The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36516: Fixed TCP session data injection vulnerability via the mixed IPID assignment method . - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free . - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault . - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO . - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT . - CVE-2022-1116: Fixed a integer overflow vulnerability in io_uring which allowed a local attacker to cause memory corruption and escalate privileges to root . - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem . - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges . - CVE-2022-2639: Fixed integer underflow that could lead to out-of-bounds write in reserve_sfa_size . - CVE-2022-20166: Fixed possible out of bounds write due to sprintf unsafety that could cause local escalation of privilege - CVE-2022-21505: Fixed kexec lockdown bypass with IMA policy . - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends . - CVE-2022-29581: Fixed improper update of Reference Count in net/sched that could cause root privilege escalation . - CVE-2022-32250: Fixed user-after-free in net/netfilter/nf_tables_api.c that could allow local privilege escalation . - CVE-2022-36946: Fixed incorrect packet truncation in nfqnl_mangle that could lead to remote DoS . The following non-security bugs were fixed: - ACPI: APEI: Better fix to avoid spamming the console with old error logs . - ACPI: CPPC: Do not prevent CPPC from working in the future . - ACPI: video: Shortening quirk list by identifying Clevo by board_name only . - ALSA: hda - Add fixup for Dell Latitidue E5430 . - ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model . - ALSA: hda/realtek - Enable the headset-mic on a Xiaomi"s laptop . - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 . - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 . - ASoC: Intel: Skylake: Correct the handling of fmt_config flexible array . - ASoC: Intel: Skylake: Correct the ssp rate discovery in skl_get_ssp_clks . - ASoC: Remove unused hw_write_t type . - ASoC: cs47l15: Fix event generation for low power mux control . - ASoC: madera: Fix event generation for OUT1 demux . - ASoC: madera: Fix event generation for rate controls . - ASoC: ops: Fix off by one in range control validation . - ASoC: sgtl5000: Fix noise on shutdown/remove . - ASoC: wm5110: Fix DRE control . - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put . - Bluetooth: hci_intel: Add check for platform_driver_register . - FDDI: defxx: Bail out gracefully with unassigned PCI resource for CSR . - FDDI: defxx: Make MMIO the configuration default except for EISA . - Fixed a system crash related to the recent RETBLEED mitigation . - Fixed battery detection problem on macbooks . - HID: cp2112: prevent a buffer overflow in cp2112_xfer . - KVM/emulate: Fix SETcc emulation function offsets with SLS . - KVM: VMX: Add non-canonical check on writes to RTIT address MSRs . - KVM: VMX: Do not freeze guest when event delivery causes an APIC-access exit . - KVM: apic: avoid calculating pending eoi from an uninitialized val . - KVM: arm64: Avoid setting the upper 32 bits of TCR_EL2 and CPTR_EL2 - KVM: arm64: Fix definition of PAGE_HYP_DEVICE - KVM: emulate: do not adjust size of fastop and setcc subroutines . - KVM: nVMX: avoid NULL pointer dereference with incorrect EVMCS GPAs . - KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 . - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh . - KVM: x86: Do not let userspace set host-reserved cr4 bits . - KVM: x86: Fix split-irqchip vs interrupt injection window request . - KVM: x86: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks . - KVM: x86: Update vCPU"s hv_clock before back to guest when tsc_offset is adjusted . - KVM: x86: handle !lapic_in_kernel case in kvm_cpu_*_extint . - NFC: nxp-nci: do not print header length mismatch on i2c error . - PCI/portdrv: Do not disable AER reporting in get_port_device_capability . - PCI: dwc: Add unroll iATU space support to dw_pcie_disable_atu . - PCI: dwc: Always enable CDM check if 'snps,enable-cdm-check' exists . - PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init errors . - PCI: dwc: Disable outbound windows only for controllers using iATU . - PCI: dwc: Stop link on host_init errors and de-initialization . - PCI: qcom: Power on PHY before IPQ8074 DBI register accesses . - PCI: qcom: Set up rev 2.1.0 PARF_PHY before enabling clocks . - PCI: tegra194: Fix PM error handling in tegra_pcie_config_ep . - PCI: tegra194: Fix Root Port interrupt handling . - PCI: tegra194: Fix link up retry sequence . - PM: runtime: Remove link state checks in rpm_get/put_supplier . - Sort in RETbleed backport into the sorted section Now that it is upstream.. - USB: Follow-up to SPDX identifiers addition - remove now useless comments . - USB: serial: fix tty-port initialized comments . - USB: serial: ftdi_sio: add Belimo device ids . - amd-xgbe: Update DMA coherency values . - arm64 module: set plt* section addresses to 0x0 - arm64: Extend workaround for erratum 1024718 to all versions of - arm64: asm: Add new-style position independent function annotations - arm64: compat: Ensure upper 32 bits of x0 are zero on syscall return - arm64: dts: marvell: armada-37xx: Set pcie_reset_pin to gpio function - arm64: dts: marvell: espressobin: Add ethernet switch aliases - arm64: dts: marvell: espressobin: add ethernet alias - arm64: dts: mcbin: support 2W SFP modules - arm64: fix compat syscall return truncation - arm64: fix inline asm in load_unaligned_zeropad - arm64: mm: Do not invalidate FROM_DEVICE buffers at start of DMA - arm64: module: remove from linker script - arm64: module: rework special section handling - arm64: perf: Report the PC value in REGS_ABI_32 mode - arm64: ptrace: Consistently use pseudo-singlestep exceptions - arm64: ptrace: Override SPSR.SS when single-stepping is enabled - arm64: stackleak: fix current_top_of_stack - arm64: uprobe: Return EOPNOTSUPP for AARCH32 instruction probing - arm64: vdso: Avoid ISB after reading from cntvct_el0 - ath10k: Fix error handling in ath10k_setup_msa_resources . - ath10k: do not enforce interrupt trigger type . - ax88179_178a: add ethtool_op_get_ts_info . - blk-zoned: allow BLKREPORTZONE without CAP_SYS_ADMIN . - blk-zoned: allow zone management send operations without CAP_SYS_ADMIN . - block/compat_ioctl: fix range check in BLKGETSIZE . - block: Fix fsync always failed if once failed . - block: Fix wrong offset in bio_truncate . - block: bio-integrity: Advance seed correctly for larger interval sizes . - block: do not delete queue kobject before its children . - block: drbd: drbd_nl: Make conversion to "enum drbd_ret_code" explicit . - bpf, cpumap: Remove rcpu pointer from cpu_map_build_skb signature . - bpf: Add config to allow loading modules with BTF mismatches . - bpf: Add in-kernel split BTF support . - bpf: Assign ID to vmlinux BTF and return extra info for BTF in GET_OBJ_INFO . - bpf: Keep module"s btf_data_size intact after load . - bpf: Load and verify kernel module BTFs . - bpf: Provide function to get vmlinux BTF information . - bpf: Sanitize BTF data pointer after module is loaded . - bus: hisi_lpc: fix missing platform_device_put in hisi_lpc_acpi_probe . - can: Break loopback loop on loopback documentation . - can: error: specify the values of data[5..7] of CAN error frames . - can: gs_usb: gs_usb_open/close: fix memory leak . - can: hi311x: do not report txerr and rxerr during bus-off . - can: kvaser_usb_hydra: do not report txerr and rxerr during bus-off . - can: kvaser_usb_leaf: do not report txerr and rxerr during bus-off . - can: pch_can: do not report txerr and rxerr during bus-off . - can: pch_can: pch_can_error: initialize errc before using it . - can: rcar_can: do not report txerr and rxerr during bus-off . - can: sja1000: do not report txerr and rxerr during bus-off . - can: sun4i_can: do not report txerr and rxerr during bus-off . - can: usb_8dev: do not report txerr and rxerr during bus-off . - clk: qcom: camcc-sdm845: Fix topology around titan_top power domain . - clk: qcom: clk-krait: unlock spin after mux completion . - clk: qcom: ipq8074: SW workaround for UBI32 PLL lock . - clk: qcom: ipq8074: fix NSS core PLL-s . - clk: qcom: ipq8074: fix NSS port frequency tables . - clk: qcom: ipq8074: set BRANCH_HALT_DELAY flag for UBI clocks . - clk: renesas: r9a06g032: Fix UART clkgrp bitsel . - config: enable DEBUG_INFO_BTF This option allows users to access the btf type information for vmlinux but not kernel modules. - cpuidle: PSCI: Move the `has_lpi` check to the beginning of the - crypto: qat - disable registration of algorithms . - crypto: qat - fix memory leak in RSA . - crypto: qat - remove dma_free_coherent for DH . - crypto: qat - remove dma_free_coherent for RSA . - crypto: qat - set to zero DH parameters before free . - cxgb4: Fix the -Wmisleading-indentation warning . - dm btree remove: assign new_root only when removal succeeds . - dm btree remove: fix use after free in rebalance_children . - dm bufio: subtract the number of initial sectors in dm_bufio_get_device_size . - dm crypt: Avoid percpu_counter spinlock contention in crypt_page_alloc . - dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS . - dm crypt: make printing of the key constant-time . - dm integrity: conditionally disable 'recalculate' feature . - dm integrity: fix a crash if 'recalculate' used without 'internal_hash' . - dm integrity: fix error code in dm_integrity_ctr . - dm integrity: fix memory corruption when tag_size is less than digest size . - dm integrity: fix the maximum number of arguments . - dm mirror log: round up region bitmap size to BITS_PER_LONG . - dm persistent data: packed struct should have an aligned attribute too . - dm raid: fix inconclusive reshape layout on fast raid4/5/6 table reload sequences . - dm snapshot: fix crash with transient storage and zero chunk size . - dm snapshot: flush merged data before committing metadata . - dm snapshot: properly fix a crash when an origin has no snapshots . - dm space map common: fix division bug in sm_ll_find_free_block . - dm stats: add cond_resched when looping over entries . - dm verity: fix FEC for RS roots unaligned to block size . - dm: fix mempool NULL pointer race when completing IO . - dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc correctly . - dmaengine: imx-sdma: Allow imx8m for imx7 FW revs . - dmaengine: pl330: Fix lockdep warning about non-static key . - dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate . - dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate . - do not call utsname after -greater than nsproxy is NULL . - drbd: fix potential silent data corruption . - driver core: fix potential deadlock in __driver_attach . - drivers/net: Fix kABI in tun.c . - drivers: net: fix memory leak in atusb_probe . - drivers: net: fix memory leak in peak_usb_create_dev . - drm/amd/display: Enable building new display engine with KCOV enabled . - drm/bridge: tc358767: Make sure Refclk clock are enabled . - drm/doc: Fix comment typo . - drm/exynos/exynos7_drm_decon: free resources when clk_set_parent failed . - drm/i915/gt: Serialize TLB invalidates with GT resets . - drm/i915/selftests: fix a couple IS_ERR vs NULL tests . - drm/i915: fix a possible refcount leak in intel_dp_add_mst_connector . - drm/mcde: Fix refcount leak in mcde_dsi_bind . - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function . - drm/mediatek: dpi: Only enable dpi after the bridge is enabled . - drm/mediatek: dpi: Remove output format of YUV . - drm/mipi-dbi: align max_chunk to 2 in spi_transfer . - drm/msm/hdmi: enable core-vcc/core-vdda-supply for 8996 platform . - drm/msm/mdp5: Fix global state lock backoff . - drm/nouveau: fix another off-by-one in nvbios_addr . - drm/panfrost: Fix shrinker list corruption by madvise IOCTL . - drm/panfrost: Put mapping instead of shmem obj on panfrost_mmu_map_fault_addr error . - drm/radeon: fix incorrrect SPDX-License-Identifiers . - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers . - drm/rockchip: Fix an error handling path rockchip_dp_probe . - drm/rockchip: vop: Do not crash for invalid duplicate_state . - drm/st7735r: Fix module autoloading for Okaya RH128128T . - drm/vc4: dsi: Add correct stop condition to vc4_dsi_encoder_disable iteration . - drm/vc4: dsi: Correct DSI divider calculations . - drm/vc4: dsi: Correct pixel order for DSI0 . - drm/vc4: hdmi: Correct HDMI timing registers for interlaced modes . - drm/vc4: hdmi: Fix timings for interlaced modes . - drm/vc4: plane: Fix margin calculations for the right/bottom edges . - drm/vc4: plane: Remove subpixel positioning check . - drm: adv7511: override i2c address of cec before accessing it . - drm: bridge: adv7511: Add check for mipi_dsi_driver_register . - drm: bridge: sii8620: fix possible off-by-one . - fbcon: Disallow setting font bigger than screen size . - fbcon: Prevent that screen size is smaller than font size . - fbdev: fbmem: Fix logo center image dx issue . - fbmem: Check virtual screen sizes in fb_set_var . - fpga: altera-pr-ip: fix unsigned comparison with less than zero . - ftgmac100: Restart MAC HW once . - gpio: gpiolib-of: Fix refcount bugs in of_mm_gpiochip_add_data . - gpio: pca953x: only use single read/write for No AI mode . - gpio: pca953x: use the correct range when do regmap sync . - gpio: pca953x: use the correct register address when regcache sync during init . - hex2bin: make the function hex_to_bin constant-time . - hv_netvsc: Add validation for untrusted Hyper-V values . - hv_netvsc: Add comment of netvsc_xdp_xmit . - hv_netvsc: Add support for XDP_REDIRECT . - hv_netvsc: Copy packets sent by Hyper-V out of the receive buffer . - hv_netvsc: Fix validation in netvsc_linkstatus_callback . - i2c: Fix a potential use after free . - i2c: cadence: Change large transfer count reset logic to be unconditional . - i2c: cadence: Support PEC for SMBus block read . - i2c: cadence: Unregister the clk notifier in error path . - i2c: mux-gpmux: Add of_node_put when breaking out of loop . - ida: do not use BUG_ON for debugging . - igb: Enable RSS for Intel I211 Ethernet Controller . - iio: accel: bma220: Fix alignment for DMA safety . - iio: accel: sca3000: Fix alignment for DMA safety . - iio: adc: ad7266: Fix alignment for DMA safety . - iio: adc: ad7298: Fix alignment for DMA safety . - iio: adc: ad7476: Fix alignment for DMA safety . - iio: adc: ad7766: Fix alignment for DMA safety . - iio: adc: ad7768-1: Fix alignment for DMA safety . - iio: adc: ad7887: Fix alignment for DMA safety . - iio: adc: hi8435: Fix alignment for DMA safety . - iio: adc: ltc2497: Fix alignment for DMA safety . - iio: adc: max1027: Fix alignment for DMA safety . - iio: adc: max11100: Fix alignment for DMA safety . - iio: adc: max1118: Fix alignment for DMA safety . - iio: adc: mcp320x: Fix alignment for DMA safety . - iio: adc: ti-adc0832: Fix alignment for DMA safety . - iio: adc: ti-adc084s021: Fix alignment for DMA safety . - iio: adc: ti-adc12138: Fix alignment for DMA safety . - iio: adc: ti-adc128s052: Fix alignment for DMA safety . - iio: adc: ti-adc161s626: Fix alignment for DMA safety . - iio: adc: ti-ads124s08: Fix alignment for DMA safety . - iio: adc: ti-ads7950: Fix alignment for DMA safety . - iio: adc: ti-ads8344: Fix alignment for DMA safety . - iio: adc: ti-ads8688: Fix alignment for DMA safety . - iio: adc: ti-tlc4541: Fix alignment for DMA safety . - iio: amplifiers: ad8366: Fix alignment for DMA safety . - iio: core: Fix IIO_ALIGN and rename as it was not sufficiently large . - iio: dac: ad5064: Fix alignment for DMA safety . - iio: dac: ad5360: Fix alignment for DMA safety . - iio: dac: ad5421: Fix alignment for DMA safety . - iio: dac: ad5449: Fix alignment for DMA safety . - iio: dac: ad5504: Fix alignment for DMA safety . - iio: dac: ad5755: Fix alignment for DMA safety . - iio: dac: ad5761: Fix alignment for DMA safety . - iio: dac: ad5764: Fix alignment for DMA safety . - iio: dac: ad5791: Fix alignment for DMA saftey . - iio: dac: ad7303: Fix alignment for DMA safety . - iio: dac: ad8801: Fix alignment for DMA safety . - iio: dac: mcp4922: Fix alignment for DMA safety . - iio: dac: ti-dac082s085: Fix alignment for DMA safety . - iio: dac: ti-dac5571: Fix alignment for DMA safety . - iio: dac: ti-dac7311: Fix alignment for DMA safety . - iio: dac: ti-dac7612: Fix alignment for DMA safety . - iio: frequency: ad9523: Fix alignment for DMA safety . - iio: frequency: adf4350: Fix alignment for DMA safety . - iio: frequency: adf4371: Fix alignment for DMA safety . - iio: gyro: adis16080: Fix alignment for DMA safety . - iio: gyro: adis16130: Fix alignment for DMA safety . - iio: gyro: adxrs450: Fix alignment for DMA safety . - iio: gyro: fxas210002c: Fix alignment for DMA safety . - iio: light: isl29028: Fix the warning in isl29028_remove . - iio: potentiometer: ad5272: Fix alignment for DMA safety . - iio: potentiometer: max5481: Fix alignment for DMA safety . - iio: potentiometer: mcp41010: Fix alignment for DMA safety . - iio: potentiometer: mcp4131: Fix alignment for DMA safety . - iio: proximity: as3935: Fix alignment for DMA safety . - iio: resolver: ad2s1200: Fix alignment for DMA safety . - iio: resolver: ad2s90: Fix alignment for DMA safety . - ima: Fix a potential integer overflow in ima_appraise_measurement . - ima: Fix potential memory leak in ima_init_crypto . - intel_th: Fix a resource leak in an error handling path . - intel_th: msu-sink: Potential dereference of null pointer . - intel_th: msu: Fix vmalloced buffers . - kABI workaround for rtsx_usb . - kabi: create module private struct to hold btf size/data . - kbuild: Build kernel module BTFs if BTF is enabled and pahole supports it . - kbuild: Skip module BTF generation for out-of-tree external modules . - kbuild: add marker for build log of *.mod.o . - kbuild: drop $ check in if_changed* for faster rebuild . - kbuild: rebuild modules when module linker scripts are updated . - kbuild: rename any-prereq to newer-prereqs . - kbuild: split final module linking out into Makefile.modfinal . - lib/string.c: implement stpcpy . - linux/random.h: Mark CONFIG_ARCH_RANDOM functions __must_check . - linux/random.h: Remove arch_has_random, arch_has_random_seed . - linux/random.h: Use false with bool . - lkdtm: Disable return thunks in rodata.c . - macvlan: remove redundant null check on data . - md/bitmap: wait for external bitmap writes to complete during tear down . - md/raid0: Ignore RAID0 layout if the second zone has only one device . - md: Set prev_flush_start and flush_bio in an atomic way . - md: bcache: check the return value of kzalloc in detached_dev_do_request . - media: hdpvr: fix error value returns in hdpvr_read . - media: rc: increase rc-mm tolerance and add debug message . - media: rtl28xxu: Add support for PROlectrix DV107669 DVB-T dongle . - media: rtl28xxu: add missing sleep before probing slave demod . - media: rtl28xxu: set keymap for Astrometa DVB-T2 . - media: smipcie: fix interrupt handling and IR timeout . - media: tw686x: Register the irq at the end of probe . - media: usb: dvb-usb-v2: rtl28xxu: convert to use i2c_new_client_device . - media: v4l2-mem2mem: always consider OUTPUT queue during poll . - media: v4l2-mem2mem: reorder checks in v4l2_m2m_poll . - mediatek: mt76: mac80211: Fix missing of_node_put in mt76_led_init . - memregion: Fix memregion_free fallback definition . - memstick/ms_block: Fix a memory leak . - memstick/ms_block: Fix some incorrect memory allocation . - meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init . - misc: rtsx: Fix an error handling path in rtsx_pci_probe . - misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer . - misc: rtsx_usb: set return value in rsp_buf alloc err path . - misc: rtsx_usb: use separate command and response buffers . - mm/slub: add missing TID updates on slab deactivation . - mm: fix page reference leak in soft_offline_page . - mmc: cavium-octeon: Add of_node_put when breaking out of loop . - mmc: cavium-thunderx: Add of_node_put when breaking out of loop . - mmc: sdhci-of-at91: fix set_uhs_signaling rewriting of MC1R . - mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch . - mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle . - mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg . - net, xdp: Introduce __xdp_build_skb_from_frame utility routine . - net, xdp: Introduce xdp_build_skb_from_frame utility routine . - net/mlx5e: When changing XDP program without reset, take refs for XSK RQs . - net/sonic: Fix some resource leaks in error handling paths . - net: ag71xx: remove unnecessary MTU reservation . - net: allwinner: Fix some resources leak in the error handling path of the probe and in the remove function . - net: amd-xgbe: Fix NETDEV WATCHDOG transmit queue timeout warning . - net: amd-xgbe: Fix network fluctuations when using 1G BELFUSE SFP . - net: amd-xgbe: Reset link when the link never comes back . - net: amd-xgbe: Reset the PHY rx data path when mailbox command timeout . - net: axienet: Handle deferred probe on clock properly . - net: dsa: bcm_sf2: Qualify phydev-greater than dev_flags based on port . - net: dsa: bcm_sf2: put device node before return . - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE . - net: dsa: lantiq_gswip: Let GSWIP automatically set the xMII clock . - net: enetc: fix incorrect TPID when receiving 802.1ad tagged packets . - net: enetc: keep RX ring consumer index in sync with hardware . - net: evaluate net.ipv4.conf.all.proxy_arp_pvlan . - net: evaluate net.ipvX.conf.all.ignore_routes_with_linkdown . - net: hns3: fix error mask definition of flow director . - net: hso: bail out on interrupt URB allocation failure . - net: lapbether: Remove netif_start_queue / netif_stop_queue . - net: ll_temac: Fix potential NULL dereference in temac_probe . - net: ll_temac: Use devm_platform_ioremap_resource_byname . - net: macb: add function to disable all macb clocks . - net: macb: restore cmp registers on resume path . - net: macb: unprepare clocks in case of failure . - net: mscc: Fix OF_MDIO config check . - net: mvneta: Remove per-cpu queue mapping for Armada 3700 . - net: rose: fix UAF bug caused by rose_t0timer_expiry . - net: stmmac: dwmac-sun8i: Provide TX and RX fifo sizes . - net: stmmac: dwmac1000: provide multicast filter fallback . - net: stmmac: fix CBS idleslope and sendslope calculation . - net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10 . - net: stmmac: fix watchdog timeout during suspend/resume stress test . - net: stmmac: stop each tx channel independently . - net: tun: set tun-greater than dev-greater than addr_len during TUNSETLINK processing . - net: usb: ax88179_178a: add Allied Telesis AT-UMCs . - net: usb: ax88179_178a: add MCT usb 3.0 adapter . - net: usb: ax88179_178a: add Toshiba usb 3.0 adapter . - net: usb: ax88179_178a: remove redundant assignment to variable ret . - net: usb: ax88179_178a: write mac to hardware in get_mac_addr . - net: usb: qmi_wwan: add Telit 0x1060 composition . - net: usb: qmi_wwan: add Telit 0x1070 composition . - net: usb: use eth_hw_addr_set . - nvme: consider also host_iface when checking ip options . - octeontx2-af: fix memory leak of lmac and lmac-greater than name . - pinctrl: sunxi: a83t: Fix NAND function name for some pins . - pinctrl: sunxi: sunxi_pconf_set: use correct offset . - platform/olpc: Fix uninitialized data in debugfs write . - platform/x86: hp-wmi: Ignore Sanitization Mode event . - power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe . - powerpc/mobility: wait for memory transfer to complete . - powerpc/pseries/mobility: set NMI watchdog factor during an LPM . - powerpc/watchdog: introduce a NMI watchdog"s factor . - profiling: fix shift-out-of-bounds bugs . - qla2xxx: drop patch which prevented nvme port discovery . - r8169: fix accessing unset transport header . - random: document add_hwgenerator_randomness with other input functions . - random: fix typo in comments . - random: remove useless header comment . - raw: Fix a data-race around sysctl_raw_l3mdev_accept . - regulator: of: Fix refcount leak bug in of_get_regulation_constraints . - rpm/kernel-binary.spec.in: Require dwarves greater than = 1.22 on SLE15-SP3 or newer Dwarves 1.22 or newer is required to build kernels with BTF information embedded in modules. - sched/debug: Remove mpol_get/put and task_lock/unlock from - sched/fair: Revise comment about lb decision matrix . - sched/membarrier: fix missing local execution of ipi_sync_rq_state . - scripts: dummy-tools, add pahole . - scsi: core: Fix error handling of scsi_host_alloc . - scsi: core: Fix failure handling of scsi_add_host_with_dma . - scsi: core: Only put parent device if host state differs from SHOST_CREATED . - scsi: core: Put .shost_dev in failure path if host state changes to RUNNING . - scsi: core: Put LLD module refcnt after SCSI device is released . - scsi: core: Retry I/O for Notify Required error . - scsi: lpfc: Copyright updates for 14.2.0.5 patches . - scsi: lpfc: Fix attempted FA-PWWN usage after feature disable . - scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test . - scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE . - scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb . - scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input . - scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe into lpfc_sli_prep_abort_xri . - scsi: lpfc: Remove Menlo/Hornet related code . - scsi: lpfc: Remove extra atomic_inc on cmd_pending in queuecommand after VMID . - scsi: lpfc: Revert RSCN_MEMENTO workaround for misbehaved configuration . - scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb . - scsi: lpfc: Update lpfc version to 14.2.0.5 . - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid . - scsi: qla2xxx: Fix discovery issues in FC-AL topology . - scsi: qla2xxx: Fix imbalance vha-greater than vref_count . - scsi: qla2xxx: Fix incorrect display of max frame size . - scsi: qla2xxx: Fix response queue handler reading stale packets . - scsi: qla2xxx: Fix sparse warning for dport_data . - scsi: qla2xxx: Update manufacturer details . - scsi: qla2xxx: Update version to 10.02.07.800-k . - scsi: qla2xxx: Zero undefined mailbox IN registers . - scsi: qla2xxx: edif: Fix dropped IKE message . - scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select . - scsi: sd: Fix potential NULL pointer dereference . - scsi: ufs: Release clock if DMA map fails . - scsi: ufs: handle cleanup correctly on devm_reset_control_get error . - serial: 8250: fix return error code in serial8250_request_std_resource . - serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle . - serial: stm32: Clear prev values before setting RTS delays . - soc: fsl: guts: machine variable might be unset . - soc: ixp4xx/npe: Fix unused match warning . - soundwire: bus_type: fix remove and shutdown support . - spi: less thanlinux/spi/spi.hgreater than : add missing struct kernel-doc entry . - spi: amd: Limit max transfer and message size . - staging: rtl8192u: Fix sleep in atomic context bug in dm_fsync_timer_callback . - sysctl: Fix data races in proc_dointvec . - sysctl: Fix data races in proc_dointvec_jiffies . - sysctl: Fix data races in proc_dointvec_minmax . - sysctl: Fix data races in proc_douintvec . - sysctl: Fix data races in proc_douintvec_minmax . - sysctl: Fix data-races in proc_dointvec_ms_jiffies . - thermal/tools/tmon: Include pthread and time headers in tmon.h . - tick/nohz: Use WARN_ON_ONCE to prevent console saturation . - usb: dwc3: add cancelled reasons for dwc3 requests . - usb: dwc3: gadget: Fix event pending check . - usb: gadget: udc: amd5536 depends on HAS_DMA . - usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe . - usb: host: xhci: use snprintf in xhci_decode_trb . - usb: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe . - usb: typec: add missing uevent when partner support PD . - usb: typec: ucsi: Acknowledge the GET_ERROR_STATUS command completion . - usb: xhci: tegra: Fix error check . - usbnet: fix memory leak in error case . - video: of_display_timing.h: include errno.h . - virtio-gpu: fix a missing check to avoid NULL dereference . - virtio-net: fix the race between refill work and close . - virtio_mmio: Add missing PM calls to freeze/restore . - virtio_mmio: Restore guest page size on resume . - watchdog: export lockup_detector_reconfigure . - wifi: iwlegacy: 4965: fix potential off-by-one overflow in il4965_rs_fill_link_cmd . - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue . - wifi: libertas: Fix possible refcount leak in if_usb_probe . - wifi: mac80211: fix queue selection for mesh/OCB interfaces . - wifi: p54: Fix an error handling path in p54spi_probe . - wifi: p54: add missing parentheses in p54_flush . - wifi: rtlwifi: fix error codes in rtl_debugfs_set_write_h2c . - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi . - wifi: wil6210: debugfs: fix uninitialized variable use in `wil_write_file_wmi` . - x86/bugs: Remove apostrophe typo . - x86/kvmclock: Move this_cpu_pvti into kvmclock.h . - x86/retbleed: Add fine grained Kconfig knobs . - xen/netback: avoid entering xenvif_rx_next_skb with an empty rx queue . - xen: detect uninitialized xenbus in xenbus_init . - xen: do not continue xenstore initialization in case of errors . Special Instructions and Notes: Please reboot the system after installing this update.