|
linux (5.15.0-106.116) jammy; urgency=medium
* jammy/linux: 5.15.0-106.116 -proposed tracker (LP: #2061812)
* CVE-2024-2201
- x86/bugs: Use sysfs_emit()
- KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-only leafs
- KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace
- KVM: x86: Use a switch statement and macros in __feature_translate()
- x86/bugs: Change commas to semicolons in 'spectre_v2' sysfs file
- x86/syscall: Don't force use of indirect calls for system calls
- x86/bhi: Add support for clearing branch history at syscall entry
- x86/bhi: Define SPEC_CTRL_BHI_DIS_S
- x86/bhi: Enumerate Branch History Injection (BHI) bug
- x86/bhi: Add BHI mitigation knob
- x86/bhi: Mitigate KVM by default
- KVM: x86: Add BHI_NO
- [Config] Set CONFIG_BHI to enabled (auto)
* Drop fips-checks script from trees (LP: #2055083)
- [Packaging] Remove fips-checks script
* alsa/realtek: adjust max output valume for headphone on 2 LG machines
(LP: #2058573)
- ALSA: hda/realtek: fix the hp playback volume issue for LG machines
* A general-proteciton exception during guest migration to unsupported PKRU
machine (LP: #2032164)
- x86/fpu: Allow caller to constrain xfeatures when copying to uabi buffer
- KVM: x86: Constrain guest-supported xfeatures only at KVM_GET_XSAVE{2}
* [ICX] [SPR] [ipc/msg] performance: Mitigate the lock contention with percpu
counter (LP: #2058485)
- ipc: check checkpoint_restore_ns_capable() to modify C/R proc files
- ipc/ipc_sysctl.c: remove fallback for !CONFIG_PROC_SYSCTL
- ipc: Store mqueue sysctls in the ipc namespace
- ipc: Store ipc sysctls in the ipc namespace
- ipc: Use the same namespace to modify and validate
- ipc: Remove extra1 field abuse to pass ipc namespace
- ipc: Check permissions for checkpoint_restart sysctls at open time
- percpu: add percpu_counter_add_local and percpu_counter_sub_local
- ipc/msg: mitigate the lock contention with percpu counter
* Jammy update: v5.15.149 upstream stable release (LP: #2059014)
- ksmbd: free ppace array on error in parse_dacl
- ksmbd: don't allow O_TRUNC open on read-only share
- ksmbd: validate mech token in session setup
- ksmbd: fix UAF issue in ksmbd_tcp_new_connection()
- ksmbd: only v2 leases handle the directory
- iio: adc: ad7091r: Set alert bit in config register
- iio: adc: ad7091r: Allow users to configure device events
- iio: adc: ad7091r: Enable internal vref if external vref is not supplied
- dmaengine: fix NULL pointer in channel unregistration function
- scsi: ufs: core: Simplify power management during async scan
- scsi: ufs: core: Remove the ufshcd_hba_exit() call from ufshcd_async_scan()
- iio:adc:ad7091r: Move exports into IIO_AD7091R namespace.
- ext4: allow for the last group to be marked as trimmed
- btrfs: sysfs: validate scrub_speed_max value
- crypto: api - Disallow identical driver names
- PM: hibernate: Enforce ordering during image compression/decompression
- hwrng: core - Fix page fault dead lock on mmap-ed hwrng
- crypto: s390/aes - Fix buffer overread in CTR mode
- media: imx355: Enable runtime PM before registering async sub-device
- rpmsg: virtio: Free driver_override when rpmsg_remove()
- media: ov9734: Enable runtime PM before registering async sub-device
- mips: Fix max_mapnr being uninitialized on early stages
- bus: mhi: host: Drop chan lock before queuing buffers
- bus: mhi: host: Add spinlock to protect WP access when queueing TREs
- parisc/firmware: Fix F-extend for PDC addresses
- async: Split async_schedule_node_domain()
- async: Introduce async_schedule_dev_nocall()
- arm64: dts: qcom: sc7180: fix USB wakeup interrupt types
- arm64: dts: qcom: sdm845: fix USB wakeup interrupt types
- arm64: dts: qcom: sm8150: fix USB wakeup interrupt types
- arm64: dts: qcom: sdm845: fix USB DP/DM HS PHY interrupts
- lsm: new security_file_ioctl_compat() hook
- scripts/get_abi: fix source path leak
- mmc: core: Use mrq.sbc in close-ended ffu
- mmc: mmc_spi: remove custom DMA mapped buffers
- rtc: Adjust failure return code for cmos_set_alarm()
- nouveau/vmm: don't set addr on the fail path to avoid warning
- ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
- rename(): fix the locking of subdirectories
- ksmbd: set v2 lease version on lease upgrade
- ksmbd: fix potential circular locking issue in smb2_set_ea()
- ksmbd: don't increment epoch if current state and request state are same
- ksmbd: send lease break notification on FILE_RENAME_INFORMATION
- ksmbd: Add missing set_freezable() for freezable kthread
- net/smc: fix illegal rmb_desc access in SMC-D connection dump
- tcp: make sure init the accept_queue's spinlocks once
- bnxt_en: Wait for FLR to complete during probe
- vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING
- llc: make llc_ui_sendmsg() more robust against bonding changes
- llc: Drop support for ETH_P_TR_802_2.
- net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
- tracing: Ensure visibility when inserting an element into tracing_map
- afs: Hide silly-rename files from userspace
- tcp: Add memory barrier to tcp_push()
- netlink: fix potential sleeping issue in mqueue_flush_file
- ipv6: init the accept_queue's spinlocks in inet6_create
- net/mlx5: DR, Use the right GVMI number for drop action
- net/mlx5: DR, Align mlx5dv_dr API vport action with FW behavior
- net/mlx5: DR, Can't go to uplink vport on RX rule
- net/mlx5e: fix a double-free in arfs_create_groups
- net/mlx5e: fix a potential double-free in fs_any_create_groups
- overflow: Allow mixed type arguments
- netfilter: nft_limit: reject configurations that cause integer overflow
- netfilter:
|
