Package "linux-cloud-tools-5.15.0-184-generic"

 linux (5.15.0-184.194) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-184.194 -proposed tracker (LP: #2154219)
 .
   * Kernel regression (6.8.0-117.generic) (LP: #2153556)
     - net: bonding: update the slave array for broadcast mode
     - bonding: do not set usable_slaves for broadcast mode
 .
   * kernel null pointer BUG in 5.15 when disconnecting from cifs share
     (LP: #2150730)
     - SAUCE: cifs: fix null pointer dereference in find_ipc_from_server_path
 .
   * SUNRPC: System wide grep leads to NULL pointer deference in sysfs reads
     (LP: #2149767)
     - SUNRPC: Check if the xprt is connected before handling sysfs reads
     - SUNRPC: Do not dereference non-socket transports in sysfs
 .
   * SUNRPC: System wide grep leads to NULL pointer deference in sysfs reads
     (LP: #2149767) // CVE-2022-48816
     - SUNRPC: lock against ->sock changing during sysfs read
 .
   * iptables connlimit traffic loss (LP: #2149872)
     - netfilter: nf_conncount: fix tracking of connections from localhost
 .
   * Some powerpc test from ubuntu_kernel_selftests timeout with 45 seconds
     (LP: #2141536)
     - selftests/powerpc: Lower run time of count_stcx_fail test
     - selftests/powerpc: Give all tests 2 minutes timeout
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598)
     - x86/kfence: fix booting on 32bit non-PAE systems
     - platform/x86: intel_telemetry: Fix swapped arrays in PSS output
     - rbd: check for EOD after exclusive lock is ensured to be held
     - ARM: 9468/1: fix memset64() on big-endian
     - mm/kfence: randomize the freelist on initialization
     - Documentation: Remove bogus claim about del_timer_sync()
     - timers: Get rid of del_singleshot_timer_sync()
     - Documentation: Replace del_timer/del_timer_sync()
     - timers: Update the documentation to reflect on the new timer_shutdown()
       API
     - Bluetooth: hci_qca: Fix the teardown problem for real
     - binderfs: fix ida_alloc_max() upper bound
     - net: usb: sr9700: support devices with virtual driver CD
     - block,bfq: fix aux stat accumulation destination
     - HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL
     - HID: intel-ish-hid: Reset enum_devices_done before enumeration
     - HID: playstation: Center initial joystick axes to prevent spurious
       events
     - ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk
     - netfilter: replace -EEXIST with -EBUSY
     - HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list
     - HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101)
     - ring-buffer: Avoid softlockup in ring_buffer_resize() during memory free
     - wifi: mac80211: collect station statistics earlier when disconnect
     - ASoC: davinci-evm: Fix reference leak in davinci_evm_probe
     - ASoC: tlv320adcx140: Propagate error codes during probe
     - wifi: cfg80211: Fix bitrate calculation overflow for HE rates
     - wifi: mac80211: don't increment crypto_tx_tailroom_needed_cnt twice
     - platform/x86: intel_telemetry: Fix PSS event register mask
     - tipc: use kfree_sensitive() for session key material
     - hwmon: (occ) Mark occ_init_attribute() as __printf
     - nvmet-tcp: add an helper to free the cmd buffers
     - nvmet-tcp: fix memory leak when performing a controller reset
     - nvmet-tcp: fix regression in data_digest calculation
     - nvmet-tcp: don't map pages which can't come from HIGHMEM
     - tracing: Fix ftrace event field alignments
     - gve: Correct ethtool rx_dropped calculation
     - spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed
       transfer
     - spi: tegra210-quad: Move curr_xfer read inside spinlock
     - spi: tegra210-quad: Protect curr_xfer assignment in
       tegra_qspi_setup_transfer_one
     - spi: tegra210-quad: Protect curr_xfer clearing in
       tegra_qspi_non_combined_seq_xfer
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - riscv: Replace function-like macro by static inline function
     - Linux 5.15.200
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23182
     - spi: tegra: Fix a memory leak in tegra_slink_probe()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23202
     - spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-71089
     - iommu: disable SVA when CONFIG_X86 is set
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2023-53673
     - Bluetooth: hci_event: call disconnect callback before deleting conn
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23262
     - gve: Fix stats report corruption on queue count change
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-40082
     - hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-37822
     - riscv: uprobes: Add missing fence.i after building the XOL buffer
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23190
     - ASoC: amd: fix memory leak in acp3x pdm dma ops
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23112
     - nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23111
     - netfilter: nf_tables: fix inverted genmask check in
       nft_map_catchall_activate()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23180
     - dpaa2-switch: add bounds check for if_id in IRQ handler
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23256
     - net: liquidio: Fix off-by-one error in VF setup_nic

 linux (5.15.0-183.193) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-183.193 -proposed tracker (LP: #2154032)
 .
   * kernel null pointer BUG in 5.15 when disconnecting from cifs share
     (LP: #2150730)
     - SAUCE: cifs: fix null pointer dereference in find_ipc_from_server_path
 .
   * SUNRPC: System wide grep leads to NULL pointer deference in sysfs reads
     (LP: #2149767)
     - SUNRPC: Check if the xprt is connected before handling sysfs reads
     - SUNRPC: Do not dereference non-socket transports in sysfs
 .
   * SUNRPC: System wide grep leads to NULL pointer deference in sysfs reads
     (LP: #2149767) // CVE-2022-48816
     - SUNRPC: lock against ->sock changing during sysfs read
 .
   * iptables connlimit traffic loss (LP: #2149872)
     - netfilter: nf_conncount: fix tracking of connections from localhost
 .
   * Some powerpc test from ubuntu_kernel_selftests timeout with 45 seconds
     (LP: #2141536)
     - selftests/powerpc: Lower run time of count_stcx_fail test
     - selftests/powerpc: Give all tests 2 minutes timeout
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598)
     - x86/kfence: fix booting on 32bit non-PAE systems
     - platform/x86: intel_telemetry: Fix swapped arrays in PSS output
     - rbd: check for EOD after exclusive lock is ensured to be held
     - ARM: 9468/1: fix memset64() on big-endian
     - mm/kfence: randomize the freelist on initialization
     - Documentation: Remove bogus claim about del_timer_sync()
     - timers: Get rid of del_singleshot_timer_sync()
     - Documentation: Replace del_timer/del_timer_sync()
     - timers: Update the documentation to reflect on the new timer_shutdown()
       API
     - Bluetooth: hci_qca: Fix the teardown problem for real
     - binderfs: fix ida_alloc_max() upper bound
     - net: usb: sr9700: support devices with virtual driver CD
     - block,bfq: fix aux stat accumulation destination
     - HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL
     - HID: intel-ish-hid: Reset enum_devices_done before enumeration
     - HID: playstation: Center initial joystick axes to prevent spurious
       events
     - ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk
     - netfilter: replace -EEXIST with -EBUSY
     - HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list
     - HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101)
     - ring-buffer: Avoid softlockup in ring_buffer_resize() during memory free
     - wifi: mac80211: collect station statistics earlier when disconnect
     - ASoC: davinci-evm: Fix reference leak in davinci_evm_probe
     - ASoC: tlv320adcx140: Propagate error codes during probe
     - wifi: cfg80211: Fix bitrate calculation overflow for HE rates
     - wifi: mac80211: don't increment crypto_tx_tailroom_needed_cnt twice
     - platform/x86: intel_telemetry: Fix PSS event register mask
     - tipc: use kfree_sensitive() for session key material
     - hwmon: (occ) Mark occ_init_attribute() as __printf
     - nvmet-tcp: add an helper to free the cmd buffers
     - nvmet-tcp: fix memory leak when performing a controller reset
     - nvmet-tcp: fix regression in data_digest calculation
     - nvmet-tcp: don't map pages which can't come from HIGHMEM
     - tracing: Fix ftrace event field alignments
     - gve: Correct ethtool rx_dropped calculation
     - spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed
       transfer
     - spi: tegra210-quad: Move curr_xfer read inside spinlock
     - spi: tegra210-quad: Protect curr_xfer assignment in
       tegra_qspi_setup_transfer_one
     - spi: tegra210-quad: Protect curr_xfer clearing in
       tegra_qspi_non_combined_seq_xfer
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - riscv: Replace function-like macro by static inline function
     - Linux 5.15.200
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23182
     - spi: tegra: Fix a memory leak in tegra_slink_probe()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23202
     - spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-71089
     - iommu: disable SVA when CONFIG_X86 is set
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2023-53673
     - Bluetooth: hci_event: call disconnect callback before deleting conn
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23262
     - gve: Fix stats report corruption on queue count change
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-40082
     - hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-37822
     - riscv: uprobes: Add missing fence.i after building the XOL buffer
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23190
     - ASoC: amd: fix memory leak in acp3x pdm dma ops
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23112
     - nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23111
     - netfilter: nf_tables: fix inverted genmask check in
       nft_map_catchall_activate()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23180
     - dpaa2-switch: add bounds check for if_id in IRQ handler
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23256
     - net: liquidio: Fix off-by-one error in VF setup_nic_devices() cleanup
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23257
     - net: liquidio: Fix off-by-one error in PF setup_nic_devices() cl

 linux (5.15.0-180.190) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-180.190 -proposed tracker (LP: #2152007)
 .
   * kernel null pointer BUG in 5.15 when disconnecting from cifs share
     (LP: #2150730)
     - SAUCE: cifs: fix null pointer dereference in find_ipc_from_server_path
 .
   * SUNRPC: System wide grep leads to NULL pointer deference in sysfs reads
     (LP: #2149767)
     - SUNRPC: Check if the xprt is connected before handling sysfs reads
     - SUNRPC: Do not dereference non-socket transports in sysfs
 .
   * SUNRPC: System wide grep leads to NULL pointer deference in sysfs reads
     (LP: #2149767) // CVE-2022-48816
     - SUNRPC: lock against ->sock changing during sysfs read
 .
   * iptables connlimit traffic loss (LP: #2149872)
     - netfilter: nf_conncount: fix tracking of connections from localhost
 .
   * Some powerpc test from ubuntu_kernel_selftests timeout with 45 seconds
     (LP: #2141536)
     - selftests/powerpc: Lower run time of count_stcx_fail test
     - selftests/powerpc: Give all tests 2 minutes timeout
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598)
     - x86/kfence: fix booting on 32bit non-PAE systems
     - platform/x86: intel_telemetry: Fix swapped arrays in PSS output
     - rbd: check for EOD after exclusive lock is ensured to be held
     - ARM: 9468/1: fix memset64() on big-endian
     - mm/kfence: randomize the freelist on initialization
     - Documentation: Remove bogus claim about del_timer_sync()
     - timers: Get rid of del_singleshot_timer_sync()
     - Documentation: Replace del_timer/del_timer_sync()
     - timers: Update the documentation to reflect on the new timer_shutdown()
       API
     - Bluetooth: hci_qca: Fix the teardown problem for real
     - binderfs: fix ida_alloc_max() upper bound
     - net: usb: sr9700: support devices with virtual driver CD
     - block,bfq: fix aux stat accumulation destination
     - HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL
     - HID: intel-ish-hid: Reset enum_devices_done before enumeration
     - HID: playstation: Center initial joystick axes to prevent spurious
       events
     - ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk
     - netfilter: replace -EEXIST with -EBUSY
     - HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list
     - HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101)
     - ring-buffer: Avoid softlockup in ring_buffer_resize() during memory free
     - wifi: mac80211: collect station statistics earlier when disconnect
     - ASoC: davinci-evm: Fix reference leak in davinci_evm_probe
     - ASoC: tlv320adcx140: Propagate error codes during probe
     - wifi: cfg80211: Fix bitrate calculation overflow for HE rates
     - wifi: mac80211: don't increment crypto_tx_tailroom_needed_cnt twice
     - platform/x86: intel_telemetry: Fix PSS event register mask
     - tipc: use kfree_sensitive() for session key material
     - hwmon: (occ) Mark occ_init_attribute() as __printf
     - nvmet-tcp: add an helper to free the cmd buffers
     - nvmet-tcp: fix memory leak when performing a controller reset
     - nvmet-tcp: fix regression in data_digest calculation
     - nvmet-tcp: don't map pages which can't come from HIGHMEM
     - tracing: Fix ftrace event field alignments
     - gve: Correct ethtool rx_dropped calculation
     - spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed
       transfer
     - spi: tegra210-quad: Move curr_xfer read inside spinlock
     - spi: tegra210-quad: Protect curr_xfer assignment in
       tegra_qspi_setup_transfer_one
     - spi: tegra210-quad: Protect curr_xfer clearing in
       tegra_qspi_non_combined_seq_xfer
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - riscv: Replace function-like macro by static inline function
     - Linux 5.15.200
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23182
     - spi: tegra: Fix a memory leak in tegra_slink_probe()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23202
     - spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-71089
     - iommu: disable SVA when CONFIG_X86 is set
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2023-53673
     - Bluetooth: hci_event: call disconnect callback before deleting conn
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23262
     - gve: Fix stats report corruption on queue count change
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-40082
     - hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2025-37822
     - riscv: uprobes: Add missing fence.i after building the XOL buffer
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23190
     - ASoC: amd: fix memory leak in acp3x pdm dma ops
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23112
     - nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23111
     - netfilter: nf_tables: fix inverted genmask check in
       nft_map_catchall_activate()
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23180
     - dpaa2-switch: add bounds check for if_id in IRQ handler
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23256
     - net: liquidio: Fix off-by-one error in VF setup_nic_devices() cleanup
 .
   * Jammy update: v5.15.200 upstream stable release (LP: #2147598) //
     CVE-2026-23257
     - net: liquidio: Fix off-by-one error in PF setup_nic_devices() cl

 linux (5.15.0-178.188) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-178.188 -proposed tracker (LP: #2148097)
 .
   * Canonical Kmod 2025 key rotation (LP: #2147447)
     - [Packaging] ubuntu-compatible-signing -- make Ubuntu-Compatible-Signing
       extensible
     - [Packaging] ubuntu-compatible-signing -- allow consumption of positive
       certs
     - [Packaging] ubuntu-compatible-signing -- report the livepatch:2025 key
     - [Config] prepare for Canonical Kmod key rotation
     - [Packaging] ubuntu-compatible-signing -- report the kmod:2025 key
 .
   * ADATA SU680 causes repeated SATA resets and I/O errors on Ubuntu unless
     link power management is forced to max_performance (LP: #2144060)
     - ata: libata-core: disable LPM on ADATA SU680 SSD
 .
   * CVE-2024-50060
     - io_uring: check if we need to reschedule during overflow flush
 .
   * CVE-2024-35862
     - smb: client: fix potential UAF in smb2_is_network_name_deleted()
 .
   * CVE-2026-23274
     - netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels
 .
   * CVE-2026-23351
     - netfilter: nf_tables: de-constify set commit ops function argument
     - netfilter: nft_set_pipapo: split gc into unlink and reclaim phase
 .
   * macvlan: observe an RCU grace period in macvlan_common_newlink() error
     path (LP: #2144380) // CVE-2026-23209
     - macvlan: observe an RCU grace period in macvlan_common_newlink() error
       path
 .
   * CVE-2023-2640 // CVE-2023-32629
     - SAUCE: overlayfs: default to userxattr when mounted from non initial
       user namespace
 .
   * CVE-2023-2640 // CVE-2023-2640 and CVE-2023-32629. // CVE-2023-32629
     - SAUCE: Revert "UBUNTU: SAUCE: overlayfs: Skip permission checking for
       trusted.overlayfs.* xattrs"
 .
   * CVE-2026-23112
     - nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec

 linux (5.15.0-176.186) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-176.186 -proposed tracker (LP: #2143539)
 .
   * Jammy update: v5.15.199 upstream stable release (LP: #2143343)
     - nvmet-tcp: remove boilerplate code
     - SAUCE: Fix skb_vlan_inet_prepare() usage
     - net: update netdev_lock_{type,name}
     - vsock/test: add a final full barrier after run all tests
     - net/mlx5e: Restore destroying state bit after profile cleanup
     - selftests: drv-net: fix RPS mask handling for high CPU numbers
     - ASoC: tlv320adcx140: fix word length
     - textsearch: describe @list member in ts_ops search
     - mm, kfence: describe @slab parameter in __kfence_obj_info()
     - dmaengine: xilinx_dma: Fix uninitialized addr_width when
       "xlnx,addrwidth" property is missing
     - phy: broadcom: ns-usb3: Fix Wvoid-pointer-to-enum-cast warning (again)
     - HID: usbhid: paper over wrong bNumDescriptor field
     - ALSA: pcm: Improve the fix for race of buffer access at PCM OSS layer
     - x86/kaslr: Recognize all ZONE_DEVICE users as physaddr consumers
     - phy: rockchip: inno-usb2: fix disconnection in gadget mode
     - phy: rockchip: inno-usb2: fix communication disruption in gadget mode
     - phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7
     - usb: dwc3: Check for USB4 IP_NAME
     - USB: OHCI/UHCI: Add soft dependencies on ehci_platform
     - USB: serial: option: add Telit LE910 MBIM composition
     - USB: serial: ftdi_sio: add support for PICAXE AXE027 cable
     - nvme-pci: disable secondary temp for Wodposit WPBSNM8
     - hrtimer: Fix softirq base check in update_needs_ipi()
     - EDAC/x38: Fix a resource leak in x38_probe1()
     - EDAC/i3200: Fix a resource leak in i3200_probe1()
     - x86/resctrl: Add missing resctrl initialization for Hygon
     - x86/resctrl: Fix memory bandwidth counter width for Hygon
     - mm/page_alloc: make percpu_pagelist_high_fraction reads lock-free
     - drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare
     - drm/vmwgfx: Fix an error return check in vmw_compat_shader_add()
     - dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all()
     - dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation
     - dmaengine: ti: k3-udma: fix device leak on udma lookup
     - posix-clock: introduce posix_clock_context concept
     - Fix memory leak in posix_clock_open()
     - posix-clock: Store file pointer in struct posix_clock_context
     - ptp: Add PHC file mode checks. Allow RO adjtime() without FMODE_WRITE.
     - testptp: add option to shift clock by nanoseconds
     - testptp: Add support for testing ptp_clock_info .adjphase callback
     - selftests/ptp: Add -x option for testing PTP_SYS_OFFSET_EXTENDED
     - selftests/ptp: Add -X option for testing PTP_SYS_OFFSET_PRECISE
     - ptp: add testptp mask test
     - selftest/ptp: update ptp selftest to exercise the gettimex options
     - testptp: Add option to open PHC in readonly mode
     - net: usb: dm9601: remove broken SR9700 support
     - amd-xgbe: avoid misleading per-packet error log
     - netlink: add a proto specification for FOU
     - net: fou: rename the source for linking
     - net: fou: use policy and operation tables generated from the spec
     - comedi: dmm32at: serialize use of paged registers
     - w1: fix redundant counter decrement in w1_attach_slave_device()
     - Revert "nfc/nci: Add the inconsistency check between the input data
       length and count"
     - Input: i8042 - add quirks for MECHREVO Wujie 15X Pro
     - Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA
     - scsi: storvsc: Process unsupported MODE_SENSE_10
     - x86/kfence: avoid writing L1TF-vulnerable PTEs
     - staging:iio:adc:ad7280a: Register define cleanup.
     - iio: adc: ad7280a: handle spi_setup() errors in probe()
     - ALSA: usb: Increase volume range that triggers a warning
     - net: hns3: fix wrong GENMASK() for HCLGE_FD_AD_COUNTER_NUM_M
     - net: hns3: fix the HCLGE_FD_AD_NXT_KEY error setting issue
     - usbnet: limit max_mtu based on device's hard_mtu
     - drm/amd/pm: Don't clear SI SMC table when setting power limit
     - drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2)
     - octeontx2-af: Fix error handling
     - x86: make page fault handling disable interrupts properly
     - of: fix reference count leak in of_alias_scan()
     - iio: adc: ad9467: fix ad9434 vref mask
     - iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl
     - mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function
     - wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize()
     - octeontx2: Fix otx2_dma_map_page() error return code
     - slimbus: core: fix runtime PM imbalance on report present
     - perf/x86/intel: Do not enable BTS for guests
     - net/mlx5: Fix memory leak in esw_acl_ingress_lgcy_setup()
     - net: mvpp2: cls: Fix memory leak in mvpp2_ethtool_cls_rule_ins()
     - ipv6: use the right ifindex when replying to icmpv6 from localhost
     - ice: stop counting UDP csum mismatch as rx_errors
     - net/mlx5: Add HW definitions of vport debug counters
     - net/mlx5e: Expose rx_oversize_pkts_buffer counter
     - net/mlx5e: Report rx_discards_phy via rx_dropped
     - net/mlx5e: Account for netdev stats in ndo_get_stats64
     - net: bridge: fix static key check
     - scsi: firewire: sbp-target: Fix overflow in sbp_make_tpg()
     - gpiolib: acpi: use BIT_ULL() for u64 mask in address space handler
     - dma/pool: distinguish between missing and exhausted atomic pools
     - ASoC: fsl: imx-card: Do not force slot width to sample width
     - scsi: be2iscsi: Fix a memory leak in beiscsi_boot_get_sinfo()
     - scsi: qla2xxx: edif: Fix dma_free_coherent() size
     - mptcp: only reset subflow errors when propagated
     - net: Add locking to protect skb->dev access in ip_output
     - comedi: Fix getting range information for subdevices 16 to 255
     - of: platform: Use default match tabl