Thank you for your contribution to Debian.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 09 Nov 2024 20:40:06 +0100
Source: linux
Architecture: source
Version: 6.11.7-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Salvatore Bonaccorso <car...@debian.org>
Closes: 1062421
Changes:
linux (6.11.7-1) unstable; urgency=medium
.
* New upstream stable update:
https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.11.7
- drm/amdgpu: fix random data corruption for sdma 7
- cgroup: Fix potential overflow issue when checking max_depth
- spi: geni-qcom: Fix boot warning related to pm_runtime and devres
- slub/kunit: fix a WARNING due to unwrapped __kmalloc_cache_noprof
- perf trace: Fix non-listed archs in the syscalltbl routines
- perf python: Fix up the build on architectures without
HAVE_KVM_STAT_SUPPORT
- scsi: scsi_debug: Fix do_device_access() handling of unexpected SG copy
length
- wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
(Closes: #1062421)
- mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
- wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
- wifi: ath11k: Fix invalid ring usage in full monitor mode
- wifi: rtw89: pci: early chips only enable 36-bit DMA on specific PCI
hosts
- wifi: brcm80211: BRCM_TRACING should depend on TRACING
- RDMA/cxgb4: Dump vendor specific QP details
- RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
- RDMA/bnxt_re: Fix the usage of control path spin locks
- RDMA/bnxt_re: synchronize the qp-handle table array
- wifi: iwlwifi: mvm: don't leak a link on AP removal
- wifi: iwlwifi: mvm: really send iwl_txpower_constraints_cmd
- wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
- wifi: iwlwifi: mvm: don't add default link in fw restart flow
- Revert "wifi: iwlwifi: remove retry loops in start"
- [armhf] ASoC: cs42l51: Fix some error handling paths in cs42l51_probe()
- macsec: Fix use-after-free while sending the offloading packet
(CVE-2024-50261)
- ASoC: dapm: fix bounds checker error in dapm_widget_list_create
- sock_map: fix a NULL pointer dereference in sock_map_link_update_prog()
(CVE-2024-50260)
- net: stmmac: dwmac4: Fix high address display by updating reg_space[]
from
register values
- net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
- dpll: add Embedded SYNC feature for a pin
- ice: add callbacks for Embedded SYNC enablement on dpll pins
- ice: fix crash on probe for DPLL enabled E810 LOM
- ipv4: ip_tunnel: Fix suspicious RCU usage warning in
ip_tunnel_init_flow()
- ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()
- gtp: allow -1 to be specified as file description from userspace
- net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT
- bpf: Force checkpoint when jmp history is too long
- net/sched: sch_api: fix xa_insert() error path in tcf_block_get_ext()
- bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
- net: fix crash when config small gso_max_size/gso_ipv4_max_size
(CVE-2024-50258)
- netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
- netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
(CVE-2024-50256)
- Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
(CVE-2024-50255)
- bpf: Free dynamically allocated bits in bpf_iter_bits_destroy()
(CVE-2024-50254)
- bpf: Add bpf_mem_alloc_check_size() helper
- bpf: Check the validity of nr_words in bpf_iter_bits_new()
(CVE-2024-50253)
- net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
- net: ethernet: mtk_wed: fix path of MT7988 WO firmware
- netfilter: nft_payload: sanitize offset and length before calling
skb_checksum()
- bpf, test_run: Fix LIVE_FRAME frame update after a page has been recycled
- iomap: improve shared block detection in iomap_unshare_iter
- iomap: don't bother unsharing delalloc extents
- iomap: share iomap_unshare_iter predicate code with fsdax
- fsdax: remove zeroing code from dax_unshare_iter
- fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
- iomap: turn iomap_want_unshare_iter into an inline function
- firmware: arm_sdei: Fix the input parameter of cpuhp_remove_state()
- afs: Fix missing subdir edit when renamed between parent dirs
- ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
- gpio: sloppy-logic-analyzer: Check for error code from devm_mutex_init()
call
- smb: client: fix parsing of device numbers
- smb: client: set correct device number on nfs reparse points
- [arm64] drm/mediatek: ovl: Remove the color format comment for
ovl_fmt_convert()
- [arm64] drm/mediatek: Fix color format MACROs in OVL
- [arm64] drm/mediatek: Fix get efuse issue for MT8188 DPTX
- [arm64] drm/mediatek: Use cmdq_pkt_create() and cmdq_pkt_destroy()
- [arm64] drm/mediatek: Fix potential NULL dereference in
mtk_crtc_destroy()
- [arm64,armhf] drm/tegra: Fix NULL vs IS_ERR() check in probe()
- cxl/events: Fix Trace DRAM Event Record
- PCI: Fix pci_enable_acs() support for the ACS quirks
- nvme: module parameter to disable pi with offsets
- [arm64] drm/panthor: Fix firmware initialization on systems with a page
size > 4k
- [arm64] drm/panthor: Fail job creation when the group is dead
- [arm64] drm/panthor: Report group as timedout when we fail to properly
suspend
- scsi: scsi_transport_fc: Allow setting rport state to current state
- cifs: Improve creating native symlinks pointing to directory
- cifs: Fix creating native symlinks pointing to current or parent
directory
- ACPI: resource: Fold Asus Vivobook Pro N6506M* DMI quirks together
- [amd64] powercap: intel_rapl_msr: Add PL4 support for Arrowlake-U
- [amd64] thermal: intel: int340x: processor: Remove MMIO RAPL CPU hotplug
support
- [amd64] thermal: intel: int340x: processor: Add MMIO RAPL PL4 support
- NFS: remove revoked delegation from server's delegation list
- misc: sgi-gru: Don't disable preemption in GRU driver
- NFSD: Initialize struct nfsd4_copy earlier (CVE-2024-50241)
- NFSD: Never decrement pending_async_copies on error
- rpcrdma: Always release the rpcrdma_device's xa_array
- ALSA: usb-audio: Add quirks for Dell WD19 dock
- wifi: rtlwifi: rtl8192du: Don't claim USB ID 0bda:8171
- usbip: tools: Fix detach_port() invalid port error path
- usb: phy: Fix API devm_usb_put_phy() can not release the phy
- usb: typec: fix unreleased fwnode_handle in
typec_port_register_altmodes()
- usb: typec: tcpm: restrict SNK_WAIT_CAPABILITIES_TIMEOUT transitions to
non self-powered devices
- [arm64] usb: typec: qcom-pmic-typec: use fwnode_handle_put() to release
fwnodes
- [arm64] usb: typec: qcom-pmic-typec: fix missing fwnode removal in error
path
- [arm64] phy: qcom: qmp-usb: fix NULL-deref on runtime suspend
(CVE-2024-50240)
- [arm64] phy: qcom: qmp-usb-legacy: fix NULL-deref on runtime suspend
(CVE-2024-50239)
- [arm64] phy: qcom: qmp-usbc: fix NULL-deref on runtime suspend
(CVE-2024-50238)
- xhci: Fix Link TRB DMA in command ring stopped completion event
- xhci: Use pm_runtime_get to prevent RPM on unsupported systems
- Revert "driver core: Fix uevent_show() vs driver detach race"
- Revert "drm/amd/display: update DML2 policy
EnhancedPrefetchScheduleAccelerationFinal DCN35"
- wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
(CVE-2024-50237)
- wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
- wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
- wifi: iwlegacy: Clear stale interrupts before resuming device
(CVE-2024-50234)
- wifi: iwlwifi: mvm: fix 6 GHz scan construction
- staging: iio: frequency: ad9832: fix division by zero in
ad9832_calc_freqreg()
- dt-bindings: iio: adc: ad7380: fix ad7380-4 reference supply
- iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
(CVE-2024-50232)
- iio: gts-helper: Fix memory leaks for the error path of
iio_gts_build_avail_scale_table()
- iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()
(CVE-2024-50231)
- iio: light: veml6030: fix microlux value calculation
- nilfs2: fix kernel bug due to missing clearing of checked flag
(CVE-2024-50230)
- nilfs2: fix potential deadlock with newly created symlinks
(CVE-2024-50229)
- [riscv64] ACPI: fix early_ioremap to early_memremap
- mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
- tools/mm: -Werror fixes in page-types/slabinfo
- mm: shrinker: avoid memleak in alloc_shrinker_info
- firmware: microchip: auto-update: fix poll_complete() to not report
spurious timeout errors
- [amd64] thunderbolt: Fix KASAN reported stack out-of-bounds read in
tb_retimer_scan()
- [amd64] thunderbolt: Honor TMU requirements in the domain when setting
TMU
mode
- [arm64] soc: qcom: pmic_glink: Handle GLINK intent allocation rejections
- cxl/port: Fix use-after-free, permit out-of-order decoder shutdown
(CVE-2024-50226)
- cxl/port: Fix CXL port initialization order when the subsystem is
built-in
- mmc: sdhci-pci-gli: GL9767: Fix low power mode on the set clock function
- mmc: sdhci-pci-gli: GL9767: Fix low power mode in the SD Express process
- block: fix sanity checks in blk_rq_map_user_bvec
- cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
- phy: freescale: imx8m-pcie: Do CMN_RST just before PHY PLL lock check
- btrfs: merge btrfs_orig_bbio_end_io() into btrfs_bio_end_io()
- btrfs: fix error propagation of split bios (CVE-2024-50225)
- spi: spi-fsl-dspi: Fix crash when not using GPIO chip select
(CVE-2024-50224)
- riscv: vdso: Prevent the compiler from inserting calls to memset()
- Input: edt-ft5x06 - fix regmap leak when probe fails
- ALSA: hda/realtek: Limit internal Mic boost on Dell platform
- [riscv64] efi: Set NX compat flag in PE/COFF header
- [riscv64] Prevent a bad reference count on CPU nodes
- [riscv64] Use '%u' to format the output of 'cpu'
- [riscv64] Remove unused GENERATING_ASM_OFFSETS
- [riscv64] Remove duplicated GET_RM
- scsi: ufs: core: Fix another deadlock during RTC update
- cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
- cxl/acpi: Ensure ports ready at cxl_acpi_probe() return
- sched/numa: Fix the potential null pointer dereference in
task_numa_work()
(CVE-2024-50223)
- posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
- iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP
- tpm: Return tpm2_sessions_init() when null key creation fails
- tpm: Rollback tpm2_load_null()
- drm/amd/pm: Vangogh: Fix kernel memory out of bounds write
(CVE-2024-50221)
- drm/amdgpu/smu13: fix profile reporting
- tpm: Lazily flush the auth session
- mptcp: init: protect sched with rcu_read_lock
- mei: use kvmalloc for read buffer
- fork: do not invoke uffd on fork if error occurs (CVE-2024-50220)
- fork: only invoke khugepaged, ksm hooks if no error
- mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
(CVE-2024-50219)
- [x86] traps: Enable UBSAN traps on x86
- [x86] traps: move kmsan check after instrumentation_begin
- ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
- resource,kexec: walk_system_ram_res_rev must retain resource flags
- mctp i2c: handle NULL header address
- btrfs: fix use-after-free of block device file in
__btrfs_free_extra_devids()
- accel/ivpu: Fix NOC firewall interrupt handling
- xfs: fix finding a last resort AG in xfs_filestream_pick_ag
(CVE-2024-50216)
- ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
- ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
- nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
- nvme: re-fix error-handling for io_uring nvme-passthrough
- kasan: remove vmalloc_percpu test
- drm/tests: helpers: Add helper for drm_display_mode_from_cea_vic()
- drm/connector: hdmi: Fix memory leak in drm_display_mode_from_cea_vic()
(CVE-2024-50214)
- drm/tests: hdmi: Fix memory leaks in drm_display_mode_from_cea_vic()
(CVE-2024-50213)
- io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
- btrfs: fix extent map merging not happening for adjacent extents
- btrfs: fix defrag not merging contiguous extents due to merged extent
maps
- gpiolib: fix debugfs newline separators
- gpiolib: fix debugfs dangling chip separator
- vmscan,migrate: fix page count imbalance on node stats when demoting
pages
- mm, mmap: limit THP alignment of anonymous mappings to PMD-aligned sizes
- Input: fix regression when re-registering input handlers
- mm: multi-gen LRU: ignore non-leaf pmd_young for force_scan=true
- mm: multi-gen LRU: remove MM_LEAF_OLD and MM_NONLEAF_TOTAL stats
- mm: shrink skip folio mapped by an exiting process
- mm: multi-gen LRU: use {ptep,pmdp}_clear_young_notify()
- [riscv64] dts: starfive: Update ethernet phy0 delay parameter values for
Star64
- [riscv64] dts: starfive: disable unused csi/camss nodes
- [arm64] dts: qcom: msm8939: revert use of APCS mbox for RPM
- [arm64] dts: qcom: x1e80100-yoga-slim7x: fix nvme regulator boot glitch
- [arm64] dts: qcom: x1e80100: Fix up BAR spaces
- [arm64] dts: qcom: x1e80100-vivobook-s15: fix nvme regulator boot glitch
- [arm64] dts: qcom: x1e80100: fix PCIe4 interconnect
- [arm64] dts: qcom: x1e80100-qcp: fix nvme regulator boot glitch
- [arm64] dts: qcom: x1e80100-crd: fix nvme regulator boot glitch
- [arm64] dts: imx8ulp: correct the flexspi compatible string
- [arm64] dts: qcom: x1e80100: Add Broadcast_AND region in LLCC block
- [arm64] dts: qcom: x1e80100: fix PCIe4 and PCIe6a PHY clocks
- [x86] drm/i915: Skip programming FIA link enable bits for MTL+
- [x86] drm/i915: disable fbc due to Wa_16023588340
- [x86] drm/i915/display: Cache adpative sync caps to use it later
- [x86] drm/i915/display: WA for Re-initialize dispcnlunitt1 xosc clock
- [x86] drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability
- [x86] drm/i915/hdcp: Add encoder check in hdcp2_get_capability
- [x86] drm/i915/dp: Clear VSC SDP during post ddi disable routine
- [x86] drm/i915/display/dp: Compute AS SDP when vrr is also enabled
- [x86] drm/i915/pps: Disable DPLS_GATING around pps sequence
- [x86] drm/i915: move rawclk from runtime to display runtime info
- [x86] drm/i915/psr: Prevent Panel Replay if CRC calculation is enabled
- [x86] drm/i915/display: Don't enable decompression on Xe2 with Tile4
- drm/amdgpu/swsmu: fix ordering for setting workload_mask
- drm/amdgpu/swsmu: default to fullscreen 3D profile for dGPUs
- drm/amdgpu: handle default profile on on devices without fullscreen 3D
- [mips64el] export __cmpxchg_small()
- rcu/kvfree: Add kvfree_rcu_barrier() API
- lib: alloc_tag_module_unload must wait for pending kfree_rcu calls
(CVE-2024-50212)
- rcu/kvfree: Refactor kvfree_rcu_queue_batch()
Checksums-Sha1:
5f383a731a0ce4610613d9868a3fc66cf401b5d8 204594 linux_6.11.7-1.dsc
271c7e72ef14f7c959357e3514526c554a6d46ce 149926228 linux_6.11.7.orig.tar.xz
6f666724a78f5fa4513b8b5ab98533e3b1613493 1597936 linux_6.11.7-1.debian.tar.xz
f227e24bf6b198c2d2355d46bbbfdb9d558f4da4 7525 linux_6.11.7-1_source.buildinfo
Checksums-Sha256:
8ccce2478f15fbc05edd18b24bf08b2b02df67cb2099f28a3c0765c7ab3ac854 204594
linux_6.11.7-1.dsc
b9850a3f11f67d6d13224b6d7071da392f45edd023e7d681b62a8c42c1dd48a0 149926228
linux_6.11.7.orig.tar.xz
0ab2a17c70355bb90092f909658091baae9cd35546b2eba3cca7e8bc66513f90 1597936
linux_6.11.7-1.debian.tar.xz
d577ebabbf851e9b2f27746b1ff73fe2de693070f0016e1328a8020776e8a991 7525
linux_6.11.7-1_source.buildinfo
Files:
5fd732296e6b3938936ce63c04e77080 204594 kernel optional linux_6.11.7-1.dsc
0b333bd867e5ffb38f928df456ac28c8 149926228 kernel optional
linux_6.11.7.orig.tar.xz
54be6d8319acda5ff1678bd796f66d7c 1597936 kernel optional
linux_6.11.7-1.debian.tar.xz
182334a1de973ab4738f5ed9e840a080 7525 kernel optional
linux_6.11.7-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=fvZS
-----END PGP SIGNATURE-----
pgp91EFa4Efdd.pgp
Description: PGP signature
