44009: add missing OF device matching
    - serial: 8250_bcm7271: Fix arbitration handling
    - spi: atmel-quadspi: Don't leak clk enable count in pm resume
    - spi: atmel-quadspi: Free resources even if runtime resume failed in
      .remove()
    - spi: imx: Don't skip cleanup in remove's error path
    - interconnect: qcom: drop obsolete OSM_L3/EPSS defines
    - interconnect: qcom: osm-l3: drop unuserd header inclusion
    - spi: f_ospi: Add missing spi_mem_default_supports_op() helper
    - module/decompress: Never use kunmap() for local un-mappings
    - usb: gadget: udc: renesas_usb3: Fix use after free bug in
      renesas_usb3_remove due to race condition
    - ASoC: soc-compress: Inherit atomicity from DAI link for Compress FE
    - PCI: imx6: Install the fault handler only on compatible match
    - ASoC: es8316: Handle optional IRQ assignment
    - linux/vt_buffer.h: allow either builtin or modular for macros
    - spi: qup: Don't skip cleanup in remove's error path
    - interconnect: qcom: rpm: drop bogus pm domain attach
    - spi: mchp-pci1xxxx: Fix length of SPI transactions not set properly in
      driver
    - spi: mchp-pci1xxxx: Fix SPI transactions not working after suspend and
      resume
    - spi: fsl-spi: Fix CPM/QE mode Litte Endian
    - vmci_host: fix a race condition in vmci_host_poll() causing GPF
    - of: Fix modalias string generation
    - PCI/EDR: Clear Device Status after EDR error recovery
    - ia64: mm/contig: fix section mismatch warning/error
    - ia64: salinfo: placate defined-but-not-used warning
    - scripts/gdb: bail early if there are no clocks
    - scripts/gdb: bail early if there are no generic PD
    - HID: amd_sfh: Correct the structure fields
    - HID: amd_sfh: Correct the sensor enable and disable command
    - HID: amd_sfh: Fix illuminance value
    - HID: amd_sfh: Add support for shutdown operation
    - HID: amd_sfh: Correct the stop all command
    - HID: amd_sfh: Increase sensor command timeout for SFH1.1
    - HID: amd_sfh: Handle "no sensors" enabled for SFH1.1
    - cacheinfo: Check sib_leaf in cache_leaves_are_shared()
    - coresight: etm_pmu: Set the module field
    - drm/panel: novatek-nt35950: Improve error handling
    - ASoC: fsl_mqs: move of_node_put() to the correct location
    - PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
    - drm/panel: novatek-nt35950: Only unregister DSI1 if it exists
    - spi: cadence-quadspi: fix suspend-resume implementations
    - i2c: cadence: cdns_i2c_master_xfer(): Fix runtime PM leak on error path
    - i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path
    - scripts/gdb: raise error with reduced debugging information
    - uapi/linux/const.h: prefer ISO-friendly __typeof__
    - sh: sq: Fix incorrect element size for allocating bitmap buffer
    - usb: gadget: tegra-xudc: Fix crash in vbus_draw
    - usb: chipidea: fix missing goto in `ci_hdrc_probe`
    - usb: mtu3: fix kernel panic at qmu transfer done irq handler
    - firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
    - tty: serial: fsl_lpuart: adjust buffer length to the intended size
    - serial: 8250: Add missing wakeup event reporting
    - spi: cadence-quadspi: use macro DEFINE_SIMPLE_DEV_PM_OPS
    - staging: rtl8192e: Fix W_DISABLE# does not work after stop/start
    - spmi: Add a check for remove callback when removing a SPMI driver
    - virtio_ring: don't update event idx on get_buf
    - fbdev: mmp: Fix deferred clk handling in mmphw_probe()
    - selftests/powerpc/pmu: Fix sample field check in the
      mmcra_thresh_marked_sample_test
    - macintosh/windfarm_smu_sat: Add missing of_node_put()
    - powerpc/perf: Properly detect mpc7450 family
    - powerpc/mpc512x: fix resource printk format warning
    - powerpc/wii: fix resource printk format warnings
    - powerpc/sysdev/tsi108: fix resource printk format warnings
    - macintosh: via-pmu-led: requires ATA to be set
    - powerpc/rtas: use memmove for potentially overlapping buffer copy
    - sched/fair: Fix inaccurate tally of ttwu_move_affine
    - perf/core: Fix hardlockup failure caused by perf throttle
    - Revert "objtool: Support addition to set CFA base"
    - riscv: Fix ptdump when KASAN is enabled
    - sched/rt: Fix bad task migration for rt tasks
    - rv: Fix addition on an uninitialized variable 'run'
    - tracing/user_events: Ensure write index cannot be negative
    - clk: at91: clk-sam9x60-pll: fix return value check
    - IB/hifi1: add a null check of kzalloc_node in hfi1_ipoib_txreq_init
    - RDMA/siw: Fix potential page_array out of range access
    - clk: mediatek: mt2712: Add error handling to clk_mt2712_apmixed_probe()
    - clk: mediatek: Consistently use GATE_MTK() macro
    - clk: mediatek: mt7622: Properly use CLK_IS_CRITICAL flag
    - clk: mediatek: mt8135: Properly use CLK_IS_CRITICAL flag
    - RDMA/rdmavt: Delete unnecessary NULL check
    - clk: mediatek: clk-pllfh: fix missing of_node_put() in fhctl_parse_dt()
    - clk: qcom: gcc-qcm2290: Fix up gcc_sdcc2_apps_clk_src
    - workqueue: Fix hung time report of worker pools
    - rtc: omap: include header for omap_rtc_power_off_program prototype
    - RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
    - rtc: meson-vrtc: Use ktime_get_real_ts64() to get the current time
    - rtc: k3: handle errors while enabling wake irq
    - RDMA/rxe: Replace exists by rxe in rxe.c
    - RDMA/erdma: Use fixed hardware page size
    - fs/ntfs3: Fix memory leak if ntfs_read_mft failed
    - fs/ntfs3: Add check for kmemdup
    - fs/ntfs3: Fix OOB read in indx_insert_into_buffer
    - fs/ntfs3: Fix slab-out-of-bounds read in hdr_delete_de()
    - iommu/mediatek: Set dma_mask for PGTABLE_PA_35_EN
    - RDMA/rxe: Remove tasklet call from rxe_cq.c
    - power: supply: generic-adc-battery: fix unit scaling
    - clk: add missing of_node_put() in "assigned-clocks" property parsing
    - RDMA/siw: Remove namespace check from siw_netdev_event()
    - clk: qcom: gcc-sm6115: Mark RCGs shared where applicable
    - power: supply: rk817: Fix low SOC bugs
    - RDMA/cm: Trace icm_send_rej event before the cm state is reset
    - RDMA/srpt: Add a check for valid 'mad_agent' pointer
    - IB/hfi1: Fix SDMA mmu_rb_node not being evicted in LRU order
    - IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA requests
    - clk: imx: fracn-gppll: fix the rate table
    - clk: imx: fracn-gppll: disable hardware select control
    - clk: imx: imx8ulp: Fix XBAR_DIVBUS and AD_SLOW clock parents
    - NFSv4.1: Always send a RECLAIM_COMPLETE after establishing lease
    - iommu/amd: Set page size bitmap during V2 domain allocation
    - s390/checksum: always use cksm instruction
    - clk: qcom: lpasscc-sc7280: Skip qdsp6ss clock registration
    - clk: qcom: lpassaudiocc-sc7280: Add required gdsc power domain clks in
      lpass_cc_sc7280_desc
    - clk: qcom: gcc-sm8350: fix PCIe PIPE clocks handling
    - clk: qcom: dispcc-qcm2290: get rid of test clock
    - clk: qcom: dispcc-qcm2290: Remove inexistent DSI1PHY clk
    - Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe
    - swiotlb: relocate PageHighMem test away from rmem_swiotlb_setup
    - swiotlb: fix debugfs reporting of reserved memory pools
    - RDMA/rxe: Convert tasklet args to queue pairs
    - RDMA/rxe: Remove __rxe_do_task()
    - RDMA/rxe: Fix the error "trying to register non-static key in
      rxe_cleanup_task"
    - RDMA/mlx5: Check pcie_relaxed_ordering_enabled() in UMR
    - RDMA/mlx5: Fix flow counter query via DEVX
    - SUNRPC: remove the maximum number of retries in call_bind_status
    - RDMA/mlx5: Use correct device num_ports when modify DC
    - clocksource/drivers/davinci: Fix memory leak in davinci_timer_register when
      init fails
    - openrisc: Properly store r31 to pt_regs on unhandled exceptions
    - timekeeping: Fix references to nonexistent ktime_get_fast_ns()
    - SMB3: Add missing locks to protect deferred close file list
    - SMB3: Close deferred file handles in case of handle lease break
    - ext4: fix i_disksize exceeding i_size problem in paritally written case
    - ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
    - pinctrl: renesas: r8a779a0: Remove incorrect AVB[01] pinmux configuration
    - pinctrl: renesas: r8a779f0: Fix tsn1_avtp_pps pin group
    - pinctrl: renesas: r8a779g0: Fix Group 4/5 pin functions
    - pinctrl: renesas: r8a779g0: Fix Group 6/7 pin functions
    - pinctrl: renesas: r8a779g0: Fix ERROROUTC function names
    - leds: TI_LMU_COMMON: select REGMAP instead of depending on it
    - pinctrl: ralink: reintroduce ralink,rt2880-pinmux compatible string
    - dmaengine: mv_xor_v2: Fix an error code.
    - leds: tca6507: Fix error handling of using fwnode_property_read_string
    - pwm: mtk-disp: Disable shadow registers before setting backlight values
    - pwm: mtk-disp: Configure double buffering before reading in .get_state()
    - soundwire: intel: don't save hw_params for use in prepare
    - phy: tegra: xusb: Add missing tegra_xusb_port_unregister for usb2_port and
      ulpi_port
    - phy: ti: j721e-wiz: Fix unreachable code in wiz_mode_select()
    - dma: gpi: remove spurious unlock in gpi_ch_init
    - dmaengine: dw-edma: Fix to change for continuous transfer
    - dmaengine: dw-edma: Fix to enable to issue dma request on DMA processing
    - dmaengine: at_xdmac: do not enable all cyclic channels
    - pinctrl-bcm2835.c: fix race condition when setting gpio dir
    - thermal/drivers/mediatek: Use devm_of_iomap to avoid resource leak in
      mtk_thermal_probe
    - mfd: tqmx86: Do not access I2C_DETECT register through io_base
    - mfd: tqmx86: Specify IO port register range more precisely
    - mfd: tqmx86: Correct board names for TQMxE39x
    - mfd: ocelot-spi: Fix unsupported bulk read
    - mfd: arizona-spi: Add missing MODULE_DEVICE_TABLE
    - hte: tegra: fix 'struct of_device_id' build error
    - hte: tegra-194: Fix off by one in tegra_hte_map_to_line_id()
    - ACPI: PM: Do not turn of unused power resources on the Toshiba Click Mini
    - PM: hibernate: Turn snapshot_test into global variable
    - PM: hibernate: Do not get block device exclusively in test_resume mode
    - afs: Fix updating of i_size with dv jump from server
    - afs: Fix getattr to report server i_size on dirs, not local size
    - afs: Avoid endless loop if file is larger than expected
    - parisc: Fix argument pointer in real64_call_asm()
    - parisc: Ensure page alignment in flush functions
    - ALSA: usb-audio: Add quirk for Pioneer DDJ-800
    - ALSA: hda/realtek: Add quirk for ASUS UM3402YAR using CS35L41
    - ALSA: hda/realtek: support HP Pavilion Aero 13-be0xxx Mute LED
    - nilfs2: do not write dirty data after degenerating to read-only
    - nilfs2: fix infinite loop in nilfs_mdt_get_block()
    - mm: do not reclaim private data from pinned page
    - drbd: correctly submit flush bio on barrier
    - md/raid10: fix null-ptr-deref in raid10_sync_request
    - md/raid5: Improve performance for sequential IO
    - kasan: hw_tags: avoid invalid virt_to_page()
    - mtd: core: provide unique name for nvmem device, take two
    - mtd: core: fix nvmem error reporting
    - mtd: core: fix error path for nvmem provider
    - mtd: spi-nor: core: Update flash's current address mode when changing
      address mode
    - drivers: remoteproc: xilinx: Fix carveout names
    - mailbox: zynqmp: Fix IPI isr handling
    - kcsan: Avoid READ_ONCE() in read_instrumented_memory()
    - mailbox: zynqmp: Fix typo in IPI documentation
    - nfp: fix incorrect pointer deference when offloading IPsec with bonding
    - wifi: rtl8xxxu: RTL8192EU always needs full init
    - wifi: rtw88: rtw8821c: Fix rfe_option field width
    - wifi: rtw89: fix potential race condition between napi_init and napi_enable
    - clk: microchip: fix potential UAF in auxdev release callback
    - clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to reparent
    - scripts/gdb: fix lx-timerlist for Python3
    - btrfs: scrub: reject unsupported scrub flags
    - s390/dasd: fix hanging blockdevice after request requeue
    - ia64: fix an addr to taddr in huge_pte_offset()
    - mm/mempolicy: correctly update prev when policy is equal on mbind
    - vhost_vdpa: fix unmap process in no-batch mode
    - dm verity: fix error handling for check_at_most_once on FEC
    - dm clone: call kmem_cache_destroy() in dm_clone_init() error path
    - dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
    - dm flakey: fix a crash with invalid table line
    - dm ioctl: fix nested locking in table_clear() to remove deadlock concern
    - dm: don't lock fs when the map is NULL in process of resume
    - blk-iocost: avoid 64-bit division in ioc_timer_fn
    - cifs: fix potential use-after-free bugs in TCP_Server_Info::hostname
    - cifs: protect session status check in smb2_reconnect()
    - cifs: fix sharing of DFS connections
    - cifs: fix potential race when tree connecting ipc
    - cifs: protect access of TCP_Server_Info::{origin,leaf}_fullpath
    - thunderbolt: Use correct type in tb_port_is_clx_enabled() prototype
    - perf auxtrace: Fix address filter entire kernel size
    - perf intel-pt: Fix CYC timestamps after standalone CBR
    - i40e: Remove unused i40e status codes
    - i40e: Remove string printing for i40e_status
    - i40e: use int for i40e_status
    - debugobject: Ensure pool refill (again)
    - Linux 6.2.15
  * Lunar update: v6.2.14 upstream stable release (LP: #2025066)
    - rust: arch/um: Disable FP/SIMD instruction to match x86
    - um: Only disable SSE on clang to work around old GCC bugs
    - rcu/kvfree: Avoid freeing new kfree_rcu() memory after old grace period
    - mm/mempolicy: fix use-after-free of VMA iterator
    - drm/fb-helper: set x/yres_virtual in drm_fb_helper_check_var
    - gpiolib: acpi: Add a ignore wakeup quirk for Clevo NL5xNU
    - bluetooth: Perform careful capability checks in hci_sock_ioctl()
    - wifi: brcmfmac: add Cypress 43439 SDIO ids
    - btrfs: fix uninitialized variable warnings
    - USB: serial: option: add UNISOC vendor and TOZED LT70C product
    - driver core: Don't require dynamic_debug for initcall_debug probe timing
    - riscv: Move early dtb mapping into the fixmap region
    - riscv: Do not set initial_boot_params to the linear address of the dtb
    - riscv: No need to relocate the dtb as it lies in the fixmap region
    - Linux 6.2.14
  * CVE-2023-35001
    - netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
  * CVE-2023-31248
    - netfilter: nf_tables: do not ignore genmask when looking up chain by id
  * CVE-2023-3389
    - io_uring/poll: serialize poll linked timer start with poll removal
  * CVE-2023-3269
    - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
    - mm: make the page fault mmap locking killable
    - arm64/mm: Convert to using lock_mm_and_find_vma()
    - powerpc/mm: Convert to using lock_mm_and_find_vma()
    - mips/mm: Convert to using lock_mm_and_find_vma()
    - riscv/mm: Convert to using lock_mm_and_find_vma()
    - arm/mm: Convert to using lock_mm_and_find_vma()
    - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
    - powerpc/mm: convert coprocessor fault to lock_mm_and_find_vma()
    - mm: make find_extend_vma() fail if write lock not held
    - execve: expand new process stack manually ahead of time
    - mm: always expand the stack with the mmap write lock held
    - [CONFIG]: Set CONFIG_LOCK_MM_AND_FIND_VMA
  * CVE-2023-3390
    - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
  * CVE-2023-3141
    - memstick: r592: Fix UAF bug in r592_remove due to race condition
  * CVE-2023-3090
    - ipvlan:Fix out-of-bounds caused by unclear skb->cb

linux-aws-6.2 (6.2.0-1008.8~22.04.1) jammy; urgency=medium

  * jammy/linux-aws-6.2: 6.2.0-1008.8~22.04.1 -proposed tracker (LP: #2026737)

  [ Ubuntu: 6.2.0-1008.8 ]

  * lunar/linux-aws: 6.2.0-1008.8 -proposed tracker (LP: #2026738)
  * lunar/linux: 6.2.0-26.26 -proposed tracker (LP: #2026753)
  * CVE-2023-2640 // CVE-2023-32629
    - Revert "UBUNTU: SAUCE: overlayfs: handle idmapped mounts in
      ovl_do_(set|remove)xattr"
    - Revert "UBUNTU: SAUCE: overlayfs: Skip permission checking for
      trusted.overlayfs.* xattrs"
    - SAUCE: overlayfs: default to userxattr when mounted from non initial user
      namespace
  * CVE-2023-35001
    - netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
  * CVE-2023-31248
    - netfilter: nf_tables: do not ignore genmask when looking up chain by id
  * CVE-2023-3389
    - io_uring/poll: serialize poll linked timer start with poll removal
  * CVE-2023-3390
    - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
  * CVE-2023-3090
    - ipvlan:Fix out-of-bounds caused by unclear skb->cb
  * CVE-2023-3269
    - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
    - mm: make the page fault mmap locking killable
    - arm64/mm: Convert to using lock_mm_and_find_vma()
    - powerpc/mm: Convert to using lock_mm_and_find_vma()
    - mips/mm: Convert to using lock_mm_and_find_vma()
    - riscv/mm: Convert to using lock_mm_and_find_vma()
    - arm/mm: Convert to using lock_mm_and_find_vma()
    - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
    - powerpc/mm: convert coprocessor fault to lock_mm_and_find_vma()
    - mm: make find_extend_vma() fail if write lock not held
    - execve: expand new process stack manually ahead of time
    - mm: always expand the stack with the mmap write lock held
    - [CONFIG]: Set CONFIG_LOCK_MM_AND_FIND_VMA

 -- Tim Gardner <email address hidden>  Thu, 05 Oct 2023 11:53:19 -0600

Upload details

Uploaded by:
Tim Gardner
Uploaded to:
Jammy
Original maintainer:
Ubuntu Kernel Team
Architectures:
all amd64 arm64
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Jammy security main devel
Jammy updates main devel

Builds

Jammy: [FULLYBUILT] amd64 [FULLYBUILT] arm64

Downloads

File Size SHA-256 Checksum
linux-aws-6.2_6.2.0.orig.tar.gz 208.4 MiB e25ae806476ae60671bedf91d5b120a75a27a8c9eb3355ed6c53edec6038eac3
linux-aws-6.2_6.2.0-1014.14~22.04.1.diff.gz 7.1 MiB ffb45478f1bbd7c06439ee6670773680a9196278bb277ce78a7cf6dc15933c2e
linux-aws-6.2_6.2.0-1014.14~22.04.1.dsc 5.0 KiB 78754f38eacce8a817088a663e25de06d6e194719fd22195ebbde2a324edb369

View changes file

Binary packages built by this source

linux-aws-6.2-cloud-tools-6.2.0-1014: Linux kernel version specific cloud tools for version 6.2.0-1014

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud tools for version 6.2.0-1014 on
 ARMv8.
 You probably want to install linux-cloud-tools-6.2.0-1014-<flavour>.

linux-aws-6.2-headers-6.2.0-1014: Header files related to Linux kernel version 6.2.0

 This package provides kernel header files for version 6.2.0, for sites
 that want the latest kernel headers. Please read
 /usr/share/doc/linux-aws-6.2-headers-6.2.0-1014/debian.README.gz for details

linux-aws-6.2-tools-6.2.0-1014: Linux kernel version specific tools for version 6.2.0-1014

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-1014 on
 ARMv8.
 You probably want to install linux-tools-6.2.0-1014-<flavour>.

linux-buildinfo-6.2.0-1014-aws: Linux kernel buildinfo for version 6.2.0 on ARMv8 SMP

 This package contains the Linux kernel buildinfo for version 6.2.0 on
 ARMv8 SMP.
 .
 You likely do not want to install this package.

linux-cloud-tools-6.2.0-1014-aws: Linux kernel version specific cloud tools for version 6.2.0-1014

 This package provides the architecture dependant parts for kernel
 version locked tools for cloud for version 6.2.0-1014 on
 ARMv8.

linux-headers-6.2.0-1014-aws: Linux kernel headers for version 6.2.0 on ARMv8 SMP

 This package provides kernel header files for version 6.2.0 on
 ARMv8 SMP.
 .
 This is for sites that want the latest kernel headers. Please read
 /usr/share/doc/linux-headers-6.2.0-1014/debian.README.gz for details.

linux-image-unsigned-6.2.0-1014-aws: Linux kernel image for version 6.2.0 on ARMv8 SMP

 This package contains the unsigned Linux kernel image for version 6.2.0 on
 ARMv8 SMP.
 .
 Supports AWS processors.
 .
 Geared toward Amazon Web Services (AWS) systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-aws meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-image-unsigned-6.2.0-1014-aws-dbgsym: Linux kernel debug image for version 6.2.0 on ARMv8 SMP

 This package provides the unsigned kernel debug image for version 6.2.0 on
 ARMv8 SMP.
 .
 This is for sites that wish to debug the kernel.
 .
 The kernel image contained in this package is NOT meant to boot from. It
 is uncompressed, and unstripped. This package also includes the
 unstripped modules.

linux-modules-6.2.0-1014-aws: Linux kernel extra modules for version 6.2.0 on ARMv8 SMP

 Contains the corresponding System.map file, the modules built by the
 packager, and scripts that try to ensure that the system is not left in an
 unbootable state after an update.
 .
 Supports AWS processors.
 .
 Geared toward Amazon Web Services (AWS) systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-aws meta-package, which will ensure that upgrades work
 correctly, and that supporting packages are also installed.

linux-modules-extra-6.2.0-1014-aws: Linux kernel extra modules for version 6.2.0 on ARMv8 SMP

 This package contains the Linux kernel extra modules for version 6.2.0 on
 ARMv8 SMP.
 .
 Supports AWS processors.
 .
 Geared toward Amazon Web Services (AWS) systems.
 .
 You likely do not want to install this package directly. Instead, install
 the linux-modules-extra-aws meta-package, which will ensure that upgrades
 work correctly, and that supporting packages are also installed.

linux-tools-6.2.0-1014-aws: Linux kernel version specific tools for version 6.2.0-1014

 This package provides the architecture dependant parts for kernel
 version locked tools (such as perf and x86_energy_perf_policy) for
 version 6.2.0-1014 on
 ARMv8.