Package "linux-tools-5.15.0-1075-azure"

  linux-azure-5.15 (5.15.0-1070.79~20.04.1) focal; urgency=medium

  * focal/linux-azure-5.15: 5.15.0-1070.79~20.04.1 -proposed tracker
    (LP: #2072208)

  * Packaging resync (LP: #1786013)
    - [Packaging] debian.azure-5.15/dkms-versions -- update from kernel-versions
      (main/2024.07.08)

  [ Ubuntu: 5.15.0-1070.79 ]

  * jammy/linux-azure: 5.15.0-1070.79 -proposed tracker (LP: #2072209)
  * Packaging resync (LP: #1786013)
    - [Packaging] debian.azure/dkms-versions -- update from kernel-versions
      (main/2024.07.08)
  * jammy/linux: 5.15.0-118.128 -proposed tracker (LP: #2072255)
  * Jammy update: v5.15.160 upstream stable release (LP: #2070292)
    - drm/amd/display: Fix division by zero in setup_dsc_config
    - pinctrl: core: handle radix_tree_insert() errors in
      pinctrl_register_one_pin()
    - nfsd: don't allow nfsd threads to be signalled.
    - KEYS: trusted: Fix memory leak in tpm2_key_encode()
    - Revert "selftests: mm: fix map_hugetlb failure on 64K page size systems"
    - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
    - net: bcmgenet: synchronize UMAC_CMD access
    - netlink: annotate lockless accesses to nlk->max_recvmsg_len
    - netlink: annotate data-races around sk->sk_err
    - KVM: x86: Clear "has_error_code", not "error_code", for RM exception
      injection
    - drm/amdgpu: Fix possible NULL dereference in
      amdgpu_ras_query_error_status_helper()
    - binder: fix max_thread type inconsistency
    - usb: typec: ucsi: displayport: Fix potential deadlock
    - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
    - remoteproc: mediatek: Make sure IPI buffer fits in L2TCM
    - KEYS: trusted: Do not use WARN when encode fails
    - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
    - docs: kernel_include.py: Cope with docutils 0.21
    - Linux 5.15.160
  * Jammy update: v5.15.159 upstream stable release (LP: #2070028)
    - dmaengine: pl330: issue_pending waits until WFP state
    - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
    - wifi: nl80211: don't free NULL coalescing rule
    - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
    - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
    - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
    - eeprom: at24: Use dev_err_probe for nvmem register failure
    - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
    - eeprom: at24: fix memory corruption race condition
    - pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of GPIOR-T
    - pinctrl/meson: fix typo in PDM's pin name
    - pinctrl: core: delete incorrect free in pinctrl_enable()
    - pinctrl: mediatek: paris: Rework mtk_pinconf_{get,set} switch/case logic
    - pinctrl: mediatek: paris: Fix PIN_CONFIG_INPUT_SCHMITT_ENABLE readback
    - pinctrl: mediatek: paris: Rework support for
      PIN_CONFIG_{INPUT,OUTPUT}_ENABLE
    - sunrpc: add a struct rpc_stats arg to rpc_create_args
    - nfs: expose /proc/net/sunrpc/nfs in net namespaces
    - nfs: make the rpc_stat per net namespace
    - nfs: Handle error of rpc_proc_register() in nfs_net_init().
    - power: rt9455: hide unused rt9455_boost_voltage_values
    - power: supply: mt6360_charger: Fix of_match for usb-otg-vbus regulator
    - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
    - regulator: mt6360: De-capitalize devicetree regulator subnodes
    - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
    - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
    - bpf: Fix a verifier verbose message
    - spi: hisi-kunpeng: Delete the dump interface of data registers in debugfs
    - s390/mm: Fix storage key clearing for guest huge pages
    - s390/mm: Fix clearing storage keys for huge pages
    - xdp: Move conversion to xdp_frame out of map functions
    - xdp: Add xdp_do_redirect_frame() for pre-computed xdp_frames
    - xdp: use flags field to disambiguate broadcast redirect
    - bna: ensure the copied buf is NUL terminated
    - octeontx2-af: avoid off-by-one read from userspace
    - nsh: Restore skb->{protocol,data,mac_header} for outer header in
      nsh_gso_segment().
    - net l2tp: drop flow hash on forward
    - s390/vdso: Add CFI for RA register to asm macro vdso_func
    - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
    - net: qede: use return from qede_parse_flow_attr() for flower
    - net: qede: use return from qede_parse_flow_attr() for flow_spec
    - net: qede: use return from qede_parse_actions()
    - ASoC: meson: axg-fifo: use FIELD helpers
    - ASoC: meson: axg-fifo: use threaded irq to check periods
    - ASoC: meson: axg-card: make links nonatomic
    - ASoC: meson: axg-tdm-interface: manage formatters in trigger
    - ASoC: meson: cards: select SND_DYNAMIC_MINORS
    - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
    - s390/cio: Ensure the copied buf is NUL terminated
    - cxgb4: Properly lock TX queue for the selftest.
    - net: dsa: mv88e6xxx: Fix number of databases for 88E6141 / 88E6341
    - net: bridge: fix multicast-to-unicast with fraglist GSO
    - net: core: reject skb_copy(_expand) for fraglist GSO skbs
    - tipc: fix a possible memleak in tipc_buf_append
    - s390/qeth: don't keep track of Input Queue count
    - s390/qeth: Fix kernel panic after setting hsuid
    - drm/panel: ili9341: Respect deferred probe
    - drm/panel: ili9341: Use predefined error codes
    - net: gro: add flush check in udp_gro_receive_segment
    - clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
    - KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id
    - KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()
    - scsi: lpfc: Move NPIV's transport unregistration to after resource clean up
    - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
    - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvm

  linux-azure-5.15 (5.15.0-1068.77~20.04.1) focal; urgency=medium

  * focal/linux-azure-5.15: 5.15.0-1068.77~20.04.1 -proposed tracker
    (LP: #2068349)

  * Packaging resync (LP: #1786013)
    - [Packaging] debian.azure-5.15/dkms-versions -- update from kernel-versions
      (main/2024.06.10)

  [ Ubuntu: 5.15.0-1068.77 ]

  * jammy/linux-azure: 5.15.0-1068.77 -proposed tracker (LP: #2068350)
  * Packaging resync (LP: #1786013)
    - [Packaging] debian.azure/dkms-versions -- update from kernel-versions
      (main/2024.06.10)
  * Backport request for Ubuntu 5.15 kernels - CIFS Issue (LP: #2070076)
    - keys: Fix overwrite of key expiration on instantiation
  * Azure: Fix hibernation failure (LP: #2069749)
    - drm: Check output polling initialized before disabling
    - drm: Check polling initialized before enabling in
      drm_helper_probe_single_connector_modes
  * Hairpinning Issue on AKS with Latest Linux Stable Kernels (LP: #2070072)
    - SAUCE: Revert "netfilter: br_netfilter: skip conntrack input hook for
      promisc packets"
  * Azure: net: mana: Fix Rx DMA datasize and skb_over_panic (LP: #2066992)
    - net: mana: Fix Rx DMA datasize and skb_over_panic
  * Azure: net: mana: Enable MANA driver on ARM64 with 4K page size
    (LP: #2066982)
    - net: mana: Enable MANA driver on ARM64 with 4K page size
  * jammy/linux: 5.15.0-115.125 -proposed tracker (LP: #2068396)
  * Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2024.06.10)
  * Jammy update: v5.15.158 upstream stable release (LP: #2067974)
    - smb: client: fix rename(2) regression against samba
    - cifs: reinstate original behavior again for forceuid/forcegid
    - HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc
    - HID: logitech-dj: allow mice to use all types of reports
    - arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 Puma
    - arm64: dts: rockchip: fix alphabetical ordering RK3399 puma
    - arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for RK3399 Puma
    - arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro dts
    - arm64: dts: mediatek: mt8183: Add power-domains properity to mfgcfg
    - arm64: dts: mediatek: mt7622: add support for coherent DMA
    - arm64: dts: mediatek: mt7622: introduce nodes for Wireless Ethernet Dispatch
    - arm64: dts: mediatek: mt7622: fix clock controllers
    - arm64: dts: mediatek: mt7622: fix IR nodename
    - arm64: dts: mediatek: mt7622: fix ethernet controller "compatible"
    - arm64: dts: mediatek: mt7622: drop "reset-names" from thermal block
    - arm64: dts: mediatek: mt2712: fix validation errors
    - ARC: [plat-hsdk]: Remove misplaced interrupt-cells property
    - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
    - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
    - vxlan: drop packets from invalid src-address
    - mlxsw: core: Unregister EMAD trap using FORWARD action
    - icmp: prevent possible NULL dereferences from icmp_build_probe()
    - bridge/br_netlink.c: no need to return void function
    - NFC: trf7970a: disable all regulators on removal
    - ipv4: check for NULL idev in ip_route_use_hint()
    - net: usb: ax88179_178a: stop lying about skb->truesize
    - net: gtp: Fix Use-After-Free in gtp_dellink
    - ipvs: Fix checksumming on GSO of SCTP packets
    - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
    - mlxsw: spectrum_acl_tcam: Fix race during rehash delayed work
    - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update
    - mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash
    - mlxsw: spectrum_acl_tcam: Rate limit error message
    - mlxsw: spectrum_acl_tcam: Fix memory leak during rehash
    - mlxsw: spectrum_acl_tcam: Fix warning during rehash
    - mlxsw: spectrum_acl_tcam: Fix incorrect list API usage
    - mlxsw: spectrum_acl_tcam: Fix memory leak when canceling rehash work
    - netfilter: nf_tables: honor table dormant flag from netdev release event
      path
    - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
    - i40e: Report MFS in decimal base instead of hex
    - iavf: Fix TC config comparison with existing adapter TC config
    - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
    - af_unix: Suppress false-positive lockdep splat for spin_lock() in
      __unix_gc().
    - serial: core: Provide port lock wrappers
    - serial: mxs-auart: add spinlock around changing cts state
    - drm-print: add drm_dbg_driver to improve namespace symmetry
    - drm/vmwgfx: Fix crtc's atomic check conditional
    - Revert "crypto: api - Disallow identical driver names"
    - net/mlx5e: Fix a race in command alloc flow
    - tracing: Show size of requested perf buffer
    - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker
      together
    - x86/cpu: Fix check for RDPKRU in __show_regs()
    - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
    - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
    - Bluetooth: qca: fix NULL-deref on non-serdev suspend
    - mmc: sdhci-msm: pervent access to suspended controller
    - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
    - cpu: Re-enable CPU mitigations by default for !X86 architectures
    - [Configs] Update CPU mitigation configs
    - arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 Puma
    - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
    - drm/amdgpu: Fix leak when GPU memory allocation fails
    - irqchip/gic-v3-its: Prevent double free on error
    - ethernet: Add helper for assigning packet type when dest address does not
      match device address
    - net: b44: set pause params only when interface is up
    - stackdepot: respect __GFP_NOLOCKDEP allocation flag
    - mtd: diskonchip: work around ubsan link failure
    - tcp: Clea

  linux-azure-5.15 (5.15.0-1067.76~20.04.1) focal; urgency=medium

  * focal/linux-azure-5.15: 5.15.0-1067.76~20.04.1 -proposed tracker
    (LP: #2068195)

  [ Ubuntu: 5.15.0-1067.76 ]

  * jammy/linux-azure: 5.15.0-1067.76 -proposed tracker (LP: #2068196)
  * jammy/linux: 5.15.0-113.123 -proposed tracker (LP: #2068242)
  * CVE-2024-26924
    - netfilter: nft_set_pipapo: do not free live element
  * CVE-2024-26643
    - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
      timeout
  * jammy/linux: 5.15.0-112.122 -proposed tracker (LP: #2065898)
  * CVE-2024-21823
    - dmanegine: idxd: reformat opcap output to match bitmap_parse() input
    - dmaengine: idxd: add WQ operation cap restriction support
    - dmaengine: idxd: add knob for enqcmds retries
    - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist
    - dmaengine: idxd: add a new security check to deal with a hardware erratum
    - dmaengine: idxd: add a write() method for applications to submit work

  [ Ubuntu: 5.15.0-1066.75 ]

  * jammy/linux-azure: 5.15.0-1066.75 -proposed tracker (LP: #2067485)
  * Azure: Jammy azure CIFS backport to 5.15-backport-1-24-24 causes regression
    (LP: #2067612)
    - SAUCE: Restore CIFS to 5.15-backport-8-16-23

 -- John Cabaj <email address hidden> Thu, 13 Jun 2024 12:38:23 -0500

  linux-azure-5.15 (5.15.0-1065.74~20.04.1) focal; urgency=medium

  * focal/linux-azure-5.15: 5.15.0-1065.74~20.04.1 -proposed tracker
    (LP: #2063716)

  [ Ubuntu: 5.15.0-1065.74 ]

  * jammy/linux-azure: 5.15.0-1065.74 -proposed tracker (LP: #2063717)
  * Azure: Update CIFS to 5.15-backport-1-24-24 (LP: #2064514)
    - SAUCE: cifs: correcting entry
    - cifs: is_network_name_deleted should return a bool
    - cifs: fix charset issue in reconnection
    - cifs: update the ctime on a partial page write
    - smb: client: introduce DFS_CACHE_TGT_LIST()
    - smb: client: ensure to try all targets when finding nested links
    - smb: client: move some params to cifs_open_info_data
    - smb: client: make smb2_compound_op() return resp buffer on success
    - smb: client: rename cifs_dfs_ref.c to namespace.c
    - smb: client: get rid of dfs naming in automount code
    - smb: client: get rid of dfs code dep in namespace.c
    - smb: client: parse reparse point flag in create response
    - smb: client: do not query reparse points twice on symlinks
    - smb: client: query reparse points in older dialects
    - smb: cilent: set reparse mount points as automounts
    - smb: client: reduce stack usage in cifs_try_adding_channels()
    - smb: client: reduce stack usage in cifs_demultiplex_thread()
    - smb: client: reduce stack usage in smb_send_rqst()
    - smb: client: reduce stack usage in smb2_set_ea()
    - smb: client: reduce stack usage in smb2_query_info_compound()
    - smb: client: reduce stack usage in smb2_query_reparse_point()
    - cifs: update desired access while requesting for directory lease
    - send channel sequence number in SMB3 requests after reconnects
    - SMB3: rename macro CIFS_SERVER_IS_CHAN to avoid confusion
    - cifs: Add a laundromat thread for cached directories
    - smb3: allow controlling length of time directory entries are cached with dir
      leases
    - smb3: add trace point for queryfs (statfs)
    - smb3: allow controlling maximum number of cached directories
    - cifs: update internal module version number for cifs.ko
    - smb3: fix minor typo in SMB2_GLOBAL_CAP_LARGE_MTU
    - smb3: move server check earlier when setting channel sequence number
    - smb3: correct places where ENOTSUPP is used instead of preferred EOPNOTSUPP
    - smb3: fix some minor typos and repeated words
    - smb3: Add dynamic trace points for RDMA (smbdirect) reconnect
    - smb3: do not start laundromat thread when dir leases disabled
    - cifs: Fix UAF in cifs_demultiplex_thread()
    - smb3: remove duplicate error mapping
    - smb: client: handle STATUS_IO_REPARSE_TAG_NOT_HANDLED
    - smb3: fix confusing debug message
    - fs/smb/client: Reset password pointer to NULL
    - smb: client: do not start laundromat thread on nohandlecache
    - smb: client: make laundromat a delayed worker
    - smb: client: prevent new fids from being removed by laundromat
    - smb3: fix touch -h of symlink
    - cifs: Add client version details to NTLM authenticate message
    - SMB3: clarify some of the unused CreateOption flags
    - Add definition for new smb3.1.1 command type
    - smb3: fix creating FIFOs when mounting with "sfu" mount option
    - smb: client: fix potential deadlock when releasing mids
    - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
    - smb: use crypto_shash_digest() in symlink_hash()
    - cifs: print server capabilities in DebugData
    - cifs: add xid to query server interface call
    - smb: client: remove extra @chan_count check in __cifs_put_smb_ses()
    - smb: client: fix use-after-free in smb2_query_info_compound()
    - cifs: reconnect helper should set reconnect for the right channel
    - cifs: do not reset chan_max if multichannel is not supported at mount
    - cifs: force interface update before a fresh session setup
    - smb3: minor RDMA cleanup
    - smb3: more minor cleanups for session handling routines
    - cifs: handle cases where a channel is closed
    - cifs: distribute channels across interfaces based on speed
    - cifs: account for primary channel in the interface list
    - cifs: do not pass cifs_sb when trying to add channels
    - cifs: reconnect work should have reference on server struct
    - smb3: minor cleanup of session handling code
    - smb3: fix caching of ctime on setxattr
    - smb: client: fix mount when dns_resolver key is not available
    - smb3: allow dumping session and tcon id to improve stats analysis and
      debugging
    - Missing field not being returned in ioctl CIFS_IOC_GET_MNT_INFO
    - cifs: handle when server starts supporting multichannel
    - cifs: handle when server stops supporting multichannel
    - cifs: update internal module version number for cifs.ko
    - cifs: spnego: add ';' in HOST_KEY_LEN
    - cifs: fix check of rc in function generate_smb3signingkey
    - cifs: fix leak of iface for primary channel
    - cifs: fix lock ordering while disabling multichannel
    - cifs: fix use after free for iface while disabling secondary channels
    - smb: client: implement ->query_reparse_point() for SMB1
    - smb: client: introduce ->parse_reparse_point()
    - smb: client: set correct file type from NFS reparse points
    - smb: client: introduce cifs_sfu_make_node()
    - smb: client: fix missing mode bits for SMB symlinks
    - smb: client: report correct st_size for SMB and NFS symlinks
    - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved
    - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved
    - smb: client, common: fix fortify warnings
    - smb: client: fix potential NULL deref in parse_dfs_referrals()
    - cifs: Fix non-availability of dedup breaking generic/304
    - Revert "cifs: reconnect work should have reference on server struct"
    - cifs: reconnect worker should take reference on server struct
      unconditionally
    - smb3: add missing define
    - ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE

  linux-azure-5.15 (5.15.0-1064.73~20.04.1) focal; urgency=medium

  * focal/linux-azure-5.15: 5.15.0-1064.73~20.04.1 -proposed tracker
    (LP: #2063588)

  [ Ubuntu: 5.15.0-1064.73 ]

  * jammy/linux-azure: 5.15.0-1064.73 -proposed tracker (LP: #2063589)
  * jammy/linux: 5.15.0-107.117 -proposed tracker (LP: #2063635)
  * CVE-2023-52530
    - wifi: mac80211: fix potential key use-after-free
  * CVE-2024-26622
    - tomoyo: fix UAF write bug in tomoyo_write_control()
  * CVE-2023-47233
    - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach

 -- Yuxuan Luo <email address hidden> Wed, 01 May 2024 16:40:18 -0400