Package "linux-riscv-headers-6.14.0-37"

  linux-riscv (6.14.0-37.37.1) plucky; urgency=medium

  * plucky/linux-riscv: 6.14.0-37.37.1 -proposed tracker (LP: #2131509)

  [ Ubuntu: 6.14.0-37.37 ]

  * plucky/linux: 6.14.0-37.37 -proposed tracker (LP: #2131513)
  * Poweroff not working consistently after upgrading kernel 6.14.0-17.17 or
    later (LP: #2115860)
    - drm/amd: Unify shutdown() callback behavior
    - drm/amd: Stop exporting amdgpu_device_ip_suspend() outside amdgpu_device
    - drm/amd: Remove comment about handling errors in
      amdgpu_device_ip_suspend_phase1()
    - drm/amd: Don't always set IP block HW status to false
    - drm/amd: Pass IP suspend errors up to callers
    - drm/amd: Avoid evicting resources at S5
  * CAP_PERFMON insufficient to get perf data (LP: #2131046)
    - SAUCE: perf/core: Allow CAP_PERFMON for paranoid level 4
  * i40e driver is triggering VF resets on every link state change
    (LP: #2130552)
    - i40e: avoid redundant VF link state updates
  * kernel: sysfs: cannot create duplicate filename
    '/bus/platform/devices/iTCO_wdt' (LP: #2121997)
    - i2c: i801: Hide Intel Birch Stream SoC TCO WDT
  * Fix incorrect bug number for CONFIG_KERNEL_ZSTD (LP: #2127676)
    - [Config] Fix bug note for CONFIG_KERNEL_ZSTD
  * CVE-2025-39993
    - media: rc: fix races with imon_disconnect()
  * CVE-2025-40018
    - ipvs: Defer ip_vs_ftp unregister during netns cleanup
  * CVE-2025-39964
    - crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg
    - crypto: af_alg - Fix incorrect boolean values in af_alg_ctx
  * CVE-2025-39946
    - tls: make sure to abort the stream if headers are bogus

 -- Sarah Emery <email address hidden> Thu, 20 Nov 2025 15:47:48 +0100

  linux-riscv (6.14.0-36.36.1) plucky; urgency=medium

  * plucky/linux-riscv: 6.14.0-36.36.1 -proposed tracker (LP: #2127646)

  [ Ubuntu: 6.14.0-36.36 ]

  * plucky/linux: 6.14.0-36.36 -proposed tracker (LP: #2127650)
  * Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2025.10.13)
  * [SRU] Add support of cs42l43 and cs35l56 on ThinkPad P1 and P16
    (LP: #2122379)
    - ASoC: Intel: sof_sdw: Add quirks for Lenovo P1 and P16
  * ubuntu_kselftests_net:nl_netdev.py regression plucky nsim_queue_stop
    [netdevsim] (LP: #2121866)
    - net: devmem: don't call queue stop / start when the interface is down
  * [SRU] Fix kernel crash in intel-thc driver (LP: #2119738)
    - HID: intel-thc-hid: intel-quicki2c: Fix ACPI dsd ICRS/ISUB length
    - HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C
      regs save
  * Enable Xilinx PS UART configs (LP: #2121337)
    - [Config] Enable Xilinx PS UART configs
  * [SRU] Do not instantiate SPD5118 sensors on i801 SMBus controllers
    (LP: #2114963)
    - i2c: smbus: introduce Write Disable-aware SPD instantiating functions
    - SAUCE: i2c: i801: Do not instantiate spd5118 under SPD Write Disable
  * UBSAN: shift-out-of-bounds in drivers/edac/skx_common.c:452:16
    (LP: #2119713)
    - EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller
  * [SRU][Q/P/N:hwe-6.14] mt7925: Add MBSS support (LP: #2119479)
    - wifi: mt76: mt7925: add MBSSID support
  * Add pvpanic kernel modules to linux-modules (LP: #2126659)
    - [Packaging] Add pvpanic kernel modules to linux-modules
  * r8169 can not wake on LAN via SFP moudule (LP: #2123901)
    - r8169: set EEE speed down ratio to 1
  * ensure mptcp keepalives are honored when set (LP: #2125444)
    - mptcp: sockopt: make sync_socket_options propagate SOCK_KEEPOPEN
  * [SRU] Re-enable common modes for eDP on AMDGPU (LP: #2125471)
    - drm/amd/display: Use scaling for non-native resolutions on eDP
  * System hangs when running the memory stress test (LP: #2103680)
    - mm: page_alloc: avoid kswapd thrashing due to NUMA restrictions
  * UBUNTU: fan: fail to check kmalloc() return could cause a NULL pointer
    dereference (LP: #2125053)
    - SAUCE: fan: vxlan: check memory allocation for map
  * drm/xe: support power limits (LP: #2122435)
    - drm/xe/hwmon: expose fan speed
    - drm/xe/hwmon: Add support to manage power limits though mailbox
    - drm/xe/hwmon: Move card reactive critical power under channel card
    - drm/xe/hwmon: Add support to manage PL2 though mailbox
    - drm/xe/hwmon: Expose powerX_cap_interval
    - drm/xe/hwmon: Read energy status from PMT
    - drm/xe/hwmon: Expose power sysfs entries based on firmware support
    - drm/xe/hwmon: Fix xe_hwmon_power_max_write
  * A few HP laptops are failing to respond during test runs after upgrading
    to the 6.14.0-1012-oem kernel. (LP: #2122397)
    - wifi: ath12k: eliminate redundant debug mask check in ath12k_dbg()
    - wifi: ath12k: introduce ath12k_generic_dbg()
    - wifi: ath12k: remove redundant vif settings during link interface
      creation
    - wifi: ath12k: remove redundant logic for initializing arvif
    - wifi: ath12k: relocate a few functions in mac.c
    - wifi: ath12k: allocate new links in change_vif_links()
    - wifi: ath12k: handle link removal in change_vif_links()
  * Plucky update: upstream stable patchset 2025-09-30 (LP: #2126463)
    - ASoC: amd: yc: Add DMI quirk for HP Laptop 17 cp-2033dx
    - ethernet: intel: fix building with large NR_CPUS
    - ASoC: amd: yc: Add DMI entries to support HP 15-fb1xxx
    - ALSA: hda/cs35l56: Workaround bad dev-index on Lenovo Yoga Book 9i GenX
    - ASoC: Intel: fix SND_SOC_SOF dependencies
    - ASoC: amd: yc: add DMI quirk for ASUS M6501RM
    - audit,module: restore audit logging in load failure case
    - fs_context: fix parameter name in infofc() macro
    - fs/ntfs3: cancle set bad inode after removing name fails
    - ublk: use vmalloc for ublk_device's __queues
    - hfsplus: make splice write available again
    - hfs: make splice write available again
    - hfsplus: remove mutex_lock check in hfsplus_free_extents
    - Revert "fs/ntfs3: Replace inode_trylock with inode_lock"
    - gfs2: No more self recovery
    - io_uring: fix breakage in EXPERT menu
    - ASoC: soc-dai: tidyup return value of snd_soc_xlate_tdm_slot_mask()
    - ASoC: ops: dynamically allocate struct snd_ctl_elem_value
    - ASoC: mediatek: use reserved memory or enable buffer pre-allocation
    - arm64: dts: freescale: imx93-tqma9352: Limit BUCK2 to 600mV
    - selftests: Fix errno checking in syscall_user_dispatch test
    - soc: qcom: QMI encoding/decoding for big endian
    - arm64: dts: qcom: sdm845: Expand IMEM region
    - arm64: dts: qcom: sc7180: Expand IMEM region
    - arm64: dts: exynos: gs101: Add 'local-timer-stop' to cpuidle nodes
    - arm64: dts: qcom: sa8775p: Correct the interrupt for remoteproc
    - arm64: dts: qcom: msm8976: Make blsp_dma controlled-remotely
    - ARM: dts: vfxxx: Correctly use two tuples for timer address
    - usb: host: xhci-plat: fix incorrect type for of_match variable in
      xhci_plat_probe()
    - usb: misc: apple-mfi-fastcharge: Make power supply names unique
    - arm64: dts: ti: k3-am642-phyboard-electra: Fix PRU-ICSSG Ethernet ports
    - arm64: dts: ti: k3-am62p-j722s: fix pinctrl-single size
    - cpufreq: armada-8k: make both cpu masks static
    - firmware: arm_scmi: Fix up turbo frequencies selection
    - usb: typec: ucsi: yoga-c630: fix error and remove paths
    - mei: vsc: Destroy mutex after freeing the IRQ
    - mei: vsc: Event notifier fixes
    - mei: vsc: Unset the event callback on remove and probe errors
    - spi: stm32: Check for cfg availability in stm32_spi_probe
    - staging: fbtft: fix potential memory leak in fbtft_framebuffer_alloc()
    - vmci: Prevent the dispatching of uninitialized payloads
    - pps: fix poll su

  linux-riscv (6.14.0-35.35.1) plucky; urgency=medium

  * plucky/linux-riscv: 6.14.0-35.35.1 -proposed tracker (LP: #2127464)

  * Packaging resync (LP: #1786013)
    - [Packaging] riscv: Remove dwarfdump from Build-Depends

  [ Ubuntu: 6.14.0-35.35 ]

  * plucky/linux: 6.14.0-35.35 -proposed tracker (LP: #2127468)
  * VMSCAPE CVE-2025-40300 (LP: #2124105) // CVE-2025-40300
    - Documentation/hw-vuln: Add VMSCAPE documentation
    - x86/vmscape: Enumerate VMSCAPE bug
    - x86/vmscape: Add conditional IBPB mitigation
    - x86/vmscape: Enable the mitigation
    - x86/bugs: Move cpu_bugs_smt_update() down
    - x86/vmscape: Warn when STIBP is disabled with SMT
    - x86/vmscape: Add old Intel CPUs to affected list
  * VMSCAPE CVE-2025-40300 (LP: #2124105)
    - [Config] Enable MITIGATION_VMSCAPE config

 -- Sarah Emery <email address hidden> Wed, 15 Oct 2025 10:08:35 +0200

  linux-riscv (6.14.0-34.34.1) plucky; urgency=medium

  * plucky/linux-riscv: 6.14.0-34.34.1 -proposed tracker (LP: #2123941)

  [ Ubuntu: 6.14.0-34.34 ]

  * plucky/linux: 6.14.0-34.34 -proposed tracker (LP: #2123945)
  * [25.04 FEAT] [post announcement] [KRN2304] CPU-MF Counters for new IBM Z
    hardware - perf part (LP: #2103415)
    - perf list: Add IBM z17 event descriptions
  * Kernel fails to build when coresight is enabled (LP: #2122527)
    - Coresight: Introduce a new struct coresight_path
    - Coresight: Change functions to accept the coresight_path
    - coresight: change coresight_device lock type to raw_spinlock_t
  * memory leaks when configuring a small rate limit in audit (LP: #2122554)
    - audit: fix skb leak when audit rate limit is exceeded
  * [UBUNTU 24.04] s390/pci: Don't abort recovery for user-space drivers
    (LP: #2121150)
    - s390/pci: Allow automatic recovery with minimal driver support
  * [AMDGPU] Call trace occurs when unplugging a HDMI/DP/VGA cable on Dell
    platforms (LP: #2116908)
    - drm/amd/display: limit clear_update_flags to dcn32 and above
    - drm/amd/display: Allow DCN301 to clear update flags
  * sources list generation using dwarfdump takes up to 0.5hr in build process
    (LP: #2104911)
    - [Packaging] Don't generate list of source files
  * [SRU] Apparmor: Unshifted uids for hardlinks and unix sockets in user
    namespaces (LP: #2121257)
    - apparmor: shift ouid when mediating hard links in userns
    - apparmor: shift uid when mediating af_unix in userns
  * Plucky update: upstream stable patchset 2025-09-04 (LP: #2122072)
    - rtc: pcf2127: add missing semicolon after statement
    - rtc: pcf2127: fix SPI command byte for PCF2131
    - rtc: cmos: use spin_lock_irqsave in cmos_interrupt
    - virtio-net: xsk: rx: fix the frame's length check
    - virtio-net: ensure the received length does not exceed allocated size
    - net: txgbe: request MISC IRQ in ndo_open
    - vsock/vmci: Clear the vmci transport packet properly when initializing
      it
    - net: libwx: fix the incorrect display of the queue number
    - mmc: sdhci: Add a helper function for dump register in dynamic debug
      mode
    - Revert "mmc: sdhci: Disable SD card clock before changing parameters"
    - mmc: core: sd: Apply BROKEN_SD_DISCARD quirk earlier
    - Bluetooth: HCI: Set extended advertising data synchronously
    - Bluetooth: hci_sync: revert some mesh modifications
    - Bluetooth: MGMT: set_mesh: update LE scan interval and window
    - Bluetooth: MGMT: mesh_send: check instances prior disabling advertising
    - iommufd/selftest: Fix iommufd_dirty_tracking with large hugepage sizes
    - regulator: gpio: Fix the out-of-bounds access to drvdata::gpiods
    - Input: cs40l50-vibra - fix potential NULL dereference in
      cs40l50_upload_owt()
    - usb: typec: altmodes/displayport: do not index invalid pin_assignments
    - mtk-sd: Fix a pagefault in dma_unmap_sg() for not prepared data
    - mtk-sd: Prevent memory corruption from DMA map failure
    - mtk-sd: reset host->mrq on prepare_data() error
    - drm/v3d: Disable interrupts before resetting the GPU
    - firmware: arm_ffa: Fix memory leak by freeing notifier callback node
    - firmware: arm_ffa: Move memory allocation outside the mutex locking
    - firmware: arm_ffa: Replace mutex with rwlock to avoid sleep in atomic
      context
    - arm64: dts: apple: t8103: Fix PCIe BCM4377 nodename
    - platform/mellanox: mlxbf-tmfifo: fix vring_desc.len assignment
    - RDMA/mlx5: Fix unsafe xarray access in implicit ODP handling
    - RDMA/mlx5: Initialize obj_event->obj_sub_list before xa_insert
    - nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.
    - NFSv4/pNFS: Fix a race to wake on NFS_LAYOUT_DRAIN
    - scsi: qla2xxx: Fix DMA mapping test in qla24xx_get_port_database()
    - scsi: qla4xxx: Fix missing DMA mapping error in qla4xxx_alloc_pdu()
    - scsi: sd: Fix VPD page 0xb7 length check
    - scsi: ufs: core: Fix spelling of a sysfs attribute name
    - RDMA/mlx5: Fix HW counters query for non-representor devices
    - RDMA/mlx5: Fix CC counters query for MPV
    - RDMA/mlx5: Fix vport loopback for MPV device
    - platform/mellanox: mlxbf-pmc: Fix duplicate event ID for CACHE_DATA1
    - platform/mellanox: nvsw-sn2201: Fix bus number in adapter error message
    - Bluetooth: Prevent unintended pause by checking if advertising is active
    - btrfs: fix missing error handling when searching for inode refs during
      log replay
    - btrfs: fix iteration of extrefs during log replay
    - btrfs: return a btrfs_inode from btrfs_iget_logging()
    - btrfs: return a btrfs_inode from read_one_inode()
    - btrfs: fix invalid inode pointer dereferences during log replay
    - btrfs: fix inode lookup error handling during log replay
    - btrfs: record new subvolume in parent dir earlier to avoid dir logging
      races
    - btrfs: propagate last_unlink_trans earlier when doing a rmdir
    - btrfs: use btrfs_record_snapshot_destroy() during rmdir
    - ethernet: atl1: Add missing DMA mapping error checks and count errors
    - dpaa2-eth: fix xdp_rxq_info leak
    - drm/exynos: fimd: Guard display clock control with runtime PM calls
    - spi: spi-fsl-dspi: Clear completion counter before initiating transfer
    - drm/i915/selftests: Change mock_request() to return error pointers
    - nvme: Fix incorrect cdw15 value in passthru error logging
    - nvmet: fix memory leak of bio integrity
    - platform/x86: dell-wmi-sysman: Fix WMI data block retrieval in sysfs
      callbacks
    - platform/x86: hp-bioscfg: Fix class device unregistration
    - platform/x86: think-lmi: Fix class device unregistration
    - platform/x86: dell-wmi-sysman: Fix class device unregistration
    - platform/mellanox: mlxreg-lc: Fix logic error in power state check
    - drm/bridge: aux-hpd-bridge: fix assignment of the of_node
    - net: usb: lan78xx: fix WARN in __netif_napi_del_loc

  linux-riscv (6.14.0-33.33.1) plucky; urgency=medium

  * plucky/linux-riscv: 6.14.0-33.33.1 -proposed tracker (LP: #2124038)

  [ Ubuntu: 6.14.0-33.33 ]

  * plucky/linux: 6.14.0-33.33 -proposed tracker (LP: #2124042)
  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log
  * CVE-2025-38477
    - net/sched: sch_qfq: Fix race condition on qfq_aggregate
    - net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in
      qfq_delete_class
  * CVE-2025-38500
    - xfrm: interface: fix use-after-free after changing collect_md xfrm
      interface
  * CVE-2025-38617
    - net/packet: fix a race in packet_set_ring() and packet_notifier()
  * CVE-2025-38618
    - vsock: Do not allow binding to VMADDR_PORT_ANY

 -- Alessio Faina <email address hidden> Mon, 22 Sep 2025 11:25:50 +0200