[4.14.35-2047.515.3.el7uek] - uek-rpm: Enable Pensando EMMC reset controller [Orabug: 34325721] - mfd: pensando_elbasr: Add Pensando Elba System Resource Chip [Orabug: 34325721] - dsc-drivers: update drivers for 1.15.9-C-65 [Orabug: 34325721] [4.14.35-2047.515.2.el7uek] - net/rds: Delayed DR_SOCK_CANCEL [Orabug: 34105319] [4.14.35-2047.515.1.el7uek] - sched/rt: Disable RT_RUNTIME_SHARE by default [Orabug: 34193333] - mstflint_access: Update driver code to v4.20.1-1 from Github [Orabug: 34286148] [4.14.35-2047.515.0.el7uek] - net: ip: avoid OOM kills with large UDP sends over loopback [Orabug: 34066209] - rdmaip: Flush ARP cache after address has been cleared [Orabug: 34285241] - rds: Include congested flag in rds_sock struct. [Orabug: 34261492] - cpu/hotplug: Allow the CPU in CPU_UP_PREPARE state to be brought up again. [Orabug: 34234771] - x86/xen: Allow to retry if cpu_initialize_context failed. [Orabug: 34234771] - floppy: use a statically allocated error counter [Orabug: 34218640] {CVE-2022-1652} - assoc_array: Fix BUG_ON during garbage collect [Orabug: 34162064] - exec, elf: fix reserve_va_range sanity check [Orabug: 32387887] - exec, elf: use already allocated notes data in reserve_va_range [Orabug: 32387887] - mm: madv_doexec_flag sysctl [Orabug: 32387887] - mm: introduce MADV_DOEXEC [Orabug: 32387887] - exec, elf: require opt-in for accepting preserved mem [Orabug: 32387887] - mm: introduce VM_EXEC_KEEP [Orabug: 32387887] - mm: fail exec if stack expansion will overlap another vma [Orabug: 32387887] - mm: do not assume only the stack vma exists in setup_arg_pages [Orabug: 32387887] - ELF: when loading PIE binaries check for overlap with existing mappings [Orabug: 32387887] - Linux 4.14.280 - tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe - ping: fix address binding wrt vrf - drm/vmwgfx: Initialize drm_mode_fb_cmd2 - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp - USB: serial: option: add Fibocom MA510 modem - USB: serial: option: add Fibocom L610 modem - USB: serial: qcserial: add support for Sierra Wireless EM7590 - USB: serial: pl2303: add device id for HP LM930 Display - usb: cdc-wdm: fix reading stuck on device close - tcp: resalt the secret every 10 seconds - ASoC: ops: Validate input values in snd_soc_put_volsw_range - ASoC: max98090: Generate notifications on changes for custom control - ASoC: max98090: Reject invalid values in custom control put - hwmon: Fix negative temperature - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe - net/smc: non blocking recvmsg return -EAGAIN when no data and signal_pending - s390/lcs: fix variable dereferenced before check - s390/ctcm: fix potential memory leak - s390/ctcm: fix variable dereferenced before check - hwmon: restrict it to SOC_XWAY - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection - netlink: do not reset transport header in netlink_recvmsg - ipv4: drop dst in multicast routing path - net: Fix features skip in for_each_netdev_feature - batman-adv: Don"t skb_split skbuffs with frag_list - Linux 4.14.279 - VFS: Fix memory leak caused by concurrently mounting fs with subtype - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock - mm: userfaultfd: fix missing cache flush in mcopy_atomic_pte and __mcopy_atomic - mm: hugetlb: fix missing cache flush in copy_huge_page_from_user - mmc: rtsx: add 74 Clocks in power on flow - Bluetooth: Fix the creation of hdev-name - can: grcan: only use the NAPI poll budget for RX - can: grcan: grcan_probe: fix broken system id check for errata workaround needs - block: drbd: drbd_nl: Make conversion to "enum drbd_ret_code" explicit - MIPS: Use address-of operator on section symbols - Linux 4.14.278 - PCI: aardvark: Fix reading MSI interrupt number - PCI: aardvark: Clear all MSIs at setup - dm: interlock pending dm_io and dm_wait_for_bios_completion - dm: fix mempool NULL pointer race when completing IO - net: ipv6: ensure we call ipv6_mc_down at most once - kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU - net: igmp: respect RCU rules in ip_mc_source and ip_mc_msfilter - btrfs: always log symlinks in full mode - smsc911x: allow using IRQ0 - net: emaclite: Add error handling for of_address_to_resource - hwmon: Fix warning on module removal - NFC: netlink: fix sleep in atomic bug when firmware download timeout - nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs - nfc: replace improper check device_is_registered in netlink related functions - can: grcan: use ofdev-dev when allocating DMA memory - can: grcan: grcan_close: fix deadlock - ASoC: wm8958: Fix change notifications for DSP controls - firewire: core: extend card-lock in fw_core_handle_bus_reset - firewire: remove check of list iterator against head past the loop body - firewire: fix potential uaf in outbound_phy_packet_callback - Revert SUNRPC: attempt AF_LOCAL connect on setup - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes - parisc: Merge model and model name into one line in /proc/cpuinfo - MIPS: Fix CP0 counter erratum detection for R4k CPUs - tty: n_gsm: fix incorrect UA handling - tty: n_gsm: fix wrong command frame length field encoding - tty: n_gsm: fix wrong command retry handling - tty: n_gsm: fix missing explicit ldisc flush - tty: n_gsm: fix insufficient txframe size - tty: n_gsm: fix malformed counter for out of frame data - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2 - drivers: net: hippi: Fix deadlock in rr_close - cifs: destage any unwritten data to the server before calling copychunk_write - x86: __memcpy_flushcache: fix wrong alignment if size 2^32 - ASoC: wm8731: Disable the regulator when probing fails - bnx2x: fix napi API usage sequence - net: bcmgenet: hide status block before TX timestamping - clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource - bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create - tcp: fix potential xmit stalls caused by TCP_NOTSENT_LOWAT - ip_gre: Make o_seqno start from 0 in native mode - pinctrl: pistachio: fix use of irq_of_parse_and_map - sctp: check asoc strreset_chunk in sctp_generate_reconf_event - mtd: rawnand: Fix return value check of wait_for_completion_timeout - ipvs: correctly print the memory size of ip_vs_conn_tab - ARM: dts: Fix mmc order for omap3-gta04 - ARM: OMAP2+: Fix refcount leak in omap_gic_of_init - phy: samsung: exynos5250-sata: fix missing device put in probe error paths - phy: samsung: Fix missing of_node_put in exynos_sata_phy_probe - ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue - USB: Fix xhci event ring dequeue pointer ERDP update issue - hex2bin: fix access beyond string end - hex2bin: make the function hex_to_bin constant-time - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device - serial: 8250: Also set sticky MCR bits in console restoration - usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind - usb: gadget: uvc: Fix crash when encoding data for usb request - usb: misc: fix improper handling of refcount in uss720_probe - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on - iio: dac: ad5446: Fix read_raw not returning set value - iio: dac: ad5592r: Fix the missing return value. - xhci: stop polling roothubs after shutdown - USB: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions - USB: serial: option: add support for Cinterion MV32-WA/MV32-WB - USB: serial: cp210x: add PIDs for Kamstrup USB Meter Reader - USB: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS - USB: quirks: add STRING quirk for VCOM device - USB: quirks: add a Realtek card reader - usb: mtu3: fix USB 3.0 dual-role-switch from device to host - lightnvm: disable the subsystem - net/sched: cls_u32: fix netns refcount changes in u32_change - hamradio: remove needs_free_netdev to avoid UAF - hamradio: defer 6pack kfree after unregister_netdev - floppy: disable FDRAWCMD by default - Linux 4.14.277 - ax25: Fix UAF bugs in ax25 timers - ax25: Fix NULL pointer dereferences in ax25 timers - ax25: fix NPD bug in ax25_disconnect - ax25: fix UAF bug in ax25_send_control - ax25: Fix refcount leaks caused by ax25_cb_del - ax25: fix UAF bugs of net_device caused by rebinding operation - ax25: fix reference count leaks of ax25_dev - ax25: add refcount in ax25_dev to avoid UAF bugs - block/compat_ioctl: fix range check in BLKGETSIZE - staging: ion: Prevent incorrect reference counting behavour - ext4: force overhead calculation if the s_overhead_cluster makes no sense - ext4: fix overhead calculation to account for the reserved gdt blocks - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole - ext4: fix symlink file size not match to file content - ARC: entry: fix syscall_trace_exit argument - e1000e: Fix possible overflow in LTR decoding - ASoC: soc-dapm: fix two incorrect uses of list iterator - openvswitch: fix OOB access in reserve_sfa_size - powerpc/perf: Fix power9 event alternatives - dma: at_xdmac: fix a missing check on list iterator - ata: pata_marvell: Check the "bmdma_addr" beforing reading - stat: fix inconsistency between struct stat and struct compat_stat - net: macb: Restart tx only if queue pointer is lagging - drm/msm/mdp5: check the return of kzalloc - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant - cifs: Check the IOCB_DIRECT flag, not O_DIRECT - vxlan: fix error return code in vxlan_fdb_append - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative - ARM: vexpress/spc: Avoid negative array index when !SMP - netlink: reset network and mac headers in netlink_dump - net/packet: fix packet_sock xmit return value checking - dmaengine: imx-sdma: Fix error checking in sdma_event_remap - tcp: Fix potential use-after-free due to double kfree - tcp: fix race condition when creating child sockets from syncookies - ALSA: usb-audio: Clear MIDI port active flag after draining - gfs2: assign rgrp glock before compute_bitstructs - can: usb_8dev: usb_8dev_start_xmit: fix double dev_kfree_skb in error path - tracing: Dump stacktrace trigger to the corresponding instance - tracing: Have traceon and traceoff trigger honor the instance - mm: page_alloc: fix building error on -Werror=array-compare - etherdevice: Adjust ether_addr* prototypes to silence -Wstringop-overead