Package "linux-modules-iwlwifi-5.15.0-132-generic"

 linux (5.15.0-120.130) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-120.130 -proposed tracker (LP: #2075903)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] debian.master/dkms-versions -- update from kernel-versions
       (main/2024.08.05)
 .
   * Jammy update: v5.15.163 upstream stable release (LP: #2075170)
     - Compiler Attributes: Add __uninitialized macro
     - locking/mutex: Introduce devm_mutex_init()
     - drm/lima: fix shared irq handling on driver remove
     - media: dvb: as102-fe: Fix as10x_register_addr packing
     - media: dvb-usb: dib0700_devices: Add missing release_firmware()
     - IB/core: Implement a limit on UMAD receive List
     - scsi: qedf: Make qedf_execute_tmf() non-preemptible
     - crypto: aead,cipher - zeroize key buffer after use
     - drm/amdgpu: Initialize timestamp for some legacy SOCs
     - drm/amd/display: Check index msg_id before read or write
     - drm/amd/display: Check pipe offset before setting vblank
     - drm/amd/display: Skip finding free audio for unknown engine_id
     - media: dw2102: Don't translate i2c read into write
     - sctp: prefer struct_size over open coded arithmetic
     - firmware: dmi: Stop decoding on broken entry
     - Input: ff-core - prefer struct_size over open coded arithmetic
     - wifi: mt76: replace skb_put with skb_put_zero
     - net: dsa: mv88e6xxx: Correct check for empty list
     - media: dvb-frontends: tda18271c2dd: Remove casting during div
     - media: s2255: Use refcount_t instead of atomic_t for num_channels
     - media: dvb-frontends: tda10048: Fix integer overflow
     - i2c: i801: Annotate apanel_addr as __ro_after_init
     - powerpc/64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
     - orangefs: fix out-of-bounds fsid access
     - kunit: Fix timeout message
     - powerpc/xmon: Check cpu id in commands "c#", "dp#" and "dx#"
     - igc: fix a log entry using uninitialized netdev
     - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
     - jffs2: Fix potential illegal address access in jffs2_free_inode
     - s390/pkey: Wipe sensitive data on failure
     - tools/power turbostat: Remember global max_die_id
     - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
     - tcp_metrics: validate source addr length
     - KVM: s390: fix LPSWEY handling
     - e1000e: Fix S0ix residency on corporate systems
     - net: allow skb_datagram_iter to be called from any context
     - wifi: wilc1000: fix ies_len type in connect path
     - riscv: kexec: Avoid deadlock in kexec crash path
     - netfilter: nf_tables: unconditionally flush pending work before notifier
     - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
     - selftests: fix OOM in msg_zerocopy selftest
     - selftests: make order checking verbose in msg_zerocopy selftest
     - inet_diag: Initialize pad field in struct inet_diag_req_v2
     - gpiolib: of: factor out code overriding gpio line polarity
     - gpiolib: of: add a quirk for reset line polarity for Himax LCDs
     - gpiolib: of: add polarity quirk for TSC2005
     - Revert "igc: fix a log entry using uninitialized netdev"
     - nilfs2: fix inode number range checks
     - nilfs2: add missing check for inode numbers on directory entries
     - mm: optimize the redundant loop of mm_update_owner_next()
     - mm: avoid overflows in dirty throttling logic
     - btrfs: fix adding block group to a reclaim list and the unused list during
       reclaim
     - Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot
     - can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct
     - fsnotify: Do not generate events for O_PATH file descriptors
     - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(),
       again"
     - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes
     - drm/amdgpu/atomfirmware: silence UBSAN warning
     - mtd: rawnand: Ensure ECC configuration is propagated to upper layers
     - mtd: rawnand: Bypass a couple of sanity checks during NAND identification
     - mtd: rawnand: rockchip: ensure NVDDR timings are rejected
     - ima: Avoid blocking in RCU read-side critical section
     - media: dw2102: fix a potential buffer overflow
     - clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents
     - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr
     - fs/ntfs3: Mark volume as dirty if xattr is broken
     - ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897
     - nvme-multipath: find NUMA path only for online numa-node
     - dma-mapping: benchmark: avoid needless copy_to_user if benchmark fails
     - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset
     - regmap-i2c: Subtract reg size from max_write
     - platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW 11.6"
       tablet
     - platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro
     - nvmet: fix a possible leak when destroy a ctrl during qp establishment
     - kbuild: fix short log for AS in link-vmlinux.sh
     - nfc/nci: Add the inconsistency check between the input data length and count
     - null_blk: Do not allow runt zone with zone capacity smaller then zone size
     - nilfs2: fix incorrect inode allocation from reserved inodes
     - mm: prevent derefencing NULL ptr in pfn_section_valid()
     - filelock: fix potential use-after-free in posix_lock_inode
     - fs/dcache: Re-use value stored to dentry->d_flags instead of re-reading
     - vfs: don't mod negative dentry count when on shrinker list
     - tcp: fix incorrect undo caused by DSACK of TLP retransmit
     - skmsg: Skip zero length skb in sk_msg_recvmsg
     - octeontx2-af: Fix incorrect value output on error path in
       rvu_check_rsrc_availability()
     - net: fix rc7's __skb_datagram_iter()
     - i40e: Fix XDP program unloading while removing the driver
     - net: lantiq_etop: a

 linux (5.15.0-118.128) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-118.128 -proposed tracker (LP: #2072255)
 .
   * Jammy update: v5.15.160 upstream stable release (LP: #2070292)
     - drm/amd/display: Fix division by zero in setup_dsc_config
     - pinctrl: core: handle radix_tree_insert() errors in
       pinctrl_register_one_pin()
     - nfsd: don't allow nfsd threads to be signalled.
     - KEYS: trusted: Fix memory leak in tpm2_key_encode()
     - Revert "selftests: mm: fix map_hugetlb failure on 64K page size systems"
     - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
     - net: bcmgenet: synchronize UMAC_CMD access
     - netlink: annotate lockless accesses to nlk->max_recvmsg_len
     - netlink: annotate data-races around sk->sk_err
     - KVM: x86: Clear "has_error_code", not "error_code", for RM exception
       injection
     - drm/amdgpu: Fix possible NULL dereference in
       amdgpu_ras_query_error_status_helper()
     - binder: fix max_thread type inconsistency
     - usb: typec: ucsi: displayport: Fix potential deadlock
     - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
     - remoteproc: mediatek: Make sure IPI buffer fits in L2TCM
     - KEYS: trusted: Do not use WARN when encode fails
     - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
     - docs: kernel_include.py: Cope with docutils 0.21
     - Linux 5.15.160
 .
   * Jammy update: v5.15.159 upstream stable release (LP: #2070028)
     - dmaengine: pl330: issue_pending waits until WFP state
     - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
     - wifi: nl80211: don't free NULL coalescing rule
     - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
     - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
     - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
     - eeprom: at24: Use dev_err_probe for nvmem register failure
     - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
     - eeprom: at24: fix memory corruption race condition
     - pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T
     - pinctrl/meson: fix typo in PDM's pin name
     - pinctrl: core: delete incorrect free in pinctrl_enable()
     - pinctrl: mediatek: paris: Rework mtk_pinconf_{get,set} switch/case logic
     - pinctrl: mediatek: paris: Fix PIN_CONFIG_INPUT_SCHMITT_ENABLE readback
     - pinctrl: mediatek: paris: Rework support for
       PIN_CONFIG_{INPUT,OUTPUT}_ENABLE
     - sunrpc: add a struct rpc_stats arg to rpc_create_args
     - nfs: expose /proc/net/sunrpc/nfs in net namespaces
     - nfs: make the rpc_stat per net namespace
     - nfs: Handle error of rpc_proc_register() in nfs_net_init().
     - power: rt9455: hide unused rt9455_boost_voltage_values
     - power: supply: mt6360_charger: Fix of_match for usb-otg-vbus regulator
     - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
     - regulator: mt6360: De-capitalize devicetree regulator subnodes
     - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
     - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
     - bpf: Fix a verifier verbose message
     - spi: hisi-kunpeng: Delete the dump interface of data registers in debugfs
     - s390/mm: Fix storage key clearing for guest huge pages
     - s390/mm: Fix clearing storage keys for huge pages
     - xdp: Move conversion to xdp_frame out of map functions
     - xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames
     - xdp: use flags field to disambiguate broadcast redirect
     - bna: ensure the copied buf is NUL terminated
     - octeontx2-af: avoid off-by-one read from userspace
     - nsh: Restore skb->{protocol,data,mac_header} for outer header in
       nsh_gso_segment().
     - net l2tp: drop flow hash on forward
     - s390/vdso: Add CFI for RA register to asm macro vdso_func
     - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
     - net: qede: use return from qede_parse_flow_attr() for flower
     - net: qede: use return from qede_parse_flow_attr() for flow_spec
     - net: qede: use return from qede_parse_actions()
     - ASoC: meson: axg-fifo: use FIELD helpers
     - ASoC: meson: axg-fifo: use threaded irq to check periods
     - ASoC: meson: axg-card: make links nonatomic
     - ASoC: meson: axg-tdm-interface: manage formatters in trigger
     - ASoC: meson: cards: select SND_DYNAMIC_MINORS
     - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
     - s390/cio: Ensure the copied buf is NUL terminated
     - cxgb4: Properly lock TX queue for the selftest.
     - net: dsa: mv88e6xxx: Fix number of databases for 88E6141 / 88E6341
     - net: bridge: fix multicast-to-unicast with fraglist GSO
     - net: core: reject skb_copy(_expand) for fraglist GSO skbs
     - tipc: fix a possible memleak in tipc_buf_append
     - s390/qeth: don't keep track of Input Queue count
     - s390/qeth: Fix kernel panic after setting hsuid
     - drm/panel: ili9341: Respect deferred probe
     - drm/panel: ili9341: Use predefined error codes
     - net: gro: add flush check in udp_gro_receive_segment
     - clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
     - KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id
     - KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()
     - scsi: lpfc: Move NPIV's transport unregistration to after resource clean up
     - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
     - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port()
     - gfs2: Fix invalid metadata access in punch_hole
     - wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc
     - wifi: cfg80211: fix rdev_dump_mpp() arguments order
     - net: mark racy access on sk->sk_rcvbuf
     - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
     - btrfs: return accurate error code on open failure in open_f

 linux (5.15.0-116.126) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-116.126 -proposed tracker (LP: #2071603)
 .
   * idxd: NULL pointer dereference reading wq op_config attribute (LP: #2069081)
     - SAUCE: dmaengine: idxd: set is_visible member of idxd_wq_attribute_group
 .
   * AMD GPUs fail with null pointer dereference when IOMMU enabled, leading to
     black screen (LP: #2068738)
     - SAUCE: Revert "drm/amdgpu: init iommu after amdkfd device init"
 .

 linux (5.15.0-115.125) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-115.125 -proposed tracker (LP: #2068396)
 .
   * Packaging resync (LP: #1786013)
     - [Packaging] debian.master/dkms-versions -- update from kernel-versions
       (main/2024.06.10)
 .
   * Jammy update: v5.15.158 upstream stable release (LP: #2067974)
     - smb: client: fix rename(2) regression against samba
     - cifs: reinstate original behavior again for forceuid/forcegid
     - HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc
     - HID: logitech-dj: allow mice to use all types of reports
     - arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 Puma
     - arm64: dts: rockchip: fix alphabetical ordering RK3399 puma
     - arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for RK3399 Puma
     - arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro dts
     - arm64: dts: mediatek: mt8183: Add power-domains properity to mfgcfg
     - arm64: dts: mediatek: mt7622: add support for coherent DMA
     - arm64: dts: mediatek: mt7622: introduce nodes for Wireless Ethernet Dispatch
     - arm64: dts: mediatek: mt7622: fix clock controllers
     - arm64: dts: mediatek: mt7622: fix IR nodename
     - arm64: dts: mediatek: mt7622: fix ethernet controller "compatible"
     - arm64: dts: mediatek: mt7622: drop "reset-names" from thermal block
     - arm64: dts: mediatek: mt2712: fix validation errors
     - ARC: [plat-hsdk]: Remove misplaced interrupt-cells property
     - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
     - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
     - vxlan: drop packets from invalid src-address
     - mlxsw: core: Unregister EMAD trap using FORWARD action
     - icmp: prevent possible NULL dereferences from icmp_build_probe()
     - bridge/br_netlink.c: no need to return void function
     - NFC: trf7970a: disable all regulators on removal
     - ipv4: check for NULL idev in ip_route_use_hint()
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - mlxsw: spectrum_acl_tcam: Fix race during rehash delayed work
     - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update
     - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash
     - mlxsw: spectrum_acl_tcam: Rate limit error message
     - mlxsw: spectrum_acl_tcam: Fix memory leak during rehash
     - mlxsw: spectrum_acl_tcam: Fix warning during rehash
     - mlxsw: spectrum_acl_tcam: Fix incorrect list API usage
     - mlxsw: spectrum_acl_tcam: Fix memory leak when canceling rehash work
     - netfilter: nf_tables: honor table dormant flag from netdev release event
       path
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - i40e: Report MFS in decimal base instead of hex
     - iavf: Fix TC config comparison with existing adapter TC config
     - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - serial: core: Provide port lock wrappers
     - serial: mxs-auart: add spinlock around changing cts state
     - drm-print: add drm_dbg_driver to improve namespace symmetry
     - drm/vmwgfx: Fix crtc's atomic check conditional
     - Revert "crypto: api - Disallow identical driver names"
     - net/mlx5e: Fix a race in command alloc flow
     - tracing: Show size of requested perf buffer
     - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker
       together
     - x86/cpu: Fix check for RDPKRU in __show_regs()
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - Bluetooth: qca: fix NULL-deref on non-serdev suspend
     - mmc: sdhci-msm: pervent access to suspended controller
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - cpu: Re-enable CPU mitigations by default for !X86 architectures
     - [Configs] Update CPU mitigation configs
     - arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 Puma
     - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - mtd: diskonchip: work around ubsan link failure
     - tcp: Clean up kernel listener's reqsk in inet_twsk_purge()
     - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge()
     - dmaengine: owl: fix register access functions
     - idma64: Don't try to serve interrupts when device is powered off
     - dma: xilinx_dpdma: Fix locking
     - dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
     - riscv: fix VMALLOC_START definition
     - riscv: Fix TASK_SIZE on 64-bit NOMMU
     - i2c: smbus: fix NULL function pointer dereference
     - fbdev: fix incorrect address computation in deferred IO
     - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
     - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
     - udp: preserve the connected status if only UDP cmsg
     - serial: core: fix kernel-doc for uart_port_unlock_irqrestore()
     - Linux 5.15.158
 .
   * Jammy update: v5.15.157 upstream stable release (LP: #2067959)
     - ksmbd: don't send oplock break if rename fails
     - ksmbd: validate payload size in ipc response
     - ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1
     - btrfs: record delayed inode root in transaction
     - SUNRPC: Fix rpcgss_context trace event acceptor field

 linux (5.15.0-112.122) jammy; urgency=medium
 .
   * jammy/linux: 5.15.0-112.122 -proposed tracker (LP: #2065898)
 .
   * CVE-2024-21823
     - dmanegine: idxd: reformat opcap output to match bitmap_parse() input
     - dmaengine: idxd: add WQ operation cap restriction support
     - dmaengine: idxd: add knob for enqcmds retries
     - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist
     - dmaengine: idxd: add a new security check to deal with a hardware erratum
     - dmaengine: idxd: add a write() method for applications to submit work
 .