Package "linux-tools-6.14.0-34"

  linux (6.14.0-34.34) plucky; urgency=medium

  * plucky/linux: 6.14.0-34.34 -proposed tracker (LP: #2123945)

  * [25.04 FEAT] [post announcement] [KRN2304] CPU-MF Counters for new IBM Z
    hardware - perf part (LP: #2103415)
    - perf list: Add IBM z17 event descriptions

  * Kernel fails to build when coresight is enabled (LP: #2122527)
    - Coresight: Introduce a new struct coresight_path
    - Coresight: Change functions to accept the coresight_path
    - coresight: change coresight_device lock type to raw_spinlock_t

  * memory leaks when configuring a small rate limit in audit (LP: #2122554)
    - audit: fix skb leak when audit rate limit is exceeded

  * [UBUNTU 24.04] s390/pci: Don't abort recovery for user-space drivers
    (LP: #2121150)
    - s390/pci: Allow automatic recovery with minimal driver support

  * [AMDGPU] Call trace occurs when unplugging a HDMI/DP/VGA cable on Dell
    platforms (LP: #2116908)
    - drm/amd/display: limit clear_update_flags to dcn32 and above
    - drm/amd/display: Allow DCN301 to clear update flags

  * sources list generation using dwarfdump takes up to 0.5hr in build process
    (LP: #2104911)
    - [Packaging] Don't generate list of source files

  * [SRU] Apparmor: Unshifted uids for hardlinks and unix sockets in user
    namespaces (LP: #2121257)
    - apparmor: shift ouid when mediating hard links in userns
    - apparmor: shift uid when mediating af_unix in userns

  * Plucky update: upstream stable patchset 2025-09-04 (LP: #2122072)
    - rtc: pcf2127: add missing semicolon after statement
    - rtc: pcf2127: fix SPI command byte for PCF2131
    - rtc: cmos: use spin_lock_irqsave in cmos_interrupt
    - virtio-net: xsk: rx: fix the frame's length check
    - virtio-net: ensure the received length does not exceed allocated size
    - net: txgbe: request MISC IRQ in ndo_open
    - vsock/vmci: Clear the vmci transport packet properly when initializing
      it
    - net: libwx: fix the incorrect display of the queue number
    - mmc: sdhci: Add a helper function for dump register in dynamic debug
      mode
    - Revert "mmc: sdhci: Disable SD card clock before changing parameters"
    - mmc: core: sd: Apply BROKEN_SD_DISCARD quirk earlier
    - Bluetooth: HCI: Set extended advertising data synchronously
    - Bluetooth: hci_sync: revert some mesh modifications
    - Bluetooth: MGMT: set_mesh: update LE scan interval and window
    - Bluetooth: MGMT: mesh_send: check instances prior disabling advertising
    - iommufd/selftest: Fix iommufd_dirty_tracking with large hugepage sizes
    - regulator: gpio: Fix the out-of-bounds access to drvdata::gpiods
    - Input: cs40l50-vibra - fix potential NULL dereference in
      cs40l50_upload_owt()
    - usb: typec: altmodes/displayport: do not index invalid pin_assignments
    - mtk-sd: Fix a pagefault in dma_unmap_sg() for not prepared data
    - mtk-sd: Prevent memory corruption from DMA map failure
    - mtk-sd: reset host->mrq on prepare_data() error
    - drm/v3d: Disable interrupts before resetting the GPU
    - firmware: arm_ffa: Fix memory leak by freeing notifier callback node
    - firmware: arm_ffa: Move memory allocation outside the mutex locking
    - firmware: arm_ffa: Replace mutex with rwlock to avoid sleep in atomic
      context
    - arm64: dts: apple: t8103: Fix PCIe BCM4377 nodename
    - platform/mellanox: mlxbf-tmfifo: fix vring_desc.len assignment
    - RDMA/mlx5: Fix unsafe xarray access in implicit ODP handling
    - RDMA/mlx5: Initialize obj_event->obj_sub_list before xa_insert
    - nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.
    - NFSv4/pNFS: Fix a race to wake on NFS_LAYOUT_DRAIN
    - scsi: qla2xxx: Fix DMA mapping test in qla24xx_get_port_database()
    - scsi: qla4xxx: Fix missing DMA mapping error in qla4xxx_alloc_pdu()
    - scsi: sd: Fix VPD page 0xb7 length check
    - scsi: ufs: core: Fix spelling of a sysfs attribute name
    - RDMA/mlx5: Fix HW counters query for non-representor devices
    - RDMA/mlx5: Fix CC counters query for MPV
    - RDMA/mlx5: Fix vport loopback for MPV device
    - platform/mellanox: mlxbf-pmc: Fix duplicate event ID for CACHE_DATA1
    - platform/mellanox: nvsw-sn2201: Fix bus number in adapter error message
    - Bluetooth: Prevent unintended pause by checking if advertising is active
    - btrfs: fix missing error handling when searching for inode refs during
      log replay
    - btrfs: fix iteration of extrefs during log replay
    - btrfs: return a btrfs_inode from btrfs_iget_logging()
    - btrfs: return a btrfs_inode from read_one_inode()
    - btrfs: fix invalid inode pointer dereferences during log replay
    - btrfs: fix inode lookup error handling during log replay
    - btrfs: record new subvolume in parent dir earlier to avoid dir logging
      races
    - btrfs: propagate last_unlink_trans earlier when doing a rmdir
    - btrfs: use btrfs_record_snapshot_destroy() during rmdir
    - ethernet: atl1: Add missing DMA mapping error checks and count errors
    - dpaa2-eth: fix xdp_rxq_info leak
    - drm/exynos: fimd: Guard display clock control with runtime PM calls
    - spi: spi-fsl-dspi: Clear completion counter before initiating transfer
    - drm/i915/selftests: Change mock_request() to return error pointers
    - nvme: Fix incorrect cdw15 value in passthru error logging
    - nvmet: fix memory leak of bio integrity
    - platform/x86: dell-wmi-sysman: Fix WMI data block retrieval in sysfs
      callbacks
    - platform/x86: hp-bioscfg: Fix class device unregistration
    - platform/x86: think-lmi: Fix class device unregistration
    - platform/x86: dell-wmi-sysman: Fix class device unregistration
    - platform/mellanox: mlxreg-lc: Fix logic error in power state check
    - drm/bridge: aux-hpd-bridge: fix assignment of the of_node
    - net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect
    - drm/i915/gt: Fix timeline left held on VMA alloc error
    - drm/i915/gsc: me

  linux (6.14.0-33.33) plucky; urgency=medium

  * plucky/linux: 6.14.0-33.33 -proposed tracker (LP: #2124042)

  * Packaging resync (LP: #1786013)
    - [Packaging] resync git-ubuntu-log

  * CVE-2025-38477
    - net/sched: sch_qfq: Fix race condition on qfq_aggregate
    - net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in
      qfq_delete_class

  * CVE-2025-38500
    - xfrm: interface: fix use-after-free after changing collect_md xfrm
      interface

  * CVE-2025-38617
    - net/packet: fix a race in packet_set_ring() and packet_notifier()

  * CVE-2025-38618
    - vsock: Do not allow binding to VMADDR_PORT_ANY

 -- Manuel Diewald <email address hidden> Wed, 17 Sep 2025 21:37:55 +0200

  linux (6.14.0-32.32) plucky; urgency=medium

  * plucky/linux: 6.14.0-32.32 -proposed tracker (LP: #2121653)

  * Packaging resync (LP: #1786013)
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2025.08.11)

  * Pytorch reports incorrect GPU memory causing "HIP Out of Memory" errors
    (LP: #2120454)
    - drm/amdkfd: add a new flag to manage where VRAM allocations go
    - drm/amdkfd: use GTT for VRAM on APUs only if GTT is larger

  * nvme no longer detected on boot after upgrade to 6.8.0-60 (LP: #2111521)
    - SAUCE: PCI: Disable RRS polling for Intel SSDPE2KX020T8 nvme

  * kernel panic when reloading apparmor 5.0.0 profiles (LP: #2120233)
    - SAUCE: apparmor5.0.0 [59/53]: apparmor: prevent profile->disconnected
      double free in aa_free_profile

  * [SRU] Add support for ALC1708 codec on TRBL platform (LP: #2116247)
    - ASoC: Intel: soc-acpi-intel-lnl-match: add rt1320_l12_rt714_l0 support

  * [SRU] Add waiting latency for USB port resume (LP: #2115478)
    - usb: hub: fix detection of high tier USB3 devices behind suspended hubs
    - usb: hub: Fix flushing and scheduling of delayed work that tunes runtime
      pm
    - usb: hub: Fix flushing of delayed work used for post resume purposes

  * minimal kernel lacks modules for blk disk in arm64 openstack environments
    where config_drive is required (LP: #2118499)
    - [Config] Enable SYM53C8XX_2 on arm64

  * Support xe2_hpg (LP: #2116175)
    - drm/xe/xe2_hpg: Add PCI IDs for xe2_hpg
    - drm/xe/xe2_hpg: Define additional Xe2_HPG GMD_ID
    - drm/xe/xe2_hpg: Add set of workarounds
    - drm/xe/xe2hpg: Add Wa_16025250150

  * drm/xe: Lite restore breaks fdinfo drm-cycles-rcs reporting (LP: #2119526)
    - drm/xe: Add WA BB to capture active context utilization
    - drm/xe/lrc: Use a temporary buffer for WA BB

  * No IP Address assigned after hot-plugging Ethernet cable on HP Platform
    (LP: #2115393)
    - Revert "e1000e: change k1 configuration on MTP and later platforms"

  * I/O performance regression on NVMes under same bridge (dual port nvme)
    (LP: #2115738)
    - iommu/vt-d: Optimize iotlb_sync_map for non-caching/non-RWBF modes
    - iommu/vt-d: Split intel_iommu_domain_alloc_paging_flags()
    - iommu/vt-d: Create unique domain ops for each stage
    - iommu/vt-d: Split intel_iommu_enforce_cache_coherency()
    - iommu/vt-d: Split paging_domain_compatible()
    - iommu/vt-d: Make iotlb_sync_map a static property of dmar_domain

  * BPF header file in wrong location (LP: #2118965)
    - [Packaging] Install bpf header to correct location

  * Internal microphone not working on ASUS VivoBook with Realtek ALC256
    (Ubuntu 24.04 + kernel 6.15) (LP: #2112330)
    - ALSA: hda/realtek: Fix built-in mic on ASUS VivoBook X513EA

  * Documentation update for [Ubuntu25.04] "virsh attach-interface" requires
    a reboot to reflect the attached interfaces on the guest (LP: #2111231)
    - powerpc/pseries/dlpar: Search DRC index from ibm, drc-indexes for IO add

  * Plucky update: upstream stable patchset 2025-08-06 (LP: #2119603)
    - tools/x86/kcpuid: Fix error handling
    - x86/idle: Remove MFENCEs for X86_BUG_CLFLUSH_MONITOR in
      mwait_idle_with_hints() and prefer_mwait_c1_over_halt()
    - crypto: sun8i-ce-hash - fix error handling in sun8i_ce_hash_run()
    - sched: Fix trace_sched_switch(.prev_state)
    - perf/x86/amd/uncore: Remove unused 'struct amd_uncore_ctx::node' member
    - perf/x86/amd/uncore: Prevent UMC counters from saturating
    - gfs2: replace sd_aspace with sd_inode
    - gfs2: gfs2_create_inode error handling fix
    - perf/core: Fix broken throttling when max_samples_per_tick=1
    - crypto: sun8i-ss - do not use sg_dma_len before calling DMA functions
    - powerpc: do not build ppc_save_regs.o always
    - powerpc/crash: Fix non-smp kexec preparation
    - sched/core: Tweak wait_task_inactive() to force dequeue sched_delayed
      tasks
    - x86/microcode/AMD: Do not return error when microcode update is not
      necessary
    - crypto: sun8i-ce - undo runtime PM changes during driver removal
    - x86/cpu: Sanitize CPUID(0x80000000) output
    - x86/insn: Fix opcode map (!REX2) superscript tags
    - brd: fix aligned_sector from brd_do_discard()
    - brd: fix discard end sector
    - kselftest: cpufreq: Get rid of double suspend in rtcwake case
    - crypto: marvell/cesa - Avoid empty transfer descriptor
    - erofs: fix file handle encoding for 64-bit NIDs
    - powerpc/pseries/iommu: Fix kmemleak in TCE table userspace view
    - btrfs: scrub: update device stats when an error is detected
    - btrfs: scrub: fix a wrong error type when metadata bytenr mismatches
    - btrfs: fix invalid data space release when truncating block in NOCOW
      mode
    - rcu/cpu_stall_cputime: fix the hardirq count for x86 architecture
    - crypto: lrw - Only add ecb if it is not already there
    - crypto: xts - Only add ecb if it is not already there
    - crypto: sun8i-ce - move fallback ahash_request to the end of the struct
    - kunit: Fix wrong parameter to kunit_deactivate_static_stub()
    - crypto: api - Redo lookup on EEXIST
    - ACPICA: exserial: don't forget to handle FFixedHW opregions for reading
    - ASoC: tas2764: Enable main IRQs
    - EDAC/{skx_common,i10nm}: Fix the loss of saved RRL for HBM pseudo
      channel 0
    - spi: tegra210-quad: Fix X1_X2_X4 encoding and support x4 transfers
    - spi: tegra210-quad: remove redundant error handling code
    - spi: tegra210-quad: modify chip select (CS) deactivation
    - power: reset: at91-reset: Optimize at91_reset()
    - ASoC: SOF: ipc4-pcm: Adjust pipeline_list->pipelines allocation type
    - ASoC: SOF: amd: add missing acp descriptor field
    - PM: wakeup: Delete space in the end of string shown by
      pm_show_wakelocks()
    - ACPI: resource: fix a typo for MECHREVO in
      irq1_edge_low_force_override[]
    - x86/mtrr: Check if fixed-range MTRRs exist in mtrr_save_fixe

  linux (6.14.0-29.29) plucky; urgency=medium

  * plucky/linux: 6.14.0-29.29 -proposed tracker (LP: #2119948)

  * CVE-2025-38350
    - net/sched: Always pass notifications when child class becomes empty

 -- Manuel Diewald <email address hidden> Thu, 07 Aug 2025 16:44:26 +0200

  linux (6.14.0-28.28) plucky; urgency=medium

  * plucky/linux: 6.14.0-28.28 -proposed tracker (LP: #2117649)

  * Packaging resync (LP: #1786013)
    - [Packaging] update annotations scripts
    - [Packaging] debian.master/dkms-versions -- update from kernel-versions
      (main/2025.07.14)

  * Dell AIO backlight is not working, dell_uart_backlight module is missing
    (LP: #2083800)
    - [Config] enable CONFIG_DELL_UART_BACKLIGHT

  * integrated I219-LM network adapter appears to be running too fast, causing
    synchronization issues when using the I219-LM PTP feature (LP: #2116072)
    - e1000e: set fixed clock frequency indication for Nahum 11 and Nahum 13

  * Audio broken on ThinkPad X13s (LP: #2115898)
    - SAUCE: Revert "UBUNTU: SAUCE: Change: cracking sound fix"

  * Ubuntu 24.04+ arm64: screen resolution fixed to 1024x768 with last kernel
    update (LP: #2115068)
    - [Config] Replace FB_HYPERV with DRM_HYPERV

  * [SRU][HPE 24.04] Patch Request for HPE iLO7 VGA device for Gen12 Servers
    (LP: #2114516)
    - drm/mgag200: Added support for the new device G200eH5

  * A process exiting with an open /dev/snapshot fd causes a NULL pointer
    dereference caught by ubuntu_stress_smoke_test:sut-scan (LP: #2113990)
    - libfs: export find_next_child()
    - efivarfs: support freeze/thaw

  * [SRU] Add support for new hotkey of F9 on Thinkpad X9 (LP: #2115022)
    - platform/x86: thinkpad-acpi: Add support for new hotkey for camera
      shutter switch

  * [SRU] Fix GT0: Engine reset when suspend on Intel LNL (LP: #2114697)
    - drm/xe/sched: stop re-submitting signalled jobs

  * CVE-2025-38056
    - devres: Introduce devm_kmemdup_array()
    - ASoC: SOF: Intel: hda: Fix UAF when reloading module

  * Handle IOMMU IVRS entries with mismatched UID on AMD Strix or newer
    platforms (LP: #2115174)
    - iommu/amd: Allow matching ACPI HID devices without matching UIDs

  * [UBUNTU 22.04] kernel: Fix z17 elf platform recognition (LP: #2114450)
    - s390: Add z17 elf platform

  * [UBUNTU 24.04] Kernel: Add CPUMF extended counter set for z17
    (LP: #2114258)
    - s390/cpumf: Update CPU Measurement facility extended counter set support

  * Plucky update: v6.14.8 upstream stable release (LP: #2115266)
    - arm64: dts: rockchip: Assign RT5616 MCLK rate on rk3588-friendlyelec-
      cm3588
    - fs/xattr.c: fix simple_xattr_list to always include security.* xattrs
    - drivers/platform/x86/amd: pmf: Check for invalid sideloaded Smart PC
      Policies
    - drivers/platform/x86/amd: pmf: Check for invalid Smart PC Policies
    - x86/amd_node, platform/x86/amd/hsmp: Have HSMP use SMN through AMD_NODE
    - platform/x86/amd/hsmp: Make amd_hsmp and hsmp_acpi as mutually exclusive
      drivers
    - arm64: dts: rockchip: fix Sige5 RTC interrupt pin
    - riscv: dts: sophgo: fix DMA data-width configuration for CV18xx
    - binfmt_elf: Move brk for static PIE even if ASLR disabled
    - platform/x86/amd/pmc: Declare quirk_spurious_8042 for MECHREVO Wujie
      14XA (GX4HRXL)
    - platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection
    - arm64: dts: imx8mp-var-som: Fix LDO5 shutdown causing SD card timeout
    - cgroup/cpuset: Extend kthread_is_per_cpu() check to all
      PF_NO_SETAFFINITY tasks
    - tracing: fprobe: Fix RCU warning message in list traversal
    - tracing: probes: Fix a possible race in trace_probe_log APIs
    - tpm: tis: Double the timeout B to 4s
    - iio: adc: ad7606: move the software mode configuration
    - iio: adc: ad7606: move software functions into common file
    - HID: thrustmaster: fix memory leak in thrustmaster_interrupts()
    - spi: loopback-test: Do not split 1024-byte hexdumps
    - Bluetooth: MGMT: Fix MGMT_OP_ADD_DEVICE invalid device flags
    - drm/meson: Use 1000ULL when operating with mode->clock
    - tools/net/ynl: ethtool: fix crash when Hardware Clock info is missing
    - tests/ncdevmem: Fix double-free of queue array
    - net: mctp: Ensure keys maintain only one ref to corresponding dev
    - ALSA: seq: Fix delivery of UMP events to group ports
    - ALSA: ump: Fix a typo of snd_ump_stream_msg_device_info
    - net: cadence: macb: Fix a possible deadlock in macb_halt_tx.
    - net: dsa: sja1105: discard incoming frames in BR_STATE_LISTENING
    - nvme-pci: make nvme_pci_npages_prp() __always_inline
    - nvme-pci: acquire cq_poll_lock in nvme_poll_irqdisable
    - ALSA: sh: SND_AICA should depend on SH_DMA_API
    - net: dsa: b53: prevent standalone from trying to forward to other ports
    - vsock/test: Fix occasional failure in SIOCOUTQ tests
    - qlcnic: fix memory leak in qlcnic_sriov_channel_cfg_cmd()
    - octeontx2-pf: Fix ethtool support for SDP representors
    - drm/xe: Save CTX_TIMESTAMP mmio value instead of LRC value
    - netlink: specs: tc: fix a couple of attribute names
    - netlink: specs: tc: all actions are indexed arrays
    - octeontx2-pf: macsec: Fix incorrect max transmit size in TX secy
    - net: ethernet: mtk_eth_soc: fix typo for declaration MT7988 ESW
      capability
    - octeontx2-af: Fix CGX Receive counters
    - octeontx2-pf: Do not reallocate all ntuple filters
    - tsnep: fix timestamping with a stacked DSA driver
    - ublk: fix dead loop when canceling io command
    - NFSv4/pnfs: Reset the layout state after a layoutreturn
    - dmaengine: Revert "dmaengine: dmatest: Fix dmatest waiting less when
      interrupted"
    - Revert "kbuild, rust: use -fremap-path-prefix to make paths relative"
    - udf: Make sure i_lenExtents is uptodate on inode eviction
    - HID: amd_sfh: Fix SRA sensor when it's the only sensor
    - LoongArch: Prevent cond_resched() occurring within kernel-fpu
    - LoongArch: Move __arch_cpu_idle() to .cpuidle.text section
    - LoongArch: Save and restore CSR.CNTC for hibernation
    - LoongArch: Fix MAX_REG_OFFSET calculation
    - LoongArch: uprobes: Remove user_{en,dis}able_single_step()
    - LoongArch: uprobes: Remove redundant code about resume_er